fix: manual testing works

needs some better page pathing

Author: cpb8010

packages/auth-server/components/account-recovery/passkey-generation-flow/Step3ConfirmNow.vue

@@ -78,6 +78,7 @@
 <script setup lang="ts">
 import { useAppKitAccount } from "@reown/appkit/vue";
 import { type Address, isAddressEqual } from "viem";
+import { getPasskeySignatureFromPublicKeyBytes } from "zksync-sso-4337/client/passkey";
 
 import type { RegisterNewPasskeyReturnType } from "~/composables/usePasskeyRegister";
 
@@ -141,11 +142,17 @@ const handleConfirmRecovery = async () => {
       client = await getWalletClient({ chainId: defaultChain.id });
     }
 
+    // Convert {x, y} public key format to Uint8Array (COSE format)
+    const credentialPublicKeyBytes = getPasskeySignatureFromPublicKeyBytes([
+      props.newPasskey.credentialPublicKey.x,
+      props.newPasskey.credentialPublicKey.y,
+    ]);
+
     await initRecovery({
       client,
       accountToRecover: props.accountAddress,
-      credentialPublicKey: props.newPasskey.credentialPublicKey,
-      accountId: props.newPasskey.credentialId,
+      credentialPublicKey: credentialPublicKeyBytes,
+      credentialId: props.newPasskey.credentialIdBase64url,
     });
     confirmGuardianErrorMessage.value = null;
     emit("next");

packages/auth-server/composables/usePasskeyRegister.ts

@@ -4,6 +4,7 @@ import { createWebAuthnCredential } from "zksync-sso-4337/client";
 // Return type matching what components expect
 export type RegisterNewPasskeyReturnType = {
   credentialId: Hex;
+  credentialIdBase64url: string;
   credentialPublicKey: { x: Hex; y: Hex };
 };
 
@@ -25,6 +26,7 @@ export const usePasskeyRegister = () => {
 
     return {
       credentialId: result.credentialId,
+      credentialIdBase64url: result.credentialIdBase64url,
       credentialPublicKey: result.publicKey,
     };
   });

packages/auth-server/composables/useRecoveryGuardian.ts

@@ -1,5 +1,5 @@
 import type { Account, Address, Chain, Hex, Transport, WalletClient } from "viem";
-import { encodeAbiParameters, keccak256, parseAbiParameters, toHex } from "viem";
+import { encodeAbiParameters, keccak256, pad, parseAbiParameters, toHex } from "viem";
 import { waitForTransactionReceipt } from "viem/actions";
 import { base64urlToUint8Array, getPublicKeyBytesFromPasskeySignature } from "zksync-sso-4337/utils";
 

packages/auth-server/pages/recovery/google/index.vue

@@ -12,7 +12,8 @@
 </template>
 
 <script setup lang="ts">
-const { enabled } = useOidcConfig();
+// const { enabled } = useOidcConfig();
+const enabled = false;
 
 if (!enabled) {
   await navigateTo("/");

packages/auth-server/pages/recovery/index.vue

@@ -46,5 +46,6 @@
 </template>
 
 <script setup lang="ts">
-const { enabled: oidcEnabled } = useOidcConfig();
+// const { enabled: oidcEnabled } = useOidcConfig();
+const oidcEnabled = false;
 </script>

packages/auth-server/stores/local-node.json

@@ -2,15 +2,15 @@
   "rpcUrl": "http://localhost:8545",
   "chainId": 1337,
   "deployer": "0xa0Ee7A142d267C1f36714E4a8F75612F20a79720",
-  "eoaValidator": "0x7a313d9Ff9797d7b0F299A9c7F6d325ED4e175C7",
-  "sessionValidator": "0xBf344DA0c5847266B9D7a8fcFcbb9449fc804B6B",
-  "webauthnValidator": "0x2C94D758140037d36c139409c2380Bd4AC3f082b",
-  "guardianExecutor": "0x7fB73973d71dA68b5B7b9D29AEc7d278A16aA661",
-  "accountImplementation": "0x48B16b015F0495a637A18B133D18156524CF10cC",
-  "beacon": "0x1edB03d812A15782143E05ac212CC74baD076a43",
-  "factory": "0x3Cb6Ce4F4733420Ca17dAaC6B11c74a392d7EB10",
-  "testPaymaster": "0x21efE34a462B1c2af645D515738480A3fE0F483b",
-  "mockPaymaster": "0x21efE34a462B1c2af645D515738480A3fE0F483b",
+  "eoaValidator": "0x6cFA08b105a8674B3249CaA3B4405783A0D8a58B",
+  "sessionValidator": "0x7079ade5d4C71aE7868E6AC8553148FfC3D8d660",
+  "webauthnValidator": "0xE619369f26285FEd402bd0c3526aEb1faf2BE2C0",
+  "guardianExecutor": "0x85ed36BD17265a4eb2f6d87FAd3E6277066986f0",
+  "accountImplementation": "0xE604bd7C1d6dde44Ebe434d3BE6FD5fD9145C860",
+  "beacon": "0xb3b3496CC339d80b2182a3985FeF5EBE60bc896C",
+  "factory": "0x197072f17a5e1A35C1909999e6f3cFEDe5A42BB8",
+  "testPaymaster": "0xfE88Fdf39d345eD27a600852962A51f9EC6Ee3f4",
+  "mockPaymaster": "0xfE88Fdf39d345eD27a600852962A51f9EC6Ee3f4",
   "entryPoint": "0x4337084D9E255Ff0702461CF8895CE9E3b5Ff108",
   "bundlerUrl": "http://localhost:4337"
 }

packages/sdk-4337/src/client/passkey/cose.ts

@@ -1,4 +1,5 @@
 import { Buffer } from "buffer";
+import type { Hex } from "viem";
 
 enum COSEKEYS {
   kty = 1, // Key Type
@@ -80,6 +81,71 @@ function decodeValue(buffer: Buffer, offset: number): [number | Buffer, number]
   }
 }
 
