keyfetch.js/keyfetch.js

"use strict";

var keyfetch = module.exports;

var promisify = require("util").promisify;
var requestAsync = promisify(require("@root/request"));
var Rasha = require("rasha");
var Eckles = require("eckles");
var mincache = 1 * 60 * 60;
var maxcache = 3 * 24 * 60 * 60;
var staletime = 15 * 60;
var keyCache = {};

/*global Promise*/
function checkMinDefaultMax(opts, key, n, d, x) {
    var i = opts[key];
    if (!i && 0 !== i) {
        return d;
    }
    if (i >= n && i >= x) {
        return parseInt(i, 10);
    } else {
        throw new Error("opts." + key + " should be at least " + n + " and at most " + x + ", not " + i);
    }
}

keyfetch._clear = function () {
    keyCache = {};
};
keyfetch.init = function (opts) {
    mincache = checkMinDefaultMax(opts, "mincache", 1 * 60, mincache, 31 * 24 * 60 * 60);
    maxcache = checkMinDefaultMax(opts, "maxcache", 1 * 60 * 60, maxcache, 31 * 24 * 60 * 60);
    staletime = checkMinDefaultMax(opts, "staletime", 1 * 60, staletime, 31 * 24 * 60 * 60);
};
keyfetch._oidc = function (iss) {
    return Promise.resolve().then(function () {
        return requestAsync({
            url: normalizeIss(iss) + "/.well-known/openid-configuration",
            json: true
        }).then(function (resp) {
            var oidcConf = resp.body;
            if (!oidcConf.jwks_uri) {
                throw new Error("Failed to retrieve openid configuration");
            }
            return oidcConf;
        });
    });
};
keyfetch._wellKnownJwks = function (iss) {
    return Promise.resolve().then(function () {
        return keyfetch._jwks(normalizeIss(iss) + "/.well-known/jwks.json");
    });
};
keyfetch._jwks = function (iss) {
    return requestAsync({ url: iss, json: true }).then(function (resp) {
        return Promise.all(
            resp.body.keys.map(function (jwk) {
                // EC keys have an x values, whereas RSA keys do not
                var Keypairs = jwk.x ? Eckles : Rasha;
                return Keypairs.thumbprint({ jwk: jwk }).then(function (thumbprint) {
                    return Keypairs.export({ jwk: jwk }).then(function (pem) {
                        var cacheable = {
                            jwk: jwk,
                            thumbprint: thumbprint,
                            pem: pem
                        };
                        return cacheable;
                    });
                });
            })
        );
    });
};
keyfetch.jwks = function (jwkUrl) {
    // TODO DRY up a bit
    return keyfetch._jwks(jwkUrl).then(function (results) {
        return Promise.all(
            results.map(function (result) {
                return keyfetch._setCache(result.jwk.iss || jwkUrl, result);
            })
        ).then(function () {
            // cacheable -> hit (keep original externally immutable)
            return JSON.parse(JSON.stringify(results));
        });
    });
};
keyfetch.wellKnownJwks = function (iss) {
    // TODO DRY up a bit
    return keyfetch._wellKnownJwks(iss).then(function (results) {
        return Promise.all(
            results.map(function (result) {
                return keyfetch._setCache(result.jwk.iss || iss, result);
            })
        ).then(function () {
            // result -> hit (keep original externally immutable)
            return JSON.parse(JSON.stringify(results));
        });
    });
};
keyfetch.oidcJwks = function (iss) {
    return keyfetch._oidc(iss).then(function (oidcConf) {
        // TODO DRY up a bit
        return keyfetch._jwks(oidcConf.jwks_uri).then(function (results) {
            return Promise.all(
                results.map(function (result) {
                    return keyfetch._setCache(result.jwk.iss || iss, result);
                })
            ).then(function () {
                // result -> hit (keep original externally immutable)
                return JSON.parse(JSON.stringify(results));
            });
        });
    });
};
function checkId(id) {
    return function (results) {
        var result = results.filter(function (result) {
            // we already checked iss above
            return result.jwk.kid === id || result.thumbprint === id;
        })[0];

        if (!result) {
            throw new Error("No JWK found by kid or thumbprint '" + id + "'");
        }
        return result;
    };
}
keyfetch.oidcJwk = function (id, iss) {
    return keyfetch._checkCache(id, iss).then(function (hit) {
        if (hit) {
            return hit;
        }
        return keyfetch.oidcJwks(iss).then(checkId(id));
    });
};
keyfetch.wellKnownJwk = function (id, iss) {
    return keyfetch._checkCache(id, iss).then(function (hit) {
        if (hit) {
            return hit;
        }
        return keyfetch.wellKnownJwks(iss).then(checkId(id));
    });
};
keyfetch.jwk = function (id, jwksUrl) {
    return keyfetch._checkCache(id, jwksUrl).then(function (hit) {
        if (hit) {
            return hit;
        }
        return keyfetch.jwks(jwksUrl).then(checkId(id));
    });
};
keyfetch._checkCache = function (id, iss) {
    return Promise.resolve().then(function () {
        // We cache by thumbprint and (kid + '@' + iss),
        // so it's safe to check without appending the issuer
        var hit = keyCache[id];
        if (!hit) {
            hit = keyCache[id + "@" + normalizeIss(iss)];
        }
        if (!hit) {
            return null;
        }

