From e9f87c437dc7b40872d55235d4b421ed9424b6cb Mon Sep 17 00:00:00 2001
From: William Desportes <williamdes@wdes.fr>
Date: Tue, 27 Oct 2020 23:38:56 +0100
Subject: [PATCH 01/23] Add a .gitattributes file

Just exclude some non usefull files from vendor tarballs
And exclude a future .github folder
---
 .gitattributes | 3 +++
 1 file changed, 3 insertions(+)
 create mode 100644 .gitattributes

diff --git a/.gitattributes b/.gitattributes
new file mode 100644
index 0000000..02b13c8
--- /dev/null
+++ b/.gitattributes
@@ -0,0 +1,3 @@
+.gitattributes export-ignore
+.gitignore export-ignore
+.github export-ignore

From a1dcbf13fdaaaad29e6a6f037a2e1b59a50ba0ea Mon Sep 17 00:00:00 2001
From: William Desportes <williamdes@wdes.fr>
Date: Tue, 27 Oct 2020 23:43:45 +0100
Subject: [PATCH 02/23] Add some approximate PHP requirements

---
 composer.json | 1 +
 1 file changed, 1 insertion(+)

diff --git a/composer.json b/composer.json
index 8da2271..9758520 100644
--- a/composer.json
+++ b/composer.json
@@ -9,6 +9,7 @@
         }
     ],
     "require": {
+        "php": "^7.1 || ^8.0",
         "ext-openssl":"*"
     },
     "autoload": {

From 81531b754c25023ba918d1dcd1915f53905ddbd9 Mon Sep 17 00:00:00 2001
From: William Desportes <williamdes@wdes.fr>
Date: Tue, 27 Oct 2020 23:43:54 +0100
Subject: [PATCH 03/23] Add cool links to composer.json

---
 composer.json | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/composer.json b/composer.json
index 9758520..9e8e88c 100644
--- a/composer.json
+++ b/composer.json
@@ -2,12 +2,17 @@
     "name": "samyoul/u2f-php-server",
     "description": "Server side handling class for FIDO U2F registration and authentication",
     "license":"BSD-2-Clause",
+    "homepage": "https://github.com/Samyoul/U2F-php-server#readme",
     "authors": [
         {
             "name": "Samuel Hawksby-Robinson",
             "email": "samuel@samyoul.com"
         }
     ],
+    "support": {
+        "issues": "https://github.com/Samyoul/U2F-php-server/issues",
+        "source": "https://github.com/Samyoul/U2F-php-server"
+    },
     "require": {
         "php": "^7.1 || ^8.0",
         "ext-openssl":"*"

From d93137119c807e5f717adbdd10074572a11d1a1a Mon Sep 17 00:00:00 2001
From: William Desportes <williamdes@wdes.fr>
Date: Tue, 27 Oct 2020 23:44:14 +0100
Subject: [PATCH 04/23] Clean source files

---
 src/Registration.php        | 6 ------
 src/RegistrationRequest.php | 7 +------
 src/SignRequest.php         | 6 ------
 src/U2FException.php        | 6 ------
 src/U2FServer.php           | 7 +------
 5 files changed, 2 insertions(+), 30 deletions(-)

diff --git a/src/Registration.php b/src/Registration.php
index dbc1c9a..c1ac4d9 100644
--- a/src/Registration.php
+++ b/src/Registration.php
@@ -1,10 +1,4 @@
 <?php
-/**
- * Created by IntelliJ IDEA.
- * User: samuel
- * Date: 09/12/2016
- * Time: 14:59
- */
 
 namespace Samyoul\U2F\U2FServer;
 
diff --git a/src/RegistrationRequest.php b/src/RegistrationRequest.php
index 5204d4b..daf425f 100644
--- a/src/RegistrationRequest.php
+++ b/src/RegistrationRequest.php
@@ -1,10 +1,5 @@
 <?php
-/**
- * Created by IntelliJ IDEA.
- * User: samuel
- * Date: 09/12/2016
- * Time: 14:48
- */
+
 namespace Samyoul\U2F\U2FServer;
 
 
diff --git a/src/SignRequest.php b/src/SignRequest.php
index 8a825aa..8be002a 100644
--- a/src/SignRequest.php
+++ b/src/SignRequest.php
@@ -1,10 +1,4 @@
 <?php
-/**
- * Created by IntelliJ IDEA.
- * User: samuel
- * Date: 09/12/2016
- * Time: 15:14
- */
 
 namespace Samyoul\U2F\U2FServer;
 
diff --git a/src/U2FException.php b/src/U2FException.php
index 03c5eaf..aa9ee04 100644
--- a/src/U2FException.php
+++ b/src/U2FException.php
@@ -1,10 +1,4 @@
 <?php
-/**
- * Created by IntelliJ IDEA.
- * User: samuel
- * Date: 09/12/2016
- * Time: 14:51
- */
 
 namespace Samyoul\U2F\U2FServer;
 
diff --git a/src/U2FServer.php b/src/U2FServer.php
index 403ce6b..7e55d0f 100644
--- a/src/U2FServer.php
+++ b/src/U2FServer.php
@@ -1,10 +1,5 @@
 <?php
-/**
- * Created by IntelliJ IDEA.
- * User: samuel
- * Date: 09/12/2016
- * Time: 14:40
- */
+
 namespace Samyoul\U2F\U2FServer;
 
 class U2FServer

From 8be00381f3769e944a47e7953305be82d1b118bf Mon Sep 17 00:00:00 2001
From: William Desportes <williamdes@wdes.fr>
Date: Tue, 27 Oct 2020 23:49:27 +0100
Subject: [PATCH 05/23] Rename LICENCE.md to LICENCE

---
 LICENCE.md => LICENCE | 0
 1 file changed, 0 insertions(+), 0 deletions(-)
 rename LICENCE.md => LICENCE (100%)

diff --git a/LICENCE.md b/LICENCE
similarity index 100%
rename from LICENCE.md
rename to LICENCE

From da93e90a7085a3253b2877c12dc0fba6a4237a71 Mon Sep 17 00:00:00 2001
From: William Desportes <williamdes@wdes.fr>
Date: Tue, 27 Oct 2020 23:50:10 +0100
Subject: [PATCH 06/23] Add support for phpunit

---
 .gitignore        |  1 +
 composer.json     |  9 +++++++++
 phpunit.xml       | 26 ++++++++++++++++++++++++++
 test/VoidTest.php | 13 +++++++++++++
 4 files changed, 49 insertions(+)
 create mode 100644 phpunit.xml
 create mode 100644 test/VoidTest.php

diff --git a/.gitignore b/.gitignore
index 2f238a8..378584b 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,4 +1,5 @@
 # IntelliJ project files
 .idea
 *.iml
+.phpunit.result.cache
 /vendor/
diff --git a/composer.json b/composer.json
index 9e8e88c..22779ee 100644
--- a/composer.json
+++ b/composer.json
@@ -13,11 +13,20 @@
         "issues": "https://github.com/Samyoul/U2F-php-server/issues",
         "source": "https://github.com/Samyoul/U2F-php-server"
     },
+    "scripts": {
+        "phpunit": "./vendor/bin/phpunit"
+    },
     "require": {
         "php": "^7.1 || ^8.0",
         "ext-openssl":"*"
     },
+    "require-dev": {
+        "phpunit/phpunit": "^7 || ^8 || ^9"
+    },
     "autoload": {
         "psr-4": { "Samyoul\\U2F\\U2FServer\\": ["src/"] }
+    },
+    "autoload-dev": {
+        "psr-4": { "Samyoul\\U2F\\U2FServer\\Tests\\": ["test/"] }
     }
 }
diff --git a/phpunit.xml b/phpunit.xml
new file mode 100644
index 0000000..590d5ea
--- /dev/null
+++ b/phpunit.xml
@@ -0,0 +1,26 @@
+<phpunit
+        xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+        xsi:noNamespaceSchemaLocation="http://schema.phpunit.de/7.0/phpunit.xsd"
+        colors="true"
+        backupGlobals="false"
+        bootstrap="vendor/autoload.php"
+>
+
+    <filter>
+        <whitelist>
+            <directory>src</directory>
+        </whitelist>
+    </filter>
+
+    <logging>
+        <log type="coverage-html" target="build/coverage/html/"/>
+        <log type="coverage-clover" target="build/logs/clover.xml"/>
+    </logging>
+
+    <testsuites>
+        <testsuite name="Unit tests">
+            <directory suffix=".php">test/</directory>
+        </testsuite>
+    </testsuites>
+
+</phpunit>
diff --git a/test/VoidTest.php b/test/VoidTest.php
new file mode 100644
index 0000000..e10ef0f
--- /dev/null
+++ b/test/VoidTest.php
@@ -0,0 +1,13 @@
+<?php
+
+namespace Samyoul\U2F\U2FServer\Tests;
+
+use PHPUnit\Framework\TestCase;
+
+class VoidTest extends TestCase
+{
+    public function testNothing(): void
+    {
+        $this->assertTrue(true);
+    }
+}

From a34e9be9fb0a1d20a518e9db0bd9dd86e99f3640 Mon Sep 17 00:00:00 2001
From: William Desportes <williamdes@wdes.fr>
Date: Tue, 27 Oct 2020 23:55:00 +0100
Subject: [PATCH 07/23] Ignore .vscode

---
 .gitignore | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.gitignore b/.gitignore
index 378584b..8214d68 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,5 +1,6 @@
 # IntelliJ project files
 .idea
+.vscode
 *.iml
 .phpunit.result.cache
 /vendor/

From 779225da4d450faf4fddd95f1a4a6183dff840c6 Mon Sep 17 00:00:00 2001
From: William Desportes <williamdes@wdes.fr>
Date: Fri, 30 Oct 2020 15:47:25 +0100
Subject: [PATCH 08/23] Improvements to README.md

- Remove uses of compact function
- Improve commands highlighting
- Improve links
- Use HTTPS everywhere
- Replace double by single quotes
- Use a better licence URL than a fixed one
- Fix a typo
---
 README.md | 126 ++++++++++++++++++++++++++++++------------------------
 1 file changed, 71 insertions(+), 55 deletions(-)

diff --git a/README.md b/README.md
index 2f17a1f..667e2cc 100644
--- a/README.md
+++ b/README.md
@@ -1,7 +1,7 @@
 # U2F-php-server
 
 [![Latest Stable Version](https://img.shields.io/packagist/v/samyoul/u2f-php-server.svg?style=flat-square)](https://packagist.org/packages/samyoul/u2f-php-server)
-[![License](https://img.shields.io/badge/license-BSD_2_Clause-brightgreen.svg?style=flat-square)](LICENCE.md)
+[![GitHub license](https://img.shields.io/github/license/Samyoul/U2F-php-server?style=flat-square)](LICENCE.md)
 
 Server-side handling of FIDO U2F registration and authentication for PHP.
 
@@ -65,7 +65,7 @@ A few **things you need** to know before working with this:
 
 ### OpenSSL
 
-This repository requires OpenSSL 1.0.0 or higher. For further details on installing OpenSSL please refer to the php manual http://php.net/manual/en/openssl.installation.php .
+This repository requires OpenSSL 1.0.0 or higher. For further details on installing OpenSSL please refer to the [php manual](https://www.php.net/manual/en/openssl.installation.php).
 
 Also see [Compatibility Code](#compatibility-code), to check if you have the correct version of OpenSSL installed, and are unsure how else to check.
 
@@ -73,7 +73,7 @@ Also see [Compatibility Code](#compatibility-code), to check if you have the cor
 
 My presumption is that if you are looking to add U2F authentication to a php system, then you'll probably are also looking for some client-side handling. You've got a U2F enabled USB device and you want to get the USB device speaking with the browser and then with your server running php.
 
-1. Google already have this bit sorted : https://github.com/google/u2f-ref-code/blob/master/u2f-gae-demo/war/js/u2f-api.js
+1. Google already have this bit sorted : [u2f-api.js](https://github.com/google/u2f-ref-code/blob/master/u2f-gae-demo/war/js/u2f-api.js)
 2. [Mastahyeti](https://github.com/mastahyeti) has created a repo dedicated to Google's JavaScript Client-side API : https://github.com/mastahyeti/u2f-api
 
 ### HTTPS and SSL
@@ -122,7 +122,7 @@ TODO the descriptions
 1. When the browser loads the page the JavaScript fires the `u2f.sign(authenticationRequest, function(data){ // Callback logic })` function
 1. The view will use JavaScript / Browser to poll the host machine's ports for a FIDO U2F device
 1. Once the HID has been found the JavaScript / Browser will send the sign request with data.
-1. The HID will prompt the user to authorise the sign request
+1. The HID will prompt the user to authorize the sign request
 1. On success the HID returns authentication data
 1. The JavaScript receives the HID's returned data and passes it to the server
 1. The application takes the returned data passes it to the `U2F::authenticate($authenticationRequest, $registrations, $authenticationResponse)` method
@@ -135,10 +135,10 @@ For a full working code example for this repository please see [the dedicated ex
 
 You can also install it with the following:
 
-```bash
+```sh
 $ git clone https://github.com/Samyoul/U2F-php-server-examples.git
 $ cd u2f-php-server-examples
-$ composer install 
+$ composer install
 ```
 
 
@@ -161,7 +161,8 @@ You'll only ever need to use this method call once per installation and only in
 ```php
 <?php
 
-require('vendor/autoload.php');
+require __DIR__ . '/vendor/autoload.php';
+
 use Samyoul\U2F\U2FServer\U2FServer as U2F;
 
 var_dump(U2F::checkOpenSSLVersion());
@@ -179,13 +180,14 @@ We assume that user has successfully authenticated and wishes to register.
 ```php
 <?php
 
-require('vendor/autoload.php');
+require __DIR__ . '/vendor/autoload.php';
+
 use Samyoul\U2F\U2FServer\U2FServer as U2F;
 
 session_start();
 
 // This can be anything, but usually easier if you choose your applications domain and top level domain.
-$appId = "yourdomain.tld";
+$appId = 'yourdomain.tld';
 
 // Call the makeRegistration method, passing in the app ID
 $registrationData = U2F::makeRegistration($appId);
@@ -198,13 +200,16 @@ $jsRequest = json_encode($registrationData['request']);
 $jsSignatures = json_encode($registrationData['signatures']);
 
 // now pass the data to a fictitious view.
-echo View::make('template/location/u2f-registration.html', compact("jsRequest", "jsSignatures"));
+echo View::make('template/location/u2f-registration.html', [
+    'jsRequest' => $jsRequest,
+    'jsSignatures' => $jsSignatures,
+]);
 ```
 
