Add passkey proof-of-concept browser extension scaffolding (#520)

2026-05-11 17:03:33 -04:00 · 2025-09-25 15:50:04 +02:00
parent 181a27e94e
commit dbae407df6
9 changed files with 1066 additions and 1 deletions
--- a/apps/browser-extension/src/entrypoints/contentScript/WebAuthnInterceptor.ts
+++ b/apps/browser-extension/src/entrypoints/contentScript/WebAuthnInterceptor.ts
@@ -0,0 +1,113 @@
+/**
+ * WebAuthn Interceptor - Handles communication between page and extension
+ * TODO: review this file
+ */
+
+import { sendMessage } from 'webext-bridge/content-script';
+
+import { browser } from '#imports';
+
+let interceptorInitialized = false;
+
+/**
+ * Initialize the WebAuthn interceptor
+ */
+export async function initializeWebAuthnInterceptor(_ctx: any): Promise<void> {
+  console.log('[AliasVault] WebAuthnInterceptor: Initializing, interceptorInitialized:', interceptorInitialized);
+  if (interceptorInitialized) {
+    return;
+  }
+
+  // Listen for WebAuthn create events from the page
+  window.addEventListener('aliasVault:webauthn:create', async (event: any) => {
+    const { requestId, publicKey, origin } = event.detail;
+    console.log('[AliasVault] WebAuthnInterceptor: Received webauthn:create event', { requestId, origin });
+
+    try {
+      // Send to background script to handle
+      const result = await sendMessage('WEBAUTHN_CREATE', {
+        publicKey,
+        origin
+      }, 'background');
+
+      console.log('[AliasVault] WebAuthnInterceptor: Background response for create', result);
+
+      // Send response back to page
+      window.dispatchEvent(new CustomEvent('aliasVault:webauthn:create:response', {
+        detail: {
+          requestId,
+          ...result
+        }
+      }));
+    } catch (error: any) {
+      window.dispatchEvent(new CustomEvent('aliasVault:webauthn:create:response', {
+        detail: {
+          requestId,
+          error: error.message
+        }
+      }));
+    }
+  });
+
+  // Listen for WebAuthn get events from the page
+  window.addEventListener('aliasVault:webauthn:get', async (event: any) => {
+    const { requestId, publicKey, origin } = event.detail;
+
+    try {
+      // Send to background script to handle
+      const result = await sendMessage('WEBAUTHN_GET', {
+        publicKey,
+        origin
+      }, 'background');
+
+      // Send response back to page
+      window.dispatchEvent(new CustomEvent('aliasVault:webauthn:get:response', {
+        detail: {
+          requestId,
+          ...result
+        }
+      }));
+    } catch (error: any) {
+      window.dispatchEvent(new CustomEvent('aliasVault:webauthn:get:response', {
+        detail: {
+          requestId,
+          error: error.message
+        }
+      }));
+    }
+  });
+
+  // Inject the page script
+  const script = document.createElement('script');
+  script.src = browser.runtime.getURL('/webauthn-inject.js');
+  script.async = true;
+  (document.head || document.documentElement).appendChild(script);
+  /**
+   *
+   */
+  script.onload = () => {
+    console.log('[AliasVault] WebAuthnInterceptor: Injected script loaded successfully');
+    script.remove();
+  };
+  /**
+   *
+   */
+  script.onerror = () => {
+    console.error('[AliasVault] WebAuthnInterceptor: Failed to load injected script');
+  };
+
+  interceptorInitialized = true;
+  console.log('[AliasVault] WebAuthnInterceptor: Initialization complete');
+}
+
+/**
+ * Check if WebAuthn interception is enabled
+ */
+export async function isWebAuthnInterceptionEnabled(): Promise<boolean> {
+  try {
+    const response = await sendMessage('GET_WEBAUTHN_SETTINGS', {}, 'background');
+    return response.enabled ?? false;
+  } catch {
+    return false;
+  }
+}