@oari/jose 0.0.0

package/dist/webapi/util/decode_protected_header.js

@@ -0,0 +1,34 @@
+import { decode as b64u } from './base64url.js';
+import { decoder } from '../lib/buffer_utils.js';
+import { isObject } from '../lib/type_checks.js';
+export function decodeProtectedHeader(token) {
+    let protectedB64u;
+    if (typeof token === 'string') {
+        const parts = token.split('.');
+        if (parts.length === 3 || parts.length === 5) {
+            ;
+            [protectedB64u] = parts;
+        }
+    }
+    else if (typeof token === 'object' && token) {
+        if ('protected' in token) {
+            protectedB64u = token.protected;
+        }
+        else {
+            throw new TypeError('Token does not contain a Protected Header');
+        }
+    }
+    try {
+        if (typeof protectedB64u !== 'string' || !protectedB64u) {
+            throw new Error();
+        }
+        const result = JSON.parse(decoder.decode(b64u(protectedB64u)));
+        if (!isObject(result)) {
+            throw new Error();
+        }
+        return result;
+    }
+    catch {
+        throw new TypeError('Invalid Token or Protected Header formatting');
+    }
+}

package/dist/webapi/util/errors.js

@@ -0,0 +1,99 @@
+export class JOSEError extends Error {
+    static code = 'ERR_JOSE_GENERIC';
+    code = 'ERR_JOSE_GENERIC';
+    constructor(message, options) {
+        super(message, options);
+        this.name = this.constructor.name;
+        Error.captureStackTrace?.(this, this.constructor);
+    }
+}
+export class JWTClaimValidationFailed extends JOSEError {
+    static code = 'ERR_JWT_CLAIM_VALIDATION_FAILED';
+    code = 'ERR_JWT_CLAIM_VALIDATION_FAILED';
+    claim;
+    reason;
+    payload;
+    constructor(message, payload, claim = 'unspecified', reason = 'unspecified') {
+        super(message, { cause: { claim, reason, payload } });
+        this.claim = claim;
+        this.reason = reason;
+        this.payload = payload;
+    }
+}
+export class JWTExpired extends JOSEError {
+    static code = 'ERR_JWT_EXPIRED';
+    code = 'ERR_JWT_EXPIRED';
+    claim;
+    reason;
+    payload;
+    constructor(message, payload, claim = 'unspecified', reason = 'unspecified') {
+        super(message, { cause: { claim, reason, payload } });
+        this.claim = claim;
+        this.reason = reason;
+        this.payload = payload;
+    }
+}
+export class JOSEAlgNotAllowed extends JOSEError {
+    static code = 'ERR_JOSE_ALG_NOT_ALLOWED';
+    code = 'ERR_JOSE_ALG_NOT_ALLOWED';
+}
+export class JOSENotSupported extends JOSEError {
+    static code = 'ERR_JOSE_NOT_SUPPORTED';
+    code = 'ERR_JOSE_NOT_SUPPORTED';
+}
+export class JWEDecryptionFailed extends JOSEError {
+    static code = 'ERR_JWE_DECRYPTION_FAILED';
+    code = 'ERR_JWE_DECRYPTION_FAILED';
+    constructor(message = 'decryption operation failed', options) {
+        super(message, options);
+    }
+}
+export class JWEInvalid extends JOSEError {
+    static code = 'ERR_JWE_INVALID';
+    code = 'ERR_JWE_INVALID';
+}
+export class JWSInvalid extends JOSEError {
+    static code = 'ERR_JWS_INVALID';
+    code = 'ERR_JWS_INVALID';
+}
+export class JWTInvalid extends JOSEError {
+    static code = 'ERR_JWT_INVALID';
+    code = 'ERR_JWT_INVALID';
+}
+export class JWKInvalid extends JOSEError {
+    static code = 'ERR_JWK_INVALID';
+    code = 'ERR_JWK_INVALID';
+}
+export class JWKSInvalid extends JOSEError {
+    static code = 'ERR_JWKS_INVALID';
+    code = 'ERR_JWKS_INVALID';
+}
+export class JWKSNoMatchingKey extends JOSEError {
+    static code = 'ERR_JWKS_NO_MATCHING_KEY';
+    code = 'ERR_JWKS_NO_MATCHING_KEY';
+    constructor(message = 'no applicable key found in the JSON Web Key Set', options) {
+        super(message, options);
+    }
+}
+export class JWKSMultipleMatchingKeys extends JOSEError {
+    [Symbol.asyncIterator];
+    static code = 'ERR_JWKS_MULTIPLE_MATCHING_KEYS';
+    code = 'ERR_JWKS_MULTIPLE_MATCHING_KEYS';
+    constructor(message = 'multiple matching keys found in the JSON Web Key Set', options) {
+        super(message, options);
+    }
+}
+export class JWKSTimeout extends JOSEError {
+    static code = 'ERR_JWKS_TIMEOUT';
+    code = 'ERR_JWKS_TIMEOUT';
+    constructor(message = 'request timed out', options) {
+        super(message, options);
+    }
+}
+export class JWSSignatureVerificationFailed extends JOSEError {
+    static code = 'ERR_JWS_SIGNATURE_VERIFICATION_FAILED';
+    code = 'ERR_JWS_SIGNATURE_VERIFICATION_FAILED';
+    constructor(message = 'signature verification failed', options) {
+        super(message, options);
+    }
+}

