ox 0.12.4 → 0.13.0

package/_cjs/webauthn/Authentication.js

@@ -0,0 +1,246 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SignFailedError = void 0;
+exports.deserializeOptions = deserializeOptions;
+exports.deserializeResponse = deserializeResponse;
+exports.getOptions = getOptions;
+exports.getSignPayload = getSignPayload;
+exports.serializeOptions = serializeOptions;
+exports.serializeResponse = serializeResponse;
+exports.sign = sign;
+exports.verify = verify;
+const Base64 = require("../core/Base64.js");
+const Bytes = require("../core/Bytes.js");
+const Errors = require("../core/Errors.js");
+const Hash = require("../core/Hash.js");
+const Hex = require("../core/Hex.js");
+const internal = require("../core/internal/webauthn.js");
+const P256 = require("../core/P256.js");
+const Signature = require("../core/Signature.js");
+const Authenticator_js_1 = require("./Authenticator.js");
+const utils_js_1 = require("./internal/utils.js");
+function deserializeOptions(options) {
+    const { publicKey, ...rest } = options;
+    if (!publicKey)
+        return { ...rest };
+    const { allowCredentials, challenge, extensions, ...publicKeyRest } = publicKey;
+    return {
+        ...rest,
+        publicKey: {
+            ...publicKeyRest,
+            challenge: Bytes.fromHex(challenge),
+            ...(allowCredentials && {
+                allowCredentials: allowCredentials.map(({ id, ...rest }) => ({
+                    ...rest,
+                    id: Base64.toBytes(id),
+                })),
+            }),
+            ...(extensions && {
+                extensions: (0, utils_js_1.deserializeExtensions)(extensions),
+            }),
+        },
+    };
+}
+function deserializeResponse(response) {
+    const { id, metadata, raw, signature } = response;
+    const rawResponse = {};
+    for (const [key, value] of Object.entries(raw.response))
+        rawResponse[key] = (0, utils_js_1.bytesToArrayBuffer)(Base64.toBytes(value));
+    return {
+        id,
+        metadata,
+        raw: {
+            id: raw.id,
+            type: raw.type,
+            authenticatorAttachment: raw.authenticatorAttachment,
+            rawId: (0, utils_js_1.bytesToArrayBuffer)(Base64.toBytes(raw.rawId)),
+            response: rawResponse,
+            getClientExtensionResults: () => ({}),
+        },
+        signature: Signature.from(signature),
+    };
+}
+function getOptions(options) {
+    const { credentialId, challenge, extensions, rpId = window.location.hostname, userVerification = 'required', } = options;
+    return {
+        publicKey: {
+            ...(credentialId
+                ? {
+                    allowCredentials: Array.isArray(credentialId)
+                        ? credentialId.map((id) => ({
+                            id: Base64.toBytes(id),
+                            type: 'public-key',
+                        }))
+                        : [
+                            {
+                                id: Base64.toBytes(credentialId),
+                                type: 'public-key',
+                            },
+                        ],
+                }
+                : {}),
+            challenge: Bytes.fromHex(challenge),
+            ...(extensions && { extensions }),
