Home Verkennen Help
Inloggen
serg1557733
/
chatRedux
Volgen 1
Ster 0
Vork 0
Bestanden Issues 0 Pull-aanvragen 0 Wiki
Boom: 1451c2420b
Aftakkingen Labels
chatRedux
/
backend
/
node_modules
/
jws
/
lib
/
verify-stream.js

verify-stream.js 3.2 KB
Geschiedenis Ruwe

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120 
  1. /*global module*/
    2. 

  2. var Buffer = require('safe-buffer').Buffer;
    3. 

  3. var DataStream = require('./data-stream');
    4. 

  4. var jwa = require('jwa');
    5. 

  5. var Stream = require('stream');
    6. 

  6. var toString = require('./tostring');
    7. 

  7. var util = require('util');
    8. 

  8. var JWS_REGEX = /^[a-zA-Z0-9\-_]+?\.[a-zA-Z0-9\-_]+?\.([a-zA-Z0-9\-_]+)?$/;
    9. 

  9. 

  10. function isObject(thing) {
    11. 

  11.   return Object.prototype.toString.call(thing) === '[object Object]';
    12. 

  12. }
    13. 

  13. 

  14. function safeJsonParse(thing) {
    15. 

  15.   if (isObject(thing))
    16. 

  16.     return thing;
    17. 

  17.   try { return JSON.parse(thing); }
    18. 

  18.   catch (e) { return undefined; }
    19. 

  19. }
    20. 

  20. 

  21. function headerFromJWS(jwsSig) {
    22. 

  22.   var encodedHeader = jwsSig.split('.', 1)[0];
    23. 

  23.   return safeJsonParse(Buffer.from(encodedHeader, 'base64').toString('binary'));
    24. 

  24. }
    25. 

  25. 

  26. function securedInputFromJWS(jwsSig) {
    27. 

  27.   return jwsSig.split('.', 2).join('.');
    28. 

  28. }
    29. 

  29. 

  30. function signatureFromJWS(jwsSig) {
    31. 

  31.   return jwsSig.split('.')[2];
    32. 

  32. }
    33. 

  33. 

  34. function payloadFromJWS(jwsSig, encoding) {
    35. 

  35.   encoding = encoding || 'utf8';
    36. 

  36.   var payload = jwsSig.split('.')[1];
    37. 

  37.   return Buffer.from(payload, 'base64').toString(encoding);
    38. 

  38. }
    39. 

  39. 

  40. function isValidJws(string) {
    41. 

  41.   return JWS_REGEX.test(string) && !!headerFromJWS(string);
    42. 

  42. }
    43. 

  43. 

  44. function jwsVerify(jwsSig, algorithm, secretOrKey) {
    45. 

  45.   if (!algorithm) {
    46. 

  46.     var err = new Error("Missing algorithm parameter for jws.verify");
    47. 

  47.     err.code = "MISSING_ALGORITHM";
    48. 

  48.     throw err;
    49. 

  49.   }
    50. 

  50.   jwsSig = toString(jwsSig);
    51. 

  51.   var signature = signatureFromJWS(jwsSig);
    52. 

  52.   var securedInput = securedInputFromJWS(jwsSig);
    53. 

  53.   var algo = jwa(algorithm);
    54. 

  54.   return algo.verify(securedInput, signature, secretOrKey);
    55. 

  55. }
    56. 

  56. 

  57. function jwsDecode(jwsSig, opts) {
    58. 

  58.   opts = opts || {};
    59. 

  59.   jwsSig = toString(jwsSig);
    60. 

  60. 

  61.   if (!isValidJws(jwsSig))
    62. 

  62.     return null;
    63. 

  63. 

  64.   var header = headerFromJWS(jwsSig);
    65. 

  65. 

  66.   if (!header)
    67. 

  67.     return null;
    68. 

  68. 

  69.   var payload = payloadFromJWS(jwsSig);
    70. 

  70.   if (header.typ === 'JWT' || opts.json)
    71. 

  71.     payload = JSON.parse(payload, opts.encoding);
    72. 

  72. 

  73.   return {
    74. 

  74.     header: header,
    75. 

  75.     payload: payload,
    76. 

  76.     signature: signatureFromJWS(jwsSig)
    77. 

  77.   };
    78. 

  78. }
    79. 

  79. 

  80. function VerifyStream(opts) {
    81. 

  81.   opts = opts || {};
    82. 

  82.   var secretOrKey = opts.secret||opts.publicKey||opts.key;
    83. 

  83.   var secretStream = new DataStream(secretOrKey);
    84. 

  84.   this.readable = true;
    85. 

  85.   this.algorithm = opts.algorithm;
    86. 

  86.   this.encoding = opts.encoding;
    87. 

  87.   this.secret = this.publicKey = this.key = secretStream;
    88. 

  88.   this.signature = new DataStream(opts.signature);
    89. 

  89.   this.secret.once('close', function () {
    90. 

  90.     if (!this.signature.writable && this.readable)
    91. 

  91.       this.verify();
    92. 

  92.   }.bind(this));
    93. 

  93. 

  94.   this.signature.once('close', function () {
    95. 

  95.     if (!this.secret.writable && this.readable)
    96. 

  96.       this.verify();
    97. 

  97.   }.bind(this));
    98. 

  98. }
    99. 

  99. util.inherits(VerifyStream, Stream);
    100. 

  100. VerifyStream.prototype.verify = function verify() {
    101. 

  101.   try {
    102. 

  102.     var valid = jwsVerify(this.signature.buffer, this.algorithm, this.key.buffer);
    103. 

  103.     var obj = jwsDecode(this.signature.buffer, this.encoding);
    104. 

  104.     this.emit('done', valid, obj);
    105. 

  105.     this.emit('data', valid);
    106. 

  106.     this.emit('end');
    107. 

  107.     this.readable = false;
    108. 

  108.     return valid;
    109. 

  109.   } catch (e) {
    110. 

  110.     this.readable = false;
    111. 

  111.     this.emit('error', e);
    112. 

  112.     this.emit('close');
    113. 

  113.   }
    114. 

  114. };
    115. 

  115. 

  116. VerifyStream.decode = jwsDecode;
    117. 

  117. VerifyStream.isValid = isValidJws;
    118. 

  118. VerifyStream.verify = jwsVerify;
    119. 

  119. 

  120. module.exports = VerifyStream;
    121.