package/package.json

@@ -0,0 +1,195 @@
+{
+  "name": "@oari/jose",
+  "version": "0.0.0",
+  "license": "MIT",
+  "type": "module",
+  "imports": {
+    "#dist": {
+      "types": "./dist/types/index.d.ts",
+      "default": "./dist/webapi/index.js"
+    },
+    "#dist/*": {
+      "types": "./dist/types/*.d.ts",
+      "default": "./dist/webapi/*.js"
+    }
+  },
+  "exports": {
+    ".": {
+      "types": "./dist/types/index.d.ts",
+      "default": "./dist/webapi/index.js"
+    },
+    "./jwk/embedded": {
+      "types": "./dist/types/jwk/embedded.d.ts",
+      "default": "./dist/webapi/jwk/embedded.js"
+    },
+    "./jwk/thumbprint": {
+      "types": "./dist/types/jwk/thumbprint.d.ts",
+      "default": "./dist/webapi/jwk/thumbprint.js"
+    },
+    "./key/import": {
+      "types": "./dist/types/key/import.d.ts",
+      "default": "./dist/webapi/key/import.js"
+    },
+    "./key/export": {
+      "types": "./dist/types/key/export.d.ts",
+      "default": "./dist/webapi/key/export.js"
+    },
+    "./key/generate/keypair": {
+      "types": "./dist/types/key/generate_key_pair.d.ts",
+      "default": "./dist/webapi/key/generate_key_pair.js"
+    },
+    "./key/generate/secret": {
+      "types": "./dist/types/key/generate_secret.d.ts",
+      "default": "./dist/webapi/key/generate_secret.js"
+    },
+    "./jwks/remote": {
+      "types": "./dist/types/jwks/remote.d.ts",
+      "default": "./dist/webapi/jwks/remote.js"
+    },
+    "./jwks/local": {
+      "types": "./dist/types/jwks/local.d.ts",
+      "default": "./dist/webapi/jwks/local.js"
+    },
+    "./jwt/sign": {
+      "types": "./dist/types/jwt/sign.d.ts",
+      "default": "./dist/webapi/jwt/sign.js"
+    },
+    "./jwt/verify": {
+      "types": "./dist/types/jwt/verify.d.ts",
+      "default": "./dist/webapi/jwt/verify.js"
+    },
+    "./jwt/encrypt": {
+      "types": "./dist/types/jwt/encrypt.d.ts",
+      "default": "./dist/webapi/jwt/encrypt.js"
+    },
+    "./jwt/decrypt": {
+      "types": "./dist/types/jwt/decrypt.d.ts",
+      "default": "./dist/webapi/jwt/decrypt.js"
+    },
+    "./jwt/unsecured": {
+      "types": "./dist/types/jwt/unsecured.d.ts",
+      "default": "./dist/webapi/jwt/unsecured.js"
+    },
+    "./jwt/decode": {
+      "types": "./dist/types/util/decode_jwt.d.ts",
+      "default": "./dist/webapi/util/decode_jwt.js"
+    },
+    "./decode/protected_header": {
+      "types": "./dist/types/util/decode_protected_header.d.ts",
+      "default": "./dist/webapi/util/decode_protected_header.js"
+    },
+    "./jws/compact/sign": {
+      "types": "./dist/types/jws/compact/sign.d.ts",
+      "default": "./dist/webapi/jws/compact/sign.js"
+    },
+    "./jws/compact/verify": {
+      "types": "./dist/types/jws/compact/verify.d.ts",
+      "default": "./dist/webapi/jws/compact/verify.js"
+    },
+    "./jws/flattened/sign": {
+      "types": "./dist/types/jws/flattened/sign.d.ts",
+      "default": "./dist/webapi/jws/flattened/sign.js"
+    },
+    "./jws/flattened/verify": {
+      "types": "./dist/types/jws/flattened/verify.d.ts",
+      "default": "./dist/webapi/jws/flattened/verify.js"
+    },
+    "./jws/general/sign": {
+      "types": "./dist/types/jws/general/sign.d.ts",
+      "default": "./dist/webapi/jws/general/sign.js"
+    },
+    "./jws/general/verify": {
+      "types": "./dist/types/jws/general/verify.d.ts",
+      "default": "./dist/webapi/jws/general/verify.js"
+    },
+    "./jwe/compact/encrypt": {
+      "types": "./dist/types/jwe/compact/encrypt.d.ts",
+      "default": "./dist/webapi/jwe/compact/encrypt.js"
+    },
+    "./jwe/compact/decrypt": {
+      "types": "./dist/types/jwe/compact/decrypt.d.ts",
