LeoVasanko/passkey-auth
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Improved login/registration message handling, display more useful error messages.

Browse Source
This commit is contained in:
Leo Vasanko 2025-07-10 14:16:09 -06:00
parent d4e5497406
commit 5a92c6a25f
3 changed files with 94 additions and 141 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

175
static/app.js
View File

@ -15,7 +15,7 @@ async function validateStoredToken() {
method: 'GET', method: 'GET',
credentials: 'include' credentials: 'include'
}) })
const result = await response.json() const result = await response.json()
return result.status === 'success' return result.status === 'success'
} catch (error) { } catch (error) {
@ -33,12 +33,12 @@ async function setSessionCookie(sessionToken) {
}, },
credentials: 'include' credentials: 'include'
}) })
const result = await response.json() const result = await response.json()
if (result.error) { if (result.error) {
throw new Error(result.error) throw new Error(result.error)
} }
return result return result
} catch (error) { } catch (error) {
throw new Error(`Failed to set session cookie: ${error.message}`) throw new Error(`Failed to set session cookie: ${error.message}`)
@ -122,12 +122,12 @@ async function copyDeviceLink() {
try { try {
if (window.currentDeviceLink) { if (window.currentDeviceLink) {
await navigator.clipboard.writeText(window.currentDeviceLink) await navigator.clipboard.writeText(window.currentDeviceLink)
const copyButton = document.querySelector('.copy-button') const copyButton = document.querySelector('.copy-button')
const originalText = copyButton.textContent const originalText = copyButton.textContent
copyButton.textContent = 'Copied!' copyButton.textContent = 'Copied!'
copyButton.style.background = '#28a745' copyButton.style.background = '#28a745'
setTimeout(() => { setTimeout(() => {
copyButton.textContent = originalText copyButton.textContent = originalText
copyButton.style.background = '#28a745' copyButton.style.background = '#28a745'
@ -149,34 +149,34 @@ async function copyDeviceLink() {
async function register(user_name) { async function register(user_name) {
const ws = await aWebSocket('/ws/new_user_registration') const ws = await aWebSocket('/ws/new_user_registration')
ws.send(JSON.stringify({ user_name })) ws.send(JSON.stringify({ user_name }))
const optionsJSON = JSON.parse(await ws.recv()) const optionsJSON = JSON.parse(await ws.recv())
if (optionsJSON.error) throw new Error(optionsJSON.error) if (optionsJSON.error) throw new Error(optionsJSON.error)
const registrationResponse = await startRegistration({ optionsJSON }) const registrationResponse = await startRegistration({ optionsJSON })
ws.send(JSON.stringify(registrationResponse)) ws.send(JSON.stringify(registrationResponse))
const result = JSON.parse(await ws.recv()) const result = JSON.parse(await ws.recv())
if (result.error) throw new Error(`Server: ${result.error}`) if (result.error) throw new Error(`Server: ${result.error}`)
await setSessionCookie(result.session_token) await setSessionCookie(result.session_token)
ws.close() ws.close()
} }
async function authenticate() { async function authenticate() {
const ws = await aWebSocket('/ws/authenticate') const ws = await aWebSocket('/ws/authenticate')
const optionsJSON = JSON.parse(await ws.recv()) const optionsJSON = JSON.parse(await ws.recv())
if (optionsJSON.error) throw new Error(optionsJSON.error) if (optionsJSON.error) throw new Error(optionsJSON.error)
const authenticationResponse = await startAuthentication({ optionsJSON }) const authenticationResponse = await startAuthentication({ optionsJSON })
ws.send(JSON.stringify(authenticationResponse)) ws.send(JSON.stringify(authenticationResponse))
const result = JSON.parse(await ws.recv()) const result = JSON.parse(await ws.recv())
if (result.error) throw new Error(`Server: ${result.error}`) if (result.error) throw new Error(`Server: ${result.error}`)
await setSessionCookie(result.session_token) await setSessionCookie(result.session_token)
ws.close() ws.close()
} }
@ -184,27 +184,27 @@ async function authenticate() {