+            rpId,
+            userVerification,
+        },
+    };
+}
+function getSignPayload(options) {
+    const { challenge, crossOrigin, extraClientData, flag, origin, rpId, signCount, userVerification = 'required', } = options;
+    const authenticatorData = (0, Authenticator_js_1.getAuthenticatorData)({
+        flag,
+        rpId,
+        signCount,
+    });
+    const clientDataJSON = (0, Authenticator_js_1.getClientDataJSON)({
+        challenge,
+        crossOrigin,
+        extraClientData,
+        origin,
+    });
+    const clientDataJSONHash = Hash.sha256(Hex.fromString(clientDataJSON));
+    const challengeIndex = clientDataJSON.indexOf('"challenge"');
+    const typeIndex = clientDataJSON.indexOf('"type"');
+    const metadata = {
+        authenticatorData,
+        clientDataJSON,
+        challengeIndex,
+        typeIndex,
+        userVerificationRequired: userVerification === 'required',
+    };
+    const payload = Hex.concat(authenticatorData, clientDataJSONHash);
+    return { metadata, payload };
+}
+function serializeOptions(options) {
+    const { publicKey, signal: _, ...rest } = options;
+    if (!publicKey)
+        return { ...rest };
+    const { allowCredentials, challenge, extensions, ...publicKeyRest } = publicKey;
+    return {
+        ...rest,
+        publicKey: {
+            ...publicKeyRest,
+            challenge: Hex.fromBytes((0, utils_js_1.bufferSourceToBytes)(challenge)),
+            ...(allowCredentials && {
+                allowCredentials: allowCredentials.map(({ id, ...rest }) => ({
+                    ...rest,
+                    id: Base64.fromBytes((0, utils_js_1.bufferSourceToBytes)(id), utils_js_1.base64UrlOptions),
+                })),
+            }),
+            ...(extensions && {
+                extensions: (0, utils_js_1.serializeExtensions)(extensions),
+            }),
+        },
+    };
+}
+function serializeResponse(response) {
+    const { id, metadata, raw, signature } = response;
+    const rawResponse = {};
+    for (const key of utils_js_1.responseKeys) {
+        const value = raw.response[key];
+        if (value instanceof ArrayBuffer)
+            rawResponse[key] = Base64.fromBytes(new Uint8Array(value), utils_js_1.base64UrlOptions);
+    }
+    return {
+        id,
+        metadata,
+        raw: {
+            id: raw.id,
+            type: raw.type,
+            authenticatorAttachment: raw.authenticatorAttachment,
+            rawId: Base64.fromBytes((0, utils_js_1.bufferSourceToBytes)(raw.rawId), utils_js_1.base64UrlOptions),
+            response: rawResponse,
+        },
+        signature: Signature.toHex(signature),
+    };
+}
+async function sign(options) {
+    const { getFn = window.navigator.credentials.get.bind(window.navigator.credentials), ...rest } = options;
+    const requestOptions = 'publicKey' in rest
+        ? rest
+        : getOptions(rest);
+    try {
+        const credential = (await getFn(requestOptions));
+        if (!credential)
+            throw new SignFailedError();
+        const response = credential.response;
+        const clientDataJSON = String.fromCharCode(...new Uint8Array(response.clientDataJSON));
+        const challengeIndex = clientDataJSON.indexOf('"challenge"');
