platform/packages/auth/lib/src/auth_token.dart

import 'dart:collection';
import 'package:angel3_framework/angel3_framework.dart';
import 'dart:convert';
import 'package:crypto/crypto.dart';

/// Calls [BASE64URL], but also works for strings with lengths
/// that are *not* multiples of 4.
String decodeBase64(String str) {
  var output = str.replaceAll('-', '+').replaceAll('_', '/');

  switch (output.length % 4) {
    case 0:
      break;
    case 2:
      output += '==';
      break;
    case 3:
      output += '=';
      break;
    default:
      throw 'Illegal base64url string!"';
  }

  return utf8.decode(base64Url.decode(output));
}

class AuthToken {
  final SplayTreeMap<String, String> _header =
      SplayTreeMap.from({'alg': 'HS256', 'typ': 'JWT'});

  String? ipAddress;
  late DateTime issuedAt;
  num lifeSpan;
  var userId;
  Map<String, dynamic> payload = {};

  AuthToken(
      {this.ipAddress,
      this.lifeSpan = -1,
      this.userId,
      DateTime? issuedAt,
      Map payload = const {}}) {
    this.issuedAt = issuedAt ?? DateTime.now();
    this.payload.addAll(payload.keys
            .fold({}, ((out, k) => out?..[k.toString()] = payload[k])) ??
        {});
    /*
    this.payload.addAll(payload.keys.fold(
            {},
            ((out, k) => out..[k.toString()] = payload[k])
                as Map<String, dynamic>? Function(
                    Map<String, dynamic>?, dynamic)) ??
        {});
    */
  }

  factory AuthToken.fromJson(String jsons) =>
      AuthToken.fromMap(json.decode(jsons) as Map);

  factory AuthToken.fromMap(Map data) {
    return AuthToken(
        ipAddress: data['aud'].toString(),
        lifeSpan: data['exp'] as num,
        issuedAt: DateTime.parse(data['iat'].toString()),
        userId: data['sub'],
        payload: data['pld'] as Map);
  }

  factory AuthToken.parse(String jwt) {
    var split = jwt.split('.');

    if (split.length != 3) {
      throw AngelHttpException.notAuthenticated(message: 'Invalid JWT.');
    }

    var payloadString = decodeBase64(split[1]);
    return AuthToken.fromMap(json.decode(payloadString) as Map);
  }

  factory AuthToken.validate(String jwt, Hmac hmac) {
    var split = jwt.split('.');

    if (split.length != 3) {
      throw AngelHttpException.notAuthenticated(message: 'Invalid JWT.');
    }

    // var headerString = decodeBase64(split[0]);
    var payloadString = decodeBase64(split[1]);
    var data = split[0] + '.' + split[1];
    var signature = base64Url.encode(hmac.convert(data.codeUnits).bytes);

    if (signature != split[2]) {
      throw AngelHttpException.notAuthenticated(
          message: 'JWT payload does not match hashed version.');
    }

    return AuthToken.fromMap(json.decode(payloadString) as Map);
  }

  String serialize(Hmac hmac) {
    var headerString = base64Url.encode(json.encode(_header).codeUnits);
    var payloadString = base64Url.encode(json.encode(toJson()).codeUnits);
    var data = headerString + '.' + payloadString;
    var signature = hmac.convert(data.codeUnits).bytes;
    return data + '.' + base64Url.encode(signature);
  }

  Map toJson() {
    return _splayify({
      "iss": "angel_auth",
      "aud": ipAddress,
      "exp": lifeSpan,
      "iat": issuedAt.toIso8601String(),
      "sub": userId,
      "pld": _splayify(payload)
    });
  }
}

SplayTreeMap _splayify(Map map) {
  var data = {};
  map.forEach((k, v) {
    data[k] = _splay(v);
  });
  return SplayTreeMap.from(data);
}

dynamic _splay(value) {
  if (value is Iterable) {
    return value.map(_splay).toList();
  } else if (value is Map) {
    return _splayify(value);
  } else {
    return value;
  }
}
Switched from session to JWT 2016-09-21 23:09:23 +00:00			`import 'dart:collection';`
Publish angel3_auth 2021-05-14 11:09:48 +00:00			`import 'package:angel3_framework/angel3_framework.dart';`
Remove dart2_constant 2018-09-11 22:14:33 +00:00			`import 'dart:convert';`
Switched from session to JWT 2016-09-21 23:09:23 +00:00			`import 'package:crypto/crypto.dart';`

