UNPKG

@digital-blueprint/greenlight-app

Version:

[GitHub Repository](https://github.com/digital-blueprint/greenlight-app) | [npmjs package](https://www.npmjs.com/package/@digital-blueprint/greenlight-app) | [Unpkg CDN](https://unpkg.com/browse/@digital-blueprint/greenlight-app/) | [Greenlight Bundle](ht

github.com/digital-blueprint/greenlight-app

digital-blueprint/greenlight-app

138 lines (127 loc) 4.88 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
import * as commonUtils from '@dbp-toolkit/common/utils'; import {name as pkgName} from './../../package.json'; import MockDate from 'mockdate'; /** * @param {Date} date * @param {callback} callback */ export function withDate(date, callback) { MockDate.set(date.toISOString()); try { return callback(); } finally { MockDate.reset(); } } /** * XXX: hcert-kotlin depends on cbor-web, which uses BigInt internally, * but BigInt support isn't available in Safari <=13 and there is no * way to polyfill it (either via a library or babel). Since we don't * use the BigInt functionality of CBOR we fake a minimal replacement * for the time we load hcert-kotlin inm case it is missing. * * @param {callback} callback */ async function withFakeBigInt(callback) { const fakeBigInt = (v) => { return parseInt(v); }; fakeBigInt.prototype = {}; if (window.BigInt === undefined) { window.BigInt = fakeBigInt; try { // XXX: since we yield here this whole thing is sadly racy // and other code might see our BigInt return await callback(); } finally { if (window.BigInt === fakeBigInt) { delete window.BigInt; } } } return await callback(); } /** * Returns the hcert-kotlin module * * @returns {object} The module */ export async function importHCert() { // The bundle can only be loaded as a normal module, so // we inject it into the body, extract it from window // and then try to cover all traces of what we did. // So we can kinda pretend that this is like an ES module.. let promise = importHCert._promise; if (promise === undefined) { promise = new Promise((resolve, reject) => { let script = document.createElement('script'); script.onload = function () { let hcert = window.hcert; delete window.hcert; document.head.removeChild(script); resolve(hcert); }; script.onerror = function (e) { document.head.removeChild(script); reject(e); }; script.src = commonUtils.getAssetURL(pkgName, 'hcert-kotlin.js'); document.head.appendChild(script); }); importHCert._promise = promise; } return withFakeBigInt(async () => { return await promise; }); } // The certs are provided here: https://github.com/Federal-Ministry-of-Health-AT/green-pass-overview export const trustAnchorProd = `-----BEGIN CERTIFICATE----- MIIB1DCCAXmgAwIBAgIKAYDcOWBmNxlPgDAKBggqhkjOPQQDAjBEMQswCQYDVQQG EwJBVDEPMA0GA1UECgwGQk1TR1BLMQwwCgYDVQQFEwMwMDIxFjAUBgNVBAMMDUFU IERHQyBDU0NBIDIwHhcNMjIwNTE5MTIwOTQ5WhcNMjMwNjE5MTIwOTQ5WjBFMQsw CQYDVQQGEwJBVDEPMA0GA1UECgwGQk1TR1BLMQ8wDQYDVQQFEwYwMDIwMDIxFDAS BgNVBAMMC0FUIERHQyBUTCAyMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEl2tm d16CBHXwcBN0r1Uy+CmNW/b2V0BNP85y5N3JZeo/8l9ey/jIe5mol9fFcGTk9bCk 8zphVo0SreHa5aWrQKNSMFAwDgYDVR0PAQH/BAQDAgeAMB0GA1UdDgQWBBRTwp6d cDGcPUB6IwdDja/a3ncM0TAfBgNVHSMEGDAWgBQvWRbxO3tS9HatiMTvp8sD9Rwy wTAKBggqhkjOPQQDAgNJADBGAiEAleZ8CcLG4FK4kty+sN0APZmT6LfEE2kzznyV yEepU0gCIQCGaqJpOwPXBmgoOsehnJkA0+TZX8V2p1Bg/nqnuYqXFg== -----END CERTIFICATE-----`; /* This cert is an old one, but we still use it for unit testing in combination with mocked datetime and old trust data */ export const trustAnchorTest = `-----BEGIN CERTIFICATE----- MIIB6zCCAZGgAwIBAgIKAXmEuohlRbR2qzAKBggqhkjOPQQDAjBQMQswCQYDVQQG EwJBVDEPMA0GA1UECgwGQk1TR1BLMQowCAYDVQQLDAFRMQwwCgYDVQQFEwMwMDEx FjAUBgNVBAMMDUFUIERHQyBDU0NBIDEwHhcNMjEwNTE5MTMwNDQ3WhcNMjIwNjE5 MTMwNDQ3WjBRMQswCQYDVQQGEwJBVDEPMA0GA1UECgwGQk1TR1BLMQowCAYDVQQL DAFRMQ8wDQYDVQQFEwYwMDEwMDExFDASBgNVBAMMC0FUIERHQyBUTCAxMFkwEwYH KoZIzj0CAQYIKoZIzj0DAQcDQgAE29KpT1eIKsy5Jx3J0xpPLW+fEBF7ma9943/j 4Z+o1TytLVok9cWjsdasWCS/zcRyAh7HBL+oyMWdFBOWENCQ76NSMFAwDgYDVR0P AQH/BAQDAgeAMB0GA1UdDgQWBBQYmsL5sXTdMCyW4UtP5BMxq+UAVzAfBgNVHSME GDAWgBR2sKi2xkUpGC1Cr5ehwL0hniIsJzAKBggqhkjOPQQDAgNIADBFAiBse17k F5F43q9mRGettRDLprASrxsDO9XxUUp3ObjcWQIhALfUWnserGEPiD7Pa25tg9lj wkrqDrMdZHZ39qb+Jf/E -----END CERTIFICATE-----`; /** * Fetches all the data needed for validating the certificate in parallel * * @param {string} baseUrl * @returns {object} */ export async function fetchTrustData(baseUrl) { let keys = ['rules.json', 'trustlist', 'trustlistsig', 'valuesets', 'valuesetssig']; // No longer used... // keys.push('rules', 'rulessig'); let data = {}; for (let key of keys) { data[key] = fetch(baseUrl + '/' + key); } for (let [key, promise] of Object.entries(data)) { let response = await promise; if (!response.ok) { throw Error(response.statusText); } data[key] = await response.arrayBuffer(); } return data; }