个人信息页面测试用的webauthn相关
This commit is contained in:
parent
7dde52ba42
commit
97b69e73e1
GPG Key ID:
D7A9EC07024C3021
@ -14,6 +14,7 @@
|
|||||||
/* @var $is_otp_enabled bool */
|
/* @var $is_otp_enabled bool */
|
||||||
|
|
||||||
use app\assets\FontAwesomeAsset;
|
use app\assets\FontAwesomeAsset;
|
||||||
|
use app\assets\SimpleWebAuthnBrowser;
|
||||||
use app\models\User;
|
use app\models\User;
|
||||||
use app\utils\FileSizeHelper;
|
use app\utils\FileSizeHelper;
|
||||||
use app\utils\IPLocation;
|
use app\utils\IPLocation;
|
||||||
@ -33,6 +34,7 @@ use yii\web\View;
|
|||||||
$this->title = '个人设置';
|
$this->title = '个人设置';
|
||||||
FontAwesomeAsset::register($this);
|
FontAwesomeAsset::register($this);
|
||||||
JqueryAsset::register($this);
|
JqueryAsset::register($this);
|
||||||
|
SimpleWebAuthnBrowser::register($this);
|
||||||
$this->registerCssFile('@web/css/user-info.css');
|
$this->registerCssFile('@web/css/user-info.css');
|
||||||
$details = IPLocation::getDetails($model->last_login_ip); // IP LOCATION
|
$details = IPLocation::getDetails($model->last_login_ip); // IP LOCATION
|
||||||
|
|
||||||
@ -266,6 +268,23 @@ $darkMode = Yii::$app->user->identity->dark_mode;
|
|||||||
<?= Html::a('获取恢复代码(请妥善保存)', Url::to(['user/download-recovery-codes']), ['class' => 'btn btn-outline-primary btn-sm', 'id' => 'generate-backup-codes']) ?>
|
<?= Html::a('获取恢复代码(请妥善保存)', Url::to(['user/download-recovery-codes']), ['class' => 'btn btn-outline-primary btn-sm', 'id' => 'generate-backup-codes']) ?>
|
||||||
</div>
|
</div>
|
||||||
</li>
|
</li>
|
||||||
|
<li class="list-group-item">
|
||||||
|
<h5>
|
||||||
|
<i class="fa-solid fa-key"></i>
|
||||||
|
Passwordless验证 (Webauthn) (BETA)
|
||||||
|
</h5>
|
||||||
|
<div>
|
||||||
|
<?= Html::button('Add', ['id' => "webauthn_add", 'type' => 'button', 'class' => 'btn btn-primary btn-sm']) ?>
|
||||||
|
<?= Html::button('Verify', ['id' => "webauthn_verify", 'type' => 'button', 'class' => 'btn btn-primary btn-sm']) ?>
|
||||||
|
<?= Html::button('Detail', ['id' => "webauthn_detail", 'type' => 'button', 'class' => 'btn btn-primary btn-sm']) ?>
|
||||||
|
</div>
|
||||||
|
<div class="alert alert-success" role="alert" hidden>
|
||||||
|
<span id="webauthn_success"></span>
|
||||||
|
</div>
|
||||||
|
<div class="alert alert-danger" role="alert" hidden>
|
||||||
|
<span id="webauthn_error"></span>
|
||||||
|
</div>
|
||||||
|
</li>
|
||||||
</ul>
|
</ul>
|
||||||
<br>
|
<br>
|
||||||
|
|
||||||
@ -397,5 +416,5 @@ Modal::begin([
|
|||||||
<?php
|
<?php
|
||||||
|
|
||||||
Modal::end();
|
Modal::end();
|
||||||
$this->registerJsFile('@web/js/user-info.js', ['depends' => [JqueryAsset::class], 'position' => View::POS_END]);
|
$this->registerJsFile('@web/js/user-info.js', ['depends' => [JqueryAsset::class, SimpleWebAuthnBrowser::class], 'position' => View::POS_END]);
|
||||||
?>
|
?>
|
||||||
@ -42,3 +42,120 @@ document.querySelector('.editable-username').addEventListener('click', function
|
|||||||
// 在这里添加你的代码来显示一个模态框或其他你想要的东西
|
// 在这里添加你的代码来显示一个模态框或其他你想要的东西
|
||||||
$('#changeAccountName').modal('show');
|
$('#changeAccountName').modal('show');
|
||||||
});
|
});
|
||||||
|
|
||||||
|
// WebAuthn registration #BEGIN
|
||||||
|
const { startRegistration } = SimpleWebAuthnBrowser;
|
||||||
|
|
||||||
|
// <button>
|
||||||
|
const elemBegin = document.getElementById('webauthn_add');
|
||||||
|
// <span>/<p>/etc...
|
||||||
|
const elemSuccess = document.getElementById('webauthn_success');
|
||||||
|
// <span>/<p>/etc...
