UNPKG

@plamikcho/pbcrypto

Version:

Password based AES encrypt/decrypt using web crypto api

github.com/plamikcho/local-storage-encrypt.git

plamikcho/local-storage-encrypt

78 lines (69 loc) 2.34 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
import { str2ab, ab2str } from './encoder'; /** * Creates an instance of PbCrypto with encrypt and decrypt operations * @param {String} password * @param {String} salt * @param {Crypto} currentCrypto - window.crypto instance */ export const getPbCrypto = (password, salt, currentCrypto = window.crypto) => { const name = 'AES-GCM'; const targets = ["encrypt", "decrypt"]; const pbkdfName = 'PBKDF2'; const hash = { name: 'SHA-256', length: 256 }; const iterations = 1000; const deriveKey = async (password, salt, currentCrypto = window.crypto) => { const keyMaterial = await currentCrypto.subtle.importKey( "raw", str2ab(password), { name: pbkdfName }, false, ["deriveBits", "deriveKey"] ); return currentCrypto.subtle.deriveKey( { name: pbkdfName, salt: str2ab(salt), iterations, hash: hash.name, }, keyMaterial, { name, length: hash.length }, true, targets, ); }; const encryptMessage = (key, iv, encodedText) => currentCrypto.subtle.encrypt( { name, iv }, key, encodedText ); const decryptMessage = (key, iv, ciphertext) => currentCrypto.subtle.decrypt( { name, iv }, key, ciphertext ); const encrypt = (message, iv) => deriveKey(password, salt) .then(cryptoKey => encryptMessage(cryptoKey, iv, str2ab(message))) .then(enc => ab2str(enc)); const decrypt = (ciphertext, iv) => deriveKey(password, salt) .then(cryptoKey => decryptMessage(cryptoKey, iv, str2ab(ciphertext))) .then(dec => ab2str(dec)); const getIv = () => currentCrypto.getRandomValues(new Uint8Array(16)); return { encrypt, decrypt, getIv }; }; /** * Determines whether current browser supports WebCrypto API using feature detection */ export const isBrowserSupported = async () => { const testMessage = 'w?'; try { const cryptoWrapper = getPbCrypto('a', 'b'); const iv = cryptoWrapper.getIv(); const encrypted = await cryptoWrapper.encrypt(testMessage, iv); const decrypted = await cryptoWrapper.decrypt(encrypted, iv); return decrypted === testMessage; } catch (error) { console.warn('Your browser does not support WebCrypto API', error); return false; } };