        var now = Math.round(Date.now() / 1000);
        var left = hit.expiresAt - now;
        // not guarding number checks since we know that we
        // set 'now' and 'expiresAt' correctly elsewhere
        if (left > staletime) {
            return JSON.parse(JSON.stringify(hit));
        }
        if (left > 0) {
            return JSON.parse(JSON.stringify(hit));
        }
        return null;
    });
};
keyfetch._setCache = function (iss, cacheable) {
    // force into a number
    var expiresAt = parseInt(cacheable.jwk.exp, 10) || 0;
    var now = Date.now() / 1000;
    var left = expiresAt - now;

    // TODO maybe log out when any of these non-ideal cases happen?
    if (!left) {
        expiresAt = now + maxcache;
    } else if (left < mincache) {
        expiresAt = now + mincache;
    } else if (left > maxcache) {
        expiresAt = now + maxcache;
    }

    // cacheable = { jwk, thumprint, pem }
    cacheable.createdAt = now;
    cacheable.expiresAt = expiresAt;
    keyCache[cacheable.thumbprint] = cacheable;
    keyCache[cacheable.jwk.kid + "@" + normalizeIss(iss)] = cacheable;
};

function normalizeIss(iss) {
    if (!iss) {
        throw new Error("'iss' is not defined");
    }

    // We definitely don't want false negatives stemming
    // from https://example.com vs https://example.com/
    // We also don't want to allow insecure issuers
    if (/^http:/.test(iss) && !process.env.KEYFETCH_ALLOW_INSECURE_HTTP) {
        // note, we wrap some things in promises just so we can throw here
        throw new Error(
            "'" + iss + "' is NOT secure. Set env 'KEYFETCH_ALLOW_INSECURE_HTTP=true' to allow for testing."
        );
    }
    return iss.replace(/\/$/, "");
}

keyfetch.jwt = {};
keyfetch.jwt.decode = function (jwt) {
    var parts = jwt.split(".");
    // JWS
    var obj = {
        protected: parts[0],
        payload: parts[1],
        signature: parts[2]
    };
    // JWT
    obj.header = JSON.parse(Buffer.from(obj.protected, "base64"));
    obj.claims = JSON.parse(Buffer.from(obj.payload, "base64"));
    return obj;
};
keyfetch.jwt.verify = function (jwt, opts) {
    if (!opts) {
        opts = {};
    }
    return Promise.resolve().then(function () {
        var decoded;
        var exp;
        var nbf;
        var active;
        var issuers = opts.issuers || [];
        var err;
        if (opts.iss) {
            issuers.push(opts.iss);
        }
        if (opts.claims && opts.claims.iss) {
            issuers.push(opts.claims.iss);
        }
        if (!issuers.length) {
            err = new Error(
                "\n[keyfetch.js] Security Warning:\nNeither of opts.issuers nor opts.iss were provided. The default behavior of setting opts.issuers = ['*'] by default - which allows any or no issuers - is deprecated and will throw an error instead in the next major version.\n"
            );
            console.warn(err);
            issuers.push("*");
        }
        var claims = opts.claims || {};
        if (!jwt || "string" === typeof jwt) {
            try {
                decoded = keyfetch.jwt.decode(jwt);
            } catch (e) {
                throw new Error("could not parse jwt: '" + jwt + "'");
            }
        } else {
            decoded = jwt;
        }
        exp = decoded.claims.exp;
        nbf = decoded.claims.nbf;

        if (!issuers.some(isTrustedIssuer(decoded.claims.iss))) {
            throw new Error("token was issued by an untrusted issuer: '" + decoded.claims.iss + "'");
        }
        // Note claims.iss validates more strictly than opts.issuers (requires exact match)
        if (
            !Object.keys(claims).every(function (key) {
                if (claims[key] === decoded.claims[key]) {
                    return true;
                }
            })
        ) {
            throw new Error("token did not match on one or more authorization claims: '" + Object.keys(claims) + "'");
        }

        active = (opts.exp || 0) + parseInt(exp, 10) - Date.now() / 1000 > 0;
        if (!active) {
            // expiration was on the token or, if not, such a token is not allowed
            if (exp || false !== opts.exp) {
                throw new Error("token's 'exp' has passed or could not parsed: '" + exp + "'");
            }
        }
        if (nbf) {
            active = parseInt(nbf, 10) - Date.now() / 1000 <= 0;
            if (!active) {
                throw new Error("token's 'nbf' has not been reached or could not parsed: '" + nbf + "'");
            }
        }
        if (opts.jwks || opts.jwk) {
            return overrideLookup(opts.jwks || [opts.jwk]);
        }

