UNPKG

dnb-api

Version:

Client for DNB Open Banking platform

github.com/sondregj/dnb-api-client

sondregj/dnb-api-client

94 lines (73 loc) 3.23 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
const {HeaderBuilder} = require('aika') const crypto = require('crypto') const querystring = require('querystring') module.exports = (options) => { return new HeaderBuilder({ constants: { apiKey: options.apiKey, clientId: options.clientId, clientSecret: options.clientSecret, hostName: options.hostName, // Reference to client JWT token: options.token, // Amz algorithm: 'AWS4-HMAC-SHA256', signedHeaders: 'host;x-amz-date', awsRegion: options.awsRegion, awsService: options.awsService }, helpers: { asv4sign: (context, options, clientId, clientSecret) => { if (options.method === 'POST') { options.body = '{}' } else { options.body = '' } const algorithm = 'AWS4-HMAC-SHA256' const amzDate = context.helpers.createAmzDate() const dateStamp = amzDate.substr(0, 8) const queryStringMatch = options.path.match(/(.*)\?/) let canonicalUri = options.path if (queryStringMatch !== null) { const firstMatchIndex = 1 canonicalUri = queryStringMatch[firstMatchIndex] } const canonicalQuerystring = querystring.stringify(options.query) const canonicalHeaders = `host:${options.host}\nx-amz-date:${amzDate}\n` const signedHeaders = 'host;x-amz-date' const signingKey = context.helpers.getSignatureKey( context, clientSecret, dateStamp, context.constants.awsService, context.constants.awsRegion ) const payloadHash = context.helpers.hashHex(options.body ? JSON.stringify(options.body) : '') const canonicalRequest = `${options.method}\n${canonicalUri}\n${canonicalQuerystring}\n${canonicalHeaders}\n${signedHeaders}\n${payloadHash}` const credentialScope = `${dateStamp}/${context.constants.awsRegion}/${context.constants.awsService}/aws4_request` const stringToSign = `${algorithm}\n${amzDate}\n${credentialScope}\n${context.helpers.hashHex(canonicalRequest)}` const signature = context.helpers.signData(signingKey, stringToSign, 'hex') const credentialHeader = `Credential=${clientId}/${credentialScope}` return `${algorithm} ${credentialHeader}, SignedHeaders=${signedHeaders}, Signature=${signature}` }, createAmzDate: () => new Date().toISOString().replace(/[:-]|\.\d{3}/g, ''), hashHex: string => crypto.createHash('sha256').update(string, 'utf8').digest('hex'), signData: (key, data, encoding) => crypto.createHmac('sha256', key).update(data, 'utf8').digest(encoding), getSignatureKey: (context, key, dateStamp, serviceName, regionName) => { const date = context.helpers.signData((`AWS4${key}`), dateStamp) const region = context.helpers.signData(date, regionName) const service = context.helpers.signData(region, serviceName) return context.helpers.signData(service, 'aws4_request') } }, headerFunctions: { Host: c => c.constants.hostName, Accept: () => 'application/json', 'Content-type': () => 'application/json', 'x-api-key': c => c.constants.apiKey, 'x-amz-date': c => c.helpers.createAmzDate(), 'x-dnbapi-jwt': c => c.constants.token.jwt, Authorization: (c, r) => c.helpers.asv4sign(c, r, c.constants.clientId, c.constants.clientSecret), } }) }