'use strict';

const wwa_passkey_notice_svg = '<svg xmlns="http://www.w3.org/2000/svg" xml:space="preserve" style="enable-background:new 0 0 216 216;width:28px" viewBox="0 0 216 216"><style>.st2{fill-rule:evenodd;clip-rule:evenodd}</style><g id="Isolation_Mode"><path d="M0 0h216v216H0z" style="fill:none"/><path d="M172.32 96.79c0 13.78-8.48 25.5-20.29 29.78l7.14 11.83-10.57 13 10.57 12.71-17.04 22.87-12.01-12.82V125.7c-10.68-4.85-18.15-15.97-18.15-28.91 0-17.4 13.51-31.51 30.18-31.51 16.66 0 30.17 14.11 30.17 31.51zm-30.18 4.82c4.02 0 7.28-3.4 7.28-7.6 0-4.2-3.26-7.61-7.28-7.61s-7.28 3.4-7.28 7.61c-.01 4.2 3.26 7.6 7.28 7.6z" style="fill-rule:evenodd;clip-rule:evenodd;fill:#353535"/><path d="M172.41 96.88c0 13.62-8.25 25.23-19.83 29.67l6.58 11.84-9.73 13 9.73 12.71-17.03 23.05v-85.54c4.02 0 7.28-3.41 7.28-7.6 0-4.2-3.26-7.61-7.28-7.61V65.28c16.73 0 30.28 14.15 30.28 31.6zM120.24 131.43c-9.75-8-16.3-20.3-17.2-34.27H50.8c-10.96 0-19.84 9.01-19.84 20.13v25.17c0 5.56 4.44 10.07 9.92 10.07h69.44c5.48 0 9.92-4.51 9.92-10.07v-11.03z" class="st2"/><path d="M73.16 91.13c-2.42-.46-4.82-.89-7.11-1.86-8.65-3.63-13.69-10.32-15.32-19.77-1.12-6.47-.59-12.87 2.03-18.92 3.72-8.6 10.39-13.26 19.15-14.84 5.24-.94 10.46-.73 15.5 1.15 7.59 2.82 12.68 8.26 15.03 16.24 2.38 8.05 2.03 16.1-1.56 23.72-3.72 7.96-10.21 12.23-18.42 13.9-.68.14-1.37.27-2.05.41-2.41-.03-4.83-.03-7.25-.03z" style="fill:#141313"/></g></svg>';
const wwa_passkey_btn_svg = '<svg xmlns="http://www.w3.org/2000/svg" xml:space="preserve" style="enable-background:new 0 0 216 216;width:28px" viewBox="0 0 216 216"><style>.st2{fill-rule:evenodd;clip-rule:evenodd}</style><g id="Isolation_Mode"><path d="M0 0h216v216H0z" style="fill:none"/><path d="M172.32 96.79c0 13.78-8.48 25.5-20.29 29.78l7.14 11.83-10.57 13 10.57 12.71-17.04 22.87-12.01-12.82V125.7c-10.68-4.85-18.15-15.97-18.15-28.91 0-17.4 13.51-31.51 30.18-31.51 16.66 0 30.17 14.11 30.17 31.51zm-30.18 4.82c4.02 0 7.28-3.4 7.28-7.6 0-4.2-3.26-7.61-7.28-7.61s-7.28 3.4-7.28 7.61c-.01 4.2 3.26 7.6 7.28 7.6z" style="fill-rule:evenodd;clip-rule:evenodd;fill:currentcolor"/><path d="M172.41 96.88c0 13.62-8.25 25.23-19.83 29.67l6.58 11.84-9.73 13 9.73 12.71-17.03 23.05v-85.54c4.02 0 7.28-3.41 7.28-7.6 0-4.2-3.26-7.61-7.28-7.61V65.28c16.73 0 30.28 14.15 30.28 31.6zM120.24 131.43c-9.75-8-16.3-20.3-17.2-34.27H50.8c-10.96 0-19.84 9.01-19.84 20.13v25.17c0 5.56 4.44 10.07 9.92 10.07h69.44c5.48 0 9.92-4.51 9.92-10.07v-11.03z" class="st2" style="fill:currentcolor"/><path d="M73.16 91.13c-2.42-.46-4.82-.89-7.11-1.86-8.65-3.63-13.69-10.32-15.32-19.77-1.12-6.47-.59-12.87 2.03-18.92 3.72-8.6 10.39-13.26 19.15-14.84 5.24-.94 10.46-.73 15.5 1.15 7.59 2.82 12.68 8.26 15.03 16.24 2.38 8.05 2.03 16.1-1.56 23.72-3.72 7.96-10.21 12.23-18.42 13.9-.68.14-1.37.27-2.05.41-2.41-.03-4.83-.03-7.25-.03z" style="fill:currentcolor"/></g></svg>';

