Secure random token in Node.js

Question

In this question Erik needs to generate a secure random token in Node.js. There's the method crypto.randomBytes that generates a random Buffer. However, the base64 encoding in node is not url-safe, it includes / and + instead of - and _. Therefore, the easiest way to generate such token I've found is

require('crypto').randomBytes(48, function(ex, buf) {
    token = buf.toString('base64').replace(/\//g,'_').replace(/\+/g,'-');
});

Is there a more elegant way?

There's nothing more needed. What rest would you like to see? — Hubert OG, Commented Aug 12, 2013 at 13:46
Nevermind, I got it to work, was just unsure of how you threw it in, but got a better grasp of the concept — Lion789, Commented Aug 12, 2013 at 19:22
Shameless self-plug, I created yet another npm package: tokgen. You can specify allowed characters using a range syntax similar to character classes in regular expressions ('a-zA-Z0-9_-'). — Max Truxa, Commented Aug 9, 2016 at 19:18
This may be convenient for anyone who'd like a specific string length. The 3/4th's is to handle the base conversion. /*returns a base64 encoded string of length*/ function randomString(length){ return crypto.randomBytes(length*3/4).toString('base64'); } Works nice for those databases with those character limits. — TheUnknownGeek, Commented Oct 19, 2017 at 21:51

mikemaccana · Accepted Answer · 2016-03-18 18:34:37Z

475

Try crypto.randomBytes():

require('crypto').randomBytes(48, function(err, buffer) {
  var token = buffer.toString('hex');
});

The 'hex' encoding works in node v0.6.x or newer.

edited Mar 18, 2016 at 18:34

mikemaccana

119k107 gold badges417 silver badges516 bronze badges

answered Jan 13, 2012 at 19:33

thejh

45.5k18 gold badges97 silver badges107 bronze badges

4

That seems better, thanks! A 'base64-url' encoding would be nice, though.
– Hubert OG
Commented Jan 13, 2012 at 19:40
2

Thanks for the tip, but I think the OP simply wanted the already-standard RFC 3548 section 4 "Base 64 Encoding with URL and Filename Safe Alphabet". IMO, replacing the characters is "elegant enough".
– natevw
Commented Oct 7, 2013 at 21:58
18

If you're looking for the above as a bash one-liner, you can do node -e "require('crypto').randomBytes(48, function(ex, buf) { console.log(buf.toString('hex')) });"
– Dmitry Minkovsky
Commented Feb 25, 2014 at 18:00
28

And you can always do buf.toString('base64') to get a Base64-encoded number.
– Dmitry Minkovsky
Commented Feb 25, 2014 at 18:11
7

A slightly more compact version of Dmitry's excellent one-liner: node -p "require('crypto').randomBytes(48).toString('hex');" (subbing base64 for hex) if desired
– eddies
Commented Aug 6, 2018 at 7:56

| Show 8 more comments

phoenix2010 · Accepted Answer · 2014-08-13 16:59:27Z

350

Synchronous option in-case if you are not a JS expert like me. Had to spend some time on how to access the inline function variable

var token = crypto.randomBytes(64).toString('hex');

answered Aug 13, 2014 at 16:59

phoenix2010

3,7131 gold badge15 silver badges11 bronze badges

10

Also in case you don't want to have everything nested. Thanks!
– Michael Ozeryansky
Commented Oct 7, 2016 at 16:50
5

While this definitely works, do note that in most cases you'll want the async option demonstrated in thejh's answer.
– Triforcey
Commented Jun 10, 2018 at 21:18
2

const generateToken = (): Promise<string> => new Promise(resolve => randomBytes(48, (err, buffer) => resolve(buffer.toString('hex'))));
– yantrab
Commented May 1, 2019 at 4:21
2

@Triforcey can you explain why you usually would want the async option?
– dcts
Commented Jul 16, 2019 at 5:17
2

@thomas Random data can take a while to calculate depending on hardware. In some cases if the computer runs out of random data it'll just return something in it's place. However in other cases it's possible the computer will delay the return of random data (which is actually what you would want) resulting in a slow call.
– Triforcey
Commented Jul 17, 2019 at 15:38

| Show 2 more comments

Yves M. · Accepted Answer · 2023-07-05 14:34:13Z

1. Using nanoid third party library [NEW!]

A tiny, secure, URL-friendly, unique string ID generator for JavaScript

https://github.com/ai/nanoid

import { nanoid } from "nanoid";
const id = nanoid(48);

2. Base 64 Encoding with URL and Filename Safe Alphabet

Page 7 of RCF 4648 describes how to encode in base 64 with URL safety.

