kypflug/fido-5.js Secret

## fido-5.js
var jwkToPem = require('jwk-to-pem')
var crypto = require('crypto');

var webAuthAuthenticator = {
   validateSignature: function (publicKey, clientData, authnrData, signature, challenge) {
       // Make sure the challenge in the client data
       // matches the expected challenge
       var c = new Buffer(clientData, 'base64');
       var cc = JSON.parse(c.toString().replace(/\0/g,''));
       if(cc.challenge != challenge) return false;

       // Hash data with sha256
       const hash = crypto.createHash('sha256');
       hash.update(c);
       var h = hash.digest();

       // Verify signature is correct for authnrData + hash
       var verify = crypto.createVerify('RSA-SHA256');
       verify.update(new Buffer(authnrData,'base64'));
       verify.update(h);
       return verify.verify(jwkToPem(JSON.parse(publicKey)), signature, 'base64');
   }
};
	var jwkToPem = require('jwk-to-pem')
	var crypto = require('crypto');

	var webAuthAuthenticator = {
	validateSignature: function (publicKey, clientData, authnrData, signature, challenge) {
	// Make sure the challenge in the client data
	// matches the expected challenge
	var c = new Buffer(clientData, 'base64');
	var cc = JSON.parse(c.toString().replace(/\0/g,''));
	if(cc.challenge != challenge) return false;

	// Hash data with sha256
	const hash = crypto.createHash('sha256');
	hash.update(c);
	var h = hash.digest();

	// Verify signature is correct for authnrData + hash
	var verify = crypto.createVerify('RSA-SHA256');
	verify.update(new Buffer(authnrData,'base64'));
	verify.update(h);
	return verify.verify(jwkToPem(JSON.parse(publicKey)), signature, 'base64');
	}
	};