openflow/OpenFlowNodeRED/src/Crypt.ts at 1df225469cc64846df751fdbbb4878e16ffca7cd · ITCSsDeveloper/openflow · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
import * as crypto from "crypto";
import * as bcrypt  from "bcryptjs";
import * as jsonwebtoken from "jsonwebtoken";
import { Config } from "./Config";
import { TokenUser } from "./Message";

export class Crypt {
    static encryption_key:string = Config.aes_secret.substr(0,32); // must be 256 bytes (32 characters)
    static iv_length:number = 16; // for AES, this is always 16
    static bcrypt_salt_rounds:number = 12;

    static encrypt(text:string):string {
        let iv:Buffer = crypto.randomBytes(Crypt.iv_length);
        let cipher:crypto.Cipher = crypto.createCipheriv("aes-256-cbc", Buffer.from(Crypt.encryption_key), iv);
        let encrypted:Buffer = cipher.update((text as any));
        encrypted = Buffer.concat([encrypted, cipher.final()]);
        return iv.toString("hex") + ":" + encrypted.toString("hex");
    }

    static decrypt(text:string):string {
        let textParts:string[] = text.split(":");
        let iv:Buffer = Buffer.from(textParts.shift(), "hex");
        let encryptedText:Buffer = Buffer.from(textParts.join(":"), "hex");
        let decipher:crypto.Decipher = crypto.createDecipheriv("aes-256-cbc", Buffer.from(Crypt.encryption_key), iv);
        let decrypted:Buffer = decipher.update(encryptedText);
        decrypted = Buffer.concat([decrypted, decipher.final()]);
        return decrypted.toString();
    }

    static async hash(password: string):Promise<string> {
        return new Promise<string>(async (resolve, reject) => {
            try {
                bcrypt.hash(password, Crypt.bcrypt_salt_rounds, async (error, hash)=> {
                    if(error) { return reject(error); }
                    resolve(hash);
                });
            } catch (error) {
                reject(error);
            }
        });
    }

    static async compare(password: string, passwordhash:string):Promise<boolean> {
        return new Promise<boolean>(async (resolve, reject) => {
            try {
                bcrypt.compare(password, passwordhash, async (error, res)=> {
                    if(error) { return reject(error); }
                    resolve(res);
                });
            } catch (error) {
                reject(error);
            }
        });
    }

    static createToken(user: TokenUser): string {
        var token:string = jsonwebtoken.sign({ data: user }, Crypt.encryption_key,
            { expiresIn: "1h" }); // 60 (seconds), "2 days", "10h", "7d"
        return token;
    }

    static verityToken(token: string): TokenUser {
        var o:any = jsonwebtoken.verify(token, Crypt.encryption_key);
        o.data = TokenUser.assign(o.data);
        return o.data;
    }
}