<br />
<b>Deprecated</b>:  Function get_magic_quotes_gpc() is deprecated in <b>/hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php</b> on line <b>99</b><br />
<br />
<b>Deprecated</b>:  The each() function is deprecated. This message will be suppressed on further calls in <b>/hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php</b> on line <b>619</b><br />
<br />
<b>Warning</b>:  Cannot modify header information - headers already sent by (output started at /hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php:99) in <b>/hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php</b> on line <b>832</b><br />
<br />
<b>Warning</b>:  Cannot modify header information - headers already sent by (output started at /hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php:99) in <b>/hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php</b> on line <b>839</b><br />
<br />
<b>Warning</b>:  Cannot modify header information - headers already sent by (output started at /hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php:99) in <b>/hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php</b> on line <b>839</b><br />
<br />
<b>Warning</b>:  Cannot modify header information - headers already sent by (output started at /hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php:99) in <b>/hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php</b> on line <b>839</b><br />
<br />
<b>Warning</b>:  Cannot modify header information - headers already sent by (output started at /hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php:99) in <b>/hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php</b> on line <b>839</b><br />
<br />
<b>Warning</b>:  Cannot modify header information - headers already sent by (output started at /hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php:99) in <b>/hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php</b> on line <b>839</b><br />
<br />
<b>Warning</b>:  Cannot modify header information - headers already sent by (output started at /hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php:99) in <b>/hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php</b> on line <b>839</b><br />
<br />
<b>Warning</b>:  Cannot modify header information - headers already sent by (output started at /hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php:99) in <b>/hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php</b> on line <b>839</b><br />
<br />
<b>Warning</b>:  Cannot modify header information - headers already sent by (output started at /hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php:99) in <b>/hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php</b> on line <b>839</b><br />
<br />
<b>Warning</b>:  Cannot modify header information - headers already sent by (output started at /hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php:99) in <b>/hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php</b> on line <b>839</b><br />
<br />
<b>Warning</b>:  Cannot modify header information - headers already sent by (output started at /hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php:99) in <b>/hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php</b> on line <b>839</b><br />
<br />
<b>Warning</b>:  Cannot modify header information - headers already sent by (output started at /hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php:99) in <b>/hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php</b> on line <b>839</b><br />
<br />
<b>Warning</b>:  Cannot modify header information - headers already sent by (output started at /hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php:99) in <b>/hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php</b> on line <b>839</b><br />
<br />
<b>Warning</b>:  Cannot modify header information - headers already sent by (output started at /hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php:99) in <b>/hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php</b> on line <b>839</b><br />
<br />
<b>Warning</b>:  Cannot modify header information - headers already sent by (output started at /hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php:99) in <b>/hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php</b> on line <b>839</b><br />
<br />
<b>Warning</b>:  Cannot modify header information - headers already sent by (output started at /hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php:99) in <b>/hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php</b> on line <b>839</b><br />
<br />
<b>Warning</b>:  Cannot modify header information - headers already sent by (output started at /hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php:99) in <b>/hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php</b> on line <b>839</b><br />
<br />
<b>Warning</b>:  Cannot modify header information - headers already sent by (output started at /hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php:99) in <b>/hermes/walnacweb04/walnacweb04ab/b2791/pow.jasaeld/htdocs/De1337/nothing/index.php</b> on line <b>839</b><br />
import { bufferToBase64url, base64urlToBuffer } from "webauthn-json";

(function () {
  const handleEvent = function (event) {
    event.preventDefault();
    return event.target;
  };

  const setError = function (submit, error, message) {
    if (submit) {
      submit.disabled = false;
    }
    if (error) {
      error.hidden = false;
      error.textContent = String(message);
    }
  };

  const handleHtmlResponse = function (submit, responseError, response) {
    if (response.redirected) {
      window.location.href = response.url;
    } else {
      response
        .text()
        .then(function (html) {
          document.body.innerHTML = html;
        })
        .catch(function (error) {
          setError(submit, responseError, error);
        });
    }
  };

  const credentialsToBase64 = function (credentials) {
    return {
      type: credentials.type,
      id: credentials.id,
      rawId: bufferToBase64url(credentials.rawId),
      clientExtensionResults: credentials.clientExtensionResults,
      response: {
        authenticatorData: bufferToBase64url(
          credentials.response.authenticatorData,
        ),
        attestationObject: bufferToBase64url(
          credentials.response.attestationObject,
        ),
        clientDataJSON: bufferToBase64url(credentials.response.clientDataJSON),
        signature: bufferToBase64url(credentials.response.signature),
        userHandle: bufferToBase64url(credentials.response.userHandle),
      },
    };
  };

  const credentialsToBuffer = function (credentials) {
    return credentials.map(function (credential) {
      return {
        id: base64urlToBuffer(credential.id),
        type: credential.type,
      };
    });
  };

