UNPKG

lowdb-encryption

Version:

Lowdb add-on for encryption.

github.com/mazecodes/lowdb-encryption

mazecodes/lowdb-encryption

112 lines (93 loc) 2.7 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
const { validateOptions } = require('./lib/validator'); const crypto = require('./lib/crypto'); /** * Create serializer and deserializer * * @param {Object} [options] - The options object * @param {String} [options.secret] - The encryption secret * @param {Number} [options.iterations] - PBKDF2 iterations count * @returns {Object} - Serializer and deserializer * * @example * lowdbEncryption({ * secret: 'secret', * iterations: 50000 * }) */ const lowdbEncryption = (options = {}) => { validateOptions(options); const { secret } = options; let iterations = options.iterations || 100000; let salt = crypto.generateSalt(); let key; return { /** * Serialize and encrypt the state * * @param {Object} data - The lowdb state * @returns {String} - Encrypted and serialized state * * @example * serialize({ foo: 'bar' }) */ serialize(data) { if (!key) { key = crypto.generateKey(secret, salt, iterations); } const { state, signature } = crypto.encryptState( JSON.stringify(data), key ); const stateObject = { _encryption: { salt, iterations, }, state: { content: state, signature, }, }; return JSON.stringify(stateObject); }, /** * Decrypt and deserialize the state * * @param {String} data - Encrypted and serialized state * @returns {Object} - Decrypted and deserialized state * * @example * deserialize('{ foo: "bar" }') */ deserialize(data) { const json = JSON.parse(data); const { _encryption } = json; if (!_encryption) { return json; } const s = _encryption.salt; const iter = _encryption.iterations; salt = s || salt; iterations = typeof iter === 'number' ? iter : iterations; if (!key) { key = crypto.generateKey(secret, salt, iterations); } const stateContent = json.state.content; const stateSignature = json.state.signature; if (!stateContent || !stateSignature) { throw new Error('The state is not valid'); } const isStateValid = crypto.isStateValid( stateContent, stateSignature, key ); if (!isStateValid) { throw new Error('The state has been altered'); } const decryptedState = crypto.decryptState(stateContent, key); return JSON.parse(decryptedState); }, }; }; module.exports = lowdbEncryption;