UNPKG

frontier-client

Version:

A Frontier authentication client for JavaScript applications

github.com/sierrasoftworks/frontierjs

sierrasoftworks/frontierjs

101 lines (80 loc) 2.54 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
var crypto = require('crypto'); module.exports = function(superagent) { var Request = superagent.Request; Request.prototype.sign = function(application) { this.frontier = true; this.privatekey = application.privatekey || application; return this; }; Request.prototype.cache = function(cache, key, alwaysRequest) { var oldEnd = this.end; this.end = (function(fn) { var newCallback = (function(err, res) { if(err) return fn(err); if(res.statusCode !== 200) return fn(err, res); if(this.frontier && this.privatekey && !res.signed) return fn(new Error('Server response was not signed'), res); if(!key) cache.setMap(res.body, res.header['x-expires'], function() { return fn(err, res); }); else cache.set(key, res.header['x-expires'], res.body, function() { return fn(err, res); }); }).bind(this); if(!key || alwaysRequest) oldEnd.call(this, newCallback); else cache.get(key, (function(err, result) { if(err || !result) return oldEnd.call(this, newCallback); fn(null, { statusCode: 200, signed: true, body: result }); }).bind(this)); }).bind(this); return this; }; var oldEnd = Request.prototype.end; Request.prototype.end = function(fn) { if(this.frontier && this.privatekey) { var newCallback = (function(err, res) { if(err) { res.signed = false; if(fn.length === 1) return fn(res); return fn(err, res); } ValidateResponse(this, res, this.privatekey); if(fn.length === 1) return fn(res); return fn(err, res); }).bind(this); this.timestamp = (new Date()).getTime().toString(); var req = this.request(); this.hash = crypto.createHash('sha512') .update(this.privatekey) .update(this.timestamp.toString()) .update(req.path) .update(req.query || '') .update(this._data ? JSON.stringify(this._data) : '') .digest('hex'); req.setHeader('X-Time', this.timestamp); req.setHeader('X-Hash', this.hash); return oldEnd.call(this, newCallback); } return oldEnd.call(this, fn); }; } function ValidateResponse(request, res, privatekey) { var req = request.request(); if(!res.header['x-expires']) { res.signed = false; return; } var hash = crypto.createHash('sha512') .update(privatekey) .update(res.header['x-expires']) .update(request.timestamp) .update(request.hash) .update(req.path) .update(req.query || '') .update(res.text) .digest('hex'); res.signed = res.header['x-hash'] == hash; }