zammad/app/frontend/apps/desktop/entities/two-factor-configuration/plugins/security-keys.ts

// Copyright (C) 2012-2024 Zammad Foundation, https://zammad-foundation.org/

import type { TwoFactorConfigurationPlugin } from '#shared/entities/two-factor/types.ts'
import { EnumTwoFactorAuthenticationMethod } from '#shared/graphql/types.ts'

import TwoFactorConfigurationSecurityKeys from '#desktop/components/TwoFactor/TwoFactorConfiguration/TwoFactorConfigurationSecurityKeys.vue'

import type { CredentialCreationOptionsJSON } from '@github/webauthn-json'

export default {
  name: EnumTwoFactorAuthenticationMethod.SecurityKeys,
  editable: true,
  component: TwoFactorConfigurationSecurityKeys,
  actionButtonA11yLabel: __('Action menu button for security keys'),
  getActionA11yLabel(type) {
    switch (type) {
      case 'setup':
        return __('Set up security keys')
      case 'default':
        return __('Set security keys as default')
      case 'edit':
        return __('Edit security keys')
      case 'remove':
        return __('Remove security keys')
      default:
        return ''
    }
  },
  async setup(
    publicKey: NonNullable<CredentialCreationOptionsJSON['publicKey']>,
  ) {
    if (!window.isSecureContext) {
      return {
        success: false,
        retry: false,
        error: __('The application is not running in a secure context.'),
      }
    }
    try {
      const { create } = await import('@github/webauthn-json')

      const publicKeyCredential = await create({ publicKey })
      return {
        success: true,
        payload: {
          challenge: publicKey.challenge,
          credential: publicKeyCredential,
        },
      }
    } catch {
      return {
        success: false,
        retry: true,
        error: __('Security key setup failed.'),
      }
    }
  },
} satisfies TwoFactorConfigurationPlugin