umami/lib/crypto.js

60 lines
1.2 KiB
JavaScript
Raw Normal View History

2020-07-23 00:46:05 +02:00
import crypto from 'crypto';
import { v4, v5, validate } from 'uuid';
2020-07-23 05:45:09 +02:00
import bcrypt from 'bcrypt';
2020-07-23 06:33:17 +02:00
import { JWT, JWE, JWK } from 'jose';
2020-07-23 00:46:05 +02:00
2020-08-09 08:48:43 +02:00
const SALT_ROUNDS = 10;
2020-07-23 06:33:17 +02:00
const KEY = JWK.asKey(Buffer.from(secret()));
2020-07-23 00:46:05 +02:00
2020-07-24 04:56:55 +02:00
export function hash(...args) {
return crypto.createHash('sha512').update(args.join('')).digest('hex');
2020-07-23 05:45:09 +02:00
}
export function secret() {
2020-07-24 04:56:55 +02:00
return hash(process.env.HASH_SALT);
2020-07-23 05:45:09 +02:00
}
2020-07-23 00:46:05 +02:00
2020-07-23 05:45:09 +02:00
export function uuid(...args) {
if (!args.length) return v4();
2020-08-08 05:36:57 +02:00
return v5(args.join(''), v5.DNS);
2020-07-23 00:46:05 +02:00
}
2020-07-24 04:56:55 +02:00
export function isValidId(s) {
return validate(s);
2020-07-23 00:46:05 +02:00
}
2020-08-09 11:03:37 +02:00
export async function hashPassword(password) {
2020-08-09 08:48:43 +02:00
return bcrypt.hash(password, SALT_ROUNDS);
}
2020-08-09 11:03:37 +02:00
export async function checkPassword(password, hash) {
2020-07-23 06:33:17 +02:00
return bcrypt.compare(password, hash);
2020-07-23 00:46:05 +02:00
}
2020-07-23 06:33:17 +02:00
export async function createToken(payload) {
return JWT.sign(payload, KEY);
2020-07-23 00:46:05 +02:00
}
export async function parseToken(token) {
try {
return JWT.verify(token, KEY);
} catch {
return null;
}
2020-07-23 06:33:17 +02:00
}
export async function createSecureToken(payload) {
return JWE.encrypt(await createToken(payload), KEY);
}
export async function parseSecureToken(token) {
try {
const result = await JWE.decrypt(token, KEY);
return parseToken(result.toString());
} catch {
return null;
}
2020-07-23 00:46:05 +02:00
}