feat: add headers

trueChazza · trueChazza · commit f66ecb549f26 · 2023-09-21T10:38:26.000+12:00
diff --git a/lib/web_push_elixir.ex b/lib/web_push_elixir.ex
@@ -4,12 +4,16 @@ defmodule WebPushElixir do
   @auth_info "Content-Encoding: auth" <> <<0>>
   @one_buffer <<1>>
 
-  def gen_keypair do
+  def gen_key_pair() do
     {public, private} = :crypto.generate_key(:ecdh, :prime256v1)
 
+    {Base.url_encode64(public, padding: false), Base.url_encode64(private, padding: false)}
+  end
+
+  def output_key_pair({public, private}) do
     fn ->
-      Logger.info(%{:public_key => Base.url_encode64(public, padding: false)})
-      Logger.info(%{:private_key => Base.url_encode64(private, padding: false)})
+      Logger.info(%{:public_key => public})
+      Logger.info(%{:private_key => private})
 
       Logger.info(%{:subject => "mailto:admin@email.com"})
     end
@@ -76,4 +80,31 @@ defmodule WebPushElixir do
 
     cipher_text <> cipher_tag
   end
+
+  def get_headers(audience, content_encoding, expiration \\ 12 * 3600) do
+    expiration_timestamp = DateTime.to_unix(DateTime.utc_now()) + expiration
+
+    public_key = Base.url_decode64!(System.get_env("PUBLIC_KEY"), padding: false)
+    private_key = Base.url_decode64!(System.get_env("PRIVATE_KEY"), padding: false)
+
+    payload =
+      %{
+        aud: audience,
+        exp: expiration_timestamp,
+        sub: System.get_env("SUBJECT")
+      }
+      |> JOSE.JWT.from_map()
+
+    jwk =
+      {:ECPrivateKey, 1, private_key, {:namedCurve, {1, 2, 840, 10045, 3, 1, 7}}, public_key, nil}
+      |> JOSE.JWK.from_key()
+
+    {_, jwt} = JOSE.JWS.compact(JOSE.JWT.sign(jwk, %{"alg" => "ES256"}, payload))
+
+    headers(content_encoding, jwt, System.get_env("PUBLIC_KEY"))
+  end
+
+  defp headers("aesgcm", jwt, pub) do
+    %{"Authorization" => "WebPush " <> jwt, "Crypto-Key" => "p256ecdsa=" <> pub}
+  end
 end
diff --git a/test/web_push_elixir_test.exs b/test/web_push_elixir_test.exs
@@ -16,11 +16,11 @@ defmodule WebPushElixirTest do
   @salt_length 16
   @server_public_key_length 65
 
-  test "it should gen keypair" do
-    assert capture_log(WebPushElixir.gen_keypair()) =~ "public_key:"
-    assert capture_log(WebPushElixir.gen_keypair()) =~ "private_key:"
-    assert capture_log(WebPushElixir.gen_keypair()) =~ "subject:"
-    assert capture_log(WebPushElixir.gen_keypair()) =~ "mailto:admin@email.com"
+  test "it should output key pair" do
+    assert capture_log(WebPushElixir.gen_key_pair() |> WebPushElixir.output_key_pair()) =~ "public_key:"
+    assert capture_log(WebPushElixir.gen_key_pair() |> WebPushElixir.output_key_pair()) =~ "private_key:"
+    assert capture_log(WebPushElixir.gen_key_pair() |> WebPushElixir.output_key_pair()) =~ "subject:"
+    assert capture_log(WebPushElixir.gen_key_pair() |> WebPushElixir.output_key_pair()) =~ "mailto:admin@email.com"
   end
 
   test "it should decode" do
@@ -36,4 +36,24 @@ defmodule WebPushElixirTest do
     assert is_binary(response.server_public_key)
     assert byte_size(response.server_public_key) == @server_public_key_length
   end
+
+  test "it should get headers" do
+    {public, private} = WebPushElixir.gen_key_pair()
+
+    System.put_env("PUBLIC_KEY", public)
+
+    System.put_env("PRIVATE_KEY", private)
+
+    System.put_env("SUBJECT", "mailto:admin@email.com")
+
+    assert %{"Authorization" => "WebPush " <> jwt, "Crypto-Key" => "p256ecdsa=" <> public_key} =
+             WebPushElixir.get_headers("http://localhost/", "aesgcm")
+
+    jwk =
+      {:ECPrivateKey, 1, <<>>, {:namedCurve, {1, 2, 840, 10045, 3, 1, 7}},
+       Base.url_decode64!(public_key, padding: false), nil}
+      |> JOSE.JWK.from_key()
+
+    assert {true, _, _} = JOSE.JWT.verify_strict(jwk, ["ES256"], jwt)
+  end
 end
