A low-level fast crypto library for all runtimes.
Set and extract cookie values.
import * as cookie from 'fast-crypt/cookie';
// Pre-calculate `${encodeURIComponent(key)}=` and static options
const [extractId, setId] = cookie.key(
'id', cookie.sameSiteLax + cookie.secure
);
// Set cookie in a request handler
(c) => {
c.headers.push([
'Set-Cookie',
// Dynamically set cookie options
setId(userId) + cookie.maxAge(7200 * (isAuthor ? 5 : 1))
]);
};
// Parse cookie in a request handler
(c) => {
const cookie = c.req.headers.get('Cookie');
if (cookie !== null) {
const userId = extractId(cookie); // string | undefined
if (userId != null) {
// Parse the value
}
}
};You should read this link before consider using JWTs.
import jwt from 'fast-crypt/web/jwt';
// Optional interface for typings
interface Info {
name: string
}
// Default algorithm is HS256
const [sign, verify] = await jwt<Info>('secret', 'HS256');
// In request handler
{
// Sign a token
const token = await sign({ name: 'Reve' });
// Get a token payload
const payload = await verify(token);
// Handle error
if (typeof payload === 'symbol') {
// Error name in symbol description
switch (payload.description) {
case 'invalid': // Malformed token
case 'nbf': // Does not match 'nbf' header
case 'exp': // Does not match 'exp' header
case 'mismatch': // Invalid token
}
}
payload.name; // Reve
}Message signers for signing values like cookies.
WebCrypto based APIs:
import hmac from 'fast-crypt/web/signer/hmac';
// Default hash algorithm is SHA-256
const [sign, verify] = await hmac('mysecret', 'SHA-256');
{
// Sign a message
const signedValue = await sign('Hi');
// Verify a signed message
const value = await verify(signedValue); // 'Hi'
// Invalid message
if (value == null) {
// Handle errors...
}
}node:crypto based APIs:
import hmac from 'fast-crypt/node/signer/hmac';
import { verifier } from 'fast-crypt/node/signer';
// Default hash algorithm is sha256
const [sign, verify] = hmac('mysecret', 'sha256');
{
// Sign a message
const signedValue = sign('Hi');
// Verify a signed message
const value = verify(signedValue); // 'Hi'
// Invalid message
if (value == null) {
// Handle errors...
}
}Hashing messages.
Hash passwords with WebCrypto API:
import pbkdf2 from 'fast-crypt/web/hasher/pbkdf2';
const [hash, verify] = pbkdf2({
salt?: number, // The salt length to generate
iterations?: number, // Default to 1e5
hash?: string, // Default to SHA-256
});
const pwd = 'admin';
const hashed = await hash(pwd);
await verify(hashed, pwd) === true;