diff options
| author | Matthew Miller <matthew@millerti.me> | 2020-07-29 22:18:04 -0700 |
|---|---|---|
| committer | Matthew Miller <matthew@millerti.me> | 2020-07-29 22:18:04 -0700 |
| commit | 94ad39e8da5e610295a94d4a762531ee7911be20 (patch) | |
| tree | 921b786528226fae2dcba15a92715d4da8349b69 | |
| parent | 3c33a7aaa7f6dd0e499b71059cb7a179686552da (diff) | |
Make attestation `challenge` optional
| -rw-r--r-- | packages/server/src/attestation/generateAttestationOptions.ts | 11 |
1 files changed, 7 insertions, 4 deletions
diff --git a/packages/server/src/attestation/generateAttestationOptions.ts b/packages/server/src/attestation/generateAttestationOptions.ts index ac1f812..84324d3 100644 --- a/packages/server/src/attestation/generateAttestationOptions.ts +++ b/packages/server/src/attestation/generateAttestationOptions.ts @@ -2,13 +2,16 @@ import type { PublicKeyCredentialCreationOptionsJSON, Base64URLString, } from '@simplewebauthn/typescript-types'; +import base64url from 'base64url'; + +import generateChallenge from '../helpers/generateChallenge'; type Options = { serviceName: string; rpID: string; - challenge: string; userID: string; userName: string; + challenge?: string | Buffer; userDisplayName?: string; timeout?: number; attestationType?: AttestationConveyancePreference; @@ -54,9 +57,9 @@ export const supportedCOSEAlgorithmIdentifiers: COSEAlgorithmIdentifier[] = [ * * @param serviceName Friendly user-visible website name * @param rpID Valid domain name (after `https://`) - * @param challenge Random string the authenticator needs to sign and pass back * @param userID User's website-specific unique ID * @param userName User's website-specific username (email, etc...) + * @param challenge Random string the authenticator needs to sign and pass back * @param userDisplayName User's actual name * @param timeout How long (in ms) the user can take to complete attestation * @param attestationType Specific attestation statement @@ -75,9 +78,9 @@ export default function generateAttestationOptions( const { serviceName, rpID, - challenge, userID, userName, + challenge = generateChallenge(), userDisplayName = userName, timeout = 60000, attestationType = 'none', @@ -100,7 +103,7 @@ export default function generateAttestationOptions( })); return { - challenge, + challenge: base64url.encode(challenge), rp: { name: serviceName, id: rpID, |