// Send an AJAX request and get the response
const wwa_ajax = function () {
    let xmlHttpReq = new XMLHttpRequest();
    return {
        /** Send an AJAX GET request and get the response
         *
         * @param {string} url URL
         * @param {string} data Attached data
         * @param {object} callback Callback function
         */
        get: (url, data = '', callback = () => { }) => {
            xmlHttpReq.open('GET', url + data, true);
            xmlHttpReq.send();
            xmlHttpReq.onreadystatechange = () => {
                if (xmlHttpReq.readyState === 4 && xmlHttpReq.status === 200) {
                    callback(xmlHttpReq.responseText.trim(), true);
                } else if (xmlHttpReq.readyState === 4) {
                    callback('Network Error.', false);
                }
            }
        },
        /** Send an AJAX POST request and get the response
         *
         * @param {string} url URL
         * @param {string} data Attached data
         * @param {object} callback Callback function
         */
        post: (url, data = '', callback = () => { }) => {
            xmlHttpReq.open('POST', url, true);
            xmlHttpReq.setRequestHeader('Content-type', 'application/x-www-form-urlencoded');
            xmlHttpReq.send(data);
            xmlHttpReq.onreadystatechange = () => {
                if (xmlHttpReq.readyState === 4 && xmlHttpReq.status === 200) {
                    callback(xmlHttpReq.responseText.trim(), true);
                } else if (xmlHttpReq.readyState === 4) {
                    callback('Network Error.', false);
                }
            }
        }
    }
};

/** Operate selected DOMs
 * 
 * @param {string} selector DOM selector
 * @param {object} callback Callbck function
 * @param {string} method Selecte method
 */
const wwa_dom = (selector, callback = () => { }, method = 'query') => {
    let dom_list = [];
    if (method === 'id') {
        let dom = document.getElementById(selector);
        if (dom) {
            callback(dom);
        }
        return;
    } else if (method === 'class') {
        dom_list = document.getElementsByClassName(selector);
    } else if (method === 'tag') {
        dom_list = document.getElementsByTagName(selector);
    } else {
        dom_list = document.querySelectorAll(selector);
    }
    for (let dom of dom_list) {
        callback(dom);
    }
    return;
}

let wwaSupported = true;
let wwa_conditional_ui_abort = null;
let wwa_conditional_ui_active = false;

/**
 * Start a Conditional UI (passkey autofill) request.
 * The browser will show a passkey picker in the username autocomplete dropdown.
 * Aborted automatically when the user manually triggers a normal WebAuthn check.
 */
function wwa_start_conditional_ui() {
    if (wwa_conditional_ui_active) return;
    if (!window.PublicKeyCredential) return;

    // Prefer getClientCapabilities() (Chrome 128+) for a richer capability check;
    // fall back to isConditionalMediationAvailable() for older browsers.
    const conditionalAvailablePromise =
        typeof PublicKeyCredential.getClientCapabilities === 'function'
            ? PublicKeyCredential.getClientCapabilities().then((caps) => !!caps.conditionalGet)
            : typeof PublicKeyCredential.isConditionalMediationAvailable === 'function'
                ? PublicKeyCredential.isConditionalMediationAvailable()
                : Promise.resolve(false);

    conditionalAvailablePromise.then((available) => {
        if (!available) return;

        wwa_conditional_ui_active = true;
        wwa_conditional_ui_abort = new AbortController();
        const signal = wwa_conditional_ui_abort.signal;

