UNPKG

@quan-to/chevronlib

Version:

Chevron GPG Library Wrapper for Node.JS

github.com/quan-to/chevron

quan-to/chevron

251 lines 9.72 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
"use strict"; var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) { function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); } return new (P || (P = Promise))(function (resolve, reject) { function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } } function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } } function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); } step((generator = generator.apply(thisArg, _arguments || [])).next()); }); }; Object.defineProperty(exports, "__esModule", { value: true }); const lib = require('bindings')('chevron'); // Ensure that the library has been loaded lib.__loadnative(__dirname); /** * Checks if the data string is a base64 encoded payload * * @param {string} data - A string to be tested * @returns {boolean} - True if the string is a valid base64 format */ const isBase64 = (data) => { const base64regex = /^([0-9a-zA-Z+/]{4})*(([0-9a-zA-Z+/]{2}==)|([0-9a-zA-Z+/]{3}=))?$/; return base64regex.test(data); }; exports.isBase64 = isBase64; /** * Returns all fingerprints contained in the specified key * @param {string} asciiArmoredKey - The private / public key you want the fingerprints in ASCII Armored Format * @returns {string[]} the fingerprints in the specified keys */ const getKeyFingerprints = (asciiArmoredKey) => lib.getKeyFingerprints(asciiArmoredKey).split(","); exports.getKeyFingerprints = getKeyFingerprints; /** * Loads the specified key into memory store for later use * * Both public and private keys can be loaded using loadKey * @param {string} asciiArmoredKey - The private / public key you want the fingerprints in ASCII Armored Format * @returns {Promise<string>} the first fingerprint of the loaded key */ const loadKey = function (asciiArmoredKey) { return __awaiter(this, void 0, void 0, function* () { return new Promise((resolve, reject) => { lib.loadKey(asciiArmoredKey, (error) => { if (error) { reject(error); } else { const fps = getKeyFingerprints(asciiArmoredKey); resolve(fps[0]); } }); }); }); }; exports.loadKey = loadKey; /** * Signs the specified data using a pre-loaded and pre-unlocked key specified by fingerprint * * The key should be previously loaded with loadKey and unlocked with unlockKey * The data should be always encoded as base64 * * @param {string} data - Base64 Encoded Data to be signed * @param {string} fingerprint - Fingerprint of the key used to sign data * @returns {Promise<string>} - The ASCII Armored PGP Signature */ const signData = function (data, fingerprint) { return __awaiter(this, void 0, void 0, function* () { return new Promise((resolve, reject) => { if (!isBase64(data)) { return reject('Expected a base64 encoded data'); } lib.signData(data, fingerprint, (error, result) => { if (error) { return reject(error); } return resolve(result); }); }); }); }; exports.signData = signData; /** * Verifies the signature of a payload and returns true if it's valid. * * The data should be always encoded as base64 * The signature field can be in ASCII Armored Format or base64 encoded binary PGP Signature * * @param {string} data - Base64 Encoded Data to be signed * @param {string} signature - A ASCII Armored Format or Base64 Encoded Binary PGP Signature * @returns {Promise<boolean>} */ const verifySignature = function (data, signature) { return __awaiter(this, void 0, void 0, function* () { return new Promise((resolve, reject) => { if (!isBase64(data)) { return reject('Expected a base64 encoded data'); } lib.verifySignature(data, signature, (error, result) => { if (error) { if (error.indexOf('invalid signature') > -1) { return resolve(false); } return reject(error); } return resolve(result); }); }); }); }; exports.verifySignature = verifySignature; /** * Unlocks a pre-loaded private key with the specified password * * The private key should be pre-loaded with loadKey function * * @param {string} fingerprint - Fingerprint of the private key that should be unlocked for use * @param {string} password - Password of the private key * @returns {Promise} */ const unlockKey = function (fingerprint, password) { return __awaiter(this, void 0, void 0, function* () { return new Promise((resolve, reject) => { lib.unlockKey(fingerprint, password, (error, result) => { if (error) { reject(error); } else { resolve(result); } }); }); }); }; exports.unlockKey = unlockKey; /** * Generates a new PGP Private Key by the specified password, identifier and bits (key-length) * * The Identifier should be in one of the following formats: * - "Name" * - "Name <email>" * The key-length (bits parameter) should not be less than 2048 * The key is not automatically loaded into memory after generation * * @param {string} password - The password to encrypt the private key * @param {string} identifier - The identifier of the key * @param {number} bits - Number of bits of the RSA Key (recommended 3072) * @returns {Promise<string>} - The generated private key */ const generateKey = function (password, identifier, bits) { return __awaiter(this, void 0, void 0, function* () { return new Promise((resolve, reject) => { lib.generateKey(password, identifier, bits, (error, result) => { if (error) { reject(error); } else { resolve(result); } }); }); }); }; exports.generateKey = generateKey; /** * Returns a ASCII Armored public key of a pre-loaded key * * The public/private key should be pre-loaded with loadKey * * @param {string} fingerprint - Fingerprint to fetch the public key * @returns {string} - The public key */ const getPublicKey = (fingerprint) => lib.getPublicKey(fingerprint); exports.getPublicKey = getPublicKey; /** * Signs the specified data using a pre-loaded and pre-unlocked key specified by fingerprint * and returns in Quanto Signature Format * * The key should be previously loaded with loadKey and unlocked with unlockKey * The data should be always encoded as base64 * * @param {string} data - Base64 Encoded Data to be signed * @param {string} fingerprint - Fingerprint of the key used to sign data * @returns {Promise<string>} - The ASCII Armored PGP Signature */ const quantoSignData = function (data, fingerprint) { return __awaiter(this, void 0, void 0, function* () { return new Promise((resolve, reject) => { if (!isBase64(data)) { return reject('Expected a base64 encoded data'); } lib.quantoSignData(data, fingerprint, (error, result) => { if (error) { return reject(error); } return resolve(result); }); }); }); }; exports.quantoSignData = quantoSignData; /** * Verifies the signature in Quanto Signature Format of a payload and returns true if it's valid. * * The data should be always encoded as base64 * The signature field can be in ASCII Armored Format or base64 encoded binary PGP Signature * * @param {string} data - Base64 Encoded Data to be signed * @param {string} signature - A ASCII Armored Format or Base64 Encoded Binary PGP Signature * @returns {Promise<boolean>} */ const quantoVerifySignature = function (data, signature) { return __awaiter(this, void 0, void 0, function* () { return new Promise((resolve, reject) => { if (!isBase64(data)) { return reject('Expected a base64 encoded data'); } lib.quantoVerifySignature(data, signature, (error, result) => { if (error) { if (error.indexOf('invalid signature') > -1) { return resolve(false); } return reject(error); } return resolve(result); }); }); }); }; exports.quantoVerifySignature = quantoVerifySignature; /** * Changes a private key password * * @param {string} keyData - The private key * @param {string} currentPassword - The current password of the key * @param {string} newPassword - The new password for the key * @returns {Promise<string>>} the same private key encrypted with the newPassword */ const changeKeyPassword = function (keyData, currentPassword, newPassword) { return __awaiter(this, void 0, void 0, function* () { return new Promise((resolve, reject) => { lib.changeKeyPassword(keyData, currentPassword, newPassword, (error, result) => { if (error) { return reject(error); } return resolve(result); }); }); }); }; exports.changeKeyPassword = changeKeyPassword; //# sourceMappingURL=index.js.map