This is natively supported by Node.js >=v14.18.0:

const crypto = require("crypto");

/** Sync */
function randomStringAsBase64Url(size) {
  return crypto.randomBytes(size).toString("base64url");
}

Usage example:

randomStringAsBase64Url(20);
// Returns "AXSGpLVjne_f7w5Xg-fWdoBwbfs" which is 27 characters length.

Note that the returned string length will not match with the size argument (size != final length).

If you are using Node.js <v14.18.0 you can use an existing library like base64url to do the job. The function will be:

const crypto = require("crypto");
const base64url = require("base64url");
    
/** Sync */
function randomStringAsBase64Url(size) {
  return base64url(crypto.randomBytes(size));
}

3. Crypto random values from limited set of characters

Beware that with this solution the generated random string is not uniformly distributed.

You can also build a strong random string from a limited set of characters like that:

const crypto = require("crypto");

/** Sync */
function randomString(length, chars) {
  if (!chars) {
    throw new Error("Argument 'chars' is undefined");
  }

  const charsLength = chars.length;
  if (charsLength > 256) {
    throw new Error("Argument 'chars' should not have more than 256 characters"
      + ", otherwise unpredictability will be broken");
  }

  const randomBytes = crypto.randomBytes(length);
  let result = new Array(length);

  let cursor = 0;
  for (let i = 0; i < length; i++) {
    cursor += randomBytes[i];
    result[i] = chars[cursor % charsLength];
  }

  return result.join("");
}

/** Sync */
function randomAsciiString(length) {
  return randomString(length,
    "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789");
}

Usage example:

randomAsciiString(20);
// Returns "rmRptK5niTSey7NlDk5y" which is 20 characters length.

randomString(20, "ABCDEFG");
// Returns "CCBAAGDGBBEGBDBECDCE" which is 20 characters length.

@Lexynux Solution 1 (Base 64 Encoding with URL and Filename Safe Alphabet) because it is the strongest solution in term of security. This solution only encode the key and does not interfere with the key production process. — Yves M., Commented Dec 28, 2015 at 13:28
Beware that the generated random string is not uniformly distributed. An easy example to show this is, that for a character set of length 255, and a string length of 1, the chance of the first character appearing is twice as high. — Florian Wendelborn, Commented Jul 25, 2016 at 4:09
@Dodekeract Yes, you are talking about solution 2.. That's why solution 1 is way more strong — Yves M., Commented Jul 25, 2016 at 8:41
@AlexeySh. a bit hard to remember as this was nearly a decade ago by now. I think it’s about the danger of just using mod/division rest to hash which character you get out of the randomness. For example, if you roll a random byte (0-255) and then only provide 255 possible characters the random 0 = random 255 = first possible character, so it’s not uniform — Florian Wendelborn, Commented Apr 1, 2023 at 0:25
For option 2, note that since Node v14.18.0 'base64url' is supported as a built-in encoding, so you can just crypto.randomBytes(size).toString('base64url') now. — Tim Perry, Commented Jul 4, 2023 at 17:29

Inkling · Accepted Answer · 2021-12-12 01:28:44Z

22

As of Node.js 14.18 and 15.7, url-safe base64 encoding support is built-in:

const token = crypto.randomBytes(48).toString('base64url');

If you want to use the async version (because the function may have to wait for entropy), it can be promisified to align better with modern patterns:

const randomBytesAsync = util.promisify(crypto.randomBytes);

const token = (await randomBytesAsync(48)).toString('base64url');

answered Dec 12, 2021 at 1:28

Inkling

3,7004 gold badges35 silver badges46 bronze badges

Add a comment |

real_ate · Accepted Answer · 2017-06-08 11:05:49Z

The up-to-date right way to do this asynchronously using ES 2016 standards of async and await (as of Node 7) would be the following:

const crypto = require('crypto');

function generateToken({ stringBase = 'base64', byteLength = 48 } = {}) {
  return new Promise((resolve, reject) => {
    crypto.randomBytes(byteLength, (err, buffer) => {
      if (err) {
        reject(err);
      } else {
        resolve(buffer.toString(stringBase));
      }
    });
  });
}

async function handler(req, res) {
   // default token length
   const newToken = await generateToken();
   console.log('newToken', newToken);

   // pass in parameters - adjust byte length
   const shortToken = await generateToken({byteLength: 20});
   console.log('newToken', shortToken);
}

This works out of the box in Node 7 without any Babel transformations

I've updated this example to incorporate the newer method of passing named parameters as described here: 2ality.com/2011/11/keyword-parameters.html — real_ate, Commented Jun 8, 2017 at 11:06