        // Request an empty-user challenge (usernameless style: no allowCredentials)
        let startReq = wwa_ajax();
        startReq.get(wwa_login_php_vars.ajax_url,
            '?action=wwa_auth_start&type=auth&usernameless=true&conditional=true',
            (rawData, status) => {
                if (!status || signal.aborted) {
                    wwa_conditional_ui_active = false;
                    return;
                }
                let data;
                try {
                    data = JSON.parse(rawData);
                } catch (e) {
                    wwa_conditional_ui_active = false;
                    return;
                }

                data.challenge = Uint8Array.from(
                    window.atob(base64url2base64(data.challenge)),
                    (c) => c.charCodeAt(0)
                );
                if (data.allowCredentials) {
                    data.allowCredentials = data.allowCredentials.map((item) => {
                        item.id = Uint8Array.from(
                            window.atob(base64url2base64(item.id)),
                            (c) => c.charCodeAt(0)
                        );
                        return item;
                    });
                }

                const clientID = data.clientID;
                delete data.clientID;

                navigator.credentials.get({
                    publicKey: data,
                    mediation: 'conditional',
                    signal: signal
                }).then((credentialInfo) => {
                    if (!credentialInfo) {
                        wwa_conditional_ui_active = false;
                        return;
                    }
                    // Show authenticating state
                    wwa_dom('wp-webauthn-notice', (dom) => { dom.innerHTML = wwa_login_php_vars.i18n_5; }, 'class');
                    wwa_dom('user_login', (dom) => { dom.readOnly = true; }, 'id');
                    wwa_dom('#wp-webauthn-check, #wp-webauthn', (dom) => { dom.disabled = true; });

                    const publicKeyCredential = {
                        id: credentialInfo.id,
                        type: credentialInfo.type,
                        rawId: arrayToBase64String(new Uint8Array(credentialInfo.rawId)),
                        response: {
                            authenticatorData: arrayToBase64String(new Uint8Array(credentialInfo.response.authenticatorData)),
                            clientDataJSON: arrayToBase64String(new Uint8Array(credentialInfo.response.clientDataJSON)),
                            signature: arrayToBase64String(new Uint8Array(credentialInfo.response.signature)),
                            userHandle: credentialInfo.response.userHandle
                                ? arrayToBase64String(new Uint8Array(credentialInfo.response.userHandle))
                                : null
                        }
                    };

                    const AuthenticatorResponse = JSON.stringify(publicKeyCredential);
                    // The server needs the usernameless path, so username is empty
                    const userField = document.getElementById('user_login');
                    const username = userField ? userField.value : '';

                    let response = wwa_ajax();
                    response.post(
                        `${wwa_login_php_vars.ajax_url}?action=wwa_auth`,
                        `data=${encodeURIComponent(window.btoa(AuthenticatorResponse))}&type=auth&clientid=${clientID}&user=${encodeURIComponent(username)}&conditional=true&remember=${wwa_login_php_vars.remember_me === 'false' ? 'false' : (document.getElementById('rememberme') ? (document.getElementById('rememberme').checked ? 'true' : 'false') : 'false')}` ,
                        (resData, resStatus) => {
                            wwa_conditional_ui_active = false;
                            if (resStatus && resData === 'true') {
                                wwa_dom('wp-webauthn-notice', (dom) => { dom.innerHTML = wwa_login_php_vars.i18n_6; }, 'class');
                                const redirectInput = document.querySelector('p.submit input[name="redirect_to"]');
                                const redirectTo = redirectInput
                                    ? redirectInput.value
                                    : (getQueryString('redirect_to') || wwa_login_php_vars.admin_url);
                                setTimeout(() => { window.location.href = redirectTo; }, 200);
                            } else {
                                wwa_dom('wp-webauthn-notice', (dom) => {
                                    dom.innerHTML = wwa_login_php_vars.terminology === 'passkey'
                                        ? `<span class="wwa-passkey-notice">${wwa_passkey_notice_svg} ${wwa_login_php_vars.i18n_2}</span>`
                                        : `<span><span class="dashicons dashicons-shield-alt"></span> ${wwa_login_php_vars.i18n_2}</span>`;
                                }, 'class');
                                wwa_dom('user_login', (dom) => { dom.readOnly = false; }, 'id');
                                wwa_dom('#wp-webauthn-check, #wp-webauthn', (dom) => { dom.disabled = false; });
                                // Restart Conditional UI after a failed attempt
                                wwa_start_conditional_ui();
                            }
                        }
                    );
                }).catch((err) => {
                    wwa_conditional_ui_active = false;
                    // AbortError is expected when check() aborts — do nothing
                    if (err && err.name !== 'AbortError') {
                        console.warn('WP-WebAuthn Conditional UI error:', err);
                    }
                });
            }
        );
    }).catch(() => {
        // isConditionalMediationAvailable not supported or threw — silently ignore
    });
}

