UNPKG

doku-nodejs-library

Version:

doku nodejs library

github.com/PTNUSASATUINTIARTHA-DOKU/doku-nodejs-library

PTNUSASATUINTIARTHA-DOKU/doku-nodejs-library

275 lines (265 loc) 10.8 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
"use strict" const { default: axios } = require('axios'); const KJUR = require('jsrsasign'); const config = require('../_commons/config'); const jwt = require('jsonwebtoken'); const jsonminify = require('jsonminify'); const { createHmac } = require('crypto'); const NotificationTokenDto = require('../_models/notificationTokenDTO'); const NotificationTokenBodyDto = require('../_models/notificationTokenBodytDTO'); const NotificationTokenHeaderDto = require('../_models/notificationTokenHeaderDTO'); const crypto = require('crypto'); const CryptoJS = require('crypto-js'); const TokenB2BResponseDTO = require('../_models/tokenB2BResponseDTO'); const TokenB2b2cRequestDto = require('../_models/tokenB2B2CRequestDTO'); module.exports = { hexToBase64(hexString) { const buffer = Buffer.from(hexString, 'hex'); return buffer.toString('base64'); }, generateToken(expiredIn, issuer, privateKey, clientId) { const expiration = Math.floor(Date.now() / 1000) + expiredIn; const payload = { exp: expiration, issuer: issuer, clientId:clientId }; const token = jwt.sign(payload, privateKey, { algorithm: 'RS256' }); return token; }, generateSignature(privateKey, clientID, xTimestamp) { try { const signatureElements = `${clientID}|${xTimestamp}`; const sign = crypto.createSign('RSA-SHA256'); sign.update(signatureElements, 'utf8'); sign.end(); const signatureResult = sign.sign(privateKey, 'base64'); return signatureResult; } catch (error) { throw error; } }, minifyString(str) { return str .replace(/\s+/g, '') // Menghapus semua spasi, tab, dan baris baru .replace(/(\r\n|\n|\r)/gm, ''); // Menghapus karakter new line }, processRequestBody(requestBody) { try { // Minify request body (misalnya JSON atau string) const minifiedBody = this.minifyString(JSON.stringify(requestBody)); // Hitung hash SHA-256 const hash = crypto.createHash('sha256') .update(minifiedBody) .digest('hex'); // Convert ke lowercase return hash.toLowerCase(); } catch (error) { console.error("Error:", error); throw error; } }, generateSignatureV2(privateKey, clientID, xTimestamp,request) { try { let httpMethod = "POST" let endPointUrl = request.path; let signatureElements = httpMethod +":"+ endPointUrl +":"+this.processRequestBody(request.body) + ":" + xTimestamp // const signatureElements = `${clientID}|${xTimestamp}`; const sign = crypto.createSign('RSA-SHA256'); sign.update(signatureElements); sign.end(); const signatureResult = sign.sign(privateKey, 'base64'); return signatureResult; } catch (error) { throw error; } }, asymmetricSignature(privateKey,clientID,xTimestamp) { let stringToSign = `${clientID}|${xTimestamp}` const sign = crypto.createSign('RSA-SHA256'); sign.update(stringToSign); sign.end(); const signature = sign.sign(privateKey); return signature.toString('base64'); }, compareSignatures(requestSignature,dokuPublicKey,clientID,xTimestamp){ const data = Buffer.from(`${clientID}|${xTimestamp}`); try { const isVerified = crypto.verify( 'RSA-SHA256', Buffer.from(data), { key: dokuPublicKey, padding: crypto.constants.RSA_PKCS1_PADDING, }, Buffer.from(requestSignature, 'base64') ); return isVerified } catch (error) { console.error('Error during verification:', error); return false } }, compareSignaturesV2(requestSignature,newSignature){ try { if(requestSignature.toLowerCase() == newSignature.toLowerCase()){ return true }else{ return false } } catch (error) { console.error('Error during verification:', error); } }, compareSignaturesSymmetric(requestSignature,newSignature){ try { if(requestSignature.toLowerCase() == newSignature.toLowerCase()){ return true }else{ return false } } catch (error) { console.error('Error during verification:', error); } }, generateTimestamp() { const now = new Date(); const offset = now.getTimezoneOffset(); // Get timezone offset in minutes const offsetHours = Math.abs(offset / 60); // Convert offset to hours const offsetMinutes = Math.abs(offset % 60); // Get remaining minutes const sign = offset >= 0 ? '-' : '+'; // Determine sign of offset const pad = (num) => String(num).padStart(2, '0'); // Padding function return `${now.getFullYear()}-${pad(now.getMonth() + 1)}-${pad(now.getDate())}T${pad(now.getHours())}:${pad(now.getMinutes())}:${pad(now.getSeconds())}${sign}${pad(offsetHours)}:${pad(offsetMinutes)}`; }, createTokenB2BRequestDTO(signature, timestamp, clientId){ return { signature: signature, timestamp: timestamp, clientId: clientId, grantType: 'client_credentials' } }, async createTokenB2B(createTokenB2BRequestDTO,isProduction) { const base_url_api = config.getBaseUrl(isProduction) + config.ACCESS_TOKEN; let header = { "X-CLIENT-KEY": createTokenB2BRequestDTO.clientId, "X-TIMESTAMP": createTokenB2BRequestDTO.timestamp, "X-SIGNATURE": createTokenB2BRequestDTO.signature }; let body = { grantType : createTokenB2BRequestDTO.grantType } return await new Promise((resolve, reject) => { axios({ method: 'post', url: base_url_api, headers: header, data: body }) .then((res) => { let response = new TokenB2BResponseDTO(res.data) resolve(response); }) .catch((err) => { reject(err); }); }); }, isTokenEmpty(tokenB2B){ return tokenB2B == null || tokenB2B == ""; }, isTokenExpired(tokenExpiresIn, tokenGeneratedTimestamp){ //tokenGeneratedTimestamp + tokenExpiresIn (second) < Now() const expirationTime = tokenGeneratedTimestamp + tokenExpiresIn; if(expirationTime < Date.now()){ return true }else{ return false } }, generateNotificationTokenDto(token,timestamp,clientId,expiresIn){ let header = new NotificationTokenHeaderDto(clientId,timestamp) let body = new NotificationTokenBodyDto("2007300","Successful",token,"Bearer",expiresIn,"") let response = new NotificationTokenDto(header,body); return response }, generateInvalidSignature(timestamp){ let header = new NotificationTokenHeaderDto(null,timestamp) let body = new NotificationTokenBodyDto("4017300","Unauthorized.Invalid Signature",null,null,null,null) let response = new NotificationTokenDto(header,body); return response }, validateTokenB2B(requestTokenB2B, publicKey){ try { const claims = jwt.verify(requestTokenB2B, publicKey); return claims } catch (err) { return false } }, minifyJSON(jsonString) { // This function removes all unnecessary whitespace from JSON string. const minifiedJson = jsonminify(JSON.stringify(jsonString)); // Calculate the SHA-256 hash const hash = crypto.createHash('sha256').update(minifiedJson).digest('hex'); return hash; }, createSignature(rawData, secretKey){ let signatureUtf8 = CryptoJS.enc.Utf8.parse(rawData); var secretUtf8 = CryptoJS.enc.Utf8.parse(secretKey); console.log("secretKey: " + secretKey); var signatureBytes = CryptoJS.HmacSHA512(signatureUtf8,secretUtf8); var requestSignatureBase64String = CryptoJS.enc.Base64.stringify(signatureBytes); return requestSignatureBase64String; }, generateSignatureSymmetric(stringToSign, clientSecret) { const hmac = crypto.createHmac('sha512', clientSecret); hmac.update(stringToSign); return hmac.digest('base64'); }, generateExpectedSignature(clearMessage,clientSecret) { const decodedKey = Buffer.from(clientSecret, 'utf-8'); const hmac = crypto.createHmac('sha512', decodedKey); hmac.update(clearMessage); const hmacSha512DigestBytes = hmac.digest(); const expectedSignature = hmacSha512DigestBytes.toString('base64'); return expectedSignature; }, generateSymmetricSignature(httpMethod,endPointUrl,tokenB2B,requestBody,timestamp,secretKey) { const body = requestBody; var minifyJsonObject = JSON.stringify(body); const sha256Hash = crypto.createHash('sha256').update(minifyJsonObject).digest('hex'); const hexEncodedLowerCase = sha256Hash.toLowerCase(); const data = `${httpMethod}:${endPointUrl}:${tokenB2B}:${hexEncodedLowerCase}:${timestamp}`; var signatureHash = this.generateExpectedSignature(data,secretKey); return signatureHash }, createTokenB2b2cRequestDto(authCode){ const request = new TokenB2b2cRequestDto(); request.grantType = "authorization_code"; request.authCode = authCode return request; }, async hitTokenB2b2cApi(tokenB2b2cRequestDto, timestamp, signature, clientId, isProduction){ const base_url_api = config.getBaseUrl(isProduction) + config.ACCESS_TOKEN_B2B2C; let header = { "X-CLIENT-KEY": clientId, "X-TIMESTAMP": timestamp, "X-SIGNATURE": signature }; return await new Promise((resolve, reject) => { axios({ method: 'post', url: base_url_api, headers: header, data: tokenB2b2cRequestDto }) .then((res) => { resolve(res.data); }) .catch((err) => { reject(err); }); }); } };