npm - @verii/jwt - Versions diffs - 1.1.0-pre.1759318298 → 1.1.0-pre.1759923180 - Mend

@verii/jwt 1.1.0-pre.1759318298 → 1.1.0-pre.1759923180

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/package.json +5 -5
package/src/core.js +14 -0

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@verii/jwt",
-  "version": "1.1.0-pre.1759318298",
+  "version": "1.1.0-pre.1759923180",
   "description": "Set of JWT related functions used in Verii projects",
   "repository": "https://github.com/LFDT-Verii/core",
   "main": "index.js",
@@ -18,15 +18,15 @@
   "license": "Apache-2.0",
   "dependencies": {
     "@trust/keyto": "~2.0.0-alpha1",
-    "@verii/crypto": "1.1.0-pre.1759318298",
+    "@verii/crypto": "1.1.0-pre.1759923180",
     "canonicalize": "^2.1.0",
     "date-fns": "~3.6.0",
     "jose": "~5.10.0",
     "lodash": "^4.17.21"
   },
   "devDependencies": {
-    "@verii/sample-data": "1.1.0-pre.1759318298",
-    "@verii/test-regexes": "1.1.0-pre.1759318298",
+    "@verii/sample-data": "1.1.0-pre.1759923180",
+    "@verii/test-regexes": "1.1.0-pre.1759923180",
     "eslint": "8.57.1",
     "eslint-config-airbnb-base": "14.2.1",
     "eslint-config-prettier": "8.10.2",
@@ -45,5 +45,5 @@
       "lib"
     ]
   },
-  "gitHead": "86f83dadbfa87cb1b1d359347099c6b6c6224fc4"
+  "gitHead": "ce6f18b96ee098edb4a511d3deef48c3ed987fad"
 }

package/src/core.js CHANGED Viewed

@@ -21,6 +21,7 @@ const {
   calculateJwkThumbprint,
   decodeJwt,
   decodeProtectedHeader,
+  compactVerify: joseJwsVerify,
   base64url,
 } = require('jose');
 const canonicalize = require('canonicalize');
@@ -123,6 +124,18 @@ const jwtVerify = async (jwt, keyOrSecret, options = {}) => {
   return { header, payload };
 };
+const jwsVerify = async (jws, keyOrSecret, options = {}) => {
+  const header = decodeProtectedHeader(jws);
+  const keyObject = isString(keyOrSecret)
+    ? new TextEncoder().encode(keyOrSecret)
+    : await toKeyObject(keyOrSecret, header);
+  const { payload } = await joseJwsVerify(jws, keyObject, {
+    clockTolerance: '120s',
+    ...options,
+  });
+  return { header, payload: JSON.parse(new TextDecoder().decode(payload)) };
+};
 const isPem = startsWith('-----BEGIN');
 const jwkFromSecp256k1Key = (key, priv = true) => {
@@ -222,6 +235,7 @@ module.exports = {
   jwtSign,
   jwtSignSymmetric,
   jwkThumbprint,
+  jwsVerify,
   jwtVerify,
   publicKeyFromPrivateKey,
   safeJwtDecode,