[EC-598] feat: extend return from authenticator

2025-12-22 11:13:46 +00:00 · 2023-03-30 15:57:46 +02:00
parent 6fd5801739
commit 43a13cb451
3 changed files with 36 additions and 13 deletions
--- a/libs/common/src/webauthn/services/fido2-authenticator.service.ts
+++ b/libs/common/src/webauthn/services/fido2-authenticator.service.ts
@@ -10,6 +10,7 @@ import {
  Fido2AutenticatorErrorCode,
  Fido2AuthenticatorGetAssertionParams,
  Fido2AuthenticatorGetAssertionResult,
+  Fido2AuthenticatorMakeCredentialResult,
  Fido2AuthenticatorMakeCredentialsParams,
  Fido2AuthenticatorService as Fido2AuthenticatorServiceAbstraction,
 } from "../abstractions/fido2-authenticator.service.abstraction";
@@ -35,7 +36,9 @@ export class Fido2AuthenticatorService implements Fido2AuthenticatorServiceAbstr
    private cipherService: CipherService,
    private userInterface: Fido2UserInterfaceService
  ) {}
-  async makeCredential(params: Fido2AuthenticatorMakeCredentialsParams): Promise<Uint8Array> {
+  async makeCredential(
+    params: Fido2AuthenticatorMakeCredentialsParams
+  ): Promise<Fido2AuthenticatorMakeCredentialResult> {
    if (params.credTypesAndPubKeyAlgs.every((p) => p.alg !== Fido2AlgorithmIdentifier.ES256)) {
      throw new Fido2AutenticatorError(Fido2AutenticatorErrorCode.NotSupported);
    }
@@ -116,22 +119,29 @@ export class Fido2AuthenticatorService implements Fido2AuthenticatorServiceAbstr
      }
    }

+    const credentialId = params.requireResidentKey ? cipher.id : cipher.fido2Key.nonDiscoverableId;
+    const authData = await generateAuthData({
+      rpId: params.rpEntity.id,
+      credentialId,
+      counter: cipher.fido2Key.counter,
+      userPresence: true,
+      userVerification: false,
+      keyPair,
+    });
    const attestationObject = new Uint8Array(
      CBOR.encode({
        fmt: "none",
        attStmt: {},
-        authData: await generateAuthData({
-          rpId: params.rpEntity.id,
-          credentialId: params.requireResidentKey ? cipher.id : cipher.fido2Key.nonDiscoverableId,
-          counter: cipher.fido2Key.counter,
-          userPresence: true,
-          userVerification: false,
-          keyPair,
-        }),
+        authData,
      })
    );

-    return attestationObject;
+    return {
+      credentialId: Fido2Utils.stringToBuffer(credentialId),
+      attestationObject,
+      authData,
+      publicKeyAlgorithm: -7,
+    };
  }

  async getAssertion(