Skip to main content
Module

x/jose/jwe/compact/decrypt.ts

"JSON Web Almost Everything" - JWA, JWS, JWE, JWT, JWK, JWKS for Node.js, Browser, Cloudflare Workers, Deno, Bun, and other Web-interoperable runtimes.
panva/jose
Extremely Popular
Go to Latest
File
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990
import { flattenedDecrypt } from '../flattened/decrypt.ts'import { JWEInvalid } from '../../util/errors.ts'import { decoder } from '../../lib/buffer_utils.ts'import type {  KeyLike,  DecryptOptions,  CompactJWEHeaderParameters,  GetKeyFunction,  FlattenedJWE,  CompactDecryptResult,  ResolvedKey,} from '../../types.d.ts'
/** * Interface for Compact JWE Decryption dynamic key resolution. No token components have been * verified at the time of this function call. */export interface CompactDecryptGetKey  extends GetKeyFunction<CompactJWEHeaderParameters, FlattenedJWE> {}
/** * Decrypts a Compact JWE. * * @param jwe Compact JWE. * @param key Private Key or Secret to decrypt the JWE with. See *   {@link https://github.com/panva/jose/issues/210#jwe-alg Algorithm Key Requirements}. * @param options JWE Decryption options. */export async function compactDecrypt(  jwe: string | Uint8Array,  key: KeyLike | Uint8Array,  options?: DecryptOptions,): Promise<CompactDecryptResult>/** * @param jwe Compact JWE. * @param getKey Function resolving Private Key or Secret to decrypt the JWE with. See *   {@link https://github.com/panva/jose/issues/210#jwe-alg Algorithm Key Requirements}. * @param options JWE Decryption options. */export async function compactDecrypt<T extends KeyLike = KeyLike>(  jwe: string | Uint8Array,  getKey: CompactDecryptGetKey,  options?: DecryptOptions,): Promise<CompactDecryptResult & ResolvedKey<T>>export async function compactDecrypt(  jwe: string | Uint8Array,  key: KeyLike | Uint8Array | CompactDecryptGetKey,  options?: DecryptOptions,) {  if (jwe instanceof Uint8Array) {    jwe = decoder.decode(jwe)  }
  if (typeof jwe !== 'string') {    throw new JWEInvalid('Compact JWE must be a string or Uint8Array')  }  const {    0: protectedHeader,    1: encryptedKey,    2: iv,    3: ciphertext,    4: tag,    length,  } = jwe.split('.')
  if (length !== 5) {    throw new JWEInvalid('Invalid Compact JWE')  }
  const decrypted = await flattenedDecrypt(    {      ciphertext,      iv: <string>(iv || undefined),      protected: protectedHeader || undefined,      tag: <string>(tag || undefined),      encrypted_key: encryptedKey || undefined,    },    <Parameters<typeof flattenedDecrypt>[1]>key,    options,  )
  const result = { plaintext: decrypted.plaintext, protectedHeader: decrypted.protectedHeader! }
  if (typeof key === 'function') {    return { ...result, key: decrypted.key }  }
  return result}