async function addNewCredential() { async function addNewCredential() {
try { try {
showStatus('dashboardStatus', 'Adding new passkey...', 'info') showStatus('dashboardStatus', 'Adding new passkey...', 'info')
const ws = await aWebSocket('/ws/add_credential') const ws = await aWebSocket('/ws/add_credential')
const optionsJSON = JSON.parse(await ws.recv()) const optionsJSON = JSON.parse(await ws.recv())
if (optionsJSON.error) throw new Error(optionsJSON.error) if (optionsJSON.error) throw new Error(optionsJSON.error)
const registrationResponse = await startRegistration({ optionsJSON }) const registrationResponse = await startRegistration({ optionsJSON })
ws.send(JSON.stringify(registrationResponse)) ws.send(JSON.stringify(registrationResponse))
const result = JSON.parse(await ws.recv()) const result = JSON.parse(await ws.recv())
if (result.error) throw new Error(`Server: ${result.error}`) if (result.error) throw new Error(`Server: ${result.error}`)
ws.close() ws.close()
showStatus('dashboardStatus', 'New passkey added successfully!', 'success') showStatus('dashboardStatus', 'New passkey added successfully!', 'success')
setTimeout(() => { setTimeout(() => {
loadCredentials() loadCredentials()
clearStatus('dashboardStatus') clearStatus('dashboardStatus')
}, 2000) }, 2000)
} catch (error) { } catch (error) {
showStatus('dashboardStatus', `Failed to add passkey: ${error.message}`, 'error') showStatus('dashboardStatus', `Failed to add passkey: ${error.message}`, 'error')
} }
@ -219,31 +219,31 @@ async function register(user_name) {
try { try {
const ws = await aWebSocket('/ws/new_user_registration') const ws = await aWebSocket('/ws/new_user_registration')
ws.send(JSON.stringify({user_name})) ws.send(JSON.stringify({user_name}))
// Registration chat // Registration chat
const optionsJSON = JSON.parse(await ws.recv()) const optionsJSON = JSON.parse(await ws.recv())
if (optionsJSON.error) throw new Error(optionsJSON.error) if (optionsJSON.error) throw new Error(optionsJSON.error)
showStatus('registerStatus', 'Save to your authenticator...', 'info') showStatus('registerStatus', 'Save to your authenticator...', 'info')
const registrationResponse = await startRegistration({optionsJSON}) const registrationResponse = await startRegistration({optionsJSON})
ws.send(JSON.stringify(registrationResponse)) ws.send(JSON.stringify(registrationResponse))
const result = JSON.parse(await ws.recv()) const result = JSON.parse(await ws.recv())
if (result.error) throw new Error(`Server: ${result.error}`) if (result.error) throw new Error(`Server: ${result.error}`)
ws.close() ws.close()
// Set session cookie using the JWT token // Set session cookie using the JWT token
await setSessionCookie(result.session_token) await setSessionCookie(result.session_token)
// Set current user from registration result // Set current user from registration result
currentUser = { currentUser = {
user_id: result.user_id, user_id: result.user_id,
user_name: user_name, user_name: user_name,
last_seen: new Date().toISOString() last_seen: new Date().toISOString()
} }
return result return result
} catch (error) { } catch (error) {
throw error throw error
@ -256,31 +256,31 @@ async function authenticate() {
const ws = await aWebSocket('/ws/authenticate') const ws = await aWebSocket('/ws/authenticate')
const optionsJSON = JSON.parse(await ws.recv()) const optionsJSON = JSON.parse(await ws.recv())
if (optionsJSON.error) throw new Error(optionsJSON.error) if (optionsJSON.error) throw new Error(optionsJSON.error)
showStatus('loginStatus', 'Please touch your authenticator...', 'info') showStatus('loginStatus', 'Please use your authenticator...', 'info')
const authResponse = await startAuthentication({optionsJSON}) const authResponse = await startAuthentication({optionsJSON})
await ws.send(JSON.stringify(authResponse)) await ws.send(JSON.stringify(authResponse))
const result = JSON.parse(await ws.recv()) const result = JSON.parse(await ws.recv())
if (result.error) throw new Error(`Server: ${result.error}`) if (result.error) throw new Error(`Server: ${result.error}`)
ws.close() ws.close()