+// Encode an integer in CBOR format
+function encodeInt(int: number): Buffer {
+  if (int >= 0 && int <= 23) {
+    // Small positive integer (0–23)
+    return Buffer.from([int]);
+  } else if (int >= 24 && int <= 255) {
+    // 1-byte positive integer
+    return Buffer.from([0x18, int]);
+  } else if (int >= 256 && int <= 65535) {
+    // 2-byte positive integer
+    const buf = Buffer.alloc(3);
+    buf[0] = 0x19;
+    buf.writeUInt16BE(int, 1);
+    return buf;
+  } else if (int < 0 && int >= -24) {
+    // Small negative integer (-1 to -24)
+    return Buffer.from([0x20 - (int + 1)]);
+  } else if (int < -24 && int >= -256) {
+    // 1-byte negative integer
+    return Buffer.from([0x38, -int - 1]);
+  } else if (int < -256 && int >= -65536) {
+    // 2-byte negative integer
+    const buf = Buffer.alloc(3);
+    buf[0] = 0x39;
+    buf.writeUInt16BE(-int - 1, 1);
+    return buf;
+  } else {
+    throw new Error("Unsupported integer range");
+  }
+}
+
+// Encode a byte array in CBOR format
+function encodeBytes(bytes: Buffer): Buffer {
+  if (bytes.length <= 23) {
+    return Buffer.concat([Buffer.from([0x40 + bytes.length]), bytes]); // Byte array with small length
+  } else if (bytes.length < 256) {
+    return Buffer.concat([Buffer.from([0x58, bytes.length]), bytes]); // Byte array with 1-byte length prefix
+  } else {
+    throw new Error("Unsupported byte array length");
+  }
+}
+
+// Encode a map in CBOR format
+function encodeMap(map: COSEPublicKeyMap): Buffer {
+  const encodedItems: Buffer[] = [];
+
+  // CBOR map header, assuming the map size fits within small integer encoding
+  const mapHeader = 0xA0 | map.size;
+  encodedItems.push(Buffer.from([mapHeader]));
+
+  map.forEach((value, key) => {
+    // Encode the key
+    encodedItems.push(encodeInt(key));
+
+    // Encode the value based on its type (Buffer or number)
+    if (Buffer.isBuffer(value)) {
+      encodedItems.push(encodeBytes(value));
+    } else {
+      encodedItems.push(encodeInt(value));
+    }
+  });
+
+  return Buffer.concat(encodedItems);
+}
+
 /**
  * Decodes a CBOR-encoded COSE public key (from WebAuthn credential) and returns the x,y coordinates.
  * @param publicPasskey - CBOR-encoded COSE public key as Uint8Array
@@ -92,3 +158,25 @@ export const getPublicKeyBytesFromPasskeySignature = (publicPasskey: Uint8Array)
 
   return [Buffer.from(x), Buffer.from(y)];
 };
+
+/**
+ * Encodes x,y hex coordinates into a CBOR-encoded COSE public key format.
+ * This is the inverse of getPublicKeyBytesFromPasskeySignature.
+ * @param coordinates - Tuple of [x, y] coordinates as hex strings
+ * @returns CBOR-encoded COSE public key as Uint8Array
+ */
+export const getPasskeySignatureFromPublicKeyBytes = (coordinates: readonly [Hex, Hex]): Uint8Array => {
+  const [xHex, yHex] = coordinates;
+  const x = Buffer.from(xHex.slice(2), "hex");
+  const y = Buffer.from(yHex.slice(2), "hex");
+
+  const cosePublicKey: COSEPublicKeyMap = new Map();
+  cosePublicKey.set(COSEKEYS.kty, 2); // Type 2 for EC keys
+  cosePublicKey.set(COSEKEYS.alg, -7); // -7 for ES256 algorithm
+  cosePublicKey.set(COSEKEYS.crv, 1); // Curve ID (1 for P-256)
+  cosePublicKey.set(COSEKEYS.x, x);
+  cosePublicKey.set(COSEKEYS.y, y);
+
+  const encodedPublicKey = encodeMap(cosePublicKey);
+  return new Uint8Array(encodedPublicKey);
+};

packages/sdk-4337/src/client/passkey/index.ts

@@ -8,7 +8,10 @@ export {
   type PasskeyClientActions,
   passkeyClientActions,
 } from "./client-actions.js";
-export { getPublicKeyBytesFromPasskeySignature } from "./cose.js";
+export {
+  getPasskeySignatureFromPublicKeyBytes,
+  getPublicKeyBytesFromPasskeySignature,
+} from "./cose.js";
 export {
   base64urlToUint8Array,
   type CreateCredentialOptions,

packages/sdk-4337/src/client/passkey/webauthn.ts

@@ -246,6 +246,11 @@ export interface WebAuthnCredential {
    */
   credentialId: Hex;
 
+  /**
+   * Raw credential ID (base64url encoded string)
+   */
+  credentialIdBase64url: string;
+
   publicKey: {
     /**
      * X coordinate of P-256 public key (32 bytes, hex string with 0x prefix)
@@ -391,6 +396,7 @@ export async function createWebAuthnCredential(options: CreateCredentialOptions)
 
   return {
     credentialId: bytesToHex(credId),
+    credentialIdBase64url: credential.id,
     publicKey: {
       x: bytesToHex(xBuffer),
       y: bytesToHex(yBuffer),