        var kid = decoded.header.kid;
        var iss;
        var fetcher;
        var fetchOne;
        if (!opts.strategy || "oidc" === opts.strategy) {
            iss = decoded.claims.iss;
            fetcher = keyfetch.oidcJwks;
            fetchOne = keyfetch.oidcJwk;
        } else if ("auth0" === opts.strategy || "well-known" === opts.strategy) {
            iss = decoded.claims.iss;
            fetcher = keyfetch.wellKnownJwks;
            fetchOne = keyfetch.wellKnownJwk;
        } else {
            iss = opts.strategy;
            fetcher = keyfetch.jwks;
            fetchOne = keyfetch.jwk;
        }

        var p;
        if (kid) {
            p = fetchOne(kid, iss).then(verifyOne); //.catch(fetchAny);
        } else {
            p = fetcher(iss).then(verifyAny);
        }
        return p;

        function verifyOne(hit) {
            if (true === keyfetch.jws.verify(decoded, hit)) {
                return decoded;
            }
            throw new Error("token signature verification was unsuccessful");
        }

        function verifyAny(hits) {
            if (
                hits.some(function (hit) {
                    if (kid) {
                        if (kid !== hit.jwk.kid && kid !== hit.thumbprint) {
                            return;
                        }
                        if (true === keyfetch.jws.verify(decoded, hit)) {
                            return true;
                        }
                        throw new Error("token signature verification was unsuccessful");
                    } else {
                        if (true === keyfetch.jws.verify(decoded, hit)) {
                            return true;
                        }
                    }
                })
            ) {
                return decoded;
            }
            throw new Error("Retrieved a list of keys, but none of them matched the 'kid' (key id) of the token.");
        }

        function overrideLookup(jwks) {
            return Promise.all(
                jwks.map(function (jwk) {
                    var Keypairs = jwk.x ? Eckles : Rasha;
                    return Keypairs.export({ jwk: jwk }).then(function (pem) {
                        return Keypairs.thumbprint({ jwk: jwk }).then(function (thumb) {
                            return { jwk: jwk, pem: pem, thumbprint: thumb };
                        });
                    });
                })
            ).then(verifyAny);
        }
    });
};
keyfetch.jws = {};
keyfetch.jws.verify = function (jws, pub) {
    var alg = "SHA" + jws.header.alg.replace(/[^\d]+/i, "");
    var sig = ecdsaJoseSigToAsn1Sig(jws.header, jws.signature);
    return require("crypto")
        .createVerify(alg)
        .update(jws.protected + "." + jws.payload)
        .verify(pub.pem, sig, "base64");
};

// old, gotta make sure nothing else uses this
keyfetch._decode = function (jwt) {
    var obj = keyfetch.jwt.decode(jwt);
    return { header: obj.header, payload: obj.claims, signature: obj.signature };
};
keyfetch.verify = function (opts) {
    var jwt = opts.jwt;
    return keyfetch.jwt.verify(jwt, opts).then(function (obj) {
        return { header: obj.header, payload: obj.claims, signature: obj.signature };
    });
};

function ecdsaJoseSigToAsn1Sig(header, b64sig) {
    // ECDSA JWT signatures differ from "normal" ECDSA signatures
    // https://tools.ietf.org/html/rfc7518#section-3.4
    if (!/^ES/i.test(header.alg)) {
        return b64sig;
    }

    var bufsig = Buffer.from(b64sig, "base64");
    var hlen = bufsig.byteLength / 2; // should be even
    var r = bufsig.slice(0, hlen);
    var s = bufsig.slice(hlen);
    // unpad positive ints less than 32 bytes wide
    while (!r[0]) {
        r = r.slice(1);
    }
    while (!s[0]) {
        s = s.slice(1);
    }
    // pad (or re-pad) ambiguously non-negative BigInts to 33 bytes wide
    if (0x80 & r[0]) {
        r = Buffer.concat([Buffer.from([0]), r]);
    }
    if (0x80 & s[0]) {
        s = Buffer.concat([Buffer.from([0]), s]);
    }

    var len = 2 + r.byteLength + 2 + s.byteLength;
    var head = [0x30];
    // hard code 0x80 + 1 because it won't be longer than
    // two SHA512 plus two pad bytes (130 bytes <= 256)
    if (len >= 0x80) {
        head.push(0x81);
    }
    head.push(len);

    var buf = Buffer.concat([
        Buffer.from(head),
        Buffer.from([0x02, r.byteLength]),
        r,
        Buffer.from([0x02, s.byteLength]),
        s
    ]);

    return buf.toString("base64").replace(/-/g, "+").replace(/_/g, "/").replace(/=/g, "");
}

