Add webauthn-pcd package
#134
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
ichub
reviewed
Apr 5, 2023
rrrliu
force-pushed
the
rrrliu/webauthn-pcd
branch
2 times, most recently
from
45ea552
to
d0fccda
Compare
ichub
reviewed
Apr 27, 2023
README.md
Outdated
| @@ -123,6 +123,7 @@ Some of these packages are used to share development configuration between the d | |||
| - [`@pcd/semaphore-group-pcd`](packages/semaphore-group-pcd): a pcd which wraps the [Semaphore](https://semaphore.appliedzkp.org/docs/introduction) protocol, which allows PCD-consuming applications to consume and generate Semaphore proofs. | |||
| - [`@pcd/semaphore-identity-pcd`](packages/semaphore-identity-pcd): a 'self-evident' PCD, representing the public and private components of a Semaphore identity | |||
| - [`@pcd/semaphore-signature-pcd`](packages/semaphore-signature-pcd): like `@pcd/semaphore-group-pcd`, but with a more specific purpose of using the semaphore protocol to 'sign' a particular string message on behalf of a particular revealed commitment id. | |||
| - [`@pcd/webauthn-pcd`](packages/webauthn-pcd): a pcd that can be used to attest to a valid attestatinos from [WebAuthn](https://webauthn.guide/) hardware devices, such as facial scanners, fingerprints, Yubikeys, and more. | |||
There was a problem hiding this comment.
there's a typo here: attestatinos
also maybe a better description could be something like 'a pcd that can be used to make claims about WebAuthn attestations ...'
apps/consumer-client/package.json
Outdated
| @@ -16,8 +16,11 @@ | |||
| "@pcd/pcd-types": "0.4.2", | |||
| "@pcd/semaphore-group-pcd": "0.4.2", | |||
| "@pcd/semaphore-identity-pcd": "0.4.2", | |||
| "@pcd/webauthn-pcd": "*", | |||
There was a problem hiding this comment.
change this to use the actual package version
| @@ -149,3 +160,55 @@ async function addIdentityPCD() { | |||
|
|
|||
| sendPassportRequest(url); | |||
| } | |||
|
|
|||
| async function addWebAuthnPCD() { | |||
There was a problem hiding this comment.
verbosely commenting this function and each step may be nice
| @@ -0,0 +1 @@ | |||
| export default function Page() {} | |||
apps/passport-client/package.json
Outdated
| @@ -19,6 +19,7 @@ | |||
| "@pcd/pcd-types": "0.4.2", | |||
| "@pcd/semaphore-group-pcd": "0.4.2", | |||
| "@pcd/semaphore-identity-pcd": "0.4.2", | |||
| "@pcd/webauthn-pcd": "*", | |||
There was a problem hiding this comment.
use the correct package version
packages/webauthn-pcd/package.json
Outdated
Comment on lines
23
to
26
| "@types/expect": "^24.3.0", | ||
| "@types/json-bigint": "^1.0.1", | ||
| "@types/mocha": "^10.0.1", | ||
| "@types/sinon": "^10.0.14", |
There was a problem hiding this comment.
as a consequence of the problem described in the above comment, @types/ packages and typescript itself should be a dependency rather than a dev dependency.
Comment on lines
+9
to
+13
| <p> | ||
| This PCD represents a signature proof in the context of a WebAuthn | ||
| credential. In other words, this is a ZK proof that a particular | ||
| credential keypair signed a particular challenge. | ||
| </p> |
Comment on lines
+45
to
+48
| /** | ||
| * The WebAuthn credential information associated with this PCD. | ||
| * Storing bytes as Base64 encoded string to ensure serializability. | ||
| */ |
There was a problem hiding this comment.
One thing to note is that in order for a PCD to be serializable, the claim an proof don't actually have to be trivially serializable - since serializing and deserializing them is taken care of the correspondingly named functions.
Comment on lines
+156
to
+162
| name: WebAuthnPCDTypeName, | ||
| prove, | ||
| verify, | ||
| serialize, | ||
| deserialize, | ||
| renderCardBody: WebAuthnCardBody, | ||
| getDisplayOptions, |
packages/webauthn-pcd/tsconfig.json
Outdated
| @@ -0,0 +1,5 @@ | |||
| { | |||
| "extends": "@pcd/tsconfig/server.json", | |||
There was a problem hiding this comment.
I think this should extend @pcd/tsconfig/ts-library.json instead
|
Also, you should rebase to fix merge conflicts. |
rrrliu
force-pushed
the
rrrliu/webauthn-pcd
branch
from
059ab37
to
a3f4db4
Compare
|
I'm getting a test failure on this PR. Please make sure to run all three of Before submitting a PR |
rrrliu
force-pushed
the
rrrliu/webauthn-pcd
branch
from
ef09b6e
to
51ece36
Compare
Sorry should be fixed now! Ended up using jest over mocha because mocha had issues with using / mocking ESM libraries (e.g. @simplewebauthn/browser) -- hope that's all good. Build and lint also pass. |
ichub
approved these changes
May 17, 2023
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Closes #114
Demo:
Screen.Recording.2023-04-23.at.11.51.38.PM.mov