UNPKG

@toruslabs/session-manager

Version:

session manager web

github.com/torusresearch/session-manager-web

torusresearch/session-manager-web

146 lines (141 loc) 4.59 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
import _defineProperty from '@babel/runtime/helpers/defineProperty'; import { patch, put, post, get } from '@toruslabs/http-helpers'; import { generatePrivate, getPublic, sign } from '@toruslabs/eccrypto'; import { encryptData, keccak256, decryptData } from '@toruslabs/metadata-helpers'; class BaseSessionManager { constructor() { _defineProperty(this, "sessionId", void 0); } checkSessionParams() { if (!this.sessionId) throw new Error("Session id is required"); this.sessionId = this.sessionId.padStart(64, "0"); } /** * Common handler method for making an http request. * * Note: Embed all the query parameters in the path itself. */ request({ method = "GET", url, data = {}, headers = {} }) { const options = { headers }; switch (method) { case "GET": return get(url, options); case "POST": return post(url, data, options); case "PUT": return put(url, data, options); case "PATCH": return patch(url, data, options); } throw new Error("Invalid method type"); } } const DEFAULT_SESSION_TIMEOUT = 86400; class SessionManager extends BaseSessionManager { constructor({ sessionServerBaseUrl, sessionNamespace, sessionTime, sessionId } = {}) { super(); _defineProperty(this, "sessionServerBaseUrl", "https://session.web3auth.io"); _defineProperty(this, "sessionNamespace", void 0); _defineProperty(this, "sessionTime", DEFAULT_SESSION_TIMEOUT); _defineProperty(this, "sessionId", ""); if (sessionServerBaseUrl) { this.sessionServerBaseUrl = sessionServerBaseUrl; } if (sessionNamespace) this.sessionNamespace = sessionNamespace; if (sessionTime) this.sessionTime = sessionTime; if (sessionId) this.sessionId = sessionId.padStart(64, "0"); } static generateRandomSessionKey() { return generatePrivate().toString("hex").padStart(64, "0"); } async createSession(data) { super.checkSessionParams(); const privKey = Buffer.from(this.sessionId, "hex"); const pubKey = getPublic(privKey).toString("hex"); const encData = await encryptData(this.sessionId, data); const signature = (await sign(privKey, keccak256(Buffer.from(encData, "utf8")))).toString("hex"); const body = { key: pubKey, data: encData, signature, namespace: this.sessionNamespace, timeout: this.sessionTime }; await super.request({ method: "POST", url: `${this.sessionServerBaseUrl}/store/set`, data: body }); return this.sessionId; } async authorizeSession() { super.checkSessionParams(); const pubkey = getPublic(Buffer.from(this.sessionId, "hex")).toString("hex"); const url = new URL(`${this.sessionServerBaseUrl}/store/get`); url.searchParams.append("key", pubkey); if (this.sessionNamespace) url.searchParams.append("namespace", this.sessionNamespace); const result = await super.request({ url: url.toString() }); if (!result.message) { throw new Error("Session Expired or Invalid public key"); } const response = await decryptData(this.sessionId, result.message); if (response.error) { throw new Error("There was an error decrypting data."); } return response; } async updateSession(data) { super.checkSessionParams(); const privKey = Buffer.from(this.sessionId, "hex"); const pubKey = getPublic(privKey).toString("hex"); const encData = await encryptData(this.sessionId, data); const signature = (await sign(privKey, keccak256(Buffer.from(encData, "utf8")))).toString("hex"); const body = { key: pubKey, data: encData, signature, namespace: this.sessionNamespace }; await super.request({ method: "PUT", url: `${this.sessionServerBaseUrl}/store/update`, data: body }); } async invalidateSession() { super.checkSessionParams(); const privKey = Buffer.from(this.sessionId, "hex"); const pubKey = getPublic(privKey).toString("hex"); const encData = await encryptData(this.sessionId, {}); const signature = (await sign(privKey, keccak256(Buffer.from(encData, "utf8")))).toString("hex"); const data = { key: pubKey, data: encData, signature, namespace: this.sessionNamespace, timeout: 1 }; await super.request({ method: "POST", url: `${this.sessionServerBaseUrl}/store/set`, data }); this.sessionId = ""; return true; } } export { BaseSessionManager, SessionManager };