UNPKG

@joinmeow/cognito-passwordless-auth

Version:

Passwordless authentication with Amazon Cognito: FIDO2 (WebAuthn, support for Passkeys)

github.com/joinmeow/amazon-cognito-passwordless-auth

joinmeow/amazon-cognito-passwordless-auth

73 lines (72 loc) 2.64 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
import { IdleState, BusyState, TokensFromSignIn } from "./model.js"; declare function getConstants(): Promise<{ g: bigint; N: bigint; k: bigint; }>; declare function modPow(base: bigint, exp: bigint, mod: bigint): bigint; declare function padHex(hexStr: string): string; declare function generateSmallA(): bigint; declare function calculateLargeAHex(smallA: bigint): Promise<string>; type UserCreds = { userPoolId: string; username: string; password: string; }; type DeviceCreds = { deviceGroupKey: string; deviceKey: string; devicePassword: string; }; declare function calculateSrpSignature({ smallA, largeAHex, srpBHex, salt, secretBlock, creds, }: { smallA: bigint; largeAHex: string; srpBHex: string; salt: string; secretBlock: string; creds: UserCreds | DeviceCreds; }): Promise<{ timestamp: string; passwordClaimSignature: string; }>; declare function hexToArrayBuffer(hexStr: string): Uint8Array; declare function arrayBufferToHex(arrBuf: ArrayBuffer): string; declare function arrayBufferToBigInt(arrBuf: ArrayBuffer): bigint; declare function formatDate(d: Date): string; export declare function authenticateWithSRP({ username, password, smsMfaCode, otpMfaCode, newPassword, customChallengeAnswer, deviceKey, tokensCb, statusCb, clientMetadata, }: { /** * Username, or alias (e-mail, phone number) */ username: string; password: string; smsMfaCode?: () => Promise<string>; otpMfaCode?: () => Promise<string>; newPassword?: () => Promise<string>; customChallengeAnswer?: () => Promise<string>; /** * Device key for device authentication (if available from previous sessions) */ deviceKey?: string; tokensCb?: (tokens: TokensFromSignIn) => void | Promise<void>; statusCb?: (status: BusyState | IdleState) => void; currentStatus?: BusyState | IdleState; clientMetadata?: Record<string, string>; }): { signedIn: Promise<TokensFromSignIn>; abort: () => void; }; declare function verifyDeviceSrp({ deviceGroupKey, deviceKey, devicePassword, srpB, secretBlock, salt, smallA, srpAHex, }: { deviceGroupKey: string; deviceKey: string; devicePassword: string; srpB: string; secretBlock: string; salt: string; smallA: bigint; srpAHex: string; }): Promise<{ readonly passwordVerifier: string; readonly passwordClaimSecretBlock: string; readonly timestamp: string; }>; export { modPow, getConstants, padHex, hexToArrayBuffer, arrayBufferToHex, arrayBufferToBigInt, formatDate, generateSmallA, calculateLargeAHex, calculateSrpSignature, verifyDeviceSrp, };