wip: monorepro

chore: readme maintenance

.env

@@ -1,4 +0,0 @@
-SERVER_PORT=3003
-
-LOG_LEVEL=info
-LOG_ENABLED=true

.eslintrc

@@ -1,34 +0,0 @@
-{
-	"extends": "airbnb",
-	"env": {
-		"node": true
-	},
-	"parserOptions": {
-		"ecmaVersion": 8,
-		"sourceType": "script",
-		"ecmaFeatures": {
-			"modules": false
-		}
-	},
-	"rules": {
-		"max-len": 0,
-		"linebreak-style": 0,
-		"no-plusplus": [
-			2,
-			{
-				"allowForLoopAfterthoughts": true
-			}
-		],
-		"no-continue": 0,
-		"indent": [2, "tab"],
-		"no-tabs": 0,
-		"strict": [2, "safe"],
-		"curly": [2, "multi", "consistent"],
-		"import/no-extraneous-dependencies": 0,
-		"import/no-unresolved": 0,
-		"no-underscore-dangle": 0,
-		"no-param-reassign": 0,
-		"generator-star-spacing": 0,
-		"jsx-a11y/href-no-hash": "off"
-	}
-}

.eslintrc.js

@@ -0,0 +1,4 @@
+module.exports = {
+    root: true,
+    extends: "ecollect-base"
+}

README.md

@@ -1,4 +1,4 @@
-# node-ebics-client v0.0.35
+# node-ebics-client
 ---
 
 Pure node.js ( >=8 ) implementation of [EBICS](https://en.wikipedia.org/wiki/Electronic_Banking_Internet_Communication_Standard) ( Electronic Banking Internet Communication ).
@@ -21,4 +21,4 @@ The basic concept of this library was inspired by the [EPICS](https://github.com
 
 ## Copyright
 
-Copyright: eCollect AG, 2018.
+Copyright: eCollect AG, 2018-9.

index.js

@@ -1,4 +0,0 @@
-'use strict';
-
-const Client = require('./lib/Client');
-module.exports = Client;

lerna.json

@@ -0,0 +1,8 @@
+{
+  "packages": [
+    "packages/*"
+  ],
+  "npmClient": "yarn",
+  "useWorkspaces": true,
+  "version": "independent"
+}

lib/BankLetter.js

@@ -1,66 +0,0 @@
-'use strict';
-
-const fs = require('fs');
-
-const moment     = require('moment');
-const handlebars = require('handlebars');
-const BN         = require("bn.js");
-
-module.exports = class BankLetter {
-	constructor(client, bankName) {
-		this.client         = client;
-		this.bankName       = bankName;
-		this.pathToTemplate = './app/ebics/ini.hbs';
-	};
-
-	_registerHelpers() {
-		handlebars.registerHelper("today", () => {
-			return moment().format('DD.MM.YYYY');
-		});
-
-		handlebars.registerHelper("now", () => {
-			return moment().format('HH:mm:ss');
-		});
-
-		handlebars.registerHelper("keyExponentBits", (k) => {
-			return Buffer.byteLength(new BN(k.key.keyPair.e).toBuffer()) * 8;
-		});
-
-		handlebars.registerHelper("keyModulusBits", (k) => {
-			return k.key.getKeySize();
-			// return Buffer.byteLength(new BN(k.key.keyPair.e).toBuffer()) * 8;
-		});
-
-		handlebars.registerHelper("keyExponent", (k) => {
-			return k.e();
-		});
-
-		handlebars.registerHelper("keyModulus", (k) => {
-			return k.n().toUpperCase().match(/.{1,2}/g).join(' ');
-		});
-
-		handlebars.registerHelper("sha256", (k) => {
-			const digest = Buffer.from(k.publicDigest(), 'base64').toString('HEX');
-
-			return digest.toUpperCase().match(/.{1,2}/g).join(' ');
-		});
-	};
-
-	generate() {
-		this._registerHelpers();
-
-		const str   = fs.readFileSync(this.pathToTemplate).toString();
-		const templ = handlebars.compile(str);
-
-		const data = {
-			bankName : this.bankName,
-			userId   : this.client.userId,
-			partnerId: this.client.partnerId,
-			A006     : this.client.a(),
-			X002     : this.client.x(),
-			E002     : this.client.e(),
-		};
-
-		return templ(data);
-	}
-}

lib/Client.js

@@ -1,234 +0,0 @@
-'use strict';
-
-const fs       		= require("fs");
-const crypto   		= require("crypto");
-const $request 		= require("request");
-
-const BN            = require('bn.js');
-const xpath         = require("xpath");
-const NodeRSA 		= require("node-rsa");
-const DOMParser     = require("xmldom").DOMParser;
-
-const Key           = require('./Key');
-const XMLSign       = require('./middleware/XMLSign');
-const ParseResponse = require('./middleware/ParseResponse');
-const BankLetter    = require('./BankLetter');
-const EBICSINI      = require('./orders/INI');
-const EBICSHIA      = require('./orders/HIA');
-const EBICSHPB      = require('./orders/HPB');
-const EBICSHKD      = require('./orders/HKD');
-const EBICSHAA      = require('./orders/HAA');
-const EBICSHAC      = require('./orders/HAC');
-const EBICSHTD      = require('./orders/HTD');
-const EBICSC52		= require('./orders/C52');
-
-const utils = {
-	exponent: {
-		// str = 65537 => AQAB
-		toBase64(str) {
-			return new BN(str).toBuffer().toString('base64');
-		},
-		// str = AQAB => 65537
-		fromBase64(str) {
-			return new BN(Buffer.from(str, 'base64'), 2).toNumber();
-		}
-	}
-}
-module.exports = class Client {
-    constructor(keysContent, passphrase, url, hostId, userId, partnerId) {
-        this.keysContent      = keysContent;
-        this.passphrase       = passphrase;
-        this.url              = url;
-        this.hostId           = hostId;
-        this.userId           = userId;
-        this.partnerId        = partnerId;
-        this.encryptAlgorithm = 'aes-256-cbc';
-        this.keys             = keysContent ? this.extractKeys() : {};
-    };
-
-    a() {
-        return this.keys["A006"];
-    };
-
-    e() {
-        return this.keys["E002"];
-    };
-
-    x() {
-        return this.keys["X002"];
-	}
-
-	bankX() {
-		return this.keys[`${this.hostId}.X002`];
-	}
-
-	bankE() {
-		return this.keys[`${this.hostId}.E002`];
-	}
-
-	encrypt(data) {
-		const cipher    = crypto.createCipher(this.encryptAlgorithm, this.passphrase);
-		const encrypted = cipher.update(data, 'utf8', 'hex') + cipher.final('hex');
-
-		return Buffer.from(encrypted).toString('base64');
-	};
-
-	decrypt(data) {
-		data = (new Buffer(data, 'base64')).toString();
-
-		const decipher  = crypto.createDecipher(this.encryptAlgorithm, this.passphrase);
-		const decrypted = decipher.update(data, 'hex', 'utf8') + decipher.final('utf8');
-
-		return decrypted;
-	};
-
-    static setup(passphrase, url, hostId, userId, partnerId, keysize = 2048) {
-		const client = new Client(null, passphrase, url, hostId, userId, partnerId);
-
-        for (let key in {A006: '', X002: '', E002: ''}) {
-		 	client.keys[key] = new Key(new NodeRSA({ b: keysize }));
-		}
-
-		return client;
-    };
-
-	saveIniLetter(bankName, path) {
-		const letter = new BankLetter(this, bankName);
-
-		try {
-			fs.writeFileSync(path, letter.generate());
-		} catch (error) {
-			throw error;
-		}
-	};
-
-    saveKeys(path) {
-        const data = {};
-
-        for (let key in this.keys) {
-            data[key] = this.encrypt(this.keys[key].toPem());
-		};
-
-		try {
-			fs.writeFileSync(path, JSON.stringify(data));
-		} catch(error) {
-			throw error;
-		}
-	};
-
-	extractKeys() {
-		const keys     = {};
-		const jsonData = JSON.parse(this.keysContent);
-
-		for (let key in jsonData) {
-			keys[key] = new Key(this.decrypt(jsonData[key]));
-		}
-
-		return keys;
-	}
-
-	async download(order) {
-		const res = await this.ebicsRequest(order.toXML());
-
-		const ttt = res.toXML();										// keep this for debugging purposes
-
-		order.transactionId = res.transactionId();
-
-		if (res.isSegmented() && res.isLastSegment()) {
-			const receipt = await this.ebicsRequest(order.toReceiptXML());
-
-			const receiptXML = order.toReceiptXML(); 					// keep this for debugging purposes
-			const rX = receipt.toXML(); 								// keep this for debugging purposes
-		}
-
-		return res.orderData();
-	};
-
-	async upload(order) {
-		let res = await this.ebicsRequest(order.toXML());
-		order.transactionId = res.transactionId();
-		const orderId = res.orderId();
-
-		res = await this.ebicsRequest(order.toTransferXML());
-
-		return res.transactionId();
-	}
-
-	async downloadAndUnzip(order) {
-
-	}
-
-	ebicsRequest(order) {
-		return new Promise((resolve, reject) => {
-			$request.post({
-				url    : this.url,
-				body   : XMLSign.go(this, order),
-				headers: { 'content-type': 'text/xml;charset=UTF-8' }
-			}, (err, res, data) => {
-				return err ? reject(err): resolve(ParseResponse.go(this, data));
-			});
-		});
-	};
-
-    async INI() {
-		return this.ebicsRequest((new EBICSINI(this)).toXML());
-    };
-
-    async HIA() {
-		return this.ebicsRequest((new EBICSHIA(this)).toXML());
-	};
-
-	async HPB() {
-		const data = await this.download(new EBICSHPB(this));
-
-		const doc      = new DOMParser().parseFromString(data, 'text/xml');
-		const sel      = xpath.useNamespaces({'xmlns': "urn:org:ebics:H004"});
-		const keyNodes = sel("//xmlns:PubKeyValue", doc);
-		// console.log(keyNodes);
-
-		function xmlLastChild (node) {
-			let y = node.lastChild;
-
-			while (y.nodeType != 1) y = y.previousSibling;
-
-			return y;
-		};
-
-		for (let i = 0; i < keyNodes.length; i++) {
-			const type     = xmlLastChild(keyNodes[i].parentNode).textContent;
-			const modulus  = xpath.select("//*[local-name(.)='Modulus']", keyNodes[i])[0].textContent;
-			const exponent = xpath.select("//*[local-name(.)='Exponent']", keyNodes[i])[0].textContent;
-
-			const mod = new BN(Buffer.from(modulus, 'base64'), 2).toBuffer();
-			const exp = utils.exponent.fromBase64(exponent);
-
-			const bank = new NodeRSA();
-
-			bank.importKey({ n: mod, e: exp }, 'components-public');
-
-			this.keys[`${this.hostId}.${type}`] = new Key(bank);
-		}
-
-		return [this.bankX(), this.bankE()];
-	};
-
-	HKD() {
-		return this.download(new EBICSHKD(this));
-	};
-
-	HAA() {
-		return this.download(new EBICSHAA(this));
-	};
-
-	HTD() {
-		return this.download(new EBICSHTD(this));
-	};
-
-	HAC(from = null, to = null) {
-		return this.download(new EBICSHAC(this, from, to));
-	};
-
-	C52(from, to) {
-		return this.downloadAndUnzip(new EBICSC52(this, from, to));
-	}
-};

