UNPKG

@toruslabs/session-manager

Version:

session manager web

github.com/torusresearch/session-manager-web

torusresearch/session-manager-web

109 lines (106 loc) 3.74 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
import _defineProperty from '@babel/runtime/helpers/defineProperty'; import { generatePrivate, getPublic, sign } from '@toruslabs/eccrypto'; import { encryptData, keccak256, decryptData } from '@toruslabs/metadata-helpers'; import { BaseSessionManager } from './base.js'; const DEFAULT_SESSION_TIMEOUT = 86400; class SessionManager extends BaseSessionManager { constructor({ sessionServerBaseUrl, sessionNamespace, sessionTime, sessionId } = {}) { super(); _defineProperty(this, "sessionServerBaseUrl", "https://session.web3auth.io"); _defineProperty(this, "sessionNamespace", void 0); _defineProperty(this, "sessionTime", DEFAULT_SESSION_TIMEOUT); _defineProperty(this, "sessionId", ""); if (sessionServerBaseUrl) { this.sessionServerBaseUrl = sessionServerBaseUrl; } if (sessionNamespace) this.sessionNamespace = sessionNamespace; if (sessionTime) this.sessionTime = sessionTime; if (sessionId) this.sessionId = sessionId.padStart(64, "0"); } static generateRandomSessionKey() { return generatePrivate().toString("hex").padStart(64, "0"); } async createSession(data) { super.checkSessionParams(); const privKey = Buffer.from(this.sessionId, "hex"); const pubKey = getPublic(privKey).toString("hex"); const encData = await encryptData(this.sessionId, data); const signature = (await sign(privKey, keccak256(Buffer.from(encData, "utf8")))).toString("hex"); const body = { key: pubKey, data: encData, signature, namespace: this.sessionNamespace, timeout: this.sessionTime }; await super.request({ method: "POST", url: `${this.sessionServerBaseUrl}/store/set`, data: body }); return this.sessionId; } async authorizeSession() { super.checkSessionParams(); const pubkey = getPublic(Buffer.from(this.sessionId, "hex")).toString("hex"); const url = new URL(`${this.sessionServerBaseUrl}/store/get`); url.searchParams.append("key", pubkey); if (this.sessionNamespace) url.searchParams.append("namespace", this.sessionNamespace); const result = await super.request({ url: url.toString() }); if (!result.message) { throw new Error("Session Expired or Invalid public key"); } const response = await decryptData(this.sessionId, result.message); if (response.error) { throw new Error("There was an error decrypting data."); } return response; } async updateSession(data) { super.checkSessionParams(); const privKey = Buffer.from(this.sessionId, "hex"); const pubKey = getPublic(privKey).toString("hex"); const encData = await encryptData(this.sessionId, data); const signature = (await sign(privKey, keccak256(Buffer.from(encData, "utf8")))).toString("hex"); const body = { key: pubKey, data: encData, signature, namespace: this.sessionNamespace }; await super.request({ method: "PUT", url: `${this.sessionServerBaseUrl}/store/update`, data: body }); } async invalidateSession() { super.checkSessionParams(); const privKey = Buffer.from(this.sessionId, "hex"); const pubKey = getPublic(privKey).toString("hex"); const encData = await encryptData(this.sessionId, {}); const signature = (await sign(privKey, keccak256(Buffer.from(encData, "utf8")))).toString("hex"); const data = { key: pubKey, data: encData, signature, namespace: this.sessionNamespace, timeout: 1 }; await super.request({ method: "POST", url: `${this.sessionServerBaseUrl}/store/set`, data }); this.sessionId = ""; return true; } } export { SessionManager };