// Set session cookie using the JWT token // Set session cookie using the JWT token
await setSessionCookie(result.session_token) await setSessionCookie(result.session_token)
// Authentication successful, now get user info using HTTP endpoint // Authentication successful, now get user info using HTTP endpoint
const userResponse = await fetch('/api/user-info', { const userResponse = await fetch('/api/user-info', {
method: 'GET', method: 'GET',
credentials: 'include' credentials: 'include'
}) })
const userInfo = await userResponse.json() const userInfo = await userResponse.json()
if (userInfo.error) throw new Error(`Server: ${userInfo.error}`) if (userInfo.error) throw new Error(`Server: ${userInfo.error}`)
currentUser = userInfo.user currentUser = userInfo.user
return result return result
} catch (error) { } catch (error) {
throw error throw error
@ -292,15 +292,15 @@ async function loadCredentials() {
try { try {
const statusElement = document.getElementById('profileStatus') ? 'profileStatus' : 'dashboardStatus' const statusElement = document.getElementById('profileStatus') ? 'profileStatus' : 'dashboardStatus'
showStatus(statusElement, 'Loading credentials...', 'info') showStatus(statusElement, 'Loading credentials...', 'info')
const response = await fetch('/api/user-credentials', { const response = await fetch('/api/user-credentials', {
method: 'GET', method: 'GET',
credentials: 'include' credentials: 'include'
}) })
const result = await response.json() const result = await response.json()
if (result.error) throw new Error(`Server: ${result.error}`) if (result.error) throw new Error(`Server: ${result.error}`)
currentCredentials = result.credentials currentCredentials = result.credentials
aaguidInfo = result.aaguid_info || {} aaguidInfo = result.aaguid_info || {}
updateCredentialList() updateCredentialList()
@ -318,10 +318,10 @@ async function loadUserInfo() {
method: 'GET', method: 'GET',
credentials: 'include' credentials: 'include'
}) })
const result = await response.json() const result = await response.json()
if (result.error) throw new Error(`Server: ${result.error}`) if (result.error) throw new Error(`Server: ${result.error}`)
currentUser = result.user currentUser = result.user
} catch (error) { } catch (error) {
throw error throw error
@ -344,25 +344,25 @@ function updateUserInfo() {
// Update credential list display // Update credential list display
function updateCredentialList() { function updateCredentialList() {
const credentialListEl = document.getElementById('credentialList') const credentialListEl = document.getElementById('credentialList')
if (currentCredentials.length === 0) { if (currentCredentials.length === 0) {
credentialListEl.innerHTML = '<p>No passkeys found.</p>' credentialListEl.innerHTML = '<p>No passkeys found.</p>'
return return
} }
credentialListEl.innerHTML = currentCredentials.map(cred => { credentialListEl.innerHTML = currentCredentials.map(cred => {
// Get authenticator information from AAGUID // Get authenticator information from AAGUID
const authInfo = aaguidInfo[cred.aaguid] const authInfo = aaguidInfo[cred.aaguid]
const authName = authInfo ? authInfo.name : 'Unknown Authenticator' const authName = authInfo ? authInfo.name : 'Unknown Authenticator'
// Determine which icon to use based on current theme (you can implement theme detection) // Determine which icon to use based on current theme (you can implement theme detection)
const isDarkMode = window.matchMedia && window.matchMedia('(prefers-color-scheme: dark)').matches const isDarkMode = window.matchMedia && window.matchMedia('(prefers-color-scheme: dark)').matches
const iconKey = isDarkMode ? 'icon_dark' : 'icon_light' const iconKey = isDarkMode ? 'icon_dark' : 'icon_light'
const authIcon = authInfo && authInfo[iconKey] ? authInfo[iconKey] : null const authIcon = authInfo && authInfo[iconKey] ? authInfo[iconKey] : null
// Check if this is the current session credential // Check if this is the current session credential
const isCurrentSession = cred.is_current_session || false const isCurrentSession = cred.is_current_session || false
return ` return `
