afan
/
gitea
關註 1
收藏 0
複製 0
程式碼 問題管理 0 合併請求 0 版本發佈 0 Wiki Activity
gitea源码
3 Commit
2 分支
分支: master
分支列表 標籤列表
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
gitea/modules/auth/webauthn/webauthn.go

webauthn.go 2.1KB
永久連結 文件歷史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081 
  1. // Copyright 2021 The Gitea Authors. All rights reserved.

  2. // SPDX-License-Identifier: MIT

  3. 

  4. package webauthn

  5. 

  6. import (

  7. 	"context"

  8. 	"encoding/binary"

  9. 	"encoding/gob"

  10. 

  11. 	"code.gitea.io/gitea/models/auth"

  12. 	user_model "code.gitea.io/gitea/models/user"

  13. 	"code.gitea.io/gitea/modules/setting"

  14. 	"code.gitea.io/gitea/modules/util"

  15. 

  16. 	"github.com/go-webauthn/webauthn/protocol"

  17. 	"github.com/go-webauthn/webauthn/webauthn"

  18. )

  19. 

  20. // WebAuthn represents the global WebAuthn instance

  21. var WebAuthn *webauthn.WebAuthn

  22. 

  23. // Init initializes the WebAuthn instance from the config.

  24. func Init() {

  25. 	gob.Register(&webauthn.SessionData{})

  26. 

  27. 	appURL, _ := protocol.FullyQualifiedOrigin(setting.AppURL)

  28. 

  29. 	WebAuthn = &webauthn.WebAuthn{

  30. 		Config: &webauthn.Config{

  31. 			RPDisplayName: setting.AppName,

  32. 			RPID:          setting.Domain,

  33. 			RPOrigins:     []string{appURL},

  34. 			AuthenticatorSelection: protocol.AuthenticatorSelection{

  35. 				UserVerification: protocol.VerificationDiscouraged,

  36. 			},

  37. 			AttestationPreference: protocol.PreferDirectAttestation,

  38. 		},

  39. 	}

  40. }

  41. 

  42. // user represents an implementation of webauthn.User based on User model

  43. type user struct {

  44. 	ctx  context.Context

  45. 	User *user_model.User

  46. 

  47. 	defaultAuthFlags protocol.AuthenticatorFlags

  48. }

  49. 

  50. var _ webauthn.User = (*user)(nil)

  51. 

  52. func NewWebAuthnUser(ctx context.Context, u *user_model.User, defaultAuthFlags ...protocol.AuthenticatorFlags) webauthn.User {

  53. 	return &user{ctx: ctx, User: u, defaultAuthFlags: util.OptionalArg(defaultAuthFlags)}

  54. }

  55. 

  56. // WebAuthnID implements the webauthn.User interface

  57. func (u *user) WebAuthnID() []byte {

  58. 	id := make([]byte, 8)

  59. 	binary.PutVarint(id, u.User.ID)

  60. 	return id

  61. }

  62. 

  63. // WebAuthnName implements the webauthn.User interface

  64. func (u *user) WebAuthnName() string {

  65. 	return util.IfZero(u.User.LoginName, u.User.Name)

  66. }

  67. 

  68. // WebAuthnDisplayName implements the webauthn.User interface

  69. func (u *user) WebAuthnDisplayName() string {

  70. 	return u.User.DisplayName()

  71. }

  72. 

  73. // WebAuthnCredentials implements the webauthn.User interface

  74. func (u *user) WebAuthnCredentials() []webauthn.Credential {

  75. 	dbCreds, err := auth.GetWebAuthnCredentialsByUID(u.ctx, u.User.ID)

  76. 	if err != nil {

  77. 		return nil

  78. 	}

  79. 	return dbCreds.ToCredentials(u.defaultAuthFlags)

  80. }