 #### Registration Step 2:
 **Client-side, Talking To The USB**
 
-Non-AJAX client-side registration of U2F key token. AJAX can of course be used in your application, but it is easier to demonstrate a linear process without AJAX and callbacks. 
+Non-AJAX client-side registration of U2F key token. AJAX can of course be used in your application, but it is easier to demonstrate a linear process without AJAX and callbacks.
 
 ```html
 <html>
@@ -214,35 +219,35 @@ Non-AJAX client-side registration of U2F key token. AJAX can of course be used i
 <body>
     <h1>U2F Registration</h1>
     <h2>Please enter your FIDO U2F device into your computer's USB port. Then confirm registration on the device.</h2>
-    
+
     <div style="display:none;">
         <form id="u2f_submission" method="post" action="auth/u2f-registration/confirm">
             <input id="u2f_registration_response" name="registration_response" value="" />
         </form>
     </div>
-    
+
 <script type="javascript" src="https://raw.githubusercontent.com/google/u2f-ref-code/master/u2f-gae-demo/war/js/u2f-api.js"></script>
 <script>
     setTimeout(function() {
-    
+
         // A magic JS function that talks to the USB device. This function will keep polling for the USB device until it finds one.
         u2f.register([<?php echo $jsRequest ?>], <?php echo $jsSignatures ?>], function(data) {
-           
+
             // Handle returning error data
             if(data.errorCode && errorCode != 0) {
-                alert("registration failed with error: " + data.errorCode);
-                // Or handle the error however you'd like. 
-                
+                alert('registration failed with error: ' + data.errorCode);
+                // Or handle the error however you'd like.
+
                 return;
             }
-    
+
             // On success process the data from USB device to send to the server
             var registration_response = JSON.stringify(data);
-            
+
             // Get the form items so we can send data back to the server
             var form = document.getElementById('u2f_submission');
             var response = document.getElementById('u2f_registration_response');
-            
+
             // Fill and submit form.
             response.value = JSON.stringify(registration_response);
             form.submit();
@@ -270,25 +275,27 @@ session_start();
 $user = getAuthenticatedUser();
 
 try {
-    
+
     // Validate the registration response against the registration request.
     // The output are the credentials you need to store for U2F authentication.
     $validatedRegistration = U2F::register(
         $_SESSION['registrationRequest'],
         json_decode($_POST['u2f_registration_response'])
     );
-    
-    // Fictitious function representing the storing of the validated U2F registration data against the authenticated user. 
+
+    // Fictitious function representing the storing of the validated U2F registration data against the authenticated user.
     $user->storeRegistration($validatedRegistration);
-    
+
     // Then let your user know what happened
-    $userMessage = "Success";
+    $userMessage = 'Success';
 } catch( Exception $e ) {
-    $userMessage = "We had an error: ". $e->getMessage();
+    $userMessage = 'We had an error: '. $e->getMessage();
 }
 
 //Fictitious view.
-echo View::make('template/location/u2f-registration-result.html', compact('userMessage'));
+echo View::make('template/location/u2f-registration-result.html', [
+    'userMessage' => $userMessage,
+]);
 ```
 
 ---
@@ -302,7 +309,7 @@ We assume that user has successfully authenticated and has previously registered
 
 ```php
 <?php
-    
+
 require('vendor/autoload.php');
 use Samyoul\U2F\U2FServer\U2FServer as U2F;
 
@@ -315,7 +322,7 @@ $user = getAuthenticatedUser();
 $registrations = $user->U2FRegistrations();
 
 // This can be anything, but usually easier if you choose your applications domain and top level domain.
-$appId = "yourdomain.tld";
+$appId = 'yourdomain.tld';
 
 // Call the U2F makeAuthentication method, passing in the user's registration(s) and the app ID
 $authenticationRequest = U2F::makeAuthentication($registrations, $appId);
@@ -324,14 +331,15 @@ $authenticationRequest = U2F::makeAuthentication($registrations, $appId);
 $_SESSION['authenticationRequest'] = $authenticationRequest;
 
 // now pass the data to a fictitious view.
-echo View::make('template/location/u2f-authentication.html', compact("authenticationRequest"));
+echo View::make('template/location/u2f-authentication.html', [
+    'authenticationRequest' => $authenticationRequest,
+]);
 ```
 
 #### Authentication Step 2:
 **Client-side, Talking To The USB**
 
-Non-AJAX client-side authentication of U2F key token. AJAX can of course be used in your application, but it is easier to demonstrate a linear process without AJAX and callbacks. 
-
+Non-AJAX client-side authentication of U2F key token. AJAX can of course be used in your application, but it is easier to demonstrate a linear process without AJAX and callbacks.
 
 ```html
 <html>
@@ -341,7 +349,7 @@ Non-AJAX client-side authentication of U2F key token. AJAX can of course be used
 <body>
     <h1>U2F Authentication</h1>
     <h2>Please enter your FIDO U2F device into your computer's USB port. Then confirm authentication on the device.</h2>
-    
+
     <div style="display:none;">
         <form id="u2f_submission" method="post" action="auth/u2f-authentication/confirm">
             <input id="u2f_authentication_response" name="authentication_response" value="" />
@@ -351,25 +359,25 @@ Non-AJAX client-side authentication of U2F key token. AJAX can of course be used
     <script type="javascript" src="https://raw.githubusercontent.com/google/u2f-ref-code/master/u2f-gae-demo/war/js/u2f-api.js"></script>
     <script>
     setTimeout(function() {
-        
+
         // Magic JavaScript talking to your HID
         u2f.sign(<?php echo $authenticationRequest; ?>, function(data) {
-            
+
             // Handle returning error data
             if(data.errorCode && errorCode != 0) {
-                alert("Authentication failed with error: " + data.errorCode);
-                // Or handle the error however you'd like. 
-                
+                alert('Authentication failed with error: ' + data.errorCode);
+                // Or handle the error however you'd like.
+
                 return;
             }
-    
+
             // On success process the data from USB device to send to the server
             var authentication_response = JSON.stringify(data);
-            
+
             // Get the form items so we can send data back to the server
             var form = document.getElementById('u2f_submission');
             var response = document.getElementById('u2f_authentication_response');
-            
+
             // Fill and submit form.
             response.value = JSON.stringify(authentication_response);
             form.submit();
@@ -400,7 +408,7 @@ $user = authenticatedUser();
 $registrations = $user->U2FRegistrations();
 
 try {
-    
+
     // Validate the authentication response against the registration request.
     // The output are the credentials you need to store for U2F authentication.
     $validatedAuthentication = U2F::authenticate(
@@ -408,18 +416,20 @@ try {
         $registrations,
         json_decode($_POST['u2f_authentication_response'])
     );
-    
-    // Fictitious function representing the updating of the U2F token count integer. 
+
+    // Fictitious function representing the updating of the U2F token count integer.
     $user->updateU2FRegistrationCount($validatedAuthentication);
-    
+
     // Then let your user know what happened
-    $userMessage = "Success";
+    $userMessage = 'Success';
 } catch( Exception $e ) {
-    $userMessage = "We had an error: ". $e->getMessage();
+    $userMessage = 'We had an error: '. $e->getMessage();
 }
 
 //Fictitious view.
-echo View::make('template/location/u2f-authentication-result.html', compact('userMessage'));
+echo View::make('template/location/u2f-authentication-result.html', [
+    'userMessage' => $userMessage,
+]);
 ```
 
 ---
@@ -428,10 +438,10 @@ Again, if you want to just download some example code to play with just install
 
 You can also install it with the following:
 