<div class="credential-item${isCurrentSession ? ' current-session' : ''}"> <div class="credential-item${isCurrentSession ? ' current-session' : ''}">
<div class="credential-header"> <div class="credential-header">
@ -379,8 +379,8 @@ function updateCredentialList() {
<span class="date-value">${formatHumanReadableDate(cred.last_used)}</span> <span class="date-value">${formatHumanReadableDate(cred.last_used)}</span>
</div> </div>
<div class="credential-actions"> <div class="credential-actions">
<button onclick="deleteCredential('${cred.credential_id}')" <button onclick="deleteCredential('${cred.credential_id}')"
class="btn-delete-credential" class="btn-delete-credential"
${isCurrentSession ? 'disabled title="Cannot delete current session credential"' : ''}> ${isCurrentSession ? 'disabled title="Cannot delete current session credential"' : ''}>
🗑 🗑
</button> </button>
@ -394,13 +394,13 @@ function updateCredentialList() {
// Helper function to format dates in a human-readable way // Helper function to format dates in a human-readable way
function formatHumanReadableDate(dateString) { function formatHumanReadableDate(dateString) {
if (!dateString) return 'Never' if (!dateString) return 'Never'
const date = new Date(dateString) const date = new Date(dateString)
const now = new Date() const now = new Date()
const diffMs = now - date const diffMs = now - date
const diffHours = Math.floor(diffMs / (1000 * 60 * 60)) const diffHours = Math.floor(diffMs / (1000 * 60 * 60))
const diffDays = Math.floor(diffMs / (1000 * 60 * 60 * 24)) const diffDays = Math.floor(diffMs / (1000 * 60 * 60 * 24))
if (diffHours < 1) { if (diffHours < 1) {
return 'Just now' return 'Just now'
} else if (diffHours < 24) { } else if (diffHours < 24) {
@ -423,7 +423,7 @@ async function logout() {
} catch (error) { } catch (error) {
console.error('Logout error:', error) console.error('Logout error:', error)
} }
currentUser = null currentUser = null
currentCredentials = [] currentCredentials = []
aaguidInfo = {} aaguidInfo = {}
@ -434,10 +434,10 @@ async function logout() {
async function checkExistingSession() { async function checkExistingSession() {
const isLoggedIn = await validateStoredToken() const isLoggedIn = await validateStoredToken()
const path = window.location.pathname const path = window.location.pathname
// Protected routes that require authentication // Protected routes that require authentication
const protectedRoutes = ['/auth/profile'] const protectedRoutes = ['/auth/profile']
if (isLoggedIn) { if (isLoggedIn) {
// User is logged in // User is logged in
if (path === '/auth/login' || path === '/auth/register' || path === '/') { if (path === '/auth/login' || path === '/auth/register' || path === '/') {
@ -472,63 +472,4 @@ function initializeApp() {
} }
// Form event handlers // Form event handlers
document.addEventListener('DOMContentLoaded', function() { document.addEventListener('DOMContentLoaded', initializeApp)
// Check for existing session on page load
initializeApp()
// Registration form
const regForm = document.getElementById('registrationForm')
if (regForm) {
const regSubmitBtn = regForm.querySelector('button[type="submit"]')
regForm.addEventListener('submit', async (ev) => {
ev.preventDefault()
regSubmitBtn.disabled = true
clearStatus('registerStatus')
const user_name = (new FormData(regForm)).get('username')
try {
showStatus('registerStatus', 'Starting registration...', 'info')
await register(user_name)
showStatus('registerStatus', `Registration successful for ${user_name}!`, 'success')
// Auto-login after successful registration
setTimeout(() => {
window.location.href = '/auth/profile'
}, 1500)
} catch (err) {
showStatus('registerStatus', `Registration failed: ${err.message}`, 'error')
} finally {
regSubmitBtn.disabled = false
}
})
}
// Authentication form
const authForm = document.getElementById('authenticationForm')
if (authForm) {
const authSubmitBtn = authForm.querySelector('button[type="submit"]')
authForm.addEventListener('submit', async (ev) => {
ev.preventDefault()
authSubmitBtn.disabled = true
clearStatus('loginStatus')
try {
showStatus('loginStatus', 'Starting authentication...', 'info')
