humankey 0.2.0 → 0.3.1

package/dist/nextjs.mjs

@@ -0,0 +1,40 @@
+import {
+  MemoryChallengeStore,
+  handleChallenge,
+  handleRegister,
+  handleVerify,
+  resolveConfig
+} from "./chunk-Y6KQC7WK.mjs";
+import "./chunk-XXJAJHNP.mjs";
+import "./chunk-CLQSCDXC.mjs";
+
+// src/nextjs.ts
+function createHumanKeyHandlers(config) {
+  const resolved = resolveConfig(config);
+  return {
+    /** POST handler for /challenge — generates and stores a challenge. */
+    challenge: async () => {
+      const result = await handleChallenge(resolved);
+      return toResponse(result);
+    },
+    /** POST handler for /register — verifies registration and stores credential. */
+    register: async (req) => {
+      const body = await req.json();
+      const result = await handleRegister(resolved, body);
+      return toResponse(result);
+    },
+    /** POST handler for /verify — verifies a tap proof. */
+    verify: async (req) => {
+      const body = await req.json();
+      const result = await handleVerify(resolved, body);
+      return toResponse(result);
+    }
+  };
+}
+function toResponse(result) {
+  return Response.json(result.body, { status: result.status });
+}
+export {
+  MemoryChallengeStore,
+  createHumanKeyHandlers
+};

package/dist/react.cjs

@@ -0,0 +1,131 @@
+"use strict";Object.defineProperty(exports, "__esModule", {value: true}); function _interopRequireWildcard(obj) { if (obj && obj.__esModule) { return obj; } else { var newObj = {}; if (obj != null) { for (var key in obj) { if (Object.prototype.hasOwnProperty.call(obj, key)) { newObj[key] = obj[key]; } } } newObj.default = obj; return newObj; } }// src/react.ts
+var _react = require('react');
+function useHumanKey(config) {
+  const { rpID, apiBase = "/api" } = config;
+  const [status, setStatus] = _react.useState.call(void 0, "idle");
+  const [confirmationCode, setConfirmationCode] = _react.useState.call(void 0, null);
+  const [error, setError] = _react.useState.call(void 0, null);
+  const [proof, setProof] = _react.useState.call(void 0, null);
+  const flowRef = _react.useRef.call(void 0, null);
+  const reset = _react.useCallback.call(void 0, () => {
+    setStatus("idle");
+    setConfirmationCode(null);
+    setError(null);
+    setProof(null);
+    flowRef.current = null;
+  }, []);
+  const startAction = _react.useCallback.call(void 0, 
+    async (action, credentialIds) => {
+      try {
+        setStatus("confirming");
+        setError(null);
+        setProof(null);
+        const challengeRes = await fetch(`${apiBase}/challenge`, { method: "POST" });
+        if (!challengeRes.ok) {
+          throw new Error("Failed to fetch challenge");
+        }
+        const { challengeId, challenge } = await challengeRes.json();
+        const { createConfirmation } = await Promise.resolve().then(() => _interopRequireWildcard(require("./confirm-6RXLI2SS.cjs")));
+        const confirmation = await createConfirmation(action);
+        flowRef.current = { action, confirmation, challengeId, challenge, credentialIds };
+        setConfirmationCode(confirmation.code);
+      } catch (err) {
+        setStatus("error");
+        setError({
+          message: err instanceof Error ? err.message : "Unknown error",
+          code: err.code
+        });
+        throw err;
+      }
+    },
+    [apiBase]
+  );
+  const confirmCode = _react.useCallback.call(void 0, 
+    async (userInput) => {
+      const flow = flowRef.current;
+      if (!flow) {
+        throw new Error("No active action \u2014 call startAction first");
+      }
+      try {
+        setStatus("tapping");
+        const { requestTap } = await Promise.resolve().then(() => _interopRequireWildcard(require("./tap-N5RN26H2.cjs")));
+        const tapProof = await requestTap({
+          challenge: flow.challenge,
+          action: flow.action,
+          confirmation: flow.confirmation,
+          userInput,
+          allowCredentials: flow.credentialIds,
+          rpID
+        });
+        const verifyRes = await fetch(`${apiBase}/verify`, {
+          method: "POST",
+          headers: { "Content-Type": "application/json" },
+          body: JSON.stringify({
+            proof: tapProof,
+            challengeId: flow.challengeId,
+            action: flow.action
+          })
+        });
+        if (!verifyRes.ok) {
+          const errBody = await verifyRes.json().catch(() => ({}));
+          throw Object.assign(new Error(errBody.error || "Verification failed"), {
+            code: errBody.code
+          });
+        }
+        setStatus("verified");
+        setProof(tapProof);
+        flowRef.current = null;
+        return tapProof;
+      } catch (err) {
+        setStatus("error");
+        setError({
+          message: err instanceof Error ? err.message : "Unknown error",
+          code: err.code
+        });
+        throw err;
+      }
+    },
+    [rpID, apiBase]
+  );
+  const register = _react.useCallback.call(void 0, 
+    async (userName) => {
+      const challengeRes = await fetch(`${apiBase}/challenge`, { method: "POST" });
+      if (!challengeRes.ok) {
+        throw new Error("Failed to fetch challenge");
+      }
+      const { challengeId, challenge } = await challengeRes.json();
+      const { registerKey } = await Promise.resolve().then(() => _interopRequireWildcard(require("./register-Y2ADAMHB.cjs")));
+      const registration = await registerKey({
+        challenge,
+        rpID,
+        rpName: rpID,
+        // Server validates, this is just a display hint
+        userName
+      });
+      const regRes = await fetch(`${apiBase}/register`, {
+        method: "POST",
+        headers: { "Content-Type": "application/json" },
+        body: JSON.stringify({ response: registration.response, challengeId })
+      });
+      if (!regRes.ok) {
+        const errBody = await regRes.json().catch(() => ({}));
+        throw new Error(errBody.error || "Registration failed");
+      }
+      return registration;
+    },
+    [rpID, apiBase]
+  );
+  return {
+    status,
+    confirmationCode,
+    error,
+    proof,
+    startAction,
+    confirmCode,
+    register,
+    reset
+  };
+}
+
+
+exports.useHumanKey = useHumanKey;

