@github/webauthn-json
Advanced tools
Readme
@github/webauthn-json@github/webauthn-json is a client-side Javascript library that serves as convenience wrapper for the the WebAuthn API by encoding binary data using base64url (also known as "websafe" or "urlsafe" base64).
The WebAuthn API itself takes input and output values that look almost like JSON, except that binary data is represented as ArrayBuffers. Using webauthn-json allows the data to be sent from/to the server as normal JSON without client-side processing.
navigator.credentials.create() with create(), and navigator.credentials.get() with get().Install using:
npm install --save @github/webauthn-json
Then:
import {create} from "@github/webauthn-json"
const authRequest = fetch("...");
async auth() {
const authResponse = await create((await authRequest).json());
await fetch("...", {
method: "POST",
body: JSON.stringify(authResponse)
});
}
See here for fully working client-side demo code.
function create(requestJSON: JSON): Promise<JSON>;
function get(requestJSON: JSON): Promise<JSON>;
function supported(): boolean;
There are are several ways to encode JSON with binary fields. @github/webauthn-json focuses on one simple approach: converting the known structure using a simple (custom) schema format. @github/webauthn-json uses a few tricks for a compact schema encoding: the production build is about ≈2KB uncompressed (<1KB gzipped).
Right now, we only convert fields explicitly known to be used by the WebAuthn API. This means that you'll have to update to a newer version of this library if you want to use new fields in the future.
To print the current schema, run:
npx @github/webauthn-json schema
Modern browsers generally only support — and most sites only need to use — a small number of extensions. To save code size, @github/webauthn-json only includes the following extensions by default:
appidappidExcludecredPropsIf you need to convert additional input or output extensions, use createExtended() and getExtended() from @github/webauthn-json/extended.
The scope of @github/webauthn-json is fairly small — it's essentially feature-complete. However, we're happy to accept issues or pull requests that address the core goal of the project!
FAQs
A wrapper for the webauthn API that adapts input/output values to plain JSON with base64url.
The npm package @github/webauthn-json receives a total of 64,329 weekly downloads. As such, @github/webauthn-json popularity was classified as popular.
We found that @github/webauthn-json demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 20 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
A new report explores how advancements in LLMs are enhancing cyber threats, including polymorphic malware, personalized spearphishing, and the risk of hijacking customer service bots.
Security News
ESLint has approved an RFC that adds support for TypeScript configuration files, which is aimed at improving the developer experience and recognizing changes in the evolving JavaScript ecosystem.
Security News
The NVD is facing a significant backlog with over 12,500 CVEs awaiting analysis, and more than 50% of known exploited vulnerabilities (KEVs) left unenriched since mid-February.