-```bash
+```sh
 $ git clone https://github.com/Samyoul/U2F-php-server-examples.git
 $ cd u2f-php-server-examples
-$ composer install 
+$ composer install
 ```
 
 ## Frameworks
@@ -442,7 +452,9 @@ See the dedicated repository : https://github.com/Samyoul/U2F-Laravel-server
 
 Installation:
 
-`composer require u2f-laravel-server`
+```sh
+composer require u2f-laravel-server
+```
 
 ### Yii Framework
 
@@ -450,7 +462,9 @@ See the dedicated repository : https://github.com/Samyoul/U2F-Yii-server
 
 Installation:
 
-`composer require u2f-yii-server`
+```sh
+composer require u2f-yii-server
+```
 
 ### CodeIgniter Framework
 
@@ -458,7 +472,9 @@ See the dedicated repository : https://github.com/Samyoul/U2F-CodeIgniter-server
 
 Installation:
 
-`composer require u2f-codeigniter-server`
+```sh
+composer require u2f-codeigniter-server
+```
 
 ### Can't see yours?
 
@@ -470,4 +486,4 @@ The repository is licensed under a BSD license. [Read details here](https://gith
 
 ## Credits
 
-This repo was originally based on the Yubico php-u2flib-server https://github.com/Yubico/php-u2flib-server
+This repo was originally based on the [Yubico php-u2flib-server](https://github.com/Yubico/php-u2flib-server)

From 74a20fd8d897bf12cd12e30afa0015f7b45ad03f Mon Sep 17 00:00:00 2001
From: William Desportes <williamdes@wdes.fr>
Date: Fri, 30 Oct 2020 15:49:06 +0100
Subject: [PATCH 09/23] Use new PHP bracket style

---
 src/U2FServer.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/U2FServer.php b/src/U2FServer.php
index 7e55d0f..4a899f7 100644
--- a/src/U2FServer.php
+++ b/src/U2FServer.php
@@ -46,7 +46,7 @@ public static function checkOpenSSLVersion()
      * RegisterRequest the second being an array of SignRequest
      * @throws U2FException
      */
-    public static function makeRegistration($appId, array $registrations = array())
+    public static function makeRegistration($appId, array $registrations = [])
     {
         $request = new RegistrationRequest(static::createChallenge(), $appId);
         $signatures = static::makeAuthentication($registrations, $appId);

From 7640e67ff66eee97fcb5b84082852d5d625b3fa9 Mon Sep 17 00:00:00 2001
From: William Desportes <williamdes@wdes.fr>
Date: Fri, 30 Oct 2020 16:17:09 +0100
Subject: [PATCH 10/23] Update phpdocs

---
 src/U2FServer.php | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/src/U2FServer.php b/src/U2FServer.php
index 4a899f7..f2d8f2f 100644
--- a/src/U2FServer.php
+++ b/src/U2FServer.php
@@ -39,7 +39,7 @@ public static function checkOpenSSLVersion()
      * Returns an array of one registration request and a array of sign requests.
      *
      * @param string $appId Application id for the running application, Basically the app's URL
-     * @param array $registrations List of current registrations for this
+     * @param stdClass[] $registrations List of current registrations for this
      * user, to prevent the user from registering the same authenticator several
      * times.
      * @return array An array of two elements, the first containing a
@@ -183,7 +183,7 @@ public static function register(RegistrationRequest $request, $response, $attest
     /**
      * Called to get an authentication request.
      *
-     * @param array $registrations An array of the registrations to create authentication requests for.
+     * @param stdClass[] $registrations An array of the registrations to create authentication requests for.
      * @param string $appId Application id for the running application, Basically the app's URL
      * @return array An array of SignRequest
      * @throws \InvalidArgumentException
@@ -209,8 +209,8 @@ public static function makeAuthentication(array $registrations, $appId)
     /**
      * Called to verify an authentication response
      *
-     * @param array $requests An array of outstanding authentication requests
-     * @param array <Registration> $registrations An array of current registrations
+     * @param SignRequest[] $requests An array of outstanding authentication requests
+     * @param stdClass[] $registrations An array of current registrations
      * @param object $response A response from the authenticator
      * @return \stdClass
      * @throws U2FException

From cdbc30ba977a97c1329c277155792f5c954933dd Mon Sep 17 00:00:00 2001
From: William Desportes <williamdes@wdes.fr>
Date: Fri, 30 Oct 2020 16:39:12 +0100
Subject: [PATCH 11/23] Fix README links

---
 README.md | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/README.md b/README.md
index 667e2cc..19ec25e 100644
--- a/README.md
+++ b/README.md
@@ -1,7 +1,7 @@
 # U2F-php-server
 
 [![Latest Stable Version](https://img.shields.io/packagist/v/samyoul/u2f-php-server.svg?style=flat-square)](https://packagist.org/packages/samyoul/u2f-php-server)
-[![GitHub license](https://img.shields.io/github/license/Samyoul/U2F-php-server?style=flat-square)](LICENCE.md)
+[![GitHub license](https://img.shields.io/github/license/Samyoul/U2F-php-server?style=flat-square)](LICENCE)
 
 Server-side handling of FIDO U2F registration and authentication for PHP.
 
@@ -147,10 +147,10 @@ $ composer install
     1. [Step 1: Starting](#registration-step-1)
     1. [Step 2: Talking to the HID](#registration-step-2)
     1. [Step 3: Validation & Storage](#registration-step-3)
-3. [Authentication Code]()
-    1. [Step 1: Starting]()
-    1. [Step 2: Talking to the HID]()
-    1. [Step 3: Validation]()
+3. [Authentication Code](#authentication-code)
+    1. [Step 1: Starting](#authentication-step-1)
+    1. [Step 2: Talking to the HID](#authentication-step-2)
+    1. [Step 3: Validation](#authentication-step-3)
 
 ---
 
@@ -482,7 +482,7 @@ composer require u2f-codeigniter-server
 
 ## Licence
 
-The repository is licensed under a BSD license. [Read details here](https://github.com/Samyoul/U2F-php-server/blob/master/LICENCE.md)
+The repository is licensed under a BSD license. [Read details here](https://github.com/Samyoul/U2F-php-server/blob/master/LICENCE)
 
 ## Credits
 

From b21bc14aabd6d0b7aed672e3feef11f7ca40ec3f Mon Sep 17 00:00:00 2001
From: William Desportes <williamdes@wdes.fr>
Date: Fri, 30 Oct 2020 16:55:57 +0100
Subject: [PATCH 12/23] Add a test case for #6

---
 test/U2FServerTest.php | 24 ++++++++++++++++++++++++
 test/VoidTest.php      | 13 -------------
 2 files changed, 24 insertions(+), 13 deletions(-)
 create mode 100644 test/U2FServerTest.php
 delete mode 100644 test/VoidTest.php

diff --git a/test/U2FServerTest.php b/test/U2FServerTest.php
new file mode 100644
index 0000000..cee9ad9
--- /dev/null
+++ b/test/U2FServerTest.php
@@ -0,0 +1,24 @@
+<?php
+
+namespace Samyoul\U2F\U2FServer\Tests;
+
+use PHPUnit\Framework\TestCase;
+use ReflectionClass;
+use Samyoul\U2F\U2FServer\U2FServer;
+
+class U2FServerTest extends TestCase
+{
+    protected static function getClassMethod(string $className, string $methodName) {
+        $class = new ReflectionClass($className);
+        $method = $class->getMethod($methodName);
+        $method->setAccessible(true);
+        return $method;
+    }
+
+    public function testCreateChallenge(): void
+    {
+        $foo = self::getClassMethod(U2FServer::class, 'createChallenge');
+        $challengeResult = $foo->invokeArgs(new U2FServer(), []);
+        $this->assertMatchesRegularExpression('/^[a-z0-9_-]{20,}$/i', $challengeResult);
+    }
+}
diff --git a/test/VoidTest.php b/test/VoidTest.php
deleted file mode 100644
index e10ef0f..0000000
--- a/test/VoidTest.php
+++ /dev/null
@@ -1,13 +0,0 @@
-<?php
-
-namespace Samyoul\U2F\U2FServer\Tests;
-
-use PHPUnit\Framework\TestCase;
-
-class VoidTest extends TestCase
-{
-    public function testNothing(): void
-    {
-        $this->assertTrue(true);
-    }
-}

From 7aab0a2a8c48a510a203521287869a1cf0552e3d Mon Sep 17 00:00:00 2001
From: William Desportes <williamdes@wdes.fr>
Date: Fri, 30 Oct 2020 17:00:55 +0100
Subject: [PATCH 13/23] Add a test workflow

---
 .github/workflows/tests.yml | 36 ++++++++++++++++++++++++++++++++++++
 1 file changed, 36 insertions(+)
 create mode 100644 .github/workflows/tests.yml

diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml
new file mode 100644
index 0000000..16a44ce
--- /dev/null
+++ b/.github/workflows/tests.yml
@@ -0,0 +1,36 @@
+name: Run tests
+
+on: [push]
+
+jobs:
+    test-php:
+        name: Test on php ${{ matrix.php-version }} and ${{ matrix.os }}
+        runs-on: ${{ matrix.os }}
+        strategy:
+            matrix:
+                php-version: ["7.1", "7.2", "7.3", "7.4", "8.0"]
+                os: [ubuntu-latest]
+        steps:
+            - uses: actions/checkout@v1
+            - name: Use php ${{ matrix.php-version }}
+              uses: shivammathur/setup-php@v2
+              with:
+                  php-version: ${{ matrix.php-version }}
+                  extensions: posix, mbstring
+                  coverage: xdebug
+                  tools: composer:v2
+            - name: Cache module
+              uses: actions/cache@v2
+              with:
+                  path: ~/.composer/cache/
+                  key: composer-cache
+            - name: Install dependencies
+              if: ${{ matrix.php-version != '8.0' }}
+              run: composer install --no-interaction --prefer-dist --no-progress --no-suggest
+            - name: Install dependencies for php 8.0
+              if: ${{ matrix.php-version == '8.0' }}
+              run: composer install --no-interaction --prefer-dist --no-progress --no-suggest --ignore-platform-reqs
+            - name: Run php tests
+              run: composer run phpunit
+            - name: Send coverage
+              uses: codecov/codecov-action@v1

From ee6d8c45f8d697fa53c507586f1a19372aae6ae6 Mon Sep 17 00:00:00 2001
From: William Desportes <williamdes@wdes.fr>
Date: Fri, 30 Oct 2020 17:04:51 +0100
Subject: [PATCH 14/23] Make test compatible with all phpunit supported
 versions

---
 test/U2FServerTest.php | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/test/U2FServerTest.php b/test/U2FServerTest.php
index cee9ad9..3f6607b 100644
--- a/test/U2FServerTest.php
+++ b/test/U2FServerTest.php
@@ -19,6 +19,7 @@ public function testCreateChallenge(): void
     {
         $foo = self::getClassMethod(U2FServer::class, 'createChallenge');
         $challengeResult = $foo->invokeArgs(new U2FServer(), []);
-        $this->assertMatchesRegularExpression('/^[a-z0-9_-]{20,}$/i', $challengeResult);
+        $this->assertNotEmpty($challengeResult);
+        $this->assertGreaterThan(20, strlen($challengeResult));
     }
 }

From f9c78ffeccf122aea9f080dc486522ab68a49d2b Mon Sep 17 00:00:00 2001
From: William Desportes <williamdes@wdes.fr>
Date: Fri, 30 Oct 2020 20:20:18 +0100
Subject: [PATCH 15/23] Add a test for fixSignatureUnusedBits

I spent many hours finding&searching for CA certs online..
Please be nice and reference this as source.
---
 src/U2FServer.php      | 20 +++++++++++++++++---
 test/U2FServerTest.php | 35 +++++++++++++++++++++++++++++++++++
 2 files changed, 52 insertions(+), 3 deletions(-)

diff --git a/src/U2FServer.php b/src/U2FServer.php
index f2d8f2f..d304090 100644
--- a/src/U2FServer.php
+++ b/src/U2FServer.php
@@ -10,10 +10,24 @@ class U2FServer
     /** @internal */
     const PUBKEY_LEN = 65;
 
-    /** @internal */
+    /*
+     *  NOTE: If you are lucky and can match this CNs to the hashes please also add it to
+     *  the existing test case provider
+     *  "CN=Yubico U2F EE Serial 776137165",
+     *  "CN=Yubico U2F EE Serial 1086591525",
+     *  "CN=Yubico U2F EE Serial 1973679733",
+     *  "CN=Yubico U2F EE Serial 13503277888",
+     *  "CN=Yubico U2F EE Serial 14803321578"
+     */
+
+    /**
+     * @internal
+     * @see https://books.google.fr/books?id=SF68CwAAQBAJ&lpg=PT96&ots=PCLmrWyu2F&hl=fr&pg=PT96#v=onepage&q&f=false
+     * @see https://github.com/Yubico/python-u2flib-server/issues/15#issue-107916981
+     */
     private static $FIXCERTS = [
         '349bca1031f8c82c4ceca38b9cebf1a69df9fb3b94eed99eb3fb9aa3822d26e8',
