kyy/swagger-ui
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: overweight dependencies in PKCE implementation (#5658)

Browse Source
This commit is contained in:
kyle
2019-10-11 17:48:33 -07:00
committed by GitHub
parent 75a0e5d5dc
commit 25025cb092
3 changed files with 43 additions and 23 deletions
Download Patch File Download Diff File Expand all files Collapse all files

21
src/core/utils.js
View File

@@ -22,7 +22,9 @@ import { memoizedSampleFromSchema, memoizedCreateXMLExample } from "core/plugins
import win from "./window"
import cssEscape from "css.escape"
import getParameterSchema from "../helpers/get-parameter-schema"
import crypto from "crypto"
import randomBytes from "randombytes"
import shaJs from "sha.js"
const DEFAULT_RESPONSE_KEY = "default"
@@ -868,21 +870,20 @@ export function paramToValue(param, paramValues) {
// adapted from https://auth0.com/docs/flows/guides/auth-code-pkce/includes/create-code-verifier
export function generateCodeVerifier() {
return toBase64UrlEncoded(
crypto.randomBytes(32)
.toString("base64")
return b64toB64UrlEncoded(
randomBytes(32).toString("base64")
)
}
export function createCodeChallenge(codeVerifier) {
return toBase64UrlEncoded(
crypto.createHash("sha256")
.update(codeVerifier, "ascii")
.digest("base64")
)
return b64toB64UrlEncoded(
shaJs("sha256")
.update(codeVerifier)
.digest("base64")
)
}
function toBase64UrlEncoded(str) {
function b64toB64UrlEncoded(str) {
return str
.replace(/\+/g, "-")
.replace(/\//g, "_")