UNPKG

restpki-client

Version:

Classes to consume Lacuna Software REST PKI

263 lines (211 loc) • 6.11 kB

JavaScript

'use strict'; const {DigestAlgorithm} = require('./digest-algorithm'); const {SignatureAlgorithms, PKAlgorithms, DigestAlgorithms} = require('./enums'); const {Oids} = require('./oids'); class SignatureAlgorithm { static get MD5WithRSA() { return new RSASignatureAlgorithm(DigestAlgorithm.MD5); } static get SHA1WithRSA() { return new RSASignatureAlgorithm(DigestAlgorithm.SHA1); } static get SHA256WithRSA() { return new RSASignatureAlgorithm(DigestAlgorithm.SHA256); } static get SHA384WithRSA() { return new RSASignatureAlgorithm(DigestAlgorithm.SHA384); } static get SHA512WithRSA() { return new RSASignatureAlgorithm(DigestAlgorithm.SHA512); } static get _algorithms() { return [ SignatureAlgorithm.MD5WithRSA, SignatureAlgorithm.SHA1WithRSA, SignatureAlgorithm.SHA256WithRSA, SignatureAlgorithm.SHA384WithRSA, SignatureAlgorithm.SHA512WithRSA ]; } static get _safeAlgorithms() { return [ SignatureAlgorithm.SHA1WithRSA, SignatureAlgorithm.SHA256WithRSA, SignatureAlgorithm.SHA384WithRSA, SignatureAlgorithm.SHA512WithRSA ]; } static getInstanceByName(name) { let sig = SignatureAlgorithm._algorithms.find((s) => s.name === name); if (!sig) { throw new Error(`Unrecognized digest algorithm name: ${name}`); } return sig; } static getInstanceByOid(oid) { let sig = SignatureAlgorithm._algorithms.find((s) => s.oid === oid); if (!sig) { throw new Error(`Unrecognized digest algorithm oid: ${oid}`); } return sig; } static getInstanceByXmlUri(xmlUri) { let sig = SignatureAlgorithm._algorithms.find((s) => s.xmlUri === xmlUri); if (!sig) { throw new Error(`Unrecognized digest algorithm XML URI: ${xmlUri}`); } return sig; } static getInstanceByApiModel(model) { switch (model.algorithm) { case SignatureAlgorithms.MD5_WITH_RSA: return SignatureAlgorithm.MD5WithRSA; case SignatureAlgorithms.SHA1_WITH_RSA: return SignatureAlgorithm.SHA1WithRSA; case SignatureAlgorithms.SHA256_WITH_RSA: return SignatureAlgorithm.SHA256WithRSA; case SignatureAlgorithms.SHA384_WITH_RSA: return SignatureAlgorithm.SHA384WithRSA; case SignatureAlgorithms.SHA512_WITH_RSA: return SignatureAlgorithm.SHA512WithRSA; default: throw new Error(`Unsupported signature algorithm: ${model.algorithm}`); } } constructor(name, oid, xmlUri, digestAlgorithm, pkAlgorithm) { this._name = name; this._oid = oid; this._xmlUri = xmlUri; this._digestAlgorithm = digestAlgorithm; this._pkAlgorithm = pkAlgorithm; } get oid() { return this._oid; } get name() { return this._name; } get xmlUri() { return this._xmlUri; } get digestAlgorithm() { return this._digestAlgorithm; } get pkAlgorithm() { return this._pkAlgorithm; } } class RSASignatureAlgorithm extends SignatureAlgorithm { constructor(digestAlgorithm) { let name = `${digestAlgorithm.name} with RSA`; let algorithm = digestAlgorithm; let pkAlgorithm = PKAlgorithm.RSA; let oid = null; switch (digestAlgorithm.apiModel) { case DigestAlgorithms.MD5: oid = Oids.MD5_WITH_RSA; break; case DigestAlgorithms.SHA1: oid = Oids.SHA1_WITH_RSA; break; case DigestAlgorithms.SHA256: oid = Oids.SHA256_WITH_RSA; break; case DigestAlgorithms.SHA384: oid = Oids.SHA384_WITH_RSA; break; case DigestAlgorithms.SHA512: oid = Oids.SHA512_WITH_RSA; break; default: throw new Error(`Unsupported digest algorithm: ${digestAlgorithm.apiModel}`); } let xmlUri = null; switch (digestAlgorithm.apiModel) { case DigestAlgorithms.MD5: xmlUri = 'http://www.w3.org/2001/04/xmldsig-more#rsa-md5'; break; case DigestAlgorithms.SHA1: xmlUri = 'http://www.w3.org/2000/09/xmldsig#rsa-sha1'; break; case DigestAlgorithms.SHA256: xmlUri = 'http://www.w3.org/2001/04/xmldsig-more#rsa-sha256'; break; case DigestAlgorithms.SHA384: xmlUri = 'http://www.w3.org/2001/04/xmldsig-more#rsa-sha384'; break; case DigestAlgorithms.SHA512: xmlUri = 'http://www.w3.org/2001/04/xmldsig-more#rsa-sha512'; break; default: throw new Error('Digest algorithm not supported'); } super(name, oid, xmlUri, digestAlgorithm, pkAlgorithm); } } class PKAlgorithm { static get RSA() { return new RSAPKAlgorithm(); } static get _algorithms() { return [PKAlgorithm.RSA]; } static getInstanceByName(name) { let alg = PKAlgorithm._algorithms.find((a) => a.name === name); if (!alg) { throw new Error(`Unrecognized private key algorithm name: ${name}`); } return alg; } static getInstanceByOid(oid) { let alg = PKAlgorithm._algorithms.find((a) => a.oid === oid); if (!alg) { throw new Error(`Unrecognized private key algorithm oid: ${oid}`); } return alg; } static getInstanceByApiModel(algorithm) { switch (algorithm) { case PKAlgorithms.RSA: return PKAlgorithm.RSA; default: throw new Error(`Unsupported private key algorithms ${algorithm}`); } } equals(instance) { if (this === instance) { return true; } if (!instance) { return false; } return this._oid === instance.oid; } constructor(name, oid) { this._name = name; this._oid = oid; } get name() { return this._name; } get oid() { return this._oid; } static getSignatureAlgorithm(digestAlgorithm) { throw new Error('This method should be implemented!'); } } class RSAPKAlgorithm extends PKAlgorithm { constructor() { let name = 'RSA'; let oid = Oids.RSA; super(name, oid); } static getSignatureAlgorithm(digestAlgorithm) { return new RSASignatureAlgorithm(digestAlgorithm); } } exports.SignatureAlgorithm = SignatureAlgorithm; exports.RSASignatureAlgorithm = RSASignatureAlgorithm; exports.RSAPKAlgorithm = RSAPKAlgorithm; exports.PKAlgorithm = PKAlgorithm;