Kedem · Accepted Answer · 2016-03-15 10:34:22Z

14

Random URL and filename string safe (1 liner)

Crypto.randomBytes(48).toString('base64').replace(/\+/g, '-').replace(/\//g, '_').replace(/\=/g, '');

answered Mar 15, 2016 at 10:34

Kedem

2742 silver badges5 bronze badges

A wonderful answer in it's simplicity! Just be aware that it could stall the event loop in an indeterministic way (only relevant if it's used often, in a somewhat loaded, time-sensitive system). Otherwise, do the same thing, but using the async version of randomBytes. See nodejs.org/api/…
– Alec Thilenius
Commented Sep 28, 2016 at 19:50

Add a comment |

Markus Hedlund · Accepted Answer · 2017-07-31 12:49:26Z

11

With async/await and promisification.

const crypto = require('crypto')
const randomBytes = Util.promisify(crypto.randomBytes)
const plain = (await randomBytes(24)).toString('base64').replace(/\W/g, '')

Generates something similar to VjocVHdFiz5vGHnlnwqJKN0NdeHcz8eM

answered Jul 31, 2017 at 12:49

Markus Hedlund

24k22 gold badges81 silver badges110 bronze badges

Add a comment |

n4m31ess_c0d3r · Accepted Answer · 2017-01-21 20:31:45Z

10

Check out:

var crypto = require('crypto');
crypto.randomBytes(Math.ceil(length/2)).toString('hex').slice(0,length);

edited Jan 21, 2017 at 20:31

n4m31ess_c0d3r

3,1085 gold badges27 silver badges35 bronze badges

answered Jan 21, 2017 at 19:35

sudam

1011 silver badge3 bronze badges

1

Nice! Absolutely underrated solution. Would be great if you rename "length" to "desiredLength" and initiate it with a value before using it :)
– Florian Blum
Commented Jul 25, 2017 at 21:07
For anyone wondering, the ceil and slice calls are necessary for desired lengths that are odd. For even lengths, they don't change anything.
– Seth
Commented Sep 12, 2018 at 20:42

Add a comment |

Hasan Sefa Ozalp · Accepted Answer · 2022-04-25 23:25:29Z

crypto-random-string is a nice module for this.

const cryptoRandomString = require('crypto-random-string');
 
cryptoRandomString({length: 10});                          // => '2cf05d94db'
cryptoRandomString({length: 10, type: 'base64'});          // => 'YMiMbaQl6I'
cryptoRandomString({length: 10, type: 'url-safe'});        // => 'YN-tqc8pOw'
cryptoRandomString({length: 10, type: 'numeric'});         // => '8314659141'
cryptoRandomString({length: 6, type: 'distinguishable'});  // => 'CDEHKM'
cryptoRandomString({length: 10, type: 'ascii-printable'}); // => '`#Rt8$IK>B'
cryptoRandomString({length: 10, type: 'alphanumeric'});    // => 'DMuKL8YtE7'
cryptoRandomString({length: 10, characters: 'abc'});       // => 'abaaccabac'

cryptoRandomString.async(options) add .async if you want to get a promise.

Kvetoslav · Accepted Answer · 2023-02-09 20:49:05Z

5

in your terminal just write

node -e "console.log(crypto.randomBytes(48).toString('hex'))"

Or in your code use:

const randomToken = () => {
   crypto.randomBytes(48).toString('hex');
}

edited Feb 9, 2023 at 20:49

answered Jul 27, 2022 at 13:26

Kvetoslav

5334 silver badges21 bronze badges

Add a comment |

basickarl · Accepted Answer · 2017-05-09 21:19:18Z

4

Look at real_ates ES2016 way, it's more correct.

ECMAScript 2016 (ES7) way

import crypto from 'crypto'; function spawnTokenBuf() { return function(callback) { crypto.randomBytes(48, callback); }; } async function() { console.log((await spawnTokenBuf()).toString('base64')); };

Generator/Yield Way

var crypto = require('crypto');
var co = require('co');

function spawnTokenBuf() {
    return function(callback) {
        crypto.randomBytes(48, callback);
    };
}

co(function* () {
    console.log((yield spawnTokenBuf()).toString('base64'));
});

edited May 9, 2017 at 21:19

answered May 28, 2015 at 5:19

basickarl

39.4k69 gold badges230 silver badges349 bronze badges

@Jeffpowrs Indeed, Javascript is upgrading :) Lookup Promises and Generators!
– basickarl
Commented Nov 16, 2015 at 21:54
try await, another ECMA7 promise handler
– Jain
Commented Jul 8, 2016 at 6:50
I think that you should make the ES 2016 the first example on this as it is moving towards the "right way to do it" in most cases
– real_ate
Commented May 9, 2017 at 10:00
I added an answer of my own below that was specific to Node (using require instead of import). Was there a particular reason why you're using import? Do you have babel running?
– real_ate
Commented May 9, 2017 at 15:31
@real_ate Indeed I was, I've reverted to using CommonJS until import is officially supported.
– basickarl
Commented May 9, 2017 at 21:20