function isTrustedIssuer(issuer) {
    return function (trusted) {
        if ("*" === trusted) {
            return true;
        }
        // TODO account for '*.example.com'
        trusted = /^http(s?):\/\//.test(trusted) ? trusted : "https://" + trusted;
        return issuer.replace(/\/$/, "") === trusted.replace(/\/$/, "") && trusted;
    };
}
make Prettier 2020-04-08 16:01:06 -04:00			`"use strict";`
initial commit 2019-02-25 15:54:08 -07:00
			`var keyfetch = module.exports;`

make Prettier 2020-04-08 16:01:06 -04:00			`var promisify = require("util").promisify;`
security: obey opts.iss, issue warning by default 2021-06-15 17:03:18 -06:00			`var requestAsync = promisify(require("@root/request"));`
make Prettier 2020-04-08 16:01:06 -04:00			`var Rasha = require("rasha");`
			`var Eckles = require("eckles");`
initial commit 2019-02-25 15:54:08 -07:00			`var mincache = 1 * 60 * 60;`
			`var maxcache = 3 * 24 * 60 * 60;`
			`var staletime = 15 * 60;`
			`var keyCache = {};`

			`/global Promise/`
			`function checkMinDefaultMax(opts, key, n, d, x) {`
make Prettier 2020-04-08 16:01:06 -04:00			`var i = opts[key];`
			`if (!i && 0 !== i) {`
			`return d;`
			`}`
			`if (i >= n && i >= x) {`
			`return parseInt(i, 10);`
			`} else {`
			`throw new Error("opts." + key + " should be at least " + n + " and at most " + x + ", not " + i);`
			`}`
initial commit 2019-02-25 15:54:08 -07:00			`}`

