UNPKG

jwt-transform

Version:

transform your real jwt token into fake jwt token.

github.com/restuwahyu13/jwt-transform

141 lines (140 loc) 6.19 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
(function (factory) { if (typeof module === "object" && typeof module.exports === "object") { var v = factory(require, exports); if (v !== undefined) module.exports = v; } else if (typeof define === "function" && define.amd) { define(["require", "exports"], factory); } })(function (require, exports) { "use strict"; Object.defineProperty(exports, "__esModule", { value: true }); exports.JwtTransform = void 0; var EJwtTransform; (function (EJwtTransform) { EJwtTransform["ENC"] = "encrypt"; EJwtTransform["DEC"] = "decrypt"; })(EJwtTransform || (EJwtTransform = {})); class JwtTransform { static alphabet = 'abcdefghijklmnopqrstuvwxyz'; static alphacount = JwtTransform.alphabet.length; static lca = JwtTransform.alphabet.toLowerCase(); static uca = JwtTransform.alphabet.toUpperCase(); static secretKeyCache = {}; static validate(secretKey, token, rotate, rotateType) { let tokenType = 'plainText'; if (rotateType !== EJwtTransform.DEC) { tokenType = 'cipherText'; } if (token.length <= 0) { throw new TypeError(`${tokenType} not to be a empty`); } else if (typeof token !== 'string') { throw new TypeError(`${tokenType} must be a string format`); } else if (token.split('.').length !== 3) { throw new TypeError(`${tokenType} must be a jwt format`); } else if (rotate <= 0) { throw new TypeError('rotate not to be a empty'); } else if (typeof rotate !== 'number') { throw new TypeError('rotate must be a number format'); } else if (secretKey.length <= 20) { throw new TypeError('secretKey length must be a greater than 20 characters'); } } static validSecretKey(secretKey, token, rotate, rotateType) { JwtTransform.validate(secretKey, token, rotate, rotateType); let newToken = token; if (rotateType === EJwtTransform.ENC || rotateType === EJwtTransform.DEC) { newToken = token; } const validSecretKey = /[^A-Z0-9]/i.test(secretKey); if (validSecretKey) { throw new TypeError('secretKey invalid format'); } else if (newToken.includes(secretKey)) { throw new TypeError('secretKey cannot use plainText'); } return /^[a-zA-Z0-9]+$/i.test(secretKey); } static rotation(secretKey, token, rotate, rotateType) { const tokenArr = token.split('.'); const firstToken = tokenArr[0]; const middleToken = tokenArr[1]; const lastToken = tokenArr[2]; let mergeToken = ''; if (rotateType === EJwtTransform.ENC) { mergeToken = `${firstToken}.${middleToken}${secretKey}.${lastToken}`; } else { mergeToken = `${firstToken}.${middleToken}.${lastToken}`; } let cleanupMergeToken = mergeToken.replace(/\s/g, ''); if (rotateType === 'decrypt') { const encryptSecretKey = JwtTransform.getRotatedSecretKey(secretKey, Math.abs(rotate)); if (!cleanupMergeToken.includes(encryptSecretKey)) { throw new Error('secretKey not match'); } const validJwtToken = cleanupMergeToken.replace(new RegExp(encryptSecretKey, 'g'), ''); cleanupMergeToken = validJwtToken; } rotate %= JwtTransform.alphacount; const text = Array.from(cleanupMergeToken); const transformedText = text.map((v) => { if (v >= 'a' && v <= 'z') { return JwtTransform.lca[(26 + (v.charCodeAt(0) - 'a'.charCodeAt(0)) + rotate) % JwtTransform.alphacount]; } else if (v >= 'A' && v <= 'Z') { return JwtTransform.uca[(26 + (v.charCodeAt(0) - 'A'.charCodeAt(0)) + rotate) % JwtTransform.alphacount]; } else { return v; } }); return transformedText.join(''); } static getRotatedSecretKey(secretKey, rotate) { const cacheKey = `${secretKey}-${rotate}`; if (JwtTransform.secretKeyCache[cacheKey]) { return JwtTransform.secretKeyCache[cacheKey]; } const text = Array.from(secretKey); const rotatedText = text.map((v) => { if (v >= 'a' && v <= 'z') { return JwtTransform.lca[(26 + (v.charCodeAt(0) - 'a'.charCodeAt(0)) + rotate) % JwtTransform.alphacount]; } else if (v >= 'A' && v <= 'Z') { return JwtTransform.uca[(26 + (v.charCodeAt(0) - 'A'.charCodeAt(0)) + rotate) % JwtTransform.alphacount]; } else { return v; } }); const rotatedSecretKey = rotatedText.join(''); JwtTransform.secretKeyCache[cacheKey] = rotatedSecretKey; return rotatedSecretKey; } static transform(secretKey, plainText, rotate) { try { JwtTransform.validSecretKey(secretKey, plainText, rotate, EJwtTransform.DEC); return JwtTransform.rotation(secretKey, plainText, rotate, EJwtTransform.ENC); } catch (e) { throw new TypeError(e); } } static untransform(secretKey, cipherText, rotate) { try { JwtTransform.validSecretKey(secretKey, cipherText, rotate, EJwtTransform.DEC); return JwtTransform.rotation(secretKey, cipherText, -rotate, EJwtTransform.DEC); } catch (e) { throw new TypeError(e); } } } exports.JwtTransform = JwtTransform; });