npm - @infoxchange/make-it-so - Versions diffs - 2.11.0-internal-testing-vdt-199-add-auth-token-verify-function-3.1 → 2.11.0 - Mend

@infoxchange/make-it-so 2.11.0-internal-testing-vdt-199-add-auth-token-verify-function-3.1 → 2.11.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/dist/cdk-constructs/SiteOidcAuth/auth-check-handler-body.js CHANGED Viewed

@@ -9,6 +9,7 @@ const jwtSecret = "__placeholder-for-jwt-secret__";
 const authRoutePrefix = "__placeholder-for-auth-route-prefix__";
 // Set to true to enable console logging
 const loggingEnabled = false;
+// Simple logger that can be enabled/disabled via the loggingEnabled variable.
 const log = function () {
     if (!loggingEnabled)
         return;
@@ -32,6 +33,7 @@ const redirectResponse = {
         location: { value: `${authRoutePrefix}/oidc/authorize` },
     },
 };
+// Takes a JWT token to decode and throws an error if invalid
 function jwtDecode(token, key, noVerify) {
     // check segments
     const segments = token.split(".");
@@ -75,6 +77,7 @@ function _constantTimeEquals(a, b) {
     }
     return 0 === xor;
 }
+// Verifies some input matches an expected signature.
 function _verify(input, key, method, type, signature) {
     if (type === "hmac") {
         return _constantTimeEquals(signature, _sign(input, key, method));
@@ -83,9 +86,12 @@ function _verify(input, key, method, type, signature) {
         throw new Error("Algorithm type not recognized");
     }
 }
+// Signs some input with a key and method.
 function _sign(input, key, method) {
     return crypto.createHmac(method, key).update(input).digest("base64url");
 }
+// Very annoying that we have to implement this ourselves but it seems like the v1 runtime does not have atob/btoa or
+// Buffer available.
 function _base64urlDecode(str) {
     str = str.replace(/-/g, "+").replace(/_/g, "/");
     while (str.length % 4)

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@infoxchange/make-it-so",
-  "version": "2.11.0-internal-testing-vdt-199-add-auth-token-verify-function-3.1",
+  "version": "2.11.0",
   "description": "Makes deploying services to IX infra easy",
   "repository": "github:infoxchange/make-it-so",
   "type": "module",

package/src/cdk-constructs/SiteOidcAuth/auth-check-handler-body.ts CHANGED Viewed

@@ -15,6 +15,7 @@ const authRoutePrefix = "__placeholder-for-auth-route-prefix__";
 // Set to true to enable console logging
 const loggingEnabled = false;
+// Simple logger that can be enabled/disabled via the loggingEnabled variable.
 const log: typeof console.log = function () {
   if (!loggingEnabled) return;
@@ -41,6 +42,7 @@ const redirectResponse = {
   },
 };
+// Takes a JWT token to decode and throws an error if invalid
 function jwtDecode(token: string, key: string, noVerify?: boolean) {
   // check segments
   const segments = token.split(".");
@@ -97,6 +99,7 @@ function _constantTimeEquals(a: string, b: string) {
   return 0 === xor;
 }
+// Verifies some input matches an expected signature.
 function _verify(
   input: string,
   key: string,
@@ -111,10 +114,13 @@ function _verify(
   }
 }
+// Signs some input with a key and method.
 function _sign(input: string, key: string, method: string) {
   return crypto.createHmac(method, key).update(input).digest("base64url");
 }
+// Very annoying that we have to implement this ourselves but it seems like the v1 runtime does not have atob/btoa or
+// Buffer available.
 function _base64urlDecode(str: string) {
   str = str.replace(/-/g, "+").replace(/_/g, "/");
   while (str.length % 4) str += "=";