18 2017-01-20 23:15:21 +00:00			`/// Calls [BASE64URL], but also works for strings with lengths`
			`/// that are not multiples of 4.`
			`String decodeBase64(String str) {`
			`var output = str.replaceAll('-', '+').replaceAll('_', '/');`

			`switch (output.length % 4) {`
			`case 0:`
			`break;`
			`case 2:`
			`output += '==';`
			`break;`
			`case 3:`
			`output += '=';`
			`break;`
			`default:`
			`throw 'Illegal base64url string!"';`
			`}`

1.1.1 2018-06-27 16:36:31 +00:00			`return utf8.decode(base64Url.decode(output));`
18 2017-01-20 23:15:21 +00:00			`}`

Switched from session to JWT 2016-09-21 23:09:23 +00:00			`class AuthToken {`
			`final SplayTreeMap<String, String> _header =`
Migrated angel_auth to NNBD 2021-03-20 23:51:20 +00:00			`SplayTreeMap.from({'alg': 'HS256', 'typ': 'JWT'});`
Switched from session to JWT 2016-09-21 23:09:23 +00:00
Migrated angel_auth to NNBD 2021-03-20 23:51:20 +00:00			`String? ipAddress;`
			`late DateTime issuedAt;`
Fixed null safety issues 2021-05-09 11:16:15 +00:00			`num lifeSpan;`
Switched from session to JWT 2016-09-21 23:09:23 +00:00			`var userId;`
17 2017-01-13 15:50:38 +00:00			`Map<String, dynamic> payload = {};`
Switched from session to JWT 2016-09-21 23:09:23 +00:00
			`AuthToken(`
17 2017-01-13 15:50:38 +00:00			`{this.ipAddress,`
2.1.1 2019-01-05 23:54:48 +00:00			`this.lifeSpan = -1,`
17 2017-01-13 15:50:38 +00:00			`this.userId,`
Migrated angel_auth to NNBD 2021-03-20 23:51:20 +00:00			`DateTime? issuedAt,`
2.1.1 2019-01-05 23:54:48 +00:00			`Map payload = const {}}) {`
Remove "new" 2019-04-19 07:50:04 +00:00			`this.issuedAt = issuedAt ?? DateTime.now();`
Fixed null safety issues 2021-05-09 11:16:15 +00:00			`this.payload.addAll(payload.keys`
			`.fold({}, ((out, k) => out?..[k.toString()] = payload[k])) ??`
			`{});`
			`/*`
Migrated angel_configuration 2021-04-10 11:23:57 +00:00			`this.payload.addAll(payload.keys.fold(`
Migrated angel_auth to NNBD 2021-03-20 23:51:20 +00:00			`{},`
			`((out, k) => out..[k.toString()] = payload[k])`
			`as Map<String, dynamic>? Function(`
			`Map<String, dynamic>?, dynamic)) ??`
			`{});`
Fixed null safety issues 2021-05-09 11:16:15 +00:00			`*/`
Switched from session to JWT 2016-09-21 23:09:23 +00:00			`}`

1.1.1 2018-06-27 16:36:31 +00:00			`factory AuthToken.fromJson(String jsons) =>`
Remove "new" 2019-04-19 07:50:04 +00:00			`AuthToken.fromMap(json.decode(jsons) as Map);`
Switched from session to JWT 2016-09-21 23:09:23 +00:00
			`factory AuthToken.fromMap(Map data) {`
Remove "new" 2019-04-19 07:50:04 +00:00			`return AuthToken(`
Migrated angel_auth to NNBD 2021-03-20 23:51:20 +00:00			`ipAddress: data['aud'].toString(),`
Fixed null safety issues 2021-05-09 11:16:15 +00:00			`lifeSpan: data['exp'] as num,`
Migrated angel_auth to NNBD 2021-03-20 23:51:20 +00:00			`issuedAt: DateTime.parse(data['iat'].toString()),`
			`userId: data['sub'],`
Fixed null safety issues 2021-05-09 11:16:15 +00:00			`payload: data['pld'] as Map);`
Switched from session to JWT 2016-09-21 23:09:23 +00:00			`}`

18 2017-01-20 23:15:21 +00:00			`factory AuthToken.parse(String jwt) {`
Migrated angel_auth to NNBD 2021-03-20 23:51:20 +00:00			`var split = jwt.split('.');`
18 2017-01-20 23:15:21 +00:00
Migrated angel_auth to NNBD 2021-03-20 23:51:20 +00:00			`if (split.length != 3) {`
			`throw AngelHttpException.notAuthenticated(message: 'Invalid JWT.');`
			`}`
18 2017-01-20 23:15:21 +00:00
			`var payloadString = decodeBase64(split[1]);`
Remove "new" 2019-04-19 07:50:04 +00:00			`return AuthToken.fromMap(json.decode(payloadString) as Map);`
18 2017-01-20 23:15:21 +00:00			`}`

