UNPKG

otpauth

Version:

One Time Password (HOTP/TOTP) library for Node.js and browsers

github.com/hectorm/otpauth

hectorm/otpauth

112 lines (97 loc) 3.22 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
// eslint-disable-next-line import/no-extraneous-dependencies import sjcl from 'sjcl'; // SJCL is included during compilation. import { InternalUtils } from './utils'; let randomBytes; let hmacDigest; if (InternalUtils.isNode) { const NodeBuffer = InternalUtils.globalThis.Buffer; const NodeCrypto = InternalUtils.nodeRequire('crypto'); let nodeBufferFromArrayBuffer; if (typeof NodeBuffer.from === 'function') { nodeBufferFromArrayBuffer = NodeBuffer.from; } else { // Node.js < 5.10.0 nodeBufferFromArrayBuffer = arrayBuffer => { const nodeBuffer = new NodeBuffer(arrayBuffer.byteLength); const uint8Array = new Uint8Array(arrayBuffer); for (let i = 0; i < uint8Array.length; i++) { nodeBuffer[i] = uint8Array[i]; } return nodeBuffer; }; } let nodeBufferToArrayBuffer; if (NodeBuffer.prototype instanceof Uint8Array) { nodeBufferToArrayBuffer = nodeBuffer => nodeBuffer.buffer; } else { // Node.js < 4.0.0 nodeBufferToArrayBuffer = nodeBuffer => { const uint8Array = new Uint8Array(nodeBuffer.length); for (let i = 0; i < uint8Array.length; i++) { uint8Array[i] = nodeBuffer[i]; } return uint8Array.buffer; }; } randomBytes = size => { const bytes = NodeCrypto.randomBytes(size); return nodeBufferToArrayBuffer(bytes); }; hmacDigest = (algorithm, key, message) => { const hmac = NodeCrypto.createHmac(algorithm, nodeBufferFromArrayBuffer(key)); hmac.update(nodeBufferFromArrayBuffer(message)); return nodeBufferToArrayBuffer(hmac.digest()); }; } else { const BrowserCrypto = InternalUtils.globalThis.crypto || InternalUtils.globalThis.msCrypto; let getRandomValues; if (typeof BrowserCrypto !== 'undefined' && typeof BrowserCrypto.getRandomValues === 'function') { getRandomValues = array => { BrowserCrypto.getRandomValues(array); }; } else { InternalUtils.console.warn('Cryptography API not available, falling back to \'Math.random\'...'); getRandomValues = array => { for (let i = 0; i < array.length; i++) { array[i] = Math.floor(Math.random() * 256); } }; } randomBytes = size => { const bytes = new Uint8Array(size); getRandomValues(bytes); return bytes.buffer; }; hmacDigest = (algorithm, key, message) => { const hash = sjcl.hash[algorithm.toLowerCase()]; if (typeof hash === 'undefined') { throw new TypeError('Unknown hash function'); } // eslint-disable-next-line new-cap const hmac = new sjcl.misc.hmac(sjcl.codec.arrayBuffer.toBits(key), hash); hmac.update(sjcl.codec.arrayBuffer.toBits(message)); return sjcl.codec.arrayBuffer.fromBits(hmac.digest(), false); }; } /** * An object containing some cryptography functions with dirty workarounds for Node.js and browsers. * @private * @type {Object} */ export const Crypto = { /** * Returns random bytes. * @param {number} size Size. * @returns {ArrayBuffer} Random bytes. */ randomBytes, /** * Calculates an HMAC digest. * In Node.js, the command `openssl list -digest-algorithms` displays the available digest algorithms. * @param {string} algorithm Algorithm. * @param {ArrayBuffer} key Key. * @param {ArrayBuffer} message Message. * @returns {ArrayBuffer} Digest. */ hmacDigest };