owltide/server/utils/signed-cookie.ts

/*
	SPDX-FileCopyrightText: © 2025 Hornwitser <code@hornwitser.no>
	SPDX-License-Identifier: AGPL-3.0-or-later
*/
import type { H3Event } from "h3";
import * as fs from "node:fs/promises";

let cachedCookieSecret: CryptoKey;
export async function useCookieSecret(event: H3Event) {
	if (cachedCookieSecret)
		return cachedCookieSecret;

	const runtimeConfig = useRuntimeConfig(event);
	if (!runtimeConfig.cookieSecretKeyFile) throw new Error("NUXT_COOKIE_SECRET_KEY_FILE not set.");
	return cachedCookieSecret = await crypto.subtle.importKey(
		"raw",
		Buffer.from(await fs.readFile(runtimeConfig.cookieSecretKeyFile, "utf-8"), "base64url"),
		{ name: "HMAC", hash: "SHA-256" },
		false,
		["sign", "verify"],
	);
}

export async function setSignedCookie(event: H3Event, name: string, value: string, maxAge?: number) {
	const secret = await useCookieSecret(event);
	const signature = await crypto.subtle.sign("HMAC", secret, Buffer.from(`${name}=${value}`));
	const cookie = `${value}.${Buffer.from(signature).toString("base64url")}`
	setCookie(event, name, cookie, { httpOnly: true, secure: true, sameSite: true, maxAge });
}

export async function getSignedCookie(event: H3Event, name: string) {
	const cookie = getCookie(event, name);
	if (!cookie)
		return;

	const rightDot = cookie.lastIndexOf(".");
	if (rightDot === -1)
		return;

	const value = cookie.slice(0, rightDot);
	const secret = await useCookieSecret(event);
	const signature = Buffer.from(cookie.slice(rightDot + 1), "base64url");
	const valid = await crypto.subtle.verify("HMAC", secret, signature, Buffer.from(`${name}=${value}`));
	if (!valid)
		return

	return value;
}
License under AGPL version 3 or later I firmly believe in free software. The application I'm making here have capabilities that I've not seen in any system. It presents itself as an opportunity to collaborate on a tool that serves the people rather than corporations. Whose incentives are to help people rather, not make the most money. And whose terms ensure that these freedoms and incentives cannot be taken back or subverted. I license this software under the AGPL. 2025-06-30 18:58:24 +02:00			`/*`
			`SPDX-FileCopyrightText: © 2025 Hornwitser <code@hornwitser.no>`
			`SPDX-License-Identifier: AGPL-3.0-or-later`
			`*/`
Implement signed cookie helpers Provide a convenient wrapper for setting SHA-256 HMAC signed cookies and retreiving them with the signature validated. The secret key is configured in the NUXT_COOKIE_SECRET_KEY environment variable. 2025-03-06 22:07:51 +01:00			`import type { H3Event } from "h3";`
Load secrets from files Putting secrets into environment variables is problematic due to them being inherited by sub-processes, the ease as which these can be leaked in logs, and the lack of support for loading secrets into environment variables by systems such as systemd and docker. Change the loading of secrets to be done by loading the content of a file specified by an environment variable. 2025-05-20 00:43:29 +02:00			`import * as fs from "node:fs/promises";`
Implement signed cookie helpers Provide a convenient wrapper for setting SHA-256 HMAC signed cookies and retreiving them with the signature validated. The secret key is configured in the NUXT_COOKIE_SECRET_KEY environment variable. 2025-03-06 22:07:51 +01:00
			`let cachedCookieSecret: CryptoKey;`
			`export async function useCookieSecret(event: H3Event) {`
			`if (cachedCookieSecret)`
			`return cachedCookieSecret;`