+        const typeIndex = clientDataJSON.indexOf('"type"');
+        const signature = internal.parseAsn1Signature(new Uint8Array(response.signature));
+        return {
+            id: credential.id,
+            metadata: {
+                authenticatorData: Hex.fromBytes(new Uint8Array(response.authenticatorData)),
+                clientDataJSON,
+                challengeIndex,
+                typeIndex,
+                userVerificationRequired: requestOptions.publicKey.userVerification === 'required',
+            },
+            signature,
+            raw: credential,
+        };
+    }
+    catch (error) {
+        throw new SignFailedError({
+            cause: error,
+        });
+    }
+}
+class SignFailedError extends Errors.BaseError {
+    constructor({ cause } = {}) {
+        super('Failed to request credential.', {
+            cause,
+        });
+        Object.defineProperty(this, "name", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: 'Authentication.SignFailedError'
+        });
+    }
+}
+exports.SignFailedError = SignFailedError;
+function verify(options) {
+    const { challenge, metadata, origin, publicKey, rpId, signature } = options;
+    const { authenticatorData, clientDataJSON, userVerificationRequired } = metadata;
+    const authenticatorDataBytes = Bytes.fromHex(authenticatorData);
+    if (authenticatorDataBytes.length < 37)
+        return false;
+    if (rpId !== undefined) {
+        const rpIdHash = authenticatorDataBytes.slice(0, 32);
+        const expectedRpIdHash = Hash.sha256(Hex.fromString(rpId), { as: 'Bytes' });
+        if (!Bytes.isEqual(rpIdHash, expectedRpIdHash))
+            return false;
+    }
+    const flag = authenticatorDataBytes[32];
+    if ((flag & 0x01) !== 0x01)
+        return false;
+    if (userVerificationRequired && (flag & 0x04) !== 0x04)
+        return false;
+    if ((flag & 0x08) !== 0x08 && (flag & 0x10) === 0x10)
+        return false;
+    const clientData = JSON.parse(clientDataJSON);
+    if (clientData.type !== 'webauthn.get')
+        return false;
+    if (!clientData.challenge ||
+        Hex.fromBytes(Base64.toBytes(clientData.challenge)) !== challenge)
+        return false;
+    if (origin !== undefined) {
+        const origins = Array.isArray(origin) ? origin : [origin];
+        if (!origins.includes(clientData.origin))
+            return false;
+    }
+    const clientDataJSONHash = Hash.sha256(Bytes.fromString(clientDataJSON), {
+        as: 'Bytes',
+    });
+    const payload = Bytes.concat(authenticatorDataBytes, clientDataJSONHash);
+    return P256.verify({
+        hash: true,
+        payload,
+        publicKey,
+        signature,
+    });
+}
+//# sourceMappingURL=Authentication.js.map

