UNPKG

@azure/keyvault-keys

Version:

Isomorphic client library for Azure KeyVault's keys.

github.com/Azure/azure-sdk-for-js/blob/main/sdk/keyvault/keyvault-keys/README.md

Azure/azure-sdk-for-js

99 lines 3.27 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
// Copyright (c) Microsoft Corporation. // Licensed under the MIT License. /** * @internal * Encodes a length of a packet in DER format */ function encodeLength(length) { if (length <= 127) { return Uint8Array.of(length); } else if (length < 256) { return Uint8Array.of(0x81, length); } else if (length < 65536) { return Uint8Array.of(0x82, length >> 8, length & 0xff); } else { throw new Error("Unsupported length to encode"); } } /** * @internal * Encodes a buffer for DER, as sets the id to the given id */ function encodeBuffer(buffer, bufferId) { if (buffer.length === 0) { return buffer; } let result = new Uint8Array(buffer); // If the high bit is set, prepend a 0 if (result[0] & 0x80) { const array = new Uint8Array(result.length + 1); array[0] = 0; array.set(result, 1); result = array; } // Prepend the DER header for this buffer const encodedLength = encodeLength(result.length); const totalLength = 1 + encodedLength.length + result.length; const outputBuffer = new Uint8Array(totalLength); outputBuffer[0] = bufferId; outputBuffer.set(encodedLength, 1); outputBuffer.set(result, 1 + encodedLength.length); return outputBuffer; } function makeSequence(encodedParts) { const totalLength = encodedParts.reduce((sum, part) => sum + part.length, 0); const sequence = new Uint8Array(totalLength); for (let i = 0; i < encodedParts.length; i++) { const previousLength = i > 0 ? encodedParts[i - 1].length : 0; sequence.set(encodedParts[i], previousLength); } const full_encoded = encodeBuffer(sequence, 0x30); // SEQUENCE return Buffer.from(full_encoded).toString("base64"); } /** * Fill in the PEM with 64 character lines as per RFC: * * "To represent the encapsulated text of a PEM message, the encoding * function's output is delimited into text lines (using local * conventions), with each line except the last containing exactly 64 * printable characters and the final line containing 64 or fewer * printable characters." */ function formatBase64Sequence(base64Sequence) { const lines = base64Sequence.match(/.{1,64}/g); let result = ""; if (lines) { for (const line of lines) { result += line; result += "\n"; } } else { throw new Error("Could not create correct PEM"); } return result; } /** * @internal * Encode a JWK to PEM format. To do so, it internally repackages the JWK as a DER * that is then encoded as a PEM. */ export function convertJWKtoPEM(key) { let result = ""; if (key.n && key.e) { const parts = [key.n, key.e]; const encodedParts = parts.map((part) => encodeBuffer(part, 0x2)); // INTEGER const base64Sequence = makeSequence(encodedParts); result += "-----BEGIN RSA PUBLIC KEY-----\n"; result += formatBase64Sequence(base64Sequence); result += "-----END RSA PUBLIC KEY-----\n"; } if (!result.length) { throw new Error("Unsupported key format for local operations"); } return result.slice(0, -1); // Removing the last new line } //# sourceMappingURL=conversions.js.map