@lindorm/aegis 0.4.4 → 0.5.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +28 -0
- package/__tests__/jwt-interop.test.ts +13 -10
- package/dist/classes/Aegis.d.ts +13 -20
- package/dist/classes/Aegis.d.ts.map +1 -1
- package/dist/classes/Aegis.js +32 -118
- package/dist/classes/Aegis.js.map +1 -1
- package/dist/classes/JweKit.d.ts +1 -0
- package/dist/classes/JweKit.d.ts.map +1 -1
- package/dist/classes/JweKit.js +56 -9
- package/dist/classes/JweKit.js.map +1 -1
- package/dist/classes/JwsKit.d.ts +1 -0
- package/dist/classes/JwsKit.d.ts.map +1 -1
- package/dist/classes/JwsKit.js +50 -10
- package/dist/classes/JwsKit.js.map +1 -1
- package/dist/classes/JwtKit.d.ts +2 -0
- package/dist/classes/JwtKit.d.ts.map +1 -1
- package/dist/classes/JwtKit.js +83 -10
- package/dist/classes/JwtKit.js.map +1 -1
- package/dist/classes/index.d.ts +0 -3
- package/dist/classes/index.d.ts.map +1 -1
- package/dist/classes/index.js +0 -3
- package/dist/classes/index.js.map +1 -1
- package/dist/constants/token-type.d.ts +6 -0
- package/dist/constants/token-type.d.ts.map +1 -0
- package/dist/constants/token-type.js +20 -0
- package/dist/constants/token-type.js.map +1 -0
- package/dist/errors/index.d.ts +0 -3
- package/dist/errors/index.d.ts.map +1 -1
- package/dist/errors/index.js +0 -3
- package/dist/errors/index.js.map +1 -1
- package/dist/guards/index.d.ts +3 -0
- package/dist/guards/index.d.ts.map +1 -0
- package/dist/{types/cws → guards}/index.js +2 -4
- package/dist/guards/index.js.map +1 -0
- package/dist/guards/is-parsed-jws.d.ts +3 -0
- package/dist/guards/is-parsed-jws.d.ts.map +1 -0
- package/dist/guards/is-parsed-jws.js +6 -0
- package/dist/guards/is-parsed-jws.js.map +1 -0
- package/dist/guards/is-parsed-jwt.d.ts +3 -0
- package/dist/guards/is-parsed-jwt.d.ts.map +1 -0
- package/dist/guards/is-parsed-jwt.js +6 -0
- package/dist/guards/is-parsed-jwt.js.map +1 -0
- package/dist/index.d.ts +2 -0
- package/dist/index.d.ts.map +1 -1
- package/dist/index.js +1 -0
- package/dist/index.js.map +1 -1
- package/dist/interfaces/Aegis.d.ts +8 -22
- package/dist/interfaces/Aegis.d.ts.map +1 -1
- package/dist/interfaces/index.d.ts +0 -3
- package/dist/interfaces/index.d.ts.map +1 -1
- package/dist/interfaces/index.js +0 -3
- package/dist/interfaces/index.js.map +1 -1
- package/dist/internal/constants/aegis-profile-keys.d.ts +2 -0
- package/dist/internal/constants/aegis-profile-keys.d.ts.map +1 -0
- package/dist/internal/constants/aegis-profile-keys.js +37 -0
- package/dist/internal/constants/aegis-profile-keys.js.map +1 -0
- package/dist/internal/constants/header.d.ts +1 -1
- package/dist/internal/constants/header.d.ts.map +1 -1
- package/dist/internal/constants/header.js +0 -4
- package/dist/internal/constants/header.js.map +1 -1
- package/dist/internal/utils/compute-jwk-thumbprint.d.ts +4 -0
- package/dist/internal/utils/compute-jwk-thumbprint.d.ts.map +1 -0
- package/dist/internal/utils/compute-jwk-thumbprint.js +25 -0
- package/dist/internal/utils/compute-jwk-thumbprint.js.map +1 -0
- package/dist/internal/utils/compute-typ-header.d.ts +7 -0
- package/dist/internal/utils/compute-typ-header.d.ts.map +1 -0
- package/dist/internal/utils/compute-typ-header.js +68 -0
- package/dist/internal/utils/compute-typ-header.js.map +1 -0
- package/dist/internal/utils/extract-aegis-profile.d.ts +7 -0
- package/dist/internal/utils/extract-aegis-profile.d.ts.map +1 -0
- package/dist/internal/utils/extract-aegis-profile.js +34 -0
- package/dist/internal/utils/extract-aegis-profile.js.map +1 -0
- package/dist/internal/utils/extract-claims.d.ts +15 -0
- package/dist/internal/utils/extract-claims.d.ts.map +1 -0
- package/dist/internal/utils/extract-claims.js +201 -0
- package/dist/internal/utils/extract-claims.js.map +1 -0
- package/dist/internal/utils/extract-token-delegation.d.ts +6 -0
- package/dist/internal/utils/extract-token-delegation.d.ts.map +1 -0
- package/dist/internal/utils/extract-token-delegation.js +28 -0
- package/dist/internal/utils/extract-token-delegation.js.map +1 -0
- package/dist/internal/utils/generate-token-id.d.ts +2 -0
- package/dist/internal/utils/generate-token-id.d.ts.map +1 -0
- package/dist/internal/utils/generate-token-id.js +9 -0
- package/dist/internal/utils/generate-token-id.js.map +1 -0
- package/dist/internal/utils/jose-header.d.ts +2 -2
- package/dist/internal/utils/jose-header.d.ts.map +1 -1
- package/dist/internal/utils/jose-header.js +5 -5
- package/dist/internal/utils/jose-header.js.map +1 -1
- package/dist/internal/utils/jwt-payload.d.ts.map +1 -1
- package/dist/internal/utils/jwt-payload.js +50 -43
- package/dist/internal/utils/jwt-payload.js.map +1 -1
- package/dist/internal/utils/jwt-verify.d.ts.map +1 -1
- package/dist/internal/utils/jwt-verify.js +30 -6
- package/dist/internal/utils/jwt-verify.js.map +1 -1
- package/dist/internal/utils/parse-introspection.d.ts +7 -0
- package/dist/internal/utils/parse-introspection.d.ts.map +1 -0
- package/dist/internal/utils/parse-introspection.js +28 -0
- package/dist/internal/utils/parse-introspection.js.map +1 -0
- package/dist/internal/utils/parse-userinfo.d.ts +5 -0
- package/dist/internal/utils/parse-userinfo.d.ts.map +1 -0
- package/dist/internal/utils/parse-userinfo.js +26 -0
- package/dist/internal/utils/parse-userinfo.js.map +1 -0
- package/dist/internal/utils/resolve-cert-binding.d.ts +4 -0
- package/dist/internal/utils/resolve-cert-binding.d.ts.map +1 -0
- package/dist/internal/utils/resolve-cert-binding.js +30 -0
- package/dist/internal/utils/resolve-cert-binding.js.map +1 -0
- package/dist/internal/utils/token-header.d.ts +2 -2
- package/dist/internal/utils/token-header.d.ts.map +1 -1
- package/dist/internal/utils/token-header.js +5 -16
- package/dist/internal/utils/token-header.js.map +1 -1
- package/dist/internal/utils/validate-actor.d.ts +3 -0
- package/dist/internal/utils/validate-actor.d.ts.map +1 -0
- package/dist/internal/utils/validate-actor.js +27 -0
- package/dist/internal/utils/validate-actor.js.map +1 -0
- package/dist/internal/utils/validate-crit.d.ts +4 -0
- package/dist/internal/utils/validate-crit.d.ts.map +1 -0
- package/dist/internal/utils/validate-crit.js +55 -0
- package/dist/internal/utils/validate-crit.js.map +1 -0
- package/dist/internal/utils/verify-cert-binding.d.ts +14 -0
- package/dist/internal/utils/verify-cert-binding.d.ts.map +1 -0
- package/dist/internal/utils/verify-cert-binding.js +25 -0
- package/dist/internal/utils/verify-cert-binding.js.map +1 -0
- package/dist/internal/utils/verify-dpop-proof.d.ts +10 -0
- package/dist/internal/utils/verify-dpop-proof.d.ts.map +1 -0
- package/dist/internal/utils/verify-dpop-proof.js +76 -0
- package/dist/internal/utils/verify-dpop-proof.js.map +1 -0
- package/dist/mocks/create-mock-aegis.d.ts +2 -1
- package/dist/mocks/create-mock-aegis.d.ts.map +1 -1
- package/dist/mocks/create-mock-aegis.js +49 -75
- package/dist/mocks/create-mock-aegis.js.map +1 -1
- package/dist/mocks/index.d.ts +1 -1
- package/dist/mocks/index.d.ts.map +1 -1
- package/dist/mocks/index.js +3 -15
- package/dist/mocks/index.js.map +1 -1
- package/dist/types/aegis.d.ts +3 -0
- package/dist/types/aegis.d.ts.map +1 -1
- package/dist/types/claims/act-claim.d.ts +8 -0
- package/dist/types/claims/act-claim.d.ts.map +1 -0
- package/dist/{interfaces/CwtKit.js → types/claims/act-claim.js} +1 -1
- package/dist/types/claims/act-claim.js.map +1 -0
- package/dist/types/claims/aegis-introspection.d.ts +16 -0
- package/dist/types/claims/aegis-introspection.d.ts.map +1 -0
- package/dist/types/claims/aegis-introspection.js +3 -0
- package/dist/types/claims/aegis-introspection.js.map +1 -0
- package/dist/types/claims/aegis-profile.d.ts +44 -0
- package/dist/types/claims/aegis-profile.d.ts.map +1 -0
- package/dist/types/claims/aegis-profile.js +3 -0
- package/dist/types/claims/aegis-profile.js.map +1 -0
- package/dist/types/claims/aegis-userinfo.d.ts +5 -0
- package/dist/types/claims/aegis-userinfo.d.ts.map +1 -0
- package/dist/types/claims/aegis-userinfo.js +3 -0
- package/dist/types/claims/aegis-userinfo.js.map +1 -0
- package/dist/types/claims/confirmation-claim.d.ts +9 -0
- package/dist/types/claims/confirmation-claim.d.ts.map +1 -0
- package/dist/types/claims/confirmation-claim.js +3 -0
- package/dist/types/claims/confirmation-claim.js.map +1 -0
- package/dist/types/claims/delegation-claims.d.ts +6 -0
- package/dist/types/claims/delegation-claims.d.ts.map +1 -0
- package/dist/types/claims/delegation-claims.js +3 -0
- package/dist/types/claims/delegation-claims.js.map +1 -0
- package/dist/types/claims/index.d.ts +13 -0
- package/dist/types/claims/index.d.ts.map +1 -0
- package/dist/types/{cwt → claims}/index.js +12 -7
- package/dist/types/claims/index.js.map +1 -0
