npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2024 – Pkg Stats / Ryan Hefner

@joph-auth/nd-aes-webcrypto

v1.0.2

Published

AES-GCM encryption with PBKDF2 derived keys using the Web Crypto API

Downloads

5

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

jophauthjophauth

Keywords

AESPBKDF2crypto

Readme

@joph-auth/nd-aes-webcrypto

@joph-auth/nd-aes-webcrypto is a simple, no dependency, library for encrypting plaintext with 256 bit AES-GCM encryption and PBKDF2 derived keys.

This package uses the web crypto API and therefore can only be used where window.crypto and window.crypto.subtle are available.

For compatibility with the NodeJS Crypto module, you should use @joph-auth/nd-aes-nodecrypto instead.

Note: The web and node versions of this package are fully compatible with each other.

WARNING: This has been created solely for educational purposes and should not be used to encrypt sensitive data in real world applications.

Installing pre-built package

The package is published on npm and can be installed with

npm install --save @joph-auth/nd-aes-webcrypto

or

yarn add @joph-auth/nd-aes-webcrypto

The package contains 3 builds.

  • dist/lib-cjs - Default - Built for CommonJS modules.
  • dist/lib-esm - Built for ES2020 modules.
  • dist/web-bundle - Bundled for direct use in browsers.

Usage

CommonJS

const { encrypt, decrypt } = require('@joph-auth/nd-aes-webcrypto');

async function example() {
  const cipher = await encrypt('plain text', 'password');
  console.log(cipher);

  const decrypted = await decrypt(cipher, 'password');
  console.log(decrypted);
}

ES Modules

import { encrypt, decrypt } from '@joph-auth/nd-aes-webcrypto/dist/lib-esm';

async function example() {
  const cipher = await encrypt('plain text', 'password');
  console.log(cipher);

  const decrypted = await decrypt(cipher, 'password');
  console.log(decrypted);
}

Web Bundle

For the web bundle simply copy the dist/web-bundle/nd-aes-webcrypto.min.js and dist/web-bundle/nd-aes-webcrypto.min.js.map files to your project and load in a script element.

This will instantiate the window.ndAesCrypto object.

<html>
  <head>
    <title>No Dependency AES Web Crypto</title>
  </head>
  <body>
    <script src="path/to/nd-aes-webcrypto.min.js"></script>
    <script>
      ndAesCrypto.encrypt('plain text', 'password')
        .then(cipher => {
          console.log(cipher);
          return ndAesCrypto.decrypt(cipher, 'password');
        })
        .then(decrypted => {
          console.log(decrypted);
        });
    </script>
  </body>
</html>

PBKDF2 iterations

It is possible to change the number of PBKDF2 iterations applied to the plaintext password. The default is 10,000 iterations which is the minimum recommended by OWASP, however, this should be increased to the maximum possible whilst maintaining acceptable performance for your use case.

async function example() {
    const cipher = await encrypt('plain text', 'password', 1000000);
    const decrypted = await decrypt(cipher, 'password', 1000000);
}

Build from source

You can clone this repo and build manually.

Run yarn or npm install to install dev dependencies.

Scripts included in package.json are;

  • build:cjs - Builds the library for CommonJS modules.
  • build:esm - Builds the library for ES modules.
  • build:web - Builds the un-minified web bundle.
  • build:web:min - Builds the minified web bundle.
  • build - Builds all of the above.