mirror of
https://github.com/zitadel/zitadel.git
synced 2025-12-12 05:12:20 +00:00
217 lines
5.9 KiB
TypeScript
217 lines
5.9 KiB
TypeScript
"use client";
|
|
|
|
import { useState } from "react";
|
|
import { Button, ButtonVariants } from "./Button";
|
|
import { useForm } from "react-hook-form";
|
|
import { useRouter } from "next/navigation";
|
|
import { Spinner } from "./Spinner";
|
|
import Alert from "./Alert";
|
|
import { AuthRequest, RegisterPasskeyResponse } from "@zitadel/server";
|
|
import { coerceToArrayBuffer, coerceToBase64Url } from "#/utils/base64";
|
|
type Inputs = {};
|
|
|
|
type Props = {
|
|
sessionId: string;
|
|
authRequestId?: string;
|
|
organization?: string;
|
|
};
|
|
|
|
export default function RegisterU2F({
|
|
sessionId,
|
|
organization,
|
|
authRequestId,
|
|
}: Props) {
|
|
const { register, handleSubmit, formState } = useForm<Inputs>({
|
|
mode: "onBlur",
|
|
});
|
|
|
|
const [error, setError] = useState<string>("");
|
|
|
|
const [loading, setLoading] = useState<boolean>(false);
|
|
|
|
const router = useRouter();
|
|
|
|
async function submitRegister() {
|
|
setError("");
|
|
setLoading(true);
|
|
const res = await fetch("/api/u2f", {
|
|
method: "POST",
|
|
headers: {
|
|
"Content-Type": "application/json",
|
|
},
|
|
body: JSON.stringify({
|
|
sessionId,
|
|
}),
|
|
});
|
|
|
|
const response = await res.json();
|
|
|
|
setLoading(false);
|
|
if (!res.ok) {
|
|
setError(response.details);
|
|
return Promise.reject(response.details);
|
|
}
|
|
return response;
|
|
}
|
|
|
|
async function submitVerify(
|
|
passkeyId: string,
|
|
passkeyName: string,
|
|
publicKeyCredential: any,
|
|
sessionId: string
|
|
) {
|
|
setLoading(true);
|
|
const res = await fetch("/api/u2f/verify", {
|
|
method: "POST",
|
|
headers: {
|
|
"Content-Type": "application/json",
|
|
},
|
|
body: JSON.stringify({
|
|
passkeyId,
|
|
passkeyName,
|
|
publicKeyCredential,
|
|
sessionId,
|
|
}),
|
|
});
|
|
|
|
const response = await res.json();
|
|
|
|
setLoading(false);
|
|
if (!res.ok) {
|
|
setError(response.details);
|
|
return Promise.reject(response.details);
|
|
}
|
|
return response;
|
|
}
|
|
|
|
function submitRegisterAndContinue(value: Inputs): Promise<boolean | void> {
|
|
return submitRegister().then((resp: RegisterPasskeyResponse) => {
|
|
const passkeyId = resp.passkeyId;
|
|
|
|
if (
|
|
resp.publicKeyCredentialCreationOptions &&
|
|
resp.publicKeyCredentialCreationOptions.publicKey
|
|
) {
|
|
resp.publicKeyCredentialCreationOptions.publicKey.challenge =
|
|
coerceToArrayBuffer(
|
|
resp.publicKeyCredentialCreationOptions.publicKey.challenge,
|
|
"challenge"
|
|
);
|
|
resp.publicKeyCredentialCreationOptions.publicKey.user.id =
|
|
coerceToArrayBuffer(
|
|
resp.publicKeyCredentialCreationOptions.publicKey.user.id,
|
|
"userid"
|
|
);
|
|
if (
|
|
resp.publicKeyCredentialCreationOptions.publicKey.excludeCredentials
|
|
) {
|
|
resp.publicKeyCredentialCreationOptions.publicKey.excludeCredentials.map(
|
|
(cred: any) => {
|
|
cred.id = coerceToArrayBuffer(
|
|
cred.id as string,
|
|
"excludeCredentials.id"
|
|
);
|
|
return cred;
|
|
}
|
|
);
|
|
}
|
|
|
|
navigator.credentials
|
|
.create(resp.publicKeyCredentialCreationOptions)
|
|
.then((resp) => {
|
|
if (
|
|
resp &&
|
|
(resp as any).response.attestationObject &&
|
|
(resp as any).response.clientDataJSON &&
|
|
(resp as any).rawId
|
|
) {
|
|
const attestationObject = (resp as any).response
|
|
.attestationObject;
|
|
const clientDataJSON = (resp as any).response.clientDataJSON;
|
|
const rawId = (resp as any).rawId;
|
|
|
|
const data = {
|
|
id: resp.id,
|
|
rawId: coerceToBase64Url(rawId, "rawId"),
|
|
type: resp.type,
|
|
response: {
|
|
attestationObject: coerceToBase64Url(
|
|
attestationObject,
|
|
"attestationObject"
|
|
),
|
|
clientDataJSON: coerceToBase64Url(
|
|
clientDataJSON,
|
|
"clientDataJSON"
|
|
),
|
|
},
|
|
};
|
|
return submitVerify(passkeyId, "", data, sessionId).then(() => {
|
|
const params = new URLSearchParams();
|
|
|
|
if (organization) {
|
|
params.set("organization", organization);
|
|
}
|
|
|
|
if (authRequestId) {
|
|
params.set("authRequestId", authRequestId);
|
|
params.set("sessionId", sessionId);
|
|
// params.set("altPassword", ${false}); // without setting altPassword this does not allow password
|
|
// params.set("loginName", resp.loginName);
|
|
|
|
router.push("/u2f?" + params);
|
|
} else {
|
|
router.push("/accounts?" + params);
|
|
}
|
|
});
|
|
} else {
|
|
setLoading(false);
|
|
setError("An error on registering passkey");
|
|
return null;
|
|
}
|
|
})
|
|
.catch((error) => {
|
|
console.error(error);
|
|
setLoading(false);
|
|
setError(error);
|
|
|
|
return null;
|
|
});
|
|
}
|
|
});
|
|
}
|
|
|
|
const { errors } = formState;
|
|
|
|
return (
|
|
<form className="w-full">
|
|
{error && (
|
|
<div className="py-4">
|
|
<Alert>{error}</Alert>
|
|
</div>
|
|
)}
|
|
|
|
<div className="mt-8 flex w-full flex-row items-center">
|
|
<Button
|
|
type="button"
|
|
variant={ButtonVariants.Secondary}
|
|
onClick={() => router.back()}
|
|
>
|
|
back
|
|
</Button>
|
|
|
|
<span className="flex-grow"></span>
|
|
<Button
|
|
type="submit"
|
|
className="self-end"
|
|
variant={ButtonVariants.Primary}
|
|
disabled={loading || !formState.isValid}
|
|
onClick={handleSubmit(submitRegisterAndContinue)}
|
|
>
|
|
{loading && <Spinner className="h-5 w-5 mr-2" />}
|
|
continue
|
|
</Button>
|
|
</div>
|
|
</form>
|
|
);
|
|
}
|