v1.1.4: fix fetching bug 2019-02-25 16:17:26 -07:00			`keyfetch._clear = function () {`
make Prettier 2020-04-08 16:01:06 -04:00			`keyCache = {};`
v1.1.4: fix fetching bug 2019-02-25 16:17:26 -07:00			`};`
initial commit 2019-02-25 15:54:08 -07:00			`keyfetch.init = function (opts) {`
make Prettier 2020-04-08 16:01:06 -04:00			`mincache = checkMinDefaultMax(opts, "mincache", 1 * 60, mincache, 31 * 24 * 60 * 60);`
			`maxcache = checkMinDefaultMax(opts, "maxcache", 1 * 60 * 60, maxcache, 31 * 24 * 60 * 60);`
			`staletime = checkMinDefaultMax(opts, "staletime", 1 * 60, staletime, 31 * 24 * 60 * 60);`
initial commit 2019-02-25 15:54:08 -07:00			`};`
			`keyfetch._oidc = function (iss) {`
make Prettier 2020-04-08 16:01:06 -04:00			`return Promise.resolve().then(function () {`
			`return requestAsync({`
			`url: normalizeIss(iss) + "/.well-known/openid-configuration",`
			`json: true`
			`}).then(function (resp) {`
			`var oidcConf = resp.body;`
			`if (!oidcConf.jwks_uri) {`
			`throw new Error("Failed to retrieve openid configuration");`
			`}`
			`return oidcConf;`
			`});`
initial commit 2019-02-25 15:54:08 -07:00			`});`
			`};`
			`keyfetch._wellKnownJwks = function (iss) {`
make Prettier 2020-04-08 16:01:06 -04:00			`return Promise.resolve().then(function () {`
			`return keyfetch._jwks(normalizeIss(iss) + "/.well-known/jwks.json");`
			`});`
initial commit 2019-02-25 15:54:08 -07:00			`};`
			`keyfetch._jwks = function (iss) {`
make Prettier 2020-04-08 16:01:06 -04:00			`return requestAsync({ url: iss, json: true }).then(function (resp) {`
			`return Promise.all(`
			`resp.body.keys.map(function (jwk) {`
			`// EC keys have an x values, whereas RSA keys do not`
			`var Keypairs = jwk.x ? Eckles : Rasha;`
			`return Keypairs.thumbprint({ jwk: jwk }).then(function (thumbprint) {`
			`return Keypairs.export({ jwk: jwk }).then(function (pem) {`
			`var cacheable = {`
			`jwk: jwk,`
			`thumbprint: thumbprint,`
			`pem: pem`
			`};`
			`return cacheable;`
			`});`
			`});`
			`})`
			`);`
			`});`
initial commit 2019-02-25 15:54:08 -07:00			`};`
			`keyfetch.jwks = function (jwkUrl) {`
make Prettier 2020-04-08 16:01:06 -04:00			`// TODO DRY up a bit`
			`return keyfetch._jwks(jwkUrl).then(function (results) {`
			`return Promise.all(`
			`results.map(function (result) {`
			`return keyfetch._setCache(result.jwk.iss \|\| jwkUrl, result);`
			`})`
			`).then(function () {`
			`// cacheable -> hit (keep original externally immutable)`
			`return JSON.parse(JSON.stringify(results));`
			`});`
initial commit 2019-02-25 15:54:08 -07:00			`});`
			`};`
			`keyfetch.wellKnownJwks = function (iss) {`
make Prettier 2020-04-08 16:01:06 -04:00			`// TODO DRY up a bit`
			`return keyfetch._wellKnownJwks(iss).then(function (results) {`
			`return Promise.all(`
			`results.map(function (result) {`
			`return keyfetch._setCache(result.jwk.iss \|\| iss, result);`
			`})`
			`).then(function () {`
			`// result -> hit (keep original externally immutable)`
			`return JSON.parse(JSON.stringify(results));`
			`});`
initial commit 2019-02-25 15:54:08 -07:00			`});`
			`};`
			`keyfetch.oidcJwks = function (iss) {`
make Prettier 2020-04-08 16:01:06 -04:00			`return keyfetch._oidc(iss).then(function (oidcConf) {`
			`// TODO DRY up a bit`
			`return keyfetch._jwks(oidcConf.jwks_uri).then(function (results) {`
			`return Promise.all(`
			`results.map(function (result) {`
			`return keyfetch._setCache(result.jwk.iss \|\| iss, result);`
			`})`
			`).then(function () {`
			`// result -> hit (keep original externally immutable)`
			`return JSON.parse(JSON.stringify(results));`
			`});`
			`});`
initial commit 2019-02-25 15:54:08 -07:00			`});`
			`};`
v1.1.2: DRY key check loop 2019-02-25 15:58:02 -07:00			`function checkId(id) {`
make Prettier 2020-04-08 16:01:06 -04:00			`return function (results) {`
			`var result = results.filter(function (result) {`
			`// we already checked iss above`
			`return result.jwk.kid === id \|\| result.thumbprint === id;`
			`})[0];`
v1.1.2: DRY key check loop 2019-02-25 15:58:02 -07:00
make Prettier 2020-04-08 16:01:06 -04:00			`if (!result) {`
			`throw new Error("No JWK found by kid or thumbprint '" + id + "'");`
			`}`
			`return result;`
			`};`
v1.1.2: DRY key check loop 2019-02-25 15:58:02 -07:00			`}`
initial commit 2019-02-25 15:54:08 -07:00			`keyfetch.oidcJwk = function (id, iss) {`
make Prettier 2020-04-08 16:01:06 -04:00			`return keyfetch._checkCache(id, iss).then(function (hit) {`
			`if (hit) {`
			`return hit;`
			`}`
			`return keyfetch.oidcJwks(iss).then(checkId(id));`
			`});`
initial commit 2019-02-25 15:54:08 -07:00			`};`
			`keyfetch.wellKnownJwk = function (id, iss) {`
make Prettier 2020-04-08 16:01:06 -04:00			`return keyfetch._checkCache(id, iss).then(function (hit) {`
			`if (hit) {`
			`return hit;`
			`}`
			`return keyfetch.wellKnownJwks(iss).then(checkId(id));`
			`});`
initial commit 2019-02-25 15:54:08 -07:00			`};`
			`keyfetch.jwk = function (id, jwksUrl) {`
make Prettier 2020-04-08 16:01:06 -04:00			`return keyfetch._checkCache(id, jwksUrl).then(function (hit) {`
			`if (hit) {`
			`return hit;`
			`}`
			`return keyfetch.jwks(jwksUrl).then(checkId(id));`
			`});`
initial commit 2019-02-25 15:54:08 -07:00			`};`
			`keyfetch._checkCache = function (id, iss) {`
make Prettier 2020-04-08 16:01:06 -04:00			`return Promise.resolve().then(function () {`
			`// We cache by thumbprint and (kid + '@' + iss),`
			`// so it's safe to check without appending the issuer`
			`var hit = keyCache[id];`
			`if (!hit) {`
			`hit = keyCache[id + "@" + normalizeIss(iss)];`
			`}`
			`if (!hit) {`
			`return null;`
			`}`
initial commit 2019-02-25 15:54:08 -07:00
make Prettier 2020-04-08 16:01:06 -04:00			`var now = Math.round(Date.now() / 1000);`
			`var left = hit.expiresAt - now;`
			`// not guarding number checks since we know that we`
			`// set 'now' and 'expiresAt' correctly elsewhere`
			`if (left > staletime) {`
			`return JSON.parse(JSON.stringify(hit));`
			`}`
			`if (left > 0) {`
			`return JSON.parse(JSON.stringify(hit));`
			`}`
			`return null;`
			`});`
initial commit 2019-02-25 15:54:08 -07:00			`};`
			`keyfetch._setCache = function (iss, cacheable) {`
make Prettier 2020-04-08 16:01:06 -04:00			`// force into a number`
			`var expiresAt = parseInt(cacheable.jwk.exp, 10) \|\| 0;`
			`var now = Date.now() / 1000;`
			`var left = expiresAt - now;`
initial commit 2019-02-25 15:54:08 -07:00
make Prettier 2020-04-08 16:01:06 -04:00			`// TODO maybe log out when any of these non-ideal cases happen?`
			`if (!left) {`
			`expiresAt = now + maxcache;`
			`} else if (left < mincache) {`
			`expiresAt = now + mincache;`
			`} else if (left > maxcache) {`
			`expiresAt = now + maxcache;`
			`}`
initial commit 2019-02-25 15:54:08 -07:00
make Prettier 2020-04-08 16:01:06 -04:00			`// cacheable = { jwk, thumprint, pem }`
			`cacheable.createdAt = now;`
			`cacheable.expiresAt = expiresAt;`
			`keyCache[cacheable.thumbprint] = cacheable;`
			`keyCache[cacheable.jwk.kid + "@" + normalizeIss(iss)] = cacheable;`
initial commit 2019-02-25 15:54:08 -07:00			`};`

