UNPKG

anon-identity

Version:

Decentralized identity framework with DIDs, Verifiable Credentials, and privacy-preserving selective disclosure

github.com/Dizzident/anon-identity

Dizzident/anon-identity

101 lines 3.94 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
"use strict"; Object.defineProperty(exports, "__esModule", { value: true }); exports.EncryptedStorageService = void 0; /** * Browser-compatible secure storage using localStorage or IndexedDB */ class EncryptedStorageService { constructor() { this.storageKey = 'anon-identity-storage'; } async saveEncryptedData(identifier, data, password) { const dataStr = JSON.stringify(data); const encoder = new TextEncoder(); const dataBytes = encoder.encode(dataStr); // Derive key from password const passwordBytes = encoder.encode(password); const keyMaterial = await crypto.subtle.importKey('raw', passwordBytes, 'PBKDF2', false, ['deriveBits', 'deriveKey']); // Generate salt const salt = crypto.getRandomValues(new Uint8Array(16)); // Derive encryption key const key = await crypto.subtle.deriveKey({ name: 'PBKDF2', salt: salt, iterations: 100000, hash: 'SHA-256' }, keyMaterial, { name: 'AES-GCM', length: 256 }, false, ['encrypt', 'decrypt']); // Generate IV const iv = crypto.getRandomValues(new Uint8Array(12)); // Encrypt data const encryptedData = await crypto.subtle.encrypt({ name: 'AES-GCM', iv: iv }, key, dataBytes); // Store encrypted data with metadata const storageData = { salt: Array.from(salt), iv: Array.from(iv), data: Array.from(new Uint8Array(encryptedData)) }; // Save to localStorage (or IndexedDB for larger data) const allData = this.getAllStoredData(); allData[identifier] = storageData; localStorage.setItem(this.storageKey, JSON.stringify(allData)); } async loadEncryptedData(identifier, password) { const allData = this.getAllStoredData(); const storageData = allData[identifier]; if (!storageData) { return null; } try { const encoder = new TextEncoder(); const passwordBytes = encoder.encode(password); // Import password as key material const keyMaterial = await crypto.subtle.importKey('raw', passwordBytes, 'PBKDF2', false, ['deriveBits', 'deriveKey']); // Reconstruct arrays const salt = new Uint8Array(storageData.salt); const iv = new Uint8Array(storageData.iv); const encryptedData = new Uint8Array(storageData.data); // Derive decryption key const key = await crypto.subtle.deriveKey({ name: 'PBKDF2', salt: salt, iterations: 100000, hash: 'SHA-256' }, keyMaterial, { name: 'AES-GCM', length: 256 }, false, ['encrypt', 'decrypt']); // Decrypt data const decryptedData = await crypto.subtle.decrypt({ name: 'AES-GCM', iv: iv }, key, encryptedData); // Convert back to string and parse JSON const decoder = new TextDecoder(); const dataStr = decoder.decode(decryptedData); return JSON.parse(dataStr); } catch (error) { console.error('Failed to decrypt data:', error); return null; } } deleteData(identifier) { const allData = this.getAllStoredData(); delete allData[identifier]; localStorage.setItem(this.storageKey, JSON.stringify(allData)); } getAllStoredData() { try { const data = localStorage.getItem(this.storageKey); return data ? JSON.parse(data) : {}; } catch { return {}; } } clearAll() { localStorage.removeItem(this.storageKey); } } exports.EncryptedStorageService = EncryptedStorageService; //# sourceMappingURL=storage-browser.js.map