greg/webauthn
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Compare commits

base: greg:44ff0a94ad692564944d20decf35a171652b6d76
Branches Tags
greg:1.x
greg:1.2.3 greg:1.2.2 greg:v1.2.1 greg:v1.2.0 greg:v1.1.5 greg:v1.1.4 greg:v1.1.3 greg:v1.1.2 greg:v1.1.1 greg:v1.1.0 greg:v1.0.0
...
compare: greg:1.2.3
Branches Tags
greg:1.x
greg:1.2.3 greg:1.2.2 greg:v1.2.1 greg:v1.2.0 greg:v1.1.5 greg:v1.1.4 greg:v1.1.3 greg:v1.1.2 greg:v1.1.1 greg:v1.1.0 greg:v1.0.0

2 Commits
44ff0a94ad ... 1.2.3

Author SHA1 Message Date
Gregory Letellier
cfab865c1d Fix userHandle null, and force using security key when windows hello is activated in windows 2024-02-02 09:43:38 +01:00
Kregs
b421096758 rename package 2024-02-01 19:00:44 +01:00
4 changed files with 13 additions and 3 deletions
Expand all files Collapse all files

7
composer.json
View File

@@ -1,5 +1,5 @@
{ {
"name": "laragear/webauthn", "name": "kletellier/webauthn",
"description": "Authenticate users with Passkeys: fingerprints, patterns and biometric data.", "description": "Authenticate users with Passkeys: fingerprints, patterns and biometric data.",
"type": "library", "type": "library",
"license": "MIT", "license": "MIT",
@@ -25,6 +25,11 @@
"email": "DarkGhostHunter@Gmail.com", "email": "DarkGhostHunter@Gmail.com",
"role": "Developer", "role": "Developer",
"homepage": "https://github.com/sponsors/DarkGhostHunter" "homepage": "https://github.com/sponsors/DarkGhostHunter"
},
{
"name": "Gregory Letellier",
"email": "register@gletellier.com",
"role": "Developer"
} }
], ],
"support": { "support": {

2
resources/js/webauthn.js
View File

@@ -269,7 +269,7 @@ class WebAuthn {
] ]
.filter(key => key in credentials.response) .filter(key => key in credentials.response)
.forEach(key => parseCredentials.response[key] = WebAuthn.#arrayToBase64String(credentials.response[key])); .forEach(key => parseCredentials.response[key] = WebAuthn.#arrayToBase64String(credentials.response[key]));
parseCredentials.response['userId'] = credentials.id;
return parseCredentials; return parseCredentials;
} }

2
src/Assertion/Creator/Pipes/AddConfiguration.php
View File

@@ -28,7 +28,7 @@ class AddConfiguration
public function handle(AssertionCreation $assertion, Closure $next): mixed public function handle(AssertionCreation $assertion, Closure $next): mixed
{ {
$assertion->json->set('timeout', $this->config->get('webauthn.challenge.timeout') * 1000); $assertion->json->set('timeout', $this->config->get('webauthn.challenge.timeout') * 1000);
$assertion->json->set('hints', ['security-key']); // Force security proposal for windows 10 and prevent Windows Hello
return $next($assertion); return $next($assertion);
} }
} }

5
src/Assertion/Validator/Pipes/CheckCredentialIsForUser.php
View File

@@ -71,6 +71,11 @@ class CheckCredentialIsForUser
protected function validateId(AssertionValidation $validation): void protected function validateId(AssertionValidation $validation): void
{ {
$handle = $validation->request->json('response.userHandle'); $handle = $validation->request->json('response.userHandle');
$userId = $validation->request->json('response.userId');
if(! $handle && $userId) {
return;
}
if (! $handle || ! hash_equals(Uuid::fromString($validation->credential->user_id)->getHex()->toString(), $handle)) { if (! $handle || ! hash_equals(Uuid::fromString($validation->credential->user_id)->getHex()->toString(), $handle)) {
throw AssertionException::make('User ID is not owner of the stored credential.'); throw AssertionException::make('User ID is not owner of the stored credential.');