@anbari/aws-sign

v1.0.1

Published

2 years ago

Sign, Parse and Validate AWS requests

Downloads

0High
0Medium
0Low

yeganemehr

aws typescript signature

This package can help to whomever wants to implement a AWS server or client. It's goals is to provide some class to sign outgoing requests (client-side), parse and verify signatures for incoming requests (server-side).

It also contain some utility class to help you read and write chunked streams.

Installation

You can install using npm.

npm install @anbari/aws-sign

Usage

Sign V4

import { SignerV4 } from "@anbari/aws-sign";

const accessKey = "AKIDEXAMPLE";
const secretKey = "wJalrXUtnFEMI/K7MDENG+bPxRfiCYEXAMPLEKEY";

const signer = new SignerV4();
const headers = {
	Host: "iam.amazonaws.com",
	"Content-Type": "application/x-www-form-urlencoded; charset=utf-8",
	"X-Amz-Date": "20150830T123600Z",
};
const signedHeaders = Object.keys(headers);
const credential = new Credential("us-east-1", new Date(Date.UTC(2015, 7, 30, 12, 36, 0, 0)), "iam", accessKey);

const sign = signer.sign("GET", "/?Action=ListUsers&Version=2010-05-08", headers, credential, secretKey, signedHeaders);

console.log(sign.toString()); //

Parse Authorization Header

import { ParserV4 } from "@anbari/aws-sign";

const parser = new ParserV4();
const sign = parser.parseAuthorization("AWS4-HMAC-SHA512 Credential=AKIDEXAMPLE/20150830/us-east-1/iam/aws4_request, SignedHeaders=content-type;host;x-amz-date, Signature=signature");
console.log(sign);

Validate Incoming Request

import {Server} from "http";
import { ParserV4, ParserV4, SignerV4, IUserRepository, Credential } from "@anbari/aws-sign";

class UserRepository implements IUserRepository {
	public async findByCredential(credential: Credential): Promise<IUser | undefined> {
		if (credential.accessKey === "AKIDEXAMPLE") {
			return {
				accessKey: credential.accessKey,
				secretKey: "wJalrXUtnFEMI/K7MDENG+bPxRfiCYEXAMPLEKEY"
			};
		}
		if (credential.accessKey === "AKIAIOSFODNN7EXAMPLE") {
			return {
				accessKey: credential.accessKey,
				secretKey: "wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY"
			};
		}
		return undefined;
	}
}

const server = new Server((req, res) => {
	const parser = new ParserV4();
	const signer = new SignerV4();
	const users = new UserRepository();
	const validator = new ValidatorV4(parser, signer, users);
	const result = await validator.validateIncomingRequest(req);
	result.body.pipe(res);
});

Published

Vulnerabilities

Links

Maintainers

Keywords

Readme

Installation

Usage

Sign V4

Parse Authorization Header

Validate Incoming Request