UNPKG

@kuflow/kuflow-temporal-worker

Version:

Worker library used by KuFlow SDKs and Temporal.

github.com/kuflow/kuflow-sdk-js

kuflow/kuflow-sdk-js

87 lines (76 loc) 2.85 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
/** * The MIT License * Copyright © 2021-present KuFlow S.L. * * Permission is hereby granted, free of charge, to any person obtaining a copy * of this software and associated documentation files (the "Software"), to deal * in the Software without restriction, including without limitation the rights * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell * copies of the Software, and to permit persons to whom the Software is * furnished to do so, subject to the following conditions: * * The above copyright notice and this permission notice shall be included in * all copies or substantial portions of the Software. * * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN * THE SOFTWARE. */ import crypto from 'crypto' const CIPHER = 'AES-GCM' const IV_LENGTH_BYTES = 12 const TAG_LENGTH_BYTES = 16 interface Cipher { readonly algorithm: string importKey: (key: crypto.webcrypto.BufferSource) => Promise<crypto.webcrypto.CryptoKey> encrypt: (key: crypto.webcrypto.CryptoKey, plainText: Uint8Array) => Promise<Uint8Array> decrypt: (key: crypto.webcrypto.CryptoKey, cipherText: Uint8Array) => Promise<Uint8Array> } class CipherAes256GCM implements Cipher { public readonly algorithm = 'AES-256-GCM' public async importKey(key: crypto.webcrypto.BufferSource): Promise<crypto.webcrypto.CryptoKey> { return await crypto.subtle.importKey( 'raw', key, { name: 'AES-GCM', }, true, ['encrypt', 'decrypt'], ) } public async encrypt(key: crypto.webcrypto.CryptoKey, plainText: Uint8Array): Promise<Uint8Array> { const iv = crypto.getRandomValues(new Uint8Array(IV_LENGTH_BYTES)) const encrypted = await crypto.subtle.encrypt( { name: CIPHER, iv, tagLength: TAG_LENGTH_BYTES * 8, }, key, plainText, ) return Buffer.concat([iv, new Uint8Array(encrypted)]) } public async decrypt(key: crypto.webcrypto.CryptoKey, cipherText: Uint8Array): Promise<Uint8Array> { const iv = cipherText.subarray(0, IV_LENGTH_BYTES) const cipherTextData = cipherText.subarray(IV_LENGTH_BYTES) const decrypted = await crypto.subtle.decrypt( { name: CIPHER, iv, tagLength: TAG_LENGTH_BYTES * 8, }, key, cipherTextData, ) return new Uint8Array(decrypted) } } export const Ciphers = { AES_256_GCM: new CipherAes256GCM(), }