UNPKG

echo.io

Version:

A socket.io server implementation for laravel-echo

github.com/mediumart/echo.io

mediumart/echo.io

96 lines (83 loc) 1.73 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
const decoder = require('base64url'); const crypto = require('crypto'); /** * Authenticate and decode token data. * * @param token * @param key * * @return {false|Object} */ const verify = (token, key) => { token = token.split('.'); if (token.length !== 3 || ! key || ! validate(key, ...token)) { return false; } return decode(token[1]); } /** * Generate a token signature . * * @param key * @param data * * @return {String} */ const sign = (key, data) => { return decoder.fromBase64( crypto.createHmac('sha256', key).update(data).digest('base64') ); } /** * Validate token. * * @param key * @param header * @param status * @param signature * * @return {Boolean} */ const validate = (key, header, status, sgntr) => { let signature = sign( key, `${header}.${status}` ); return compare(sgntr, signature); } /** * Decode data payload. * * @param status * * @return {false|Object} */ const decode = (status) => { try { status = decoder.decode(status); if (typeof status !== 'string') { return status; } return JSON.parse(status); } catch (e) {} return false; } /** * Compare signature string. * * @param sgntr * @param sgntr2 * * @return {Boolean} */ const compare = (sgntr, sgntr2) => { try { return crypto.timingSafeEqual( Buffer.from(sgntr), Buffer.from(sgntr2) ); } catch (e) { return false; } } /** * Export modules. */ module.exports = verify;