-        'dd574527df608e47ae45fbba75a2afdd5c20fd94a02419381813cd55a2a3398f',
+        'dd574527df608e47ae45fbba75a2afdd5c20fd94a02419381813cd55a2a3398f', // "CN=Yubico U2F EE Serial 13831167861"
         '1d8764f0f7cd1352df6150045c8f638e517270e8b5dda1c63ade9c2280240cae',
         'd0edc9a91a1677435a953390865d208c55b3183c6759c9b5a7ff494c322558eb',
         '6073c436dcd064a48127ddbf6032ac1a66fd59a0c24434f070d4e564c124c897',
@@ -411,7 +425,7 @@ private static function createChallenge()
      * Fixes a certificate where the signature contains unused bits.
      *
      * @param string $cert
-     * @return mixed
+     * @return string
      */
     private static function fixSignatureUnusedBits($cert)
     {
diff --git a/test/U2FServerTest.php b/test/U2FServerTest.php
index 3f6607b..7842f61 100644
--- a/test/U2FServerTest.php
+++ b/test/U2FServerTest.php
@@ -22,4 +22,39 @@ public function testCreateChallenge(): void
         $this->assertNotEmpty($challengeResult);
         $this->assertGreaterThan(20, strlen($challengeResult));
     }
+
+    public function dataProviderForFixSignatureUnusedBits(): array
+    {
+        return [
+            [
+                // This is an example certificate in hex format
+                // @see https://fidoalliance.org/specs/u2f-specs-1.0-bt-nfc-id-amendment/fido-u2f-raw-message-formats.html
+                '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',
+                '99ab7a0d6a31feb411158184b5acadb8325a2c7e82a55cd709de7771ef6cd3b5',
+                '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',
+            ],
+            [
+                // This is the "CN=Yubico U2F EE Serial 13831167861" certificate as hex
+                // @see https://github.com/privacyidea/privacyidea/blob/v3.4.1/tests/test_lib_tokens_u2f.py#L22
+                // After 70d01010b038201010 the 0 is a 2 after transformation
+                '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',
+                'dd574527df608e47ae45fbba75a2afdd5c20fd94a02419381813cd55a2a3398f',
+                '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',
+            ],
+        ];
+    }
+
+    /**
+     * @dataProvider dataProviderForFixSignatureUnusedBits
+     */
+    public function testFixSignatureUnusedBits(
+        string $inputSignatureBlock, string $signatureHash, string $outputSignatureBlock
+    ): void {
+        $signature = hex2bin($inputSignatureBlock);
+        $this->assertSame($signatureHash, hash('sha256', $signature));
+        $foo = self::getClassMethod(U2FServer::class, 'fixSignatureUnusedBits');
+        $output = bin2hex($foo->invokeArgs(new U2FServer(), [$signature]));
+        $this->assertSame($output, $outputSignatureBlock);
+    }
+
 }

From 9ff97631d905a8b40ad680f6ca5b309717d21bba Mon Sep 17 00:00:00 2001
From: William Desportes <williamdes@wdes.fr>
Date: Mon, 2 Nov 2020 12:08:51 +0100
Subject: [PATCH 16/23] Add a usefull comment found on another implementation

---
 src/U2FServer.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/U2FServer.php b/src/U2FServer.php
index d304090..bb05b4f 100644
--- a/src/U2FServer.php
+++ b/src/U2FServer.php
@@ -430,7 +430,7 @@ private static function createChallenge()
     private static function fixSignatureUnusedBits($cert)
     {
         if(in_array(hash('sha256', $cert), static::$FIXCERTS)) {
-            $cert[strlen($cert) - 257] = "\0";
+            $cert[strlen($cert) - 257] = "\0"; // Fix the "unused bits" field (should always be 0).
         }
         return $cert;
     }

From 41f389cf7227f886d248f2a806fa56c6dc1abb64 Mon Sep 17 00:00:00 2001
From: William Desportes <williamdes@wdes.fr>
Date: Mon, 2 Nov 2020 13:08:05 +0100
Subject: [PATCH 17/23] Improve phpdoc return type for makeAuthentication

---
 src/U2FServer.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/U2FServer.php b/src/U2FServer.php
index bb05b4f..2d4c4bf 100644
--- a/src/U2FServer.php
+++ b/src/U2FServer.php
@@ -199,7 +199,7 @@ public static function register(RegistrationRequest $request, $response, $attest
      *
      * @param stdClass[] $registrations An array of the registrations to create authentication requests for.
      * @param string $appId Application id for the running application, Basically the app's URL
-     * @return array An array of SignRequest
+     * @return SignRequest[] An array of SignRequest
      * @throws \InvalidArgumentException
      */
     public static function makeAuthentication(array $registrations, $appId)

From cf7fae54dc093b9ca12a4b7c78d899e2fc8a99b7 Mon Sep 17 00:00:00 2001
From: William Desportes <williamdes@wdes.fr>
Date: Mon, 2 Nov 2020 13:08:23 +0100
Subject: [PATCH 18/23] Add more tests

---
 test/U2FServerTest.php | 159 +++++++++++++++++++++++++++++++++++++++--
 1 file changed, 153 insertions(+), 6 deletions(-)

diff --git a/test/U2FServerTest.php b/test/U2FServerTest.php
index 7842f61..567bead 100644
--- a/test/U2FServerTest.php
+++ b/test/U2FServerTest.php
@@ -8,7 +8,8 @@
 
 class U2FServerTest extends TestCase
 {
-    protected static function getClassMethod(string $className, string $methodName) {
+    protected static function getClassMethod(string $className, string $methodName)
+    {
         $class = new ReflectionClass($className);
         $method = $class->getMethod($methodName);
         $method->setAccessible(true);
@@ -17,8 +18,8 @@ protected static function getClassMethod(string $className, string $methodName)
 
     public function testCreateChallenge(): void
     {
-        $foo = self::getClassMethod(U2FServer::class, 'createChallenge');
-        $challengeResult = $foo->invokeArgs(new U2FServer(), []);
+        $u2f = self::getClassMethod(U2FServer::class, 'createChallenge');
+        $challengeResult = $u2f->invokeArgs(new U2FServer(), []);
         $this->assertNotEmpty($challengeResult);
         $this->assertGreaterThan(20, strlen($challengeResult));
     }
@@ -48,13 +49,159 @@ public function dataProviderForFixSignatureUnusedBits(): array
      * @dataProvider dataProviderForFixSignatureUnusedBits
      */
     public function testFixSignatureUnusedBits(
-        string $inputSignatureBlock, string $signatureHash, string $outputSignatureBlock
+        string $inputSignatureBlock,
+        string $signatureHash,
+        string $outputSignatureBlock
     ): void {
         $signature = hex2bin($inputSignatureBlock);
         $this->assertSame($signatureHash, hash('sha256', $signature));
-        $foo = self::getClassMethod(U2FServer::class, 'fixSignatureUnusedBits');
-        $output = bin2hex($foo->invokeArgs(new U2FServer(), [$signature]));
+        $u2f = self::getClassMethod(U2FServer::class, 'fixSignatureUnusedBits');
+        $output = bin2hex($u2f->invokeArgs(new U2FServer(), [$signature]));
         $this->assertSame($output, $outputSignatureBlock);
     }
 
+    public function testBase64UEncodeDecode(): void
+    {
+        $shortBlob = 'Salut';
+        $u2f = self::getClassMethod(U2FServer::class, 'base64u_encode');
+        $encoded = $u2f->invokeArgs(new U2FServer(), [$shortBlob]);
+        $this->assertNotEmpty($encoded);
+        $this->assertSame('U2FsdXQ', $encoded);
+        $u2f = self::getClassMethod(U2FServer::class, 'base64u_decode');
+        $decoded = $u2f->invokeArgs(new U2FServer(), [$encoded]);
+        $this->assertNotEmpty($decoded);
+        $this->assertSame($shortBlob, $decoded);
+
+        $longBlob = '&àçècmm!:************************************************************';
+        $longBlob .= '^$ùzefzef:ezf:ze;fzefilqsnéà_è(_yà"tjzifzpofkzof,zlgugealuvnskqjvneruieg';
+        $u2f = self::getClassMethod(U2FServer::class, 'base64u_encode');
+        $encoded = $u2f->invokeArgs(new U2FServer(), [$longBlob]);
+        $this->assertNotEmpty($encoded);
+        $this->assertSame(
+            'JsOgw6fDqGNtbSE6KioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKio'
+                . 'qKioqKioqKioqKioqXiTDuXplZnplZjplemY6emU7ZnplZmlscXNuw6nDoF_DqChfecOgInRqemlmen'
+                . 'BvZmt6b2YsemxndWdlYWx1dm5za3Fqdm5lcnVpZWc',
+            $encoded
+        );
+        $u2f = self::getClassMethod(U2FServer::class, 'base64u_decode');
+        $decoded = $u2f->invokeArgs(new U2FServer(), [$encoded]);
+        $this->assertNotEmpty($decoded);
+        $this->assertSame($longBlob, $decoded);
+    }
+
+    /**
+     * @group openssl
+     */
+    public function testCheckOpenSSLVersion(): void
+    {
+        $u2f = self::getClassMethod(U2FServer::class, 'checkOpenSSLVersion');
+        $goodVersion = $u2f->invokeArgs(new U2FServer(), []);
+        $this->assertTrue($goodVersion);
+    }
+
+    /**
+     * @group file-system
+     */
+    public function testGet_certs(): void
+    {
+        $tempDirName = tempnam(sys_get_temp_dir(), '_testGet_certs');
+        unlink($tempDirName); // This is a file for now
+        mkdir($tempDirName); // And now a directory
+        $tmpFile = tempnam($tempDirName, 'cert_');
+        $u2f = self::getClassMethod(U2FServer::class, 'get_certs');
+        $filesList = $u2f->invokeArgs(new U2FServer(), [$tempDirName]);
+        $this->assertSame([
+            $tmpFile
+        ], $filesList);
+        unlink($tmpFile);
+        rmdir($tempDirName);
+    }
+
+    public function testPublicKeyToPem(): void
+    {
+        $u2f = self::getClassMethod(U2FServer::class, 'publicKeyToPem');
+        $pemKey = $u2f->invokeArgs(new U2FServer(), [
+            ''
+        ]);
+        $this->assertNull($pemKey);
+        $pemKeyWrongStart = $u2f->invokeArgs(new U2FServer(), [
+            'd'
+        ]);
+        $this->assertNull($pemKeyWrongStart);
+        $pemKeyWrongLength = $u2f->invokeArgs(new U2FServer(), [
+            "\x04"
+        ]);
+        $this->assertNull($pemKeyWrongLength);
+        $pemKeyWrongLength = $u2f->invokeArgs(new U2FServer(), [
+            "\x04" . str_repeat('*', 63)
+        ]);
+        $this->assertNull($pemKeyWrongLength);
+        $pemKeyOkay = $u2f->invokeArgs(new U2FServer(), [
+            // Public key for "CN=PilotGnubby-0.4.1-47901280001155957352"
+            // Value shown by KSE <https://keystore-explorer.org>
+            hex2bin('048D617E65C9508E64BCC5673AC82A6799DA3C1446682C258C463FFFDF58DFD2FA3E6C378B53D795C4A4DFFB4199EDD7862F23ABAF0203B4B8911BA0569994E101')
+        ]);
+        $this->assertSame(
+            // Value shown by KSE <https://keystore-explorer.org>
+            '-----BEGIN PUBLIC KEY-----' . "\r\n"
+                . 'MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEjWF+ZclQjmS8xWc6yCpnmdo8FEZo' . "\r\n"
+                . 'LCWMRj//31jf0vo+bDeLU9eVxKTf+0GZ7deGLyOrrwIDtLiRG6BWmZThAQ==' . "\r\n"
+                . '-----END PUBLIC KEY-----',
+            $pemKeyOkay
+        );
+    }
+
+    public function testMakeAuthentication(): void
+    {
+        // Source: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L200
+        // Data copyright: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L3
+        $regs = [
+            (object) [
+                'keyHandle' => 'CTUayZo8hCBeC-sGQJChC0wW-bBg99bmOlGCgw8XGq4dLsxO3yWh9mRYArZxocP5hBB1pEGB3bbJYiM-5acc5w',
+                'publicKey' => 'BC0SaFZWC9uH7wamOwduP93kUH2I2hEvyY0Srfj4A258pZSlV0iPoFIH+bd4yhncaqdoPLdEDl5Y\/yaFORPUe3c=',
+                'certificate' => 'MIIC4jCBywIBATANBgkqhkiG9w0BAQsFADAdMRswGQYDVQQDExJZdWJpY28gVTJGIFRlc3QgQ0EwHhcNMTQwNTE1'
+                    . ' MTI1ODU0WhcNMTQwNjE0MTI1ODU0WjAdMRswGQYDVQQDExJZdWJpY28gVTJGIFRlc3QgRUUwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAA'
+                    . 'TbCtv1IcdczmPcpuHoJQYNlOYnVBlPnSSvJhq+rZlEH5WjcZEKOiDnPpFeE+i+OAV61XqjfnaQj6\/'
+                    . 'iipS2MOudMA0GCSqGSIb3DQEBCwUAA4ICAQCVQGtQYX2thKO064gP4zAPLaIKANklBO5y+mffWFEPC0cCnD5BKUqTrCmFiS2keoEyKFdxAe'
+                    . '+oQogWljeR1d\/gj8k8jbDNiXCC7HnTxnhzKTLlq2y9Vp\/VRZHOwd2NZNzpnB9ePNKvUaWCGK\/gN+cynnYFdwJ75iSgMVYb\/'
+                    . 'RnFcdPwnsBzBU68hbhTnu\/FvJxWo7rZJ2q7qXpA10eLVXJr4\/4oSXEk9I\/0IIHqOP98Ck\/fAoI5gYI7ygndyqoPJ\/Wkg1VsmjmbFToWY9xb'