+      "default": "./dist/webapi/jwe/compact/decrypt.js"
+    },
+    "./jwe/flattened/encrypt": {
+      "types": "./dist/types/jwe/flattened/encrypt.d.ts",
+      "default": "./dist/webapi/jwe/flattened/encrypt.js"
+    },
+    "./jwe/flattened/decrypt": {
+      "types": "./dist/types/jwe/flattened/decrypt.d.ts",
+      "default": "./dist/webapi/jwe/flattened/decrypt.js"
+    },
+    "./jwe/general/encrypt": {
+      "types": "./dist/types/jwe/general/encrypt.d.ts",
+      "default": "./dist/webapi/jwe/general/encrypt.js"
+    },
+    "./jwe/general/decrypt": {
+      "types": "./dist/types/jwe/general/decrypt.d.ts",
+      "default": "./dist/webapi/jwe/general/decrypt.js"
+    },
+    "./errors": {
+      "types": "./dist/types/util/errors.d.ts",
+      "default": "./dist/webapi/util/errors.js"
+    },
+    "./base64url": {
+      "types": "./dist/types/util/base64url.d.ts",
+      "default": "./dist/webapi/util/base64url.js"
+    },
+    "./package.json": "./package.json"
+  },
+  "main": "./dist/webapi/index.js",
+  "types": "./dist/types/index.d.ts",
+  "files": [
+    "dist/webapi/**/*.js",
+    "dist/types/**/*.d.ts",
+    "!dist/**/*.bundle.js",
+    "!dist/**/*.umd.js",
+    "!dist/**/*.min.js",
+    "!dist/types/runtime/*",
+    "!dist/types/lib/*",
+    "!dist/deno/**/*"
+  ],
+  "scripts": {
+    "build": "tsc",
+    "build-all": "run-s clear build build:*",
+    "build:bundle": "esbuild --bundle dist/webapi/index.js --format=esm --target=es2022 --outfile=dist/webapi/index.bundle.js",
+    "build:bundle-min": "esbuild --minify --bundle dist/webapi/index.js --format=esm --target=es2022 --outfile=dist/webapi/index.bundle.min.js",
+    "build:umd": "esbuild --bundle dist/webapi/index.js --format=iife --global-name=jose --target=es2022 --outfile=dist/webapi/index.umd.js && node tools/iife-to-umd.cjs dist/webapi/index.umd.js && esbuild --minify dist/webapi/index.umd.js --outfile=dist/webapi/index.umd.min.js",
+    "build:deno": "mkdir -p dist/deno && cp -R src/. dist/deno && find dist/deno -name '*.ts' -type f -print0 | xargs -0 sed -i.bak -e \"s/\\.js'/.ts'/g\" && npm run sedcleanup",
+    "build:types": "npm run build -- -p ./tsconfig/types.json && cd src && find . -name '*.d.ts' -maxdepth 2 -type f -exec rsync -R \"{}\" ../dist/types  \\;",
+    "build:jsr": "npx --yes jsr publish --dry-run --allow-dirty",
+    "clear": "rm -Rf dist",
+    "sedcleanup": "find . -name '*.bak' -type f -print0 | xargs -0 rm -f",
+    "docs:generate": "typedoc",
+    "prepack": "npm run build-all",
+    "prepublishOnly": "npm run build-all",
+    "types:find": "find dist/types -name '*.d.ts' -type f -print0",
+    "test": "bash -c 'source .node_flags.sh && ava'",
+    "format": "prettier --log-level silent --write ./test ./tap ./src ./tools ./cookbook ./tsconfig",
+    "tap:browsers": "./tap/.browsers.sh",
+    "tap:bun": "./tap/.bun.sh",
+    "tap:deno": "./tap/.deno.sh",
+    "tap:electron": "./tap/.electron.sh",
+    "tap:node": "bash -c './tap/.node.sh'",
+    "tap:workerd": "./tap/.workerd.sh"
+  },
+  "devDependencies": {
+    "@playwright/test": "^1.60.0",
+    "@types/node": "^24.12.4",
+    "@types/qunit": "^2.19.14",
+    "ava": "^7.0.0",
+    "esbuild": "^0.28.0",
+    "npm-run-all2": "^9.0.0",
+    "patch-package": "^8.0.1",
+    "prettier": "^3.8.3",
+    "prettier-plugin-jsdoc": "^1.8.0",
+    "qunit": "^2.25.0",
+    "tar": "^7.5.15",
+    "timekeeper": "^2.3.1",
+    "ts-blank-space": "^0.9.0",
+    "typedoc": "^0.28.19",
+    "typedoc-plugin-markdown": "^4.11.0",
+    "typedoc-plugin-mdn-links": "^5.1.1",
+    "typescript": "^6.0.3",
+    "undici": "^7.25.0"
+  }
+}