Module: Practical::Test::Helpers::Passkey::TestHelper

Defined in:

app/lib/practical/test/helpers/passkey/test_helper.rb

Instance Method Summary

• #admin_relying_party(options: {}) ⇒ Object
• #admin_relying_party_id ⇒ Object
• #admin_relying_party_origin ⇒ Object
• #administrator_user_data(administrator:) ⇒ Object
• #assert_passkey_authentication_challenge(data:, stored_challenge:, credentials_to_allow: []) ⇒ Object
• #assert_passkey_registration_challenge(data:, stored_challenge:, relying_party_data:, user_data:, credentials_to_exclude: []) ⇒ Object
• #assertion_from_client(client:, challenge:, user_verified: true) ⇒ Object
• #create_credential_and_return_payload_from_challenge(client:, challenge:, user_verified: true) ⇒ Object
• #credential_data_for_passkey(passkey:) ⇒ Object
• #credential_id_for_challenge(passkeys:) ⇒ Object
• #encode_challenge(raw_challenge:) ⇒ Object
• #encoded_public_key(credential:, relying_party:) ⇒ Object
• #fake_authenticator ⇒ Object
• #fake_client(origin: "https://example.test", authenticator: WebAuthn::FakeAuthenticator.new) ⇒ Object
• #get_credential_payload_from_challenge(client:, challenge:, user_verified: true) ⇒ Object
• #hydrate_response_from_raw_credential(client:, relying_party:, raw_credential:) ⇒ Object
• #relying_party(options: {}) ⇒ Object
• #relying_party_origin ⇒ Object
• #user_data(user:) ⇒ Object
• #user_relying_party_id ⇒ Object

Instance Method Details

#admin_relying_party(options: {}) ⇒ Object

# File 'app/lib/practical/test/helpers/passkey/test_helper.rb', line 66

def admin_relying_party(options: {})
  return WebAuthn::RelyingParty.new(**{
    allowed_origins: admin_relying_party_origin,
    name: I18n.translate("administrator.app_title.text")
  }.merge(options))
end

#admin_relying_party_id ⇒ Object

# File 'app/lib/practical/test/helpers/passkey/test_helper.rb', line 58

def admin_relying_party_id
  URI.parse(admin_relying_party_origin).host
end

#admin_relying_party_origin ⇒ Object

# File 'app/lib/practical/test/helpers/passkey/test_helper.rb', line 54

def admin_relying_party_origin
  AppSettings.admin_relying_party_origin
end

#administrator_user_data(administrator:) ⇒ Object

# File 'app/lib/practical/test/helpers/passkey/test_helper.rb', line 38

def administrator_user_data(administrator:)
  {"name"=>administrator.email, "id"=>administrator.webauthn_id, "displayName"=>administrator.email}
end

#assert_passkey_authentication_challenge(data:, stored_challenge:, credentials_to_allow: []) ⇒ Object

# File 'app/lib/practical/test/helpers/passkey/test_helper.rb', line 23

def assert_passkey_authentication_challenge(
  data:,
  stored_challenge:,
  credentials_to_allow: []
)
  assert_equal stored_challenge, data["challenge"]
  assert_equal "required", data["userVerification"]

  assert_equal credential_id_for_challenge(passkeys: credentials_to_allow), data["allowCredentials"]
end

#assert_passkey_registration_challenge(data:, stored_challenge:, relying_party_data:, user_data:, credentials_to_exclude: []) ⇒ Object

# File 'app/lib/practical/test/helpers/passkey/test_helper.rb', line 6

def assert_passkey_registration_challenge(
  data:,
  stored_challenge:,
  relying_party_data:,
  user_data:,
  credentials_to_exclude: []
)
  authentication_selection = {"residentKey"=>"required", "userVerification"=>"required"}

  assert_equal stored_challenge, data["challenge"]
  assert_equal relying_party_data, data["rp"]
  assert_equal user_data, data["user"]
  assert_equal authentication_selection, data["authenticatorSelection"]

  assert_equal credentials_to_exclude, data["excludeCredentials"]
end

#assertion_from_client(client:, challenge:, user_verified: true) ⇒ Object

# File 'app/lib/practical/test/helpers/passkey/test_helper.rb', line 92

def assertion_from_client(client:, challenge:, user_verified: true)
  client.get(challenge: challenge, user_verified: user_verified)
end