- package/dist/types/claims/jwt/act-claim-wire.d.ts +8 -0
- package/dist/types/claims/jwt/act-claim-wire.d.ts.map +1 -0
- package/dist/types/claims/jwt/act-claim-wire.js +3 -0
- package/dist/types/claims/jwt/act-claim-wire.js.map +1 -0
- package/dist/types/claims/jwt/confirmation-claim-wire.d.ts +9 -0
- package/dist/types/claims/jwt/confirmation-claim-wire.d.ts.map +1 -0
- package/dist/types/claims/jwt/confirmation-claim-wire.js +3 -0
- package/dist/types/claims/jwt/confirmation-claim-wire.js.map +1 -0
- package/dist/types/claims/jwt/delegation-claims-wire.d.ts +6 -0
- package/dist/types/claims/jwt/delegation-claims-wire.d.ts.map +1 -0
- package/dist/types/claims/jwt/delegation-claims-wire.js +3 -0
- package/dist/types/claims/jwt/delegation-claims-wire.js.map +1 -0
- package/dist/types/claims/jwt/index.d.ts +10 -0
- package/dist/types/claims/jwt/index.d.ts.map +1 -0
- package/dist/types/{cwe → claims/jwt}/index.js +9 -4
- package/dist/types/claims/jwt/index.js.map +1 -0
- package/dist/types/claims/jwt/jwt-claims.d.ts +8 -0
- package/dist/types/claims/jwt/jwt-claims.d.ts.map +1 -0
- package/dist/types/claims/jwt/jwt-claims.js.map +1 -0
- package/dist/types/claims/jwt/lindorm-claims-wire.d.ts +16 -0
- package/dist/types/claims/jwt/lindorm-claims-wire.d.ts.map +1 -0
- package/dist/types/claims/jwt/lindorm-claims-wire.js +3 -0
- package/dist/types/claims/jwt/lindorm-claims-wire.js.map +1 -0
- package/dist/types/claims/jwt/oauth-claims-wire.d.ts +6 -0
- package/dist/types/claims/jwt/oauth-claims-wire.d.ts.map +1 -0
- package/dist/types/claims/jwt/oauth-claims-wire.js +3 -0
- package/dist/types/claims/jwt/oauth-claims-wire.js.map +1 -0
- package/dist/types/claims/jwt/oidc-claims-wire.d.ts +11 -0
- package/dist/types/claims/jwt/oidc-claims-wire.d.ts.map +1 -0
- package/dist/types/claims/jwt/oidc-claims-wire.js +3 -0
- package/dist/types/claims/jwt/oidc-claims-wire.js.map +1 -0
- package/dist/types/claims/jwt/pop-claims-wire.d.ts +5 -0
- package/dist/types/claims/jwt/pop-claims-wire.d.ts.map +1 -0
- package/dist/types/claims/jwt/pop-claims-wire.js +3 -0
- package/dist/types/claims/jwt/pop-claims-wire.js.map +1 -0
- package/dist/types/claims/jwt/std-claims-wire.d.ts +10 -0
- package/dist/types/claims/jwt/std-claims-wire.d.ts.map +1 -0
- package/dist/types/claims/jwt/std-claims-wire.js +3 -0
- package/dist/types/claims/jwt/std-claims-wire.js.map +1 -0
- package/dist/types/claims/lindorm-claims.d.ts +18 -0
- package/dist/types/claims/lindorm-claims.d.ts.map +1 -0
- package/dist/types/claims/lindorm-claims.js +3 -0
- package/dist/types/claims/lindorm-claims.js.map +1 -0
- package/dist/types/claims/oauth-claims.d.ts +6 -0
- package/dist/types/claims/oauth-claims.d.ts.map +1 -0
- package/dist/types/claims/oauth-claims.js +3 -0
- package/dist/types/claims/oauth-claims.js.map +1 -0
- package/dist/types/claims/oidc-claims.d.ts +11 -0
- package/dist/types/claims/oidc-claims.d.ts.map +1 -0
- package/dist/types/{cose-target.js → claims/oidc-claims.js} +1 -1
- package/dist/types/claims/oidc-claims.js.map +1 -0
- package/dist/types/claims/pop-claims.d.ts +5 -0
- package/dist/types/claims/pop-claims.d.ts.map +1 -0
- package/dist/types/{cwe/cwe-decode.js → claims/pop-claims.js} +1 -1
- package/dist/types/claims/pop-claims.js.map +1 -0
- package/dist/types/claims/std-claims.d.ts +10 -0
- package/dist/types/claims/std-claims.d.ts.map +1 -0
- package/dist/types/claims/std-claims.js +3 -0
- package/dist/types/claims/std-claims.js.map +1 -0
- package/dist/types/header.d.ts +14 -7
- package/dist/types/header.d.ts.map +1 -1
- package/dist/types/index.d.ts +2 -4
- package/dist/types/index.d.ts.map +1 -1
- package/dist/types/index.js +2 -4
- package/dist/types/index.js.map +1 -1
- package/dist/types/jwe/jwe-decrypt.d.ts +2 -4
- package/dist/types/jwe/jwe-decrypt.d.ts.map +1 -1
- package/dist/types/jwe/jwe-encrypt.d.ts +4 -1
- package/dist/types/jwe/jwe-encrypt.d.ts.map +1 -1
- package/dist/types/jwe/jwe-kit.d.ts +2 -7
- package/dist/types/jwe/jwe-kit.d.ts.map +1 -1
- package/dist/types/jws/jws-kit.d.ts +2 -6
- package/dist/types/jws/jws-kit.d.ts.map +1 -1
- package/dist/types/jws/jws-parse.d.ts +2 -5
- package/dist/types/jws/jws-parse.d.ts.map +1 -1
- package/dist/types/jws/jws-sign.d.ts +5 -2
- package/dist/types/jws/jws-sign.d.ts.map +1 -1
- package/dist/types/jwt/index.d.ts +3 -1
- package/dist/types/jwt/index.d.ts.map +1 -1
- package/dist/types/jwt/index.js +3 -1
- package/dist/types/jwt/index.js.map +1 -1
- package/dist/types/jwt/jwt-claim-matchers.d.ts +28 -0
- package/dist/types/jwt/jwt-claim-matchers.d.ts.map +1 -0
- package/dist/types/jwt/jwt-claim-matchers.js +3 -0
- package/dist/types/jwt/jwt-claim-matchers.js.map +1 -0
- package/dist/types/jwt/jwt-decode.d.ts +1 -1
- package/dist/types/jwt/jwt-decode.d.ts.map +1 -1
- package/dist/types/jwt/jwt-delegation.d.ts +7 -0
- package/dist/types/jwt/jwt-delegation.d.ts.map +1 -0
- package/dist/types/jwt/jwt-delegation.js +3 -0
- package/dist/types/jwt/jwt-delegation.js.map +1 -0
- package/dist/types/jwt/jwt-dpop.d.ts +10 -0
- package/dist/types/jwt/jwt-dpop.d.ts.map +1 -0
- package/dist/{interfaces/CwsKit.js → types/jwt/jwt-dpop.js} +1 -1
- package/dist/types/jwt/jwt-dpop.js.map +1 -0
- package/dist/types/jwt/jwt-kit.d.ts +3 -5
- package/dist/types/jwt/jwt-kit.d.ts.map +1 -1
- package/dist/types/jwt/jwt-parse.d.ts +11 -27
- package/dist/types/jwt/jwt-parse.d.ts.map +1 -1
- package/dist/types/jwt/jwt-sign.d.ts +6 -23
- package/dist/types/jwt/jwt-sign.d.ts.map +1 -1
- package/dist/types/jwt/jwt-validate.d.ts +2 -23
- package/dist/types/jwt/jwt-validate.d.ts.map +1 -1
- package/dist/types/jwt/jwt-verify.d.ts +13 -25
- package/dist/types/jwt/jwt-verify.d.ts.map +1 -1
- package/dist/types/kit.d.ts +12 -0
- package/dist/types/kit.d.ts.map +1 -0
- package/dist/{interfaces/CweKit.js → types/kit.js} +1 -1
- package/dist/types/kit.js.map +1 -0
- package/dist/types/level-of-assurance.d.ts +1 -1
- package/dist/types/level-of-assurance.d.ts.map +1 -1
- package/package.json +19 -18
- package/__tests__/cose-interop.test.ts +0 -1127
- package/dist/classes/CweKit.d.ts +0 -14
- package/dist/classes/CweKit.d.ts.map +0 -1
- package/dist/classes/CweKit.js +0 -151
- package/dist/classes/CweKit.js.map +0 -1
- package/dist/classes/CwsKit.d.ts +0 -13
- package/dist/classes/CwsKit.d.ts.map +0 -1
- package/dist/classes/CwsKit.js +0 -139
- package/dist/classes/CwsKit.js.map +0 -1
- package/dist/classes/CwtKit.d.ts +0 -17
- package/dist/classes/CwtKit.d.ts.map +0 -1
- package/dist/classes/CwtKit.js +0 -166
- package/dist/classes/CwtKit.js.map +0 -1
- package/dist/errors/CoseEncryptError.d.ts +0 -4
- package/dist/errors/CoseEncryptError.d.ts.map +0 -1
- package/dist/errors/CoseEncryptError.js +0 -8
- package/dist/errors/CoseEncryptError.js.map +0 -1
- package/dist/errors/CoseSignError.d.ts +0 -4
- package/dist/errors/CoseSignError.d.ts.map +0 -1
- package/dist/errors/CoseSignError.js +0 -8
- package/dist/errors/CoseSignError.js.map +0 -1
- package/dist/errors/CwtError.d.ts +0 -4
- package/dist/errors/CwtError.d.ts.map +0 -1
- package/dist/errors/CwtError.js +0 -8
- package/dist/errors/CwtError.js.map +0 -1
- package/dist/interfaces/CweKit.d.ts +0 -6
- package/dist/interfaces/CweKit.d.ts.map +0 -1
- package/dist/interfaces/CweKit.js.map +0 -1
- package/dist/interfaces/CwsKit.d.ts +0 -6
- package/dist/interfaces/CwsKit.d.ts.map +0 -1
- package/dist/interfaces/CwsKit.js.map +0 -1
- package/dist/interfaces/CwtKit.d.ts +0 -7
- package/dist/interfaces/CwtKit.d.ts.map +0 -1
- package/dist/interfaces/CwtKit.js.map +0 -1
- package/dist/internal/constants/cose.d.ts +0 -19
- package/dist/internal/constants/cose.d.ts.map +0 -1
- package/dist/internal/constants/cose.js +0 -116
- package/dist/internal/constants/cose.js.map +0 -1
- package/dist/internal/utils/auth-tag-length.d.ts +0 -3
- package/dist/internal/utils/auth-tag-length.d.ts.map +0 -1
- package/dist/internal/utils/auth-tag-length.js +0 -21
- package/dist/internal/utils/auth-tag-length.js.map +0 -1
- package/dist/internal/utils/cose/bstr.d.ts +0 -4
- package/dist/internal/utils/cose/bstr.d.ts.map +0 -1
- package/dist/internal/utils/cose/bstr.js +0 -18
- package/dist/internal/utils/cose/bstr.js.map +0 -1
- package/dist/internal/utils/cose/claims.d.ts +0 -5
- package/dist/internal/utils/cose/claims.d.ts.map +0 -1
- package/dist/internal/utils/cose/claims.js +0 -57
- package/dist/internal/utils/cose/claims.js.map +0 -1
- package/dist/internal/utils/cose/crit.d.ts +0 -3
- package/dist/internal/utils/cose/crit.d.ts.map +0 -1
- package/dist/internal/utils/cose/crit.js +0 -43
- package/dist/internal/utils/cose/crit.js.map +0 -1
- package/dist/internal/utils/cose/find.d.ts +0 -5