+                    . '+axbvPefvg+KojwxE6MySMpYh\/h7oKEKamCWk19dJp5jHQmumkHlvQhH\/uUJmyD9EuLmQH+6SmEzZg0Oc9uw1aKamhcNNDCFakJGnv80j1'
+                    . '+HbDXnqE0168FBqorS2hmqeaJfNSyg\/SXT950lGC36tLy7BzQ8jYG99Ok32znp0UVbIEEvLSci3JJ0ipLVg\/0J+xOb4zl6a1z65nae4OTj7628\/'
+                    . 'UJFmtSU0X6Np9gF1dNizxXPlH0fW1ggRCCQcb5m6ZqrdDJwUx1p7Ydm9AlPyiUwwmN5ADyxmzk\/'
+                    . 'AOCoiO96UVvnvUlk2kF7JMNxIv3R0SCzP5fTl7KqGByeA3d7W375o6DWIIEsOI+dJd7pyPXdakecZQRaVubC6\/ICl'
+                    . '+G52OEkdp8jYjkDS8j3NAdJ1udNmg==',
+                'counter' => 3
+            ]
+        ];
+
+        $auths = U2FServer::makeAuthentication(
+            $regs,
+            'http://demo.example.com'
+        );
+        $this->assertSame(
+            [
+                [
+                    'version' => 'U2F_V2',
+                    'challenge' => $auths[0]->challenge(),
+                    'keyHandle' => 'CTUayZo8hCBeC-sGQJChC0wW-bBg99bmOlGCgw8XGq4dLsxO3yWh9mRYArZxocP5hBB1pEGB3bbJYiM-5acc5w',
+                    'appId' => 'http://demo.example.com'
+                ]
+            ],
+            json_decode(json_encode($auths), true)
+        );
+    }
+
+    public function testMakeBadAuthentication(): void
+    {
+        $this->expectExceptionMessage('$registrations of makeAuthentication() method only accepts array of object.');
+        $this->expectException(\Exception::class);
+        $regs = [
+            []
+        ];
+
+        U2FServer::makeAuthentication(
+            $regs,
+            'http://demo.example.com'
+        );
+    }
 }

From 46a4200a97aa04b9cf844974817f662130483cd9 Mon Sep 17 00:00:00 2001
From: William Desportes <williamdes@wdes.fr>
Date: Mon, 2 Nov 2020 14:39:24 +0100
Subject: [PATCH 19/23] Improve phpdoc return for makeRegistration

---
 src/U2FServer.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/U2FServer.php b/src/U2FServer.php
index 2d4c4bf..2c9aabb 100644
--- a/src/U2FServer.php
+++ b/src/U2FServer.php
@@ -56,7 +56,7 @@ public static function checkOpenSSLVersion()
      * @param stdClass[] $registrations List of current registrations for this
      * user, to prevent the user from registering the same authenticator several
      * times.
-     * @return array An array of two elements, the first containing a
+     * @return array<string,RegistrationRequest|SignRequest[]> An array of two elements, the first containing a
      * RegisterRequest the second being an array of SignRequest
      * @throws U2FException
      */

From 3622240a94c497da6c2fa96e41a8710a75da95a5 Mon Sep 17 00:00:00 2001
From: William Desportes <williamdes@wdes.fr>
Date: Mon, 2 Nov 2020 14:39:56 +0100
Subject: [PATCH 20/23] Ignore build files

---
 .gitignore | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.gitignore b/.gitignore
index 8214d68..2c0ca10 100644
--- a/.gitignore
+++ b/.gitignore
@@ -4,3 +4,4 @@
 *.iml
 .phpunit.result.cache
 /vendor/
+/build/

From cf16851106aafef30fef119c1a5470e9a7cb3cb2 Mon Sep 17 00:00:00 2001
From: William Desportes <williamdes@wdes.fr>
Date: Mon, 2 Nov 2020 14:46:06 +0100
Subject: [PATCH 21/23] Improve phpdoc for get_certs and register

---
 src/U2FServer.php | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/src/U2FServer.php b/src/U2FServer.php
index 2c9aabb..f7d7ab4 100644
--- a/src/U2FServer.php
+++ b/src/U2FServer.php
@@ -75,9 +75,9 @@ public static function makeRegistration($appId, array $registrations = [])
      *
      * @param RegistrationRequest $request this is a reply to
      * @param object $response response from a user
-     * @param string $attestDir
+     * @param string|null $attestDir The folder to use where trusted CA files are stored (optional)
      * @param bool $includeCert set to true if the attestation certificate should be
-     * included in the returned Registration object
+     * included in the returned Registration object (optional)
      * @return Registration
      * @throws U2FException
      */
@@ -335,8 +335,10 @@ public static function authenticate(array $requests, array $registrations, $resp
     }
 
     /**
-     * @param string $attestDir
-     * @return array
+     * Get all files from a directory
+     *
+     * @param string $attestDir The folder to find files into
+     * @return string[]
      */
     private static function get_certs($attestDir)
     {

From 4a63bbccd18ed470f30563fa972f9bdfca8a8947 Mon Sep 17 00:00:00 2001
From: William Desportes <williamdes@wdes.fr>
Date: Mon, 2 Nov 2020 15:18:16 +0100
Subject: [PATCH 22/23] Add more tests

Code Coverage Report:
  2020-11-02 14:18:07

 Summary:
  Classes: 60.00% (3/5)
  Methods: 83.33% (25/30)
  Lines:   76.29% (148/194)

Samyoul\U2F\U2FServer\Registration
  Methods: 100.00% ( 7/ 7)   Lines: 100.00% ( 10/ 10)
Samyoul\U2F\U2FServer\RegistrationRequest
  Methods: 100.00% ( 5/ 5)   Lines: 100.00% (  9/  9)
Samyoul\U2F\U2FServer\SignRequest
  Methods:  83.33% ( 5/ 6)   Lines:  91.67% ( 11/ 12)
Samyoul\U2F\U2FServer\U2FException
  Methods: 100.00% ( 1/ 1)   Lines: 100.00% (  2/  2)
Samyoul\U2F\U2FServer\U2FServer
  Methods:  63.64% ( 7/11)   Lines:  72.05% (116/161)
---
 test/U2FServerTest.php | 181 ++++++++++++++++++++++++++++++++++++++++-
 1 file changed, 177 insertions(+), 4 deletions(-)

diff --git a/test/U2FServerTest.php b/test/U2FServerTest.php
index 567bead..87a03f8 100644
--- a/test/U2FServerTest.php
+++ b/test/U2FServerTest.php
@@ -4,6 +4,9 @@
 
 use PHPUnit\Framework\TestCase;
 use ReflectionClass;
+use Samyoul\U2F\U2FServer\RegistrationRequest;
+use Samyoul\U2F\U2FServer\SignRequest;
+use Samyoul\U2F\U2FServer\U2FException;
 use Samyoul\U2F\U2FServer\U2FServer;
 
 class U2FServerTest extends TestCase
@@ -191,16 +194,186 @@ public function testMakeAuthentication(): void
         );
     }
 
+    public function testAuthenticate(): void
+    {
+        // Source: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L200
+        // Data copyright: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L3
+        $certificate = 'MIIC4jCBywIBATANBgkqhkiG9w0BAQsFADAdMRswGQYDVQQDExJZdWJpY28gVTJGIFRlc3QgQ0EwHhcNMTQwNTE1'
+            . ' MTI1ODU0WhcNMTQwNjE0MTI1ODU0WjAdMRswGQYDVQQDExJZdWJpY28gVTJGIFRlc3QgRUUwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAA'
+            . 'TbCtv1IcdczmPcpuHoJQYNlOYnVBlPnSSvJhq+rZlEH5WjcZEKOiDnPpFeE+i+OAV61XqjfnaQj6\/'
+            . 'iipS2MOudMA0GCSqGSIb3DQEBCwUAA4ICAQCVQGtQYX2thKO064gP4zAPLaIKANklBO5y+mffWFEPC0cCnD5BKUqTrCmFiS2keoEyKFdxAe'
+            . '+oQogWljeR1d\/gj8k8jbDNiXCC7HnTxnhzKTLlq2y9Vp\/VRZHOwd2NZNzpnB9ePNKvUaWCGK\/gN+cynnYFdwJ75iSgMVYb\/'
+            . 'RnFcdPwnsBzBU68hbhTnu\/FvJxWo7rZJ2q7qXpA10eLVXJr4\/4oSXEk9I\/0IIHqOP98Ck\/fAoI5gYI7ygndyqoPJ\/Wkg1VsmjmbFToWY9xb'
+            . '+axbvPefvg+KojwxE6MySMpYh\/h7oKEKamCWk19dJp5jHQmumkHlvQhH\/uUJmyD9EuLmQH+6SmEzZg0Oc9uw1aKamhcNNDCFakJGnv80j1'
+            . '+HbDXnqE0168FBqorS2hmqeaJfNSyg\/SXT950lGC36tLy7BzQ8jYG99Ok32znp0UVbIEEvLSci3JJ0ipLVg\/0J+xOb4zl6a1z65nae4OTj7628\/'
+            . 'UJFmtSU0X6Np9gF1dNizxXPlH0fW1ggRCCQcb5m6ZqrdDJwUx1p7Ydm9AlPyiUwwmN5ADyxmzk\/'
+            . 'AOCoiO96UVvnvUlk2kF7JMNxIv3R0SCzP5fTl7KqGByeA3d7W375o6DWIIEsOI+dJd7pyPXdakecZQRaVubC6\/ICl'
+            . '+G52OEkdp8jYjkDS8j3NAdJ1udNmg==';
+        $keyHandle = 'CTUayZo8hCBeC-sGQJChC0wW-bBg99bmOlGCgw8XGq4dLsxO3yWh9mRYArZxocP5hBB1pEGB3bbJYiM-5acc5w';
+        $publicKey = 'BC0SaFZWC9uH7wamOwduP93kUH2I2hEvyY0Srfj4A258pZSlV0iPoFIH+bd4yhncaqdoPLdEDl5Y\/yaFORPUe3c=';
+        $regs = [
+            (object) [
+                'keyHandle' => $keyHandle,
+                'publicKey' => $publicKey,
+                'certificate' => $certificate,
+                'counter' => 3
+            ]
+        ];
+
+        // Source: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L199
+        // Data copyright: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L3
+        $reqs = [
+            new SignRequest([
+                'challenge' => 'fEnc9oV79EaBgK5BoNERU5gPKM2XGYWrz4fUjgc0Q7g',
+                'keyHandle' => $keyHandle,
+                'appId' => 'http://demo.example.com',
+            ])
+        ];
+
+        // Source: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L201
+        // Data copyright: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L3
+        $response = (object) [
+            'signatureData' => 'AQAAAAQwRQIhAI6FSrMD3KUUtkpiP0jpIEakql-HNhwWFngyw553pS1CAiAKLjACPOhxzZXuZsVO8im-HStEcYGC50PKhsGp_SUAng==',
+            'clientData' => 'eyAiY2hhbGxlbmdlIjogImZFbmM5b1Y3OUVhQmdLNUJvTkVSVTVnUEtNMlhHWVdyejRmVWpnYzBRN2ciLCAib3JpZ2luIjogImh0dHA6XC9cL2RlbW8uZXhhbXBsZS5jb20iLCAidHlwIjogIm5hdmlnYXRvci5pZC5nZXRBc3NlcnRpb24iIH0=',
+            'keyHandle' => $keyHandle,
+            'errorCode' => 0,
+        ];
+
+        $auth = U2FServer::authenticate(
+            $reqs,
+            $regs,
+            $response
+        );
+        $this->assertSame(
+            [
+                'keyHandle' => $keyHandle,
+                'publicKey' => $publicKey,
+                'certificate' => $certificate,
+                'counter' => 4,
+            ],
+            (array) $auth
+        );
+        $this->assertEquals(4, $auth->counter);
+    }
+
+    public function testMakeRegistration(): void
+    {
+        // Source: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L200
+        // Data copyright: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L3
+        $certificate = 'MIIC4jCBywIBATANBgkqhkiG9w0BAQsFADAdMRswGQYDVQQDExJZdWJpY28gVTJGIFRlc3QgQ0EwHhcNMTQwNTE1'
+            . ' MTI1ODU0WhcNMTQwNjE0MTI1ODU0WjAdMRswGQYDVQQDExJZdWJpY28gVTJGIFRlc3QgRUUwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAA'
+            . 'TbCtv1IcdczmPcpuHoJQYNlOYnVBlPnSSvJhq+rZlEH5WjcZEKOiDnPpFeE+i+OAV61XqjfnaQj6\/'
+            . 'iipS2MOudMA0GCSqGSIb3DQEBCwUAA4ICAQCVQGtQYX2thKO064gP4zAPLaIKANklBO5y+mffWFEPC0cCnD5BKUqTrCmFiS2keoEyKFdxAe'
+            . '+oQogWljeR1d\/gj8k8jbDNiXCC7HnTxnhzKTLlq2y9Vp\/VRZHOwd2NZNzpnB9ePNKvUaWCGK\/gN+cynnYFdwJ75iSgMVYb\/'
+            . 'RnFcdPwnsBzBU68hbhTnu\/FvJxWo7rZJ2q7qXpA10eLVXJr4\/4oSXEk9I\/0IIHqOP98Ck\/fAoI5gYI7ygndyqoPJ\/Wkg1VsmjmbFToWY9xb'
+            . '+axbvPefvg+KojwxE6MySMpYh\/h7oKEKamCWk19dJp5jHQmumkHlvQhH\/uUJmyD9EuLmQH+6SmEzZg0Oc9uw1aKamhcNNDCFakJGnv80j1'
+            . '+HbDXnqE0168FBqorS2hmqeaJfNSyg\/SXT950lGC36tLy7BzQ8jYG99Ok32znp0UVbIEEvLSci3JJ0ipLVg\/0J+xOb4zl6a1z65nae4OTj7628\/'
+            . 'UJFmtSU0X6Np9gF1dNizxXPlH0fW1ggRCCQcb5m6ZqrdDJwUx1p7Ydm9AlPyiUwwmN5ADyxmzk\/'
+            . 'AOCoiO96UVvnvUlk2kF7JMNxIv3R0SCzP5fTl7KqGByeA3d7W375o6DWIIEsOI+dJd7pyPXdakecZQRaVubC6\/ICl'
+            . '+G52OEkdp8jYjkDS8j3NAdJ1udNmg==';
+        $keyHandle = 'CTUayZo8hCBeC-sGQJChC0wW-bBg99bmOlGCgw8XGq4dLsxO3yWh9mRYArZxocP5hBB1pEGB3bbJYiM-5acc5w';
+        $publicKey = 'BC0SaFZWC9uH7wamOwduP93kUH2I2hEvyY0Srfj4A258pZSlV0iPoFIH+bd4yhncaqdoPLdEDl5Y\/yaFORPUe3c=';
+        $regs = [
+            (object) [
+                'keyHandle' => $keyHandle,
+                'publicKey' => $publicKey,
+                'certificate' => $certificate,
+                'counter' => 3
+            ]
+        ];
+
+        $auth = U2FServer::makeRegistration(
+            'http://demo.example.com',
+            $regs
+        );
+        $this->assertSame(
+            [
+                'request' => [
+                    'version' => 'U2F_V2',
+                    'challenge' => $auth['request']->challenge(),
+                    'appId' => 'http://demo.example.com',
+
+                ],
+                'signatures' => [
+                    (new SignRequest([
+                        'challenge' => $auth['signatures'][0]->challenge(),
+                        'keyHandle' => $keyHandle,
+                        'appId' => 'http://demo.example.com',
+                    ]))->jsonSerialize(),
+                ],
+            ],
+            json_decode(json_encode($auth), true)
+        );
+    }
+
+    public function testRegister(): void
+    {
+        // Source: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L51