lib/Key.js

@@ -1,79 +0,0 @@
-'use strict';
-
-const crypto = require('crypto');
-
-const BN      = require('bn.js');
-const NodeRSA = require("node-rsa");
-
-const MGF1    = require('./MGF1');
-
-module.exports = class Key {
-    constructor(encodedKey, passphrase = null) {
-        if (encodedKey instanceof NodeRSA) {
-            this.key = encodedKey
-        } else {
-            this.key = new NodeRSA(encodedKey);
-        }
-	};
-
-	publicDigest() {
-		const str = [this.e().replace(/^(0+)/g, ''), this.n().replace(/^(0+)/g, '')].map((x) => x.toLowerCase()).join(' ');
-
-		return crypto.createHash('sha256').update(str).digest('base64').trim();
-	};
-
-	publicEncrypt(buf) {
-		return crypto.publicEncrypt({ 'key': this.toPem(), padding: crypto.constants.RSA_PKCS1_PADDING }, buf);
-	}
-
-    n() {
-        return this.key.exportKey("components-public").n.toString("hex", 1);
-	};
-
-	e() {
-		return new BN(this.key.exportKey("components-public").e).toBuffer().toString('hex');
-	};
-
-	toPem() {
-		return this.key.isPrivate() ? this.key.exportKey("pkcs1-private-pem") : this.key.exportKey("pkcs8-public-pem");
-	}
-
-	sign(msg, salt = crypto.randomBytes(32)) {
-		const base  = new BN(this._emsaPSS(msg, salt));
-		const power = new BN(this.key.keyPair.d.toBuffer());
-		const mod   = new BN(this.key.keyPair.n.toBuffer());
-
-		return (this._modPow(base, power, mod)).toBuffer().toString('base64');
-	}
-
-	_emsaPSS(msg, salt) {
-		const eightNullBytes = Buffer.from("\x00".repeat(8));
-		const digestedMsg    = crypto.createHash('sha256').update(msg).digest();
-		const mTickHash      = crypto.createHash('sha256').update(Buffer.concat([eightNullBytes, digestedMsg, salt]), 'binary').digest();
-
-		const ps             = Buffer.from("\x00".repeat(190));
-		const db             = Buffer.concat([ps, Buffer.from("\x01"), salt]);
-
-		const dbMask         = MGF1.generate(mTickHash, db.length);
-		const maskedDb       = MGF1.xor(db, dbMask);					// so far so good
-
-		let maskedDbMsb      = (new MGF1)._rjust(new BN(maskedDb.slice(0, 1), 2).toString(2), 8, "0");
-		maskedDbMsb          = "0" + maskedDbMsb.substr(1);
-
-		maskedDb[0]          = (new BN(maskedDbMsb, 2).toBuffer())[0];
-
-		return Buffer.concat([maskedDb, mTickHash, Buffer.from('BC', 'hex')]);
-	}
-
-	_modPow(base, power, mod) {
-		let result = new BN(1);
-
-		while( power > 0 ) {
-			result = power.and(new BN(1)) == 1 ? (result.mul(base)).mod(mod) : result;
-			base = (base.mul(base)).mod(mod);
-			power = power.shrn(1);
-		}
-
-		return result;
-	}
-};

lib/MGF1.js

@@ -1,67 +0,0 @@
-'use strict'
-
-const crypto = require("crypto");
-const BN     = require('bn.js');
-
-module.exports = class MGF1 {
-
-	constructor() {
-		this._len = 32;
-	}
-
-	/**
-	 *
-	 * @param {Buffer} seed
-	 * @param {Number} masklen
-	 *
-	 * @returns Buffer
-	 */
-	static generate(seed, masklen) {
-		const mgf1 = new MGF1();
-
-		if ( masklen > 4294967296 * this._len) {
-			throw new Error('Mask too long');
-		}
-
-		const b = [];
-
-		for (let i = 0; i < mgf1._divceil(masklen, mgf1._len); i++) {
-			b[i] = crypto.createHash('sha256').update(Buffer.concat([seed, mgf1._i2osp(i, 4)])).digest();
-		}
-
-		return (Buffer.concat(b)).slice(0, masklen);
-	}
-
-	static xor(a, b) {
-		if ( a.length != b.length ) {
-			throw new Error('Different length for a and b');
-		}
-
-		for ( let i = 0; i < a.length; i++ ) {
-			a[i] ^= b[i];
-		}
-
-		return a;
-	}
-
-	_divceil(a, b) {
-		return ~~((a + b - 1) / b);
-	}
-
-	_i2osp(x, len) {
-		if ( x >= 256 ** len ) {
-			throw new Error('Integer too large');
-		}
-
-		return Buffer.from(this._rjust( (Buffer.from((new BN(x)).toArray('be', 4)).toString()).replace(/\x00/gi, ''), len, "\x00" ));
-	}
-
-	_rjust( string, width, padding ) {
-		padding = padding || " ";
-		padding = padding.substr( 0, 1 );
-		if ( string.length < width )
-			return padding.repeat( width - string.length ) + string;
-		else
-			return string;
-	}
-}

lib/Response.js

@@ -1,57 +0,0 @@
-'use strict';
-
-const zlib   = require('zlib');
-const crypto = require("crypto");
-
-const DOMParser     = require("xmldom").DOMParser;
-const XMLSerializer = require("xmldom").XMLSerializer;
-const xpath = require("xpath");
-
-module.exports = class Response {
-	constructor(client, data) {
-		this.client = client;
-		this.doc    = new DOMParser().parseFromString(data, 'text/xml');
-	};
-
-	isSegmented() {
-		const select = xpath.useNamespaces({'xmlns': "urn:org:ebics:H004"});
-		const node   = select("//xmlns:header/xmlns:mutable/xmlns:SegmentNumber", this.doc);
-
-		return node.length ? true: false;
-	}
-
-	isLastSegment() {
-		const select = xpath.useNamespaces({'xmlns': "urn:org:ebics:H004"});
-		const node = select("//xmlns:header/xmlns:mutable/*[@lastSegment='true']", this.doc);
-
-		return node.length ? true: false;
-	}
-
-	orderData() {
-		const orderData = this.doc.getElementsByTagNameNS("urn:org:ebics:H004", "OrderData")[0].textContent;
-		const decipher  = crypto.createDecipheriv('aes-128-cbc', this.transactionKey(), Buffer.from([0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,])).setAutoPadding(false);
-		const data      = Buffer.from(decipher.update(orderData, 'base64', 'binary') + decipher.final('binary'), 'binary');
-
-		return zlib.inflateSync(data).toString();
-	}
-
-	transactionKey() {
-		const keyNodeText = this.doc.getElementsByTagNameNS("urn:org:ebics:H004", "TransactionKey")[0].textContent;
-		const tkEncrypted = Buffer.from(keyNodeText, 'base64');
-
-		this.client.e().key.setOptions({encryptionScheme: 'pkcs1'});
-
-		return this.client.e().key.decrypt(tkEncrypted);
-	}
-
-	transactionId() {
-		const select = xpath.useNamespaces({'xmlns': "urn:org:ebics:H004"});
-		const node   = select("//xmlns:header/xmlns:static/xmlns:TransactionID", this.doc);
-
-		return node.length ? node[0].textContent : '';
-	}
-
-	toXML() {
-		return new XMLSerializer().serializeToString(this.doc);
-	}
-};

lib/Signer.js

@@ -1,103 +0,0 @@
-'use strict';
-
-const crypto = require("crypto");
-
-const DOMParser = require("xmldom").DOMParser;
-const XMLSerializer = require("xmldom").XMLSerializer;
-const select = require("xpath.js");
-const c14n = require('xml-crypto/lib/c14n-canonicalization').C14nCanonicalization;
-
-
-module.exports = class Signer {
-	/**
-	 * Contructor.
-	 *
-	 * @param {Client} client
-	 * @param {String} data
-	 */
-	constructor(client, data) {
-		/**
-		 * The main client
-		 *
-		 * @type {Signer}
-		 */
-		this.client = client;
-
-		/**
-		 * Request data - generated xml
-		 *
-		 * @type {...}
-		 */
-		this.doc = new DOMParser().parseFromString(data, 'text/xml');
-	}
-
-	_junk() {
-		this.digest();
-		this.sign();
-		// console.log(this.toXML());
-		/* const headerSet = select(this.doc, "//*[@authenticate='true']").map(x => {
-			 // x.setAttribute('xmlns:ds', 'http://www.w3.org/2000/09/xmldsig#');
-			return new c14n().process(x);
-		}).join();
-		const can = headerSet.replace('xmlns="urn:org:ebics:H004"', 'xmlns="urn:org:ebics:H004" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"');
-
-		const hash = crypto.createHash('sha256');
-		hash.update(can);
-		const digester = hash.digest('base64').trim();
-		if ( this.doc.getElementsByTagName("ds:DigestValue")[0] )
-			this.doc.getElementsByTagName("ds:DigestValue")[0].textContent = digester; */
-
-		/* const nodeSet = select(this.doc, "//ds:SignedInfo");
-		const canonicalized = nodeSet.map(x => {
-			const g = x.toString();
-			const res = new c14n().process(x);
-			return res;
-		}).join();
-
-		const canonicalizedString = canonicalized.replace('xmlns:ds="http://www.w3.org/2000/09/xmldsig#"', 'xmlns="urn:org:ebics:H004" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"');
-
-		// const SIGN = crypto.createSign('RSA-SHA256');
-		// SIGN.update(canonicalizedString);
-		// const key = SIGN.sign(this.client.x().key.exportKey("pkcs1-private-pem"), 'base64');
-		const f = this.client.x().key.sign(canonicalizedString, 'base64');
-		if ( this.doc.getElementsByTagName("ds:SignatureValue")[0] ) {
-			this.doc.getElementsByTagName("ds:SignatureValue")[0].textContent = f;
-		} */
-	}
-
-	digest() {
-		// get the xml node, where the digested value is supposed to be
-		const nodeDigestValue = this.doc.getElementsByTagName("ds:DigestValue")[0];
-
-		const nodes = select(this.doc, "//*[@authenticate='true']");
-
-		// canonicalize the node that has authenticate='true' attribute
-		const contentToDigest = select(this.doc, "//*[@authenticate='true']")
-			.map(x => {
-				const aaaa = x.toString();
-				return new c14n().process(x)
-			}).join("");
-
-		// fix the canonicalization
-		const fixedContent = contentToDigest.replace(/xmlns="urn:org:ebics:H004"/g, 'xmlns="urn:org:ebics:H004" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"');
-
-		if (nodeDigestValue) {
-			nodeDigestValue.textContent = crypto.createHash('sha256').update(fixedContent).digest('base64').trim();
-		}
-	};
-
-	sign() {
-		const nodeSignatureValue = this.doc.getElementsByTagName("ds:SignatureValue")[0];
-
-		if (nodeSignatureValue) {
-			const contentToSign = (new c14n().process(select(this.doc, "//ds:SignedInfo")[0])).replace('xmlns:ds="http://www.w3.org/2000/09/xmldsig#"', 'xmlns="urn:org:ebics:H004" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"');
-
-			nodeSignatureValue.textContent = this.client.x().key.sign(contentToSign, 'base64');
-		}
-	}
-
-	toXML() {
-		return new XMLSerializer().serializeToString(this.doc);
-	}
-
-};