- package/dist/internal/utils/cose/find.d.ts.map +0 -1
- package/dist/internal/utils/cose/find.js +0 -37
- package/dist/internal/utils/cose/find.js.map +0 -1
- package/dist/internal/utils/cose/header.d.ts +0 -5
- package/dist/internal/utils/cose/header.d.ts.map +0 -1
- package/dist/internal/utils/cose/header.js +0 -81
- package/dist/internal/utils/cose/header.js.map +0 -1
- package/dist/internal/utils/cose/key.d.ts +0 -4
- package/dist/internal/utils/cose/key.d.ts.map +0 -1
- package/dist/internal/utils/cose/key.js +0 -86
- package/dist/internal/utils/cose/key.js.map +0 -1
- package/dist/internal/utils/cose-sign-token.d.ts +0 -9
- package/dist/internal/utils/cose-sign-token.d.ts.map +0 -1
- package/dist/internal/utils/cose-sign-token.js +0 -12
- package/dist/internal/utils/cose-sign-token.js.map +0 -1
- package/dist/internal/utils/cose-signature.d.ts +0 -16
- package/dist/internal/utils/cose-signature.d.ts.map +0 -1
- package/dist/internal/utils/cose-signature.js +0 -17
- package/dist/internal/utils/cose-signature.js.map +0 -1
- package/dist/types/cose-target.d.ts +0 -2
- package/dist/types/cose-target.d.ts.map +0 -1
- package/dist/types/cose-target.js.map +0 -1
- package/dist/types/cwe/cwe-decode.d.ts +0 -18
- package/dist/types/cwe/cwe-decode.d.ts.map +0 -1
- package/dist/types/cwe/cwe-decode.js.map +0 -1
- package/dist/types/cwe/cwe-decrypt.d.ts +0 -15
- package/dist/types/cwe/cwe-decrypt.d.ts.map +0 -1
- package/dist/types/cwe/cwe-decrypt.js +0 -3
- package/dist/types/cwe/cwe-decrypt.js.map +0 -1
- package/dist/types/cwe/cwe-encrypt.d.ts +0 -12
- package/dist/types/cwe/cwe-encrypt.d.ts.map +0 -1
- package/dist/types/cwe/cwe-encrypt.js +0 -3
- package/dist/types/cwe/cwe-encrypt.js.map +0 -1
- package/dist/types/cwe/cwe-kit.d.ts +0 -9
- package/dist/types/cwe/cwe-kit.d.ts.map +0 -1
- package/dist/types/cwe/cwe-kit.js +0 -3
- package/dist/types/cwe/cwe-kit.js.map +0 -1
- package/dist/types/cwe/index.d.ts +0 -5
- package/dist/types/cwe/index.d.ts.map +0 -1
- package/dist/types/cwe/index.js.map +0 -1
- package/dist/types/cws/cws-decode.d.ts +0 -9
- package/dist/types/cws/cws-decode.d.ts.map +0 -1
- package/dist/types/cws/cws-decode.js +0 -3
- package/dist/types/cws/cws-decode.js.map +0 -1
- package/dist/types/cws/cws-kit.d.ts +0 -8
- package/dist/types/cws/cws-kit.d.ts.map +0 -1
- package/dist/types/cws/cws-kit.js +0 -3
- package/dist/types/cws/cws-kit.js.map +0 -1
- package/dist/types/cws/cws-parse.d.ts +0 -14
- package/dist/types/cws/cws-parse.d.ts.map +0 -1
- package/dist/types/cws/cws-parse.js +0 -3
- package/dist/types/cws/cws-parse.js.map +0 -1
- package/dist/types/cws/cws-sign.d.ts +0 -14
- package/dist/types/cws/cws-sign.d.ts.map +0 -1
- package/dist/types/cws/cws-sign.js +0 -3
- package/dist/types/cws/cws-sign.js.map +0 -1
- package/dist/types/cws/index.d.ts +0 -5
- package/dist/types/cws/index.d.ts.map +0 -1
- package/dist/types/cws/index.js.map +0 -1
- package/dist/types/cwt/cwt-claims.d.ts +0 -3
- package/dist/types/cwt/cwt-claims.d.ts.map +0 -1
- package/dist/types/cwt/cwt-claims.js +0 -3
- package/dist/types/cwt/cwt-claims.js.map +0 -1
- package/dist/types/cwt/cwt-decode.d.ts +0 -10
- package/dist/types/cwt/cwt-decode.d.ts.map +0 -1
- package/dist/types/cwt/cwt-decode.js +0 -3
- package/dist/types/cwt/cwt-decode.js.map +0 -1
- package/dist/types/cwt/cwt-kit.d.ts +0 -3
- package/dist/types/cwt/cwt-kit.d.ts.map +0 -1
- package/dist/types/cwt/cwt-kit.js +0 -3
- package/dist/types/cwt/cwt-kit.js.map +0 -1
- package/dist/types/cwt/cwt-parse.d.ts +0 -15
- package/dist/types/cwt/cwt-parse.d.ts.map +0 -1
- package/dist/types/cwt/cwt-parse.js +0 -3
- package/dist/types/cwt/cwt-parse.js.map +0 -1
- package/dist/types/cwt/cwt-sign.d.ts +0 -17
- package/dist/types/cwt/cwt-sign.d.ts.map +0 -1
- package/dist/types/cwt/cwt-sign.js +0 -3
- package/dist/types/cwt/cwt-sign.js.map +0 -1
- package/dist/types/cwt/cwt-validate.d.ts +0 -3
- package/dist/types/cwt/cwt-validate.d.ts.map +0 -1
- package/dist/types/cwt/cwt-validate.js +0 -3
- package/dist/types/cwt/cwt-validate.js.map +0 -1
- package/dist/types/cwt/cwt-verify.d.ts +0 -3
- package/dist/types/cwt/cwt-verify.d.ts.map +0 -1
- package/dist/types/cwt/cwt-verify.js +0 -3
- package/dist/types/cwt/cwt-verify.js.map +0 -1
- package/dist/types/cwt/index.d.ts +0 -8
- package/dist/types/cwt/index.d.ts.map +0 -1
- package/dist/types/cwt/index.js.map +0 -1
- package/dist/types/jwt/jwt-claims.d.ts +0 -38
- package/dist/types/jwt/jwt-claims.d.ts.map +0 -1
- package/dist/types/jwt/jwt-claims.js.map +0 -1
- /package/dist/types/{jwt → claims/jwt}/jwt-claims.js +0 -0
package/dist/classes/CweKit.d.ts
DELETED
|
@@ -1,14 +0,0 @@
|
|
|
1
|
-
import { ICweKit } from "../interfaces";
|
|
2
|
-
import { CweContent, CweEncryptOptions, CweKitOptions, DecodedCwe, DecryptedCwe, EncryptedCwe } from "../types";
|
|
3
|
-
export declare class CweKit implements ICweKit {
|
|
4
|
-
private readonly encryption;
|
|
5
|
-
private readonly logger;
|
|
6
|
-
private readonly kryptos;
|
|
7
|
-
constructor(options: CweKitOptions);
|
|
8
|
-
encrypt(data: CweContent, options?: CweEncryptOptions): EncryptedCwe;
|
|
9
|
-
decrypt<T extends CweContent = string>(token: CweContent): DecryptedCwe<T>;
|
|
10
|
-
static isCwe(token: Buffer | string): boolean;
|
|
11
|
-
static decode(token: CweContent): DecodedCwe;
|
|
12
|
-
private contentType;
|
|
13
|
-
}
|
|
14
|
-
//# sourceMappingURL=CweKit.d.ts.map
|
|
@@ -1 +0,0 @@
|
|
|
1
|
-
{"version":3,"file":"CweKit.d.ts","sourceRoot":"","sources":["../../src/classes/CweKit.ts"],"names":[],"mappings":"AAOA,OAAO,EAAE,OAAO,EAAE,MAAM,eAAe,CAAC;AACxC,OAAO,EACL,UAAU,EACV,iBAAiB,EACjB,aAAa,EACb,UAAU,EACV,YAAY,EAEZ,YAAY,EAEb,MAAM,UAAU,CAAC;AAKlB,qBAAa,MAAO,YAAW,OAAO;IACpC,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAoB;IAC/C,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAU;IACjC,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAW;gBAEhB,OAAO,EAAE,aAAa;IAMlC,OAAO,CAAC,IAAI,EAAE,UAAU,EAAE,OAAO,GAAE,iBAAsB,GAAG,YAAY;IA6DxE,OAAO,CAAC,CAAC,SAAS,UAAU,GAAG,MAAM,EAAE,KAAK,EAAE,UAAU,GAAG,YAAY,CAAC,CAAC,CAAC;WAgFnE,KAAK,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,GAAG,OAAO;WAStC,MAAM,CAAC,KAAK,EAAE,UAAU,GAAG,UAAU;IAoCnD,OAAO,CAAC,WAAW;CAMpB"}
|
package/dist/classes/CweKit.js
DELETED
|
@@ -1,151 +0,0 @@
|
|
|
1
|
-
"use strict";
|
|
2
|
-
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
-
exports.CweKit = void 0;
|
|
4
|
-
const aes_1 = require("@lindorm/aes");
|
|
5
|
-
const is_1 = require("@lindorm/is");
|
|
6
|
-
const cbor_1 = require("cbor");
|
|
7
|
-
const crypto_1 = require("crypto");
|
|
8
|
-
const errors_1 = require("../errors");
|
|
9
|
-
const auth_tag_length_1 = require("#internal/utils/auth-tag-length");
|
|
10
|
-
const header_1 = require("#internal/utils/cose/header");
|
|
11
|
-
const token_header_1 = require("#internal/utils/token-header");
|
|
12
|
-
class CweKit {
|
|
13
|
-
encryption;
|
|
14
|
-
logger;
|
|
15
|
-
kryptos;
|
|
16
|
-
constructor(options) {
|
|
17
|
-
this.logger = options.logger.child(["CoseEncryptKit"]);
|
|
18
|
-
this.kryptos = options.kryptos;
|
|
19
|
-
this.encryption = options.encryption ?? options.kryptos.encryption ?? "A256GCM";
|
|
20
|
-
}
|
|
21
|
-
encrypt(data, options = {}) {
|
|
22
|
-
const kit = new aes_1.AesKit({ encryption: this.encryption, kryptos: this.kryptos });
|
|
23
|
-
this.logger.debug("Encrypting token", { options });
|
|
24
|
-
const objectId = options.objectId ?? (0, crypto_1.randomBytes)(20).toString("base64url");
|
|
25
|
-
const target = options.target ?? "internal";
|
|
26
|
-
const prepared = kit.prepareEncryption();
|
|
27
|
-
const protectedHeader = (0, header_1.mapCoseHeader)((0, token_header_1.mapTokenHeader)({
|
|
28
|
-
algorithm: this.encryption,
|
|
29
|
-
contentType: this.contentType(data),
|
|
30
|
-
headerType: "application/cose; cose-type=cose-encrypt",
|
|
31
|
-
}), target);
|
|
32
|
-
const protectedCbor = (0, cbor_1.encode)(protectedHeader);
|
|
33
|
-
const aad = protectedCbor;
|
|
34
|
-
const { authTag, content, initialisationVector } = prepared.encrypt(data, { aad });
|
|
35
|
-
const unprotectedHeader = (0, header_1.mapCoseHeader)((0, token_header_1.mapTokenHeader)({
|
|
36
|
-
...(options.header ?? {}),
|
|
37
|
-
initialisationVector,
|
|
38
|
-
objectId,
|
|
39
|
-
}), target);
|
|
40
|
-
const ciphertext = Buffer.concat([content, authTag]);
|
|
41
|
-
const recipientHeader = (0, header_1.mapCoseHeader)((0, token_header_1.mapTokenHeader)({
|
|
42
|
-
algorithm: this.kryptos.algorithm,
|
|
43
|
-
keyId: this.kryptos.id,
|
|
44
|
-
publicEncryptionJwk: prepared.headerParams.publicEncryptionJwk,
|
|
45
|
-
}), target);
|
|
46
|
-
