UNPKG

@sphereon/oid4vc-common

Version:

OpenID 4 Verifiable Credentials Common

72 lines (57 loc) 2.23 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
import { jwtDecode } from 'jwt-decode'; import { JwtHeader, JwtPayload } from '..'; export type JwtType = 'id-token' | 'request-object' | 'verifier-attestation' | 'dpop'; export type JwtProtectionMethod = 'did' | 'x5c' | 'jwk' | 'openid-federation' | 'custom'; export function parseJWT<Header = JwtHeader, Payload = JwtPayload>(jwt: string) { const header = jwtDecode<Header>(jwt, { header: true }); const payload = jwtDecode<Payload>(jwt, { header: false }); if (!payload || !header) { throw new Error('Jwt Payload and/or Header could not be parsed'); } return { header, payload }; } /** * The maximum allowed clock skew time in seconds. If an time based validation * is performed against current time (`now`), the validation can be of by the skew * time. * * See https://datatracker.ietf.org/doc/html/rfc7519#section-4.1.5 */ const DEFAULT_SKEW_TIME = 60; export function getNowSkewed(now?: number, skewTime?: number) { const _now = now ? now : epochTime(); const _skewTime = skewTime ? skewTime : DEFAULT_SKEW_TIME; return { nowSkewedPast: _now - _skewTime, nowSkewedFuture: _now + _skewTime, }; } /** * Returns the current unix timestamp in seconds. */ export function epochTime() { return Math.floor(Date.now() / 1000); } export const BASE64_URL_REGEX = /^([0-9a-zA-Z-_]{4})*(([0-9a-zA-Z-_]{2}(==)?)|([0-9a-zA-Z-_]{3}(=)?))?$/; export const isJws = (jws: string) => { const jwsParts = jws.split('.'); return jwsParts.length === 3 && jwsParts.every((part) => BASE64_URL_REGEX.test(part)); }; export const isJwe = (jwe: string) => { const jweParts = jwe.split('.'); return jweParts.length === 5 && jweParts.every((part) => BASE64_URL_REGEX.test(part)); }; export const decodeProtectedHeader = (jwt: string) => { return jwtDecode(jwt, { header: true }); }; export const decodeJwt = (jwt: string): JwtPayload => { return jwtDecode(jwt, { header: false }); }; export const checkExp = (input: { exp: number; now?: number; // The number of milliseconds elapsed since midnight, January 1, 1970 Universal Coordinated Time (UTC). clockSkew?: number; }) => { const { exp, now, clockSkew } = input; return exp < (now ?? Date.now() / 1000) - (clockSkew ?? 120); };