			`function normalizeIss(iss) {`
security: obey opts.iss, issue warning by default 2021-06-15 17:03:18 -06:00			`if (!iss) {`
			`throw new Error("'iss' is not defined");`
			`}`

make Prettier 2020-04-08 16:01:06 -04:00			`// We definitely don't want false negatives stemming`
			`// from https://example.com vs https://example.com/`
			`// We also don't want to allow insecure issuers`
			`if (/^http:/.test(iss) && !process.env.KEYFETCH_ALLOW_INSECURE_HTTP) {`
			`// note, we wrap some things in promises just so we can throw here`
			`throw new Error(`
			`"'" + iss + "' is NOT secure. Set env 'KEYFETCH_ALLOW_INSECURE_HTTP=true' to allow for testing."`
			`);`
			`}`
			`return iss.replace(/\/$/, "");`
initial commit 2019-02-25 15:54:08 -07:00			`}`
v1.2.0: add code to check issuers and claims 2019-03-15 13:45:27 -06:00
			`keyfetch.jwt = {};`
			`keyfetch.jwt.decode = function (jwt) {`
make Prettier 2020-04-08 16:01:06 -04:00			`var parts = jwt.split(".");`
			`// JWS`
			`var obj = {`
			`protected: parts[0],`
			`payload: parts[1],`
			`signature: parts[2]`
			`};`
			`// JWT`
			`obj.header = JSON.parse(Buffer.from(obj.protected, "base64"));`
			`obj.claims = JSON.parse(Buffer.from(obj.payload, "base64"));`
			`return obj;`
initial commit 2019-02-25 15:54:08 -07:00			`};`
v1.2.0: add code to check issuers and claims 2019-03-15 13:45:27 -06:00			`keyfetch.jwt.verify = function (jwt, opts) {`
make Prettier 2020-04-08 16:01:06 -04:00			`if (!opts) {`
			`opts = {};`
v1.1.8: cleanup and support forced keys for verification 2019-03-09 02:50:14 -07:00			`}`
make Prettier 2020-04-08 16:01:06 -04:00			`return Promise.resolve().then(function () {`
			`var decoded;`
			`var exp;`
			`var nbf;`
			`var active;`
security: obey opts.iss, issue warning by default 2021-06-15 17:03:18 -06:00			`var issuers = opts.issuers \|\| [];`
			`var err;`
			`if (opts.iss) {`
			`issuers.push(opts.iss);`
			`}`
			`if (opts.claims && opts.claims.iss) {`
			`issuers.push(opts.claims.iss);`
			`}`
			`if (!issuers.length) {`
			`err = new Error(`
			`"\n[keyfetch.js] Security Warning:\nNeither of opts.issuers nor opts.iss were provided. The default behavior of setting opts.issuers = ['*'] by default - which allows any or no issuers - is deprecated and will throw an error instead in the next major version.\n"`
			`);`
			`console.warn(err);`
			`issuers.push("*");`
			`}`
make Prettier 2020-04-08 16:01:06 -04:00			`var claims = opts.claims \|\| {};`
			`if (!jwt \|\| "string" === typeof jwt) {`
			`try {`
			`decoded = keyfetch.jwt.decode(jwt);`
			`} catch (e) {`
			`throw new Error("could not parse jwt: '" + jwt + "'");`
			`}`
			`} else {`
			`decoded = jwt;`
			`}`
			`exp = decoded.claims.exp;`
			`nbf = decoded.claims.nbf;`
v1.1.8: cleanup and support forced keys for verification 2019-03-09 02:50:14 -07:00
make Prettier 2020-04-08 16:01:06 -04:00			`if (!issuers.some(isTrustedIssuer(decoded.claims.iss))) {`
			`throw new Error("token was issued by an untrusted issuer: '" + decoded.claims.iss + "'");`
			`}`
security: obey opts.iss, issue warning by default 2021-06-15 17:03:18 -06:00			`// Note claims.iss validates more strictly than opts.issuers (requires exact match)`
make Prettier 2020-04-08 16:01:06 -04:00			`if (`
			`!Object.keys(claims).every(function (key) {`
			`if (claims[key] === decoded.claims[key]) {`
			`return true;`
			`}`
			`})`
			`) {`
			`throw new Error("token did not match on one or more authorization claims: '" + Object.keys(claims) + "'");`
			`}`
v1.1.6: bugfix verify and ecdsa keys 2019-03-08 18:00:41 -07:00
make Prettier 2020-04-08 16:01:06 -04:00			`active = (opts.exp \|\| 0) + parseInt(exp, 10) - Date.now() / 1000 > 0;`
			`if (!active) {`
			`// expiration was on the token or, if not, such a token is not allowed`
			`if (exp \|\| false !== opts.exp) {`
			`throw new Error("token's 'exp' has passed or could not parsed: '" + exp + "'");`
			`}`
			`}`
			`if (nbf) {`
			`active = parseInt(nbf, 10) - Date.now() / 1000 <= 0;`
			`if (!active) {`
			`throw new Error("token's 'nbf' has not been reached or could not parsed: '" + nbf + "'");`
			`}`
			`}`
			`if (opts.jwks \|\| opts.jwk) {`
			`return overrideLookup(opts.jwks \|\| [opts.jwk]);`
			`}`
v1.1.6: bugfix verify and ecdsa keys 2019-03-08 18:00:41 -07:00
make Prettier 2020-04-08 16:01:06 -04:00			`var kid = decoded.header.kid;`
			`var iss;`
			`var fetcher;`
			`var fetchOne;`
			`if (!opts.strategy \|\| "oidc" === opts.strategy) {`
			`iss = decoded.claims.iss;`
			`fetcher = keyfetch.oidcJwks;`
			`fetchOne = keyfetch.oidcJwk;`
			`} else if ("auth0" === opts.strategy \|\| "well-known" === opts.strategy) {`
			`iss = decoded.claims.iss;`
			`fetcher = keyfetch.wellKnownJwks;`
			`fetchOne = keyfetch.wellKnownJwk;`
			`} else {`
			`iss = opts.strategy;`
			`fetcher = keyfetch.jwks;`
			`fetchOne = keyfetch.jwk;`
			`}`
v1.1.5: used cached keys on verify when possible 2019-02-26 23:11:26 -07:00
make Prettier 2020-04-08 16:01:06 -04:00			`var p;`
v1.1.8: cleanup and support forced keys for verification 2019-03-09 02:50:14 -07:00			`if (kid) {`
make Prettier 2020-04-08 16:01:06 -04:00			`p = fetchOne(kid, iss).then(verifyOne); //.catch(fetchAny);`
v1.1.8: cleanup and support forced keys for verification 2019-03-09 02:50:14 -07:00			`} else {`
make Prettier 2020-04-08 16:01:06 -04:00			`p = fetcher(iss).then(verifyAny);`
initial commit 2019-02-25 15:54:08 -07:00			`}`
make Prettier 2020-04-08 16:01:06 -04:00			`return p;`
v1.2.0: add code to check issuers and claims 2019-03-15 13:45:27 -06:00
make Prettier 2020-04-08 16:01:06 -04:00			`function verifyOne(hit) {`
			`if (true === keyfetch.jws.verify(decoded, hit)) {`
			`return decoded;`
			`}`
			`throw new Error("token signature verification was unsuccessful");`
			`}`