document.addEventListener('DOMContentLoaded', () => {
    if (document.querySelector('p#nav') && wwa_login_php_vars.password_reset !== 'false') {
        const placeholder = document.getElementById('wwa-lost-password-link-placeholder');
        if (placeholder) {
            const previous = placeholder.previousSibling;
            const next = placeholder.nextElementSibling;
            if (previous && previous.nodeType === Node.TEXT_NODE && previous.data.trim() === wwa_login_php_vars.separator.trim()) {
                previous.remove();
            } else if (next && next.nodeType === Node.TEXT_NODE && next.data.trim() === wwa_login_php_vars.separator.trim() && !next.nextElementSibling) {
                next.remove();
            }
            placeholder.remove();
        }
    }
    if (document.querySelectorAll('#lostpasswordform, #registerform, .admin-email-confirm-form, #resetpassform').length > 0) {
        return;
    }
    if (document.getElementById('loginform') === null || document.getElementById('loginform').getAttribute('name') !== 'loginform') {
        return;
    }
    document.addEventListener('keydown', parseKey, false);
    let button_check = document.createElement('button');
    button_check.id = 'wp-webauthn-check';
    button_check.type = 'button';
    button_check.className = 'button button-large button-primary';
    button_check.innerHTML = wwa_login_php_vars.i18n_1;
    let button_toggle = document.createElement('button');
    if (wwa_login_php_vars.webauthn_only !== 'true') {
        button_toggle.id = 'wp-webauthn';
        button_toggle.type = 'button';
        button_toggle.className = 'button button-large';
        button_toggle.innerHTML = '<span class="dashicons dashicons-ellipsis password-icon"></span>';
        button_toggle.title = wwa_login_php_vars.i18n_13;
    }
    let submit = document.getElementById('wp-submit');
    if (submit) {
        if (wwa_login_php_vars.webauthn_only !== 'true') {
            submit.parentNode.insertBefore(button_toggle, submit.nextElementSibling);
        }
        submit.parentNode.insertBefore(button_check, submit.nextElementSibling);
    }
    let notice = document.createElement('div');
    notice.className = 'wp-webauthn-notice';
    notice.innerHTML = wwa_login_php_vars.terminology ==='passkey' ? `<span class="wwa-passkey-notice">${wwa_passkey_notice_svg} ${wwa_login_php_vars.i18n_2}</span>` : `<span><span class="dashicons dashicons-shield-alt"></span> ${wwa_login_php_vars.i18n_2}</span>`;
    let forgetmenot = document.getElementsByClassName('forgetmenot');
    if (forgetmenot.length > 0) {
        forgetmenot[0].parentNode.insertBefore(notice, forgetmenot[0]);
    }
    wwa_dom('wp-webauthn-notice', (dom) => {
        const passwordInput = document.getElementsByClassName('user-pass-wrap');
        if (passwordInput.length > 0) {
            dom.style.height = (passwordInput[0].offsetHeight - 10) + 'px';
        } else {
            // WordPress 5.2-
            const legacyPasswordInput = document.getElementById('loginform').getElementsByTagName('p')[1];
            dom.style.height = (legacyPasswordInput.offsetHeight - 10) + 'px';
        }
    }, 'class');
    let btnWidth = document.getElementById('wp-submit') ? document.getElementById('wp-submit').clientWidth : 0;
    if (btnWidth < 20 || btnWidth === undefined) {
        wwa_dom('wp-webauthn-check', (dom) => { dom.style.width = 'auto' }, 'id');
    } else {
        wwa_dom('wp-webauthn-check', (dom) => { dom.style.width = btnWidth }, 'id');
    }
    if (window.PublicKeyCredential === undefined || navigator.credentials.create === undefined || typeof navigator.credentials.create !== 'function') {
        wwaSupported = false;
        wwa_dom('wp-webauthn', (dom) => { dom.style.display = 'none' }, 'id');
    }
    wwa_dom('wp-webauthn-check', (dom) => { dom.addEventListener('click', check, false) }, 'id');
    wwa_dom('wp-webauthn', (dom) => { dom.addEventListener('click', toggle, false) }, 'id');
})