const recipientPublicKey = prepared.publicEncryptionKey ?? null;
|
|
47
|
-
const recipients = [[(0, cbor_1.encode)(new Map()), recipientHeader, recipientPublicKey]];
|
|
48
|
-
const buffer = (0, cbor_1.encode)([protectedCbor, unprotectedHeader, ciphertext, recipients]);
|
|
49
|
-
const token = buffer.toString("base64url");
|
|
50
|
-
this.logger.debug("Token encrypted", { token });
|
|
51
|
-
return { buffer, token };
|
|
52
|
-
}
|
|
53
|
-
decrypt(token) {
|
|
54
|
-
const kit = new aes_1.AesKit({ encryption: this.encryption, kryptos: this.kryptos });
|
|
55
|
-
this.logger.debug("Decrypting token", { token });
|
|
56
|
-
const decoded = CweKit.decode(token);
|
|
57
|
-
if (this.encryption !== decoded.protected.alg) {
|
|
58
|
-
throw new errors_1.CoseEncryptError("Invalid content encryption", {
|
|
59
|
-
debug: {
|
|
60
|
-
expect: this.encryption,
|
|
61
|
-
actual: decoded.protected.alg,
|
|
62
|
-
},
|
|
63
|
-
});
|
|
64
|
-
}
|
|
65
|
-
if (this.kryptos.algorithm !== decoded.recipient.unprotected.alg) {
|
|
66
|
-
throw new errors_1.CoseEncryptError("Invalid key management algorithm", {
|
|
67
|
-
debug: {
|
|
68
|
-
expect: this.kryptos.algorithm,
|
|
69
|
-
actual: decoded.recipient.unprotected.alg,
|
|
70
|
-
},
|
|
71
|
-
});
|
|
72
|
-
}
|
|
73
|
-
const initialisationVector = decoded.unprotected.iv;
|
|
74
|
-
const publicEncryptionJwk = decoded.recipient.unprotected.epk;
|
|
75
|
-
const publicEncryptionKey = decoded.recipient.publicEncryptionKey;
|
|
76
|
-
if (!initialisationVector) {
|
|
77
|
-
throw new errors_1.CoseEncryptError("Missing iv");
|
|
78
|
-
}
|
|
79
|
-
const header = (0, token_header_1.parseTokenHeader)({
|
|
80
|
-
...decoded.protected,
|
|
81
|
-
epk: decoded.recipient.unprotected.epk,
|
|
82
|
-
kid: decoded.recipient.unprotected.kid,
|
|
83
|
-
oid: decoded.unprotected.oid,
|
|
84
|
-
});
|
|
85
|
-
if (header.critical?.length) {
|
|
86
|
-
for (const param of header.critical) {
|
|
87
|
-
throw new errors_1.CoseEncryptError(`Unsupported critical header parameter: ${param}`);
|
|
88
|
-
}
|
|
89
|
-
}
|
|
90
|
-
const aad = decoded.protectedCbor;
|
|
91
|
-
const payload = kit.decrypt({
|
|
92
|
-
authTag: decoded.authTag,
|
|
93
|
-
content: decoded.content,
|
|
94
|
-
contentType: decoded.protected.cty ?? "text/plain",
|
|
95
|
-
encryption: decoded.protected.alg,
|
|
96
|
-
initialisationVector,
|
|
97
|
-
publicEncryptionJwk,
|
|
98
|
-
publicEncryptionKey,
|
|
99
|
-
}, { aad });
|
|
100
|
-
this.logger.debug("Token decrypted");
|
|
101
|
-
return {
|
|
102
|
-
decoded,
|
|
103
|
-
header,
|
|
104
|
-
payload,
|
|
105
|
-
token: (0, is_1.isString)(token) ? token : token.toString("base64url"),
|
|
106
|
-
};
|
|
107
|
-
}
|
|
108
|
-
static isCwe(token) {
|
|
109
|
-
try {
|
|
110
|
-
const decode = CweKit.decode(token);
|
|
111
|
-
return decode.protected.typ === "application/cose; cose-type=cose-encrypt";
|
|
112
|
-
}
|
|
113
|
-
catch {
|
|
114
|
-
return false;
|
|
115
|
-
}
|
|
116
|
-
}
|
|
117
|
-
static decode(token) {
|
|
118
|
-
const [protectedCbor, unprotectedCose, ciphertext, recipients] = (0, cbor_1.decode)((0, is_1.isBuffer)(token) ? token : Buffer.from(token, "base64url"));
|
|
119
|
-
const protectedDict = (0, header_1.decodeCoseHeader)((0, cbor_1.decode)(protectedCbor));
|
|
120
|
-
const unprotectedDict = (0, header_1.decodeCoseHeader)(unprotectedCose);
|
|
121
|
-
const [recipient] = recipients;
|
|
122
|
-
const [_, recipientHeader, publicEncryptionKey] = recipient;
|
|
123
|
-
const recipientDict = (0, header_1.decodeCoseHeader)(recipientHeader);
|
|
124
|
-
const length = (0, auth_tag_length_1.authTagLength)(protectedDict.alg);
|
|
125
|
-
const authTag = ciphertext.slice(-length);
|
|
126
|
-
const content = ciphertext.slice(0, -length);
|
|
127
|
-
return {
|
|
128
|
-
protected: protectedDict,
|
|
129
|
-
protectedCbor: Buffer.isBuffer(protectedCbor)
|
|
130
|
-
? protectedCbor
|
|
131
|
-
: Buffer.from(protectedCbor),
|
|
132
|
-
unprotected: unprotectedDict,
|
|
133
|
-
recipient: {
|
|
134
|
-
unprotected: recipientDict,
|
|
135
|
-
initialisationVector: recipientDict.iv,
|
|
136
|
-
publicEncryptionKey,
|
|
137
|
-
},
|
|
138
|
-
initialisationVector: unprotectedDict.iv,
|
|
139
|
-
content,
|
|
140
|
-
authTag,
|
|
141
|
-
};
|
|
142
|
-
}
|
|
143
|
-
contentType(input) {
|
|
144
|
-
if ((0, is_1.isBuffer)(input)) {
|
|
145
|
-
return "application/octet-stream";
|
|
146
|
-
}
|
|
147
|
-
return "text/plain";
|
|
148
|
-
}
|
|
149
|
-
}
|
|
150
|
-
exports.CweKit = CweKit;
|
|
151
|
-
//# sourceMappingURL=CweKit.js.map
|
|
@@ -1 +0,0 @@
|
|
|
1
|
-
{"version":3,"file":"CweKit.js","sourceRoot":"","sources":["../../src/classes/CweKit.ts"],"names":[],"mappings":";;;AAAA,sCAA2E;AAC3E,oCAAiD;AAGjD,+BAAsC;AACtC,mCAAqC;AACrC,sCAA6C;AAY7C,qEAAgE;AAChE,wDAA8E;AAC9E,+DAAgF;AAEhF,MAAa,MAAM;IACA,UAAU,CAAoB;IAC9B,MAAM,CAAU;IAChB,OAAO,CAAW;IAEnC,YAAmB,OAAsB;QACvC,IAAI,CAAC,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,gBAAgB,CAAC,CAAC,CAAC;QACvD,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC;QAC/B,IAAI,CAAC,UAAU,GAAG,OAAO,CAAC,UAAU,IAAI,OAAO,CAAC,OAAO,CAAC,UAAU,IAAI,SAAS,CAAC;IAClF,CAAC;IAEM,OAAO,CAAC,IAAgB,EAAE,UAA6B,EAAE;QAC9D,MAAM,GAAG,GAAG,IAAI,YAAM,CAAC,EAAE,UAAU,EAAE,IAAI,CAAC,UAAU,EAAE,OAAO,EAAE,IAAI,CAAC,OAAO,EAAE,CAAC,CAAC;QAE/E,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,kBAAkB,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;QAEnD,MAAM,QAAQ,GAAG,OAAO,CAAC,QAAQ,IAAI,IAAA,oBAAW,EAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;QAC3E,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,IAAI,UAAU,CAAC;QAG5C,MAAM,QAAQ,GAAG,GAAG,CAAC,iBAAiB,EAAE,CAAC;QAIzC,MAAM,eAAe,GAAG,IAAA,sBAAa,EACnC,IAAA,6BAAc,EAAC;YACb,SAAS,EAAE,IAAI,CAAC,UAAkC;YAClD,WAAW,EAAE,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC;YACnC,UAAU,EAAE,0CAA0C;SACvD,CAAC,EACF,MAAM,CACP,CAAC;QACF,MAAM,aAAa,GAAG,IAAA,aAAM,EAAC,eAAe,CAAC,CAAC;QAG9C,MAAM,GAAG,GAAG,aAAa,CAAC;QAG1B,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,oBAAoB,EAAE,GAAG,QAAQ,CAAC,OAAO,CAAC,IAAI,EAAE,EAAE,GAAG,EAAE,CAAC,CAAC;QAGnF,MAAM,iBAAiB,GAAG,IAAA,sBAAa,EACrC,IAAA,6BAAc,EAAC;YACb,GAAG,CAAC,OAAO,CAAC,MAAM,IAAI,EAAE,CAAC;YACzB,oBAAoB;YACpB,QAAQ;SACT,CAAC,EACF,MAAM,CACP,CAAC;QAEF,MAAM,UAAU,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC;QAGrD,MAAM,eAAe,GAAG,IAAA,sBAAa,EACnC,IAAA,6BAAc,EAAC;YACb,SAAS,EAAE,IAAI,CAAC,OAAO,CAAC,SAAS;YACjC,KAAK,EAAE,IAAI,CAAC,OAAO,CAAC,EAAE;YACtB,mBAAmB,EAAE,QAAQ,CAAC,YAAY,CAAC,mBAAmB;SAC/D,CAAC,EACF,MAAM,CACP,CAAC;QACF,MAAM,kBAAkB,GAAG,QAAQ,CAAC,mBAAmB,IAAI,IAAI,CAAC;QAChE,MAAM,UAAU,GAAG,CAAC,CAAC,IAAA,aAAM,EAAC,IAAI,GAAG,EAAE,CAAC,EAAE,eAAe,EAAE,kBAAkB,CAAC,CAAC,CAAC;QAE9E,MAAM,MAAM,GAAG,IAAA,aAAM,EAAC,CAAC,aAAa,EAAE,iBAAiB,EAAE,UAAU,EAAE,UAAU,CAAC,CAAC,CAAC;QAClF,MAAM,KAAK,GAAG,MAAM,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;QAE3C,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,iBAAiB,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC;QAEhD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC;IAC3B,CAAC;IAEM,OAAO,CAAgC,KAAiB;QAC7D,MAAM,GAAG,GAAG,IAAI,YAAM,CAAC,EAAE,UAAU,EAAE,IAAI,CAAC,UAAU,EAAE,OAAO,EAAE,IAAI,CAAC,OAAO,EAAE,CAAC,CAAC;QAE/E,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,kBAAkB,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC;QAEjD,MAAM,OAAO,GAAG,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QAGrC,IAAI,IAAI,CAAC,UAAU,KAAK,OAAO,CAAC,SAAS,CAAC,GAAG,EAAE,CAAC;YAC9C,MAAM,IAAI,yBAAgB,CAAC,4BAA4B,EAAE;gBACvD,KAAK,EAAE;oBACL,MAAM,EAAE,IAAI,CAAC,UAAU;oBACvB,MAAM,EAAE,OAAO,CAAC,SAAS,CAAC,GAAG;iBAC9B;aACF,CAAC,CAAC;QACL,CAAC;QAGD,IAAI,IAAI,CAAC,OAAO,CAAC,SAAS,KAAK,OAAO,CAAC,SAAS,CAAC,WAAW,CAAC,GAAG,EAAE,CAAC;YACjE,MAAM,IAAI,yBAAgB,CAAC,kCAAkC,EAAE;gBAC7D,KAAK,EAAE;oBACL,MAAM,EAAE,IAAI,CAAC,OAAO,CAAC,SAAS;oBAC9B,MAAM,EAAE,OAAO,CAAC,SAAS,CAAC,WAAW,CAAC,GAAG;iBAC1C;aACF,CAAC,CAAC;QACL,CAAC;QAED,MAAM,oBAAoB,GAAG,OAAO,CAAC,WAAW,CAAC,EAAE,CAAC;QACpD,MAAM,mBAAmB,GAAG,OAAO,CAAC,SAAS,CAAC,WAAW,CAAC,GAAG,CAAC;QAC9D,MAAM,mBAAmB,GAAG,OAAO,CAAC,SAAS,CAAC,mBAAmB,CAAC;QAElE,IAAI,CAAC,oBAAoB,EAAE,CAAC;YAC1B,MAAM,IAAI,yBAAgB,CAAC,YAAY,CAAC,CAAC;QAC3C,CAAC;QAID,MAAM,MAAM,GAAG,IAAA,+BAAgB,EAAC;YAC9B,GAAI,OAAO,CAAC,SAAiB;YAC7B,GAAG,EAAE,OAAO,CAAC,SAAS,CAAC,WAAW,CAAC,GAAG;YACtC,GAAG,EAAE,OAAO,CAAC,SAAS,CAAC,WAAW,CAAC,GAAG;YACtC,GAAG,EAAE,OAAO,CAAC,WAAW,CAAC,GAAG;SAC7B,CAAkC,CAAC;QAGpC,IAAI,MAAM,CAAC,QAAQ,EAAE,MAAM,EAAE,CAAC;YAC5B,KAAK,MAAM,KAAK,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;gBACpC,MAAM,IAAI,yBAAgB,CAAC,0CAA0C,KAAK,EAAE,CAAC,CAAC;YAChF,CAAC;QACH,CAAC;QAGD,MAAM,GAAG,GAAG,OAAO,CAAC,aAAa,CAAC;QAGlC,MAAM,OAAO,GAAG,GAAG,CAAC,OAAO,CACzB;YACE,OAAO,EAAE,OAAO,CAAC,OAAO;YACxB,OAAO,EAAE,OAAO,CAAC,OAAO;YACxB,WAAW,EAAG,OAAO,CAAC,SAAS,CAAC,GAAsB,IAAI,YAAY;YACtE,UAAU,EAAE,OAAO,CAAC,SAAS,CAAC,GAAG;YACjC,oBAAoB;YACpB,mBAAmB;YACnB,mBAAmB;SACU,EAC/B,EAAE,GAAG,EAAE,CACR,CAAC;QAEF,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC;QAErC,OAAO;YACL,OAAO;YACP,MAAM;YACN,OAAO;YACP,KAAK,EAAE,IAAA,aAAQ,EAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,WAAW,CAAC;SAC7D,CAAC;IACJ,CAAC;IAIM,MAAM,CAAC,KAAK,CAAC,KAAsB;QACxC,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;YACpC,OAAO,MAAM,CAAC,SAAS,CAAC,GAAG,KAAK,0CAA0C,CAAC;QAC7E,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;IAEM,MAAM,CAAC,MAAM,CAAC,KAAiB;QACpC,MAAM,CAAC,aAAa,EAAE,eAAe,EAAE,UAAU,EAAE,UAAU,CAAC,GAAG,IAAA,aAAM,EACrE,IAAA,aAAQ,EAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,EAAE,WAAW,CAAC,CAC1D,CAAC;QAEF,MAAM,aAAa,GAAG,IAAA,yBAAgB,EAAC,IAAA,aAAM,EAAC,aAAa,CAAC,CAAC,CAAC;QAC9D,MAAM,eAAe,GAAG,IAAA,yBAAgB,EAAC,eAAe,CAAC,CAAC;QAE1D,MAAM,CAAC,SAAS,CAAC,GAAG,UAAU,CAAC;QAC/B,MAAM,CAAC,CAAC,EAAE,eAAe,EAAE,mBAAmB,CAAC,GAAG,SAAS,CAAC;QAC5D,MAAM,aAAa,GAAG,IAAA,yBAAgB,EAAC,eAAe,CAAC,CAAC;QAGxD,MAAM,MAAM,GAAG,IAAA,+BAAa,EAAC,aAAa,CAAC,GAAwB,CAAC,CAAC;QACrE,MAAM,OAAO,GAAG,UAAU,CAAC,KAAK,CAAC,CAAC,MAAM,CAAC,CAAC;QAC1C,MAAM,OAAO,GAAG,UAAU,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,MAAM,CAAC,CAAC;QAE7C,OAAO;YACL,SAAS,EAAE,aAAoB;YAC/B,aAAa,EAAE,MAAM,CAAC,QAAQ,CAAC,aAAa,CAAC;gBAC3C,CAAC,CAAC,aAAa;gBACf,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,aAAa,CAAC;YAC9B,WAAW,EAAE,eAAsB;YACnC,SAAS,EAAE;gBACT,WAAW,EAAE,aAAoB;gBACjC,oBAAoB,EAAE,aAAa,CAAC,EAAE;gBACtC,mBAAmB;aACpB;YACD,oBAAoB,EAAE,eAAe,CAAC,EAAG;YACzC,OAAO;YACP,OAAO;SACR,CAAC;IACJ,CAAC;IAIO,WAAW,CAAC,KAAiB;QACnC,IAAI,IAAA,aAAQ,EAAC,KAAK,CAAC,EAAE,CAAC;YACpB,OAAO,0BAA0B,CAAC;QACpC,CAAC;QACD,OAAO,YAAY,CAAC;IACtB,CAAC;CACF;AA3MD,wBA2MC"}
|
package/dist/classes/CwsKit.d.ts
DELETED
|
@@ -1,13 +0,0 @@
|
|
|
1
|
-
import { ICwsKit } from "../interfaces";
|
|
2
|
-
import { CwsContent, CwsKitOptions, DecodedCws, ParsedCws, SignCwsOptions, SignedCws } from "../types";
|
|
3
|
-
export declare class CwsKit implements ICwsKit {
|
|
4
|
-
private readonly logger;
|
|
5
|
-
private readonly kryptos;
|
|
6
|
-
constructor(options: CwsKitOptions);
|
|
7
|
-
sign(data: CwsContent, options?: SignCwsOptions): SignedCws;
|
|
8
|
-
verify<T extends CwsContent>(token: CwsContent): ParsedCws<T>;
|
|
9
|
-
static isCws(token: Buffer | string): boolean;
|
|
10
|
-
static decode<T extends CwsContent>(token: CwsContent): DecodedCws<T>;
|
|
11
|
-
static parse<T extends CwsContent>(token: CwsContent): ParsedCws<T>;
|
|
12
|
-
}
|
|
13
|
-
//# sourceMappingURL=CwsKit.d.ts.map
|
|
@@ -1 +0,0 @@
|
|
|
1
|
-
{"version":3,"file":"CwsKit.d.ts","sourceRoot":"","sources":["../../src/classes/CwsKit.ts"],"names":[],"mappings":"AAMA,OAAO,EAAE,OAAO,EAAE,MAAM,eAAe,CAAC;AACxC,OAAO,EACL,UAAU,EACV,aAAa,EACb,UAAU,EACV,SAAS,EAET,cAAc,EACd,SAAS,EACV,MAAM,UAAU,CAAC;AAMlB,qBAAa,MAAO,YAAW,OAAO;IACpC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAU;IACjC,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAW;gBAEhB,OAAO,EAAE,aAAa;IAKlC,IAAI,CAAC,IAAI,EAAE,UAAU,EAAE,OAAO,GAAE,cAAmB,GAAG,SAAS;IAoD/D,MAAM,CAAC,CAAC,SAAS,UAAU,EAAE,KAAK,EAAE,UAAU,GAAG,SAAS,CAAC,CAAC,CAAC;WAmEtD,KAAK,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,GAAG,OAAO;WAStC,MAAM,CAAC,CAAC,SAAS,UAAU,EAAE,KAAK,EAAE,UAAU,GAAG,UAAU,CAAC,CAAC,CAAC;WAsB9D,KAAK,CAAC,CAAC,SAAS,UAAU,EAAE,KAAK,EAAE,UAAU,GAAG,SAAS,CAAC,CAAC,CAAC;CAU3E"}
|
package/dist/classes/CwsKit.js
DELETED
|
@@ -1,139 +0,0 @@
|
|
|
1
|
-
"use strict";
|
|
2
|
-
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
-
exports.CwsKit = void 0;
|
|
4
|
-
const is_1 = require("@lindorm/is");
|
|
5
|
-
const cbor_1 = require("cbor");
|
|
6
|
-
const crypto_1 = require("crypto");
|
|
7
|
-
const errors_1 = require("../errors");
|
|
8
|
-
const cose_sign_token_1 = require("#internal/utils/cose-sign-token");
|
|
9
|
-
const cose_signature_1 = require("#internal/utils/cose-signature");
|
|
10
|
-
const header_1 = require("#internal/utils/cose/header");
|
|
11
|
-
const token_header_1 = require("#internal/utils/token-header");
|
|
12
|
-
class CwsKit {
|
|
13
|
-
logger;
|
|
14
|
-
kryptos;
|
|
15
|
-
constructor(options) {
|
|
16
|
-
this.logger = options.logger.child(["CoseSignKit"]);
|
|
17
|
-
this.kryptos = options.kryptos;
|
|
18
|
-
}
|
|
19
|
-
sign(data, options = {}) {
|
|
20
|
-
const objectId = options.objectId ?? (0, crypto_1.randomBytes)(20).toString("base64url");
|
|
21
|
-
this.logger.debug("Signing token", { options });
|
|
22
|
-
const target = options.target ?? "internal";
|
|
23
|
-
const protectedHeader = (0, header_1.mapCoseHeader)((0, token_header_1.mapTokenHeader)({
|
|
24
|
-
algorithm: this.kryptos.algorithm,
|
|
25
|
-
contentType: options.contentType
|
|
26
|
-
? options.contentType
|
|
27
|
-
: (0, is_1.isString)(data)
|
|
28
|
-
? "text/plain; charset=utf-8"
|
|
29
|
-
: "application/octet-stream",
|
|
30
|
-
headerType: "application/cose; cose-type=cose-sign",
|
|
31
|
-
}), target);
|
|
32
|
-
const protectedCbor = (0, cbor_1.encode)(protectedHeader);
|
|
33
|
-
const unprotectedHeader = (0, header_1.mapCoseHeader)((0, token_header_1.mapTokenHeader)({
|
|
34
|
-
...(options.header ?? {}),
|
|
35
|
-
keyId: this.kryptos.id,
|
|
36
|
-
objectId,
|
|
37
|
-
}), target);
|
|
38
|
-
const payloadBuffer = (0, is_1.isBuffer)(data) ? data : Buffer.from(data, "utf-8");
|
|
39
|
-
const payloadCbor = (0, cbor_1.encode)(payloadBuffer);
|
|
40
|
-
const signature = (0, cose_signature_1.createCoseSignature)({
|
|
41
|
-
kryptos: this.kryptos,
|
|
42
|
-
payload: payloadCbor,
|
|
43
|
-
protectedHeader: protectedCbor,
|
|
44
|
-
});
|
|
45
|
-
const buffer = (0, cose_sign_token_1.createCoseSignToken)({
|
|
46
|
-
payload: payloadCbor,
|
|
47
|
-
protectedHeader: protectedCbor,
|
|
48
|
-
unprotectedHeader,
|
|
49
|
-
signature,
|
|
50
|
-
});
|
|
51
|
-
const token = buffer.toString("base64url");
|
|
52
|
-
this.logger.debug("Token signed", { token });
|
|
53
|
-
return { buffer, objectId, token };
|
|
54
|
-
}
|
|
55
|
-
verify(token) {
|
|
56
|
-
this.logger.debug("Verifying token", { token });
|
|
57
|
-
const [protectedCbor, unprotectedCose, payloadCbor, signature] = (0, cbor_1.decode)((0, is_1.isBuffer)(token) ? token : Buffer.from(token, "base64url"));
|
|
58
|
-
const protectedDict = (0, header_1.decodeCoseHeader)((0, cbor_1.decode)(protectedCbor));
|
|
59
|
-
if (this.kryptos.algorithm !== protectedDict.alg) {
|
|
60
|
-
throw new errors_1.CoseSignError("Invalid token", {
|
|
61
|
-
data: { algorithm: protectedDict.alg },
|
|
62
|
-
debug: { expected: this.kryptos.algorithm },
|
|
63
|
-
});
|
|
64
|
-
}
|
|
65
|
-
const verified = (0, cose_signature_1.verifyCoseSignature)({
|
|
66
|
-
kryptos: this.kryptos,
|
|
67
|
-
payload: payloadCbor,
|
|
68
|
-
protectedHeader: protectedCbor,
|
|
69
|
-
signature,
|
|
70
|
-
});
|
|
71
|
-
if (!verified) {
|
|
72
|
-
throw new errors_1.CoseSignError("Invalid token", {
|
|
73
|
-
data: { verified, token },
|
|
74
|
-
});
|
|
75
|
-
}
|
|
76
|
-
const unprotectedDict = (0, header_1.decodeCoseHeader)(unprotectedCose);
|
|
77
|
-
const payloadBuffer = (0, cbor_1.decode)(payloadCbor);
|
|
78
|
-
const decoded = {
|
|
79
|
-
protected: protectedDict,
|
|
80
|
-
unprotected: unprotectedDict,
|
|
81
|
-
payload: payloadBuffer,
|
|
82
|
-
signature: signature,
|
|
83
|
-
};
|
|
84
|
-
const header = (0, token_header_1.parseTokenHeader)({
|
|
85
|
-
...protectedDict,
|
|
86
|
-
...unprotectedDict,
|
|
87
|
-
});
|
|
88
|
-
if (header.critical?.length) {
|
|
89
|
-
for (const param of header.critical) {
|
|
90
|
-
throw new errors_1.CoseSignError(`Unsupported critical header parameter: ${param}`);
|
|
91
|
-
}
|
|
92
|
-
}
|
|
93
|
-
const payload = header.contentType === "text/plain; charset=utf-8"
|
|
94
|
-
? payloadBuffer.toString("utf-8")
|
|
95
|
-
: payloadBuffer;
|
|
96
|
-
this.logger.debug("Token verified");
|
|
97
|
-
return {
|
|
98
|
-
decoded,
|
|
99
|
-
header,
|
|
100
|
-
payload,
|
|
101
|
-
token: (0, is_1.isBuffer)(token) ? token.toString("base64url") : token,
|
|
102
|
-
};
|
|
103
|
-
}
|
|
104
|
-
static isCws(token) {
|
|
105
|
-
try {
|
|
106
|
-
const decode = CwsKit.decode(token);
|
|
107
|
-
return decode.protected.typ === "application/cose; cose-type=cose-sign";
|
|
108
|
-
}
|
|
109
|
-
catch {
|
|
110
|
-
return false;
|
|
111
|
-
}
|
|
112
|
-
}
|
|
113
|
-
static decode(token) {
|
|
114
|
-
const [protectedCbor, unprotectedHeader, payloadCbor, signature] = (0, cbor_1.decode)((0, is_1.isBuffer)(token) ? token : Buffer.from(token, "base64url"));
|
|
115
|
-
const protectedDict = (0, header_1.decodeCoseHeader)((0, cbor_1.decode)(protectedCbor));
|
|
116
|
-
