Skip to main content
Module

x/djwt/create.ts

Create and verify JSON Web Tokens (JWT) with Deno or the browser.
timonson/djwt
Very Popular
Go to Latest
File
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107
import { convertBase64ToBase64url } from "./base64/base64url.ts"import { convertUint8ArrayToBase64 } from "./base64/base64.ts"import { hmac } from "https://denopkg.com/chiefbiiko/hmac/mod.ts"
type Algorithm = "none" | "HS256" | "HS512"type JsonPrimitive = string | number | boolean | nulltype JsonObject = { [member: string]: JsonValue }type JsonArray = JsonValue[]type JsonValue = JsonPrimitive | JsonObject | JsonArray
interface Payload {  iss?: string  sub?: string  aud?: string[] | string  exp?: number  nbf?: number  iat?: number  jti?: string  [key: string]: JsonValue | undefined}
interface Jose {  alg: Algorithm  crit?: string[]  [key: string]: JsonValue | undefined}
function convertHexToBase64url(input: string): string {  return convertBase64ToBase64url(    convertUint8ArrayToBase64(convertHexToUint8Array(input))  )}
function convertStringToBase64url(input: string): string {  return convertBase64ToBase64url(    convertUint8ArrayToBase64(new TextEncoder().encode(input))  )}
function convertHexToUint8Array(hex: string): Uint8Array {  if (hex.length % 2 === 0 && /^[0-9a-fA-F]+$/.test(hex)) {    const match = hex.match(/.{2}/g)    if (match) return Uint8Array.from(match.map(el => parseInt(el, 16)))  }  throw new TypeError("Invalid hex string.")}
function makeSigningInput(header: Jose, payload?: Payload): string {  return `${convertStringToBase64url(    JSON.stringify(header)  )}.${convertStringToBase64url(JSON.stringify(payload || ""))}`}
function encrypt(alg: Algorithm, key: string, msg: string): string | null {  function assertNever(alg: never): never {    throw new RangeError("no matching crypto algorithm in the header: " + alg)  }  switch (alg) {    case "none":      return null    case "HS256":      return hmac("sha256", key, msg, "utf8", "hex") as string    case "HS512":      return hmac("sha512", key, msg, "utf8", "hex") as string    default:      assertNever(alg)  }}
function makeSignature(alg: Algorithm, key: string, input: string): string {  const encryptionInHex = encrypt(alg, key, input)  return encryptionInHex ? convertHexToBase64url(encryptionInHex) : ""}
function makeJwt(  { header, payload }: { header: Jose; payload?: Payload },  key: string): string {  const signingInput = makeSigningInput(header, payload)  try {    return `${signingInput}.${makeSignature(header.alg, key, signingInput)}`  } catch (err) {    err.message = `Failed to create a JWT: ${err.message}`    throw err  }}
/* * Helper function: setExpiration() * returns the number of milliseconds since January 1, 1970, 00:00:00 UTC */function setExpiration(exp: number | Date): number {  return (exp instanceof Date ? exp : new Date(exp)).getTime()}
export default makeJwtexport {  setExpiration,  makeSignature,  convertHexToBase64url,  convertBase64ToBase64url,  convertStringToBase64url,  convertHexToUint8Array,  Payload,  Jose,}