+        // Data copyright: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L3
+        $response = (object) [
+            'registrationData' => 'BQQtEmhWVgvbh-8GpjsHbj_d5FB9iNoRL8mNEq34-ANufKWUpVdIj6BSB_m3eMoZ3GqnaDy3RA5eWP8mhTkT1Ht3QAk1GsmaPIQgXgvrBkCQoQtMFvmwYPfW5jpRgoMPFxquHS7MTt8lofZkWAK2caHD-YQQdaRBgd22yWIjPuWnHOcwggLiMIHLAgEBMA0GCSqGSIb3DQEBCwUAMB0xGzAZBgNVBAMTEll1YmljbyBVMkYgVGVzdCBDQTAeFw0xNDA1MTUxMjU4NTRaFw0xNDA2MTQxMjU4NTRaMB0xGzAZBgNVBAMTEll1YmljbyBVMkYgVGVzdCBFRTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABNsK2_Uhx1zOY9ym4eglBg2U5idUGU-dJK8mGr6tmUQflaNxkQo6IOc-kV4T6L44BXrVeqN-dpCPr-KKlLYw650wDQYJKoZIhvcNAQELBQADggIBAJVAa1Bhfa2Eo7TriA_jMA8togoA2SUE7nL6Z99YUQ8LRwKcPkEpSpOsKYWJLaR6gTIoV3EB76hCiBaWN5HV3-CPyTyNsM2JcILsedPGeHMpMuWrbL1Wn9VFkc7B3Y1k3OmcH1480q9RpYIYr-A35zKedgV3AnvmJKAxVhv9GcVx0_CewHMFTryFuFOe78W8nFajutknarupekDXR4tVcmvj_ihJcST0j_Qggeo4_3wKT98CgjmBgjvKCd3Kqg8n9aSDVWyaOZsVOhZj3Fv5rFu895--D4qiPDETozJIyliH-HugoQpqYJaTX10mnmMdCa6aQeW9CEf-5QmbIP0S4uZAf7pKYTNmDQ5z27DVopqaFw00MIVqQkae_zSPX4dsNeeoTTXrwUGqitLaGap5ol81LKD9JdP3nSUYLfq0vLsHNDyNgb306TfbOenRRVsgQS8tJyLcknSKktWD_Qn7E5vjOXprXPrmdp7g5OPvrbz9QkWa1JTRfo2n2AXV02LPFc-UfR9bWCBEIJBxvmbpmqt0MnBTHWnth2b0CU_KJTDCY3kAPLGbOT8A4KiI73pRW-e9SWTaQXskw3Ei_dHRILM_l9OXsqoYHJ4Dd3tbfvmjoNYggSw4j50l3unI9d1qR5xlBFpW5sLr8gKX4bnY4SR2nyNiOQNLyPc0B0nW502aMEUCIQDTGOX-i_QrffJDY8XvKbPwMuBVrOSO-ayvTnWs_WSuDQIgZ7fMAvD_Ezyy5jg6fQeuOkoJi8V2naCtzV-HTly8Nww=',
+            'clientData' =>  'eyAiY2hhbGxlbmdlIjogInlLQTB4MDc1dGpKLUdFN2ZLVGZuelRPU2FOVU9XUXhSZDlUV3o1YUZPZzgiLCAib3JpZ2luIjogImh0dHA6XC9cL2RlbW8uZXhhbXBsZS5jb20iLCAidHlwIjogIm5hdmlnYXRvci5pZC5maW5pc2hFbnJvbGxtZW50IiB9',
+            'errorCode' => 0
+        ];
+
+        $registration = U2FServer::register(
+            new RegistrationRequest('yKA0x075tjJ-GE7fKTfnzTOSaNUOWQxRd9TWz5aFOg8', 'http://demo.example.com'),
+            $response
+        );
+        $this->assertSame('CTUayZo8hCBeC-sGQJChC0wW-bBg99bmOlGCgw8XGq4dLsxO3yWh9mRYArZxocP5hBB1pEGB3bbJYiM-5acc5w', $registration->getKeyHandle());
+        $this->assertSame('BC0SaFZWC9uH7wamOwduP93kUH2I2hEvyY0Srfj4A258pZSlV0iPoFIH+bd4yhncaqdoPLdEDl5Y/yaFORPUe3c=', $registration->getPublicKey());
+        $this->assertSame('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', $registration->getCertificate());
+        $this->assertLessThan(0, $registration->getCounter());
+    }
+
+    public function testRegisterChallengeMismatch(): void
+    {
+        $this->expectExceptionMessage('Registration challenge does not match');
+        $this->expectExceptionCode(U2FException::UNMATCHED_CHALLENGE);
+        $this->expectException(U2FException::class);
+
+        // Source: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L51
+        // Data copyright: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L3
+        $response = (object) [
+            'registrationData' => 'BQQtEmhWVgvbh-8GpjsHbj_d5FB9iNoRL8mNEq34-ANufKWUpVdIj6BSB_m3eMoZ3GqnaDy3RA5eWP8mhTkT1Ht3QAk1GsmaPIQgXgvrBkCQoQtMFvmwYPfW5jpRgoMPFxquHS7MTt8lofZkWAK2caHD-YQQdaRBgd22yWIjPuWnHOcwggLiMIHLAgEBMA0GCSqGSIb3DQEBCwUAMB0xGzAZBgNVBAMTEll1YmljbyBVMkYgVGVzdCBDQTAeFw0xNDA1MTUxMjU4NTRaFw0xNDA2MTQxMjU4NTRaMB0xGzAZBgNVBAMTEll1YmljbyBVMkYgVGVzdCBFRTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABNsK2_Uhx1zOY9ym4eglBg2U5idUGU-dJK8mGr6tmUQflaNxkQo6IOc-kV4T6L44BXrVeqN-dpCPr-KKlLYw650wDQYJKoZIhvcNAQELBQADggIBAJVAa1Bhfa2Eo7TriA_jMA8togoA2SUE7nL6Z99YUQ8LRwKcPkEpSpOsKYWJLaR6gTIoV3EB76hCiBaWN5HV3-CPyTyNsM2JcILsedPGeHMpMuWrbL1Wn9VFkc7B3Y1k3OmcH1480q9RpYIYr-A35zKedgV3AnvmJKAxVhv9GcVx0_CewHMFTryFuFOe78W8nFajutknarupekDXR4tVcmvj_ihJcST0j_Qggeo4_3wKT98CgjmBgjvKCd3Kqg8n9aSDVWyaOZsVOhZj3Fv5rFu895--D4qiPDETozJIyliH-HugoQpqYJaTX10mnmMdCa6aQeW9CEf-5QmbIP0S4uZAf7pKYTNmDQ5z27DVopqaFw00MIVqQkae_zSPX4dsNeeoTTXrwUGqitLaGap5ol81LKD9JdP3nSUYLfq0vLsHNDyNgb306TfbOenRRVsgQS8tJyLcknSKktWD_Qn7E5vjOXprXPrmdp7g5OPvrbz9QkWa1JTRfo2n2AXV02LPFc-UfR9bWCBEIJBxvmbpmqt0MnBTHWnth2b0CU_KJTDCY3kAPLGbOT8A4KiI73pRW-e9SWTaQXskw3Ei_dHRILM_l9OXsqoYHJ4Dd3tbfvmjoNYggSw4j50l3unI9d1qR5xlBFpW5sLr8gKX4bnY4SR2nyNiOQNLyPc0B0nW502aMEUCIQDTGOX-i_QrffJDY8XvKbPwMuBVrOSO-ayvTnWs_WSuDQIgZ7fMAvD_Ezyy5jg6fQeuOkoJi8V2naCtzV-HTly8Nww=',
+            'clientData' =>  'eyAiY2hhbGxlbmdlIjogInlLQTB4MDc1dGpKLUdFN2ZLVGZuelRPU2FOVU9XUXhSZDlUV3o1YUZPZzgiLCAib3JpZ2luIjogImh0dHA6XC9cL2RlbW8uZXhhbXBsZS5jb20iLCAidHlwIjogIm5hdmlnYXRvci5pZC5maW5pc2hFbnJvbGxtZW50IiB9',
+            'errorCode' => 0
+        ];
+
+        $regReq = new RegistrationRequest('yKA0x088tff-GE7fKTfnzTOSaNUOWQxRd9TWz5aFOg8', 'http://demo.example.com');
+        $this->assertSame('U2F_V2', $regReq->version());
+        U2FServer::register(
+            $regReq,
+            $response
+        );
+    }
+
+    public function testRegisterUserAgentError(): void
+    {
+        $this->expectExceptionMessage('User-agent returned error. Error code: 1');
+        $this->expectExceptionCode(U2FException::BAD_UA_RETURNING);
+        $this->expectException(U2FException::class);
+
+        $response = (object) [
+            'errorCode' => 1
+        ];
+
+        $regReq = new RegistrationRequest('ffffffffffffffffffffffffff', 'http://demo.example.com');
+        $this->assertSame('U2F_V2', $regReq->version());
+        U2FServer::register(
+            $regReq,
+            $response
+        );
+    }
     public function testMakeBadAuthentication(): void
     {
         $this->expectExceptionMessage('$registrations of makeAuthentication() method only accepts array of object.');
         $this->expectException(\Exception::class);
-        $regs = [
-            []
-        ];
 
         U2FServer::makeAuthentication(
-            $regs,
+            [
+                []
+            ],
             'http://demo.example.com'
         );
     }

From 0cab4cee4487f5d16a95e8581ee4ca6c5513cb02 Mon Sep 17 00:00:00 2001
From: William Desportes <williamdes@wdes.fr>
Date: Mon, 2 Nov 2020 18:00:55 +0100
Subject: [PATCH 23/23] Add more tests and clear the values

Code Coverage Report:
  2020-11-02 17:00:32

 Summary:
  Classes: 80.00% (4/5)
  Methods: 86.67% (26/30)
  Lines:   86.98% (167/192)

Samyoul\U2F\U2FServer\Registration
  Methods: 100.00% ( 7/ 7)   Lines: 100.00% ( 10/ 10)
Samyoul\U2F\U2FServer\RegistrationRequest
  Methods: 100.00% ( 5/ 5)   Lines: 100.00% (  9/  9)
Samyoul\U2F\U2FServer\SignRequest
  Methods: 100.00% ( 6/ 6)   Lines: 100.00% ( 12/ 12)
Samyoul\U2F\U2FServer\U2FException
  Methods: 100.00% ( 1/ 1)   Lines: 100.00% (  2/  2)
Samyoul\U2F\U2FServer\U2FServer
  Methods:  63.64% ( 7/11)   Lines:  84.28% (134/159)
---
 src/U2FServer.php      |   4 +-
 test/U2FServerTest.php | 364 +++++++++++++++++++++++++++++++----------
 2 files changed, 279 insertions(+), 89 deletions(-)

diff --git a/src/U2FServer.php b/src/U2FServer.php
index f7d7ab4..15d0a85 100644
--- a/src/U2FServer.php
+++ b/src/U2FServer.php
@@ -84,9 +84,7 @@ public static function makeRegistration($appId, array $registrations = [])
     public static function register(RegistrationRequest $request, $response, $attestDir = null, $includeCert = true)
     {
         // Parameter Checks
-        if( !is_object( $request ) ) {
-            throw new \InvalidArgumentException('$request of register() method only accepts object.');
-        }
+        // $request is safe because of the php typehint
 
         if( !is_object( $response ) ) {
             throw new \InvalidArgumentException('$response of register() method only accepts object.');
diff --git a/test/U2FServerTest.php b/test/U2FServerTest.php
index 87a03f8..e428163 100644
--- a/test/U2FServerTest.php
+++ b/test/U2FServerTest.php
@@ -2,6 +2,7 @@
 
 namespace Samyoul\U2F\U2FServer\Tests;
 
+use InvalidArgumentException;
 use PHPUnit\Framework\TestCase;
 use ReflectionClass;
 use Samyoul\U2F\U2FServer\RegistrationRequest;
@@ -11,6 +12,53 @@
 
 class U2FServerTest extends TestCase
 {
+
+    // Source: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L200
+    // Data copyright: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L3
+    private $certificate = 'MIIC4jCBywIBATANBgkqhkiG9w0BAQsFADAdMRswGQYDVQQDExJZdWJpY28gVTJGIFRlc3QgQ0EwHhcNMTQwNTE1'
+        . 'MTI1ODU0WhcNMTQwNjE0MTI1ODU0WjAdMRswGQYDVQQDExJZdWJpY28gVTJGIFRlc3QgRUUwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAA'
+        . 'TbCtv1IcdczmPcpuHoJQYNlOYnVBlPnSSvJhq+rZlEH5WjcZEKOiDnPpFeE+i+OAV61XqjfnaQj6\/'
+        . 'iipS2MOudMA0GCSqGSIb3DQEBCwUAA4ICAQCVQGtQYX2thKO064gP4zAPLaIKANklBO5y+mffWFEPC0cCnD5BKUqTrCmFiS2keoEyKFdxAe'
+        . '+oQogWljeR1d\/gj8k8jbDNiXCC7HnTxnhzKTLlq2y9Vp\/VRZHOwd2NZNzpnB9ePNKvUaWCGK\/gN+cynnYFdwJ75iSgMVYb\/'
+        . 'RnFcdPwnsBzBU68hbhTnu\/FvJxWo7rZJ2q7qXpA10eLVXJr4\/4oSXEk9I\/0IIHqOP98Ck\/fAoI5gYI7ygndyqoPJ\/Wkg1VsmjmbFToWY9xb'
+        . '+axbvPefvg+KojwxE6MySMpYh\/h7oKEKamCWk19dJp5jHQmumkHlvQhH\/uUJmyD9EuLmQH+6SmEzZg0Oc9uw1aKamhcNNDCFakJGnv80j1'
+        . '+HbDXnqE0168FBqorS2hmqeaJfNSyg\/SXT950lGC36tLy7BzQ8jYG99Ok32znp0UVbIEEvLSci3JJ0ipLVg\/0J+xOb4zl6a1z65nae4OTj7628\/'
+        . 'UJFmtSU0X6Np9gF1dNizxXPlH0fW1ggRCCQcb5m6ZqrdDJwUx1p7Ydm9AlPyiUwwmN5ADyxmzk\/'
+        . 'AOCoiO96UVvnvUlk2kF7JMNxIv3R0SCzP5fTl7KqGByeA3d7W375o6DWIIEsOI+dJd7pyPXdakecZQRaVubC6\/ICl'
+        . '+G52OEkdp8jYjkDS8j3NAdJ1udNmg==';
+
+    // Source: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L200
+    // Data copyright: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L3
+    private $keyHandle = 'CTUayZo8hCBeC-sGQJChC0wW-bBg99bmOlGCgw8XGq4dLsxO3yWh9mRYArZxocP5hBB1pEGB3bbJYiM-5acc5w';
+
+    // Source: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L200
+    // Data copyright: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L3
+    private $publicKey = 'BC0SaFZWC9uH7wamOwduP93kUH2I2hEvyY0Srfj4A258pZSlV0iPoFIH+bd4yhncaqdoPLdEDl5Y\/yaFORPUe3c=';
+
+    // Source: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L199
+    // Data copyright: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L3
+    private $challenge = 'fEnc9oV79EaBgK5BoNERU5gPKM2XGYWrz4fUjgc0Q7g';
+
+
+    // Source: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L201
+    // Data copyright: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L3
+    private $clientData = 'eyAiY2hhbGxlbmdlIjogImZFbmM5b1Y3OUVhQmdLNUJvTkVSVTVnUEtNMlhHWVdyejRmVWpnYzBRN2ciLCAib3JpZ2luIjogImh0dHA6XC9cL2RlbW8uZXhhbXBsZS5jb20iLCAidHlwIjogIm5hdmlnYXRvci5pZC5nZXRBc3NlcnRpb24iIH0';
+
+
+    // Source: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L201
+    // Data copyright: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L3
+    private $signatureData = 'AQAAAAQwRQIhAI6FSrMD3KUUtkpiP0jpIEakql-HNhwWFngyw553pS1CAiAKLjACPOhxzZXuZsVO8im-HStEcYGC50PKhsGp_SUAng==';
+
+    // Source: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L51
+    // Data copyright: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L3
+    private $registrationData = 'BQQtEmhWVgvbh-8GpjsHbj_d5FB9iNoRL8mNEq34-ANufKWUpVdIj6BSB_m3eMoZ3GqnaDy3RA5eWP8mhTkT1Ht3QAk1GsmaPIQgXgvrBkCQoQtMFvmwYPfW5jpRgoMPFxquHS7MTt8lofZkWAK2caHD-YQQdaRBgd22yWIjPuWnHOcwggLiMIHLAgEBMA0GCSqGSIb3DQEBCwUAMB0xGzAZBgNVBAMTEll1YmljbyBVMkYgVGVzdCBDQTAeFw0xNDA1MTUxMjU4NTRaFw0xNDA2MTQxMjU4NTRaMB0xGzAZBgNVBAMTEll1YmljbyBVMkYgVGVzdCBFRTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABNsK2_Uhx1zOY9ym4eglBg2U5idUGU-dJK8mGr6tmUQflaNxkQo6IOc-kV4T6L44BXrVeqN-dpCPr-KKlLYw650wDQYJKoZIhvcNAQELBQADggIBAJVAa1Bhfa2Eo7TriA_jMA8togoA2SUE7nL6Z99YUQ8LRwKcPkEpSpOsKYWJLaR6gTIoV3EB76hCiBaWN5HV3-CPyTyNsM2JcILsedPGeHMpMuWrbL1Wn9VFkc7B3Y1k3OmcH1480q9RpYIYr-A35zKedgV3AnvmJKAxVhv9GcVx0_CewHMFTryFuFOe78W8nFajutknarupekDXR4tVcmvj_ihJcST0j_Qggeo4_3wKT98CgjmBgjvKCd3Kqg8n9aSDVWyaOZsVOhZj3Fv5rFu895--D4qiPDETozJIyliH-HugoQpqYJaTX10mnmMdCa6aQeW9CEf-5QmbIP0S4uZAf7pKYTNmDQ5z27DVopqaFw00MIVqQkae_zSPX4dsNeeoTTXrwUGqitLaGap5ol81LKD9JdP3nSUYLfq0vLsHNDyNgb306TfbOenRRVsgQS8tJyLcknSKktWD_Qn7E5vjOXprXPrmdp7g5OPvrbz9QkWa1JTRfo2n2AXV02LPFc-UfR9bWCBEIJBxvmbpmqt0MnBTHWnth2b0CU_KJTDCY3kAPLGbOT8A4KiI73pRW-e9SWTaQXskw3Ei_dHRILM_l9OXsqoYHJ4Dd3tbfvmjoNYggSw4j50l3unI9d1qR5xlBFpW5sLr8gKX4bnY4SR2nyNiOQNLyPc0B0nW502aMEUCIQDTGOX-i_QrffJDY8XvKbPwMuBVrOSO-ayvTnWs_WSuDQIgZ7fMAvD_Ezyy5jg6fQeuOkoJi8V2naCtzV-HTly8Nww=';
