Skip to content

re-utils/fast-crypt

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

36 Commits
bench
bench
 
 
scripts
scripts
 
 
src
src
 
 
tests
tests
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
eslint.config.js
eslint.config.js
 
 
package.json
package.json
 
 
tsconfig.json
tsconfig.json
 
 

Repository files navigation

A low-level fast crypto library for all runtimes.

Cookie

Set and extract cookie values.

import cookie from 'fast-crypt/cookie';
import * as opts from 'fast-crypt/cookie/options';

// Pre-calculate `${encodeURIComponent(key)}=` and static options
const [extractId, setId] = cookie(
  'id',
  // Static options
  opts.sameSiteLax + opts.secure
);

// Set cookie in a request handler
(c) => {
  c.headers.push([
    'Set-Cookie',
    // Dynamically set cookie options
    setId(userId) + opts.maxAge(7200 * (isAuthor ? 5 : 1))
  ]);
};

// Parse cookie in a request handler
(c) => {
  const cookie = c.req.headers.get('Cookie');
  if (cookie !== null) {
    const userId = extractId(cookie); // string | undefined
    if (userId != null) {
      // Do something with the value
    }

    // Extract other cookies...
  }
};

If you are setting a value that may contain lone surrogates, you should validate the string with str.isWellFormed() to avoid throwing errors.

if (str.isWellFormed()) {
  // No lone surrogates found
  const cookieValue = setId(userId);
}

This check is opt-out as in a lot of cases you can ensure that the value does not contain these characters (like encrypted values).

JWT

You should read this link before consider using JWTs.

import jwt from 'fast-crypt/web/jwt';

// Optional interface for typings
interface Info {
  name: string
}

// Default algorithm is HS256
const [sign, verify] = await jwt<Info>('secret', 'HS256');

// In request handler
{
  // Sign a token
  const token = await sign({ name: 'Reve' });

  // Get a token payload
  const payload = await verify(token);

  // Handle error
  if (typeof payload === 'symbol') {
    // Error name in symbol description
    switch (payload.description) {
      case 'invalid': // Malformed token
      case 'nbf': // Does not match 'nbf' header
      case 'exp': // Does not match 'exp' header
      case 'mismatch': // Invalid token
    }
  }

  payload.name; // Reve
}

Signers

Message signers for signing values like cookies.

HMAC

WebCrypto based APIs:

import hmac from 'fast-crypt/web/signer/hmac';

// Default hash algorithm is SHA-256
const [sign, verify] = await hmac('mysecret', 'SHA-256');

{
  // Sign a message
  const signedValue = await sign('Hi');

  // Verify a signed message
  const value = await verify(signedValue); // 'Hi'

  // Invalid message
  if (value == null) {
    // Handle errors...
  }
}

node:crypto based APIs:

import hmac from 'fast-crypt/node/signer/hmac';
import { verifier } from 'fast-crypt/node/signer';

// Default hash algorithm is sha256
const [sign, verify] = hmac('mysecret', 'sha256');

{
  // Sign a message
  const signedValue = sign('Hi');

  // Verify a signed message
  const value = verify(signedValue); // 'Hi'

  // Invalid message
  if (value == null) {
    // Handle errors...
  }
}

Hashers

Hashing messages.

PBKDF2

Hash passwords with WebCrypto API:

import pbkdf2 from 'fast-crypt/web/hasher/pbkdf2';

const [hash, verify] = pbkdf2({
  salt?: number, // The salt length to generate
  iterations?: number, // Default to 1e5
  hash?: string, // Default to SHA-256
});

const pwd = 'admin';
const hashed = await hash(pwd);
await verify(hashed, pwd) === true;

About

Fast crypto library for all runtimes

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages