UNPKG

@i3m/cloud-vault-client

Version:

A TypeScript/JavaScript implementation of a client for the i3M-Wallet Cloud-Vault server

github.com/i3-Market-V2-Public-Repository/SP3-SCGBSSW-I3mWalletMonorepo/tree/public/packages/cloud-vault-client

i3-Market-V2-Public-Repository/SP3-SCGBSSW-I3mWalletMonorepo

44 lines (33 loc) 1.32 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
import type { OpenApiComponents } from '@i3m/cloud-vault-server/types/openapi' import { createCipheriv, createDecipheriv, KeyObject, randomBytes } from 'crypto' export class SecretKey { private readonly key: KeyObject readonly alg: OpenApiComponents.Schemas.VaultConfiguration['key_derivation']['enc']['enc_algorithm'] constructor (key: KeyObject, alg: OpenApiComponents.Schemas.VaultConfiguration['key_derivation']['enc']['enc_algorithm']) { this.key = key this.alg = alg } encrypt (input: Buffer): Buffer { // random initialization vector const iv = randomBytes(16) // Create the cipher const cipher = createCipheriv(this.alg, this.key, iv) // encrypt the given text const encrypted = Buffer.concat([cipher.update(input), cipher.final()]) // extract the auth tag const tag = cipher.getAuthTag() // generate output return Buffer.concat([iv, tag, encrypted]) } decrypt (input: Buffer): Buffer { // extract all parts const iv = input.subarray(0, 16) const tag = input.subarray(16, 32) const ciphertext = input.subarray(32) // Create the decipher const decipher = createDecipheriv(this.alg, this.key, iv) decipher.setAuthTag(tag) // decrypt return Buffer.concat([decipher.update(ciphertext), decipher.final()]) } }