+
+    // Source: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L51
+    // Data copyright: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L3
+    private $clientData2 = 'eyAiY2hhbGxlbmdlIjogInlLQTB4MDc1dGpKLUdFN2ZLVGZuelRPU2FOVU9XUXhSZDlUV3o1YUZPZzgiLCAib3JpZ2luIjogImh0dHA6XC9cL2RlbW8uZXhhbXBsZS5jb20iLCAidHlwIjogIm5hdmlnYXRvci5pZC5maW5pc2hFbnJvbGxtZW50IiB9';
+
+    private $appId = 'http://demo.example.com';
+
     protected static function getClassMethod(string $className, string $methodName)
     {
         $class = new ReflectionClass($className);
@@ -156,38 +204,26 @@ public function testPublicKeyToPem(): void
 
     public function testMakeAuthentication(): void
     {
-        // Source: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L200
-        // Data copyright: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L3
         $regs = [
             (object) [
-                'keyHandle' => 'CTUayZo8hCBeC-sGQJChC0wW-bBg99bmOlGCgw8XGq4dLsxO3yWh9mRYArZxocP5hBB1pEGB3bbJYiM-5acc5w',
-                'publicKey' => 'BC0SaFZWC9uH7wamOwduP93kUH2I2hEvyY0Srfj4A258pZSlV0iPoFIH+bd4yhncaqdoPLdEDl5Y\/yaFORPUe3c=',
-                'certificate' => 'MIIC4jCBywIBATANBgkqhkiG9w0BAQsFADAdMRswGQYDVQQDExJZdWJpY28gVTJGIFRlc3QgQ0EwHhcNMTQwNTE1'
-                    . ' MTI1ODU0WhcNMTQwNjE0MTI1ODU0WjAdMRswGQYDVQQDExJZdWJpY28gVTJGIFRlc3QgRUUwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAA'
-                    . 'TbCtv1IcdczmPcpuHoJQYNlOYnVBlPnSSvJhq+rZlEH5WjcZEKOiDnPpFeE+i+OAV61XqjfnaQj6\/'
-                    . 'iipS2MOudMA0GCSqGSIb3DQEBCwUAA4ICAQCVQGtQYX2thKO064gP4zAPLaIKANklBO5y+mffWFEPC0cCnD5BKUqTrCmFiS2keoEyKFdxAe'
-                    . '+oQogWljeR1d\/gj8k8jbDNiXCC7HnTxnhzKTLlq2y9Vp\/VRZHOwd2NZNzpnB9ePNKvUaWCGK\/gN+cynnYFdwJ75iSgMVYb\/'
-                    . 'RnFcdPwnsBzBU68hbhTnu\/FvJxWo7rZJ2q7qXpA10eLVXJr4\/4oSXEk9I\/0IIHqOP98Ck\/fAoI5gYI7ygndyqoPJ\/Wkg1VsmjmbFToWY9xb'
-                    . '+axbvPefvg+KojwxE6MySMpYh\/h7oKEKamCWk19dJp5jHQmumkHlvQhH\/uUJmyD9EuLmQH+6SmEzZg0Oc9uw1aKamhcNNDCFakJGnv80j1'
-                    . '+HbDXnqE0168FBqorS2hmqeaJfNSyg\/SXT950lGC36tLy7BzQ8jYG99Ok32znp0UVbIEEvLSci3JJ0ipLVg\/0J+xOb4zl6a1z65nae4OTj7628\/'
-                    . 'UJFmtSU0X6Np9gF1dNizxXPlH0fW1ggRCCQcb5m6ZqrdDJwUx1p7Ydm9AlPyiUwwmN5ADyxmzk\/'
-                    . 'AOCoiO96UVvnvUlk2kF7JMNxIv3R0SCzP5fTl7KqGByeA3d7W375o6DWIIEsOI+dJd7pyPXdakecZQRaVubC6\/ICl'
-                    . '+G52OEkdp8jYjkDS8j3NAdJ1udNmg==',
+                'keyHandle' => $this->keyHandle,
+                'publicKey' => $this->publicKey,
+                'certificate' => $this->certificate,
                 'counter' => 3
             ]
         ];
 
         $auths = U2FServer::makeAuthentication(
             $regs,
-            'http://demo.example.com'
+            $this->appId
         );
         $this->assertSame(
             [
                 [
                     'version' => 'U2F_V2',
                     'challenge' => $auths[0]->challenge(),
-                    'keyHandle' => 'CTUayZo8hCBeC-sGQJChC0wW-bBg99bmOlGCgw8XGq4dLsxO3yWh9mRYArZxocP5hBB1pEGB3bbJYiM-5acc5w',
-                    'appId' => 'http://demo.example.com'
+                    'keyHandle' => $this->keyHandle,
+                    'appId' => $this->appId
                 ]
             ],
             json_decode(json_encode($auths), true)
@@ -196,46 +232,29 @@ public function testMakeAuthentication(): void
 
     public function testAuthenticate(): void
     {
-        // Source: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L200
-        // Data copyright: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L3
-        $certificate = 'MIIC4jCBywIBATANBgkqhkiG9w0BAQsFADAdMRswGQYDVQQDExJZdWJpY28gVTJGIFRlc3QgQ0EwHhcNMTQwNTE1'
-            . ' MTI1ODU0WhcNMTQwNjE0MTI1ODU0WjAdMRswGQYDVQQDExJZdWJpY28gVTJGIFRlc3QgRUUwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAA'
-            . 'TbCtv1IcdczmPcpuHoJQYNlOYnVBlPnSSvJhq+rZlEH5WjcZEKOiDnPpFeE+i+OAV61XqjfnaQj6\/'
-            . 'iipS2MOudMA0GCSqGSIb3DQEBCwUAA4ICAQCVQGtQYX2thKO064gP4zAPLaIKANklBO5y+mffWFEPC0cCnD5BKUqTrCmFiS2keoEyKFdxAe'
-            . '+oQogWljeR1d\/gj8k8jbDNiXCC7HnTxnhzKTLlq2y9Vp\/VRZHOwd2NZNzpnB9ePNKvUaWCGK\/gN+cynnYFdwJ75iSgMVYb\/'
-            . 'RnFcdPwnsBzBU68hbhTnu\/FvJxWo7rZJ2q7qXpA10eLVXJr4\/4oSXEk9I\/0IIHqOP98Ck\/fAoI5gYI7ygndyqoPJ\/Wkg1VsmjmbFToWY9xb'
-            . '+axbvPefvg+KojwxE6MySMpYh\/h7oKEKamCWk19dJp5jHQmumkHlvQhH\/uUJmyD9EuLmQH+6SmEzZg0Oc9uw1aKamhcNNDCFakJGnv80j1'
-            . '+HbDXnqE0168FBqorS2hmqeaJfNSyg\/SXT950lGC36tLy7BzQ8jYG99Ok32znp0UVbIEEvLSci3JJ0ipLVg\/0J+xOb4zl6a1z65nae4OTj7628\/'
-            . 'UJFmtSU0X6Np9gF1dNizxXPlH0fW1ggRCCQcb5m6ZqrdDJwUx1p7Ydm9AlPyiUwwmN5ADyxmzk\/'
-            . 'AOCoiO96UVvnvUlk2kF7JMNxIv3R0SCzP5fTl7KqGByeA3d7W375o6DWIIEsOI+dJd7pyPXdakecZQRaVubC6\/ICl'
-            . '+G52OEkdp8jYjkDS8j3NAdJ1udNmg==';
-        $keyHandle = 'CTUayZo8hCBeC-sGQJChC0wW-bBg99bmOlGCgw8XGq4dLsxO3yWh9mRYArZxocP5hBB1pEGB3bbJYiM-5acc5w';
-        $publicKey = 'BC0SaFZWC9uH7wamOwduP93kUH2I2hEvyY0Srfj4A258pZSlV0iPoFIH+bd4yhncaqdoPLdEDl5Y\/yaFORPUe3c=';
+
         $regs = [
             (object) [
-                'keyHandle' => $keyHandle,
-                'publicKey' => $publicKey,
-                'certificate' => $certificate,
+                'keyHandle' => $this->keyHandle,
+                'publicKey' => $this->publicKey,
+                'certificate' => $this->certificate,
                 'counter' => 3
             ]
         ];
 
-        // Source: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L199
-        // Data copyright: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L3
         $reqs = [
             new SignRequest([
-                'challenge' => 'fEnc9oV79EaBgK5BoNERU5gPKM2XGYWrz4fUjgc0Q7g',
-                'keyHandle' => $keyHandle,
-                'appId' => 'http://demo.example.com',
+                'challenge' => $this->challenge,
+                'keyHandle' => $this->keyHandle,
+                'appId' => $this->appId,
             ])
         ];
+        $this->assertSame('U2F_V2', $reqs[0]->version());
 
-        // Source: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L201
-        // Data copyright: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L3
         $response = (object) [
-            'signatureData' => 'AQAAAAQwRQIhAI6FSrMD3KUUtkpiP0jpIEakql-HNhwWFngyw553pS1CAiAKLjACPOhxzZXuZsVO8im-HStEcYGC50PKhsGp_SUAng==',
-            'clientData' => 'eyAiY2hhbGxlbmdlIjogImZFbmM5b1Y3OUVhQmdLNUJvTkVSVTVnUEtNMlhHWVdyejRmVWpnYzBRN2ciLCAib3JpZ2luIjogImh0dHA6XC9cL2RlbW8uZXhhbXBsZS5jb20iLCAidHlwIjogIm5hdmlnYXRvci5pZC5nZXRBc3NlcnRpb24iIH0=',
-            'keyHandle' => $keyHandle,
+            'signatureData' => $this->signatureData,
+            'clientData' => $this->clientData,
+            'keyHandle' => $this->keyHandle,
             'errorCode' => 0,
         ];
 
@@ -246,9 +265,9 @@ public function testAuthenticate(): void
         );
         $this->assertSame(
             [
-                'keyHandle' => $keyHandle,
-                'publicKey' => $publicKey,
-                'certificate' => $certificate,
+                'keyHandle' => $this->keyHandle,
+                'publicKey' => $this->publicKey,
+                'certificate' => $this->certificate,
                 'counter' => 4,
             ],
             (array) $auth
@@ -258,32 +277,18 @@ public function testAuthenticate(): void
 
     public function testMakeRegistration(): void
     {
-        // Source: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L200
-        // Data copyright: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L3
-        $certificate = 'MIIC4jCBywIBATANBgkqhkiG9w0BAQsFADAdMRswGQYDVQQDExJZdWJpY28gVTJGIFRlc3QgQ0EwHhcNMTQwNTE1'
-            . ' MTI1ODU0WhcNMTQwNjE0MTI1ODU0WjAdMRswGQYDVQQDExJZdWJpY28gVTJGIFRlc3QgRUUwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAA'
-            . 'TbCtv1IcdczmPcpuHoJQYNlOYnVBlPnSSvJhq+rZlEH5WjcZEKOiDnPpFeE+i+OAV61XqjfnaQj6\/'
-            . 'iipS2MOudMA0GCSqGSIb3DQEBCwUAA4ICAQCVQGtQYX2thKO064gP4zAPLaIKANklBO5y+mffWFEPC0cCnD5BKUqTrCmFiS2keoEyKFdxAe'
-            . '+oQogWljeR1d\/gj8k8jbDNiXCC7HnTxnhzKTLlq2y9Vp\/VRZHOwd2NZNzpnB9ePNKvUaWCGK\/gN+cynnYFdwJ75iSgMVYb\/'
-            . 'RnFcdPwnsBzBU68hbhTnu\/FvJxWo7rZJ2q7qXpA10eLVXJr4\/4oSXEk9I\/0IIHqOP98Ck\/fAoI5gYI7ygndyqoPJ\/Wkg1VsmjmbFToWY9xb'
-            . '+axbvPefvg+KojwxE6MySMpYh\/h7oKEKamCWk19dJp5jHQmumkHlvQhH\/uUJmyD9EuLmQH+6SmEzZg0Oc9uw1aKamhcNNDCFakJGnv80j1'
-            . '+HbDXnqE0168FBqorS2hmqeaJfNSyg\/SXT950lGC36tLy7BzQ8jYG99Ok32znp0UVbIEEvLSci3JJ0ipLVg\/0J+xOb4zl6a1z65nae4OTj7628\/'
-            . 'UJFmtSU0X6Np9gF1dNizxXPlH0fW1ggRCCQcb5m6ZqrdDJwUx1p7Ydm9AlPyiUwwmN5ADyxmzk\/'
-            . 'AOCoiO96UVvnvUlk2kF7JMNxIv3R0SCzP5fTl7KqGByeA3d7W375o6DWIIEsOI+dJd7pyPXdakecZQRaVubC6\/ICl'
-            . '+G52OEkdp8jYjkDS8j3NAdJ1udNmg==';
-        $keyHandle = 'CTUayZo8hCBeC-sGQJChC0wW-bBg99bmOlGCgw8XGq4dLsxO3yWh9mRYArZxocP5hBB1pEGB3bbJYiM-5acc5w';
-        $publicKey = 'BC0SaFZWC9uH7wamOwduP93kUH2I2hEvyY0Srfj4A258pZSlV0iPoFIH+bd4yhncaqdoPLdEDl5Y\/yaFORPUe3c=';
+
         $regs = [
             (object) [
-                'keyHandle' => $keyHandle,
-                'publicKey' => $publicKey,
-                'certificate' => $certificate,
+                'keyHandle' => $this->keyHandle,
+                'publicKey' => $this->publicKey,
+                'certificate' => $this->certificate,
                 'counter' => 3
             ]
         ];
 
         $auth = U2FServer::makeRegistration(
-            'http://demo.example.com',
+            $this->appId,
             $regs
         );
         $this->assertSame(
@@ -291,14 +296,14 @@ public function testMakeRegistration(): void
                 'request' => [
                     'version' => 'U2F_V2',
                     'challenge' => $auth['request']->challenge(),
-                    'appId' => 'http://demo.example.com',
+                    'appId' => $this->appId,
 
                 ],
                 'signatures' => [
                     (new SignRequest([
                         'challenge' => $auth['signatures'][0]->challenge(),
-                        'keyHandle' => $keyHandle,
-                        'appId' => 'http://demo.example.com',
+                        'keyHandle' => $this->keyHandle,
+                        'appId' => $this->appId,
                     ]))->jsonSerialize(),
                 ],
             ],
@@ -308,39 +313,54 @@ public function testMakeRegistration(): void
 
     public function testRegister(): void
     {
-        // Source: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L51
-        // Data copyright: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L3
         $response = (object) [
-            'registrationData' => 'BQQtEmhWVgvbh-8GpjsHbj_d5FB9iNoRL8mNEq34-ANufKWUpVdIj6BSB_m3eMoZ3GqnaDy3RA5eWP8mhTkT1Ht3QAk1GsmaPIQgXgvrBkCQoQtMFvmwYPfW5jpRgoMPFxquHS7MTt8lofZkWAK2caHD-YQQdaRBgd22yWIjPuWnHOcwggLiMIHLAgEBMA0GCSqGSIb3DQEBCwUAMB0xGzAZBgNVBAMTEll1YmljbyBVMkYgVGVzdCBDQTAeFw0xNDA1MTUxMjU4NTRaFw0xNDA2MTQxMjU4NTRaMB0xGzAZBgNVBAMTEll1YmljbyBVMkYgVGVzdCBFRTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABNsK2_Uhx1zOY9ym4eglBg2U5idUGU-dJK8mGr6tmUQflaNxkQo6IOc-kV4T6L44BXrVeqN-dpCPr-KKlLYw650wDQYJKoZIhvcNAQELBQADggIBAJVAa1Bhfa2Eo7TriA_jMA8togoA2SUE7nL6Z99YUQ8LRwKcPkEpSpOsKYWJLaR6gTIoV3EB76hCiBaWN5HV3-CPyTyNsM2JcILsedPGeHMpMuWrbL1Wn9VFkc7B3Y1k3OmcH1480q9RpYIYr-A35zKedgV3AnvmJKAxVhv9GcVx0_CewHMFTryFuFOe78W8nFajutknarupekDXR4tVcmvj_ihJcST0j_Qggeo4_3wKT98CgjmBgjvKCd3Kqg8n9aSDVWyaOZsVOhZj3Fv5rFu895--D4qiPDETozJIyliH-HugoQpqYJaTX10mnmMdCa6aQeW9CEf-5QmbIP0S4uZAf7pKYTNmDQ5z27DVopqaFw00MIVqQkae_zSPX4dsNeeoTTXrwUGqitLaGap5ol81LKD9JdP3nSUYLfq0vLsHNDyNgb306TfbOenRRVsgQS8tJyLcknSKktWD_Qn7E5vjOXprXPrmdp7g5OPvrbz9QkWa1JTRfo2n2AXV02LPFc-UfR9bWCBEIJBxvmbpmqt0MnBTHWnth2b0CU_KJTDCY3kAPLGbOT8A4KiI73pRW-e9SWTaQXskw3Ei_dHRILM_l9OXsqoYHJ4Dd3tbfvmjoNYggSw4j50l3unI9d1qR5xlBFpW5sLr8gKX4bnY4SR2nyNiOQNLyPc0B0nW502aMEUCIQDTGOX-i_QrffJDY8XvKbPwMuBVrOSO-ayvTnWs_WSuDQIgZ7fMAvD_Ezyy5jg6fQeuOkoJi8V2naCtzV-HTly8Nww=',