lib/consts.js

@@ -1,12 +0,0 @@
-'use strict';
-
-const packageJson = require('../package.json');
-
-const name = 'eCollect Node Ebics Client';
-const version = packageJson.version;  
-
-module.exports = {
-    name,
-    version,
-    productString: `${name} ${version}`,
-};

lib/middleware/ParseResponse.js

@@ -1,22 +0,0 @@
-'use strict';
-
-const Response = require('../Response');
-
-module.exports = class ParseResponse {
-	constructor(client, data) {
-		this.client = client;
-		this.data = data;
-	};
-
-	static go (client, data) {
-		const parseRensponse = new ParseResponse(client, data);
-		const response = new Response(client, data);
-
-		// TODO:
-		// raise error if any
-
-		this.data = response.doc;
-
-		return response;
-	}
-};

lib/middleware/XMLSign.js

@@ -1,22 +0,0 @@
-'use strict';
-
-const Signer = require('../Signer');
-
-module.exports = class XMLSign {
-	constructor(client, data) {
-		this.client = client;
-		this.data = data;
-	};
-
-	static go (client, data) {
-		const xmlSigner = new XMLSign(client, data);
-		const signer = new Signer(client, data);
-
-		signer.digest();
-		signer.sign();
-
-		this.data = signer.toXML();
-
-		return this.data;
-	}
-};

lib/orders/C52.js

@@ -1,50 +0,0 @@
-'use strict';
-
-const GenericOrder = require('./GenericOrder');
-
-module.exports = class C52 extends GenericOrder {
-	constructor (client, from, to) {
-		super(client);
-		this._from = from;
-		this._to   = to;
-
-		this._schema.header = {
-			"@"   : { authenticate: true },
-			static: {
-				HostID   : this.hostId,
-				Nonce    : this.nonce(),
-				Timestamp: this.timestamp(),
-				PartnerID: this.partnerId,
-				UserID   : this.userId,
-				Product  : {
-					"@": { Language: "de" },
-					"#": this.productString,
-				},
-				OrderDetails: {
-					OrderType          : "C52",
-					OrderAttribute     : "DZHNN",
-					StandardOrderParams: {
-						DateRange: {
-							Start: this._from,
-							End  : this._to
-						}
-					},
-				},
-				BankPubKeyDigests: {
-					Authentication: {
-						"@": { Version: "X002", Algorithm: "http://www.w3.org/2001/04/xmlenc#sha256" },
-						"#": this.client.bankX().publicDigest()
-					},
-					Encryption: {
-						"@": { Version: "E002", Algorithm: "http://www.w3.org/2001/04/xmlenc#sha256" },
-						"#": this.client.bankE().publicDigest()
-					}
-				},
-				SecurityMedium: "0000"
-			},
-			mutable: {
-				TransactionPhase: "Initialisation"
-			}
-		};
-	};
-};

lib/orders/GenericOrder.js

@@ -1,180 +0,0 @@
-'use strict';
-
-// const randHex = require('../../lib/utils').randHex;
-const crypto       = require("crypto");
-const js2xmlparser = require('js2xmlparser');
-const consts       = require('../consts');
-
-module.exports = class GenericOrder {
-	constructor(client) {
-		this.client = client;
-
-		this.hostId = client.hostId;
-		this.userId = client.userId;
-		this.partnerId = client.partnerId;
-
-		this.transactionId = '';
-
-		this.xmlOptions = {
-			declaration: {
-				include: true,
-				encoding: "utf-8"
-			},
-			format: {
-				doubleQuotes: true,
-				indent: '',
-				newline: '',
-				pretty: true
-			}
-		};
-
-		this._schema = {
-			"@": {
-				"xmlns:ds": "http://www.w3.org/2000/09/xmldsig#",
-				xmlns: "urn:org:ebics:H004",
-				Version: "H004",
-				Revision: "1"
-			},
-
-			header: {},
-
-			AuthSignature: this.authSignature(),
-
-			body: {}
-		};
-	}
-
-	authSignature() {
-		return {
-			"ds:SignedInfo": {
-				"ds:CanonicalizationMethod": {
-					"@": {
-						Algorithm:
-							"http://www.w3.org/TR/2001/REC-xml-c14n-20010315"
-					}
-				},
-				"ds:SignatureMethod": {
-					"@": {
-						Algorithm:
-							"http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"
-					}
-				},
-				"ds:Reference": {
-					"@": { URI: "#xpointer(//*[@authenticate='true'])" },
-					"ds:Transforms": {
-						"ds:Transform": {
-							"@": {
-								Algorithm:
-									"http://www.w3.org/TR/2001/REC-xml-c14n-20010315"
-							}
-						}
-					},
-					"ds:DigestMethod": {
-						"@": {
-							Algorithm:
-								"http://www.w3.org/2001/04/xmlenc#sha256"
-						}
-					},
-					"ds:DigestValue": {}
-				}
-			},
-			"ds:SignatureValue": {}
-		};
-	}
-
-	get schema() {
-		return this._schema;
-	}
-
-	get productString() {
-		return consts.productString;
-	}
-
-	nonce() {
-		return crypto.randomBytes(16).toString('hex');
-	}
-
-	timestamp() {
-		return new Date().toISOString();
-	}
-
-	root() {
-		return "ebicsRequest";
-	}
-
-	toReceiptXML() {
-		const xmlObj = {
-			"@": {
-				"xmlns:ds": "http://www.w3.org/2000/09/xmldsig#",
-				xmlns: "urn:org:ebics:H004",
-				Version: "H004",
-				Revision: "1"
-			},
-
-			header: {
-				"@": { authenticate: true },
-				static: {
-					HostID: this.hostId,
-					TransactionID: this.transactionId
-				},
-				mutable: {
-					TransactionPhase: 'Receipt',
-				}
-			},
-
-			AuthSignature: this.authSignature(),
-
-			body: {
-				TransferReceipt: {
-					"@": { authenticate: true },
-					ReceiptCode: 0
-				}
-			}
-		};
-
-		return js2xmlparser.parse(this.root(), xmlObj, this.xmlOptions);
-	}
-
-	toTransferXML(){
-		const xmlObj = {
-			"@": {
-				"xmlns:ds": "http://www.w3.org/2000/09/xmldsig#",
-				xmlns: "urn:org:ebics:H004",
-				Version: "H004",
-				Revision: "1"
-			},
-
-			header: {
-				"@": { authenticate: true },
-				static: {
-					HostID: this.hostId,
-					TransactionID: this.transactionId
-				},
-				mutable: {
-					TransactionPhase: 'Transfer',
-					SegmentNumber: {
-						"@": { lastSegment: true },
-						"#": 1
-					}
-				}
-			},
-
-			AuthSignature: this.authSignature(),
-
-			body: {
-				DataTransfer: {
-					OrderData: this.encryptedOrderData()
-				}
-			}
-		};
-
-		return js2xmlparser.parse(this.root(), xmlObj, this.xmlOptions);
-	}
-
-	encryptedOrderData() {
-	}
-
-	toXML() {
-		return js2xmlparser.parse(this.root(), this._schema, this.xmlOptions);
-	}
-};

lib/orders/GenericUploadOrder.js

@@ -1,79 +0,0 @@
-'use strict';
-
-const zlib = require('zlib');
-const crypto = require("crypto");
-
-const js2xmlparser = require('js2xmlparser');
-
-const GenericOrder = require('./GenericOrder');
-
-module.exports = class GenericUploadOrder extends GenericOrder {
-	constructor(client, document) {
-		super(client);
-
-		this._document    = document;
-		this._key         = crypto.randomBytes(16);
-
-		this._schema.body = {
-			DataTransfer: {
-				DataEncryptionInfo: {
-					"@": { authenticate: true },
-					EncryptionPubKeyDigest: {
-						"@": { Version: "E002", Algorithm: "http://www.w3.org/2001/04/xmlenc#sha256" },
-						"#": this.client.bankE().publicDigest()
-					},
-					TransactionKey: this.client.bankE().publicEncrypt(this._key).toString('base64'),
-				},
-				SignatureData: {
-					"@": { authenticate: true },
-					"#": this.encryptedOrderSignature()
-				}
-			}
-		};
-	};
-
-	orderSignature() {
-		const xmlObj = {
-			"@": {
-				xmlns: "http://www.ebics.org/S001",
-				"xmlns:xsi": "http://www.w3.org/2001/XMLSchema-instance",
-				"xsi:schemaLocation": "http://www.ebics.org/S001 http://www.ebics.org/S001/ebics_signature.xsd"
-			},
-			OrderSignatureData: {
-				SignatureVersion: "A006",
-				SignatureValue: this.signatureValue(),
-				PartnerID: this.partnerId,
-				UserID: this.userId
-			}
-		};
-
-		return js2xmlparser.parse('UserSignatureData', xmlObj, this.xmlOptions);
-	};
-
-	signatureValue() {
-		const digested = crypto.createHash('sha256').update(this._document.replace(/\n|\r/g, "")).digest();
-
-		return this.client.a().sign(digested);
-	};
-
-	encryptedOrderData() {
-		const dst = zlib.deflateSync(this._document.replace(/\r|\n/g, ""));
-		const cipher = crypto.createCipheriv('aes-128-cbc', this._key, Buffer.from([0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,])).setAutoPadding(false);
-
-		return Buffer.concat([cipher.update(this._pad(dst)), cipher.final()]).toString('base64');
-	}
-
-		encryptedOrderSignature() {
-		const dst    = zlib.deflateSync(this.orderSignature());
-		const cipher = crypto.createCipheriv('aes-128-cbc', this._key, Buffer.from([0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,])).setAutoPadding(false);
-
-		return Buffer.concat([cipher.update(this._pad(dst)), cipher.final()]).toString('base64');
-	};
-
-	_pad(d) {
-		const dLen = d.length;
-		const len = 16 * ( Math.trunc(dLen / 16) + 1 );
-
-		return Buffer.concat([d, Buffer.from(Buffer.from([0]).toString().repeat(len - dLen - 1)), Buffer.from([len-dLen])]);
-	}
-};

lib/orders/HAA.js

@@ -1,43 +0,0 @@
-'use strict';
-
-const GenericOrder = require('./GenericOrder');
-
-module.exports = class HAA extends GenericOrder {
-	constructor (client) {
-		super(client);
-
-		this._schema.header = {
-			"@": { authenticate: true },
-			static: {
-				HostID: this.hostId,
-				Nonce: this.nonce(),
-				Timestamp: this.timestamp(),
-				PartnerID: this.partnerId,
-				UserID: this.userId,
-				Product: {
-					"@": { Language: "de" },
-					"#": this.productString
-				},
-				OrderDetails: {
-					OrderType: "HAA",
-					OrderAttribute: "DZHNN",
-					StandardOrderParams: ""
-				},
-				BankPubKeyDigests: {
-					Authentication: {
-						"@": { Version: "X002", Algorithm: "http://www.w3.org/2001/04/xmlenc#sha256" },
-						"#": this.client.bankX().publicDigest()
-					},
-					Encryption: {
-						"@": { Version: "E002", Algorithm: "http://www.w3.org/2001/04/xmlenc#sha256" },
-						"#": this.client.bankE().publicDigest()
-					}
-				},
-				SecurityMedium: "0000"
-			},
-			mutable: {
-				TransactionPhase: "Initialisation"
-			}
-		};
-	};
-};

