UNPKG

jose

Version:

Universal 'JSON Web Almost Everything' - JWA, JWS, JWE, JWT, JWK with no dependencies

github.com/panva/jose

panva/jose

93 lines (92 loc) 3.91 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
import { JOSENotSupported, JWEInvalid } from '../util/errors.js'; import { unwrap as aesKw } from '../runtime/aeskw.js'; import * as ECDH from '../runtime/ecdhes.js'; import { decrypt as pbes2Kw } from '../runtime/pbes2kw.js'; import { decrypt as rsaEs } from '../runtime/rsaes.js'; import { unwrap as aesGcmKw } from '../runtime/aesgcmkw.js'; import { decode as base64url } from '../runtime/base64url.js'; import { bitLengths as cekLengths } from '../lib/cek.js'; function assertEnryptedKey(encryptedKey) { if (!encryptedKey) { throw new JWEInvalid('JWE Encrypted Key missing'); } } function assertHeaderParameter(joseHeader, parameter, name) { if (joseHeader[parameter] === undefined) { throw new JWEInvalid(`JOSE Header ${name} (${parameter}) missing`); } } async function decryptKeyManagement(alg, key, encryptedKey, joseHeader) { switch (alg) { case 'dir': { if (encryptedKey !== undefined) { throw new JWEInvalid('Encountered unexpected JWE Encrypted Key'); } return key; } case 'ECDH-ES': if (encryptedKey !== undefined) { throw new JWEInvalid('Encountered unexpected JWE Encrypted Key'); } case 'ECDH-ES+A128KW': case 'ECDH-ES+A192KW': case 'ECDH-ES+A256KW': { assertHeaderParameter(joseHeader, 'epk', 'Ephemeral Public Key'); if (!ECDH.ecdhAllowed(key)) { throw new JOSENotSupported('ECDH-ES with the provided key is not allowed or not supported by your javascript runtime'); } const ephemeralKey = await ECDH.publicJwkToEphemeralKey(joseHeader.epk); let partyUInfo; let partyVInfo; if (joseHeader.apu !== undefined) partyUInfo = base64url(joseHeader.apu); if (joseHeader.apv !== undefined) partyVInfo = base64url(joseHeader.apv); const sharedSecret = await ECDH.deriveKey(ephemeralKey, key, alg === 'ECDH-ES' ? joseHeader.enc : alg, parseInt(alg.substr(-5, 3), 10) || cekLengths.get(joseHeader.enc), partyUInfo, partyVInfo); if (alg === 'ECDH-ES') { return sharedSecret; } assertEnryptedKey(encryptedKey); const kwAlg = alg.substr(-6); return aesKw(kwAlg, sharedSecret, encryptedKey); } case 'RSA1_5': case 'RSA-OAEP': case 'RSA-OAEP-256': case 'RSA-OAEP-384': case 'RSA-OAEP-512': { assertEnryptedKey(encryptedKey); return rsaEs(alg, key, encryptedKey); } case 'PBES2-HS256+A128KW': case 'PBES2-HS384+A192KW': case 'PBES2-HS512+A256KW': { assertEnryptedKey(encryptedKey); assertHeaderParameter(joseHeader, 'p2c', 'PBES2 Count'); assertHeaderParameter(joseHeader, 'p2s', 'PBES2 Salt'); const { p2c } = joseHeader; const p2s = base64url(joseHeader.p2s); return pbes2Kw(alg, key, encryptedKey, p2c, p2s); } case 'A128KW': case 'A192KW': case 'A256KW': { assertEnryptedKey(encryptedKey); return aesKw(alg, key, encryptedKey); } case 'A128GCMKW': case 'A192GCMKW': case 'A256GCMKW': { assertEnryptedKey(encryptedKey); assertHeaderParameter(joseHeader, 'iv', 'Initialization Vector'); assertHeaderParameter(joseHeader, 'tag', 'Authentication Tag'); const iv = base64url(joseHeader.iv); const tag = base64url(joseHeader.tag); return aesGcmKw(alg, key, encryptedKey, iv, tag); } default: { throw new JOSENotSupported('unsupported or invalid "alg" (JWE Algorithm) header value'); } } } export default decryptKeyManagement;