-            'clientData' =>  'eyAiY2hhbGxlbmdlIjogInlLQTB4MDc1dGpKLUdFN2ZLVGZuelRPU2FOVU9XUXhSZDlUV3o1YUZPZzgiLCAib3JpZ2luIjogImh0dHA6XC9cL2RlbW8uZXhhbXBsZS5jb20iLCAidHlwIjogIm5hdmlnYXRvci5pZC5maW5pc2hFbnJvbGxtZW50IiB9',
+            'registrationData' => $this->registrationData,
+            'clientData' =>  $this->clientData2,
             'errorCode' => 0
         ];
 
         $registration = U2FServer::register(
-            new RegistrationRequest('yKA0x075tjJ-GE7fKTfnzTOSaNUOWQxRd9TWz5aFOg8', 'http://demo.example.com'),
+            new RegistrationRequest('yKA0x075tjJ-GE7fKTfnzTOSaNUOWQxRd9TWz5aFOg8', $this->appId),
             $response
         );
-        $this->assertSame('CTUayZo8hCBeC-sGQJChC0wW-bBg99bmOlGCgw8XGq4dLsxO3yWh9mRYArZxocP5hBB1pEGB3bbJYiM-5acc5w', $registration->getKeyHandle());
-        $this->assertSame('BC0SaFZWC9uH7wamOwduP93kUH2I2hEvyY0Srfj4A258pZSlV0iPoFIH+bd4yhncaqdoPLdEDl5Y/yaFORPUe3c=', $registration->getPublicKey());
-        $this->assertSame('MIIC4jCBywIBATANBgkqhkiG9w0BAQsFADAdMRswGQYDVQQDExJZdWJpY28gVTJGIFRlc3QgQ0EwHhcNMTQwNTE1MTI1ODU0WhcNMTQwNjE0MTI1ODU0WjAdMRswGQYDVQQDExJZdWJpY28gVTJGIFRlc3QgRUUwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAATbCtv1IcdczmPcpuHoJQYNlOYnVBlPnSSvJhq+rZlEH5WjcZEKOiDnPpFeE+i+OAV61XqjfnaQj6/iipS2MOudMA0GCSqGSIb3DQEBCwUAA4ICAQCVQGtQYX2thKO064gP4zAPLaIKANklBO5y+mffWFEPC0cCnD5BKUqTrCmFiS2keoEyKFdxAe+oQogWljeR1d/gj8k8jbDNiXCC7HnTxnhzKTLlq2y9Vp/VRZHOwd2NZNzpnB9ePNKvUaWCGK/gN+cynnYFdwJ75iSgMVYb/RnFcdPwnsBzBU68hbhTnu/FvJxWo7rZJ2q7qXpA10eLVXJr4/4oSXEk9I/0IIHqOP98Ck/fAoI5gYI7ygndyqoPJ/Wkg1VsmjmbFToWY9xb+axbvPefvg+KojwxE6MySMpYh/h7oKEKamCWk19dJp5jHQmumkHlvQhH/uUJmyD9EuLmQH+6SmEzZg0Oc9uw1aKamhcNNDCFakJGnv80j1+HbDXnqE0168FBqorS2hmqeaJfNSyg/SXT950lGC36tLy7BzQ8jYG99Ok32znp0UVbIEEvLSci3JJ0ipLVg/0J+xOb4zl6a1z65nae4OTj7628/UJFmtSU0X6Np9gF1dNizxXPlH0fW1ggRCCQcb5m6ZqrdDJwUx1p7Ydm9AlPyiUwwmN5ADyxmzk/AOCoiO96UVvnvUlk2kF7JMNxIv3R0SCzP5fTl7KqGByeA3d7W375o6DWIIEsOI+dJd7pyPXdakecZQRaVubC6/ICl+G52OEkdp8jYjkDS8j3NAdJ1udNmg==', $registration->getCertificate());
+        $this->assertSame($this->keyHandle, $registration->getKeyHandle());
+        $this->assertSame(str_replace('\/', '/', $this->publicKey), $registration->getPublicKey());
+        $this->assertSame(str_replace('\/', '/', $this->certificate), $registration->getCertificate());
         $this->assertLessThan(0, $registration->getCounter());
     }
 
+    public function testRegisterAttestationFail(): void
+    {
+        $this->expectExceptionMessage('Attestation signature does not match');
+        $this->expectExceptionCode(U2FException::ATTESTATION_SIGNATURE);
+        $this->expectException(U2FException::class);
+
+        $response = (object) [
+            // Alter the data
+            'registrationData' => str_replace('DY8XvKbPwMuBVrOSO-ayvT', 'DY8XvKbPaMuBVrOSO-ayvT', $this->registrationData),
+            'clientData' =>  $this->clientData2,
+            'errorCode' => 0
+        ];
+
+        U2FServer::register(
+            new RegistrationRequest('yKA0x075tjJ-GE7fKTfnzTOSaNUOWQxRd9TWz5aFOg8', $this->appId),
+            $response
+        );
+    }
+
     public function testRegisterChallengeMismatch(): void
     {
         $this->expectExceptionMessage('Registration challenge does not match');
         $this->expectExceptionCode(U2FException::UNMATCHED_CHALLENGE);
         $this->expectException(U2FException::class);
 
-        // Source: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L51
-        // Data copyright: https://github.com/Yubico/php-u2flib-server/blob/55d813acf68212ad2cadecde07551600d6971939/tests/u2flib_test.php#L3
         $response = (object) [
-            'registrationData' => 'BQQtEmhWVgvbh-8GpjsHbj_d5FB9iNoRL8mNEq34-ANufKWUpVdIj6BSB_m3eMoZ3GqnaDy3RA5eWP8mhTkT1Ht3QAk1GsmaPIQgXgvrBkCQoQtMFvmwYPfW5jpRgoMPFxquHS7MTt8lofZkWAK2caHD-YQQdaRBgd22yWIjPuWnHOcwggLiMIHLAgEBMA0GCSqGSIb3DQEBCwUAMB0xGzAZBgNVBAMTEll1YmljbyBVMkYgVGVzdCBDQTAeFw0xNDA1MTUxMjU4NTRaFw0xNDA2MTQxMjU4NTRaMB0xGzAZBgNVBAMTEll1YmljbyBVMkYgVGVzdCBFRTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABNsK2_Uhx1zOY9ym4eglBg2U5idUGU-dJK8mGr6tmUQflaNxkQo6IOc-kV4T6L44BXrVeqN-dpCPr-KKlLYw650wDQYJKoZIhvcNAQELBQADggIBAJVAa1Bhfa2Eo7TriA_jMA8togoA2SUE7nL6Z99YUQ8LRwKcPkEpSpOsKYWJLaR6gTIoV3EB76hCiBaWN5HV3-CPyTyNsM2JcILsedPGeHMpMuWrbL1Wn9VFkc7B3Y1k3OmcH1480q9RpYIYr-A35zKedgV3AnvmJKAxVhv9GcVx0_CewHMFTryFuFOe78W8nFajutknarupekDXR4tVcmvj_ihJcST0j_Qggeo4_3wKT98CgjmBgjvKCd3Kqg8n9aSDVWyaOZsVOhZj3Fv5rFu895--D4qiPDETozJIyliH-HugoQpqYJaTX10mnmMdCa6aQeW9CEf-5QmbIP0S4uZAf7pKYTNmDQ5z27DVopqaFw00MIVqQkae_zSPX4dsNeeoTTXrwUGqitLaGap5ol81LKD9JdP3nSUYLfq0vLsHNDyNgb306TfbOenRRVsgQS8tJyLcknSKktWD_Qn7E5vjOXprXPrmdp7g5OPvrbz9QkWa1JTRfo2n2AXV02LPFc-UfR9bWCBEIJBxvmbpmqt0MnBTHWnth2b0CU_KJTDCY3kAPLGbOT8A4KiI73pRW-e9SWTaQXskw3Ei_dHRILM_l9OXsqoYHJ4Dd3tbfvmjoNYggSw4j50l3unI9d1qR5xlBFpW5sLr8gKX4bnY4SR2nyNiOQNLyPc0B0nW502aMEUCIQDTGOX-i_QrffJDY8XvKbPwMuBVrOSO-ayvTnWs_WSuDQIgZ7fMAvD_Ezyy5jg6fQeuOkoJi8V2naCtzV-HTly8Nww=',
-            'clientData' =>  'eyAiY2hhbGxlbmdlIjogInlLQTB4MDc1dGpKLUdFN2ZLVGZuelRPU2FOVU9XUXhSZDlUV3o1YUZPZzgiLCAib3JpZ2luIjogImh0dHA6XC9cL2RlbW8uZXhhbXBsZS5jb20iLCAidHlwIjogIm5hdmlnYXRvci5pZC5maW5pc2hFbnJvbGxtZW50IiB9',
+            'registrationData' => $this->registrationData,
+            'clientData' =>  $this->clientData2,
             'errorCode' => 0
         ];
 
-        $regReq = new RegistrationRequest('yKA0x088tff-GE7fKTfnzTOSaNUOWQxRd9TWz5aFOg8', 'http://demo.example.com');
+        $regReq = new RegistrationRequest('yKA0x088tff-GE7fKTfnzTOSaNUOWQxRd9TWz5aFOg8', $this->appId);
         $this->assertSame('U2F_V2', $regReq->version());
         U2FServer::register(
             $regReq,
@@ -348,6 +368,121 @@ public function testRegisterChallengeMismatch(): void
         );
     }
 
+    public function testAuthenticateNoChallengeMatch(): void
+    {
+        $this->expectExceptionMessage('No matching request found');
+        $this->expectExceptionCode(U2FException::NO_MATCHING_REQUEST);
+        $this->expectException(U2FException::class);
+
+
+        $regs = [
+            (object) [
+                'keyHandle' => $this->keyHandle,
+                'publicKey' => $this->publicKey,
+                'certificate' => $this->certificate,
+                'counter' => 3
+            ]
+        ];
+
+        $reqs = [
+            new SignRequest([
+                'challenge' => 'fEnc9oV79EaBgK5BoNERU5gPKM2XGYWrz4fUjgc0000',
+                'keyHandle' => $this->keyHandle,
+                'appId' => $this->appId,
+            ])
+        ];
+
+        $response = (object) [
+            'signatureData' => $this->signatureData,
+            'clientData' => $this->clientData,
+            'keyHandle' => $this->keyHandle,
+            'errorCode' => 0,
+        ];
+
+        U2FServer::authenticate(
+            $reqs,
+            $regs,
+            $response
+        );
+    }
+
+    public function testAuthenticateLowCounter(): void
+    {
+        $this->expectExceptionMessage('Counter too low.');
+        $this->expectExceptionCode(U2FException::COUNTER_TOO_LOW);
+        $this->expectException(U2FException::class);
+
+
+        $regs = [
+            (object) [
+                'keyHandle' => $this->keyHandle,
+                'publicKey' => $this->publicKey,
+                'certificate' => $this->certificate,
+                'counter' => 5
+            ]
+        ];
+
+        $reqs = [
+            new SignRequest([
+                'challenge' => $this->challenge,
+                'keyHandle' => $this->keyHandle,
+                'appId' => $this->appId,
+            ])
+        ];
+
+        $response = (object) [
+            'signatureData' => $this->signatureData,
+            'clientData' => $this->clientData,
+            'keyHandle' => $this->keyHandle,
+            'errorCode' => 0,
+        ];
+
+        U2FServer::authenticate(
+            $reqs,
+            $regs,
+            $response
+        );
+    }
+
+    public function testAuthenticateFail(): void
+    {
+        $this->expectExceptionMessage('Authentication failed');
+        $this->expectExceptionCode(U2FException::AUTHENTICATION_FAILURE);
+        $this->expectException(U2FException::class);
+
+
+        $regs = [
+            (object) [
+                'keyHandle' => $this->keyHandle,
+                'publicKey' => $this->publicKey,
+                'certificate' => $this->certificate,
+                'counter' => 5
+            ]
+        ];
+
+        $reqs = [
+            new SignRequest([
+                'challenge' => $this->challenge,
+                'keyHandle' => $this->keyHandle,
+                'appId' => $this->appId,
+            ])
+        ];
+
+        $response = (object) [
+            // Alter the data
+            'signatureData' => str_replace('SUAng==', 'SUwww==', $this->signatureData),
+            'clientData' => $this->clientData,
+            'keyHandle' => $this->keyHandle,
+            'errorCode' => 0,
+        ];
+
+        U2FServer::authenticate(
+            $reqs,
+            $regs,
+            $response
+        );
+    }
+
     public function testRegisterUserAgentError(): void
     {
         $this->expectExceptionMessage('User-agent returned error. Error code: 1');
@@ -358,13 +493,70 @@ public function testRegisterUserAgentError(): void
             'errorCode' => 1
         ];
 
-        $regReq = new RegistrationRequest('ffffffffffffffffffffffffff', 'http://demo.example.com');
+        $regReq = new RegistrationRequest('ffffffffffffffffffffffffff', $this->appId);
         $this->assertSame('U2F_V2', $regReq->version());
         U2FServer::register(
             $regReq,
             $response
         );
     }
+
+    public function testAuthenticateNotAnObject(): void
+    {
+        $this->expectExceptionMessage('$response of authenticate() method only accepts object.');
+        $this->expectException(InvalidArgumentException::class);
+
+        U2FServer::authenticate(
+            [],
+            [],
+            []
+        );
+    }
+
+    public function testRegisterNotAnObject(): void
+    {
+        $this->expectExceptionMessage('$response of register() method only accepts object.');
+        $this->expectException(InvalidArgumentException::class);
+
+        U2FServer::register(
+            new RegistrationRequest('ffffffffffffffffffffffffff', $this->appId),
+            [
+                'errorCode' => 0,
+            ]
+        );
+    }
+
+    public function testRegisterNotABoolean(): void
+    {
+        $this->expectExceptionMessage('$include_cert of register() method only accepts boolean.');
+        $this->expectException(InvalidArgumentException::class);
+
+        U2FServer::register(
+            new RegistrationRequest('ffffffffffffffffffffffffff', $this->appId),
+            (object) [
+                'errorCode' => 0,
+            ],
+            null,
+            null
+        );
+    }
+
+    public function testAuthenticateUserAgentError(): void
+    {
+        $this->expectExceptionMessage('User-agent returned error. Error code: 1');
+        $this->expectExceptionCode(U2FException::BAD_UA_RETURNING);
+        $this->expectException(U2FException::class);
+
+
+        U2FServer::authenticate(
+            [],
+            [],
+            (object) [
+                'errorCode' => 1,
+            ]
+        );
+    }
+
     public function testMakeBadAuthentication(): void
     {
         $this->expectExceptionMessage('$registrations of makeAuthentication() method only accepts array of object.');
@@ -374,7 +566,7 @@ public function testMakeBadAuthentication(): void
             [
                 []
             ],
-            'http://demo.example.com'
+            $this->appId
         );
     }
 }