lib/orders/HAC.js

@@ -1,54 +0,0 @@
-'use strict';
-
-const GenericOrder = require('./GenericOrder');
-
-module.exports = class HAC extends GenericOrder {
-	constructor (client, from = null, to = null) {
-		super(client);
-		this._from = from;
-		this._to   = to;
-
-		this._schema.header = {
-			"@"   : { authenticate: true },
-			static: {
-				HostID   : this.hostId,
-				Nonce    : this.nonce(),
-				Timestamp: this.timestamp(),
-				PartnerID: this.partnerId,
-				UserID   : this.userId,
-				Product  : {
-					"@": { Language: "de" },
-					"#": this.productString,
-				},
-				OrderDetails: {
-					OrderType          : "HAC",
-					OrderAttribute     : "DZHNN",
-					StandardOrderParams: this._hasDateRange() ? {
-						DateRange: {
-							Start: this._from,
-							End  : this._to
-						}
-					} : ""
-				},
-				BankPubKeyDigests: {
-					Authentication: {
-						"@": { Version: "X002", Algorithm: "http://www.w3.org/2001/04/xmlenc#sha256" },
-						"#": this.client.bankX().publicDigest()
-					},
-					Encryption: {
-						"@": { Version: "E002", Algorithm: "http://www.w3.org/2001/04/xmlenc#sha256" },
-						"#": this.client.bankE().publicDigest()
-					}
-				},
-				SecurityMedium: "0000"
-			},
-			mutable: {
-				TransactionPhase: "Initialisation"
-			}
-		};
-	};
-
-	_hasDateRange() {
-		return this._from && this._to;
-	}
-};

lib/orders/HIA.js

@@ -1,85 +0,0 @@
-'use strict';
-
-const zlib = require('zlib');
-const js2xmlparser = require('js2xmlparser');
-
-const GenericOrder = require('./GenericOrder');
-
-module.exports = class HIA extends GenericOrder {
-	constructor(client) {
-		super(client);
-
-		this._schema = {
-			"@": {
-				"xmlns:ds": "http://www.w3.org/2000/09/xmldsig#",
-				xmlns: "urn:org:ebics:H004",
-				Version: "H004",
-				Revision: "1"
-			},
-
-			header: {
-				"@": { authenticate: true },
-				static: {
-					HostID: this.hostId,
-					PartnerID: this.partnerId,
-					UserID: this.userId,
-					Product: {
-						"@": { Language: "de" },
-						"#": this.productString,
-					},
-					OrderDetails: {
-						OrderType: "HIA",
-						OrderAttribute: "DZNNN"
-					},
-					SecurityMedium: "0000"
-				},
-				mutable: {}
-			},
-
-			body: {
-				DataTransfer: {
-					OrderData: Buffer.from(zlib.deflateSync(this.orderData())).toString('base64')
-				}
-			}
-		};
-	}
-
-	root() {
-		return "ebicsUnsecuredRequest";
-	};
-
-	orderData() {
-		const xmlOrderData = {
-			"@": {
-				"xmlns:ds": "http://www.w3.org/2000/09/xmldsig#",
-				xmlns: "urn:org:ebics:H004"
-			},
-			AuthenticationPubKeyInfo: {
-				PubKeyValue: {
-					"ds:RSAKeyValue": {
-						"ds:Modulus": Buffer.from(this.client.x().n(), 'HEX').toString('base64'),
-						"ds:Exponent": "AQAB"
-					},
-				},
-				AuthenticationVersion: "X002"
-			},
-			EncryptionPubKeyInfo: {
-				PubKeyValue: {
-					"ds:RSAKeyValue": {
-						"ds:Modulus": Buffer.from(this.client.e().n(), 'HEX').toString('base64'),
-						"ds:Exponent": "AQAB"
-					},
-				},
-				EncryptionVersion: "E002"
-			},
-			PartnerID: this.partnerId,
-			UserID: this.userId
-		};
-
-		return js2xmlparser.parse("HIARequestOrderData", xmlOrderData, this.xmlOptions);
-	};
-
-	toXML() {
-		return js2xmlparser.parse(this.root(), this._schema, this.xmlOptions);
-	};
-};

lib/orders/HKD.js

@@ -1,43 +0,0 @@
-'use strict';
-
-const GenericOrder = require('./GenericOrder');
-
-module.exports = class HKD extends GenericOrder {
-	constructor (client) {
-		super(client);
-
-		this._schema.header = {
-			"@": { authenticate: true },
-			static: {
-				HostID: this.hostId,
-				Nonce: this.nonce(),
-				Timestamp: this.timestamp(),
-				PartnerID: this.partnerId,
-				UserID: this.userId,
-				Product: {
-					"@": { Language: "de" },
-					"#": this.productString,
-				},
-				OrderDetails: {
-					OrderType: "HKD",
-					OrderAttribute: "DZHNN",
-					StandardOrderParams: ""
-				},
-				BankPubKeyDigests: {
-					Authentication: {
-						"@": { Version: "X002", Algorithm: "http://www.w3.org/2001/04/xmlenc#sha256" },
-						"#": this.client.bankX().publicDigest()
-					},
-					Encryption: {
-						"@": { Version: "E002", Algorithm: "http://www.w3.org/2001/04/xmlenc#sha256" },
-						"#": this.client.bankE().publicDigest()
-					}
-				},
-				SecurityMedium: "0000"
-			},
-			mutable: {
-				TransactionPhase: "Initialisation"
-			}
-		};
-	};
-};

lib/orders/HPB.js

@@ -1,34 +0,0 @@
-'use strict';
-
-const GenericOrder = require('./GenericOrder');
-
-module.exports = class HPB extends GenericOrder {
-	constructor (client) {
-		super(client);
-
-		this._schema.header = {
-			"@": { authenticate: true },
-			static: {
-				HostID: this.hostId,
-				Nonce: this.nonce(),
-				Timestamp: this.timestamp(),
-				PartnerID: this.partnerId,
-				UserID: this.userId,
-				Product: {
-					"@": { Language: "de" },
-					"#": this.productString,
-				},
-				OrderDetails: {
-					OrderType: "HPB",
-					OrderAttribute: "DZHNN"
-				},
-				SecurityMedium: "0000"
-			},
-			mutable: {}
-		};
-	};
-
-	root() {
-		return "ebicsNoPubKeyDigestsRequest";
-	};
-};

lib/orders/HTD.js

@@ -1,43 +0,0 @@
-'use strict';
-
-const GenericOrder = require('./GenericOrder');
-
-module.exports = class HTD extends GenericOrder {
-	constructor (client) {
-		super(client);
-
-		this._schema.header = {
-			"@": { authenticate: true },
-			static: {
-				HostID: this.hostId,
-				Nonce: this.nonce(),
-				Timestamp: this.timestamp(),
-				PartnerID: this.partnerId,
-				UserID: this.userId,
-				Product: {
-					"@": { Language: "de" },
-					"#": this.productString,
-				},
-				OrderDetails: {
-					OrderType: "HTD",
-					OrderAttribute: "DZHNN",
-					StandardOrderParams: ""
-				},
-				BankPubKeyDigests: {
-					Authentication: {
-						"@": { Version: "X002", Algorithm: "http://www.w3.org/2001/04/xmlenc#sha256" },
-						"#": this.client.bankX().publicDigest()
-					},
-					Encryption: {
-						"@": { Version: "E002", Algorithm: "http://www.w3.org/2001/04/xmlenc#sha256" },
-						"#": this.client.bankE().publicDigest()
-					}
-				},
-				SecurityMedium: "0000"
-			},
-			mutable: {
-				TransactionPhase: "Initialisation"
-			}
-		};
-	};
-};

lib/orders/INI.js

@@ -1,77 +0,0 @@
-'use strict';
-
-const zlib = require('zlib');
-const js2xmlparser = require('js2xmlparser');
-
-const GenericOrder = require('./GenericOrder');
-
-module.exports = class INI extends GenericOrder {
-	constructor (client) {
-		super(client);
-
-		this._schema = {
-			"@": {
-				"xmlns:ds": "http://www.w3.org/2000/09/xmldsig#",
-				xmlns: "urn:org:ebics:H004",
-				Version: "H004",
-				Revision: "1"
-			},
-
-			header: {
-				"@": { authenticate: true },
-				static: {
-					HostID: this.hostId,
-					PartnerID: this.partnerId,
-					UserID: this.userId,
-					Product: {
-						"@": { Language: "de" },
-						"#": this.productString,
-					},
-					OrderDetails: {
-						OrderType: "INI",
-						OrderAttribute: "DZNNN"
-					},
-					SecurityMedium: "0000"
-				},
-				mutable: {}
-			},
-
-			body: {
-				DataTransfer: {
-					OrderData: Buffer.from(zlib.deflateSync(this.keySignature())).toString('base64')
-				}
-			}
-		};
-	}
-
-	root() {
-		return "ebicsUnsecuredRequest";
-	};
-
-	keySignature() {
-		const xmlOrderData = {
-			"@": {
-				"xmlns:ds": "http://www.w3.org/2000/09/xmldsig#",
-				xmlns: "http://www.ebics.org/S001"
-			},
-			SignaturePubKeyInfo: {
-				PubKeyValue: {
-					"ds:RSAKeyValue": {
-						"ds:Modulus": Buffer.from(this.client.a().n(), 'HEX').toString('base64'),
-						"ds:Exponent": "AQAB"
-					},
-					TimeStamp: this.timestamp()
-				},
-				SignatureVersion: "A006"
-			},
-			PartnerID: this.partnerId,
-			UserID: this.userId
-		};
-
-		return js2xmlparser.parse("SignaturePubKeyOrderData", xmlOrderData, this.xmlOptions);
-	};
-
-	toXML() {
-		return js2xmlparser.parse(this.root(), this._schema, this.xmlOptions);
-	}
-};