package/_cjs/webauthn/Authentication.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"Authentication.js","sourceRoot":"","sources":["../../webauthn/Authentication.ts"],"names":[],"mappings":";;;AAoDA,gDAyBC;AAoCD,kDAoBC;AA0BD,gCAiCC;AA4DD,wCAyCC;AA2DD,4CAyBC;AA4BD,8CAyBC;AAyCD,oBA8CC;AAmED,wBA6DC;AAroBD,4CAA2C;AAC3C,0CAAyC;AACzC,4CAA2C;AAC3C,wCAAuC;AACvC,sCAAqC;AAErC,yDAAwD;AACxD,wCAAuC;AAEvC,kDAAiD;AACjD,yDAA4E;AAE5E,kDAO4B;AAiC5B,SAAgB,kBAAkB,CAChC,OAA6C;IAE7C,MAAM,EAAE,SAAS,EAAE,GAAG,IAAI,EAAE,GAAG,OAAO,CAAA;IACtC,IAAI,CAAC,SAAS;QAAE,OAAO,EAAE,GAAG,IAAI,EAAE,CAAA;IAElC,MAAM,EAAE,gBAAgB,EAAE,SAAS,EAAE,UAAU,EAAE,GAAG,aAAa,EAAE,GACjE,SAAS,CAAA;IAEX,OAAO;QACL,GAAG,IAAI;QACP,SAAS,EAAE;YACT,GAAG,aAAa;YAChB,SAAS,EAAE,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC;YACnC,GAAG,CAAC,gBAAgB,IAAI;gBACtB,gBAAgB,EAAE,gBAAgB,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,CAAC,CAAC;oBAC3D,GAAG,IAAI;oBACP,EAAE,EAAE,MAAM,CAAC,OAAO,CAAC,EAAE,CAAC;iBACvB,CAAC,CAAC;aACJ,CAAC;YACF,GAAG,CAAC,UAAU,IAAI;gBAChB,UAAU,EAAE,IAAA,gCAAqB,EAAC,UAAU,CAAC;aAC9C,CAAC;SACH;KACF,CAAA;AACH,CAAC;AAoCD,SAAgB,mBAAmB,CAAC,QAAwB;IAC1D,MAAM,EAAE,EAAE,EAAE,QAAQ,EAAE,GAAG,EAAE,SAAS,EAAE,GAAG,QAAQ,CAAA;IAEjD,MAAM,WAAW,GAAgC,EAAE,CAAA;IACnD,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC;QACrD,WAAW,CAAC,GAAG,CAAC,GAAG,IAAA,6BAAkB,EAAC,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,CAAA;IAE9D,OAAO;QACL,EAAE;QACF,QAAQ;QACR,GAAG,EAAE;YACH,EAAE,EAAE,GAAG,CAAC,EAAE;YACV,IAAI,EAAE,GAAG,CAAC,IAAI;YACd,uBAAuB,EAAE,GAAG,CAAC,uBAAuB;YACpD,KAAK,EAAE,IAAA,6BAAkB,EAAC,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;YACpD,QAAQ,EAAE,WAAqD;YAC/D,yBAAyB,EAAE,GAAG,EAAE,CAAC,CAAC,EAAE,CAAC;SACtC;QACD,SAAS,EAAE,SAAS,CAAC,IAAI,CAAC,SAAS,CAAC;KACrC,CAAA;AACH,CAAC;AA0BD,SAAgB,UAAU,CACxB,OAA2B;IAE3B,MAAM,EACJ,YAAY,EACZ,SAAS,EACT,UAAU,EACV,IAAI,GAAG,MAAM,CAAC,QAAQ,CAAC,QAAQ,EAC/B,gBAAgB,GAAG,UAAU,GAC9B,GAAG,OAAO,CAAA;IACX,OAAO;QACL,SAAS,EAAE;YACT,GAAG,CAAC,YAAY;gBACd,CAAC,CAAC;oBACE,gBAAgB,EAAE,KAAK,CAAC,OAAO,CAAC,YAAY,CAAC;wBAC3C,CAAC,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC;4BACxB,EAAE,EAAE,MAAM,CAAC,OAAO,CAAC,EAAE,CAAC;4BACtB,IAAI,EAAE,YAAY;yBACnB,CAAC,CAAC;wBACL,CAAC,CAAC;4BACE;gCACE,EAAE,EAAE,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC;gCAChC,IAAI,EAAE,YAAY;6BACnB;yBACF;iBACN;gBACH,CAAC,CAAC,EAAE,CAAC;YACP,SAAS,EAAE,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC;YACnC,GAAG,CAAC,UAAU,IAAI,EAAE,UAAU,EAAE,CAAC;YACjC,IAAI;YACJ,gBAAgB;SACjB;KACF,CAAA;AACH,CAAC;AA4DD,SAAgB,cAAc,CAC5B,OAA+B;IAE/B,MAAM,EACJ,SAAS,EACT,WAAW,EACX,eAAe,EACf,IAAI,EACJ,MAAM,EACN,IAAI,EACJ,SAAS,EACT,gBAAgB,GAAG,UAAU,GAC9B,GAAG,OAAO,CAAA;IAEX,MAAM,iBAAiB,GAAG,IAAA,uCAAoB,EAAC;QAC7C,IAAI;QACJ,IAAI;QACJ,SAAS;KACV,CAAC,CAAA;IACF,MAAM,cAAc,GAAG,IAAA,oCAAiB,EAAC;QACvC,SAAS;QACT,WAAW;QACX,eAAe;QACf,MAAM;KACP,CAAC,CAAA;IACF,MAAM,kBAAkB,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,UAAU,CAAC,cAAc,CAAC,CAAC,CAAA;IAEtE,MAAM,cAAc,GAAG,cAAc,CAAC,OAAO,CAAC,aAAa,CAAC,CAAA;IAC5D,MAAM,SAAS,GAAG,cAAc,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAA;IAElD,MAAM,QAAQ,GAAG;QACf,iBAAiB;QACjB,cAAc;QACd,cAAc;QACd,SAAS;QACT,wBAAwB,EAAE,gBAAgB,KAAK,UAAU;KAC1D,CAAA;IAED,MAAM,OAAO,GAAG,GAAG,CAAC,MAAM,CAAC,iBAAiB,EAAE,kBAAkB,CAAC,CAAA;IAEjE,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,CAAA;AAC9B,CAAC;AA2DD,SAAgB,gBAAgB,CAC9B,OAAuC;IAEvC,MAAM,EAAE,SAAS,EAAE,MAAM,EAAE,CAAC,EAAE,GAAG,IAAI,EAAE,GAAG,OAAO,CAAA;IACjD,IAAI,CAAC,SAAS;QAAE,OAAO,EAAE,GAAG,IAAI,EAAE,CAAA;IAElC,MAAM,EAAE,gBAAgB,EAAE,SAAS,EAAE,UAAU,EAAE,GAAG,aAAa,EAAE,GACjE,SAAS,CAAA;IAEX,OAAO;QACL,GAAG,IAAI;QACP,SAAS,EAAE;YACT,GAAG,aAAa;YAChB,SAAS,EAAE,GAAG,CAAC,SAAS,CAAC,IAAA,8BAAmB,EAAC,SAAS,CAAC,CAAC;YACxD,GAAG,CAAC,gBAAgB,IAAI;gBACtB,gBAAgB