UNPKG

trello-node-api

Version:

Trello Node API wrapper

github.com/bhushankumarl/trello-node-api

bhushankumarl/trello-node-api

109 lines (85 loc) 3.01 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
var crypto = require('crypto'); var utils = require('./utils'); var Error = require('./Error'); var Webhook = { DEFAULT_TOLERANCE: 300, constructEvent: function (payload, header, secret, tolerance) { var jsonPayload = JSON.parse(payload); this.signature.verifyHeader(payload, header, secret, tolerance || Webhook.DEFAULT_TOLERANCE); return jsonPayload; } }; var signature = { EXPECTED_SCHEME: 'v1', _computeSignature: function (payload, secret) { return crypto.createHmac('sha256', secret) .update(payload, 'utf8') .digest('hex'); }, verifyHeader: function (payload, header, secret, tolerance) { var details = parseHeader(header, this.EXPECTED_SCHEME); if (!details || details.timestamp === -1) { throw new Error.TrelloSignatureVerificationError({ message: 'Unable to extract timestamp and signatures from header', detail: { header: header, payload: payload } }); } if (!details.signatures.length) { throw new Error.TrelloSignatureVerificationError({ message: 'No signatures found with expected scheme', detail: { header: header, payload: payload } }); } var expectedSignature = this._computeSignature(details.timestamp + '.' + payload, secret); var signatureFound = !!details.signatures .filter(utils.secureCompare.bind(utils, expectedSignature)) .length; if (!signatureFound) { throw new Error.TrelloSignatureVerificationError({ message: 'No signatures found matching the expected signature for payload.' + ' Are you passing the raw request body you received from Trello?', detail: { header: header, payload: payload } }); } var timestampAge = Math.floor(Date.now() / 1000) - details.timestamp; if (tolerance > 0 && timestampAge > tolerance) { throw new Error.TrelloSignatureVerificationError({ message: 'Timestamp outside the tolerance zone', detail: { header: header, payload: payload } }); } return true; } }; function parseHeader(header, scheme) { if (typeof header !== 'string') { return null; } return header.split(',').reduce(function (accum, item) { var kv = item.split('='); if (kv[0] === 't') { accum.timestamp = kv[1]; } if (kv[0] === scheme) { accum.signatures.push(kv[1]); } return accum; }, { timestamp: -1, signatures: [] }); } Webhook.signature = signature; module.exports = Webhook;