package/dist/react.d.cts

@@ -0,0 +1,60 @@
+import { AuthenticatorTransportFuture } from '@simplewebauthn/server';
+import { a as TapProof, A as ActionPayload, b as RegistrationResult } from './types-By44RNIt.cjs';
+export { C as Confirmation } from './types-By44RNIt.cjs';
+import { a as HumanKeyErrorCode } from './errors-BmtCXo7w.cjs';
+
+/** Status of the humankey flow. */
+type HumanKeyStatus = 'idle' | 'confirming' | 'tapping' | 'verified' | 'error';
+/** Error shape returned by the hook. */
+interface HumanKeyHookError {
+    message: string;
+    code?: HumanKeyErrorCode;
+}
+/** Configuration for the useHumanKey hook. */
+interface UseHumanKeyConfig {
+    /** Relying party ID, e.g. "example.com" */
+    rpID: string;
+    /** Base URL for humankey API endpoints (default: "/api") */
+    apiBase?: string;
+}
+/** Return value of the useHumanKey hook. */
+interface UseHumanKeyReturn {
+    /** Current status of the flow. */
+    status: HumanKeyStatus;
+    /** The confirmation code the user needs to type (available when status is 'confirming'). */
+    confirmationCode: string | null;
+    /** Error details (available when status is 'error'). */
+    error: HumanKeyHookError | null;
+    /** The tap proof (available when status is 'verified'). */
+    proof: TapProof | null;
+    /** Start a new action — fetches a challenge and generates the confirmation code. */
+    startAction: (action: ActionPayload, credentialIds: Array<{
+        id: string;
+        transports?: AuthenticatorTransportFuture[];
+    }>) => Promise<void>;
+    /** Submit the confirmation code and trigger the hardware key tap. */
+    confirmCode: (userInput: string) => Promise<TapProof>;
+    /** Register a new hardware key. */
+    register: (userName: string) => Promise<RegistrationResult>;
+    /** Reset the hook to idle state. */
+    reset: () => void;
+}
+/**
+ * React hook for the humankey confirm → tap flow.
+ *
+ * Usage:
+ * ```tsx
+ * const { status, confirmationCode, startAction, confirmCode } = useHumanKey({
+ *   rpID: 'example.com',
+ * });
+ *
+ * await startAction({ action: 'transfer', data: { amount: 100 } }, [{ id: credId }]);
+ * // status → 'confirming', confirmationCode → 'A7X3'
+ *
+ * const proof = await confirmCode('A7X3');
+ * // status → 'tapping' → 'verified'
+ * ```
+ */
+declare function useHumanKey(config: UseHumanKeyConfig): UseHumanKeyReturn;
+
+export { ActionPayload, HumanKeyErrorCode, type HumanKeyHookError, type HumanKeyStatus, RegistrationResult, TapProof, type UseHumanKeyConfig, type UseHumanKeyReturn, useHumanKey };