,EAAE,gBAAgB,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,CAAC,CAAC;oBAC3D,GAAG,IAAI;oBACP,EAAE,EAAE,MAAM,CAAC,SAAS,CAAC,IAAA,8BAAmB,EAAC,EAAE,CAAC,EAAE,2BAAgB,CAAC;iBAChE,CAAC,CAAC;aACJ,CAAC;YACF,GAAG,CAAC,UAAU,IAAI;gBAChB,UAAU,EAAE,IAAA,8BAAmB,EAAC,UAAU,CAAC;aAC5C,CAAC;SACH;KACF,CAAA;AACH,CAAC;AA4BD,SAAgB,iBAAiB,CAAC,QAAkB;IAClD,MAAM,EAAE,EAAE,EAAE,QAAQ,EAAE,GAAG,EAAE,SAAS,EAAE,GAAG,QAAQ,CAAA;IAEjD,MAAM,WAAW,GAAG,EAA4B,CAAA;IAChD,KAAK,MAAM,GAAG,IAAI,uBAAY,EAAE,CAAC;QAC/B,MAAM,KAAK,GAAI,GAAG,CAAC,QAA+C,CAAC,GAAG,CAAC,CAAA;QACvE,IAAI,KAAK,YAAY,WAAW;YAC9B,WAAW,CAAC,GAAG,CAAC,GAAG,MAAM,CAAC,SAAS,CACjC,IAAI,UAAU,CAAC,KAAK,CAAC,EACrB,2BAAgB,CACjB,CAAA;IACL,CAAC;IAED,OAAO;QACL,EAAE;QACF,QAAQ;QACR,GAAG,EAAE;YACH,EAAE,EAAE,GAAG,CAAC,EAAE;YACV,IAAI,EAAE,GAAG,CAAC,IAAI;YACd,uBAAuB,EAAE,GAAG,CAAC,uBAAuB;YACpD,KAAK,EAAE,MAAM,CAAC,SAAS,CAAC,IAAA,8BAAmB,EAAC,GAAG,CAAC,KAAK,CAAC,EAAE,2BAAgB,CAAC;YACzE,QAAQ,EAAE,WAA2D;SACtE;QACD,SAAS,EAAE,SAAS,CAAC,KAAK,CAAC,SAAS,CAAC;KACtC,CAAA;AACH,CAAC;AAyCM,KAAK,UAAU,IAAI,CAAC,OAAqB;IAC9C,MAAM,EACJ,KAAK,GAAG,MAAM,CAAC,SAAS,CAAC,WAAW,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,WAAW,CAAC,EAC3E,GAAG,IAAI,EACR,GAAG,OAAO,CAAA;IACX,MAAM,cAAc,GAClB,WAAW,IAAI,IAAI;QACjB,CAAC,CAAE,IAAuC;QAC1C,CAAC,CAAC,UAAU,CAAC,IAAa,CAAC,CAAA;IAC/B,IAAI,CAAC;QACH,MAAM,UAAU,GAAG,CAAC,MAAM,KAAK,CAC7B,cAAuB,CACxB,CAA8B,CAAA;QAC/B,IAAI,CAAC,UAAU;YAAE,MAAM,IAAI,eAAe,EAAE,CAAA;QAC5C,MAAM,QAAQ,GAAG,UAAU,CAAC,QAA0C,CAAA;QAEtE,MAAM,cAAc,GAAG,MAAM,CAAC,YAAY,CACxC,GAAG,IAAI,UAAU,CAAC,QAAQ,CAAC,cAAc,CAAC,CAC3C,CAAA;QACD,MAAM,cAAc,GAAG,cAAc,CAAC,OAAO,CAAC,aAAa,CAAC,CAAA;QAC5D,MAAM,SAAS,GAAG,cAAc,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAA;QAElD,MAAM,SAAS,GAAG,QAAQ,CAAC,kBAAkB,CAC3C,IAAI,UAAU,CAAC,QAAQ,CAAC,SAAS,CAAC,CACnC,CAAA;QAED,OAAO;YACL,EAAE,EAAE,UAAU,CAAC,EAAE;YACjB,QAAQ,EAAE;gBACR,iBAAiB,EAAE,GAAG,CAAC,SAAS,CAC9B,IAAI,UAAU,CAAC,QAAQ,CAAC,iBAAiB,CAAC,CAC3C;gBACD,cAAc;gBACd,cAAc;gBACd,SAAS;gBACT,wBAAwB,EACtB,cAAc,CAAC,SAAU,CAAC,gBAAgB,KAAK,UAAU;aAC5D;YACD,SAAS;YACT,GAAG,EAAE,UAAU;SAChB,CAAA;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,IAAI,eAAe,CAAC;YACxB,KAAK,EAAE,KAAc;SACtB,CAAC,CAAA;IACJ,CAAC;AACH,CAAC;AA6BD,MAAa,eAAgB,SAAQ,MAAM,CAAC,SAAgB;IAG1D,YAAY,EAAE,KAAK,KAAoC,EAAE;QACvD,KAAK,CAAC,+BAA+B,EAAE;YACrC,KAAK;SACN,CAAC,CAAA;QALc;;;;mBAAO,gCAAgC;WAAA;IAMzD,CAAC;CACF;AARD,0CAQC;AA8BD,SAAgB,MAAM,CAAC,OAAuB;IAC5C,MAAM,EAAE,SAAS,EAAE,QAAQ,EAAE,MAAM,EAAE,SAAS,EAAE,IAAI,EAAE,SAAS,EAAE,GAAG,OAAO,CAAA;IAC3E,MAAM,EAAE,iBAAiB,EAAE,cAAc,EAAE,wBAAwB,EAAE,GACnE,QAAQ,CAAA;IAEV,MAAM,sBAAsB,GAAG,KAAK,CAAC,OAAO,CAAC,iBAAiB,CAAC,CAAA;IAG/D,IAAI,sBAAsB,CAAC,MAAM,GAAG,EAAE;QAAE,OAAO,KAAK,CAAA;IAGpD,IAAI,IAAI,KAAK,SAAS,EAAE,CAAC;QACvB,MAAM,QAAQ,GAAG,sBAAsB,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAA;QACpD,MAAM,gBAAgB,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,EAAE,EAAE,EAAE,OAAO,EAAE,CAAC,CAAA;QAC3E,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,QAAQ,EAAE,gBAAgB,CAAC;YAAE,OAAO,KAAK,CAAA;IAC9D,CAAC;IAED,MAAM,IAAI,GAAG,sBAAsB,CAAC,EAAE,CAAE,CAAA;IAGxC,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC,KAAK,IAAI;QAAE,OAAO,KAAK,CAAA;IAKxC,IAAI,wBAAwB,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC,KAAK,IAAI;QAAE,OAAO,KAAK,CAAA;IAIpE,