npm - shogun-core - Versions diffs - 6.3.2 → 6.3.4 - Mend

shogun-core 6.3.2 → 6.3.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/dist/browser/shogun-core.js +22 -17
package/dist/browser/shogun-core.js.map +1 -1
package/dist/src/index.js +1 -1
package/dist/src/plugins/webauthn/webauthn.js +1 -1
package/dist/src/plugins/webauthn/webauthnPlugin.js +21 -16
package/dist/tsconfig.tsbuildinfo +1 -1
package/package.json +1 -1

package/dist/src/index.js CHANGED Viewed

@@ -1,6 +1,6 @@
 // Import polyfills FIRST before any other imports
 // This ensures Buffer and other Node.js polyfills are available
-import "./polyfills";
+import "./polyfills.js";
 import { ShogunCore } from "./core.js";
 import { RxJS, crypto, derive, GunErrors, DataBase } from "./gundb/db.js";
 // Gun and SEA imports removed - users should import them directly from 'gun' package

package/dist/src/plugins/webauthn/webauthn.js CHANGED Viewed

@@ -77,7 +77,7 @@ import { deriveCredentialsFromMnemonic } from "../../utils/seedPhrase.js";
 var DEFAULT_CONFIG = {
     rpName: "Shogun Wallet",
     timeout: 60000,
-    userVerification: "preferred",
+    userVerification: "required",
     attestation: "none",
     authenticatorAttachment: "platform",
     requireResidentKey: false,

package/dist/src/plugins/webauthn/webauthnPlugin.js CHANGED Viewed

@@ -496,11 +496,13 @@ var WebauthnPlugin = /** @class */ (function (_super) {
      */
     WebauthnPlugin.prototype.login = function (username) {
         return __awaiter(this, void 0, void 0, function () {
-            var core, _a, authenticator, pub, credentials, error_8;
+            var core, credentials_1, authenticator, error_8;
+            var _this = this;
+            var _a;
             return __generator(this, function (_b) {
                 switch (_b.label) {
                     case 0:
-                        _b.trys.push([0, 6, , 7]);
+                        _b.trys.push([0, 5, , 6]);
                         core = this.assertInitialized();
                         if (!username) {
                             throw new Error("Username required for WebAuthn login");
@@ -508,22 +510,25 @@ var WebauthnPlugin = /** @class */ (function (_super) {
                         if (!this.isSupported()) {
                             throw new Error("WebAuthn is not supported by this browser");
                         }
-                        return [4 /*yield*/, this.setupConsistentOneshotSigning(username)];
+                        return [4 /*yield*/, this.generateCredentials(username, null, true)];
                     case 1:
-                        _a = (_b.sent()), authenticator = _a.authenticator, pub = _a.pub;
-                        if (!core.authenticate) return [3 /*break*/, 3];
-                        return [4 /*yield*/, core.authenticate(username, authenticator, pub)];
-                    case 2: return [2 /*return*/, _b.sent()];
-                    case 3: return [4 /*yield*/, this.generateCredentials(username, null, true)];
-                    case 4:
-                        credentials = _b.sent();
-                        if (!(credentials === null || credentials === void 0 ? void 0 : credentials.success)) {
-                            throw new Error((credentials === null || credentials === void 0 ? void 0 : credentials.error) || "WebAuthn verification failed");
+                        credentials_1 = _b.sent();
+                        if (!(credentials_1 === null || credentials_1 === void 0 ? void 0 : credentials_1.success) || !credentials_1.key) {
+                            throw new Error((credentials_1 === null || credentials_1 === void 0 ? void 0 : credentials_1.error) || "WebAuthn verification failed");
                         }
+                        // Ensure we mark the authentication method before attempting login
                         core.setAuthMethod("webauthn");
-                        return [4 /*yield*/, core.login(username, "", credentials.key)];
-                    case 5: return [2 /*return*/, _b.sent()];
-                    case 6:
+                        if (!core.authenticate) return [3 /*break*/, 3];
+                        authenticator = function () { return __awaiter(_this, void 0, void 0, function () { return __generator(this, function (_a) {
+                            return [2 /*return*/, credentials_1];
+                        }); }); };
+                        return [4 /*yield*/, core.authenticate(username, authenticator, (_a = credentials_1.key) === null || _a === void 0 ? void 0 : _a.pub)];
+                    case 2: return [2 /*return*/, _b.sent()];
+                    case 3: return [4 /*yield*/, core.login(username, "", credentials_1.key)];
+                    case 4:
+                    // Login using the derived SEA pair, consistent with the signup flow
+                    return [2 /*return*/, _b.sent()];
+                    case 5:
                         error_8 = _b.sent();
                         console.error("Error during WebAuthn login: ".concat(error_8));
                         // Log but do not depend on handler return value
@@ -532,7 +537,7 @@ var WebauthnPlugin = /** @class */ (function (_super) {
                                 success: false,
                                 error: error_8.message || "Error during WebAuthn login",
                             }];
-                    case 7: return [2 /*return*/];
+                    case 6: return [2 /*return*/];
                 }
             });
         });