window.onresize = function () {
    if (document.querySelectorAll('#lostpasswordform, #registerform, .admin-email-confirm-form, #resetpassform').length > 0) {
        return;
    }
    let btnWidth = document.getElementById('wp-submit').clientWidth;
    if (btnWidth < 20 || btnWidth === undefined) {
        wwa_dom('wp-webauthn-check', (dom) => { dom.style.width = 'auto' }, 'id');
    } else {
        wwa_dom('wp-webauthn-check', (dom) => { dom.style.width = btnWidth }, 'id');
    }
}

function parseKey(event) {
    if (event.keyCode === 13) {
        if (wwaSupported && document.getElementById('wp-webauthn-check').style.display === 'block') {
            event.preventDefault();
            wwa_dom('wp-webauthn-check', (dom) => { dom.click() }, 'id');
        }
    }
}

function base64url2base64(input) {
    input = input.replace(/=/g, '').replace(/-/g, '+').replace(/_/g, '/');
    const pad = input.length % 4;
    if (pad) {
        if (pad === 1) {
            throw new Error('InvalidLengthError: Input base64url string is the wrong length to determine padding');
        }
        input += new Array(5 - pad).join('=');
    }
    return input;
}

function arrayToBase64String(a) {
    return btoa(String.fromCharCode(...a));
}

function getQueryString(name) {
    let reg = new RegExp(`(^|&)${name}=([^&]*)(&|$)`, 'i');
    let reg_rewrite = new RegExp(`(^|/)${name}/([^/]*)(/|$)`, 'i');
    let r = window.location.search.substr(1).match(reg);
    let q = window.location.pathname.substr(1).match(reg_rewrite);
    if (r != null) {
        return unescape(r[2]);
    } else if (q != null) {
        return unescape(q[2]);
    } else {
        return null;
    }
}

