This repository has been archived by the owner on Dec 16, 2021. It is now read-only.
forked from wallix/webauthn
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathindex.js
95 lines (72 loc) · 2.37 KB
/
index.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
const fs = require('fs');
const path = require('path');
const express = require('express');
const spdy = require('spdy');
const cors = require('cors');
const bodyParser = require('body-parser');
const userRepository = require('./userRepository');
const {
generateRegistrationChallenge,
parseRegisterRequest,
generateLoginChallenge,
parseLoginRequest,
verifyAuthenticatorAssertion,
} = require('../../packages/server');
const app = express();
app.use(cors());
app.use(bodyParser.json());
app.post('/request-register', (req, res) => {
const { id, email } = req.body;
const challengeResponse = generateRegistrationChallenge({
relyingParty: { name: 'ACME' },
user: { id, name: email }
});
userRepository.create({
id,
email,
challenge: challengeResponse.challenge,
})
res.send(challengeResponse);
});
app.post('/register', async (req, res) => {
try {
const { key, challenge } = await parseRegisterRequest(req.body);
const user = userRepository.findByChallenge(challenge);
if (!user) {
return res.sendStatus(400);
}
userRepository.addKeyToUser(user, key);
return res.send({ loggedIn: true });
} catch (err) {
next(err);
}
});
app.post('/login', (req, res) => {
const { email } = req.body;
const user = userRepository.findByEmail(email);
if (!user) {
return res.sendStatus(400);
}
const assertionChallenge = generateLoginChallenge(user.key);
userRepository.updateUserChallenge(user, assertionChallenge.challenge);
res.send(assertionChallenge);
});
app.post('/login-challenge', (req, res) => {
const { challenge, keyId } = parseLoginRequest(req.body);
if (!challenge) {
return res.sendStatus(400);
}
const user = userRepository.findByChallenge(challenge);
if (!user || !user.key || user.key.credID !== keyId) {
return res.sendStatus(400);
}
const loggedIn = verifyAuthenticatorAssertion(req.body, user.key);
return res.send({ loggedIn });
});
const config = {
cert: fs.readFileSync(path.resolve(__dirname, '../tls/localhost.pem')),
key: fs.readFileSync(path.resolve(__dirname, '../tls/localhost-key.pem'))
};
spdy.createServer(config, app).listen(8000, () => {
console.log('Server is listening at https://localhost:8000. Ctrl^C to stop it.');
});