			`const runtimeConfig = useRuntimeConfig(event);`
Load secrets from files Putting secrets into environment variables is problematic due to them being inherited by sub-processes, the ease as which these can be leaked in logs, and the lack of support for loading secrets into environment variables by systems such as systemd and docker. Change the loading of secrets to be done by loading the content of a file specified by an environment variable. 2025-05-20 00:43:29 +02:00			`if (!runtimeConfig.cookieSecretKeyFile) throw new Error("NUXT_COOKIE_SECRET_KEY_FILE not set.");`
Implement signed cookie helpers Provide a convenient wrapper for setting SHA-256 HMAC signed cookies and retreiving them with the signature validated. The secret key is configured in the NUXT_COOKIE_SECRET_KEY environment variable. 2025-03-06 22:07:51 +01:00			`return cachedCookieSecret = await crypto.subtle.importKey(`
			`"raw",`
Load secrets from files Putting secrets into environment variables is problematic due to them being inherited by sub-processes, the ease as which these can be leaked in logs, and the lack of support for loading secrets into environment variables by systems such as systemd and docker. Change the loading of secrets to be done by loading the content of a file specified by an environment variable. 2025-05-20 00:43:29 +02:00			`Buffer.from(await fs.readFile(runtimeConfig.cookieSecretKeyFile, "utf-8"), "base64url"),`
Implement signed cookie helpers Provide a convenient wrapper for setting SHA-256 HMAC signed cookies and retreiving them with the signature validated. The secret key is configured in the NUXT_COOKIE_SECRET_KEY environment variable. 2025-03-06 22:07:51 +01:00			`{ name: "HMAC", hash: "SHA-256" },`
			`false,`
			`["sign", "verify"],`
			`);`
			`}`

Make session cookie permament Set a max age for the session cookie to prevent it from expiring when the browser is closed. To prevent the age limit from being being reached the session cookie is refreshed every time the session is loaded. This should fix login being lost when the browser is stopped. 2025-03-11 16:30:51 +01:00			`export async function setSignedCookie(event: H3Event, name: string, value: string, maxAge?: number) {`
Implement signed cookie helpers Provide a convenient wrapper for setting SHA-256 HMAC signed cookies and retreiving them with the signature validated. The secret key is configured in the NUXT_COOKIE_SECRET_KEY environment variable. 2025-03-06 22:07:51 +01:00			`const secret = await useCookieSecret(event);`
Include the name of the cookie in the signature If a cookie is signed for one purpose, but the server also uses a differently named signed cookie name for another purpose, then it's possible for a malicious client to substitute the value of one signed cookie with the value of another and have it pass the signature check. Include the name of the cookie when computing the signature so that no cookies signed for example for "user_session" can be used as a value for a hypothetical "admin_session" cookie. 2025-04-02 23:13:06 +02:00			const signature = await crypto.subtle.sign("HMAC", secret, Buffer.from(`${name}=${value}`));
Implement signed cookie helpers Provide a convenient wrapper for setting SHA-256 HMAC signed cookies and retreiving them with the signature validated. The secret key is configured in the NUXT_COOKIE_SECRET_KEY environment variable. 2025-03-06 22:07:51 +01:00			const cookie = `${value}.${Buffer.from(signature).toString("base64url")}`
Make session cookie permament Set a max age for the session cookie to prevent it from expiring when the browser is closed. To prevent the age limit from being being reached the session cookie is refreshed every time the session is loaded. This should fix login being lost when the browser is stopped. 2025-03-11 16:30:51 +01:00			`setCookie(event, name, cookie, { httpOnly: true, secure: true, sameSite: true, maxAge });`
Implement signed cookie helpers Provide a convenient wrapper for setting SHA-256 HMAC signed cookies and retreiving them with the signature validated. The secret key is configured in the NUXT_COOKIE_SECRET_KEY environment variable. 2025-03-06 22:07:51 +01:00			`}`

			`export async function getSignedCookie(event: H3Event, name: string) {`
			`const cookie = getCookie(event, name);`
			`if (!cookie)`
			`return;`

			`const rightDot = cookie.lastIndexOf(".");`
			`if (rightDot === -1)`
			`return;`

			`const value = cookie.slice(0, rightDot);`
			`const secret = await useCookieSecret(event);`
			`const signature = Buffer.from(cookie.slice(rightDot + 1), "base64url");`
Include the name of the cookie in the signature If a cookie is signed for one purpose, but the server also uses a differently named signed cookie name for another purpose, then it's possible for a malicious client to substitute the value of one signed cookie with the value of another and have it pass the signature check. Include the name of the cookie when computing the signature so that no cookies signed for example for "user_session" can be used as a value for a hypothetical "admin_session" cookie. 2025-04-02 23:13:06 +02:00			const valid = await crypto.subtle.verify("HMAC", secret, signature, Buffer.from(`${name}=${value}`));
Implement signed cookie helpers Provide a convenient wrapper for setting SHA-256 HMAC signed cookies and retreiving them with the signature validated. The secret key is configured in the NUXT_COOKIE_SECRET_KEY environment variable. 2025-03-06 22:07:51 +01:00			`if (!valid)`
			`return`

			`return value;`
			`}`