package.json

@@ -1,36 +1,14 @@
 {
-  "name": "node-ebics-client",
-  "version": "0.0.35",
-  "description": "Node.js ISO 20022 Compliant EBICS Client",
-  "main": "index.js",
-  "scripts": {
-    "test": "echo \"Error: no test specified\" && exit 1"
-  },
-  "repository": {
-    "type": "git",
-    "url": "https://github.com/eCollect/node-ebics-client"
-  },
-  "keywords": [
-    "EBICS",
-    "ISO20022",
-    "nodejs",
-    "api"
+	"name": "ebics-client-root",
+  "private": true,
+  "workspaces": [
+    "packages/*"
   ],
-  "author": "eCollect Sofia Tech Team",
-  "license": "MIT",
-  "dependencies": {
-    "bn.js": "^4.11.8",
-    "handlebars": "^4.0.11",
-    "js2xmlparser": "^3.0.0",
-    "moment": "^2.22.1",
-    "node-rsa": "^0.4.2",
-    "xml-c14n": "0.0.6",
-    "xmldom": "^0.1.27",
-    "xpath": "0.0.27"
-  },
   "devDependencies": {
-    "eslint": "^4.19.1",
-    "eslint-config-airbnb-base": "^12.1.0",
-    "eslint-plugin-import": "^2.12.0"
-	}
+		"chai": "^4.2.0",
+    "lerna": "^3.16.4",
+    "eslint": "^6.5.1",
+    "eslint-config-ecollect-base": "^0.1.2",
+    "eslint-plugin-import": "^2.18.2"
+  }
 }

packages/ebics-client/examples/bankLetter.js

@@ -0,0 +1,31 @@
+#! /usr/bin/env node
+
+'use strict';
+
+const ebics = require('../index');
+const path = require('path');
+const fs = require('fs');
+const os = require('os');
+
+const client = new ebics.Client({
+	url: 'https://ebics.server',
+	partnerId: '',
+	userId: '',
+	hostId: '',
+	passphrase: 'test', // keys-test will be decrypted with this passphrase
+	keyStorage: ebics.fsKeysStorage('./keys-test'),
+});
+
+const bankName = 'Bank name';
+const template = fs.readFileSync('./templates/ini.hbs').toString();
+const letter = new ebics.BankLetter({ client, bankName, template });
+const bankLetterFile = path.join(os.homedir(), 'bankLetter.html');
+
+letter.serialize(bankLetterFile)
+	.then(() => {
+		console.log('Send your bank the letter (%s)', bankLetterFile);
+	})
+	.catch((err) => {
+		console.error(err);
+		process.exit(1);
+	});

packages/ebics-client/examples/initialize.js

@@ -0,0 +1,32 @@
+#! /usr/bin/env node
+
+'use strict';
+
+const ebics = require('../index');
+
+const client = new ebics.Client({
+	url: 'https://ebics.server',
+	partnerId: 'PARTNER',
+	userId: 'USER',
+	hostId: 'HOST',
+	passphrase: 'test', // keys-test will be encrypted with this passphrase
+	keyStorage: ebics.fsKeysStorage('./keys-test'),
+});
+
+// New keys will be generated and saved in ./keys-test
+client.send(ebics.Orders.INI)
+	.then((resp) => {
+		console.log('Respose for INI order %j', resp);
+		return client.send(ebics.Orders.HIA);
+	})
+	.then((resp) => {
+		console.log('Reponse for HIA order %j', resp);
+		if (resp.technicalCode !== '000000')
+			throw new Error('Something might went wrong');
+
+		console.log('Public keys should be sent to bank now. See examples/bankLetter.js');
+	})
+	.catch((err) => {
+		console.error(err);
+		process.exit(1);
+	});

packages/ebics-client/examples/save-bank-kesy.js

@@ -0,0 +1,30 @@
+#! /usr/bin/env node
+
+'use strict';
+
+const ebics = require('../index');
+
+const client = new ebics.Client({
+	url: 'https://ebics.server',
+	partnerId: '',
+	userId: '',
+	hostId: '',
+	passphrase: 'test', // keys-test will be decrypted with this passphrase
+	keyStorage: ebics.fsKeysStorage('./keys-test'),
+});
+
+// Client keys must be already generated and send by letter.
+// The bank should have enabled the user
+client.send(ebics.Orders.HPB)
+	.then((resp) => {
+		console.log('Respose for HPB order %j', resp);
+		if (resp.technicalCode !== '000000')
+			throw new Error('Something went wrong');
+
+		console.log('Received bank keys: %j', resp.bankKeys);
+		return client.setBankKeys(resp.bankKeys);
+	})
+	.catch((err) => {
+		console.error(err);
+		process.exit(1);
+	});

packages/ebics-client/examples/send-hbt-order.js

@@ -0,0 +1,29 @@
+#! /usr/bin/env node
+
+'use strict';
+
+const ebics = require('../index');
+
+const client = new ebics.Client({
+	url: 'https://ebics.server',
+	partnerId: '',
+	userId: '',
+	hostId: '',
+	passphrase: 'test', // keys-test will be decrypted with this passphrase
+	keyStorage: ebics.fsKeysStorage('./keys-test'),
+});
+
+// The bank keys must have been already saved
+client.send(ebics.Orders.HTD)
+	.then((resp) => {
+		console.log('Respose for HTD order %j', resp);
+		if (resp.technicalCode !== '000000')
+			throw new Error('Something went wrong');
+
+		const data = Buffer.from(resp.orderData);
+		console.log(data.toString('utf8'));
+	})
+	.catch((err) => {
+		console.error(err);
+		process.exit(1);
+	});

packages/ebics-client/index.js

@@ -0,0 +1,15 @@
+'use strict';
+
+const Client = require('./lib/Client');
+const Orders = require('./lib/predefinedOrders');
+const fsKeysStorage = require('./lib/storages/fsKeysStorage');
+const tracesStorage = require('./lib/storages/tracesStorage');
+const BankLetter = require('./lib/BankLetter');
+
+module.exports = {
+	Client,
+	Orders,
+	BankLetter,
+	fsKeysStorage,
+	tracesStorage,
+};

packages/ebics-client/lib/BankLetter.js

@@ -0,0 +1,73 @@
+'use strict';
+
+const fs = require('fs');
+
+const moment = require('moment');
+const handlebars = require('handlebars');
+const Crypto = require('./crypto/Crypto');
+// const BN = require('bn.js');
+
+const registerHelpers = () => {
+	handlebars.registerHelper('today', () => moment().format('DD.MM.YYYY'));
+
+	handlebars.registerHelper('now', () => moment().format('HH:mm:ss'));
+
+	handlebars.registerHelper('keyExponentBits', k => Buffer.byteLength(k.e()) * 8);
+	// handlebars.registerHelper('keyExponentBits', k => Buffer.byteLength(new BN(k.key.keyPair.e).toBuffer()) * 8);
+
+	handlebars.registerHelper('keyModulusBits', k => k.key.getKeySize());
+	// return Buffer.byteLength(new BN(k.key.keyPair.e).toBuffer()) * 8;
+
+	handlebars.registerHelper('keyExponent', k => k.e('hex'));
+
+	handlebars.registerHelper('keyModulus', k => k.n('hex').toUpperCase().match(/.{1,2}/g).join(' '));
+
+	handlebars.registerHelper('sha256', (k) => {
+		const digest = Buffer.from(Crypto.digestPublicKey(k), 'base64').toString('HEX');
+		// const digest = Buffer.from(k.publicDigest(), 'base64').toString('HEX');
+
+		return digest.toUpperCase().match(/.{1,2}/g).join(' ');
+	});
+};
+module.exports = class BankLetter {
+	constructor({
+		client,
+		bankName,
+		template,
+	}) {
+		this.client = client;
+		this.bankName = bankName;
+		this.template = template;
+	}
+
+	async generate() {
+		registerHelpers();
+
+		const templ = handlebars.compile(this.template);
+		const keys = await this.client.keys();
+
+		const data = {
+			bankName: this.bankName,
+			userId: this.client.userId,
+			partnerId: this.client.partnerId,
+			A006: keys.a(),
+			X002: keys.x(),
+			E002: keys.e(),
+		};
+
+		return templ(data);
+	}
+
+	async serialize(path) {
+		const letter = await this.generate();
+
+		try {
+			fs.writeFileSync(path, letter);
+			console.log(`Data written to file on path '${path}'`);
+		} catch (error) {
+			console.error(`error while writing bank letter to path '${path}' with error ${error}`);
+			throw error;
+		}
+		return new Promise(resolve => resolve(true));
+	}
+};

