mirror of
https://github.com/danbulant/jose
synced 2026-05-25 04:51:47 +00:00
211d7af5db
This is as per - https://tools.ietf.org/html/draft-ietf-cose-webauthn-algorithms-01 - https://mailarchive.ietf.org/arch/msg/cose/91MouVA43DefbpQOB7l5daCEeIc
30 lines
1.1 KiB
JavaScript
30 lines
1.1 KiB
JavaScript
const { strict: assert } = require('assert')
|
|
const { sign: signOneShot, verify: verifyOneShot } = require('crypto')
|
|
|
|
const { derToJose, joseToDer } = require('../help/ecdsa_signatures')
|
|
const { KEYOBJECT } = require('../help/consts')
|
|
const resolveNodeAlg = require('../help/node_alg')
|
|
|
|
const sign = (jwaAlg, nodeAlg, { [KEYOBJECT]: keyObject }, payload) => {
|
|
return derToJose(signOneShot(nodeAlg, payload, keyObject), jwaAlg)
|
|
}
|
|
|
|
const verify = (jwaAlg, nodeAlg, { [KEYOBJECT]: keyObject }, payload, signature) => {
|
|
try {
|
|
return verifyOneShot(nodeAlg, payload, keyObject, joseToDer(signature, jwaAlg))
|
|
} catch (err) {
|
|
return false
|
|
}
|
|
}
|
|
|
|
module.exports = (JWA) => {
|
|
['ES256', 'ES384', 'ES512', 'ES256K'].forEach((jwaAlg) => {
|
|
const nodeAlg = resolveNodeAlg(jwaAlg)
|
|
|
|
assert(!JWA.sign.has(jwaAlg), `sign alg ${jwaAlg} already registered`)
|
|
assert(!JWA.verify.has(jwaAlg), `verify alg ${jwaAlg} already registered`)
|
|
|
|
JWA.sign.set(jwaAlg, sign.bind(undefined, jwaAlg, nodeAlg))
|
|
JWA.verify.set(jwaAlg, verify.bind(undefined, jwaAlg, nodeAlg))
|
|
})
|
|
}
|