#create_credential_and_return_payload_from_challenge(client:, challenge:, user_verified: true) ⇒ Object

# File 'app/lib/practical/test/helpers/passkey/test_helper.rb', line 117

def create_credential_and_return_payload_from_challenge(client:, challenge:, user_verified: true)
  return client.create(challenge: challenge, user_verified: user_verified)
end

#credential_data_for_passkey(passkey:) ⇒ Object

# File 'app/lib/practical/test/helpers/passkey/test_helper.rb', line 46

def credential_data_for_passkey(passkey:)
  {"type"=>"public-key", "id"=> passkey.external_id}
end

#credential_id_for_challenge(passkeys:) ⇒ Object

# File 'app/lib/practical/test/helpers/passkey/test_helper.rb', line 34

def credential_id_for_challenge(passkeys:)
  Array.wrap(passkeys).map{|x| {"type" => "public-key", "id" => x.external_id} }
end

#encode_challenge(raw_challenge:) ⇒ Object

# File 'app/lib/practical/test/helpers/passkey/test_helper.rb', line 88

def encode_challenge(raw_challenge:)
  Base64.strict_encode64(raw_challenge)
end

#encoded_public_key(credential:, relying_party:) ⇒ Object

# File 'app/lib/practical/test/helpers/passkey/test_helper.rb', line 125

def encoded_public_key(credential:, relying_party:)
  relying_party.encoder.encode(credential.public_key)
end

#fake_authenticator ⇒ Object

# File 'app/lib/practical/test/helpers/passkey/test_helper.rb', line 80

def fake_authenticator
  return WebAuthn::FakeAuthenticator.new
end

#fake_client(origin: "https://example.test", authenticator: WebAuthn::FakeAuthenticator.new) ⇒ Object

# File 'app/lib/practical/test/helpers/passkey/test_helper.rb', line 84

def fake_client(origin: "https://example.test", authenticator: WebAuthn::FakeAuthenticator.new)
  return WebAuthn::FakeClient.new(origin, authenticator: authenticator)
end

#get_credential_payload_from_challenge(client:, challenge:, user_verified: true) ⇒ Object

# File 'app/lib/practical/test/helpers/passkey/test_helper.rb', line 121

def get_credential_payload_from_challenge(client:, challenge:, user_verified: true)
  client.get(challenge: challenge, user_verified: user_verified)
end

#hydrate_response_from_raw_credential(client:, relying_party:, raw_credential:) ⇒ Object

# File 'app/lib/practical/test/helpers/passkey/test_helper.rb', line 96

def hydrate_response_from_raw_credential(client:, relying_party:, raw_credential:)
  attestation_object = if client.encoding
    relying_party.encoder.decode(raw_credential["response"]["attestationObject"])
  else
    raw_credential["response"]["attestationObject"]
  end

client_data_json =
  if client.encoding
    relying_party.encoder.decode(raw_credential["response"]["clientDataJSON"])
  else
    raw_credential["response"]["clientDataJSON"]
  end

return WebAuthn::AuthenticatorAttestationResponse.new(
  attestation_object: attestation_object,
  client_data_json: client_data_json,
  relying_party: relying_party
)
end

#relying_party(options: {}) ⇒ Object

# File 'app/lib/practical/test/helpers/passkey/test_helper.rb', line 73

def relying_party(options: {})
  return WebAuthn::RelyingParty.new(**{
    allowed_origins: relying_party_origin,
    name: I18n.translate("app_title.text")
  }.merge(options))
end

#relying_party_origin ⇒ Object

# File 'app/lib/practical/test/helpers/passkey/test_helper.rb', line 50

def relying_party_origin
  AppSettings.relying_party_origin
end

#user_data(user:) ⇒ Object

# File 'app/lib/practical/test/helpers/passkey/test_helper.rb', line 42

def user_data(user:)
  {"name"=>user.email, "id"=>user.webauthn_id, "displayName"=>user.name}
end

#user_relying_party_id ⇒ Object

# File 'app/lib/practical/test/helpers/passkey/test_helper.rb', line 62

def user_relying_party_id
  URI.parse(relying_party_origin).host
end