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC,KAAK,IAAI,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC,KAAK,IAAI;QAAE,OAAO,KAAK,CAAA;IAGlE,MAAM,UAAU,GAAG,IAAI,CAAC,KAAK,CAAC,cAAc,CAAC,CAAA;IAG7C,IAAI,UAAU,CAAC,IAAI,KAAK,cAAc;QAAE,OAAO,KAAK,CAAA;IAGpD,IACE,CAAC,UAAU,CAAC,SAAS;QACrB,GAAG,CAAC,SAAS,CAAC,MAAM,CAAC,OAAO,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC,KAAK,SAAS;QAEjE,OAAO,KAAK,CAAA;IAGd,IAAI,MAAM,KAAK,SAAS,EAAE,CAAC;QACzB,MAAM,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAA;QACzD,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAC,MAAM,CAAC;YAAE,OAAO,KAAK,CAAA;IACxD,CAAC;IAED,MAAM,kBAAkB,GAAG,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,cAAc,CAAC,EAAE;QACvE,EAAE,EAAE,OAAO;KACZ,CAAC,CAAA;IACF,MAAM,OAAO,GAAG,KAAK,CAAC,MAAM,CAAC,sBAAsB,EAAE,kBAAkB,CAAC,CAAA;IAExE,OAAO,IAAI,CAAC,MAAM,CAAC;QACjB,IAAI,EAAE,IAAI;QACV,OAAO;QACP,SAAS;QACT,SAAS;KACV,CAAC,CAAA;AACJ,CAAC"}

package/_cjs/webauthn/Authenticator.js

@@ -0,0 +1,55 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getAuthenticatorData = getAuthenticatorData;
+exports.getSignCount = getSignCount;
+exports.getClientDataJSON = getClientDataJSON;
+exports.getAttestationObject = getAttestationObject;
+const Base64 = require("../core/Base64.js");
+const Bytes = require("../core/Bytes.js");
+const Cbor = require("../core/Cbor.js");
+const CoseKey = require("../core/CoseKey.js");
+const Hash = require("../core/Hash.js");
+const Hex = require("../core/Hex.js");
+function getAuthenticatorData(options = {}) {
+    const { credential, flag = 5, rpId = window.location.hostname, signCount = 0, } = options;
+    const rpIdHash = Hash.sha256(Hex.fromString(rpId));
+    const flag_bytes = Hex.fromNumber(flag, { size: 1 });
+    const signCount_bytes = Hex.fromNumber(signCount, { size: 4 });
+    const base = Hex.concat(rpIdHash, flag_bytes, signCount_bytes);
+    if (!credential)
+        return base;
+    const aaguid = Hex.fromBytes(new Uint8Array(16));
+    const credentialId = Hex.fromBytes(credential.id);
+    const credIdLen = Hex.fromNumber(credential.id.length, { size: 2 });
+    const coseKey = CoseKey.fromPublicKey(credential.publicKey);
+    return Hex.concat(base, aaguid, credIdLen, credentialId, coseKey);
+}
+function getSignCount(authenticatorData) {
+    const bytes = Bytes.fromHex(authenticatorData);
+    if (bytes.length < 37)
+        return 0;
+    return (((bytes[33] << 24) |
+        (bytes[34] << 16) |
+        (bytes[35] << 8) |
+        bytes[36]) >>>
+        0);
+}
+function getClientDataJSON(options) {
+    const { challenge, crossOrigin = false, extraClientData, origin = window.location.origin, type = 'webauthn.get', } = options;
+    return JSON.stringify({
+        type,
+        challenge: Base64.fromHex(challenge, { url: true, pad: false }),
+        origin,
+        crossOrigin,
+        ...extraClientData,
+    });
+}
+function getAttestationObject(options) {
+    const { attStmt = {}, authData, fmt = 'none' } = options;
+    return Cbor.encode({
+        fmt,
+        attStmt,
+        authData: Hex.toBytes(authData),
+    });
+}
+//# sourceMappingURL=Authenticator.js.map

