import crypto from 'crypto';

/**
 * Generate a suitably random value to be used as an attestation or assertion challenge
 */
export default function generateChallenge(): Buffer {
  /**
   * WebAuthn spec says that 16 bytes is a good minimum:
   *
   * "In order to prevent replay attacks, the challenges MUST contain enough entropy to make
   * guessing them infeasible. Challenges SHOULD therefore be at least 16 bytes long."
   *
   * Just in case, let's double it
   */
  return crypto.randomBytes(32);
}