await authenticate()
showStatus('loginStatus', 'Authentication successful!', 'success')
// Navigate to profile
setTimeout(() => {
window.location.href = '/auth/profile'
}, 1000)
} catch (err) {
showStatus('loginStatus', `Authentication failed: ${err.message}`, 'error')
} finally {
authSubmitBtn.disabled = false
}
})
}
})

15
static/login.js
View File

@ -3,28 +3,33 @@
document.addEventListener('DOMContentLoaded', function() { document.addEventListener('DOMContentLoaded', function() {
// Initialize the app // Initialize the app
initializeApp() initializeApp()
// Authentication form handler // Authentication form handler
const authForm = document.getElementById('authenticationForm') const authForm = document.getElementById('authenticationForm')
if (authForm) { if (authForm) {
const authSubmitBtn = authForm.querySelector('button[type="submit"]') const authSubmitBtn = authForm.querySelector('button[type="submit"]')
authForm.addEventListener('submit', async (ev) => { authForm.addEventListener('submit', async (ev) => {
ev.preventDefault() ev.preventDefault()
authSubmitBtn.disabled = true authSubmitBtn.disabled = true
clearStatus('loginStatus') clearStatus('loginStatus')
try { try {
showStatus('loginStatus', 'Starting authentication...', 'info') showStatus('loginStatus', 'Starting authentication...', 'info')
await authenticate() await authenticate()
showStatus('loginStatus', 'Authentication successful!', 'success') showStatus('loginStatus', 'Authentication successful!', 'success')
// Navigate to profile // Navigate to profile
setTimeout(() => { setTimeout(() => {
window.location.href = '/auth/profile' window.location.href = '/auth/profile'
}, 1000) }, 1000)
} catch (err) { } catch (err) {
showStatus('loginStatus', `Authentication failed: ${err.message}`, 'error') console.error('Login error:', err)
if (err.name === "NotAllowedError") {
showStatus('loginStatus', `Login cancelled`, 'error')
} else {
showStatus('loginStatus', `Login failed: ${err.message}`, 'error')
}
} finally { } finally {
authSubmitBtn.disabled = false authSubmitBtn.disabled = false
} }

45
static/register.js
View File

@ -3,33 +3,40 @@
document.addEventListener('DOMContentLoaded', function() { document.addEventListener('DOMContentLoaded', function() {
// Initialize the app // Initialize the app
initializeApp() initializeApp()
// Registration form handler // Registration form handler
const regForm = document.getElementById('registrationForm') const regForm = document.getElementById('registrationForm')
if (regForm) { if (regForm) {
const regSubmitBtn = regForm.querySelector('button[type="submit"]') const regSubmitBtn = regForm.querySelector('button[type="submit"]')
regForm.addEventListener('submit', async (ev) => { regForm.addEventListener('submit', ev => {
ev.preventDefault() ev.preventDefault()
regSubmitBtn.disabled = true
clearStatus('registerStatus') clearStatus('registerStatus')
const user_name = (new FormData(regForm)).get('username') const user_name = (new FormData(regForm)).get('username')
regSubmitBtn.disabled = true
try {
showStatus('registerStatus', 'Starting registration...', 'info') const ahandler = async () => {
await register(user_name) try {
showStatus('registerStatus', `Registration successful for ${user_name}!`, 'success') showStatus('registerStatus', 'Starting registration...', 'info')
await register(user_name)
// Auto-login after successful registration showStatus('registerStatus', `Registration successful for ${user_name}!`, 'success')
setTimeout(() => {
window.location.href = '/auth/profile' // Auto-login after successful registration
}, 1500) setTimeout(() => {
} catch (err) { window.location.href = '/'
showStatus('registerStatus', `Registration failed: ${err.message}`, 'error') }, 1500)
} finally { } catch (err) {
regSubmitBtn.disabled = false console.error('Registration error:', err)
if (err.name === "NotAllowedError") {
showStatus('registerStatus', `Registration cancelled`, 'error')
} else {
showStatus('registerStatus', `Registration failed: ${err.message}`, 'error')
}
} finally {
regSubmitBtn.disabled = false
}
} }
ahandler()
}) })
} }
}) })