package/_cjs/webauthn/Authenticator.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"Authenticator.js","sourceRoot":"","sources":["../../webauthn/Authenticator.ts"],"names":[],"mappings":";;AA0DA,oDA2BC;AA4CD,oCAUC;AAgCD,8CAgBC;AAiDD,oDASC;AArPD,4CAA2C;AAC3C,0CAAyC;AACzC,wCAAuC;AACvC,8CAA6C;AAE7C,wCAAuC;AACvC,sCAAqC;AAoDrC,SAAgB,oBAAoB,CAClC,UAAwC,EAAE;IAE1C,MAAM,EACJ,UAAU,EACV,IAAI,GAAG,CAAC,EACR,IAAI,GAAG,MAAM,CAAC,QAAQ,CAAC,QAAQ,EAC/B,SAAS,GAAG,CAAC,GACd,GAAG,OAAO,CAAA;IACX,MAAM,QAAQ,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAA;IAClD,MAAM,UAAU,GAAG,GAAG,CAAC,UAAU,CAAC,IAAI,EAAE,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC,CAAA;IACpD,MAAM,eAAe,GAAG,GAAG,CAAC,UAAU,CAAC,SAAS,EAAE,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC,CAAA;IAC9D,MAAM,IAAI,GAAG,GAAG,CAAC,MAAM,CAAC,QAAQ,EAAE,UAAU,EAAE,eAAe,CAAC,CAAA;IAE9D,IAAI,CAAC,UAAU;QAAE,OAAO,IAAI,CAAA;IAG5B,MAAM,MAAM,GAAG,GAAG,CAAC,SAAS,CAAC,IAAI,UAAU,CAAC,EAAE,CAAC,CAAC,CAAA;IAGhD,MAAM,YAAY,GAAG,GAAG,CAAC,SAAS,CAAC,UAAU,CAAC,EAAE,CAAC,CAAA;IACjD,MAAM,SAAS,GAAG,GAAG,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC,MAAM,EAAE,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC,CAAA;IAGnE,MAAM,OAAO,GAAG,OAAO,CAAC,aAAa,CAAC,UAAU,CAAC,SAAS,CAAC,CAAA;IAE3D,OAAO,GAAG,CAAC,MAAM,CAAC,IAAI,EAAE,MAAM,EAAE,SAAS,EAAE,YAAY,EAAE,OAAO,CAAC,CAAA;AACnE,CAAC;AA4CD,SAAgB,YAAY,CAAC,iBAA0B;IACrD,MAAM,KAAK,GAAG,KAAK,CAAC,OAAO,CAAC,iBAAiB,CAAC,CAAA;IAC9C,IAAI,KAAK,CAAC,MAAM,GAAG,EAAE;QAAE,OAAO,CAAC,CAAA;IAC/B,OAAO,CACL,CAAC,CAAC,KAAK,CAAC,EAAE,CAAE,IAAI,EAAE,CAAC;QACjB,CAAC,KAAK,CAAC,EAAE,CAAE,IAAI,EAAE,CAAC;QAClB,CAAC,KAAK,CAAC,EAAE,CAAE,IAAI,CAAC,CAAC;QACjB,KAAK,CAAC,EAAE,CAAE,CAAC;QACb,CAAC,CACF,CAAA;AACH,CAAC;AAgCD,SAAgB,iBAAiB,CAAC,OAAkC;IAClE,MAAM,EACJ,SAAS,EACT,WAAW,GAAG,KAAK,EACnB,eAAe,EACf,MAAM,GAAG,MAAM,CAAC,QAAQ,CAAC,MAAM,EAC/B,IAAI,GAAG,cAAc,GACtB,GAAG,OAAO,CAAA;IAEX,OAAO,IAAI,CAAC,SAAS,CAAC;QACpB,IAAI;QACJ,SAAS,EAAE,MAAM,CAAC,OAAO,CAAC,SAAS,EAAE,EAAE,GAAG,EAAE,IAAI,EAAE,GAAG,EAAE,KAAK,EAAE,CAAC;QAC/D,MAAM;QACN,WAAW;QACX,GAAG,eAAe;KACnB,CAAC,CAAA;AACJ,CAAC;AAiDD,SAAgB,oBAAoB,CAClC,OAAqC;IAErC,MAAM,EAAE,OAAO,GAAG,EAAE,EAAE,QAAQ,EAAE,GAAG,GAAG,MAAM,EAAE,GAAG,OAAO,CAAA;IACxD,OAAO,IAAI,CAAC,MAAM,CAAC;QACjB,GAAG;QACH,OAAO;QACP,QAAQ,EAAE,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC;KAChC,CAAC,CAAA;AACJ,CAAC"}

package/_cjs/webauthn/Credential.js

@@ -0,0 +1,53 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.serialize = serialize;
+exports.deserialize = deserialize;
+const Base64 = require("../core/Base64.js");
+const PublicKey = require("../core/PublicKey.js");
+const utils_js_1 = require("./internal/utils.js");
+function serialize(credential) {
+    const { attestationObject, clientDataJSON, id, publicKey, raw } = credential;
+    const response = {};
+    for (const key of utils_js_1.responseKeys) {
+        const value = raw.response[key];
+        if (value instanceof ArrayBuffer)
+            response[key] = Base64.fromBytes(new Uint8Array(value), utils_js_1.base64UrlOptions);
+    }
+    return {
+        attestationObject: Base64.fromBytes(new Uint8Array(attestationObject), utils_js_1.base64UrlOptions),
+        clientDataJSON: Base64.fromBytes(new Uint8Array(clientDataJSON), utils_js_1.base64UrlOptions),
+        id,
+        publicKey: PublicKey.toHex(publicKey),
+        raw: {
+            id: raw.id,
+            type: raw.type,
