UNPKG

multipassify-ts

Version:

This is an example TypeScript Package ready to be published on npm. It has been set up with automated tests and package publishing workflow using GitHub Actions CI/CD. It is made primarily for GitHub + VS Code (Windows / Mac / Linux) users who are about t

github.com/sjcobb2022/multipassify-ts

sjcobb2022/multipassify-ts

54 lines (42 loc) 1.44 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
import crypto from 'crypto' const BLOCK_SIZE = 16 export class Multipassify { _encryptionKey: Buffer _signingKey: Buffer constructor(secret: string) { if (!(secret.length > 0)) throw new Error('Invalid Secret') const hash = crypto.createHash('sha256').update(secret).digest() this._encryptionKey = hash.subarray(0, BLOCK_SIZE) this._signingKey = hash.subarray(BLOCK_SIZE, 32) } encode(obj: Partial<Record<string, any>>): string { if (!obj) throw new Error('No data encoded') obj['created_at'] = new Date().toISOString() const cipherText = this.encrypt(JSON.stringify(obj)) const token = Buffer.concat([cipherText, this.sign(cipherText)]).toString( 'base64url' ) return token } generateUrl(obj: Partial<Record<string, any>>, domain: string | URL): string { if (!domain) throw new Error('No domain specified') return 'https://' + domain + '/account/login/multipass/' + this.encode(obj) } sign(data: Buffer): Buffer { const signed = crypto .createHmac('sha256', this._signingKey) .update(data) .digest() return signed } encrypt(plaintext: string): Buffer { const iv = crypto.randomBytes(BLOCK_SIZE) const cipher = crypto.createCipheriv('aes-128-cbc', this._encryptionKey, iv) const encrypted = Buffer.concat([ iv, cipher.update(plaintext, 'utf8'), cipher.final(), ]) return encrypted } }