const unprotectedDict = (0, header_1.decodeCoseHeader)(unprotectedHeader);
|
|
117
|
-
const payloadBuffer = (0, cbor_1.decode)(payloadCbor);
|
|
118
|
-
const payload = protectedDict.cty === "text/plain; charset=utf-8"
|
|
119
|
-
? payloadBuffer.toString("utf-8")
|
|
120
|
-
: payloadBuffer;
|
|
121
|
-
return {
|
|
122
|
-
protected: protectedDict,
|
|
123
|
-
unprotected: unprotectedDict,
|
|
124
|
-
payload,
|
|
125
|
-
signature: signature.toString("base64url"),
|
|
126
|
-
};
|
|
127
|
-
}
|
|
128
|
-
static parse(token) {
|
|
129
|
-
const decoded = CwsKit.decode(token);
|
|
130
|
-
return {
|
|
131
|
-
decoded,
|
|
132
|
-
header: (0, token_header_1.parseTokenHeader)({ ...decoded.protected, ...decoded.unprotected }),
|
|
133
|
-
payload: decoded.payload,
|
|
134
|
-
token: (0, is_1.isBuffer)(token) ? token.toString("base64url") : token,
|
|
135
|
-
};
|
|
136
|
-
}
|
|
137
|
-
}
|
|
138
|
-
exports.CwsKit = CwsKit;
|
|
139
|
-
//# sourceMappingURL=CwsKit.js.map
|
|
@@ -1 +0,0 @@
|
|
|
1
|
-
{"version":3,"file":"CwsKit.js","sourceRoot":"","sources":["../../src/classes/CwsKit.ts"],"names":[],"mappings":";;;AAAA,oCAAiD;AAGjD,+BAAsC;AACtC,mCAAqC;AACrC,sCAA0C;AAW1C,qEAAsE;AACtE,mEAA0F;AAC1F,wDAA8E;AAC9E,+DAAgF;AAEhF,MAAa,MAAM;IACA,MAAM,CAAU;IAChB,OAAO,CAAW;IAEnC,YAAmB,OAAsB;QACvC,IAAI,CAAC,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,aAAa,CAAC,CAAC,CAAC;QACpD,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC;IACjC,CAAC;IAEM,IAAI,CAAC,IAAgB,EAAE,UAA0B,EAAE;QACxD,MAAM,QAAQ,GAAG,OAAO,CAAC,QAAQ,IAAI,IAAA,oBAAW,EAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;QAE3E,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,eAAe,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;QAEhD,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,IAAI,UAAU,CAAC;QAE5C,MAAM,eAAe,GAAG,IAAA,sBAAa,EACnC,IAAA,6BAAc,EAAC;YACb,SAAS,EAAE,IAAI,CAAC,OAAO,CAAC,SAAS;YACjC,WAAW,EAAE,OAAO,CAAC,WAAW;gBAC9B,CAAC,CAAC,OAAO,CAAC,WAAW;gBACrB,CAAC,CAAC,IAAA,aAAQ,EAAC,IAAI,CAAC;oBACd,CAAC,CAAC,2BAA2B;oBAC7B,CAAC,CAAC,0BAA0B;YAChC,UAAU,EAAE,uCAAuC;SACpD,CAAC,EACF,MAAM,CACP,CAAC;QACF,MAAM,aAAa,GAAG,IAAA,aAAM,EAAC,eAAe,CAAC,CAAC;QAE9C,MAAM,iBAAiB,GAAG,IAAA,sBAAa,EACrC,IAAA,6BAAc,EAAC;YACb,GAAG,CAAC,OAAO,CAAC,MAAM,IAAI,EAAE,CAAC;YACzB,KAAK,EAAE,IAAI,CAAC,OAAO,CAAC,EAAE;YACtB,QAAQ;SACT,CAAC,EACF,MAAM,CACP,CAAC;QAEF,MAAM,aAAa,GAAG,IAAA,aAAQ,EAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;QACzE,MAAM,WAAW,GAAG,IAAA,aAAM,EAAC,aAAa,CAAC,CAAC;QAE1C,MAAM,SAAS,GAAG,IAAA,oCAAmB,EAAC;YACpC,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,OAAO,EAAE,WAAW;YACpB,eAAe,EAAE,aAAa;SAC/B,CAAC,CAAC;QAEH,MAAM,MAAM,GAAG,IAAA,qCAAmB,EAAC;YACjC,OAAO,EAAE,WAAW;YACpB,eAAe,EAAE,aAAa;YAC9B,iBAAiB;YACjB,SAAS;SACV,CAAC,CAAC;QACH,MAAM,KAAK,GAAG,MAAM,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;QAE3C,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,cAAc,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC;QAE7C,OAAO,EAAE,MAAM,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC;IACrC,CAAC;IAEM,MAAM,CAAuB,KAAiB;QACnD,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,iBAAiB,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC;QAEhD,MAAM,CAAC,aAAa,EAAE,eAAe,EAAE,WAAW,EAAE,SAAS,CAAC,GAAG,IAAA,aAAM,EACrE,IAAA,aAAQ,EAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,EAAE,WAAW,CAAC,CAC1D,CAAC;QACF,MAAM,aAAa,GAAG,IAAA,yBAAgB,EAAC,IAAA,aAAM,EAAC,aAAa,CAAC,CAAC,CAAC;QAE9D,IAAI,IAAI,CAAC,OAAO,CAAC,SAAS,KAAK,aAAa,CAAC,GAAG,EAAE,CAAC;YACjD,MAAM,IAAI,sBAAa,CAAC,eAAe,EAAE;gBACvC,IAAI,EAAE,EAAE,SAAS,EAAE,aAAa,CAAC,GAAG,EAAE;gBACtC,KAAK,EAAE,EAAE,QAAQ,EAAE,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE;aAC5C,CAAC,CAAC;QACL,CAAC;QAED,MAAM,QAAQ,GAAG,IAAA,oCAAmB,EAAC;YACnC,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,OAAO,EAAE,WAAW;YACpB,eAAe,EAAE,aAAa;YAC9B,SAAS;SACV,CAAC,CAAC;QAEH,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,MAAM,IAAI,sBAAa,CAAC,eAAe,EAAE;gBACvC,IAAI,EAAE,EAAE,QAAQ,EAAE,KAAK,EAAE;aAC1B,CAAC,CAAC;QACL,CAAC;QAED,MAAM,eAAe,GAAG,IAAA,yBAAgB,EAAC,eAAe,CAAC,CAAC;QAC1D,MAAM,aAAa,GAAG,IAAA,aAAM,EAAC,WAAW,CAAC,CAAC;QAE1C,MAAM,OAAO,GAAkB;YAC7B,SAAS,EAAE,aAAoB;YAC/B,WAAW,EAAE,eAAsB;YACnC,OAAO,EAAE,aAAa;YACtB,SAAS,EAAE,SAAS;SACrB,CAAC;QAEF,MAAM,MAAM,GAAG,IAAA,+BAAgB,EAAkB;YAC/C,GAAG,aAAa;YAChB,GAAG,eAAe;SACZ,CAAC,CAAC;QAGV,IAAI,MAAM,CAAC,QAAQ,EAAE,MAAM,EAAE,CAAC;YAC5B,KAAK,MAAM,KAAK,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;gBACpC,MAAM,IAAI,sBAAa,CAAC,0CAA0C,KAAK,EAAE,CAAC,CAAC;YAC7E,CAAC;QACH,CAAC;QAED,MAAM,OAAO,GACX,MAAM,CAAC,WAAW,KAAK,2BAA2B;YAChD,CAAC,CAAE,aAAa,CAAC,QAAQ,CAAC,OAAO,CAAO;YACxC,CAAC,CAAC,aAAa,CAAC;QAEpB,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC;QAEpC,OAAO;YACL,OAAO;YACP,MAAM;YACN,OAAO;YACP,KAAK,EAAE,IAAA,aAAQ,EAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,KAAK;SAC7D,CAAC;IACJ,CAAC;IAIM,MAAM,CAAC,KAAK,CAAC,KAAsB;QACxC,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;YACpC,OAAO,MAAM,CAAC,SAAS,CAAC,GAAG,KAAK,uCAAuC,CAAC;QAC1E,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;IAEM,MAAM,CAAC,MAAM,CAAuB,KAAiB;QAC1D,MAAM,CAAC,aAAa,EAAE,iBAAiB,EAAE,WAAW,EAAE,SAAS,CAAC,GAAG,IAAA,aAAM,EACvE,IAAA,aAAQ,EAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,EAAE,WAAW,CAAC,CAC1D,CAAC;QAEF,MAAM,aAAa,GAAG,IAAA,yBAAgB,EAAC,IAAA,aAAM,EAAC,aAAa,CAAC,CAAC,CAAC;QAC9D,MAAM,eAAe,GAAG,IAAA,yBAAgB,EAAC,iBAAiB,CAAC,CAAC;QAE5D,MAAM,aAAa,GAAG,IAAA,aAAM,EAAC,WAAW,CAAC,CAAC;QAC1C,MAAM,OAAO,GACX,aAAa,CAAC,GAAG,KAAK,2BAA2B;YAC/C,CAAC,CAAE,aAAa,CAAC,QAAQ,CAAC,OAAO,CAAO;YACxC,CAAC,CAAC,aAAa,CAAC;QAEpB,OAAO;YACL,SAAS,EAAE,aAAoB;YAC/B,WAAW,EAAE,eAAsB;YACnC,OAAO;YACP,SAAS,EAAE,SAAS,CAAC,QAAQ,CAAC,WAAW,CAAC;SAC3C,CAAC;IACJ,CAAC;IAEM,MAAM,CAAC,KAAK,CAAuB,KAAiB;QACzD,MAAM,OAAO,GAAG,MAAM,CAAC,MAAM,CAAI,KAAK,CAAC,CAAC;QAExC,OAAO;YACL,OAAO;YACP,MAAM,EAAE,IAAA,+BAAgB,EAAC,EAAE,GAAG,OAAO,CAAC,SAAS,EAAE,GAAG,OAAO,CAAC,WAAW,EAAS,CAAC;YACjF,OAAO,EAAE,OAAO,CAAC,OAAO;YACxB,KAAK,EAAE,IAAA,aAAQ,EAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,KAAK;SAC7D,CAAC;IACJ,CAAC;CACF;AAzKD,wBAyKC"}
|
package/dist/classes/CwtKit.d.ts
DELETED
|
@@ -1,17 +0,0 @@
|
|
|
1
|
-
import { Dict } from "@lindorm/types";
|
|
2
|
-
import { ICwtKit } from "../interfaces";
|
|
3
|
-
import { CwtKitOptions, DecodedCwt, ParsedCwt, ParsedCwtPayload, SignCwtContent, SignCwtOptions, SignedCwt, ValidateCwtOptions, VerifyCwtOptions } from "../types";
|
|
4
|
-
export declare class CwtKit implements ICwtKit {
|
|
5
|
-
private readonly clockTolerance;
|
|
6
|
-
private readonly issuer;
|
|
7
|
-
private readonly logger;
|
|
8
|
-
private readonly kryptos;
|
|
9
|
-
constructor(options: CwtKitOptions);
|
|
10
|
-
sign<C extends Dict = Dict>(content: SignCwtContent<C>, options?: SignCwtOptions): SignedCwt;
|
|
11
|
-
verify<C extends Dict = Dict>(token: Buffer | string, verify?: VerifyCwtOptions): ParsedCwt<C>;
|
|
12
|
-
static isCwt(token: Buffer | string): boolean;
|
|
13
|
-
static decode<C extends Dict = Dict>(token: Buffer | string): DecodedCwt<C>;
|
|
14
|
-
static parse<C extends Dict = Dict>(token: Buffer | string): ParsedCwt<C>;
|
|
15
|
-
static validate<C extends Dict = Dict>(payload: ParsedCwtPayload<C>, options: ValidateCwtOptions): void;
|
|
16
|
-
}
|
|
17
|
-
//# sourceMappingURL=CwtKit.d.ts.map
|
|
@@ -1 +0,0 @@
|
|
|
1
|
-
{"version":3,"file":"CwtKit.d.ts","sourceRoot":"","sources":["../../src/classes/CwtKit.ts"],"names":[],"mappings":"AAIA,OAAO,EAAE,IAAI,EAAE,MAAM,gBAAgB,CAAC;AAItC,OAAO,EAAE,OAAO,EAAE,MAAM,eAAe,CAAC;AACxC,OAAO,EACL,aAAa,EACb,UAAU,EACV,SAAS,EACT,gBAAgB,EAChB,cAAc,EACd,cAAc,EACd,SAAS,EACT,kBAAkB,EAClB,gBAAgB,EACjB,MAAM,UAAU,CAAC;AAWlB,qBAAa,MAAO,YAAW,OAAO;IACpC,OAAO,CAAC,QAAQ,CAAC,cAAc,CAAS;IACxC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAgB;IACvC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAU;IACjC,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAW;gBAEhB,OAAO,EAAE,aAAa;IAQlC,IAAI,CAAC,CAAC,SAAS,IAAI,GAAG,IAAI,EAC/B,OAAO,EAAE,cAAc,CAAC,CAAC,CAAC,EAC1B,OAAO,GAAE,cAAmB,GAC3B,SAAS;IAmEL,MAAM,CAAC,CAAC,SAAS,IAAI,GAAG,IAAI,EACjC,KAAK,EAAE,MAAM,GAAG,MAAM,EACtB,MAAM,GAAE,gBAAqB,GAC5B,SAAS,CAAC,CAAC,CAAC;WA4ED,KAAK,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,GAAG,OAAO;WAStC,MAAM,CAAC,CAAC,SAAS,IAAI,GAAG,IAAI,EAAE,KAAK,EAAE,MAAM,GAAG,MAAM,GAAG,UAAU,CAAC,CAAC,CAAC;WAepE,KAAK,CAAC,CAAC,SAAS,IAAI,GAAG,IAAI,EAAE,KAAK,EAAE,MAAM,GAAG,MAAM,GAAG,SAAS,CAAC,CAAC,CAAC;WAWlE,QAAQ,CAAC,CAAC,SAAS,IAAI,GAAG,IAAI,EAC1C,OAAO,EAAE,gBAAgB,CAAC,CAAC,CAAC,EAC5B,OAAO,EAAE,kBAAkB,GAC1B,IAAI;CAKR"}
|
package/dist/classes/CwtKit.js
DELETED
|
@@ -1,166 +0,0 @@
|
|
|
1
|
-
"use strict";
|
|
2
|
-
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
-
exports.CwtKit = void 0;
|
|
4
|
-
const date_1 = require("@lindorm/date");
