Remember userVerification during assertion

1 files changed, 7 insertions, 4 deletions

diff --git a/example/fido-conformance.js b/example/fido-conformance.js
index c3f05c1..592c7cf 100644
--- a/example/fido-conformance.js
+++ b/example/fido-conformance.js
@@ -44,6 +44,7 @@ const inMemoryUserDeviceDB = {
   //      */
   //   ],
   //   currentChallenge: undefined,
+  //   currentAssertionUserVerification: undefined,
   // },
 };
 
@@ -165,6 +166,7 @@ fidoComplianceRouter.post('/assertion/options', (req, res) => {
 
   const challenge = uuidv4();
   user.currentChallenge = challenge;
+  user.currentAssertionUserVerification = userVerification;
 
   const opts = generateAssertionOptions({
     challenge,
@@ -185,12 +187,12 @@ fidoComplianceRouter.post('/assertion/result', (req, res) => {
   const { id } = body;
 
   const user = inMemoryUserDeviceDB[loggedInUsername];
+
+  // Pull up values specified when generation assertion options
   const expectedChallenge = user.currentChallenge;
-  const existingDevice = user.devices.find(device => device.credentialID === id);
+  const userVerification = user.currentAssertionUserVerification;
 
-  if (!existingDevice) {
-    throw new Error('Assertion device is not registered to user');
-  }
+  const existingDevice = user.devices.find(device => device.credentialID === id);
 
   let verification;
   try {
@@ -200,6 +202,7 @@ fidoComplianceRouter.post('/assertion/result', (req, res) => {
       expectedOrigin: origin,
       expectedRPID: rpID,
       authenticator: existingDevice,
+      fidoUserVerification: userVerification,
     });
   } catch (error) {
     console.error(error.message);