packages/ebics-client/lib/Client.js

@@ -0,0 +1,207 @@
+'use strict';
+
+const $request = require('request');
+
+const constants = require('./consts');
+const Keys = require('./keymanagers/Keys');
+const defaultKeyEncryptor = require('./keymanagers/defaultKeyEncryptor');
+
+const signer = require('./middleware/signer');
+const serializer = require('./middleware/serializer');
+const response = require('./middleware/response');
+
+const stringifyKeys = (keys) => {
+	Object.keys(keys).map((key) => {
+		keys[key] = keys[key] === null ? null : keys[key].toPem();
+
+		return key;
+	});
+
+	return JSON.stringify(keys);
+};
+
+module.exports = class Client {
+	constructor({
+		url,
+		partnerId,
+		userId,
+		hostId,
+		passphrase,
+		keyStorage,
+		tracesStorage,
+	}) {
+		if (!url)
+			throw new Error('EBICS URL is requierd');
+		if (!partnerId)
+			throw new Error('partnerId is requierd');
+		if (!userId)
+			throw new Error('userId is requierd');
+		if (!hostId)
+			throw new Error('hostId is requierd');
+		if (!passphrase)
+			throw new Error('passphrase is requierd');
+
+		if (!keyStorage || typeof keyStorage.read !== 'function' || typeof keyStorage.write !== 'function')
+			throw new Error('keyStorage implementation missing or wrong');
+
+		this.url = url;
+		this.partnerId = partnerId;
+		this.userId = userId;
+		this.hostId = hostId;
+		this.keyStorage = keyStorage;
+		this.keyEncryptor = defaultKeyEncryptor({ passphrase });
+		this.tracesStorage = tracesStorage || null;
+	}
+
+	async send(order) {
+		const isInObject = ('operation' in order);
+
+		if (!isInObject) throw new Error('Operation for the order needed');
+
+		if (order.operation.toUpperCase() === constants.orderOperations.ini) return this.initialization(order);
+
+		const keys = await this.keys();
+		if (keys === null) throw new Error('No keys provided. Can not send the order or any other order for that matter.');
+
+		if (order.operation.toUpperCase() === constants.orderOperations.upload) return this.upload(order);
+		if (order.operation.toUpperCase() === constants.orderOperations.download) return this.download(order);
+
+		throw new Error('Wrong order operation provided');
+	}
+
+	async initialization(order) {
+		const keys = await this.keys();
+		if (keys === null) this._generateKeys();
+
+		if (this.tracesStorage)
+			this.tracesStorage.new().ofType('ORDER.INI');
+		const res = await this.ebicsRequest(order);
+		const xml = res.orderData();
+
+		const returnedTechnicalCode = res.technicalCode();
+		const returnedBusinessCode = res.businessCode();
+
+		return {
+			orderData: xml.length ? xml.toString() : xml,
+			orderId: res.orderId(),
+
+			technicalCode: returnedTechnicalCode,
+			technicalCodeSymbol: res.technicalSymbol(),
+			technicalCodeShortText: res.technicalShortText(returnedTechnicalCode),
+			technicalCodeMeaning: res.technicalMeaning(returnedTechnicalCode),
+
+			businessCode: returnedBusinessCode,
+			businessCodeSymbol: res.businessSymbol(returnedBusinessCode),
+			businessCodeShortText: res.businessShortText(returnedBusinessCode),
+			businessCodeMeaning: res.businessMeaning(returnedBusinessCode),
+
+			bankKeys: res.bankKeys(),
+		};
+	}
+
+	async download(order) {
+		if (this.tracesStorage)
+			this.tracesStorage.new().ofType('ORDER.DOWNLOAD');
+		const res = await this.ebicsRequest(order);
+
+		order.transactionId = res.transactionId();
+
+		if (res.isSegmented() && res.isLastSegment()) {
+			if (this.tracesStorage)
+				this.tracesStorage.connect().ofType('RECEIPT.ORDER.DOWNLOAD');
+
+			await this.ebicsRequest(order);
+		}
+
+		const returnedTechnicalCode = res.technicalCode();
+		const returnedBusinessCode = res.businessCode();
+
+		return {
+			orderData: res.orderData(),
+			orderId: res.orderId(),
+
+			technicalCode: returnedTechnicalCode,
+			technicalCodeSymbol: res.technicalSymbol(),
+			technicalCodeShortText: res.technicalShortText(returnedTechnicalCode),
+			technicalCodeMeaning: res.technicalMeaning(returnedTechnicalCode),
+
+			businessCode: returnedBusinessCode,
+			businessCodeSymbol: res.businessSymbol(returnedBusinessCode),
+			businessCodeShortText: res.businessShortText(returnedBusinessCode),
+			businessCodeMeaning: res.businessMeaning(returnedBusinessCode),
+		};
+	}
+
+	async upload(order) {
+		if (this.tracesStorage)
+			this.tracesStorage.new().ofType('ORDER.UPLOAD');
+		let res = await this.ebicsRequest(order);
+		const transactionId = res.transactionId();
+		const orderId = res.orderId();
+
+		order.transactionId = transactionId;
+
+		if (this.tracesStorage)
+			this.tracesStorage.connect().ofType('TRANSFER.ORDER.UPLOAD');
+		res = await this.ebicsRequest(order);
+
+		return [transactionId, orderId];
+	}
+
+	ebicsRequest(order) {
+		return new Promise(async (resolve, reject) => {
+			const { version } = order;
+			const keys = await this.keys();
+			const r = signer.version(version).sign((await serializer.use(order, this)).toXML(), keys.x());
+
+			if (this.tracesStorage)
+				this.tracesStorage.label(`REQUEST.${order.orderDetails.OrderType}`).data(r).persist();
+
+			$request.post({
+				url: this.url,
+				body: r,
+				headers: { 'content-type': 'text/xml;charset=UTF-8' },
+			}, (err, res, data) => {
+				if (err) reject(err);
+
+				const ebicsResponse = response.version(version)(data, keys);
+
+				if (this.tracesStorage)
+					this.tracesStorage.label(`RESPONSE.${order.orderDetails.OrderType}`).connect().data(ebicsResponse.toXML()).persist();
+
+				resolve(ebicsResponse);
+			});
+		});
+	}
+
+	async keys() {
+		try {
+			const keysString = await this._readKeys();
+
+			return new Keys(JSON.parse(this.keyEncryptor.decrypt(keysString)));
+		} catch (err) {
+			return null;
+		}
+	}
+
+	_generateKeys() {
+		const keysObject = Keys.generate();
+
+		this._writeKeys(keysObject);
+	}
+
+	async setBankKeys(bankKeys) {
+		const keysObject = await this.keys();
+
+		keysObject.setBankKeys(bankKeys);
+		await this._writeKeys(keysObject);
+	}
+
+	_readKeys() {
+		return this.keyStorage.read();
+	}
+
+	_writeKeys(keysObject) {
+		return this.keyStorage.write(this.keyEncryptor.encrypt(stringifyKeys(keysObject.keys)));
+	}
+};

packages/ebics-client/lib/consts.js

@@ -0,0 +1,18 @@
+'use strict';
+
+const packageJson = require('../package.json');
+
+const name = 'Node Ebics Client';
+const { version } = packageJson;
+const orderOperations = {
+	ini: 'INI',
+	upload: 'UPLOAD',
+	download: 'DOWNLOAD',
+};
+
+module.exports = {
+	name,
+	version,
+	orderOperations,
+	productString: `${name} ${version}`,
+};

packages/ebics-client/lib/crypto/Crypto.js

@@ -0,0 +1,93 @@
+'use strict';
+
+const crypto = require('crypto');
+
+const BN = require('bn.js');
+
+const mgf1 = require('./MGF1');
+
+const modPow = (base, power, mod) => {
+	let result = new BN(1);
+
+	while (power > 0) {
+		result = power.and(new BN(1)) == 1 ? (result.mul(base)).mod(mod) : result; // eslint-disable-line
+		base = (base.mul(base)).mod(mod);
+		power = power.shrn(1);
+	}
+	return result;
+};
+
+const emsaPSS = (msg, salt) => {
+	const eightNullBytes = Buffer.from('\x00'.repeat(8));
+	const digestedMsg = crypto.createHash('sha256').update(msg).digest();
+	const mTickHash = crypto.createHash('sha256').update(Buffer.concat([eightNullBytes, digestedMsg, salt]), 'binary').digest();
+
+	const ps = Buffer.from('\x00'.repeat(190));
+	const db = Buffer.concat([ps, Buffer.from('\x01'), salt]);
+
+	const dbMask = mgf1.generate(mTickHash, db.length);
+	const maskedDb = mgf1.xor(db, dbMask);
+
+	let maskedDbMsb = mgf1.rjust(new BN(maskedDb.slice(0, 1), 2).toString(2), 8, '0');
+
+	maskedDbMsb = `0${maskedDbMsb.substr(1)}`;
+	maskedDb[0] = (new BN(maskedDbMsb, 2).toBuffer())[0]; // eslint-disable-line
+
+	return Buffer.concat([maskedDb, mTickHash, Buffer.from('BC', 'hex')]);
+};
+
+
+module.exports = class Crypto {
+	static digestPublicKey(key) {
+		const str = [key.e('hex').replace(/^(0+)/g, ''), key.n('hex').replace(/^(0+)/g, '')].map(x => x.toLowerCase()).join(' ');
+
+		return crypto.createHash('sha256').update(str).digest('base64').trim();
+	}
+
+	static publicEncrypt(key, data) {
+		return crypto.publicEncrypt({
+			key: key.toPem(),
+			padding: crypto.constants.RSA_PKCS1_PADDING,
+		}, data);
+	}
+
+	static privateDecrypt(key, data) {
+		return crypto.privateDecrypt({
+			key: key.toPem(),
+			padding: crypto.constants.RSA_PKCS1_PADDING,
+		}, data);
+	}
+
+	static privateSign(key, data, outputEncoding = 'base64') {
+		const signer = crypto.createSign('SHA256');
+
+		return signer.update(data).sign(key.toPem(), outputEncoding);
+	}
+
+	static sign(key, msg, salt = crypto.randomBytes(32)) {
+		const base = new BN(emsaPSS(msg, salt));
+		const power = new BN(key.d());
+		const mod = new BN(key.n());
+
+		return (modPow(base, power, mod)).toBuffer().toString('base64');
+	}
+
+	static pad(d) {
+		const dLen = d.length;
+		const len = 16 * (Math.trunc(dLen / 16) + 1);
+
+		return Buffer.concat([d, Buffer.from(Buffer.from([0]).toString().repeat(len - dLen - 1)), Buffer.from([len - dLen])]);
+	}
+
+	static digestWithHash(data, algorith = 'sha256') {
+		return crypto.createHash(algorith).update(data).digest();
+	}
+
+	static nonce(outputEncoding = 'hex') {
+		return crypto.randomBytes(16).toString(outputEncoding);
+	}
+
+	static timestamp() {
+		return new Date().toISOString();
+	}
+};

packages/ebics-client/lib/crypto/MGF1.js

@@ -0,0 +1,48 @@
+'use strict';
+
+const crypto = require('crypto');
+const BN = require('bn.js');
+
+const MFG_LEN = 32;
+
+const divceil = (a, b) => ~~(((a + b) - 1) / b); // eslint-disable-line no-bitwise
+const rjust = (string, width, padding) => {
+	padding = padding || ' ';
+	padding = padding.substr(0, 1);
+	if (string.length < width)
+		return padding.repeat(width - string.length) + string;
+	return string;
+};
+const xor = (a, b) => {
+	if (a.length !== b.length)
+		throw new Error('Different length for a and b');
+
+	for (let i = 0; i < a.length; i++)
+		a[i] ^= b[i]; // eslint-disable-line no-bitwise
+
+	return a;
+};
+const i2osp = (x, len) => {
+	if (x >= 256 ** len)
+		throw new Error('Integer too large');
+
+	return Buffer.from(rjust((Buffer.from((new BN(x)).toArray('be', 4)).toString()).replace(/\x00/gi, ''), len, '\x00')); // eslint-disable-line no-control-regex
+};
+
+module.exports = {
+	generate(seed, masklen) {
+		if (masklen > 4294967296 * MFG_LEN)
+			throw new Error('Mask too long');
+
+
+		const b = [];
+
+		for (let i = 0; i < divceil(masklen, MFG_LEN); i++)
+			b[i] = crypto.createHash('sha256').update(Buffer.concat([seed, i2osp(i, 4)])).digest();
+
+
+		return (Buffer.concat(b)).slice(0, masklen);
+	},
+	xor,
+	rjust,
+};

packages/ebics-client/lib/keymanagers/Keys.js

@@ -0,0 +1,58 @@
+'use strict';
+
+const Key = require('./keyRSA');
+
+const keyOrNull = key => (key ? Key(key) : null);
+
+module.exports = class Keys {
+	constructor({
+		A006,
+		E002,
+		X002,
+		bankX002,
+		bankE002,
+	}) {
+		this.keys = {
+			A006: keyOrNull(A006),
+			E002: keyOrNull(E002),
+			X002: keyOrNull(X002),
+			bankX002: keyOrNull(bankX002),
+			bankE002: keyOrNull(bankE002),
+		};
+	}
+
+	static generate() {
+		const keys = {};
+
+		Object.keys({ A006: '', X002: '', E002: '' }).forEach((key) => {
+			keys[key] = Key().generate();
+		});
+
+		return new Keys(keys);
+	}
+
+	setBankKeys(bankKeys) {
+		this.keys.bankX002 = Key().importKey(bankKeys.bankX002);
+		this.keys.bankE002 = Key().importKey(bankKeys.bankE002);
+	}
+
+	a() {
+		return this.keys.A006;
+	}
+
+	e() {
+		return this.keys.E002;
+	}
+
+	x() {
+		return this.keys.X002;
+	}
+
+	bankX() {
+		return this.keys.bankX002;
+	}
+
+	bankE() {
+		return this.keys.bankE002;
+	}
+};

