dan/jose
1
0
Fork 0
mirror of https://github.com/danbulant/jose synced 2026-05-25 04:51:47 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
jose/lib/jwa/index.js
Filip Skokan 23b874cc20 feat: add JWK key_ops support, fix .algorithms() op returns 
BREAKING CHANGE: key.algorithms(op) un+wrapKey was split into correct
wrapKey/unwrapKey/deriveKey returns

BREAKING CHANGE: keystore.all and keystore.get `operation` option was
removed, `key_ops: string[]` supersedes it
2019-04-23 14:30:51 +02:00

80 lines
2.1 KiB
JavaScript
Raw Blame History

const { JWKKeySupport, JOSENotSupported } = require('../errors')
const { KEY_MANAGEMENT_ENCRYPT, KEY_MANAGEMENT_DECRYPT } = require('../help/consts')
const JWA = {
sign: new Map(),
verify: new Map(),
keyManagementEncrypt: new Map(),
keyManagementDecrypt: new Map(),
encrypt: new Map(),
decrypt: new Map()
}
// sign, verify
require('./hmac')(JWA)
require('./ecdsa')(JWA)
require('./eddsa')(JWA)
require('./rsassa')(JWA)
require('./rsassa_pss')(JWA)
// encrypt, decrypt
require('./aes_cbc_hmac_sha2')(JWA)
require('./aes_gcm')(JWA)
// wrapKey, unwrapKey
require('./rsaes')(JWA)
require('./aes_gcm_kw')(JWA)
require('./aes_kw')(JWA)
// deriveKey
require('./pbes2')(JWA)
require('./ecdh/kw')(JWA)
require('./ecdh/dir')(JWA)
const check = (key, op, alg) => {
let label
let keyOp
if (op === 'keyManagementEncrypt') {
label = 'key management (encryption)'
keyOp = KEY_MANAGEMENT_ENCRYPT
} else if (op === 'keyManagementDecrypt') {
label = 'key management (decryption)'
keyOp = KEY_MANAGEMENT_DECRYPT
}
if (JWA[op].has(alg)) {
if (!key.algorithms(keyOp).has(alg)) {
throw new JWKKeySupport(`the key does not support ${alg} ${label || op} algorithm`)
}
} else {
throw new JOSENotSupported(`unsupported ${label || op} alg: ${alg}`)
}
}
module.exports = {
check,
sign: (alg, key, payload) => {
check(key, 'sign', alg)
return JWA.sign.get(alg)(key, payload)
},
verify: (alg, key, payload, signature) => {
check(key, 'verify', alg)
return JWA.verify.get(alg)(key, payload, signature)
},
keyManagementEncrypt: (alg, key, payload, opts) => {
check(key, 'keyManagementEncrypt', alg)
return JWA.keyManagementEncrypt.get(alg)(key, payload, opts)
},
keyManagementDecrypt: (alg, key, payload, opts) => {
check(key, 'keyManagementDecrypt', alg)
return JWA.keyManagementDecrypt.get(alg)(key, payload, opts)
},
encrypt: (alg, key, cleartext, opts) => {
check(key, 'encrypt', alg)
return JWA.encrypt.get(alg)(key, cleartext, opts)
},
decrypt: (alg, key, ciphertext, opts) => {
check(key, 'decrypt', alg)
return JWA.decrypt.get(alg)(key, ciphertext, opts)
}
}
Reference in a new issue View git blame Copy permalink