flesh out webcrypto

[rapropos]

This should, among other things, sort of address TS issue #3984. Fully making the return type a Promise instead of a PromiseLike is dependent on some sort of resolution of the ability to target the ES6 library separately. Reference document used to create these typings is the 2014.12 W3C WebCrypto API CR.

Generally speaking, this should make code work that used to not compile (such as importing JSON web keys). The only more restrictive change, I believe, is making the name property of Algorithm no longer optional. It is explicitly documented as required in the W3C document.

[msftclas]

Hi @rapropos, I'm your friendly neighborhood Microsoft Pull Request Bot (You can call me MSBOT). Thanks for your contribution!
You've already signed the contribution license agreement. Thanks!

The agreement was validated by Microsoft and real humans are currently evaluating your PR.

TTYL, MSBOT;

[mhegazy]

the algorithm parameter is of type AlgorithmIdentifier, which can be defined as string|Algorithm. not sure i see the point of enumerating all possible Algorithm types here.

[mhegazy]

that also applies to all the other ones. i would suggest adding a new type alias:

type AlgorithmIdentifier = string | Algorithm;

[rapropos]

not sure i see the point of enumerating all possible Algorithm types here

I'm not sure I fully understood the point of this comment until looking at it again now that we have the ability to write type aliases. Assuming you are asking "why are you listing all those xxxParams types instead of just using AlgorithmIdentifier?", the reason is that different algorithms have different allowed purposes, and I thought having them all enumerated would help users see at a glance which algorithms are usable for (e.g.) encrypting/decrypting and which are usable for signing/verifying.

[rapropos]

Thank you for taking the time to comment. The documentation lists available types for adding as "property, method, interface, constructor, or indexer". None of those looked like they would be appropriate for defining the AlgorithmIdentifier and BufferSource aliases that you suggest, so I am unclear as to the proper procedure for defining them.

[mhegazy]

@zhengbli, how can we define a type alias?

[zhengbli]

Why kty is required while others are not? I didn't see any differences among these properties from the spec here

[rapropos]

@zhengbli: kty is required because of the comment in RFC 7517 section 4.1 that says:

This member MUST be present in a JWK.

[zhengbli]

Sorry for the delay. With the latest updates in master, you can define a type alias like the follows:

    {
        "kind": "typedef",
        "name": "IDBValidKey",
        "type": "number | string | Date | IDBArrayKey"
    }

[rapropos]

Having the algorithm parameter to importKey be strictly an AlgorithmIdentifier instead of enumerating the possible types causes problems in my client code:

this.subtle.importKey("jwk", pubjwk,
                                {name: "RSASSA-PKCS1-v1_5", hash: {name: "SHA-256"}},
                                true, ["verify"])
                                .then((pubkey:CryptoKey) => {
                                    this.accessKeys.publicKey = pubkey;
                                })

Argument of type '{ name: string; hash: { name: string; }; }' is not assignable to parameter of type 'string | Algorithm'.
  Object literal may only specify known properties, and 'hash' does not exist in type 'string | Algorithm'.

[rapropos]

CI seems to have failed due to some sort of network error. Is there a way I can try to rerun it?

[zhengbli]

Seems like npm can't install tsd for now for some reason, tested on my local machine with the same result. I'll rerun the test later when it recovers.

[rapropos]

Squashed and rebased.

[mhegazy]

this needs a string overload as well. otherwise somehing like:

var format = "jwk";
c.exportKey(format); /// Error

[rapropos]

Thank you. Added.

[samuelhorwitz]

Thank you for this! I've been trying it locally and it fixes all my issues with WebCrypto breaking due to bad type definitions. However, I am now wrestling with Promise versus PromiseLike sadly. Anyway, hopefully this gets merged into TS soon.

[rapropos]

@samuelhorwitz: Depending on your framework, the PromiseLike/Promise business may turn out to be a blessing in disguise. I ran into some subtle problems with Angular2, whereby it inserts some zone magic into its Promises that isn't sprinkled on the things coming back from WebCrypto. Having the return value be a PromiseLike reminds me that I need to wrap everything coming back from WebCrypto in Promise.resolve() in order for the change detection to fire correctly. In any event, whatever your Promise library, that resolve wrap should be sufficient to convert a PromiseLike to a Promise.

[samuelhorwitz]

Yeah, I suppose so. I was just thrown through a loop because I guess there is no catch on promise likes and I just walked away from the code for a bit, frustrated about how just trying to upgrade Typescript led to so much issues. But anyway I found something else that might be wrong with the PR but I don't know enough about the specs to say:

interface EcKeyImportParams {
    typedCurve: string;
}

This should probably be namedCurve. That's what Chrome expects, at least. Not sure if this is some discrepancy between spec and implementation (haven't looked at the spec).

[rapropos]

Incorporated @samuelhorwitz's catch on EcKeyImportParams and resquashed.

[zhengbli]

The spec says the unwrapKey method returns PromiseLike<CryptoKey>

[zhengbli]

👍 @mhegazy further comments?

[rapropos]

Rebased again. It sure would be convenient if the parser could process a bunch of separate files instead of having two monolithic ones. Would cut down on the merge conflicts a ton.

[mhegazy]

👍

[zhengbli]

@rapropos Thank you for your contribution!