packages/ebics-client/lib/keymanagers/KeysManager.js

@@ -0,0 +1,68 @@
+'use strict';
+
+const crypto = require('crypto');
+
+const Keys = require('./Keys');
+
+const encrypt = (data, algorithm, passphrase) => {
+	const cipher = crypto.createCipher(algorithm, passphrase);
+	const encrypted = cipher.update(data, 'utf8', 'hex') + cipher.final('hex');
+
+	return Buffer.from(encrypted).toString('base64');
+};
+const decrypt = (data, algorithm, passphrase) => {
+	data = (Buffer.from(data, 'base64')).toString();
+
+	const decipher = crypto.createDecipher(algorithm, passphrase);
+	const decrypted = decipher.update(data, 'hex', 'utf8') + decipher.final('utf8');
+
+	return decrypted;
+};
+
+module.exports = (keysStorage, passphrase, algorithm = 'aes-256-cbc') => {
+	const storage = keysStorage;
+	const pass = passphrase;
+	const algo = algorithm;
+	// const createIfNone = createIfNone;
+
+	return {
+		generate(save = true) {
+			const keys = Keys.generate();
+
+			if (save) {
+				this.write(keys);
+
+				return this;
+			}
+
+			return keys;
+		},
+
+		write(keysObject) {
+			keysObject = keysObject.keys;
+
+			Object.keys(keysObject).map((key) => {
+				keysObject[key] = keysObject[key] === null ? null : keysObject[key].toPem();
+
+				return key;
+			});
+
+			storage.write(encrypt(JSON.stringify(keysObject), algo, pass));
+
+			return this;
+		},
+
+		setBankKeys(bankKeys) {
+			const keys = this.keys();
+
+			keys.setBankKeys(bankKeys);
+			this.write(keys);
+		},
+
+		keys() {
+			const keysString = storage.read();
+
+			return new Keys(JSON.parse(decrypt(keysString, algo, pass)));
+		},
+	};
+};

packages/ebics-client/lib/keymanagers/defaultKeyEncryptor.js

@@ -0,0 +1,24 @@
+'use strict';
+
+const crypto = require('crypto');
+
+const encrypt = (data, algorithm, passphrase) => {
+	const cipher = crypto.createCipher(algorithm, passphrase);
+	const encrypted = cipher.update(data, 'utf8', 'hex') + cipher.final('hex');
+	return Buffer.from(encrypted).toString('base64');
+};
+const decrypt = (data, algorithm, passphrase) => {
+	data = (Buffer.from(data, 'base64')).toString();
+	const decipher = crypto.createDecipher(algorithm, passphrase);
+	const decrypted = decipher.update(data, 'hex', 'utf8') + decipher.final('utf8');
+
+	return decrypted;
+};
+
+module.exports = ({
+	passphrase,
+	algorithm = 'aes-256-cbc',
+}) => ({
+	encrypt: data => encrypt(data, algorithm, passphrase),
+	decrypt: data => decrypt(data, algorithm, passphrase),
+});

packages/ebics-client/lib/keymanagers/keyRSA.js

@@ -0,0 +1,49 @@
+'use strict';
+
+const BN = require('bn.js');
+const NodeRSA = require('node-rsa');
+
+const keyOrNull = (encodedKey) => {
+	if (encodedKey === null) return new NodeRSA();
+
+	return (encodedKey instanceof NodeRSA) ? encodedKey : new NodeRSA(encodedKey);
+};
+
+module.exports = encodedKey => ({
+	key: keyOrNull(encodedKey),
+
+	generate(keySize = 2048) {
+		return new NodeRSA({ b: keySize });
+	},
+
+	importKey({ mod, exp }) {
+		this.key = new NodeRSA();
+		this.key.importKey({ n: mod, e: exp }, 'components-public');
+
+		return this;
+	},
+
+	n(to = 'buff') {
+		const keyN = Buffer.from(this.key.exportKey('components-public').n);
+
+		return to === 'hex'
+			? keyN.toString('hex', 1)
+			: keyN;
+	},
+
+	e(to = 'buff') {
+		const eKey = new BN(this.key.exportKey('components-public').e).toBuffer();
+
+		return to === 'hex'
+			? eKey.toString('hex')
+			: eKey;
+	},
+
+	d() {
+		return this.key.keyPair.d.toBuffer();
+	},
+
+	toPem() {
+		return this.key.isPrivate() ? this.key.exportKey('pkcs1-private-pem') : this.key.exportKey('pkcs8-public-pem');
+	},
+});

packages/ebics-client/lib/middleware/response.js

@@ -0,0 +1,11 @@
+'use strict';
+
+const H004Response = require('../orders/H004/response');
+
+module.exports = {
+	version(v) {
+		if (v.toUpperCase() === 'H004') return H004Response;
+
+		throw Error('Error from middleware/response.js: Invalid version number');
+	},
+};

packages/ebics-client/lib/middleware/serializer.js

@@ -0,0 +1,13 @@
+'use strict';
+
+const H004Serializer = require('../orders/H004/serializer');
+
+module.exports = {
+	use(order, client) {
+		const { version } = order;
+
+		if (version.toUpperCase() === 'H004') return H004Serializer.use(order, client);
+
+		throw Error('Error middleware/serializer.js: Invalid version number');
+	},
+};

packages/ebics-client/lib/middleware/signer.js

@@ -0,0 +1,11 @@
+'use strict';
+
+const H004Signer = require('../orders/H004/signer');
+
+module.exports = {
+	version(v) {
+		if (v.toUpperCase() === 'H004') return H004Signer;
+
+		throw Error('Error from middleware/signer.js: Invalid version number');
+	},
+};

