Compare commits
2 Commits
a58efebb5c
...
e512edcde5
Author | SHA1 | Date | |
---|---|---|---|
e512edcde5 | |||
18507c7d79 |
109
credentailsex.py
109
credentailsex.py
@ -31,13 +31,34 @@ creates a new credential for it, and authenticates the credential.
|
|||||||
This works with both FIDO 2.0 devices as well as with U2F devices.
|
This works with both FIDO 2.0 devices as well as with U2F devices.
|
||||||
On Windows, the native WebAuthn API will be used.
|
On Windows, the native WebAuthn API will be used.
|
||||||
"""
|
"""
|
||||||
|
import time
|
||||||
|
|
||||||
|
import fido2.webauthn
|
||||||
from fido2.hid import CtapHidDevice
|
from fido2.hid import CtapHidDevice
|
||||||
from fido2.client import Fido2Client, WindowsClient, UserInteraction
|
from fido2.client import Fido2Client, WindowsClient, UserInteraction
|
||||||
from fido2.server import Fido2Server
|
from fido2.server import Fido2Server
|
||||||
from getpass import getpass
|
from getpass import getpass
|
||||||
import sys
|
import sys
|
||||||
import ctypes
|
import ctypes
|
||||||
|
from fido2.ctap2 import Ctap2
|
||||||
|
|
||||||
|
REGISTER = False
|
||||||
|
gotAaguid = None
|
||||||
|
|
||||||
|
while True:
|
||||||
|
while True:
|
||||||
|
dev = next(CtapHidDevice.list_devices(), None)
|
||||||
|
|
||||||
|
if dev:
|
||||||
|
ctap2 = Ctap2(dev)
|
||||||
|
|
||||||
|
info = ctap2.get_info()
|
||||||
|
gotAaguid = info.aaguid
|
||||||
|
print(str(gotAaguid))
|
||||||
|
break
|
||||||
|
|
||||||
|
print("Waiting for device...")
|
||||||
|
time.sleep(0.1)
|
||||||
|
|
||||||
# Handle user interaction
|
# Handle user interaction
|
||||||
class CliInteraction(UserInteraction):
|
class CliInteraction(UserInteraction):
|
||||||
@ -50,7 +71,7 @@ class CliInteraction(UserInteraction):
|
|||||||
def request_uv(self, permissions, rd_id):
|
def request_uv(self, permissions, rd_id):
|
||||||
print("User Verification required.")
|
print("User Verification required.")
|
||||||
return True
|
return True
|
||||||
|
if REGISTER:
|
||||||
|
|
||||||
uv = "discouraged"
|
uv = "discouraged"
|
||||||
|
|
||||||
@ -170,6 +191,92 @@ print("ATTESTATION OBJECT:", result.attestation_object)
|
|||||||
print()
|
print()
|
||||||
print("CREDENTIAL DATA:", auth_data.credential_data)
|
print("CREDENTIAL DATA:", auth_data.credential_data)
|
||||||
|
|
||||||
|
else:
|
||||||
|
server = Fido2Server({"id": "example.com", "name": "Example RP"}, attestation="direct")
|
||||||
|
uv = "discouraged"
|
||||||
|
|
||||||
|
# Set up a FIDO 2 client using the origin https://example.com
|
||||||
|
client = Fido2Client(dev, "https://example.com", user_interaction=CliInteraction())
|
||||||
|
|
||||||
|
import psycopg2
|
||||||
|
|
||||||
|
# Replace these variables with your connection parameters
|
||||||
|
dbname = "CNSA-276-FP-DAS"
|
||||||
|
user = "FP-DEV-USER"
|
||||||
|
password = "purchase-immortal-prescribe-repave-detention-seizing-candied-antiques-episode-list"
|
||||||
|
host = "postgres.eggtech.net"