package/dist/react.d.ts

@@ -0,0 +1,60 @@
+import { AuthenticatorTransportFuture } from '@simplewebauthn/server';
+import { a as TapProof, A as ActionPayload, b as RegistrationResult } from './types-By44RNIt.js';
+export { C as Confirmation } from './types-By44RNIt.js';
+import { a as HumanKeyErrorCode } from './errors-BmtCXo7w.js';
+
+/** Status of the humankey flow. */
+type HumanKeyStatus = 'idle' | 'confirming' | 'tapping' | 'verified' | 'error';
+/** Error shape returned by the hook. */
+interface HumanKeyHookError {
+    message: string;
+    code?: HumanKeyErrorCode;
+}
+/** Configuration for the useHumanKey hook. */
+interface UseHumanKeyConfig {
+    /** Relying party ID, e.g. "example.com" */
+    rpID: string;
+    /** Base URL for humankey API endpoints (default: "/api") */
+    apiBase?: string;
+}
+/** Return value of the useHumanKey hook. */
+interface UseHumanKeyReturn {
+    /** Current status of the flow. */
+    status: HumanKeyStatus;
+    /** The confirmation code the user needs to type (available when status is 'confirming'). */
+    confirmationCode: string | null;
+    /** Error details (available when status is 'error'). */
+    error: HumanKeyHookError | null;
+    /** The tap proof (available when status is 'verified'). */
+    proof: TapProof | null;
+    /** Start a new action — fetches a challenge and generates the confirmation code. */
+    startAction: (action: ActionPayload, credentialIds: Array<{
+        id: string;
+        transports?: AuthenticatorTransportFuture[];
+    }>) => Promise<void>;
+    /** Submit the confirmation code and trigger the hardware key tap. */
+    confirmCode: (userInput: string) => Promise<TapProof>;
+    /** Register a new hardware key. */
+    register: (userName: string) => Promise<RegistrationResult>;
+    /** Reset the hook to idle state. */
+    reset: () => void;
+}
+/**
+ * React hook for the humankey confirm → tap flow.
+ *
+ * Usage:
+ * ```tsx
+ * const { status, confirmationCode, startAction, confirmCode } = useHumanKey({
+ *   rpID: 'example.com',
+ * });
+ *
+ * await startAction({ action: 'transfer', data: { amount: 100 } }, [{ id: credId }]);
+ * // status → 'confirming', confirmationCode → 'A7X3'
+ *
+ * const proof = await confirmCode('A7X3');
+ * // status → 'tapping' → 'verified'
+ * ```
+ */
+declare function useHumanKey(config: UseHumanKeyConfig): UseHumanKeyReturn;
+
+export { ActionPayload, HumanKeyErrorCode, type HumanKeyHookError, type HumanKeyStatus, RegistrationResult, TapProof, type UseHumanKeyConfig, type UseHumanKeyReturn, useHumanKey };