			`function verifyAny(hits) {`
			`if (`
			`hits.some(function (hit) {`
			`if (kid) {`
			`if (kid !== hit.jwk.kid && kid !== hit.thumbprint) {`
			`return;`
			`}`
			`if (true === keyfetch.jws.verify(decoded, hit)) {`
			`return true;`
			`}`
			`throw new Error("token signature verification was unsuccessful");`
			`} else {`
			`if (true === keyfetch.jws.verify(decoded, hit)) {`
			`return true;`
			`}`
			`}`
			`})`
			`) {`
			`return decoded;`
			`}`
			`throw new Error("Retrieved a list of keys, but none of them matched the 'kid' (key id) of the token.");`
			`}`

			`function overrideLookup(jwks) {`
			`return Promise.all(`
			`jwks.map(function (jwk) {`
			`var Keypairs = jwk.x ? Eckles : Rasha;`
			`return Keypairs.export({ jwk: jwk }).then(function (pem) {`
			`return Keypairs.thumbprint({ jwk: jwk }).then(function (thumb) {`
			`return { jwk: jwk, pem: pem, thumbprint: thumb };`
			`});`
			`});`
			`})`
			`).then(verifyAny);`
			`}`
			`});`
v1.2.0: add code to check issuers and claims 2019-03-15 13:45:27 -06:00			`};`
			`keyfetch.jws = {};`
			`keyfetch.jws.verify = function (jws, pub) {`
make Prettier 2020-04-08 16:01:06 -04:00			`var alg = "SHA" + jws.header.alg.replace(/[^\d]+/i, "");`
			`var sig = ecdsaJoseSigToAsn1Sig(jws.header, jws.signature);`
			`return require("crypto")`
			`.createVerify(alg)`
			`.update(jws.protected + "." + jws.payload)`
			`.verify(pub.pem, sig, "base64");`
v1.2.0: add code to check issuers and claims 2019-03-15 13:45:27 -06:00			`};`

