Skip to content
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
8 changes: 4 additions & 4 deletions package-lock.json

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion package.json
Original file line number Diff line number Diff line change
Expand Up @@ -91,7 +91,7 @@
"typescript": "^5.7.2"
},
"dependencies": {
"@authorizerdev/authorizer-js": "3.2.1",
"@authorizerdev/authorizer-js": "3.3.0-rc.0",
"@storybook/preset-scss": "^1.0.3",
"validator": "^13.11.0"
}
Expand Down
94 changes: 94 additions & 0 deletions src/components/AuthorizerPasskeyLogin.tsx
Original file line number Diff line number Diff line change
@@ -0,0 +1,94 @@
import { FC, useState } from 'react';
import { AuthToken, isWebauthnSupported } from '@authorizerdev/authorizer-js';

import '../styles/default.css';
import { ButtonAppearance, MessageType } from '../constants';
import { useAuthorizer } from '../contexts/AuthorizerContext';
import { StyledButton, StyledSeparator } from '../styledComponents';
import { Message } from './Message';

// AuthorizerPasskeyLogin offers a full passwordless, usernameless "Sign in
// with a passkey" option (discoverable-credential login) alongside the other
// login methods. It only renders when the browser actually supports the
// WebAuthn JSON ceremony APIs the SDK relies on - there is no server-side
// config flag for passkeys (unlike social login), it's purely a browser
// capability.
export const AuthorizerPasskeyLogin: FC<{
onLogin?: (data: AuthToken | void) => void;
}> = ({ onLogin }) => {
const [error, setError] = useState(``);
const [loading, setLoading] = useState(false);
const { setAuthData, config, authorizerRef } = useAuthorizer();

if (!isWebauthnSupported()) {
return null;
}

// Only show the "OR" separator if AuthorizerRoot is actually going to
// render something below it - otherwise the passkey button ends up
// followed by a trailing separator with nothing underneath. Mirrors the
// exact set of conditions AuthorizerRoot uses to decide whether
// AuthorizerSocialLogin, AuthorizerBasicAuthLogin, or
// AuthorizerMagicLinkLogin render anything on the login view.
const hasSocialLogin =
config.is_google_login_enabled ||
config.is_github_login_enabled ||
config.is_facebook_login_enabled ||
config.is_linkedin_login_enabled ||
config.is_apple_login_enabled ||
config.is_twitter_login_enabled ||
config.is_microsoft_login_enabled ||
config.is_twitch_login_enabled ||
config.is_roblox_login_enabled;
const hasBasicAuthLogin =
(config.is_basic_authentication_enabled ||
config.is_mobile_basic_authentication_enabled) &&
!config.is_magic_link_login_enabled;
const hasAnotherLoginMethod =
hasSocialLogin || hasBasicAuthLogin || config.is_magic_link_login_enabled;

const onClick = async () => {
setError(``);
try {
setLoading(true);
const { data: res, errors } = await authorizerRef.loginWithPasskey();
if (errors && errors.length) {
setError(errors[0]?.message || ``);
return;
}
if (res) {
setAuthData({
user: res.user || null,
token: res,
config,
loading: false,
});
}
if (onLogin) {
onLogin(res);
}
} catch (err) {
setError((err as Error).message);
} finally {
setLoading(false);
}
};

const onErrorClose = () => setError(``);

return (
<>
{error && (
<Message type={MessageType.Error} text={error} onClose={onErrorClose} />
)}
<StyledButton
onClick={onClick}
disabled={loading}
appearance={ButtonAppearance.Default}
>
{loading ? `Waiting for passkey ...` : `Sign in with a passkey`}
</StyledButton>
{hasAnotherLoginMethod && <StyledSeparator>OR</StyledSeparator>}
</>
);
};
2 changes: 2 additions & 0 deletions src/components/AuthorizerRoot.tsx
Original file line number Diff line number Diff line change
Expand Up @@ -9,6 +9,7 @@ import { AuthorizerSignup } from './AuthorizerSignup';
import type { FormFieldsOverrides } from './AuthorizerSignup';
import { AuthorizerForgotPassword } from './AuthorizerForgotPassword';
import { AuthorizerSocialLogin } from './AuthorizerSocialLogin';
import { AuthorizerPasskeyLogin } from './AuthorizerPasskeyLogin';
import { AuthorizerMagicLinkLogin } from './AuthorizerMagicLinkLogin';
import { createRandomString } from '../utils/common';
import { hasWindow } from '../utils/window';
Expand Down Expand Up @@ -60,6 +61,7 @@ export const AuthorizerRoot: FC<{
return (
<StyledWrapper>
<AuthorizerSocialLogin urlProps={urlProps} roles={roles} />
{view === Views.Login && <AuthorizerPasskeyLogin onLogin={onLogin} />}
{view === Views.Login &&
(config.is_basic_authentication_enabled ||
config.is_mobile_basic_authentication_enabled) &&
Expand Down
2 changes: 2 additions & 0 deletions src/index.tsx
Original file line number Diff line number Diff line change
Expand Up @@ -14,6 +14,7 @@ import { AuthorizerResetPassword } from './components/AuthorizerResetPassword';
import { AuthorizerVerifyOtp } from './components/AuthorizerVerifyOtp';
import { AuthorizerRoot as Authorizer } from './components/AuthorizerRoot';
import { AuthorizerTOTPScanner } from './components/AuthorizerTOTPScanner';
import { AuthorizerPasskeyLogin } from './components/AuthorizerPasskeyLogin';

export {
useAuthorizer,
Expand All @@ -27,4 +28,5 @@ export {
AuthorizerResetPassword,
AuthorizerVerifyOtp,
AuthorizerTOTPScanner,
AuthorizerPasskeyLogin,
};
Loading