mstar/linstrom
1
0
Fork 0
Code Issues 27 Pull requests Projects Releases Packages 1 Wiki Activity Actions

progress

Browse source 
server is launchable and passkey support works
This commit is contained in:
Melody Becker 2024-09-27 16:53:22 +02:00
parent ee172d84a8
commit c572066571
21 changed files with 857 additions and 40 deletions
Download patch file Download diff file Expand all files Collapse all files

110
pk-auth/script.js Normal file
View file

@ -0,0 +1,110 @@
document.getElementById("registerButton").addEventListener("click", register);
document.getElementById("loginButton").addEventListener("click", login);
function showMessage(message, isError = false) {
const messageElement = document.getElementById("message");
messageElement.textContent = message;
messageElement.style.color = isError ? "red" : "green";
}
async function register() {
// Retrieve the username from the input field
const username = document.getElementById("username").value;
try {
// Get registration options from your server. Here, we also receive the challenge.
const response = await fetch("/webauthn/passkey/registerBegin", {
method: "POST",
headers: { "Content-Type": "application/json" },
body: JSON.stringify({ username: username }),
});
// Check if the registration options are ok.
if (!response.ok) {
const msg = await response.json();
throw new Error(
"User already exists or failed to get registration options from server: " +
msg,
);
}
// Convert the registration options to JSON.
const options = await response.json();
console.log("registration start", options);
// This triggers the browser to display the passkey / WebAuthn modal (e.g. Face ID, Touch ID, Windows Hello).
// A new attestation is created. This also means a new public-private-key pair is created.
const attestationResponse = await SimpleWebAuthnBrowser.startRegistration(
options.publicKey,
);
console.log("Attempting to complete registration", attestationResponse);
// Send attestationResponse back to server for verification and storage.
const verificationResponse = await fetch(
"/webauthn/passkey/registerFinish",
{
method: "POST",
credentials: "same-origin",
headers: {
"Content-Type": "application/json",
},
body: JSON.stringify(attestationResponse),
},
);
const msg = await verificationResponse.json();
if (verificationResponse.ok) {
showMessage(msg, false);
} else {
showMessage(msg, true);
}
} catch (error) {
showMessage("Error: " + error.message, true);
}
}
async function login() {
// Retrieve the username from the input field
const username = document.getElementById("username").value;
try {
// Get login options from your server. Here, we also receive the challenge.
const response = await fetch("/webauthn/passkey/loginBegin", {
method: "POST",
headers: { "Content-Type": "application/json" },
body: JSON.stringify({ username: username }),
});
// Check if the login options are ok.
if (!response.ok) {
const msg = await response.json();
throw new Error("Failed to get login options from server: " + msg);
}
// Convert the login options to JSON.
const options = await response.json();
// This triggers the browser to display the passkey / WebAuthn modal (e.g. Face ID, Touch ID, Windows Hello).
// A new assertionResponse is created. This also means that the challenge has been signed.
const assertionResponse = await SimpleWebAuthnBrowser.startAuthentication(
options.publicKey,
);
// Send assertionResponse back to server for verification.
const verificationResponse = await fetch("/webauthn/passkey/loginFinish", {
method: "POST",
credentials: "same-origin",
headers: {
"Content-Type": "application/json",
},
body: JSON.stringify(assertionResponse),
});
const msg = await verificationResponse.json();
if (verificationResponse.ok) {
showMessage(msg, false);
} else {
showMessage(msg, true);
}
} catch (error) {
showMessage("Error: " + error.message, true);
}
}