package/dist/react.mjs

@@ -0,0 +1,131 @@
+// src/react.ts
+import { useState, useCallback, useRef } from "react";
+function useHumanKey(config) {
+  const { rpID, apiBase = "/api" } = config;
+  const [status, setStatus] = useState("idle");
+  const [confirmationCode, setConfirmationCode] = useState(null);
+  const [error, setError] = useState(null);
+  const [proof, setProof] = useState(null);
+  const flowRef = useRef(null);
+  const reset = useCallback(() => {
+    setStatus("idle");
+    setConfirmationCode(null);
+    setError(null);
+    setProof(null);
+    flowRef.current = null;
+  }, []);
+  const startAction = useCallback(
+    async (action, credentialIds) => {
+      try {
+        setStatus("confirming");
+        setError(null);
+        setProof(null);
+        const challengeRes = await fetch(`${apiBase}/challenge`, { method: "POST" });
+        if (!challengeRes.ok) {
+          throw new Error("Failed to fetch challenge");
+        }
+        const { challengeId, challenge } = await challengeRes.json();
+        const { createConfirmation } = await import("./confirm-TSVTFC4N.mjs");
+        const confirmation = await createConfirmation(action);
+        flowRef.current = { action, confirmation, challengeId, challenge, credentialIds };
+        setConfirmationCode(confirmation.code);
+      } catch (err) {
+        setStatus("error");
+        setError({
+          message: err instanceof Error ? err.message : "Unknown error",
+          code: err.code
+        });
+        throw err;
+      }
+    },
+    [apiBase]
+  );
+  const confirmCode = useCallback(
+    async (userInput) => {
+      const flow = flowRef.current;
+      if (!flow) {
+        throw new Error("No active action \u2014 call startAction first");
+      }
+      try {
+        setStatus("tapping");
+        const { requestTap } = await import("./tap-DJVQXGEJ.mjs");
+        const tapProof = await requestTap({
+          challenge: flow.challenge,
+          action: flow.action,
+          confirmation: flow.confirmation,
+          userInput,
+          allowCredentials: flow.credentialIds,
+          rpID
+        });
+        const verifyRes = await fetch(`${apiBase}/verify`, {
+          method: "POST",
+          headers: { "Content-Type": "application/json" },
+          body: JSON.stringify({
+            proof: tapProof,
+            challengeId: flow.challengeId,
+            action: flow.action
+          })
+        });
+        if (!verifyRes.ok) {
+          const errBody = await verifyRes.json().catch(() => ({}));
+          throw Object.assign(new Error(errBody.error || "Verification failed"), {
+            code: errBody.code
+          });
+        }
+        setStatus("verified");
+        setProof(tapProof);
+        flowRef.current = null;
+        return tapProof;
+      } catch (err) {
+        setStatus("error");
+        setError({
+          message: err instanceof Error ? err.message : "Unknown error",
+          code: err.code
+        });
+        throw err;
+      }
+    },
+    [rpID, apiBase]
+  );
+  const register = useCallback(
+    async (userName) => {
+      const challengeRes = await fetch(`${apiBase}/challenge`, { method: "POST" });
+      if (!challengeRes.ok) {
+        throw new Error("Failed to fetch challenge");
+      }
+      const { challengeId, challenge } = await challengeRes.json();
+      const { registerKey } = await import("./register-ZGR2LHQ6.mjs");
+      const registration = await registerKey({
+        challenge,
+        rpID,
+        rpName: rpID,
+        // Server validates, this is just a display hint
+        userName
+      });
+      const regRes = await fetch(`${apiBase}/register`, {
+        method: "POST",
+        headers: { "Content-Type": "application/json" },
+        body: JSON.stringify({ response: registration.response, challengeId })
+      });
+      if (!regRes.ok) {
+        const errBody = await regRes.json().catch(() => ({}));
+        throw new Error(errBody.error || "Registration failed");
+      }
+      return registration;
+    },
+    [rpID, apiBase]
+  );
+  return {
+    status,
+    confirmationCode,
+    error,
+    proof,
+    startAction,
+    confirmCode,
+    register,
+    reset
+  };
+}
+export {
+  useHumanKey
+};

