mirror/aliasvault
1
0
Fork 0
mirror of https://github.com/aliasvault/aliasvault.git synced 2026-05-12 01:13:30 -04:00
Code Issues Packages Projects Releases Wiki Activity
Files
1427693c1d94c323d1b2b5d192182e70f8192cb3
aliasvault/apps/browser-extension/src/entrypoints/contentScript/WebAuthnInterceptor.ts
Leendert de Borst 1427693c1d Cleanup log statements (#520)
2025-10-26 21:05:41 +01:00

139 lines
3.7 KiB
TypeScript
Raw Blame History

/**
* WebAuthn Interceptor - Handles communication between page and extension
*/
/* eslint-disable @typescript-eslint/no-explicit-any */
import { sendMessage } from 'webext-bridge/content-script';
import type { WebAuthnSettingsResponse } from '@/utils/passkey/types';
import { browser } from '#imports';
let interceptorInitialized = false;
/**
* Initialize the WebAuthn interceptor
*/
export async function initializeWebAuthnInterceptor(_ctx: any): Promise<void> {
if (interceptorInitialized) {
return;
}
// Listen for WebAuthn create events from the page
window.addEventListener('aliasvault:webauthn:create', async (event: any) => {
const { requestId, publicKey, origin } = event.detail;
try {
// Check if passkey provider is enabled
const enabled = await isWebAuthnInterceptionEnabled();
if (!enabled) {
// If disabled, signal fallback to native browser implementation
window.dispatchEvent(new CustomEvent('aliasvault:webauthn:create:response', {
detail: {
requestId,
fallback: true
}
}));
return;
}
// Send to background script to handle
const result = await sendMessage('WEBAUTHN_CREATE', {
publicKey,
origin
}, 'background');
// Send response back to page
window.dispatchEvent(new CustomEvent('aliasvault:webauthn:create:response', {
detail: {
requestId,
...(typeof result === 'object' && result !== null ? result : {})
}
}));
} catch (error: any) {
window.dispatchEvent(new CustomEvent('aliasvault:webauthn:create:response', {
detail: {
requestId,
error: error.message
}
}));
}
});
// Listen for WebAuthn get events from the page
window.addEventListener('aliasvault:webauthn:get', async (event: any) => {
const { requestId, publicKey, origin } = event.detail;
try {
// Check if passkey provider is enabled
const enabled = await isWebAuthnInterceptionEnabled();
if (!enabled) {
// If disabled, signal fallback to native browser implementation
window.dispatchEvent(new CustomEvent('aliasvault:webauthn:get:response', {
detail: {
requestId,
fallback: true
}
}));
return;
}
// Send to background script to handle
const result = await sendMessage('WEBAUTHN_GET', {
publicKey,
origin
}, 'background');
// Send response back to page
window.dispatchEvent(new CustomEvent('aliasvault:webauthn:get:response', {
detail: {
requestId,
...(typeof result === 'object' && result !== null ? result : {})
}
}));
} catch (error: any) {
window.dispatchEvent(new CustomEvent('aliasvault:webauthn:get:response', {
detail: {
requestId,
error: error.message
}
}));
}
});
// Inject the page script
const script = document.createElement('script');
script.src = browser.runtime.getURL('/webauthn.js');
script.async = true;
(document.head || document.documentElement).appendChild(script);
/**
* onload
*/
script.onload = () : void => {
script.remove();
};
/**
* onerror
*/
script.onerror = () : void => {
// Ignore
};
interceptorInitialized = true;
}
/**
* Check if WebAuthn interception is enabled for the current site
*/
export async function isWebAuthnInterceptionEnabled(): Promise<boolean> {
try {
const response = await sendMessage('GET_WEBAUTHN_SETTINGS', {
hostname: window.location.hostname
}, 'background') as unknown as WebAuthnSettingsResponse;
return response.enabled ?? false;
} catch {
return false;
}
}
Reference in New Issue View Git Blame Copy Permalink