teldrive/utils/auth/jwe.go

63 lines
982 B
Go
Raw Normal View History

2023-08-12 19:21:42 +08:00
package auth
import (
"encoding/json"
"os"
2023-08-16 05:53:02 +08:00
"github.com/divyam234/teldrive/types"
2023-08-12 19:21:42 +08:00
"github.com/go-jose/go-jose/v3"
)
func Encode(payload *types.JWTClaims) (string, error) {
rcpt := jose.Recipient{
Algorithm: jose.PBES2_HS256_A128KW,
Key: os.Getenv("JWT_SECRET"),
}
enc, err := jose.NewEncrypter(jose.A128CBC_HS256, rcpt, nil)
if err != nil {
return "", err
}
jwt, _ := json.Marshal(payload)
jweObject, err := enc.Encrypt(jwt)
if err != nil {
return "", err
}
jweToken, err := jweObject.CompactSerialize()
if err != nil {
return "", err
}
return jweToken, nil
}
func Decode(token string) (*types.JWTClaims, error) {
jwe, err := jose.ParseEncrypted(token)
if err != nil {
return nil, err
}
decryptedData, err := jwe.Decrypt(os.Getenv("JWT_SECRET"))
if err != nil {
return nil, err
}
jwtToken := &types.JWTClaims{}
err = json.Unmarshal(decryptedData, jwtToken)
if err != nil {
return nil, err
}
return jwtToken, nil
}