Skip to content

Commit

Permalink
chore(sdk-api): extract userId from userHandle for passkeys
Browse files Browse the repository at this point in the history
Ticket: WP-2592

TICKET: WP-2592
  • Loading branch information
pranavjain97 committed Sep 27, 2024
1 parent 6b4b222 commit ce00eb4
Show file tree
Hide file tree
Showing 2 changed files with 17 additions and 23 deletions.
35 changes: 17 additions & 18 deletions modules/sdk-api/src/bitgoAPI.ts
Original file line number Diff line number Diff line change
Expand Up @@ -47,7 +47,6 @@ import {
AddAccessTokenOptions,
AddAccessTokenResponse,
AuthenticateOptions,
AuthenticateWithPasskeyOptions,
AuthenticateWithAuthCodeOptions,
BitGoAPIOptions,
BitGoJson,
Expand Down Expand Up @@ -777,26 +776,26 @@ export class BitGoAPI implements BitGoBase {
* Validate the passkey response is in the expected format
* Should be as is returned from navigator.credentials.get()
*/
validateWebauthnResponse(params: AuthenticateWithPasskeyOptions): void {
if (!_.isString(params.username)) {
throw new Error('expected string username');
}
const webauthnResponse = JSON.parse(params.webauthnResponse);
if (!webauthnResponse && !webauthnResponse.response) {
validatePasskeyResponse(webauthnResponse: string): void {
const parsedWebauthnResponse = JSON.parse(webauthnResponse);
if (!parsedWebauthnResponse && !parsedWebauthnResponse.response) {
throw new Error('unexpected webauthnResponse');
}
if (!_.isString(webauthnResponse.id)) {
if (!_.isString(parsedWebauthnResponse.id)) {
throw new Error('id is missing');
}
if (!_.isString(webauthnResponse.response.authenticatorData)) {
if (!_.isString(parsedWebauthnResponse.response.authenticatorData)) {
throw new Error('authenticatorData is missing');
}
if (!_.isString(webauthnResponse.response.clientDataJSON)) {
if (!_.isString(parsedWebauthnResponse.response.clientDataJSON)) {
throw new Error('clientDataJSON is missing');
}
if (!_.isString(webauthnResponse.response.signature)) {
if (!_.isString(parsedWebauthnResponse.response.signature)) {
throw new Error('signature is missing');
}
if (!_.isString(parsedWebauthnResponse.response.userHandle)) {
throw new Error('userHandle is missing');
}
}

/**
Expand Down Expand Up @@ -945,22 +944,22 @@ export class BitGoAPI implements BitGoBase {
/**
* Login to the bitgo platform with passkey.
*/
async authenticateWithPasskey(params: AuthenticateWithPasskeyOptions): Promise<LoginResponse | any> {
async authenticateWithPasskey(passkey: string): Promise<LoginResponse | any> {
try {
if (!_.isObject(params)) {
throw new Error('required object params');
}

if (this._token) {
return new Error('already logged in');
}

const authUrl = this.microservicesUrl('/api/auth/v1/session');
const request = this.post(authUrl);

this.validateWebauthnResponse(params);
this.validatePasskeyResponse(passkey);
const userId = JSON.parse(passkey).response.userHandle;

const response: superagent.Response = await request.send(params);
const response: superagent.Response = await request.send({
passkey: passkey,
userId: userId,
});
// extract body and user information
const body = response.body;
this._user = body.user;
Expand Down
5 changes: 0 additions & 5 deletions modules/sdk-api/src/types.ts
Original file line number Diff line number Diff line change
Expand Up @@ -104,11 +104,6 @@ export interface AuthenticateOptions {
forReset2FA?: boolean;
}

export interface AuthenticateWithPasskeyOptions {
username: string;
webauthnResponse: string;
}

export interface ProcessedAuthenticationOptions {
email: string;
password: string;
Expand Down

0 comments on commit ce00eb4

Please sign in to comment.