130 lines
3.4 KiB
JavaScript
130 lines
3.4 KiB
JavaScript
'use strict';
|
|
|
|
//var crypto = require('crypto');
|
|
var forge = require('node-forge');
|
|
|
|
function binstrToB64(binstr) {
|
|
return new Buffer(binstr, 'binary').toString('base64');
|
|
}
|
|
|
|
/*
|
|
importPemPrivateKey: function(pem) {
|
|
var key = forge.pki.privateKeyFromPem(pem);
|
|
return {
|
|
privateKey: exportPrivateKey(key),
|
|
publicKey: exportPublicKey(key)
|
|
};
|
|
},
|
|
|
|
importPemCertificate: function(pem) {
|
|
return forge.pki.certificateFromPem(pem);
|
|
},
|
|
|
|
privateKeyToPem: function(privateKey) {
|
|
var priv = importPrivateKey(privateKey);
|
|
return forge.pki.privateKeyToPem(priv);
|
|
},
|
|
|
|
certificateToPem: function(certificate) {
|
|
var derCert = base64ToBytes(certificate);
|
|
var cert = forge.pki.certificateFromAsn1(forge.asn1.fromDer(derCert));
|
|
return forge.pki.certificateToPem(cert);
|
|
},
|
|
*/
|
|
|
|
var extrac = module.exports = {
|
|
//
|
|
// internals
|
|
//
|
|
_forgeToPrivateJwk: function (keypair) {
|
|
var k = keypair._forge.privateKey;
|
|
|
|
return {
|
|
kty: "RSA"
|
|
, n: binstrToB64(k.n.toByteArray())
|
|
, e: binstrToB64(k.e.toByteArray())
|
|
, d: binstrToB64(k.d.toByteArray())
|
|
, p: binstrToB64(k.p.toByteArray())
|
|
, q: binstrToB64(k.q.toByteArray())
|
|
, dp: binstrToB64(k.dP.toByteArray())
|
|
, dq: binstrToB64(k.dQ.toByteArray())
|
|
, qi: binstrToB64(k.qInv.toByteArray())
|
|
};
|
|
}
|
|
, _forgeToPublicJwk: function (keypair) {
|
|
var k = keypair._forge.privateKey || keypair._forge.publicKey;
|
|
return {
|
|
kty: "RSA"
|
|
, n: binstrToB64(k.n.toByteArray())
|
|
, e: binstrToB64(k.e.toByteArray())
|
|
};
|
|
}
|
|
|
|
|
|
|
|
//
|
|
// Export JWK
|
|
//
|
|
, exportPrivateJwk: function (keypair) {
|
|
var hasUrsaPrivate = keypair._ursa && true;
|
|
var hasPrivatePem = keypair.privateKeyPem && true;
|
|
var hasForgePrivate = keypair._forge && keypair._forge.privateKey && true;
|
|
|
|
if (keypair.privateKeyJwk) {
|
|
return keypair.privateKeyJwk;
|
|
}
|
|
|
|
if (!hasForgePrivate) {
|
|
if (hasUrsaPrivate && !hasPrivatePem) {
|
|
keypair.privateKeyPem = keypair._ursa.toPrivatePem().toString('ascii');
|
|
}
|
|
|
|
if (keypair.privateKeyPem) {
|
|
keypair._forge = { privateKey: forge.pki.privateKeyFromPem(keypair.privateKeyPem) };
|
|
}
|
|
}
|
|
|
|
if (keypair._forge && keypair._forge.privateKey) {
|
|
return extrac._forgeToPrivateJwk(keypair);
|
|
}
|
|
|
|
throw new Error("None of privateKeyPem, _ursa, _forge, or privateKeyJwk found. No way to export private key Jwk");
|
|
}
|
|
, exportPublicJwk: function (keypair) {
|
|
var hasUrsaPublic = (keypair._ursa || keypair._ursaPublic) && true;
|
|
var hasPublicPem = (keypair.privateKeyPem || keypair.publicKeyPem) && true;
|
|
var hasForgePublic = keypair._forge && true;
|
|
|
|
if (keypair.publicKeyJwk) {
|
|
return keypair.publicKeyJwk;
|
|
}
|
|
|
|
if (keypair.privateKeyJwk) {
|
|
return {
|
|
kty: 'RSA'
|
|
, n: keypair.privateKeyJwk.n
|
|
, e: keypair.privateKeyJwk.e
|
|
};
|
|
}
|
|
|
|
if (!hasForgePublic) {
|
|
if (hasUrsaPublic && !hasPublicPem) {
|
|
keypair.publicKeyPem = (keypair._ursa || keypair._ursaPublic).toPublicPem().toString('ascii');
|
|
}
|
|
|
|
if (keypair.publicKeyPem) {
|
|
keypair._forge = { privateKey: forge.pki.publicKeyFromPem(keypair.publicKeyPem) };
|
|
}
|
|
}
|
|
|
|
if (keypair._forge && keypair._forge.privateKey) {
|
|
return extrac._forgeToPublicJwk(keypair);
|
|
}
|
|
|
|
throw new Error("None of publicKeyPem privateKeyPem, _ursa, _forge, publicKeyJwk, or privateKeyJwk found. No way to export private key Jwk");
|
|
}
|
|
|
|
|
|
|
|
};
|