UNPKG

@simplewebauthn/server

Version:

SimpleWebAuthn for Servers

github.com/MasterKale/SimpleWebAuthn/tree/master/packages/server

MasterKale/SimpleWebAuthn

36 lines (35 loc) 1.28 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
import { isoCrypto } from './iso/index.js'; import { decodeCredentialPublicKey } from './decodeCredentialPublicKey.js'; import { convertX509PublicKeyToCOSE } from './convertX509PublicKeyToCOSE.js'; /** * Verify an authenticator's signature */ export function verifySignature(opts) { const { signature, data, credentialPublicKey, x509Certificate, hashAlgorithm, } = opts; if (!x509Certificate && !credentialPublicKey) { throw new Error('Must declare either "leafCert" or "credentialPublicKey"'); } if (x509Certificate && credentialPublicKey) { throw new Error('Must not declare both "leafCert" and "credentialPublicKey"'); } let cosePublicKey = new Map(); if (credentialPublicKey) { cosePublicKey = decodeCredentialPublicKey(credentialPublicKey); } else if (x509Certificate) { cosePublicKey = convertX509PublicKeyToCOSE(x509Certificate); } return _verifySignatureInternals.stubThis(isoCrypto.verify({ cosePublicKey, signature, data, shaHashOverride: hashAlgorithm, })); } /** * Make it possible to stub the return value during testing * @ignore Don't include this in docs output */ export const _verifySignatureInternals = { stubThis: (value) => value, };