UNPKG

react-native-device-crypto

Version:

Cryptographic operations inside the secure hardware for React Native

github.com/arifaydogmus/react-native-device-crypto

arifaydogmus/react-native-device-crypto

121 lines (120 loc) 3.76 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
export interface BiometryParams { biometryTitle: string; biometrySubTitle: string; biometryDescription: string; } export declare enum AccessLevel { ALWAYS = 0, UNLOCKED_DEVICE = 1, AUTHENTICATION_REQUIRED = 2 } export interface KeyCreationParams { accessLevel: AccessLevel; invalidateOnNewBiometry?: boolean; } export declare enum KeyTypes { ASYMMETRIC = 0, SYMMETRIC = 1 } export interface EncryptionResult { iv: string; encryptedText: string; } export declare enum BiometryType { NONE = "NONE", TOUCH = "TOUCH", FACE = "FACE", IRIS = "IRIS" } export declare enum SecurityLevel { NOT_PROTECTED = "NOT_PROTECTED", PIN_OR_PATTERN = "PIN_OR_PATTERN", BIOMETRY = "BIOMETRY" } declare const DeviceCrypto: { /** * Create public/private key pair inside the secure hardware or get the existing public key * Secure enclave/TEE/StrongBox * * Cryptography algorithms * EC secp256k1 on iOS * EC secp256r1 on Android * * @return {Promise} Resolves to public key when successful */ getOrCreateAsymmetricKey(alias: string, options: KeyCreationParams): Promise<string>; /** * Create AES key inside the secure hardware. Returns `true` if the key already exists. * Secure enclave/TEE/StrongBox * * Cryptography algorithms AES256 * * @return {Promise} Resolves to `true` when successful */ getOrCreateSymmetricKey(alias: string, options: KeyCreationParams): Promise<boolean>; /** * Delete the key from secure hardware * * @return {Promise} Resolves to `true` when successful */ deleteKey(alias: string): Promise<boolean>; /** * Get the public key as PEM formatted * * @return {Promise} Resolves to public key when successful */ getPublicKey(alias: string): Promise<string>; /** * Signs the given text with given private key * * @param {String} plainText Text to be signed * @return {Promise} Resolves to signature in `Base64` when successful */ sign(alias: string, plainText: string, options: BiometryParams): Promise<string>; /** * Encrypt the given text * * @param {String} plainText Text to be encrypted * @return {Promise} Resolves to encrypted text `Base64` formatted */ encrypt(alias: string, plainText: string, options: BiometryParams): Promise<EncryptionResult>; /** * Decrypt the encrypted text with given IV * * @param {String} plainText Text to be signed * @param {String} iv Base64 formatted IV * @return {Promise} Resolves to decrypted text when successful */ decrypt(alias: string, plainText: string, iv: string, options: BiometryParams): Promise<string>; /** * Checks the key existence * * @return {Promise} Resolves to `true` if exists */ isKeyExists(alias: string, keyType: KeyTypes): Promise<boolean>; /** * Checks the biometry is enrolled on device * * @returns {Promise} Resolves `true` if biometry is enrolled on the device */ isBiometryEnrolled(): Promise<boolean>; /** * Checks the device security level * * @return {Promise} Resolves one of `SecurityLevel` */ deviceSecurityLevel(): Promise<SecurityLevel>; /** * Returns biometry type already enrolled on the device * * @returns {Promise} Resolves `BiometryType` */ getBiometryType(): Promise<BiometryType>; /** * Authenticate user with device biometry * * @returns {Promise} Resolves `true` if user passes biometry or fallback pin */ authenticateWithBiometry(options: BiometryParams): Promise<boolean>; }; export default DeviceCrypto;