Add a comment |

jsonmaur · Accepted Answer · 2016-02-19 23:54:45Z

3

https://www.npmjs.com/package/crypto-extra has a method for it :)

var value = crypto.random(/* desired length */)

answered Feb 19, 2016 at 23:54

jsonmaur

291 silver badge4 bronze badges

great! But isnt it .randomString (length, charset) (see documentation). So you could user for example crypto.randomString(12).
– dcts
Commented Jan 13, 2020 at 18:32

Add a comment |

aleung · Accepted Answer · 2016-08-05 05:45:09Z

3

The npm module anyid provides flexible API to generate various kinds of string ID / code.

To generate random string in A-Za-z0-9 using 48 random bytes:

const id = anyid().encode('Aa0').bits(48 * 8).random().id();
// G4NtiI9OYbSgVl3EAkkoxHKyxBAWzcTI7aH13yIUNggIaNqPQoSS7SpcalIqX0qGZ

To generate fixed length alphabet only string filled by random bytes:

const id = anyid().encode('Aa').length(20).random().id();
// qgQBBtDwGMuFHXeoVLpt

Internally it uses crypto.randomBytes() to generate random.

edited Aug 5, 2016 at 5:45

answered Aug 5, 2016 at 5:39

aleung

10.2k4 gold badges59 silver badges70 bronze badges

Add a comment |

dcts · Accepted Answer · 2020-01-13 18:29:11Z

2

Simple function that gets you a token that is URL safe and has base64 encoding! It's a combination of 2 answers from above.

const randomToken = () => {
    crypto.randomBytes(64).toString('base64').replace(/\//g,'_').replace(/\+/g,'-');
}

answered Jan 13, 2020 at 18:29

dcts

1,59915 silver badges34 bronze badges

Add a comment |

Endless · Accepted Answer · 2022-12-30 23:03:34Z

0 dependency free solution... Works in browsers, deno & nodejs (with new global web crypto)

const random = size => btoa(
  String.fromCharCode(
    ...crypto.getRandomValues(
      new Uint8Array(size)
    )
  )
).replaceAll('+', 'x').replaceAll('/', 'I').slice(0, size)

for (let i = 5; i--;) console.log(random(16))

All doe I would just have used one single uint8array \w predefined length and called crypto.getRandomValues whenever I need something uniq (and slice it if i have to) and never deal with strings or base64, base64 is just unnecessary overhead. (allocating lots of buffer to fast can be costly)

const buf256 = new Uint8Array(256)
const random = crypto.getRandomValues.bind(crypto, buf256)

for (let i = 5; i--;) random()//.slice()

xMan · Accepted Answer · 2021-11-07 17:15:50Z

0

You can use the random-token lib. it's very easy to use . :)

var randomToken = require('random-token').create('abcdefghijklmnopqrstuvwxzyABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789');
var token = randomToken(16);

And also you can not use different salt

var randomToken = require('random-token');
var token = randomToken(16); // output -> d8d4kd29c40f021 ```

answered Nov 7, 2021 at 17:15

xMan

1

Add a comment |

Collectives™ on Stack Overflow

Secure random token in Node.js

16 Answers 16

1. Using nanoid third party library [NEW!]

2. Base 64 Encoding with URL and Filename Safe Alphabet

3. Crypto random values from limited set of characters

ECMAScript 2016 (ES7) way

Generator/Yield Way

Not the answer you're looking for? Browse other questions tagged
javascript
node.js
base64
securestring
or ask your own question.

Linked

Hot Network Questions

Collectives™ on Stack Overflow

16 Answers 16

1. Using nanoid third party library [NEW!]

2. Base 64 Encoding with URL and Filename Safe Alphabet

3. Crypto random values from limited set of characters

ECMAScript 2016 (ES7) way

Generator/Yield Way

Not the answer you're looking for? Browse other questions tagged javascriptnode.jsbase64securestring or ask your own question.

Linked

Related

Not the answer you're looking for? Browse other questions tagged
javascript
node.js
base64
securestring
or ask your own question.