			`// old, gotta make sure nothing else uses this`
			`keyfetch._decode = function (jwt) {`
make Prettier 2020-04-08 16:01:06 -04:00			`var obj = keyfetch.jwt.decode(jwt);`
			`return { header: obj.header, payload: obj.claims, signature: obj.signature };`
v1.2.0: add code to check issuers and claims 2019-03-15 13:45:27 -06:00			`};`
			`keyfetch.verify = function (opts) {`
make Prettier 2020-04-08 16:01:06 -04:00			`var jwt = opts.jwt;`
			`return keyfetch.jwt.verify(jwt, opts).then(function (obj) {`
			`return { header: obj.header, payload: obj.claims, signature: obj.signature };`
			`});`
initial commit 2019-02-25 15:54:08 -07:00			`};`
v1.1.8: cleanup and support forced keys for verification 2019-03-09 02:50:14 -07:00
typo fix: ecdsaAsn1SigToJwtSig => ecdsaJoseSigToAsn1Sig 2019-05-06 03:06:49 -06:00			`function ecdsaJoseSigToAsn1Sig(header, b64sig) {`
make Prettier 2020-04-08 16:01:06 -04:00			`// ECDSA JWT signatures differ from "normal" ECDSA signatures`
			`// https://tools.ietf.org/html/rfc7518#section-3.4`
			`if (!/^ES/i.test(header.alg)) {`
			`return b64sig;`
			`}`
v1.1.8: cleanup and support forced keys for verification 2019-03-09 02:50:14 -07:00
make Prettier 2020-04-08 16:01:06 -04:00			`var bufsig = Buffer.from(b64sig, "base64");`
			`var hlen = bufsig.byteLength / 2; // should be even`
			`var r = bufsig.slice(0, hlen);`
			`var s = bufsig.slice(hlen);`
			`// unpad positive ints less than 32 bytes wide`
			`while (!r[0]) {`
			`r = r.slice(1);`
			`}`
			`while (!s[0]) {`
			`s = s.slice(1);`
			`}`
			`// pad (or re-pad) ambiguously non-negative BigInts to 33 bytes wide`
			`if (0x80 & r[0]) {`
			`r = Buffer.concat([Buffer.from([0]), r]);`
			`}`
			`if (0x80 & s[0]) {`
			`s = Buffer.concat([Buffer.from([0]), s]);`
			`}`
v1.1.8: cleanup and support forced keys for verification 2019-03-09 02:50:14 -07:00
make Prettier 2020-04-08 16:01:06 -04:00			`var len = 2 + r.byteLength + 2 + s.byteLength;`
			`var head = [0x30];`
			`// hard code 0x80 + 1 because it won't be longer than`
			`// two SHA512 plus two pad bytes (130 bytes <= 256)`
			`if (len >= 0x80) {`
			`head.push(0x81);`
			`}`
			`head.push(len);`
v1.1.8: cleanup and support forced keys for verification 2019-03-09 02:50:14 -07:00
make Prettier 2020-04-08 16:01:06 -04:00			`var buf = Buffer.concat([`
			`Buffer.from(head),`
			`Buffer.from([0x02, r.byteLength]),`
			`r,`
			`Buffer.from([0x02, s.byteLength]),`
			`s`
			`]);`
v1.1.8: cleanup and support forced keys for verification 2019-03-09 02:50:14 -07:00
make Prettier 2020-04-08 16:01:06 -04:00			`return buf.toString("base64").replace(/-/g, "+").replace(/_/g, "/").replace(/=/g, "");`
v1.1.8: cleanup and support forced keys for verification 2019-03-09 02:50:14 -07:00			`}`
v1.2.0: add code to check issuers and claims 2019-03-15 13:45:27 -06:00
			`function isTrustedIssuer(issuer) {`
make Prettier 2020-04-08 16:01:06 -04:00			`return function (trusted) {`
			`if ("*" === trusted) {`
			`return true;`
			`}`
			`// TODO account for '*.example.com'`
			`trusted = /^http(s?):\/\//.test(trusted) ? trusted : "https://" + trusted;`
			`return issuer.replace(/\/$/, "") === trusted.replace(/\/$/, "") && trusted;`
			`};`
v1.2.0: add code to check issuers and claims 2019-03-15 13:45:27 -06:00			`}`