diff options
| author | Matthew Miller <matthew@millerti.me> | 2020-07-19 17:39:33 -0700 |
|---|---|---|
| committer | Matthew Miller <matthew@millerti.me> | 2020-08-29 12:34:54 -0700 |
| commit | af261ce488f026a66969e67d45c5e394434c1bae (patch) | |
| tree | 7a468253f0195b01b2d3a6621cb77855609bf100 /packages/server/src | |
| parent | ef162b99b70def11e7993ff99dcb6b3b8fc561f2 (diff) | |
Add real TPM assertion test
Diffstat (limited to 'packages/server/src')
| -rw-r--r-- | packages/server/src/assertion/verifyAssertionResponse.test.ts | 34 |
1 files changed, 32 insertions, 2 deletions
diff --git a/packages/server/src/assertion/verifyAssertionResponse.test.ts b/packages/server/src/assertion/verifyAssertionResponse.test.ts index c17f80b..ae652c6 100644 --- a/packages/server/src/assertion/verifyAssertionResponse.test.ts +++ b/packages/server/src/assertion/verifyAssertionResponse.test.ts @@ -176,6 +176,36 @@ test('should throw an error if user verification is required but user was not ve }).toThrow(/user could not be verified/i); }); +test('should verify Windows 10 TPM assertion', () => { + const expectedChallenge = 'dG90YWxseVVuaXF1ZVZhbHVlRXZlcnlBc3NlcnRpb24'; + jest.spyOn(base64url, 'encode').mockReturnValueOnce(expectedChallenge); + const verification = verifyAssertionResponse({ + credential: { + id: 'YJ8FMM-AmcUt73XPX341WXWd7ypBMylGjjhu0g3VzME', + rawId: 'YJ8FMM-AmcUt73XPX341WXWd7ypBMylGjjhu0g3VzME', + response: { + authenticatorData: 'PdxHEOnAiLIp26idVjIguzn3Ipr_RlsKZWsa-5qK-KAFAAAAAQ', + clientDataJSON: + 'eyJ0eXBlIjoid2ViYXV0aG4uZ2V0IiwiY2hhbGxlbmdlIjoiZEc5MFlXeHNlVlZ1YVhGMVpWWmhiSFZsUlhabGNubEJjM05sY25ScGIyNCIsIm9yaWdpbiI6Imh0dHBzOi8vZGV2LmRvbnRuZWVkYS5wdyIsImNyb3NzT3JpZ2luIjpmYWxzZX0', + signature: + 'T6nS6IDnfXmt_f2BEzIvw86RrHCpmf_OQIbiY-OBgk4jyKakYF34tnpdajQnIHTCa3-56RWDa_tZGQwZopEcrWRgSONKnMEboNhsw0aTYDo2q4fICD33qVFUuBIEcWJJyv1RqfW3uvPZAq1yvif81xPWYgF796fx7fFZzbBQARbUjNPudBuwgONljRbDstRhqnrP_b7h0-_CQ8EBJIR7Bor-R5I6JYsNWeR9r0wRPkpIhNRND-y6or6Shm2NXhr-ovLtnzpdouzlrJUJWnBJquWAjtiXKZsGfsY9Srh7jduoyKyPkwItPewcdlV30uUFCtPMepaJ5lUwbBtRE0NsXg', + userHandle: 'aW50ZXJuYWxVc2VySWQ', + }, + type: 'public-key', + }, + expectedChallenge, + expectedOrigin: assertionOrigin, + expectedRPID: 'dev.dontneeda.pw', + authenticator: { + publicKey: 'BAEAAQ', + credentialID: 'YJ8FMM-AmcUt73XPX341WXWd7ypBMylGjjhu0g3VzME', + counter: 0, + }, + }); + + expect(verification.verified).toEqual(true); +}); + /** * Assertion examples below */ @@ -201,9 +231,9 @@ const assertionOrigin = 'https://dev.dontneeda.pw'; const authenticator = { publicKey: - 'BIheFp-u6GvFT2LNGovf3ZrT0iFVBsA_76rRysxRG9A18WGeA6hPmnab0HAViUYVRkwTNcN77QBf_' + 'RR0dv3lIvQ', + 'BIheFp-u6GvFT2LNGovf3ZrT0iFVBsA_76rRysxRG9A18WGeA6hPmnab0HAViUYVRkwTNcN77QBf_RR0dv3lIvQ', credentialID: - 'KEbWNCc7NgaYnUyrNeFGX9_3Y-8oJ3KwzjnaiD1d1LVTxR7v3CaKfCz2Vy_g_MHSh7yJ8yL0Px' + 'g6jo_o0hYiew', + 'KEbWNCc7NgaYnUyrNeFGX9_3Y-8oJ3KwzjnaiD1d1LVTxR7v3CaKfCz2Vy_g_MHSh7yJ8yL0Pxg6jo_o0hYiew', counter: 143, }; |