UNPKG

@dinoboff/ims-lti

Version:

Module for building an LTI Tool Provider and accept LTI launch requests

github.com/omsmith/ims-lti

omsmith/ims-lti

112 lines (96 loc) 3.19 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
// Generated by CoffeeScript 1.12.7 (function() { var HMAC_SHA1, _clean_request_body, crypto, exports, url, utils; crypto = require('crypto'); url = require('url'); utils = require('./utils'); _clean_request_body = function(body, query) { var cleanParams, encodeParam, out; out = []; encodeParam = function(key, val) { return key + "=" + (utils.special_encode(val)); }; cleanParams = function(params) { var i, key, len, val, vals; if (typeof params !== 'object') { return; } for (key in params) { vals = params[key]; if (key === 'oauth_signature') { continue; } if (Array.isArray(vals) === true) { for (i = 0, len = vals.length; i < len; i++) { val = vals[i]; out.push(encodeParam(key, val)); } } else { out.push(encodeParam(key, vals)); } } }; cleanParams(body); cleanParams(query); return utils.special_encode(out.sort().join('&')); }; HMAC_SHA1 = (function() { function HMAC_SHA1(options) { this.trustProxy = (options && options.trustProxy) || false; } HMAC_SHA1.prototype.toString = function() { return 'HMAC_SHA1'; }; HMAC_SHA1.prototype.build_signature_raw = function(req_url, parsed_url, method, params, consumer_secret, token) { var sig; sig = [method.toUpperCase(), utils.special_encode(req_url), _clean_request_body(params, parsed_url.query)]; return this.sign_string(sig.join('&'), consumer_secret, token); }; HMAC_SHA1.prototype.host = function(req) { if (!this.trustProxy) { return req.headers.host; } return req.headers['x-forwarded-host'] || req.headers.host; }; HMAC_SHA1.prototype.protocol = function(req) { var xprotocol; xprotocol = req.headers['x-forwarded-proto']; if (this.trustProxy && xprotocol) { return xprotocol; } if (req.protocol) { return req.protocol; } if (req.connection.encrypted) { return 'https'; } else { return 'http'; } }; HMAC_SHA1.prototype.build_signature = function(req, body, consumer_secret, token) { var hapiRawReq, hitUrl, host, originalUrl, parsedUrl, protocol; hapiRawReq = req.raw && req.raw.req; if (hapiRawReq) { req = hapiRawReq; } originalUrl = req.originalUrl || req.url; host = this.host(req); protocol = this.protocol(req); if (body.tool_consumer_info_product_family_code === 'canvas') { originalUrl = url.parse(originalUrl).pathname; } parsedUrl = url.parse(originalUrl, true); hitUrl = protocol + '://' + host + parsedUrl.pathname; return this.build_signature_raw(hitUrl, parsedUrl, req.method, body, consumer_secret, token); }; HMAC_SHA1.prototype.sign_string = function(str, key, token) { key = key + "&"; if (token) { key += token; } return crypto.createHmac('sha1', key).update(str).digest('base64'); }; return HMAC_SHA1; })(); exports = module.exports = HMAC_SHA1; }).call(this);