UNPKG

@stefanobalocco/honosignedrequests

Version:

An hono middleware to manage signed requests, including a client implementation.

46 lines (45 loc) 1.5 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
export function fromBase64Url(b64url) { const pad = (4 - (b64url.length % 4)) % 4; const b64 = (b64url + "=".repeat(pad)).replace(/-/g, "+").replace(/_/g, "/"); const binary = atob(b64); const cFL = binary.length; const returnValue = new Uint8Array(cFL); for (let iFL = 0; iFL < cFL; iFL++) { returnValue[iFL] = binary.charCodeAt(iFL); } return returnValue; } export function randomBytes(bytes) { const returnValue = new Uint8Array(bytes); crypto.getRandomValues(returnValue); return returnValue; } export function randomInt(min, max) { let returnValue; const range = max - min; if (range > 0) { const randomBuffer = new Uint32Array(randomBytes(4).buffer); returnValue = min + (randomBuffer[0] % range); } else { throw new Error('max must be > min'); } return returnValue; } export function constantTimeEqual(a, b) { let returnValue = false; if (a.length === b.length) { let diff = 0; for (let i = 0; i < a.length; i++) { diff |= a[i] ^ b[i]; } returnValue = (diff === 0); } return returnValue; } export async function hmacSha256(keyBytes, data) { const key = await crypto.subtle.importKey("raw", keyBytes, { name: "HMAC", hash: "SHA-256" }, false, ["sign"]); const textEncoder = new TextEncoder(); const signature = await crypto.subtle.sign("HMAC", key, textEncoder.encode(data)); return new Uint8Array(signature); }