lwm2m-security-config.models.ts
2.47 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
///
/// Copyright © 2016-2021 The Thingsboard Authors
///
/// Licensed under the Apache License, Version 2.0 (the "License");
/// you may not use this file except in compliance with the License.
/// You may obtain a copy of the License at
///
/// http://www.apache.org/licenses/LICENSE-2.0
///
/// Unless required by applicable law or agreed to in writing, software
/// distributed under the License is distributed on an "AS IS" BASIS,
/// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
/// See the License for the specific language governing permissions and
/// limitations under the License.
///
export const LEN_MAX_PSK = 64;
export const LEN_MAX_PRIVATE_KEY = 134;
export const LEN_MAX_PUBLIC_KEY_RPK = 182;
export const LEN_MAX_PUBLIC_KEY_X509 = 3000;
export const KEY_REGEXP_HEX_DEC = /^[-+]?[0-9A-Fa-f]+\.?[0-9A-Fa-f]*?$/;
export enum Lwm2mSecurityType {
PSK = 'PSK',
RPK = 'RPK',
X509 = 'X509',
NO_SEC = 'NO_SEC'
}
export const Lwm2mSecurityTypeTranslationMap = new Map<Lwm2mSecurityType, string>(
[
[Lwm2mSecurityType.PSK, 'Pre-Shared Key'],
[Lwm2mSecurityType.RPK, 'Raw Public Key'],
[Lwm2mSecurityType.X509, 'X.509 Certificate'],
[Lwm2mSecurityType.NO_SEC, 'No Security'],
]
);
export interface ClientSecurityConfig {
securityConfigClientMode: Lwm2mSecurityType;
endpoint: string;
identity?: string;
key?: string;
cert?: string;
}
export interface ServerSecurityConfig {
securityMode: Lwm2mSecurityType;
clientPublicKeyOrId?: string;
clientSecretKey?: string;
}
interface BootstrapSecurityConfig {
bootstrapServer: ServerSecurityConfig;
lwm2mServer: ServerSecurityConfig;
}
export interface Lwm2mSecurityConfigModels {
client: ClientSecurityConfig;
bootstrap: BootstrapSecurityConfig;
}
export function getDefaultClientSecurityConfig(securityConfigMode: Lwm2mSecurityType, endPoint = ''): ClientSecurityConfig {
let security = {
securityConfigClientMode: securityConfigMode,
endpoint: endPoint,
identity: '',
key: '',
};
switch (securityConfigMode) {
case Lwm2mSecurityType.X509:
security = { ...security, ...{cert: ''}};
break;
case Lwm2mSecurityType.PSK:
security = { ...security, ...{identity: endPoint, key: ''}};
break;
case Lwm2mSecurityType.RPK:
security = { ...security, ...{key: ''}};
break;
}
return security;
}
export function getDefaultServerSecurityConfig(): ServerSecurityConfig {
return {
securityMode: Lwm2mSecurityType.NO_SEC
};
}