UNPKG

houser-js-utils

Version:

A comprehensive collection of TypeScript utility functions for common development tasks including array manipulation, string processing, date handling, random number generation, validation, and much more.

andrewhouser.github.io/js-utils/

andrewhouser/js-utils

174 lines (173 loc) 5.77 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
"use strict"; Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" }); const SecurityUtils = { /** * Decrypts a string using AES-GCM * @param encryptedData - Data to decrypt * @param key - Decryption key * @returns Decrypted data */ async decrypt(encryptedData, key) { const decoder = new TextDecoder(); const keyBuffer = new TextEncoder().encode(key); const cryptoKey = await crypto.subtle.importKey( "raw", keyBuffer, { name: "AES-GCM" }, false, ["decrypt"] ); const data = Uint8Array.from(atob(encryptedData), (c) => c.charCodeAt(0)); const iv = data.slice(0, 12); const encrypted = data.slice(12); const decrypted = await crypto.subtle.decrypt( { name: "AES-GCM", iv }, cryptoKey, encrypted ); return decoder.decode(decrypted); }, /** * Encrypts a string using AES-GCM * @param data - Data to encrypt * @param key - Encryption key * @returns Encrypted data */ async encrypt(data, key) { const encoder = new TextEncoder(); const dataBuffer = encoder.encode(data); const keyBuffer = encoder.encode(key); const cryptoKey = await crypto.subtle.importKey( "raw", keyBuffer, { name: "AES-GCM" }, false, ["encrypt"] ); const iv = crypto.getRandomValues(new Uint8Array(12)); const encrypted = await crypto.subtle.encrypt( { name: "AES-GCM", iv }, cryptoKey, dataBuffer ); const result = new Uint8Array(iv.length + encrypted.byteLength); result.set(iv); result.set(new Uint8Array(encrypted), iv.length); return btoa(String.fromCharCode(...result)); }, /** * Generates a CSRF token * @returns CSRF token */ async generateCsrfToken() { return this.generateRandomString(32); }, /** * Generates a random number between min and max * @param min - Minimum value (inclusive) * @param max - Maximum value (inclusive) * @returns Random number */ async generateRandomNumber(min, max) { const range = max - min + 1; const bytesNeeded = Math.ceil(Math.log2(range) / 8); const maxNum = Math.pow(256, bytesNeeded); const maxRange = maxNum - maxNum % range; let value; do { const buffer = new Uint8Array(bytesNeeded); crypto.getRandomValues(buffer); value = buffer.reduce((acc, byte) => (acc << 8) + byte, 0); } while (value >= maxRange); return min + value % range; }, /** * Generates a random string of specified length * @param length - Length of the random string * @returns Random string */ async generateRandomString(length) { const chars = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789"; let result = ""; const array = new Uint32Array(length); crypto.getRandomValues(array); for (let i = 0; i < length; i++) { result += chars[array[i] % chars.length]; } return result; }, /** * Generates a secure password * @param length - Length of the password * @returns Generated password */ async generateSecurePassword(length = 16) { const upperChars = "ABCDEFGHIJKLMNOPQRSTUVWXYZ"; const lowerChars = "abcdefghijklmnopqrstuvwxyz"; const numberChars = "0123456789"; const specialChars = '!@#$%^&*(),.?":{}|<>'; const allChars = upperChars + lowerChars + numberChars + specialChars; let password = ""; password += upperChars[await this.generateRandomNumber(0, upperChars.length - 1)]; password += lowerChars[await this.generateRandomNumber(0, lowerChars.length - 1)]; password += numberChars[await this.generateRandomNumber(0, numberChars.length - 1)]; password += specialChars[await this.generateRandomNumber(0, specialChars.length - 1)]; for (let i = password.length; i < length; i++) { password += allChars[await this.generateRandomNumber(0, allChars.length - 1)]; } return password.split("").sort(() => Math.random() - 0.5).join(""); }, /** * Hashes a string using SHA-256 * @param input - String to hash * @returns Hashed string */ async hashString(input) { const encoder = new TextEncoder(); const data = encoder.encode(input); const hash = await crypto.subtle.digest("SHA-256", data); return Array.from(new Uint8Array(hash)).map((b) => b.toString(16).padStart(2, "0")).join(""); }, /** * Sanitizes HTML input to prevent XSS attacks * @param input - Input string to sanitize * @returns Sanitized string */ sanitizeHtml: (input) => { return input.replace(/&/g, "&amp;").replace(/</g, "&lt;").replace(/>/g, "&gt;").replace(/"/g, "&quot;").replace(/'/g, "&#039;"); }, /** * Validates a CSRF token * @param token - Token to validate * @param storedToken - Stored token to compare against * @returns True if tokens match */ validateCsrfToken: (token, storedToken) => { return token === storedToken; }, /** * Checks if a password meets security requirements * @param password - Password to check * @returns Object containing validation results */ validatePassword: (password) => { const minLength = 8; const hasUpperCase = /[A-Z]/.test(password); const hasLowerCase = /[a-z]/.test(password); const hasNumbers = /\d/.test(password); const hasSpecialChar = /[!@#$%^&*(),.?":{}|<>]/.test(password); const isLongEnough = password.length >= minLength; return { isValid: isLongEnough && hasUpperCase && hasLowerCase && hasNumbers && hasSpecialChar, requirements: { minLength: isLongEnough, hasUpperCase, hasLowerCase, hasNumbers, hasSpecialChar } }; } }; exports.SecurityUtils = SecurityUtils; //# sourceMappingURL=SecurityUtils.js.map