|
|
5
|
-
const is_1 = require("@lindorm/is");
|
|
6
|
-
const cbor_1 = require("cbor");
|
|
7
|
-
const crypto_1 = require("crypto");
|
|
8
|
-
const errors_1 = require("../errors");
|
|
9
|
-
const claims_1 = require("#internal/utils/cose/claims");
|
|
10
|
-
const header_1 = require("#internal/utils/cose/header");
|
|
11
|
-
const cose_sign_token_1 = require("#internal/utils/cose-sign-token");
|
|
12
|
-
const cose_signature_1 = require("#internal/utils/cose-signature");
|
|
13
|
-
const jwt_validate_1 = require("#internal/utils/jwt-validate");
|
|
14
|
-
const jwt_payload_1 = require("#internal/utils/jwt-payload");
|
|
15
|
-
const jwt_verify_1 = require("#internal/utils/jwt-verify");
|
|
16
|
-
const token_header_1 = require("#internal/utils/token-header");
|
|
17
|
-
const validate_1 = require("#internal/utils/validate");
|
|
18
|
-
class CwtKit {
|
|
19
|
-
clockTolerance;
|
|
20
|
-
issuer;
|
|
21
|
-
logger;
|
|
22
|
-
kryptos;
|
|
23
|
-
constructor(options) {
|
|
24
|
-
this.logger = options.logger.child(["CwtKit"]);
|
|
25
|
-
this.kryptos = options.kryptos;
|
|
26
|
-
this.issuer = options.issuer ?? null;
|
|
27
|
-
this.clockTolerance = options.clockTolerance ?? 0;
|
|
28
|
-
}
|
|
29
|
-
sign(content, options = {}) {
|
|
30
|
-
this.logger.debug("Signing token", { content, options });
|
|
31
|
-
if (!this.issuer) {
|
|
32
|
-
throw new errors_1.CwtError("Issuer is required to sign CWT");
|
|
33
|
-
}
|
|
34
|
-
const objectId = options.objectId ?? content.subject ?? (0, crypto_1.randomBytes)(20).toString("base64url");
|
|
35
|
-
const target = options.target ?? "internal";
|
|
36
|
-
const protectedDict = (0, header_1.mapCoseHeader)((0, token_header_1.mapTokenHeader)({
|
|
37
|
-
algorithm: this.kryptos.algorithm,
|
|
38
|
-
contentType: "application/json",
|
|
39
|
-
headerType: "application/cwt",
|
|
40
|
-
}), target);
|
|
41
|
-
const protectedCbor = (0, cbor_1.encode)(protectedDict);
|
|
42
|
-
const unprotectedDict = (0, header_1.mapCoseHeader)((0, token_header_1.mapTokenHeader)({
|
|
43
|
-
...(options.header ?? {}),
|
|
44
|
-
keyId: this.kryptos.id,
|
|
45
|
-
objectId,
|
|
46
|
-
}), target);
|
|
47
|
-
const claims = (0, jwt_payload_1.mapJwtContentToClaims)({ algorithm: this.kryptos.algorithm, issuer: this.issuer }, content, { tokenId: (0, crypto_1.randomBytes)(20).toString("base64url"), ...options });
|
|
48
|
-
const payloadDict = (0, claims_1.mapCoseClaims)({ ...claims, ...(content.claims ?? {}) }, target);
|
|
49
|
-
const payloadCbor = (0, cbor_1.encode)(payloadDict);
|
|
50
|
-
const signature = (0, cose_signature_1.createCoseSignature)({
|
|
51
|
-
kryptos: this.kryptos,
|
|
52
|
-
payload: payloadCbor,
|
|
53
|
-
protectedHeader: protectedCbor,
|
|
54
|
-
});
|
|
55
|
-
const buffer = (0, cose_sign_token_1.createCoseSignToken)({
|
|
56
|
-
payload: payloadCbor,
|
|
57
|
-
protectedHeader: protectedCbor,
|
|
58
|
-
unprotectedHeader: unprotectedDict,
|
|
59
|
-
signature,
|
|
60
|
-
});
|
|
61
|
-
const token = buffer.toString("base64url");
|
|
62
|
-
const { expiresAt, expiresIn, expiresOn } = (0, date_1.expires)(content.expires);
|
|
63
|
-
this.logger.debug("Token signed", { token });
|
|
64
|
-
return {
|
|
65
|
-
buffer,
|
|
66
|
-
expiresAt,
|
|
67
|
-
expiresIn,
|
|
68
|
-
expiresOn,
|
|
69
|
-
objectId,
|
|
70
|
-
token,
|
|
71
|
-
tokenId: claims.jti,
|
|
72
|
-
};
|
|
73
|
-
}
|
|
74
|
-
verify(token, verify = {}) {
|
|
75
|
-
this.logger.debug("Verifying token", { token, verify });
|
|
76
|
-
const [protectedCbor, unprotectedCose, payloadCbor, signature] = (0, cbor_1.decode)((0, is_1.isBuffer)(token) ? token : Buffer.from(token, "base64url"));
|
|
77
|
-
const protectedDict = (0, header_1.decodeCoseHeader)((0, cbor_1.decode)(protectedCbor));
|
|
78
|
-
const unprotectedDict = (0, header_1.decodeCoseHeader)(unprotectedCose);
|
|
79
|
-
const payloadDict = (0, claims_1.decodeCoseClaims)((0, cbor_1.decode)(payloadCbor));
|
|
80
|
-
if (this.kryptos.algorithm !== protectedDict.alg) {
|
|
81
|
-
throw new errors_1.CwtError("Invalid token", {
|
|
82
|
-
data: { algorithm: protectedDict.alg },
|
|
83
|
-
debug: { expected: this.kryptos.algorithm },
|
|
84
|
-
});
|
|
85
|
-
}
|
|
86
|
-
const verified = (0, cose_signature_1.verifyCoseSignature)({
|
|
87
|
-
kryptos: this.kryptos,
|
|
88
|
-
payload: payloadCbor,
|
|
89
|
-
protectedHeader: protectedCbor,
|
|
90
|
-
signature,
|
|
91
|
-
});
|
|
92
|
-
if (!verified) {
|
|
93
|
-
throw new errors_1.CwtError("Invalid token", {
|
|
94
|
-
data: { verified, token },
|
|
95
|
-
});
|
|
96
|
-
}
|
|
97
|
-
const predicate = (0, jwt_verify_1.createJwtVerify)(this.kryptos.algorithm, verify, this.clockTolerance);
|
|
98
|
-
const withDates = {
|
|
99
|
-
...payloadDict,
|
|
100
|
-
exp: payloadDict.exp ? new Date(payloadDict.exp * 1000) : undefined,
|
|
101
|
-
iat: payloadDict.iat ? new Date(payloadDict.iat * 1000) : undefined,
|
|
102
|
-
nbf: payloadDict.nbf ? new Date(payloadDict.nbf * 1000) : undefined,
|
|
103
|
-
auth_time: payloadDict.auth_time
|
|
104
|
-
? new Date(payloadDict.auth_time * 1000)
|
|
105
|
-
: undefined,
|
|
106
|
-
};
|
|
107
|
-
try {
|
|
108
|
-
(0, validate_1.validate)(withDates, predicate);
|
|
109
|
-
}
|
|
110
|
-
catch (err) {
|
|
111
|
-
throw new errors_1.CwtError("Invalid token", { data: err.data });
|
|
112
|
-
}
|
|
113
|
-
const decoded = {
|
|
114
|
-
protected: protectedDict,
|
|
115
|
-
unprotected: unprotectedDict,
|
|
116
|
-
payload: payloadDict,
|
|
117
|
-
signature: signature,
|
|
118
|
-
};
|
|
119
|
-
const payload = (0, jwt_payload_1.parseTokenPayload)(payloadDict);
|
|
120
|
-
this.logger.debug("Token verified");
|
|
121
|
-
return {
|
|
122
|
-
decoded,
|
|
123
|
-
header: (0, token_header_1.parseTokenHeader)({
|
|
124
|
-
...protectedDict,
|
|
125
|
-
...unprotectedDict,
|
|
126
|
-
}),
|
|
127
|
-
payload,
|
|
128
|
-
token: (0, is_1.isBuffer)(token) ? token.toString("base64url") : token,
|
|
129
|
-
};
|
|
130
|
-
}
|
|
131
|
-
static isCwt(token) {
|
|
132
|
-
try {
|
|
133
|
-
const decode = CwtKit.decode(token);
|
|
134
|
-
return decode.protected.typ === "application/cwt";
|
|
135
|
-
}
|
|
136
|
-
catch {
|
|
137
|
-
return false;
|
|
138
|
-
}
|
|
139
|
-
}
|
|
140
|
-
static decode(token) {
|
|
141
|
-
const [protectedCbor, unprotectedHeader, payloadCbor, signature] = (0, cbor_1.decode)((0, is_1.isBuffer)(token) ? token : Buffer.from(token, "base64url"));
|
|
142
|
-
const protectedCose = (0, cbor_1.decode)(protectedCbor);
|
|
143
|
-
const payloadCose = (0, cbor_1.decode)(payloadCbor);
|
|
144
|
-
return {
|
|
145
|
-
protected: (0, header_1.decodeCoseHeader)(protectedCose),
|
|
146
|
-
unprotected: (0, header_1.decodeCoseHeader)(unprotectedHeader),
|
|
147
|
-
payload: (0, claims_1.decodeCoseClaims)(payloadCose),
|
|
148
|
-
signature: signature.toString("base64url"),
|
|
149
|
-
};
|
|
150
|
-
}
|
|
151
|
-
static parse(token) {
|
|
152
|
-
const decoded = CwtKit.decode(token);
|
|
153
|
-
return {
|
|
154
|
-
decoded,
|
|
155
|
-
header: (0, token_header_1.parseTokenHeader)({ ...decoded.protected, ...decoded.unprotected }),
|
|
156
|
-
payload: (0, jwt_payload_1.parseTokenPayload)(decoded.payload),
|
|
157
|
-
token: (0, is_1.isBuffer)(token) ? token.toString("base64url") : token,
|
|
158
|
-
};
|
|
159
|
-
}
|
|
160
|
-
static validate(payload, options) {
|
|
161
|
-
const operators = (0, jwt_validate_1.createJwtValidate)(options);
|
|
162
|
-
(0, validate_1.validate)(payload, operators);
|
|
163
|
-
}
|
|
164
|
-
}
|
|
165
|
-
exports.CwtKit = CwtKit;
|
|
166
|
-
//# sourceMappingURL=CwtKit.js.map
|
|
@@ -1 +0,0 @@
|
|
|
1
|
-