package/dist/register-Y2ADAMHB.cjs

@@ -0,0 +1,7 @@
+"use strict";Object.defineProperty(exports, "__esModule", {value: true});
+
+var _chunkRQSBOE7Bcjs = require('./chunk-RQSBOE7B.cjs');
+require('./chunk-JI6NIMGK.cjs');
+
+
+exports.registerKey = _chunkRQSBOE7Bcjs.registerKey;

package/dist/register-ZGR2LHQ6.mjs

@@ -0,0 +1,7 @@
+import {
+  registerKey
+} from "./chunk-U2AGXRNW.mjs";
+import "./chunk-CLQSCDXC.mjs";
+export {
+  registerKey
+};

package/dist/tap-DJVQXGEJ.mjs

@@ -0,0 +1,8 @@
+import {
+  requestTap
+} from "./chunk-RANGHXC7.mjs";
+import "./chunk-G2X46ZRM.mjs";
+import "./chunk-CLQSCDXC.mjs";
+export {
+  requestTap
+};

package/dist/tap-N5RN26H2.cjs

@@ -0,0 +1,8 @@
+"use strict";Object.defineProperty(exports, "__esModule", {value: true});
+
+var _chunkSZPXOH7Zcjs = require('./chunk-SZPXOH7Z.cjs');
+require('./chunk-2KMBF2TH.cjs');
+require('./chunk-JI6NIMGK.cjs');
+
+
+exports.requestTap = _chunkSZPXOH7Zcjs.requestTap;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "humankey",
-  "version": "0.2.0",
+  "version": "0.3.1",
   "description": "Per-action hardware key (YubiKey/FIDO2) verification SDK with built-in confirmation step",
   "type": "module",
   "exports": {
@@ -33,6 +33,46 @@
         "types": "./dist/express.d.cts",
         "default": "./dist/express.cjs"
       }
+    },
+    "./nextjs": {
+      "import": {
+        "types": "./dist/nextjs.d.ts",
+        "default": "./dist/nextjs.mjs"
+      },
+      "require": {
+        "types": "./dist/nextjs.d.cts",
+        "default": "./dist/nextjs.cjs"
+      }
+    },
+    "./hono": {
+      "import": {
+        "types": "./dist/hono.d.ts",
+        "default": "./dist/hono.mjs"
+      },
+      "require": {
+        "types": "./dist/hono.d.cts",
+        "default": "./dist/hono.cjs"
+      }
+    },
+    "./fastify": {
+      "import": {
+        "types": "./dist/fastify.d.ts",
+        "default": "./dist/fastify.mjs"
+      },
+      "require": {
+        "types": "./dist/fastify.d.cts",
+        "default": "./dist/fastify.cjs"
+      }
+    },
+    "./react": {
+      "import": {
+        "types": "./dist/react.d.ts",
+        "default": "./dist/react.mjs"
+      },
+      "require": {
+        "types": "./dist/react.d.cts",
+        "default": "./dist/react.cjs"
+      }
     }
   },
   "files": [
@@ -64,7 +104,10 @@
   },
   "peerDependencies": {
     "@simplewebauthn/browser": "^13.3.0",
-    "express": "^4.18.0 || ^5.0.0"
+    "express": "^4.18.0 || ^5.0.0",
+    "fastify": "^5.0.0",
+    "hono": "^4.0.0",
+    "react": "^18.0.0 || ^19.0.0"
   },
   "peerDependenciesMeta": {
     "@simplewebauthn/browser": {
@@ -72,13 +115,26 @@
     },
     "express": {
       "optional": true
+    },
+    "hono": {
+      "optional": true
+    },
+    "fastify": {
+      "optional": true
+    },
+    "react": {
+      "optional": true
     }
   },
   "devDependencies": {
     "@simplewebauthn/browser": "^13.3.0",
     "@types/express": "^5.0.6",
+    "@types/react": "^19.2.14",
     "@types/supertest": "^7.2.0",
     "express": "^5.2.1",
+    "fastify": "^5.8.4",
+    "hono": "^4.12.12",
+    "react": "^19.2.5",
     "supertest": "^7.2.2",
     "tsup": "^8.0.0",
     "typescript": "^5.7.0",