Yuerchu/disknext
1
0
Fork 0
Code Issues 10 Pull Requests Actions Packages Projects 1 Releases Wiki Activity

feat: implement WebAuthn credential registration, login verification, and management

Browse Source 
Complete the WebAuthn/Passkey flow that was previously stubbed out:
- Add ChallengeStore (Redis + TTLCache fallback) for challenge lifecycle
- Add RP config helper to extract rp_id/origin from site settings
- Fix registration start (exclude_credentials, user_id, challenge storage)
- Implement registration finish (verify + create UserAuthn & AuthIdentity)
- Add authentication options endpoint for Discoverable Credentials login
- Fix passkey login to use challenge_token and base64url encoding
- Add credential management endpoints (list/rename/delete)

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
This commit is contained in:
于小丘
2026-02-13 12:56:46 +08:00
parent 729773cae3
commit 800c85bf8d
8 changed files with 451 additions and 59 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
sqlmodels/user.py
View File

@@ -296,7 +296,7 @@ class UserSettingResponse(SQLModelBase):
timezone: int
"""时区"""
authn: "list[AuthnResponse] | None" = None
authn: "list[AuthnDetailResponse] | None" = None
"""认证信息"""
group_expires: datetime | None = None
@@ -448,7 +448,7 @@ class UserAdminDetailResponse(UserPublic):
# 前向引用导入
from .group import GroupClaims, GroupResponse # noqa: E402
from .user_authn import AuthnResponse # noqa: E402
from .user_authn import AuthnDetailResponse # noqa: E402
# 更新前向引用
JWTPayload.model_rebuild()