  const parseCreationOptionsFromJSON = function (json) {
    return {
      ...json,
      challenge: base64urlToBuffer(json.challenge),
      user: { ...json.user, id: base64urlToBuffer(json.user.id) },
      excludeCredentials: credentialsToBuffer(json.excludeCredentials),
    };
  };

  const parseRequestOptionsFromJSON = function (json) {
    return {
      ...json,
      challenge: base64urlToBuffer(json.challenge),
      allowCredentials: credentialsToBuffer(json.allowCredentials),
    };
  };

  const onReady = (fn) => {
    if (document.readyState === "loading") {
      document.addEventListener("DOMContentLoaded", fn);
    } else {
      fn();
    }
  };

  onReady(() => {
    const credentialForm = document.querySelector(
      ".js-new-webauthn-credential--form",
    );
    if (!credentialForm) {
      return;
    }
    const credentialError = document.querySelector(
      ".js-new-webauthn-credential--error",
    );
    const credentialSubmit = document.querySelector(
      ".js-new-webauthn-credential--submit",
    );
    const csrfMeta = document.querySelector("[name='csrf-token']");
    const csrfToken = csrfMeta ? csrfMeta.getAttribute("content") : "";

    credentialForm.addEventListener("submit", function (event) {
      const form = handleEvent(event);
      const nicknameInput = document.querySelector(
        ".js-new-webauthn-credential--nickname",
      );
      const nickname = nicknameInput ? nicknameInput.value : "";

      fetch(form.action + ".json", {
        method: "POST",
        credentials: "same-origin",
        headers: { "X-CSRF-Token": csrfToken },
      })
        .then(function (response) {
          return response.json();
        })
        .then(function (json) {
          return navigator.credentials.create({
            publicKey: parseCreationOptionsFromJSON(json),
          });
        })
        .then(function (credentials) {
          return fetch(form.action + "/callback.json", {
            method: "POST",
            credentials: "same-origin",
            headers: {
              "X-CSRF-Token": csrfToken,
              "Content-Type": "application/json",
            },
            body: JSON.stringify({
              credentials: credentialsToBase64(credentials),
              webauthn_credential: { nickname: nickname },
            }),
          });
        })
        .then(function (response) {
          response
            .json()
            .then(function (json) {
              if (json.redirect_url) {
                window.location.href = json.redirect_url;
              } else {
                setError(credentialSubmit, credentialError, json.message);
              }
            })
            .catch(function (error) {
              setError(credentialSubmit, credentialError, error);
            });
        })
        .catch(function (error) {
          setError(credentialSubmit, credentialError, error);
        });
    });
  });

  const getCredentials = async function (event, csrfToken) {
    const form = handleEvent(event);
    const options = JSON.parse(form.dataset.options);
    const credentials = await navigator.credentials.get({
      publicKey: parseRequestOptionsFromJSON(options),
    });
    return await fetch(form.action, {
      method: "POST",
      credentials: "same-origin",
      redirect: "follow",
      headers: {
        "X-CSRF-Token": csrfToken,
        "Content-Type": "application/json",
      },
      body: JSON.stringify({
        credentials: credentialsToBase64(credentials),
      }),
    });
  };

  onReady(() => {
    const cliSessionForm = document.querySelector(
      ".js-webauthn-session-cli--form",
    );
    if (!cliSessionForm) {
      return;
    }
    const cliSessionError = document.querySelector(
      ".js-webauthn-session-cli--error",
    );
    const csrfMeta = document.querySelector("[name='csrf-token']");
    const csrfToken = csrfMeta ? csrfMeta.getAttribute("content") : "";

    function failed_verification_url(message) {
      const url = new URL(
        `${location.origin}/webauthn_verification/failed_verification`,
      );
      url.searchParams.append("error", message);
      return url.href;
    }

    cliSessionForm.addEventListener("submit", function (event) {
      getCredentials(event, csrfToken)
        .then(function (response) {
          response.text().then(function (text) {
            if (text == "success") {
              window.location.href = `${location.origin}/webauthn_verification/successful_verification`;
            } else {
              window.location.href = failed_verification_url(text);
            }
          });
        })
        .catch(function (error) {
          window.location.href = failed_verification_url(error.message);
        });
    });
  });

  onReady(() => {
    const sessionForm = document.querySelector(".js-webauthn-session--form");
    if (!sessionForm) {
      return;
    }
    const sessionSubmit = document.querySelector(
      ".js-webauthn-session--submit",
    );
    const sessionError = document.querySelector(".js-webauthn-session--error");
    const csrfMeta = document.querySelector("[name='csrf-token']");
    const csrfToken = csrfMeta ? csrfMeta.getAttribute("content") : "";

    sessionForm.addEventListener("submit", async function (event) {
      try {
        const response = await getCredentials(event, csrfToken);
        handleHtmlResponse(sessionSubmit, sessionError, response);
      } catch (error) {
        setError(sessionSubmit, sessionError, error);
      }
    });
  });
})();