function toggle() {
    if (document.querySelectorAll('#lostpasswordform, #registerform, .admin-email-confirm-form, #resetpassform').length > 0) {
        return;
    }
    if (document.getElementById('loginform') === null || document.getElementById('loginform').getAttribute('name') !== 'loginform') {
        return;
    }
    if (wwaSupported) {
        if (document.getElementsByClassName('wp-webauthn-notice')[0].style.display === 'flex') {
            if (document.getElementsByClassName('user-pass-wrap').length > 0) {
                wwa_dom('.user-pass-wrap, .forgetmenot, #wp-submit', (dom) => { dom.style.display = 'block' });
            } else {
                // WordPress 5.2-
                wwa_dom('.forgetmenot, #wp-submit', (dom) => { dom.style.display = 'block' });
                document.getElementById('loginform').getElementsByTagName('p')[1].style.display = 'block';
            }
            wwa_dom('wp-webauthn-notice', (dom) => { dom.style.display = 'none' }, 'class');
            wwa_dom('wp-webauthn-check', (dom) => { dom.style.cssText = `${dom.style.cssText.split('display: block !important')[0]}display: none !important` }, 'id');
            wwa_dom('user_pass', (dom) => { dom.disabled = false }, 'id');
            wwa_dom('user_login', (dom) => {
                dom.setAttribute('autocomplete', 'username');
                setTimeout(() => {
                    dom.focus();
                }, 0);
            }, 'id');
            wwa_dom('wp-webauthn-notice', (dom) => { dom.innerHTML = wwa_login_php_vars.terminology ==='passkey' ? `<span class="wwa-passkey-notice">${wwa_passkey_notice_svg} ${wwa_login_php_vars.i18n_2}</span>` : `<span><span class="dashicons dashicons-shield-alt"></span> ${wwa_login_php_vars.i18n_2}</span>` }, 'class');
            wwa_dom('wp-submit', (dom) => { dom.disabled = false }, 'id');
            wwa_dom('wp-webauthn', wwa_login_php_vars.terminology ==='passkey' ? (dom) => {
                dom.innerHTML = wwa_passkey_btn_svg;
                dom.title = wwa_login_php_vars.i18n_14;
                dom.style.lineHeight = '0';
            } : (dom) => {
                dom.innerHTML = '<span class="dashicons dashicons-shield-alt"></span>';
                dom.title = wwa_login_php_vars.i18n_14;
            }, 'id');
            let inputDom = document.querySelectorAll('#loginform label')
            if (inputDom.length > 0) {
                if (document.getElementById('wwa-username-label')) {
                    // WordPress 5.2-
                    document.getElementById('wwa-username-label').innerText = wwa_login_php_vars.i18n_10;
                } else {
                    inputDom[0].innerText = wwa_login_php_vars.i18n_10;
                }
            }
        } else {
            if (document.getElementsByClassName('user-pass-wrap').length > 0) {
                wwa_dom('.user-pass-wrap, #wp-submit', (dom) => { dom.style.display = 'none' });
                if (wwa_login_php_vars.remember_me === 'false' ) {
                    wwa_dom('.forgetmenot', (dom) => { dom.style.display = 'none' });
                }
            } else {
                // WordPress 5.2-
                wwa_dom('#wp-submit', (dom) => { dom.style.display = 'none' });
                if (wwa_login_php_vars.remember_me === 'false' ) {
                    wwa_dom('.forgetmenot', (dom) => { dom.style.display = 'none' });
                }
                document.getElementById('loginform').getElementsByTagName('p')[1].style.display = 'none';
            }
            wwa_dom('wp-webauthn-notice', (dom) => { dom.style.display = 'flex' }, 'class');
            wwa_dom('wp-webauthn-check', (dom) => { dom.style.cssText = `${dom.style.cssText.split('display: none !important')[0]}display: block !important` }, 'id');
            wwa_dom('user_login', (dom) => {
                dom.setAttribute('autocomplete', 'username webauthn');
                setTimeout(() => {
                    dom.focus();
                }, 0);
            }, 'id');
            wwa_dom('wp-webauthn-notice', (dom) => { dom.innerHTML = wwa_login_php_vars.terminology ==='passkey' ? `<span class="wwa-passkey-notice">${wwa_passkey_notice_svg} ${wwa_login_php_vars.i18n_2}</span>` : `<span><span class="dashicons dashicons-shield-alt"></span> ${wwa_login_php_vars.i18n_2}</span>` }, 'class');
            wwa_dom('wp-submit', (dom) => { dom.disabled = true }, 'id');
            wwa_dom('wp-webauthn', (dom) => {
                dom.innerHTML = '<span class="dashicons dashicons-ellipsis password-icon"></span>';
                dom.title = wwa_login_php_vars.i18n_13;
                dom.style.lineHeight = '';
            }, 'id');
            let inputDom = document.querySelectorAll('#loginform label')
            if (inputDom.length > 0) {
                if (document.getElementById('wwa-username-label')) {
                    // WordPress 5.2-
                    document.getElementById('wwa-username-label').innerText = wwa_login_php_vars.email_login === 'true' ? wwa_login_php_vars.i18n_10 : wwa_login_php_vars.i18n_9;
                } else {
                    inputDom[0].innerText = wwa_login_php_vars.email_login === 'true' ? wwa_login_php_vars.i18n_10 : wwa_login_php_vars.i18n_9;
                }
            }
            // Start Conditional UI when switching into WebAuthn mode
            wwa_start_conditional_ui();
        }
    }
}

// Shake the login form, code from WordPress
function wwa_shake(id, a, d) {
    const c = a.shift();
    document.getElementById(id).style.left = c + 'px';
    if (a.length > 0) {
        setTimeout(() => {
            wwa_shake(id, a, d);
        }, d);
    } else {
        try {
            document.getElementById(id).style.position = 'static';
            wwa_dom('user_login', (dom) => { dom.focus() }, 'id');
        } catch (e) { }
    }
}