+            authenticatorAttachment: raw.authenticatorAttachment,
+            rawId: Base64.fromBytes((0, utils_js_1.bufferSourceToBytes)(raw.rawId), utils_js_1.base64UrlOptions),
+            response: response,
+        },
+    };
+}
+function deserialize(credential) {
+    const { attestationObject, clientDataJSON, id, publicKey, raw } = credential;
+    const response = Object.create(null);
+    for (const key of utils_js_1.responseKeys) {
+        const value = raw.response[key];
+        if (value)
+            response[key] = (0, utils_js_1.bytesToArrayBuffer)(Base64.toBytes(value));
+    }
+    return {
+        attestationObject: (0, utils_js_1.bytesToArrayBuffer)(Base64.toBytes(attestationObject)),
+        clientDataJSON: (0, utils_js_1.bytesToArrayBuffer)(Base64.toBytes(clientDataJSON)),
+        id,
+        publicKey: PublicKey.from(publicKey),
+        raw: {
+            id: raw.id,
+            type: raw.type,
+            authenticatorAttachment: raw.authenticatorAttachment,
+            rawId: (0, utils_js_1.bytesToArrayBuffer)(Base64.toBytes(raw.rawId)),
+            response: response,
+            getClientExtensionResults: () => ({}),
+        },
+    };
+}
+//# sourceMappingURL=Credential.js.map

package/_cjs/webauthn/Credential.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"Credential.js","sourceRoot":"","sources":["../../webauthn/Credential.ts"],"names":[],"mappings":";;AAkDA,8BA6BC;AAoCD,kCAuBC;AA1ID,4CAA2C;AAI3C,kDAAiD;AACjD,kDAK4B;AAwC5B,SAAgB,SAAS,CAAC,UAAsB;IAC9C,MAAM,EAAE,iBAAiB,EAAE,cAAc,EAAE,EAAE,EAAE,SAAS,EAAE,GAAG,EAAE,GAAG,UAAU,CAAA;IAE5E,MAAM,QAAQ,GAAG,EAA4B,CAAA;IAC7C,KAAK,MAAM,GAAG,IAAI,uBAAY,EAAE,CAAC;QAC/B,MAAM,KAAK,GAAI,GAAG,CAAC,QAA+C,CAAC,GAAG,CAAC,CAAA;QACvE,IAAI,KAAK,YAAY,WAAW;YAC9B,QAAQ,CAAC,GAAG,CAAC,GAAG,MAAM,CAAC,SAAS,CAAC,IAAI,UAAU,CAAC,KAAK,CAAC,EAAE,2BAAgB,CAAC,CAAA;IAC7E,CAAC;IAED,OAAO;QACL,iBAAiB,EAAE,MAAM,CAAC,SAAS,CACjC,IAAI,UAAU,CAAC,iBAAiB,CAAC,EACjC,2BAAgB,CACjB;QACD,cAAc,EAAE,MAAM,CAAC,SAAS,CAC9B,IAAI,UAAU,CAAC,cAAc,CAAC,EAC9B,2BAAgB,CACjB;QACD,EAAE;QACF,SAAS,EAAE,SAAS,CAAC,KAAK,CAAC,SAAS,CAAC;QACrC,GAAG,EAAE;YACH,EAAE,EAAE,GAAG,CAAC,EAAE;YACV,IAAI,EAAE,GAAG,CAAC,IAAI;YACd,uBAAuB,EAAE,GAAG,CAAC,uBAAuB;YACpD,KAAK,EAAE,MAAM,CAAC,SAAS,CAAC,IAAA,8BAAmB,EAAC,GAAG,CAAC,KAAK,CAAC,EAAE,2BAAgB,CAAC;YACzE,QAAQ,EAAE,QAAwD;SACnE;KACF,CAAA;AACH,CAAC;AAoCD,SAAgB,WAAW,CAAC,UAA4B;IACtD,MAAM,EAAE,iBAAiB,EAAE,cAAc,EAAE,EAAE,EAAE,SAAS,EAAE,GAAG,EAAE,GAAG,UAAU,CAAA;IAE5E,MAAM,QAAQ,GAAG,MAAM,CAAC,MAAM,CAAC,IAAI,CAAgC,CAAA;IACnE,KAAK,MAAM,GAAG,IAAI,uBAAY,EAAE,CAAC;QAC/B,MAAM,KAAK,GAAI,GAAG,CAAC,QAA8C,CAAC,GAAG,CAAC,CAAA;QACtE,IAAI,KAAK;YAAE,QAAQ,CAAC,GAAG,CAAC,GAAG,IAAA,6BAAkB,EAAC,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,CAAA;IACtE,CAAC;IAED,OAAO;QACL,iBAAiB,EAAE,IAAA,6BAAkB,EAAC,MAAM,CAAC,OAAO,CAAC,iBAAiB,CAAC,CAAC;QACxE,cAAc,EAAE,IAAA,6BAAkB,EAAC,MAAM,CAAC,OAAO,CAAC,cAAc,CAAC,CAAC;QAClE,EAAE;QACF,SAAS,EAAE,SAAS,CAAC,IAAI,CAAC,SAAS,CAAC;QACpC,GAAG,EAAE;YACH,EAAE,EAAE,GAAG,CAAC,EAAE;YACV,IAAI,EAAE,GAAG,CAAC,IAAI;YACd,uBAAuB,EAAE,GAAG,CAAC,uBAAuB;YACpD,KAAK,EAAE,IAAA,6BAAkB,EAAC,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;YACpD,QAAQ,EAAE,QAAkD;YAC5D,yBAAyB,EAAE,GAAG,EAAE,CAAC,CAAC,EAAE,CAAC;SACtC;KACF,CAAA;AACH,CAAC"}