|
||||||
|
|
||||||
|
# Define the SQL query for retrieving data
|
||||||
|
select_query = '''
|
||||||
|
SELECT "AAGUID", credential_id, pk_algo, pk_1, pk_3, pk_neg1, pk_neg2, pk_neg3
|
||||||
|
FROM credential_data
|
||||||
|
WHERE "AAGUID" = %s;
|
||||||
|
'''
|
||||||
|
|
||||||
|
|
||||||
|
# Function to connect to the PostgreSQL database and retrieve data
|
||||||
|
def fetch_data(aaguid):
|
||||||
|
conn = None
|
||||||
|
try:
|
||||||
|
# Connect to the PostgreSQL server
|
||||||
|
conn = psycopg2.connect(dbname=dbname, user=user, password=password, host=host)
|
||||||
|
cur = conn.cursor()
|
||||||
|
|
||||||
|
# Execute the SQL query
|
||||||
|
cur.execute(select_query, (gotAaguid,))
|
||||||
|
|
||||||
|
# Fetch the results
|
||||||
|
result = cur.fetchone()
|
||||||
|
if result:
|
||||||
|
data = {
|
||||||
|
"AAGUID": result[0],
|
||||||
|
"credential_id": result[1],
|
||||||
|
"pk_algo": result[2],
|
||||||
|
"pk_1": result[3],
|
||||||
|
"pk_3": result[4],
|
||||||
|
"pk_neg1": result[5],
|
||||||
|
"pk_neg2": result[6],
|
||||||
|
"pk_neg3": result[7]
|
||||||
|
}
|
||||||
|
return data
|
||||||
|
else:
|
||||||
|
print("No data found for AAGUID:", aaguid)
|
||||||
|
return None
|
||||||
|
|
||||||
|
# Close communication with the database
|
||||||
|
cur.close()
|
||||||
|
except (Exception, psycopg2.DatabaseError) as error:
|
||||||
|
print(error)
|
||||||
|
finally:
|
||||||
|
if conn is not None:
|
||||||
|
conn.close()
|
||||||
|
|
||||||
|
|
||||||
|
# Example usage: Fetch data for a specific AAGUID and store in variables
|
||||||
|
aaguid_data = fetch_data("your_specific_aaguid_here")
|
||||||
|
|
||||||
|
if aaguid_data:
|
||||||
|
# Store each piece of data into a separate variable
|
||||||
|
testa = aaguid_data["AAGUID"]
|
||||||
|
cred_id = aaguid_data["credential_id"]
|
||||||
|
pk_algo = aaguid_data["pk_algo"]
|
||||||
|
pk_1 = aaguid_data["pk_1"]
|
||||||
|
pk_3 = aaguid_data["pk_3"]
|
||||||
|
pk_neg1 = aaguid_data["pk_neg1"]
|
||||||
|
pk_neg2 = aaguid_data["pk_neg2"]
|
||||||
|
pk_neg3 = aaguid_data["pk_neg3"]
|
||||||
|
auth_data = fido2.webauthn.AttestedCredentialData(testa, cred_id, pk_algo)
|
||||||
|
# auth_data.aaguid = AAGUID
|
||||||
|
# auth_data.credential_id = cred_id
|
||||||
|
# auth_data.public_key.ALGORITHM= pk_algo
|
||||||
|
# auth_data.public_key.setdefault(1, pk_1)
|
||||||
|
# auth_data.public_key.setdefault(3, pk_3)
|
||||||
|
# auth_data.public_key.setdefault(-1, pk__1)
|
||||||
|
# auth_data.public_key.setdefault(-2, pk__2)
|
||||||
|
# auth_data.public_key.setdefault(-3,pk__3)
|
||||||
|
|
||||||
|
credentials = [auth_data]
|
||||||
|
|
||||||
|
|
||||||
# Prepare parameters for getAssertion
|
# Prepare parameters for getAssertion
|
||||||
request_options, state = server.authenticate_begin(credentials, user_verification=uv)
|
request_options, state = server.authenticate_begin(credentials, user_verification=uv)
|
||||||
|
Loading…
Reference in New Issue
Block a user