function check() {
    if (document.querySelectorAll('#lostpasswordform, #registerform, .admin-email-confirm-form, #resetpassform').length > 0) {
        return;
    }
    if (wwaSupported) {
        if (document.getElementById('user_login').value === '' && wwa_login_php_vars.usernameless !== 'true') {
            wwa_dom('login_error', (dom) => { dom.remove() }, 'id');
            wwa_dom('p.message', (dom) => { dom.remove() });
            if (document.querySelectorAll('#login > h1').length > 0) {
                let dom = document.createElement('div');
                dom.id = 'login_error';
                dom.innerHTML = wwa_login_php_vars.i18n_11;
                document.querySelectorAll('#login > h1')[0].parentNode.insertBefore(dom, document.querySelectorAll('#login > h1')[0].nextElementSibling)
            }
            // Shake the login form, code from WordPress
            let shake = new Array(15, 30, 15, 0, -15, -30, -15, 0);
            shake = shake.concat(shake.concat(shake));
            var form = document.forms[0].id;
            document.getElementById(form).style.position = 'relative';
            wwa_shake(form, shake, 20);
            return;
        }
        // Abort any pending Conditional UI before starting a new modal request
        if (wwa_conditional_ui_abort) {
            wwa_conditional_ui_abort.abort();
            wwa_conditional_ui_abort = null;
            wwa_conditional_ui_active = false;
        }
        wwa_dom('user_login', (dom) => { dom.readOnly = true }, 'id');
        wwa_dom('#wp-webauthn-check, #wp-webauthn', (dom) => { dom.disabled = true });
        wwa_dom('wp-webauthn-notice', (dom) => { dom.innerHTML = wwa_login_php_vars.i18n_3 }, 'class');
        let request = wwa_ajax();
        request.get(wwa_login_php_vars.ajax_url, `?action=wwa_auth_start&user=${encodeURIComponent(document.getElementById('user_login').value)}&type=auth`, (rawData, status) => {
            if (status) {
                wwa_dom('wp-webauthn-notice', (dom) => { dom.innerHTML = wwa_login_php_vars.i18n_4 }, 'class');
                let data = rawData;
                try {
                    data = JSON.parse(rawData);
                } catch (e) {
                    console.warn(rawData);
                    if (wwa_login_php_vars.usernameless === 'true' && document.getElementById('user_login').value === '') {
                        wwa_dom('wp-webauthn-notice', (dom) => { dom.innerHTML = wwa_login_php_vars.i18n_7 + wwa_login_php_vars.i18n_12 }, 'class');
                    } else {
                        wwa_dom('wp-webauthn-notice', (dom) => { dom.innerHTML = wwa_login_php_vars.i18n_7 }, 'class');
                    }
                    wwa_dom('user_login', (dom) => { dom.readOnly = false }, 'id');
                    wwa_dom('#wp-webauthn-check, #wp-webauthn', (dom) => { dom.disabled = false });
                    return;
                }
                data.challenge = Uint8Array.from(window.atob(base64url2base64(data.challenge)), (c) => c.charCodeAt(0));

                if (data.allowCredentials) {
                    data.allowCredentials = data.allowCredentials.map((item) => {
                        item.id = Uint8Array.from(window.atob(base64url2base64(item.id)), (c) => c.charCodeAt(0));
                        return item;
                    });
                }

                if (data.allowCredentials && wwa_login_php_vars.allow_authenticator_type && wwa_login_php_vars.allow_authenticator_type !== 'none') {
                    for (let credential of data.allowCredentials) {
                        if (wwa_login_php_vars.allow_authenticator_type === 'cross-platform') {
                            credential.transports = ['usb', 'nfc', 'ble'];
                        } else if (wwa_login_php_vars.allow_authenticator_type === 'platform') {
                            credential.transports = ['internal'];
                        }
                    }
                }

                // Save client ID
                const clientID = data.clientID;
                delete data.clientID;

