UNPKG

thali

Version:

Thali Cordova Plugin

github.com/thaliproject/Thali_CordovaPlugin/tree/story_00

thaliproject/Thali_CordovaPlugin

115 lines (101 loc) 3.27 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
'use strict'; var crypto = require('crypto'); var fs = require('fs'); var path = require('path'); var urlSafeBase64 = require('urlsafe-base64'); // The password is not secure because anyone who can get to the file can get // to the app and thus can get the password. The password is used here only to // satisfy the crypto/PKCS12 APIs. var password = 'password'; var certname = 'certname'; var country = 'country'; var organization = 'organization'; var pkcs12FileName = '/pkcs12.pfx'; var macName = 'SHA256'; var hashSizeInBytes = 16; var generateSlicedSHA256Hash = module.exports.generateSlicedSHA256Hash = function( bufferValueToHash, hashSizeInBytes) { var hash = crypto.createHash(macName); hash.update(bufferValueToHash); var fullSizeKeyHashBuffer = hash.digest(); var slicedBuffer = fullSizeKeyHashBuffer.slice(0, hashSizeInBytes); return urlSafeBase64.encode(slicedBuffer); }; /** * Reads the PKCS12 content from the given file if it exists. If not, * the PKCS12 content is generated, saved to a file and the content is * returned. * @param {String} fileNameWithPath the file which has the PKCS12 content. * @param {Function} cb the callback which returns an error or PKCS12 content. */ function getPKCS12Content(fileNameWithPath, cb) { fs.exists(fileNameWithPath, function (exists) { if(exists) { fs.readFile(fileNameWithPath, function (err, pkcs12Content) { if (err) { cb(err); return; } cb(null, pkcs12Content); }); } else { var pkcs12Content = crypto.pkcs12 .createBundle(password, certname, country, organization); if (pkcs12Content.length <= 0) { return cb(new Error('failed to create pkcs12Content')); } fs.writeFile( fileNameWithPath, pkcs12Content, {flags: 'wx'}, function (err) { if (err) { return cb(err); } cb(null, pkcs12Content); }); } }); } /** * Checks if a PKCS12 file exists in a known location and if not present, it is * created. The public key is extracted from the PKCS12 content and it's SHA256 * hash value is returned. * @param {Function} cb the callback which returns an error or the hash value. */ module.exports.getPublicKeyHash = function (cb) { Mobile.GetDocumentsPath(function (err, fileLocation) { if (err) { return cb(err); } var file = path.join(fileLocation, pkcs12FileName); getPKCS12Content(file, function(err, pkcs12Content) { if (err) { return cb(err); } try { var publicKey = crypto.pkcs12 .extractPublicKey(password, pkcs12Content); if (!publicKey || publicKey.length <= 0) { return cb(new Error('extracted public key is invalid')); } var hash = generateSlicedSHA256Hash(publicKey, hashSizeInBytes); cb(null, hash); } catch(e) { return cb(new Error('error thrown by extractPublicKey() function')); } }); }); }; module.exports.getConfigValuesForTestingOnly = function() { return { password: password, certname: certname, country: country, organization: organization, pkcs12FileName: pkcs12FileName, hashSizeInBytes: hashSizeInBytes }; };