2022-05-11 22:47:31 +00:00
|
|
|
package jwt
|
|
|
|
|
|
|
|
import (
|
2023-05-26 04:50:41 +00:00
|
|
|
"bytes"
|
|
|
|
"crypto/rand"
|
2022-05-11 22:47:31 +00:00
|
|
|
"crypto/rsa"
|
|
|
|
"crypto/x509"
|
2023-05-26 04:50:41 +00:00
|
|
|
"encoding/asn1"
|
2022-05-11 22:47:31 +00:00
|
|
|
"encoding/pem"
|
|
|
|
|
2023-05-26 04:50:41 +00:00
|
|
|
"npm/internal/logger"
|
2023-02-24 07:19:07 +00:00
|
|
|
|
|
|
|
"github.com/rotisserie/eris"
|
2022-05-11 22:47:31 +00:00
|
|
|
)
|
|
|
|
|
|
|
|
var (
|
|
|
|
privateKey *rsa.PrivateKey
|
|
|
|
publicKey *rsa.PublicKey
|
|
|
|
)
|
|
|
|
|
|
|
|
// GetPrivateKey will load the key from config package and return a usable object
|
|
|
|
// It should only load from file once per program execution
|
|
|
|
func GetPrivateKey() (*rsa.PrivateKey, error) {
|
|
|
|
if privateKey == nil {
|
|
|
|
var blankKey *rsa.PrivateKey
|
|
|
|
|
2023-05-26 04:50:41 +00:00
|
|
|
if currentKeys.PrivateKey == "" {
|
2023-02-24 07:19:07 +00:00
|
|
|
return blankKey, eris.New("Could not get Private Key from configuration")
|
2022-05-11 22:47:31 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
var err error
|
2023-05-26 04:50:41 +00:00
|
|
|
privateKey, err = LoadPemPrivateKey(currentKeys.PrivateKey)
|
2022-05-11 22:47:31 +00:00
|
|
|
if err != nil {
|
|
|
|
return blankKey, err
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
pub, pubErr := GetPublicKey()
|
|
|
|
if pubErr != nil {
|
|
|
|
return privateKey, pubErr
|
|
|
|
}
|
|
|
|
|
|
|
|
privateKey.PublicKey = *pub
|
|
|
|
|
|
|
|
return privateKey, pubErr
|
|
|
|
}
|
|
|
|
|
|
|
|
// GetPublicKey will load the key from config package and return a usable object
|
|
|
|
// It should only load once per program execution
|
|
|
|
func GetPublicKey() (*rsa.PublicKey, error) {
|
|
|
|
if publicKey == nil {
|
|
|
|
var blankKey *rsa.PublicKey
|
|
|
|
|
2023-05-26 04:50:41 +00:00
|
|
|
if currentKeys.PublicKey == "" {
|
|
|
|
return blankKey, eris.New("Could not get Public Key from configuration")
|
2022-05-11 22:47:31 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
var err error
|
2023-05-26 04:50:41 +00:00
|
|
|
publicKey, err = LoadPemPublicKey(currentKeys.PublicKey)
|
2022-05-11 22:47:31 +00:00
|
|
|
if err != nil {
|
|
|
|
return blankKey, err
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return publicKey, nil
|
|
|
|
}
|
|
|
|
|
|
|
|
// LoadPemPrivateKey reads a key from a PEM encoded string and returns a private key
|
|
|
|
func LoadPemPrivateKey(content string) (*rsa.PrivateKey, error) {
|
|
|
|
var key *rsa.PrivateKey
|
|
|
|
data, _ := pem.Decode([]byte(content))
|
|
|
|
var err error
|
|
|
|
key, err = x509.ParsePKCS1PrivateKey(data.Bytes)
|
|
|
|
if err != nil {
|
|
|
|
return key, err
|
|
|
|
}
|
|
|
|
return key, nil
|
|
|
|
}
|
|
|
|
|
|
|
|
// LoadPemPublicKey reads a key from a PEM encoded string and returns a public key
|
|
|
|
func LoadPemPublicKey(content string) (*rsa.PublicKey, error) {
|
|
|
|
var key *rsa.PublicKey
|
|
|
|
data, _ := pem.Decode([]byte(content))
|
|
|
|
publicKeyFileImported, err := x509.ParsePKCS1PublicKey(data.Bytes)
|
|
|
|
if err != nil {
|
|
|
|
return key, err
|
|
|
|
}
|
|
|
|
|
|
|
|
return publicKeyFileImported, nil
|
|
|
|
}
|
2023-05-26 04:50:41 +00:00
|
|
|
|
|
|
|
func generateKeys() (KeysModel, error) {
|
|
|
|
m := KeysModel{}
|
|
|
|
reader := rand.Reader
|
|
|
|
bitSize := 4096
|
|
|
|
|
|
|
|
key, err := rsa.GenerateKey(reader, bitSize)
|
|
|
|
if err != nil {
|
|
|
|
return m, err
|
|
|
|
}
|
|
|
|
|
|
|
|
privateKey := &pem.Block{
|
|
|
|
Type: "PRIVATE KEY",
|
|
|
|
Bytes: x509.MarshalPKCS1PrivateKey(key),
|
|
|
|
}
|
|
|
|
|
|
|
|
privateKeyBuffer := new(bytes.Buffer)
|
|
|
|
err = pem.Encode(privateKeyBuffer, privateKey)
|
|
|
|
if err != nil {
|
|
|
|
return m, err
|
|
|
|
}
|
|
|
|
|
|
|
|
asn1Bytes, err := asn1.Marshal(key.PublicKey)
|
|
|
|
if err != nil {
|
|
|
|
return m, err
|
|
|
|
}
|
|
|
|
|
|
|
|
publicKey := &pem.Block{
|
|
|
|
Type: "PUBLIC KEY",
|
|
|
|
Bytes: asn1Bytes,
|
|
|
|
}
|
|
|
|
|
|
|
|
publicKeyBuffer := new(bytes.Buffer)
|
|
|
|
err = pem.Encode(publicKeyBuffer, publicKey)
|
|
|
|
if err != nil {
|
|
|
|
return m, err
|
|
|
|
}
|
|
|
|
|
|
|
|
m.PublicKey = publicKeyBuffer.String()
|
|
|
|
m.PrivateKey = privateKeyBuffer.String()
|
|
|
|
|
|
|
|
logger.Info("Generated new RSA keys")
|
|
|
|
|
|
|
|
return m, nil
|
|
|
|
}
|