UNPKG

azion

Version:

Azion Packages for Edge Computing.

150 lines (142 loc) 4.49 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
/** * @module * JSON Web Algorithms (JWA) * https://datatracker.ietf.org/doc/html/rfc7518 */ declare enum AlgorithmTypes { HS256 = "HS256", HS384 = "HS384", HS512 = "HS512", RS256 = "RS256", RS384 = "RS384", RS512 = "RS512", PS256 = "PS256", PS384 = "PS384", PS512 = "PS512", ES256 = "ES256", ES384 = "ES384", ES512 = "ES512", EdDSA = "EdDSA" } type SignatureAlgorithm = keyof typeof AlgorithmTypes; /** * @module * JSON Web Signature (JWS) * https://datatracker.ietf.org/doc/html/rfc7515 */ type SignatureKey = string | JsonWebKey | CryptoKey; /** * @module * Type definitions for JWT utilities. */ declare class JwtAlgorithmNotImplemented extends Error { constructor(alg: string); } declare class JwtTokenInvalid extends Error { constructor(token: string); } declare class JwtTokenNotBefore extends Error { constructor(token: string); } declare class JwtTokenExpired extends Error { constructor(token: string); } declare class JwtTokenIssuedAt extends Error { constructor(currentTimestamp: number, iat: number); } declare class JwtHeaderInvalid extends Error { constructor(header: object); } declare class JwtTokenSignatureMismatched extends Error { constructor(token: string); } declare enum CryptoKeyUsage { Encrypt = "encrypt", Decrypt = "decrypt", Sign = "sign", Verify = "verify", DeriveKey = "deriveKey", DeriveBits = "deriveBits", WrapKey = "wrapKey", UnwrapKey = "unwrapKey" } /** * JWT Payload */ type JWTPayload = { [key: string]: unknown; /** * The token is checked to ensure it has not expired. */ exp?: number; /** * The token is checked to ensure it is not being used before a specified time. */ nbf?: number; /** * The token is checked to ensure it is not issued in the future. */ iat?: number; }; /** * @module * JSON Web Token (JWT) * https://datatracker.ietf.org/doc/html/rfc7519 */ /** * Interface representing the JWT header. */ interface TokenHeader { alg: SignatureAlgorithm; typ?: 'JWT'; } /** * Signs a JWT payload with a given private key and algorithm. * @param payload - The JWT payload to sign. * @param privateKey - The private key to sign the payload with. * @param alg - The signature algorithm to use (default is 'HS256'). * @returns The signed JWT as a string. * @example * const token = await sign({ sub: '1234567890', name: 'John Doe', iat: 1516239022 }, privateKey); * console.log(token); */ declare const sign: (payload: JWTPayload, privateKey: SignatureKey, alg?: SignatureAlgorithm) => Promise<string>; /** * Verifies a JWT with a given public key and algorithm. * @param token - The JWT to verify. * @param publicKey - The public key to verify the JWT with. * @param alg - The signature algorithm to use (default is 'HS256'). * @returns The decoded JWT payload if verification is successful. * @throws {JwtTokenInvalid} If the token is invalid. * @throws {JwtHeaderInvalid} If the token header is invalid. * @throws {JwtTokenNotBefore} If the token is not yet valid. * @throws {JwtTokenExpired} If the token has expired. * @throws {JwtTokenIssuedAt} If the token was issued in the future. * @throws {JwtTokenSignatureMismatched} If the token signature does not match. * @example * const payload = await verify(token, publicKey); * console.log(payload); */ declare const verify: (token: string, publicKey: SignatureKey, alg?: SignatureAlgorithm) => Promise<JWTPayload>; /** * Decodes a JWT into its header and payload. * @param token - The JWT to decode. * @returns An object containing the decoded header and payload. * @throws {JwtTokenInvalid} If the token is invalid. * @example * const { header, payload } = decode(token); * console.log(header, payload); */ declare const decode: (token: string) => { header: TokenHeader; payload: JWTPayload; }; declare const jwt: { decode: (token: string) => { header: TokenHeader; payload: JWTPayload; }; sign: (payload: JWTPayload, privateKey: SignatureKey, alg?: SignatureAlgorithm) => Promise<string>; verify: (token: string, publicKey: SignatureKey, alg?: SignatureAlgorithm) => Promise<JWTPayload>; }; export { CryptoKeyUsage, type JWTPayload, JwtAlgorithmNotImplemented, JwtHeaderInvalid, JwtTokenExpired, JwtTokenInvalid, JwtTokenIssuedAt, JwtTokenNotBefore, JwtTokenSignatureMismatched, decode, jwt as default, sign, verify };