electron-webauthn 1.1.0 → 1.1.1

package/README.md

@@ -21,6 +21,7 @@ This package provides JavaScript bindings to Apple's AuthenticationServices fram
 - Credential creation (registration) with attestation
 - Credential authentication (assertions) with existing credentials
 - Seamless integration with Electron's native window system
+- Passkey listing via `listPasskeys` (macOS 13.3+)
 - PRF (Pseudo-Random Function) extension support
 - Large Blob extension support for reading/writing credential-specific data
 - User verification preference configuration (preferred, required, discouraged)
@@ -83,7 +84,7 @@ This library implements the W3C WebAuthn standard using Apple's native Authentic
 
 ## Error Handling
 
-Both `createCredential` and `getCredential` functions return a result object with a `success` field. Always check this field:
+`createCredential`, `getCredential`, and `listPasskeys` all return a result object with a `success` field. Always check this field:
 
 ```typescript
 const result = await createCredential(publicKeyOptions, additionalOptions);
@@ -118,6 +119,19 @@ if (!result.success) {
 console.log("Credential ID:", result.data.credentialId);
 ```
 
+`listPasskeys` returns an `Error` object (not a string code) when unsuccessful:
+
+```typescript
+const result = await listPasskeys("example.com");
+
+if (!result.success) {
+  console.error("Failed to list passkeys:", result.error.message);
+  return;
+}
+
+console.log(`Found ${result.credentials.length} passkeys`);
+```
+
 ### Common Error Scenarios
 
 #### For Both Registration and Authentication
@@ -141,6 +155,7 @@ console.log("Credential ID:", result.data.credentialId);
 
 - ✅ WebAuthn credential creation (registration/attestation)
 - ✅ WebAuthn assertions (authentication with existing credentials)
+- ✅ Passkey listing with `listPasskeys` (macOS 13.3+, requires `com.apple.developer.web-browser.public-key-credential` entitlement)
 - ✅ Cross-platform authenticators (external security keys like YubiKey)
 - ✅ Platform authenticators (Touch ID, Face ID)
 - ✅ Discoverable credentials (resident keys)

