Skip to content

Commit

Permalink
Remove extra b64 roundtrip
Browse files Browse the repository at this point in the history
  • Loading branch information
@scotttrinh
scotttrinh committed Feb 8, 2024
1 parent 305c8f6 commit 06109e0
Showing 1 changed file with 18 additions and 20 deletions.
38 changes: 18 additions & 20 deletions edb/server/protocol/auth_ext/webauthn.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -246,8 +246,8 @@ async def create_authentication_options_for_email(
self.db,
"""
select ext::auth::WebAuthnFactor {
user_handle_encoded := enc::base64_encode(.user_handle),
credential_id_encoded := enc::base64_encode(.credential_id),
user_handle,
credential_id,
}
filter .email = <str>$email;""",
variables={
Expand All @@ -256,13 +256,13 @@ async def create_authentication_options_for_email(
cached_globally=True,
)
result_json = json.loads(result.decode())
user_handles: set[str] = {x["user_handle_encoded"] for x in result_json}
user_handles: set[str] = {x["user_handle"] for x in result_json}
assert len(user_handles) == 1
user_handle = base64.b64decode(result_json[0]["user_handle_encoded"])
user_handle = base64.b64decode(result_json[0]["user_handle"])

credential_ids = [
webauthn_structs.PublicKeyCredentialDescriptor(
base64.b64decode(x["credential_id_encoded"])
base64.b64decode(x["credential_id"])
)
for x in result_json
]
Expand All @@ -276,32 +276,30 @@ async def create_authentication_options_for_email(
self.db,
"""
with
challenge := <str>$challenge,
user_handle := <str>$user_handle,
challenge := <bytes>$challenge,
user_handle := <bytes>$user_handle,
email := <str>$email,
factor := (
assert_exists(assert_single((
select ext::auth::WebAuthnFactor
filter .user_handle = enc::base64_decode(user_handle)
filter .user_handle = user_handle
and .email = email
)))
)
insert ext::auth::WebAuthnAuthenticationChallenge {
challenge := enc::base64_decode(challenge),
challenge := challenge,
factor := factor,
}
unless conflict on .factor
else (
update ext::auth::WebAuthnAuthenticationChallenge
set {
challenge := enc::base64_decode(challenge)
challenge := challenge
}
);""",
variables={
"challenge": base64.b64encode(
registration_options.challenge
).decode(),
"user_handle": base64.b64encode(user_handle).decode(),
"challenge": registration_options.challenge,
"user_handle": user_handle,
"email": email,
},
)
Expand All @@ -321,15 +319,15 @@ async def is_email_verified(
"""
with
email := <str>$email,
user_handle := enc::base64_decode(<str>$user_handle),
user_handle := <bytes>$user_handle,
factor := (
select ext::auth::WebAuthnFactor
filter .email = email and .user_handle = user_handle
),
select (factor.verified_at <= std::datetime_current()) ?? false;""",
variables={
"email": email,
"user_handle": base64.b64encode(user_handle).decode(),
"user_handle": user_handle,
},
cached_globally=True,
)
Expand All @@ -346,7 +344,7 @@ async def _get_authentication_challenge(
"""
with
email := <str>$email,
user_handle := enc::base64_decode(<str>$user_handle),
user_handle := <bytes>$user_handle,
select ext::auth::WebAuthnAuthenticationChallenge {
id,
created_at,
Expand All @@ -373,7 +371,7 @@ async def _get_authentication_challenge(
filter .factor.email = email and .factor.user_handle = user_handle;""",
variables={
"email": email,
"user_handle": base64.b64encode(user_handle).decode(),
"user_handle": user_handle,
},
cached_globally=True,
)
Expand All @@ -398,12 +396,12 @@ async def _delete_authentication_challenges(
"""
with
email := <str>$email,
user_handle := enc::base64_decode(<str>$user_handle),
user_handle := <bytes>$user_handle,
delete ext::auth::WebAuthnAuthenticationChallenge
filter .factor.email = email and .factor.user_handle = user_handle;""",
variables={
"email": email,
"user_handle": base64.b64encode(user_handle).decode(),
"user_handle": user_handle,
},
)

Expand Down

0 comments on commit 06109e0

Please sign in to comment.