                navigator.credentials.get({ 'publicKey': data }).then((credentialInfo) => {
                    wwa_dom('wp-webauthn-notice', (dom) => { dom.innerHTML = wwa_login_php_vars.i18n_5 }, 'class');
                    return credentialInfo;
                }).then((data) => {
                    const publicKeyCredential = {
                        id: data.id,
                        type: data.type,
                        rawId: arrayToBase64String(new Uint8Array(data.rawId)),
                        response: {
                            authenticatorData: arrayToBase64String(new Uint8Array(data.response.authenticatorData)),
                            clientDataJSON: arrayToBase64String(new Uint8Array(data.response.clientDataJSON)),
                            signature: arrayToBase64String(new Uint8Array(data.response.signature)),
                            userHandle: data.response.userHandle ? arrayToBase64String(new Uint8Array(data.response.userHandle)) : null
                        }
                    };
                    return publicKeyCredential;
                }).then(JSON.stringify).then((AuthenticatorResponse) => {
                    let response = wwa_ajax();
                    response.post(`${wwa_login_php_vars.ajax_url}?action=wwa_auth`, `data=${encodeURIComponent(window.btoa(AuthenticatorResponse))}&type=auth&clientid=${clientID}&user=${encodeURIComponent(document.getElementById('user_login').value)}&remember=${wwa_login_php_vars.remember_me === 'false' ? 'false' : (document.getElementById('rememberme') ? (document.getElementById('rememberme').checked ? 'true' : 'false') : 'false')}`, (data, status) => {
                        if (status) {
                            if (data === 'true') {
                                wwa_dom('wp-webauthn-notice', (dom) => { dom.innerHTML = wwa_login_php_vars.i18n_6 }, 'class');
                                if (document.querySelectorAll('p.submit input[name="redirect_to"]').length > 0) {
                                    setTimeout(() => {
                                        window.location.href = document.querySelectorAll('p.submit input[name="redirect_to"]')[0].value;
                                    }, 200);
                                } else {
                                    if (getQueryString('redirect_to')) {
                                        setTimeout(() => {
                                            window.location.href = getQueryString('redirect_to');
                                        }, 200);
                                    } else {
                                        setTimeout(() => {
                                            window.location.href = wwa_login_php_vars.admin_url
                                        }, 200);
                                    }
                                }
                            } else {
                                if (wwa_login_php_vars.usernameless === 'true' && document.getElementById('user_login').value === '') {
                                    wwa_dom('wp-webauthn-notice', (dom) => { dom.innerHTML = wwa_login_php_vars.i18n_7 + wwa_login_php_vars.i18n_12 }, 'class');
                                } else {
                                    wwa_dom('wp-webauthn-notice', (dom) => { dom.innerHTML = wwa_login_php_vars.i18n_7 }, 'class');
                                }
                                wwa_dom('user_login', (dom) => { dom.readOnly = false }, 'id');
                                wwa_dom('#wp-webauthn-check, #wp-webauthn', (dom) => { dom.disabled = false });
                            }
                        } else {
                            if (wwa_login_php_vars.usernameless === 'true' && document.getElementById('user_login').value === '') {
                                wwa_dom('wp-webauthn-notice', (dom) => { dom.innerHTML = wwa_login_php_vars.i18n_7 + wwa_login_php_vars.i18n_12 }, 'class');
                            } else {
                                wwa_dom('wp-webauthn-notice', (dom) => { dom.innerHTML = wwa_login_php_vars.i18n_7 }, 'class');
                            }
                            wwa_dom('user_login', (dom) => { dom.readOnly = false }, 'id');
                            wwa_dom('#wp-webauthn-check, #wp-webauthn', (dom) => { dom.disabled = false });
                        }
                    })
                }).catch((error) => {
                    console.warn(error);
                    if (wwa_login_php_vars.usernameless === 'true' && document.getElementById('user_login').value === '') {
                        wwa_dom('wp-webauthn-notice', (dom) => { dom.innerHTML = wwa_login_php_vars.i18n_7 + wwa_login_php_vars.i18n_12 }, 'class');
                    } else {
                        wwa_dom('wp-webauthn-notice', (dom) => { dom.innerHTML = wwa_login_php_vars.i18n_7 }, 'class');
                    }
                    wwa_dom('user_login', (dom) => { dom.readOnly = false }, 'id');
                    wwa_dom('#wp-webauthn-check, #wp-webauthn', (dom) => { dom.disabled = false });
                })
            } else {
                if (wwa_login_php_vars.usernameless === 'true' && document.getElementById('user_login').value === '') {
                    wwa_dom('wp-webauthn-notice', (dom) => { dom.innerHTML = wwa_login_php_vars.i18n_7 + wwa_login_php_vars.i18n_12 }, 'class');
                } else {
                    wwa_dom('wp-webauthn-notice', (dom) => { dom.innerHTML = wwa_login_php_vars.i18n_7 }, 'class');
                }
                wwa_dom('user_login', (dom) => { dom.readOnly = false }, 'id');
                wwa_dom('#wp-webauthn-check, #wp-webauthn', (dom) => { dom.disabled = false });
            }
        })
    }
}