aboutsummaryrefslogtreecommitdiffstats
path: root/modules/auth/webauthn/webauthn.go
diff options
context:
space:
mode:
Diffstat (limited to 'modules/auth/webauthn/webauthn.go')
-rw-r--r--modules/auth/webauthn/webauthn.go78
1 files changed, 78 insertions, 0 deletions
diff --git a/modules/auth/webauthn/webauthn.go b/modules/auth/webauthn/webauthn.go
new file mode 100644
index 0000000000..8f380e7c34
--- /dev/null
+++ b/modules/auth/webauthn/webauthn.go
@@ -0,0 +1,78 @@
+// Copyright 2021 The Gitea Authors. All rights reserved.
+// Use of this source code is governed by a MIT-style
+// license that can be found in the LICENSE file.
+
+package webauthn
+
+import (
+ "encoding/binary"
+ "encoding/gob"
+ "net/url"
+
+ "code.gitea.io/gitea/models/auth"
+ user_model "code.gitea.io/gitea/models/user"
+ "code.gitea.io/gitea/modules/setting"
+
+ "github.com/duo-labs/webauthn/protocol"
+ "github.com/duo-labs/webauthn/webauthn"
+)
+
+//WebAuthn represents the global WebAuthn instance
+var WebAuthn *webauthn.WebAuthn
+
+//Init initializes the WebAuthn instance from the config.
+func Init() {
+ gob.Register(&webauthn.SessionData{})
+
+ appURL, _ := url.Parse(setting.AppURL)
+
+ WebAuthn = &webauthn.WebAuthn{
+ Config: &webauthn.Config{
+ RPDisplayName: setting.AppName,
+ RPID: setting.Domain,
+ RPOrigin: protocol.FullyQualifiedOrigin(appURL),
+ AuthenticatorSelection: protocol.AuthenticatorSelection{
+ UserVerification: "discouraged",
+ },
+ AttestationPreference: protocol.PreferDirectAttestation,
+ },
+ }
+}
+
+// User represents an implementation of webauthn.User based on User model
+type User user_model.User
+
+//WebAuthnID implements the webauthn.User interface
+func (u *User) WebAuthnID() []byte {
+ id := make([]byte, 8)
+ binary.PutVarint(id, u.ID)
+ return id
+}
+
+//WebAuthnName implements the webauthn.User interface
+func (u *User) WebAuthnName() string {
+ if u.LoginName == "" {
+ return u.Name
+ }
+ return u.LoginName
+}
+
+//WebAuthnDisplayName implements the webauthn.User interface
+func (u *User) WebAuthnDisplayName() string {
+ return (*user_model.User)(u).DisplayName()
+}
+
+//WebAuthnIcon implements the webauthn.User interface
+func (u *User) WebAuthnIcon() string {
+ return (*user_model.User)(u).AvatarLink()
+}
+
+//WebAuthnCredentials implementns the webauthn.User interface
+func (u *User) WebAuthnCredentials() []webauthn.Credential {
+ dbCreds, err := auth.GetWebAuthnCredentialsByUID(u.ID)
+ if err != nil {
+ return nil
+ }
+
+ return dbCreds.ToCredentials()
+}
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-28 04:13:10 +0000