summaryrefslogtreecommitdiffstats
path: root/testing/web-platform/tests/webauthn/credblob-supported.https.html
blob: c69091fbc4019038531de326c59141a09cea9a00 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
<!DOCTYPE html>
<meta charset="utf-8">
<title>credBlob extension tests</title>
<meta name="timeout" content="long">
<script src="/resources/testharness.js"></script>
<script src="/resources/testharnessreport.js"></script>
<script src="/resources/testdriver.js"></script>
<script src="/resources/testdriver-vendor.js"></script>
<script src=helpers.js></script>
<body></body>
<script>
"use strict";

const blobu8 = new Uint8Array(16);
window.crypto.getRandomValues(blobu8);
const blob = blobu8.buffer;
const authenticatorOptions = {
  protocol: "ctap2_1",
  extensions: ["credBlob"],
};

function compareBuffers(a, b) {
  if (a.byteLength != b.byteLength) {
    return false;
  }
  const a8 = new Uint8Array(a);
  const b8 = new Uint8Array(b);
  for (let i = 0; i < a8.length; i++) {
    if (a8[i] != b8[i]) {
      return false;
    }
  }
  return true;
}

virtualAuthenticatorPromiseTest(async t => {
  const cred = await createCredential({
    options: {
      publicKey: {},
    },
  });

  const createExtensions = cred.getClientExtensionResults();
  assert_not_own_property(createExtensions, "credBlob");

  const assertion = await navigator.credentials.get({publicKey: {
    challenge: new Uint8Array(),
    allowCredentials: [{
      id: cred.rawId,
      type: "public-key",
    }],
    extensions: {
      getCredBlob: true,
    },
  }});

  const getExtensions = assertion.getClientExtensionResults();
  assert_own_property(getExtensions, "getCredBlob");
  const emptyBuffer = new Uint8Array();
  assert_true(compareBuffers(getExtensions.getCredBlob, emptyBuffer));
}, authenticatorOptions, "assertion without credBlob");

virtualAuthenticatorPromiseTest(async t => {
  const cred = await createCredential({
    options: {
      publicKey: {
        extensions: {
          credBlob: blob,
        },
      },
    },
  });

  const createExtensions = cred.getClientExtensionResults();
  assert_own_property(createExtensions, "credBlob");
  assert_equals(createExtensions.credBlob, true, "extension supported at create time");

  const assertion = await navigator.credentials.get({publicKey: {
    challenge: new Uint8Array(),
    allowCredentials: [{
      id: cred.rawId,
      type: "public-key",
    }],
    extensions: {
      getCredBlob: true,
    },
  }});

  const getExtensions = assertion.getClientExtensionResults();
  assert_own_property(getExtensions, "getCredBlob");
  assert_true(compareBuffers(getExtensions.getCredBlob, blob));
}, authenticatorOptions, "assertion with credBlob");
</script>