-
Notifications
You must be signed in to change notification settings - Fork 2
/
passkey-api-client.ts
128 lines (106 loc) · 3.39 KB
/
passkey-api-client.ts
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
import {
AddAuthenticatorRequest,
AddAuthenticatorResponse,
AuthenticationOptsRequest,
AuthenticationOptsResponse,
ChallengeResponse,
PasskeyAuthenticatorResponse,
RegistrationOptsRequest,
RegistrationOptsResponse,
VerifyRequest,
VerifyResponse,
} from "./types";
type PasskeyApiClientOptions = {
baseUrl: string;
tenantId: string;
};
export class PasskeyApiClient {
tenantId: string;
baseUrl: string;
constructor({baseUrl, tenantId}: PasskeyApiClientOptions) {
this.tenantId = tenantId;
this.baseUrl = baseUrl;
}
async registrationOptions({
token,
username,
authenticatorAttachment,
}: {token: string} & RegistrationOptsRequest): Promise<RegistrationOptsResponse> {
const body: RegistrationOptsRequest = Boolean(authenticatorAttachment)
? {username, authenticatorAttachment}
: {username};
const response = fetch(`${this.baseUrl}/client/user-authenticators/passkey/registration-options`, {
method: "POST",
headers: this.buildHeaders(token),
body: JSON.stringify(body),
});
return (await response).json();
}
async authenticationOptions({
token,
challengeId,
}: {token?: string} & AuthenticationOptsRequest): Promise<AuthenticationOptsResponse> {
const body: AuthenticationOptsRequest = {challengeId};
const response = fetch(`${this.baseUrl}/client/user-authenticators/passkey/authentication-options`, {
method: "POST",
headers: this.buildHeaders(token),
body: JSON.stringify(body),
});
return (await response).json();
}
async addAuthenticator({
token,
challengeId,
registrationCredential,
}: {token: string} & AddAuthenticatorRequest): Promise<AddAuthenticatorResponse> {
const body: AddAuthenticatorRequest = {
challengeId,
registrationCredential,
};
const response = fetch(`${this.baseUrl}/client/user-authenticators/passkey`, {
method: "POST",
headers: this.buildHeaders(token),
body: JSON.stringify(body),
});
return (await response).json();
}
async verify({
token,
challengeId,
authenticationCredential,
deviceId,
}: {token?: string} & VerifyRequest): Promise<VerifyResponse> {
const body: VerifyRequest = {challengeId, authenticationCredential, deviceId};
const response = fetch(`${this.baseUrl}/client/verify/passkey`, {
method: "POST",
headers: this.buildHeaders(token),
body: JSON.stringify(body),
});
return (await response).json();
}
async getPasskeyAuthenticator(credentialId: string): Promise<PasskeyAuthenticatorResponse> {
const response = await fetch(`${this.baseUrl}/client/user-authenticators/passkey?credentialId=${credentialId}`, {
method: "GET",
headers: this.buildHeaders(),
});
if (!response.ok) {
throw new Error(response.statusText);
}
return response.json();
}
async challenge(action: string): Promise<ChallengeResponse> {
const response = fetch(`${this.baseUrl}/client/challenge`, {
method: "POST",
headers: this.buildHeaders(),
body: JSON.stringify({action}),
});
return (await response).json();
}
private buildHeaders(token?: string) {
const authorizationHeader = token ? `Bearer ${token}` : `Basic ${window.btoa(encodeURIComponent(this.tenantId))}`;
return {
"Content-Type": "application/json",
Authorization: authorizationHeader,
};
}
}