|
||||||
|
const elemError = document.getElementById('webauthn_error');
|
||||||
|
|
||||||
|
// Start registration when the user clicks a button
|
||||||
|
elemBegin.addEventListener('click', async () => {
|
||||||
|
// Reset success/error messages
|
||||||
|
elemSuccess.innerHTML = '';
|
||||||
|
elemError.innerHTML = '';
|
||||||
|
elemSuccess.parentElement.hidden = true;
|
||||||
|
elemError.parentElement.hidden = true;
|
||||||
|
|
||||||
|
// GET registration options from the endpoint that calls
|
||||||
|
const resp = await fetch('index.php?r=user%2Fcreate-credential-options');
|
||||||
|
|
||||||
|
let attResp;
|
||||||
|
try {
|
||||||
|
// Pass the options to the authenticator and wait for a response
|
||||||
|
attResp = await startRegistration(await resp.json());
|
||||||
|
} catch (error) {
|
||||||
|
// Some basic error handling
|
||||||
|
if (error.name === 'InvalidStateError') {
|
||||||
|
elemError.innerText = 'Error: Authenticator was probably already registered by user';
|
||||||
|
} else {
|
||||||
|
elemError.innerText = error;
|
||||||
|
}
|
||||||
|
elemError.parentElement.hidden = false;
|
||||||
|
throw error;
|
||||||
|
}
|
||||||
|
const csrfToken = document.querySelector('meta[name="csrf-token"]').getAttribute('content');
|
||||||
|
|
||||||
|
// POST the response to the endpoint that calls
|
||||||
|
const verificationResp = await fetch('index.php?r=user%2Fcreate-credential', {
|
||||||
|
method: 'POST',
|
||||||
|
headers: {
|
||||||
|
'Content-Type': 'application/json',
|
||||||
|
'X-CSRF-Token': csrfToken
|
||||||
|
},
|
||||||
|
body: JSON.stringify(attResp),
|
||||||
|
});
|
||||||
|
|
||||||
|
// Wait for the results of verification
|
||||||
|
const verificationJSON = await verificationResp.json();
|
||||||
|
|
||||||
|
// Show UI appropriate for the `verified` status
|
||||||
|
if (verificationJSON && verificationJSON.verified) {
|
||||||
|
elemSuccess.innerHTML = 'Success!';
|
||||||
|
elemSuccess.parentElement.hidden = false;
|
||||||
|
} else {
|
||||||
|
elemError.innerHTML = `Oh no, something went wrong! Response: <pre>${JSON.stringify(
|
||||||
|
verificationJSON,
|
||||||
|
)}</pre>`;
|
||||||
|
elemError.parentElement.hidden = false;
|
||||||
|
}
|
||||||
|
});
|
||||||
|
|
||||||
|
const { startAuthentication } = SimpleWebAuthnBrowser;
|
||||||
|
|
||||||
|
// <button>
|
||||||
|
const elemBegin_v = document.getElementById('webauthn_verify');
|
||||||
|
|
||||||
|
// Start authentication when the user clicks a button
|
||||||
|
elemBegin_v.addEventListener('click', async () => {
|
||||||
|
// Reset success/error messages
|
||||||
|
elemSuccess.innerHTML = '';
|
||||||
|
elemError.innerHTML = '';
|
||||||
|
elemSuccess.parentElement.hidden = true;
|
||||||
|
elemError.parentElement.hidden = true;
|
||||||
|
|
||||||
|
// GET authentication options from the endpoint that calls
|
||||||
|
// @simplewebauthn/server -> generateAuthenticationOptions()
|
||||||
|
const resp = await fetch('index.php?r=user%2Frequest-assertion-options');
|
||||||
|
|
||||||
|
let asseResp;
|
||||||
|
try {
|
||||||
|
// Pass the options to the authenticator and wait for a response
|
||||||
|
asseResp = await startAuthentication(await resp.json());
|
||||||
|
} catch (error) {
|
||||||
|
// Some basic error handling
|
||||||
|
elemError.innerText = error;
|
||||||
|
elemError.parentElement.hidden = false;
|
||||||
|
throw error;
|
||||||
|
}
|
||||||
|
const csrfToken = document.querySelector('meta[name="csrf-token"]').getAttribute('content');
|
||||||
|
// POST the response to the endpoint that calls
|
||||||
|
// @simplewebauthn/server -> verifyAuthenticationResponse()
|
||||||
|
const verificationResp = await fetch('index.php?r=user%2Fverify-assertion', {
|
||||||
|
method: 'POST',
|
||||||
|
headers: {
|
||||||
|
'Content-Type': 'application/json',
|
||||||
|
'X-CSRF-Token': csrfToken
|
||||||
|
},
|
||||||
|
body: JSON.stringify(asseResp),
|
||||||
|
});
|
||||||
|
|
||||||
|
// Wait for the results of verification
|
||||||
|
const verificationJSON = await verificationResp.json();
|
||||||
|
|
||||||
|
// Show UI appropriate for the `verified` status
|
||||||
|
if (verificationJSON && verificationJSON.verified) {
|
||||||
|
elemSuccess.innerHTML = 'Success!';
|
||||||
|
elemSuccess.parentElement.hidden = false;
|
||||||
|
|
||||||
|
} else {
|
||||||
|
elemError.innerHTML = `Oh no, something went wrong! Response: <pre>${JSON.stringify(
|
||||||
|
verificationJSON,
|
||||||
|
)}</pre>`;
|
||||||
|
elemError.parentElement.hidden = false;
|
||||||
|
}
|
||||||
|
});
|
||||||
Loading…
Reference in New Issue
Block a user