{"version":3,"file":"CwtKit.js","sourceRoot":"","sources":["../../src/classes/CwtKit.ts"],"names":[],"mappings":";;;AAAA,wCAAwC;AACxC,oCAAuC;AAIvC,+BAAsC;AACtC,mCAAqC;AACrC,sCAAqC;AAarC,wDAA8E;AAC9E,wDAA8E;AAC9E,qEAAsE;AACtE,mEAA0F;AAC1F,+DAAiE;AACjE,6DAAuF;AACvF,2DAA6D;AAC7D,+DAAgF;AAChF,uDAAoD;AAEpD,MAAa,MAAM;IACA,cAAc,CAAS;IACvB,MAAM,CAAgB;IACtB,MAAM,CAAU;IAChB,OAAO,CAAW;IAEnC,YAAmB,OAAsB;QACvC,IAAI,CAAC,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC;QAC/C,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC;QAC/B,IAAI,CAAC,MAAM,GAAG,OAAO,CAAC,MAAM,IAAI,IAAI,CAAC;QAErC,IAAI,CAAC,cAAc,GAAG,OAAO,CAAC,cAAc,IAAI,CAAC,CAAC;IACpD,CAAC;IAEM,IAAI,CACT,OAA0B,EAC1B,UAA0B,EAAE;QAE5B,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,eAAe,EAAE,EAAE,OAAO,EAAE,OAAO,EAAE,CAAC,CAAC;QAEzD,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC;YACjB,MAAM,IAAI,iBAAQ,CAAC,gCAAgC,CAAC,CAAC;QACvD,CAAC;QAED,MAAM,QAAQ,GACZ,OAAO,CAAC,QAAQ,IAAI,OAAO,CAAC,OAAO,IAAI,IAAA,oBAAW,EAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;QAC/E,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,IAAI,UAAU,CAAC;QAE5C,MAAM,aAAa,GAAG,IAAA,sBAAa,EACjC,IAAA,6BAAc,EAAC;YACb,SAAS,EAAE,IAAI,CAAC,OAAO,CAAC,SAAS;YACjC,WAAW,EAAE,kBAAkB;YAC/B,UAAU,EAAE,iBAAiB;SAC9B,CAAC,EACF,MAAM,CACP,CAAC;QACF,MAAM,aAAa,GAAG,IAAA,aAAM,EAAC,aAAa,CAAC,CAAC;QAE5C,MAAM,eAAe,GAAG,IAAA,sBAAa,EACnC,IAAA,6BAAc,EAAC;YACb,GAAG,CAAC,OAAO,CAAC,MAAM,IAAI,EAAE,CAAC;YACzB,KAAK,EAAE,IAAI,CAAC,OAAO,CAAC,EAAE;YACtB,QAAQ;SACT,CAAC,EACF,MAAM,CACP,CAAC;QAEF,MAAM,MAAM,GAAG,IAAA,mCAAqB,EAClC,EAAE,SAAS,EAAE,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE,MAAM,EAAE,IAAI,CAAC,MAAM,EAAE,EAC1D,OAAO,EACP,EAAE,OAAO,EAAE,IAAA,oBAAW,EAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,EAAE,GAAG,OAAO,EAAE,CAC/D,CAAC;QACF,MAAM,WAAW,GAAG,IAAA,sBAAa,EAAC,EAAE,GAAG,MAAM,EAAE,GAAG,CAAC,OAAO,CAAC,MAAM,IAAI,EAAE,CAAC,EAAE,EAAE,MAAM,CAAC,CAAC;QACpF,MAAM,WAAW,GAAG,IAAA,aAAM,EAAC,WAAW,CAAC,CAAC;QAExC,MAAM,SAAS,GAAG,IAAA,oCAAmB,EAAC;YACpC,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,OAAO,EAAE,WAAW;YACpB,eAAe,EAAE,aAAa;SAC/B,CAAC,CAAC;QAEH,MAAM,MAAM,GAAG,IAAA,qCAAmB,EAAC;YACjC,OAAO,EAAE,WAAW;YACpB,eAAe,EAAE,aAAa;YAC9B,iBAAiB,EAAE,eAAe;YAClC,SAAS;SACV,CAAC,CAAC;QACH,MAAM,KAAK,GAAG,MAAM,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;QAE3C,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,SAAS,EAAE,GAAG,IAAA,cAAO,EAAC,OAAO,CAAC,OAAO,CAAC,CAAC;QAErE,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,cAAc,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC;QAE7C,OAAO;YACL,MAAM;YACN,SAAS;YACT,SAAS;YACT,SAAS;YACT,QAAQ;YACR,KAAK;YACL,OAAO,EAAE,MAAM,CAAC,GAAI;SACrB,CAAC;IACJ,CAAC;IAEM,MAAM,CACX,KAAsB,EACtB,SAA2B,EAAE;QAE7B,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,iBAAiB,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,CAAC;QAExD,MAAM,CAAC,aAAa,EAAE,eAAe,EAAE,WAAW,EAAE,SAAS,CAAC,GAAG,IAAA,aAAM,EACrE,IAAA,aAAQ,EAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,EAAE,WAAW,CAAC,CAC1D,CAAC;QACF,MAAM,aAAa,GAAG,IAAA,yBAAgB,EAAC,IAAA,aAAM,EAAC,aAAa,CAAC,CAAC,CAAC;QAC9D,MAAM,eAAe,GAAG,IAAA,yBAAgB,EAAC,eAAe,CAAC,CAAC;QAC1D,MAAM,WAAW,GAAG,IAAA,yBAAgB,EAAI,IAAA,aAAM,EAAC,WAAW,CAAC,CAAC,CAAC;QAE7D,IAAI,IAAI,CAAC,OAAO,CAAC,SAAS,KAAK,aAAa,CAAC,GAAG,EAAE,CAAC;YACjD,MAAM,IAAI,iBAAQ,CAAC,eAAe,EAAE;gBAClC,IAAI,EAAE,EAAE,SAAS,EAAE,aAAa,CAAC,GAAG,EAAE;gBACtC,KAAK,EAAE,EAAE,QAAQ,EAAE,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE;aAC5C,CAAC,CAAC;QACL,CAAC;QAED,MAAM,QAAQ,GAAG,IAAA,oCAAmB,EAAC;YACnC,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,OAAO,EAAE,WAAW;YACpB,eAAe,EAAE,aAAa;YAC9B,SAAS;SACV,CAAC,CAAC;QAEH,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,MAAM,IAAI,iBAAQ,CAAC,eAAe,EAAE;gBAClC,IAAI,EAAE,EAAE,QAAQ,EAAE,KAAK,EAAE;aAC1B,CAAC,CAAC;QACL,CAAC;QAED,MAAM,SAAS,GAAG,IAAA,4BAAe,EAC/B,IAAI,CAAC,OAAO,CAAC,SAAS,EACtB,MAAM,EACN,IAAI,CAAC,cAAc,CACpB,CAAC;QAEF,MAAM,SAAS,GAAG;YAChB,GAAG,WAAW;YACd,GAAG,EAAE,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC,WAAW,CAAC,GAAG,GAAG,IAAI,CAAC,CAAC,CAAC,CAAC,SAAS;YACnE,GAAG,EAAE,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC,WAAW,CAAC,GAAG,GAAG,IAAI,CAAC,CAAC,CAAC,CAAC,SAAS;YACnE,GAAG,EAAE,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC,WAAW,CAAC,GAAG,GAAG,IAAI,CAAC,CAAC,CAAC,CAAC,SAAS;YACnE,SAAS,EAAE,WAAW,CAAC,SAAS;gBAC9B,CAAC,CAAC,IAAI,IAAI,CAAC,WAAW,CAAC,SAAS,GAAG,IAAI,CAAC;gBACxC,CAAC,CAAC,SAAS;SACd,CAAC;QAEF,IAAI,CAAC;YACH,IAAA,mBAAQ,EAAC,SAAS,EAAE,SAAS,CAAC,CAAC;QACjC,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,MAAM,IAAI,iBAAQ,CAAC,eAAe,EAAE,EAAE,IAAI,EAAG,GAAW,CAAC,IAAI,EAAE,CAAC,CAAC;QACnE,CAAC;QAED,MAAM,OAAO,GAAkB;YAC7B,SAAS,EAAE,aAAoB;YAC/B,WAAW,EAAE,eAAsB;YACnC,OAAO,EAAE,WAAkB;YAC3B,SAAS,EAAE,SAAS;SACrB,CAAC;QAEF,MAAM,OAAO,GAAG,IAAA,+BAAiB,EAAC,WAAW,CAAC,CAAC;QAE/C,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC;QAEpC,OAAO;YACL,OAAO;YACP,MAAM,EAAE,IAAA,+BAAgB,EAAC;gBACvB,GAAG,aAAa;gBAChB,GAAG,eAAe;aACZ,CAAC;YACT,OAAO;YACP,KAAK,EAAE,IAAA,aAAQ,EAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,KAAK;SAC7D,CAAC;IACJ,CAAC;IAIM,MAAM,CAAC,KAAK,CAAC,KAAsB;QACxC,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;YACpC,OAAO,MAAM,CAAC,SAAS,CAAC,GAAG,KAAK,iBAAiB,CAAC;QACpD,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;IAEM,MAAM,CAAC,MAAM,CAAwB,KAAsB;QAChE,MAAM,CAAC,aAAa,EAAE,iBAAiB,EAAE,WAAW,EAAE,SAAS,CAAC,GAAG,IAAA,aAAM,EACvE,IAAA,aAAQ,EAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,EAAE,WAAW,CAAC,CAC1D,CAAC;QACF,MAAM,aAAa,GAAG,IAAA,aAAM,EAAC,aAAa,CAAC,CAAC;QAC5C,MAAM,WAAW,GAAG,IAAA,aAAM,EAAC,WAAW,CAAC,CAAC;QAExC,OAAO;YACL,SAAS,EAAE,IAAA,yBAAgB,EAAC,aAAa,CAAQ;YACjD,WAAW,EAAE,IAAA,yBAAgB,EAAC,iBAAiB,CAAQ;YACvD,OAAO,EAAE,IAAA,yBAAgB,EAAC,WAAW,CAAC;YACtC,SAAS,EAAE,SAAS,CAAC,QAAQ,CAAC,WAAW,CAAC;SAC3C,CAAC;IACJ,CAAC;IAEM,MAAM,CAAC,KAAK,CAAwB,KAAsB;QAC/D,MAAM,OAAO,GAAG,MAAM,CAAC,MAAM,CAAI,KAAK,CAAC,CAAC;QAExC,OAAO;YACL,OAAO;YACP,MAAM,EAAE,IAAA,+BAAgB,EAAC,EAAE,GAAG,OAAO,CAAC,SAAS,EAAE,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC;YAC1E,OAAO,EAAE,IAAA,+BAAiB,EAAC,OAAO,CAAC,OAAO,CAAC;YAC3C,KAAK,EAAE,IAAA,aAAQ,EAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,KAAK;SAC7D,CAAC;IACJ,CAAC;IAEM,MAAM,CAAC,QAAQ,CACpB,OAA4B,EAC5B,OAA2B;QAE3B,MAAM,SAAS,GAAG,IAAA,gCAAiB,EAAC,OAAO,CAAC,CAAC;QAE7C,IAAA,mBAAQ,EAAC,OAAO,EAAE,SAAS,CAAC,CAAC;IAC/B,CAAC;CACF;AA9MD,wBA8MC"}
|
|
@@ -1 +0,0 @@
|
|
|
1
|
-
{"version":3,"file":"CoseEncryptError.d.ts","sourceRoot":"","sources":["../../src/errors/CoseEncryptError.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAE/C,qBAAa,gBAAiB,SAAQ,YAAY;CAAG"}
|
|
@@ -1,8 +0,0 @@
|
|
|
1
|
-
"use strict";
|
|
2
|
-
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
-
exports.CoseEncryptError = void 0;
|
|
4
|
-
const errors_1 = require("@lindorm/errors");
|
|
5
|
-
class CoseEncryptError extends errors_1.LindormError {
|
|
6
|
-
}
|
|
7
|
-
exports.CoseEncryptError = CoseEncryptError;
|
|
8
|
-
//# sourceMappingURL=CoseEncryptError.js.map
|
|
@@ -1 +0,0 @@
|
|
|
1
|
-
{"version":3,"file":"CoseEncryptError.js","sourceRoot":"","sources":["../../src/errors/CoseEncryptError.ts"],"names":[],"mappings":";;;AAAA,4CAA+C;AAE/C,MAAa,gBAAiB,SAAQ,qBAAY;CAAG;AAArD,4CAAqD"}
|
|
@@ -1 +0,0 @@
|
|
|
1
|
-
{"version":3,"file":"CoseSignError.d.ts","sourceRoot":"","sources":["../../src/errors/CoseSignError.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAE/C,qBAAa,aAAc,SAAQ,YAAY;CAAG"}
|
|
@@ -1,8 +0,0 @@
|
|
|
1
|
-
"use strict";
|
|
2
|
-
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
-
exports.CoseSignError = void 0;
|
|
4
|
-
const errors_1 = require("@lindorm/errors");
|
|
5
|
-
class CoseSignError extends errors_1.LindormError {
|
|
6
|
-
}
|
|
7
|
-
exports.CoseSignError = CoseSignError;
|
|
8
|
-
//# sourceMappingURL=CoseSignError.js.map
|
|
@@ -1 +0,0 @@
|
|
|
1
|
-
{"version":3,"file":"CoseSignError.js","sourceRoot":"","sources":["../../src/errors/CoseSignError.ts"],"names":[],"mappings":";;;AAAA,4CAA+C;AAE/C,MAAa,aAAc,SAAQ,qBAAY;CAAG;AAAlD,sCAAkD"}
|
|
@@ -1 +0,0 @@
|
|
|
1
|
-
{"version":3,"file":"CwtError.d.ts","sourceRoot":"","sources":["../../src/errors/CwtError.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAE/C,qBAAa,QAAS,SAAQ,YAAY;CAAG"}
|
package/dist/errors/CwtError.js
DELETED
|
@@ -1,8 +0,0 @@
|
|
|
1
|
-
"use strict";
|
|
2
|
-
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
-
exports.CwtError = void 0;
|
|
4
|
-
const errors_1 = require("@lindorm/errors");
|
|
5
|
-
class CwtError extends errors_1.LindormError {
|
|
6
|
-
}
|
|
7
|
-
exports.CwtError = CwtError;
|
|
8
|
-
//# sourceMappingURL=CwtError.js.map
|
|
@@ -1 +0,0 @@
|
|
|
1
|
-
{"version":3,"file":"CwtError.js","sourceRoot":"","sources":["../../src/errors/CwtError.ts"],"names":[],"mappings":";;;AAAA,4CAA+C;AAE/C,MAAa,QAAS,SAAQ,qBAAY;CAAG;AAA7C,4BAA6C"}
|
|
@@ -1,6 +0,0 @@
|
|
|
1
|
-
import { CweContent, CweEncryptOptions, DecryptedCwe, EncryptedCwe } from "../types";
|
|
2
|
-
export interface ICweKit {
|
|
3
|
-
encrypt(data: CweContent, options?: CweEncryptOptions): EncryptedCwe;
|
|
4
|
-
decrypt<T extends CweContent = string>(token: CweContent): DecryptedCwe<T>;
|
|
5
|
-
}
|
|
6
|
-
//# sourceMappingURL=CweKit.d.ts.map
|
|
@@ -1 +0,0 @@
|
|
|
1
|
-
{"version":3,"file":"CweKit.d.ts","sourceRoot":"","sources":["../../src/interfaces/CweKit.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,iBAAiB,EAAE,YAAY,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AAErF,MAAM,WAAW,OAAO;IACtB,OAAO,CAAC,IAAI,EAAE,UAAU,EAAE,OAAO,CAAC,EAAE,iBAAiB,GAAG,YAAY,CAAC;IACrE,OAAO,CAAC,CAAC,SAAS,UAAU,GAAG,MAAM,EAAE,KAAK,EAAE,UAAU,GAAG,YAAY,CAAC,CAAC,CAAC,CAAC;CAC5E"}
|
|
@@ -1 +0,0 @@
|
|
|
1
|
-
{"version":3,"file":"CweKit.js","sourceRoot":"","sources":["../../src/interfaces/CweKit.ts"],"names":[],"mappings":""}
|