UNPKG

paseto-browser

Version:

In-browser JavaScript implementation of PASETO

github.com/paragonie/paseto-browser.js

paragonie/paseto-browser.js

125 lines (93 loc) 3.7 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
# PASETO for the Web Browser [![Build Status](https://github.com/paragonie/paseto-browser.js/workflows/CI/badge.svg)](https://github.com/paragonie/paseto-browser.js/actions?workflow=CI) [![npm version](https://img.shields.io/npm/v/paseto-browser.svg)](https://npm.im/paseto-browser) This implements PASETO v4.local and v4.public in the browser, as well as PASERK k4.seal. ## Why? There are already other implementations of PASETO in JavaScript, but they're intended for Node.js. This implementation runs in a web browser (using TweetNaCl for the elliptic curve operations). ## Installing ### NPM ```terminal npm install paseto-browser ``` ### For Web Browsers Download the dist files from the GitHub releases, then embed them via `<script>` tags. Please refer to the [examples](example) directory for more information. ## Usage ### PASETO #### v4.local ```html <script src="paseto.v4.local.js" type="module"></script> <script type="module"> (async function () { // const encryptor = new PasetoV4Local(symmetric_key_uint8array) const encryptor = PasetoV4Local.generate() // You can now encode/decode tokens using encryptor const token = await encryptor.encode({'exp': "2039-01-01T13:37:00+00:00"}) const decoded = await encryptor.decode(token) console.log(decoded.exp) // "2039-01-01T13:37:00+00:00" })(); </script> ``` #### v4.public ```html <script src="tweetnacl/nacl-fast.min.js" type="module"></script> <script src="paseto-browser/paseto.v4.public.js" type="module"></script> <script type="module"> (async function () { // const keypair = nacl.sign.keyPair() // const sk = keypair.secretKey // const pk = keypair.publicKey // const signer = new PasetoV4Public(pk, sk) const signer = PasetoV4Public.generate() // You can now encode/decode tokens using signer const token = await signer.encode({'exp': "2039-01-01T13:37:00+00:00"}) const decoded = await signer.decode(token) console.log(decoded.exp) // "2039-01-01T13:37:00+00:00" })(); </script> ``` ### PASERK #### k4.seal ```html <script src="tweetnacl/nacl-fast.min.js" type="module"></script> <script src="paseto-browser/paseto.v4.local.js" type="module"></script> <script src="paseto-browser/paserk.k4.seal.js" type="module"></script> <script type="module"> (async function () { const wrapper = PaserkK4Seal.generate() /// Alternative 1 // const keypair = nacl.box.keyPair() // const sk = keypair.secretKey // const pk = keypair.publicKey // const test = new PaserkK4Seal(pk, sk) /// Alternative 2 // const keypair = nacl.sign.keyPair() // const sk = keypair.secretKey // const pk = keypair.publicKey // const test = PaserkK4Seal.fromEdwardsKeys(pk, sk) // One-side (only needs pk) const p4l = PasetoV4Local.generate() const wrapped = await wrapper.wrap(p4l) const token = await p4l.encode({'exp': "2039-01-01T13:37:00+00:00"}, {'wpk': wrapped}) // Other side (needs pk and sk), receives `token` const footer = PasetoV4Local.getFooter(token) const unwrapped = await test.unwrap(footer.wpk) const decoded = await unwrapped.decode(token) console.log(decoded.exp) // "2039-01-01T13:37:00+00:00" })(); </script> ``` ## Development / Contribution To test your local changes, checkout this repository from Git then run the following commands: ```terminal npm install npm run build ``` ### Note on `dist` > **DO NOT** commit any changes to `dist`; we will rebuild from source. > > Any pull requests that touch `dist` will not be accepted.