eudiplo documentation
  1. Injectables
  2. EncryptionService

File

src/crypto/encryption/encryption.service.ts

Index

Properties
Methods

Constructor

constructor(configService: ConfigService)
Defined in src/crypto/encryption/encryption.service.ts:12
Parameters :
Name Type Optional
configService ConfigService No

Methods

Async decryptJwe
decryptJwe(response: string)
Defined in src/crypto/encryption/encryption.service.ts:51
Type parameters :
  • T
Parameters :
Name Type Optional
response string No
Returns : Promise<T>
getEncryptionPublicKey
getEncryptionPublicKey()
Defined in src/crypto/encryption/encryption.service.ts:56
Returns : JWK
Async onModuleInit
onModuleInit()
Defined in src/crypto/encryption/encryption.service.ts:23
Returns : any

Properties

Private privateEncryptionKey
Type : CryptoKey
Defined in src/crypto/encryption/encryption.service.ts:9
Private privateEnncryptionPath
Type : string
Defined in src/crypto/encryption/encryption.service.ts:11
Private publicEncryptionKey
Type : JWK
Defined in src/crypto/encryption/encryption.service.ts:10
Private publicEncryptionPath
Type : string
Defined in src/crypto/encryption/encryption.service.ts:12
 
import { Injectable, OnModuleInit } from '@nestjs/common';
import { ConfigService } from '@nestjs/config';
import { existsSync, readFileSync, writeFileSync } from 'fs';
import { importJWK, exportJWK, generateKeyPair, jwtDecrypt, JWK } from 'jose';
import { join } from 'path';

@Injectable()
export class EncryptionService implements OnModuleInit {
    private privateEncryptionKey: CryptoKey;
    private publicEncryptionKey: JWK;
    private privateEnncryptionPath: string;
    private publicEncryptionPath: string;

    constructor(private configService: ConfigService) {
        const folder = join(
            this.configService.getOrThrow<string>('FOLDER'),
            'keys',
        );
        this.privateEnncryptionPath = join(folder, 'private-encryption.json');
        this.publicEncryptionPath = join(folder, 'public-encryption.json');
    }

    async onModuleInit() {
        if (!existsSync(this.privateEnncryptionPath)) {
            await generateKeyPair('ECDH-ES', {
                crv: 'P-256',
                extractable: true,
            }).then(async (secret) => {
                writeFileSync(
                    this.privateEnncryptionPath,
                    JSON.stringify(await exportJWK(secret.privateKey), null, 2),
                );
                writeFileSync(
                    this.publicEncryptionPath,
                    JSON.stringify(await exportJWK(secret.publicKey), null, 2),
                );
            });
        }

        await importJWK(
            JSON.parse(readFileSync(this.privateEnncryptionPath, 'utf-8')),
            'ECDH-ES',
        ).then((key) => {
            this.privateEncryptionKey = key as CryptoKey;
        });
        this.publicEncryptionKey = JSON.parse(
            readFileSync(this.publicEncryptionPath, 'utf-8'),
        ) as JWK;
    }

    async decryptJwe<T>(response: string): Promise<T> {
        const res = await jwtDecrypt<T>(response, this.privateEncryptionKey);
        return res.payload;
    }

    getEncryptionPublicKey() {
        return this.publicEncryptionKey;
    }
}

results matching ""

    No results matching ""