1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
|
// Copyright 2022 The Chromium Authors
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "chrome/browser/webauthn/local_credential_management_mac.h"
#include "base/functional/bind.h"
#include "base/task/sequenced_task_runner.h"
#include "chrome/browser/webauthn/chrome_web_authentication_delegate.h"
#include "chrome/browser/webauthn/local_credential_management.h"
#include "device/fido/mac/credential_store.h"
LocalCredentialManagementMac::LocalCredentialManagementMac(
device::fido::mac::AuthenticatorConfig config)
: config_(config) {}
std::unique_ptr<LocalCredentialManagement> LocalCredentialManagement::Create(
Profile* profile) {
auto config =
ChromeWebAuthenticationDelegate::TouchIdAuthenticatorConfigForProfile(
profile);
return std::make_unique<LocalCredentialManagementMac>(config);
}
void LocalCredentialManagementMac::HasCredentials(
base::OnceCallback<void(bool)> callback) {
Enumerate(
base::BindOnce(
[](std::optional<std::vector<device::DiscoverableCredentialMetadata>>
metadata) { return metadata ? !metadata->empty() : false; })
.Then(std::move(callback)));
}
void LocalCredentialManagementMac::Enumerate(
base::OnceCallback<void(
std::optional<std::vector<device::DiscoverableCredentialMetadata>>)>
callback) {
device::fido::mac::TouchIdCredentialStore credential_store(config_);
std::optional<std::list<device::fido::mac::Credential>> credentials =
credential_store.FindResidentCredentials(/*rp_id=*/std::nullopt);
if (!credentials) {
// FindResidentCredentials() encountered an error.
base::SequencedTaskRunner::GetCurrentDefault()->PostTask(
FROM_HERE, base::BindOnce(std::move(callback), std::nullopt));
return;
}
std::vector<device::DiscoverableCredentialMetadata> credential_metadata;
credential_metadata.reserve(credentials->size());
for (auto& credential : *credentials) {
credential_metadata.emplace_back(
device::AuthenticatorType::kTouchID, credential.rp_id,
credential.credential_id,
credential.metadata.ToPublicKeyCredentialUserEntity(),
/*provider_name=*/std::nullopt);
}
std::sort(credential_metadata.begin(), credential_metadata.end(),
CredentialComparator());
base::SequencedTaskRunner::GetCurrentDefault()->PostTask(
FROM_HERE,
base::BindOnce(std::move(callback), std::move(credential_metadata)));
}
void LocalCredentialManagementMac::Delete(
base::span<const uint8_t> credential_id,
base::OnceCallback<void(bool)> callback) {
device::fido::mac::TouchIdCredentialStore credential_store(config_);
base::SequencedTaskRunner::GetCurrentDefault()->PostTask(
FROM_HERE,
base::BindOnce(std::move(callback),
credential_store.DeleteCredentialById(credential_id)));
}
void LocalCredentialManagementMac::Edit(
base::span<uint8_t> credential_id,
std::string new_username,
base::OnceCallback<void(bool)> callback) {
device::fido::mac::TouchIdCredentialStore credential_store(config_);
base::SequencedTaskRunner::GetCurrentDefault()->PostTask(
FROM_HERE,
base::BindOnce(std::move(callback), credential_store.UpdateCredential(
credential_id, new_username)));
}
|
