33 lines
1.1 KiB
JavaScript
33 lines
1.1 KiB
JavaScript
|
import { decode as base64url } from './base64url.js';
|
||
|
|
import { decoder } from '../lib/buffer_utils.js';
|
||
|
|
import isObject from '../lib/is_object.js';
|
||
|
|
import { JWTInvalid } from './errors.js';
|
||
|
|
export function decodeJwt(jwt) {
|
||
|
|
if (typeof jwt !== 'string')
|
||
|
|
throw new JWTInvalid('JWTs must use Compact JWS serialization, JWT must be a string');
|
||
|
|
const { 1: payload, length } = jwt.split('.');
|
||
|
|
if (length === 5)
|
||
|
|
throw new JWTInvalid('Only JWTs using Compact JWS serialization can be decoded');
|
||
|
|
if (length !== 3)
|
||
|
|
throw new JWTInvalid('Invalid JWT');
|
||
|
|
if (!payload)
|
||
|
|
throw new JWTInvalid('JWTs must contain a payload');
|
||
|
|
let decoded;
|
||
|
|
try {
|
||
|
|
decoded = base64url(payload);
|
||
|
|
}
|
||
|
|
catch (_a) {
|
||
|
|
throw new JWTInvalid('Failed to base64url decode the payload');
|
||
|
|
}
|
||
|
|
let result;
|
||
|
|
try {
|
||
|
|
result = JSON.parse(decoder.decode(decoded));
|
||
|
|
}
|
||
|
|
catch (_b) {
|
||
|
|
throw new JWTInvalid('Failed to parse the decoded payload as JSON');
|
||
|
|
}
|
||
|
|
if (!isObject(result))
|
||
|
|
throw new JWTInvalid('Invalid JWT Claims Set');
|
||
|
|
return result;
|
||
|
|
}
|