package/dist/list/handler.js

@@ -3,7 +3,13 @@ import { bufferFromNSDataDirect } from "objcjs-types/nsdata";
 import { NSStringFromString } from "objcjs-types/helpers";
 import { ASAuthorizationWebBrowserPublicKeyCredentialManager, ASAuthorizationWebBrowserPublicKeyCredentialManagerAuthorizationState, } from "objcjs-types/AuthenticationServices";
 import { isAtLeast, version, formatVersion, getOSVersion, } from "objcjs-types/osversion";
-import { makePromise, enumFromValue } from "../helpers/objc.js";
+import { enumFromValue, makePromise1Result } from "objcjs-types/helpers";
+const LOGGING_ENABLED = false;
+function log(...args) {
+    if (!LOGGING_ENABLED)
+        return;
+    console.log(...args);
+}
 export async function listPasskeys(relyingPartyId) {
     try {
         const minVersion = version(13, 3);
@@ -13,26 +19,26 @@ export async function listPasskeys(relyingPartyId) {
         }
         const manager = ASAuthorizationWebBrowserPublicKeyCredentialManager.alloc().init();
         const authState = manager.authorizationStateForPlatformCredentials();
-        console.log(`[listPasskeys] Authorization state: ${authState}`);
+        log(`[listPasskeys] Authorization state: ${authState}`);
         if (authState ===
             ASAuthorizationWebBrowserPublicKeyCredentialManagerAuthorizationState.NotDetermined) {
-            console.log("[listPasskeys] Authorization not determined, requesting...");
-            const newStateValue = await makePromise(manager.requestAuthorizationForPublicKeyCredentials$);
+            log("[listPasskeys] Authorization not determined, requesting...");
+            const newStateValue = await makePromise1Result(manager.requestAuthorizationForPublicKeyCredentials$.bind(manager));
             const newState = enumFromValue(ASAuthorizationWebBrowserPublicKeyCredentialManagerAuthorizationState, newStateValue);
-            console.log(`[listPasskeys] Authorization request completed, new state: ${newState}`);
+            log(`[listPasskeys] Authorization request completed, new state: ${newState}`);
         }
         else if (authState ===
             ASAuthorizationWebBrowserPublicKeyCredentialManagerAuthorizationState.Denied) {
             throw new Error("Authorization DENIED - user must grant permission in System Settings > Privacy & Security");
         }
         else {
-            console.log("[listPasskeys] Authorization already granted");
+            log("[listPasskeys] Authorization already granted");
         }
         const rpIdString = NSStringFromString(relyingPartyId);
-        console.log(`[listPasskeys] Calling platformCredentialsForRelyingParty: ${relyingPartyId}`);
-        const credentialsArray = await makePromise(rpIdString, manager.platformCredentialsForRelyingParty$completionHandler$);
+        log(`[listPasskeys] Calling platformCredentialsForRelyingParty: ${relyingPartyId}`);
+        const credentialsArray = await makePromise1Result(manager.platformCredentialsForRelyingParty$completionHandler$.bind(manager), rpIdString);
         const count = credentialsArray.count();
-        console.log(`[listPasskeys] platformCredentials returned ${count} entries`);
+        log(`[listPasskeys] platformCredentials returned ${count} entries`);
         const credentials = [];
         for (let i = 0; i < count; i++) {
             const cred = credentialsArray.objectAtIndex$(i);
@@ -41,7 +47,7 @@ export async function listPasskeys(relyingPartyId) {
             const userHandleData = cred.userHandle();
             const credentialId = bufferToBase64Url(bufferFromNSDataDirect(credentialIdData));
             const userHandle = bufferToBase64Url(bufferFromNSDataDirect(userHandleData));
-            console.log(`[listPasskeys] Found credential: name=${userName}, id=${credentialId.substring(0, 20)}...`);
+            log(`[listPasskeys] Found credential: name=${userName}, id=${credentialId.substring(0, 20)}...`);
             credentials.push({
                 id: credentialId,
                 rpId: relyingPartyId,
@@ -49,14 +55,14 @@ export async function listPasskeys(relyingPartyId) {
                 userHandle,
             });
         }
-        console.log(`[listPasskeys] Returning ${credentials.length} results`);
+        log(`[listPasskeys] Returning ${credentials.length} results`);
         return {
             success: true,
             credentials,
         };
     }
     catch (error) {
-        console.error("[listPasskeys] Error:", error);
+        console.error("[listPasskeys] ", error);
         return {
             success: false,
             error: error instanceof Error ? error : new Error(String(error)),

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "electron-webauthn",
-  "version": "1.1.0",
+  "version": "1.1.1",
   "repository": "https://github.com/iamEvanYT/electron-webauthn.git",
   "homepage": "https://github.com/iamEvanYT/electron-webauthn#readme",
   "description": "Add support for WebAuthn for Electron.",
@@ -30,8 +30,8 @@
   },
   "dependencies": {
     "@oslojs/webauthn": "^1.0.0",
-    "objc-js": "^1.3.0",
-    "objcjs-types": "^0.5.0"
+    "objc-js": "^1.3.1",
+    "objcjs-types": "^0.5.1"
   },
   "trustedDependencies": [
     "objc-js"

package/dist/helpers/objc.d.ts

@@ -1,5 +0,0 @@
-export declare function enumFromValue<T extends Record<string, number>>(enumObj: T, value: number): keyof T | undefined;
-export declare function makePromise<T, Args extends unknown[]>(...argsAndFunc: [
-    ...args: Args,
-    func: (...args: [...Args, callback: (result: T) => void]) => void
-]): Promise<T>;

package/dist/helpers/objc.js

@@ -1,10 +0,0 @@
-export function enumFromValue(enumObj, value) {
-    return Object.keys(enumObj).find((key) => enumObj[key] === value);
-}
-export function makePromise(...argsAndFunc) {
-    const func = argsAndFunc[argsAndFunc.length - 1];
-    const args = argsAndFunc.slice(0, -1);
-    return new Promise((resolve) => {
-        func(...args, resolve);
-    });
-}