fix(security): update authentication and registration flows to be com…

…patible with Ory Kratos `1.3.0`
secutils-dev · Sep 29, 2024 · 42a511f · 42a511f
1 parent 10eb384
commit 42a511f
Show file tree

Hide file tree

Showing 6 changed files with 21 additions and 25 deletions.
diff --git a/package-lock.json b/package-lock.json
diff --git a/package.json b/package.json
@@ -28,7 +28,7 @@
     "@emotion/css": "^11.13.0",
     "@emotion/react": "^11.13.0",
     "@monaco-editor/react": "^4.6.0",
-    "@ory/client": "^1.14.3",
+    "@ory/client": "^1.15.4",
     "axios": "^1.7.4",
     "moment": "^2.30.1",
     "nanoid": "^5.0.7",

diff --git a/src/app_container/settings_flyout.tsx b/src/app_container/settings_flyout.tsx
@@ -165,10 +165,9 @@ export function SettingsFlyout({ onClose }: Props) {
           throw new Error('Cannot set passkey.');
         }
 
-        const { publicKey } = JSON.parse(
-          // Trim `window.__oryWebAuthnRegistration(...)`
-          ((publicKeyNode.attributes as UiNodeInputAttributes).onclick as string).slice(33, -1),
-        ) as { publicKey: SerializedPublicKeyCredentialCreationOptions };
+        const { publicKey } = JSON.parse((publicKeyNode.attributes as UiNodeInputAttributes).value as string) as {
+          publicKey: SerializedPublicKeyCredentialCreationOptions;
+        };
 
         try {
           await api.updateSettingsFlow({

diff --git a/src/pages/signin/confirm_access_modal.tsx b/src/pages/signin/confirm_access_modal.tsx
@@ -122,12 +122,11 @@ export default function ConfirmAccessModal({ email, action, onClose }: ConfirmAc
           throw axiosResponse;
         }
 
-        const publicKey = // Trim `window.__oryWebAuthnLogin(...)`
-          (
-            JSON.parse(((publicKeyNode.attributes as UiNodeInputAttributes).onclick as string).slice(26, -1)) as {
-              publicKey: SerializedPublicKeyCredentialRequestOptions;
-            }
-          ).publicKey;
+        const publicKey = (
+          JSON.parse((publicKeyNode.attributes as UiNodeInputAttributes).value as string) as {
+            publicKey: SerializedPublicKeyCredentialRequestOptions;
+          }
+        ).publicKey;
 
         await api.updateLoginFlow({
           flow: updatedFlow.id,

diff --git a/src/pages/signin/signin_page.tsx b/src/pages/signin/signin_page.tsx
@@ -139,12 +139,11 @@ export function SigninPage() {
           throw axiosResponse;
         }
 
-        const publicKey = // Trim `window.__oryWebAuthnLogin(...)`
-          (
-            JSON.parse(((publicKeyNode.attributes as UiNodeInputAttributes).onclick as string).slice(26, -1)) as {
-              publicKey: SerializedPublicKeyCredentialRequestOptions;
-            }
-          ).publicKey;
+        const publicKey = (
+          JSON.parse((publicKeyNode.attributes as UiNodeInputAttributes).value as string) as {
+            publicKey: SerializedPublicKeyCredentialRequestOptions;
+          }
+        ).publicKey;
 
         await api.updateLoginFlow({
           flow: updatedFlow.id,

diff --git a/src/pages/signup/signup_page.tsx b/src/pages/signup/signup_page.tsx
@@ -162,10 +162,9 @@ export function SignupPage() {
           throw axiosResponse;
         }
 
-        const { publicKey } = JSON.parse(
-          // Trim `window.__oryWebAuthnRegistration(...)`
-          ((publicKeyNode.attributes as UiNodeInputAttributes).onclick as string).slice(33, -1),
-        ) as { publicKey: SerializedPublicKeyCredentialCreationOptions };
+        const { publicKey } = JSON.parse((publicKeyNode.attributes as UiNodeInputAttributes).value as string) as {
+          publicKey: SerializedPublicKeyCredentialCreationOptions;
+        };
 
         await api.updateRegistrationFlow({
           flow: updatedFlow.id,