UNPKG

@hellocoop/helper-server

Version:

Hellō helper functions for server

www.hello.dev/docs/sdks/helper/

hellocoop/packages

92 lines (91 loc) 3.33 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
"use strict"; /* derived from the solid work at https://github.com/crouchcd/pkce-challenge */ Object.defineProperty(exports, "__esModule", { value: true }); exports.setCrypto = exports.uuidv4 = void 0; exports.generateChallenge = generateChallenge; exports.pkce = pkce; exports.verifyChallenge = verifyChallenge; // we will get the crypto object from the parent package let crypto; const setCrypto = function (c) { crypto = c; exports.uuidv4 = c.randomUUID.bind(c); // bind method to the crypto object }; exports.setCrypto = setCrypto; const VERIFIER_LENGTH = 43; // export const uuidv4 = crypto.randomUUID /** Generate cryptographically strong random string * @param size The desired length of the string * @returns The random string */ function generateVerifier() { const mask = 'abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789-._~'; let result = ''; const randomUints = crypto.getRandomValues(new Uint8Array(VERIFIER_LENGTH)); for (let i = 0; i < VERIFIER_LENGTH; i++) { // cap the value of the randomIndex to mask.length - 1 const randomIndex = randomUints[i] % mask.length; result += mask[randomIndex]; } return result; } /** Generate a PKCE code challenge from a code verifier * @param code_verifier * @returns The base64 url encoded code challenge */ async function generateChallenge(code_verifier) { const buffer = await crypto.subtle.digest('SHA-256', new TextEncoder().encode(code_verifier)); // Generate base64url string // btoa is deprecated in Node.js but is used here for web browser compatibility // (which has no good replacement yet, see also https://github.com/whatwg/html/issues/6811) return btoa(String.fromCharCode(...new Uint8Array(buffer))) .replace(/\//g, '_') .replace(/\+/g, '-') .replace(/=/g, ''); } /** Generate a PKCE challenge pair * @param length Length of the verifer (between 43-128). Defaults to 43. * @returns PKCE challenge pair */ async function pkce() { const verifier = generateVerifier(); const challenge = await generateChallenge(verifier); return { code_verifier: verifier, code_challenge: challenge, }; } /** Verify that a code_verifier produces the expected code challenge * @param code_verifier * @param expectedChallenge The code challenge to verify * @returns True if challenges are equal. False otherwise. */ async function verifyChallenge(code_verifier, expectedChallenge) { const actualChallenge = await generateChallenge(code_verifier); return actualChallenge === expectedChallenge; } // export const encryptObj = async function ( obj: Record<string, any>, secret: string ) // : Promise<string | undefined> { // try { // const plainText = JSON.stringify(obj) // // TBD encrypt cookie // const cryptoText = Buffer.from(plainText).toString('base64') // return cryptoText // } catch(e) { // console.log(e) // } // return undefined // } // export const decryptObj = async function ( cryptoText:string, secret: string ) // : Promise< Record<string, any> | undefined> { // try { // const json = Buffer.from(cryptoText, 'base64').toString() // const obj = JSON.parse(json) // return obj // } catch(e) { // console.log(e) // } // return undefined // }