Switched from session to JWT 2016-09-21 23:09:23 +00:00			`factory AuthToken.validate(String jwt, Hmac hmac) {`
Migrated angel_auth to NNBD 2021-03-20 23:51:20 +00:00			`var split = jwt.split('.');`
Switched from session to JWT 2016-09-21 23:09:23 +00:00
Migrated angel_auth to NNBD 2021-03-20 23:51:20 +00:00			`if (split.length != 3) {`
			`throw AngelHttpException.notAuthenticated(message: 'Invalid JWT.');`
			`}`
Switched from session to JWT 2016-09-21 23:09:23 +00:00
18 2017-01-20 23:15:21 +00:00			`// var headerString = decodeBase64(split[0]);`
			`var payloadString = decodeBase64(split[1]);`
Migrated angel_auth to NNBD 2021-03-20 23:51:20 +00:00			`var data = split[0] + '.' + split[1];`
1.1.1 2018-06-27 16:36:31 +00:00			`var signature = base64Url.encode(hmac.convert(data.codeUnits).bytes);`
Switched from session to JWT 2016-09-21 23:09:23 +00:00
Migrated angel_auth to NNBD 2021-03-20 23:51:20 +00:00			`if (signature != split[2]) {`
Remove "new" 2019-04-19 07:50:04 +00:00			`throw AngelHttpException.notAuthenticated(`
Migrated angel_auth to NNBD 2021-03-20 23:51:20 +00:00			`message: 'JWT payload does not match hashed version.');`
			`}`
Switched from session to JWT 2016-09-21 23:09:23 +00:00
Remove "new" 2019-04-19 07:50:04 +00:00			`return AuthToken.fromMap(json.decode(payloadString) as Map);`
Switched from session to JWT 2016-09-21 23:09:23 +00:00			`}`

			`String serialize(Hmac hmac) {`
1.1.1 2018-06-27 16:36:31 +00:00			`var headerString = base64Url.encode(json.encode(_header).codeUnits);`
			`var payloadString = base64Url.encode(json.encode(toJson()).codeUnits);`
Migrated angel_auth to NNBD 2021-03-20 23:51:20 +00:00			`var data = headerString + '.' + payloadString;`
Switched from session to JWT 2016-09-21 23:09:23 +00:00			`var signature = hmac.convert(data.codeUnits).bytes;`
Migrated angel_auth to NNBD 2021-03-20 23:51:20 +00:00			`return data + '.' + base64Url.encode(signature);`
Switched from session to JWT 2016-09-21 23:09:23 +00:00			`}`

			`Map toJson() {`
17 2017-01-13 15:50:38 +00:00			`return _splayify({`
Switched from session to JWT 2016-09-21 23:09:23 +00:00			`"iss": "angel_auth",`
			`"aud": ipAddress,`
			`"exp": lifeSpan,`
			`"iat": issuedAt.toIso8601String(),`
17 2017-01-13 15:50:38 +00:00			`"sub": userId,`
			`"pld": _splayify(payload)`
Switched from session to JWT 2016-09-21 23:09:23 +00:00			`});`
			`}`
			`}`
17 2017-01-13 15:50:38 +00:00
			`SplayTreeMap _splayify(Map map) {`
			`var data = {};`
			`map.forEach((k, v) {`
			`data[k] = _splay(v);`
			`});`
Remove "new" 2019-04-19 07:50:04 +00:00			`return SplayTreeMap.from(data);`
17 2017-01-13 15:50:38 +00:00			`}`

Migrated angel_auth to NNBD 2021-03-20 23:51:20 +00:00			`dynamic _splay(value) {`
17 2017-01-13 15:50:38 +00:00			`if (value is Iterable) {`
			`return value.map(_splay).toList();`
Migrated angel_auth to NNBD 2021-03-20 23:51:20 +00:00			`} else if (value is Map) {`
17 2017-01-13 15:50:38 +00:00			`return _splayify(value);`
Migrated angel_auth to NNBD 2021-03-20 23:51:20 +00:00			`} else {`
17 2017-01-13 15:50:38 +00:00			`return value;`
Migrated angel_auth to NNBD 2021-03-20 23:51:20 +00:00			`}`
17 2017-01-13 15:50:38 +00:00			`}`