packages/ebics-client/lib/orders/H004/errors.js

@@ -0,0 +1,313 @@
+'use strict';
+
+const errors = {
+	technical: {
+		'000000': {
+			symbol: 'EBICS_OK',
+			short_text: 'OK',
+			meaning: 'No technical errors occurred during processing of the EBICS request',
+		},
+		'011000': {
+			symbol: 'EBICS_DOWNLOAD_POSTPROCESS_DONE',
+			short_text: 'Positive acknowledgement received',
+			meaning: "After receipt of a positive acknowledgement the download task was finished at the server's end and the EBICS transaction ended.",
+		},
+		'011001': {
+			symbol: 'EBICS_DOWNLOAD_POSTPROCESS_SKIPPED',
+			short_text: 'Negative acknowledgement received',
+			meaning: "After receipt of a negative acknowledgement the transaction was ended at the server's end without finishing the download task",
+		},
+		'011101': {
+			symbol: 'EBICS_TX_SEGMENT_NUMBER_UNDERRUN',
+			short_text: 'Segment number not reached',
+			meaning: 'The total number of segments transmitted during transaction initialisation was not reached (i.e. the attribute @lastSegment was set to "true" before the specified segment number was reached)',
+		},
+		'031001': {
+			symbol: 'EBICS_ORDER_PARAMS_IGNORED',
+			short_text: 'Unknown order parameters are ignored',
+			meaning: 'E.g. OrderParams for Upload specified',
+		},
+		'061001': {
+			symbol: 'EBICS_AUTHENTICATION_FAILED',
+			short_text: 'Authentication signature error',
+			meaning: 'Verification of the authentication signature was not successful',
+		},
+		'061002': {
+			symbol: 'EBICS_INVALID_REQUEST',
+			short_text: 'Message not EBICSconformant',
+			meaning: 'The syntax of the received message does not conform with EBICS specifications',
+		},
+		'061099': {
+			symbol: 'EBICS_INTERNAL_ERROR',
+			short_text: 'Internal EBICS error',
+			meaning: 'An internal error occurred during',
+		},
+		'061101': {
+			symbol: 'EBICS_TX_RECOVERY_SYNC',
+			short_text: 'Synchronisation necessary',
+			meaning: "Recovery of the transaction requires synchronisation between the customer system and the bank system Continuation of the transaction using the recovery point from the bank system's EBICS response",
+		},
+		'091002': {
+			symbol: 'EBICS_INVALID_USER_OR_USER_STATE',
+			short_text: 'Subscriber unknown or subscriber state inadmissible',
+			meaning: 'Either the initiating party is not known to the bank system or the subscriber state that is stored in the bank of the initiating party is inadmissible with regard to the order type',
+		},
+		'091003': {
+			symbol: 'EBICS_USER_UNKNOWN',
+			short_text: 'Subscriber unknown',
+			meaning: 'The initiating party is not known to the bank system',
+		},
+		'091004': {
+			symbol: 'EBICS_INVALID_USER_STATE',
+			short_text: 'Subscriber state unknown',
+			meaning: 'The subscriber state of the initiating party that is stored in the bank system is inadmissible with regard to the order type',
+		},
+		'091005': {
+			symbol: 'EBICS_INVALID_ORDER_TYPE',
+			short_text: 'Order type inadmissible',
+			meaning: 'The order type is unknown or not approved for use with EBICS',
+		},
+		'091006': {
+			symbol: 'EBICS_UNSUPPORTED_ORDER_TYPE',
+			short_text: 'Order type not supported',
+			meaning: 'The selected order type is optional with EBICS and is not supported by the financial institution',
+		},
+		'091007': {
+			symbol: 'EBICS_DISTRIBUTED_SIGNATURE_AUTHORISATION_FAILED',
+			short_text: 'Subscriber possesses no authorisation of signature for the referenced order in the VEU administration (Request recent signature folder)',
+			meaning: 'Retrieve recent signature folder with permissible orders of order type HVU (or HVZ, respectively)',
+		},
+		'091008': {
+			symbol: 'EBICS_BANK_PUBKEY_UPDATE_REQUIRED',
+			short_text: 'Bank key invalid',
+			meaning: 'The public bank key that is available to the subscriber is invalid',
+		},
+		'091009': {
+			symbol: 'EBICS_SEGMENT_SIZE_EXCEEDED',
+			short_text: 'Segment size exceeded',
+			meaning: 'The specified size of an upload order data segment (in the case of H003: 1 MB) has been exceeded',
+		},
+		'091010': {
+			symbol: 'EBICS_INVALID_XML',
+			short_text: 'XML invalid according to EBICS XML schema',
+			meaning: 'XML validation with EBICS schema failed or XML not well-formed',
+		},
+		'091011': {
+			symbol: 'EBICS_INVALID_HOST_ID',
+			short_text: "The transmitted HostID is unknown on the bank's side",
+			meaning: "The transmitted HostID is unknown on the bank's side. The use of this code is only provided for the HEV request Check the used HostID and correct it. Consultation with the bank, if necessary",
+		},
+		'091101': {
+			symbol: 'EBICS_TX_UNKNOWN_TXID',
+			short_text: 'Transaction ID invalid',
+			meaning: 'The supplied transaction ID is invalid',
+		},
+		'091102': {
+			symbol: 'EBICS_TX_ABORT',
+			short_text: 'Transaction cancelled',
+			meaning: "The transaction was cancelled at the server's end since recovery of the transaction is not supported or is no longer possible due to the recovery counter being too high",
+		},
+		'091103': {
+			symbol: 'EBICS_TX_MESSAGE_REPLAY',
+			short_text: 'Suspected Message replay (wrong time/time zone or nonce error)',
+			meaning: 'A message replay has been identified (Nonce/Timestamp pair doubled) or the difference of clock time between client and server exceeds the (parametrisable) tolerance limit',
+		},
+		'091104': {
+			symbol: 'EBICS_TX_SEGMENT_NUMBER_EXCEEDED',
+			short_text: 'Segment number exceeded',
+			meaning: 'The total segment number from transaction initialisation was exceeded, i.e. the attribute @lastSegment was set to "false" when the last segment was transmitted',
+		},
+		'091112': {
+			symbol: 'EBICS_INVALID_ORDER_PARAMS',
+			short_text: 'Invalid order parameters',
+			meaning: 'The content of OrderParams is invalid, e.g. if starting off behind the end in case of StandardOrderParams, or, in case of HVT, fetchOffset is higher than NumOrderInfos (total number of particular order information of an order)',
+		},
+		'091113': {
+			symbol: 'EBICS_INVALID_REQUEST_CONTENT',
+			short_text: 'Message content semantically not compliant to EBICS',
+			meaning: 'The received message complies syntactically EBICS XML schema, but not semantically to the EBICS guidelines, e.g. IZV upload with UZHNN requires NumSegments = 0',
+		},
+		'091117': {
+			symbol: 'EBICS_MAX_ORDER_DATA_SIZE_EXCEEDED',
+			short_text: 'The bank system does not support the requested order size',
+			meaning: 'Upload or download of an order file of improper size (e.g. for HVT, IZV, STA)',
+		},
+		'091118': {
+			symbol: 'EBICS_MAX_SEGMENTS_EXCEEDED',
+			short_text: 'Submitted number of segments for upload is too high',
+			meaning: 'The bank system does not support the specified total number of segments for upload',
+		},
+		'091119': {
+			symbol: 'EBICS_MAX_TRANSACTIONS_EXCEEDED',
+			short_text: 'Maximum number of parallel transactions per customer is exceeded',
+			meaning: 'The maximum number of parallel EBICS transactions defined in the bank system for the customer has been exceeded',
+		},
+		'091120': {
+			symbol: 'EBICS_PARTNER_ID_MISMATCH',
+			short_text: 'The partner ID (=customer ID) of the ES file is not identical to the partner ID (=customer ID) of the submitter.',
+			meaning: "On verifying the submitted signatures a partner ID was found in the document UserSignatureData that is not identical to the subscriber's partner ID in the request header",
+		},
+		'091121': {
+			symbol: 'EBICS_INCOMPATIBLE_ORDER_ATTRIBUTE',
+			short_text: 'The specified order attribute is not compatible with the order in the bank system',
+			meaning: 'Case 1) File with order attribute "DZHNN" or "OZHNN" submitted with an orderId or Case 2) File with order attribute "UZHNN" submitted without an orderId or with orderID which is already used for "DZHNN" File with order attribute "DZHNN" submitted with an orderId',
+		},
+	},
+	business: {
+		'000000': {
+			symbol: 'EBICS_OK',
+			short_text: 'OK',
+			meaning: 'No technical errors occurred during processing of the EBICS request',
+		},
+		'011301': {
+			symbol: 'EBICS_NO_ONLINE_CHECKS',
+			short_text: 'Optional preliminary verification is not supported by the bank system',
+		},
+		'091001': {
+			symbol: 'EBICS_DOWNLOAD_SIGNED_ONLY',
+			short_text: 'The bank system only supports bank-technically signed download order data for the order in question',
+		},
+		'091002': {
+			symbol: 'EBICS_DOWNLOAD_UNSIGNED_ONLY',
+			short_text: 'The bank system only supports unsigned download order data for the order in question',
+		},
+		'090003': {
+			symbol: 'EBICS_AUTHORISATION_ORDER_TYPE_FAILED',
+			short_text: 'The subscriber is not entitled to submit orders of the selected order type',
+		},
+		'090004': {
+			symbol: 'EBICS_INVALID_ORDER_DATA_FORMAT',
+			short_text: 'The transferred order data does not correspond with the specified format',
+		},
+		'090005': {
+			symbol: 'EBICS_NO_DOWNLOAD_DATA_AVAILABLE',
+			short_text: 'No data are available at present for the selected download order type',
+		},
+		'090006': {
+			symbol: 'EBICS_UNSUPPORTED_REQUEST_FOR_ORDER_INSTANCE',
+			short_text: 'The bank system does not support the selected order request for the concrete business transaction associated with this order',
+		},
+		'091105': {
+			symbol: 'EBICS_RECOVERY_NOT_SUPPORTED',
+			short_text: 'The bank system does not support Recovery',
+		},
+		'091111': {
+			symbol: 'EBICS_INVALID_SIGNATURE_FILE_FORMAT',
+			short_text: 'The submitted ES files do not comply with the defined format The ES file cannot be parsed syntactically (no business-related verification!)',
+		},
+		'091114': {
+			symbol: 'EBICS_ORDERID_UNKNOWN',
+			short_text: 'The submitted order number is unknown',
+		},
+		'091115': {
+			symbol: 'EBICS_ORDERID_ALREADY_EXISTS',
+			short_text: 'The submitted order number is already existent',
+		},
+		'091116': {
+			symbol: 'EBICS_PROCESSING_ERROR',
+			short_text: 'During processing of the EBICS request, other business-related errors have ocurred',
+		},
+		'091201': {
+			symbol: 'EBICS_KEYMGMT_UNSUPPORTED_VERSION_SIGNATURE',
+			short_text: 'The algorithm version of the bank-technical signature key is not supported by the financial institution (order types INI, HCS and PUB)',
+		},
+		'091202': {
+			symbol: 'EBICS_KEYMGMT_UNSUPPORTED_VERSION_AUTHENTICATION',
+			short_text: 'The algorithm version of theauthentication key is notsupported by the financialinstitution (order types HIA,HSA and HCA)',
+		},
+		'091203': {
+			symbol: 'EBICS_KEYMGMT_UNSUPPORTED_VERSION_ENCRYPTION',
+			short_text: 'The algorithm version of the encryption key is not supported by the financial institution (order types HIA, HSA and HCA) This error message is returned particularly when the process ID E001 is used which is invalid from schema version H003 on',
+		},
+		'091204': {
+			symbol: 'EBICS_KEYMGMT_KEYLENGTH_ERROR_SIGNATURE',
+			short_text: 'The key length of the banktechnical signature key is not supported by the financial institution (order types INI and PUB or HCS)',
+		},
+		'091205': {
+			symbol: 'EBICS_KEYMGMT_KEYLENGTH_ERROR_AUTHENTICATION',
+			short_text: 'The key length of the authentication key is not supported by the financial institution (order types HIA, HSA, HCS and HCA)',
+		},
+		'091206': {
+			symbol: 'EBICS_KEYMGMT_KEYLENGTH_ERROR_ENCRYPTION',
+			short_text: 'The key length of the encryption key is not supported by the financial institution (order types HIA, HSA, HCS and HCA)',
+		},
+		'091207': {
+			symbol: 'EBICS_KEYMGMT_NO_X509_SUPPORT',
+			short_text: 'The bank system does not support the evaluation of X.509 data (order types INI, HIA, HSA, PUB, HCA, HCS)',
+		},
+		'091208': {
+			symbol: 'EBICS_X509_CERTIFICATE_EXPIRED',
+			short_text: 'certificate is not valid because it has expired',
+		},
+		'091209': {
+			symbol: 'EBICS_X509_ERTIFICATE_NOT_VALID_YET',
+			short_text: 'certificate is not valid because it is not yet in effect',
+		},
+		'091210': {
+			symbol: 'EBICS_X509_WRONG_KEY_USAGE',
+			short_text: 'When verifying the certificate key usage, it has been detected that the certificate has not been issued for the current use. (only applies when key management order types are used)',
+		},
+		'091211': {
+			symbol: 'EBICS_X509_WRONG_ALGORITHM',
+			short_text: 'When verifying the certificate algorithm, it has been detected that the certificate has not been issued for the current use. (only applies when key management order types are used)',
+		},
+		'091212': {
+			symbol: 'EBICS_X509_INVALID_THUMBPRINT',
+			short_text: 'Reserved for next version',
+		},
+		'091213': {
+			symbol: 'EBICS_X509_CTL_INVALID',
+			short_text: 'When verifying the certificate, it has been detected that the certificate trust list (CTL) is not valid because, for example, it has expired.',
+		},
+		'091214': {
+			symbol: 'EBICS_X509_UNKNOWN_CERTIFICATE_AUTHORITY',
+			short_text: 'The chain cannot be verified due to an unknown certificate authority (CA) If OrderType = INI, PUB or HCS and X509v3 supported: The Reject of the Request is mandatory, if signature class <> "T"',
+		},
+		'091215': {
+			symbol: 'EBICS_X509_INVALID_POLICY',
+			short_text: 'Reserved for next version',
+		},
+		'091216': {
+			symbol: 'EBICS_X509_INVALID_BASIC_CONSTRAINTS',
+			short_text: 'Reserved for next version',
+		},
+		'091217': {
+			symbol: 'EBICS_ONLY_X509_SUPPORT',
+			short_text: 'With respect to certificates, the bank system only supports the evaluation of X.509 data',
+		},
+		'091218': {
+			symbol: 'EBICS_KEYMGMT_DUPLICATE_KEY',
+			short_text: 'During the key management request, it has been detected that the key or certificate sent for authentication or for encryption is the same as the signature key/certificate (INI, HIA, PUB, HCS,..)',
+		},
+		'091219': {
+			symbol: 'EBICS_CERTIFICATES_VALIDATION_ERROR',
+			short_text: 'The server is unable to match the certificate (ES key) with the previously declared information automatically.',
+		},
+		'091301': {
+			symbol: 'EBICS_SIGNATURE_VERIFICATION_FAILED',
+			short_text: 'Verification of the ES has failed In the case of asynchronouslyimplemented orders, the error can occur during preliminary verification.',
+		},
+		'091302': {
+			symbol: 'EBICS_ACCOUNT_AUTHORISATION_FAILED',
+			short_text: 'Preliminary verification of the account authorisation has failed',
+		},
+		'091303': {
+			symbol: 'EBICS_AMOUNT_CHECK_FAILED',
+			short_text: 'Preliminary verification of the account amount limit has failed',
+		},
+		'091304': {
+			symbol: 'EBICS_SIGNER_UNKNOWN',
+			short_text: 'A signatory of the order in question is not a valid subscriber.',
+		},
+		'091305': {
+			symbol: 'EBICS_INVALID_SIGNER_STATE',
+			short_text: 'The state of a signatory in the order in question is not admissible.',
+		},
+		'091306': {
+			symbol: 'EBICS_DUPLICATE_SIGNATURE',
+			short_text: 'The signatory has already signed the order on hand.',
+		},
+	},
+};
+
+module.exports = errors;

packages/ebics-client/lib/orders/H004/response.js

@@ -0,0 +1,142 @@
+'use strict';
+
+const zlib = require('zlib');
+const crypto = require('crypto');
+const BN = require('bn.js');
+
+const Crypto = require('../../crypto/Crypto');
+
+const { DOMParser, XMLSerializer } = require('xmldom');
+const xpath = require('xpath');
+const errors = require('./errors');
+
+const DEFAULT_IV = Buffer.from(Array(16).fill(0, 0, 15));
+
+const lastChild = (node) => {
+	let y = node.lastChild;
+
+	while (y.nodeType !== 1) y = y.previousSibling;
+
+	return y;
+};
+
+module.exports = (xml, keys) => ({
+	keys,
+	doc: new DOMParser().parseFromString(xml, 'text/xml'),
+
+	isSegmented() {
+		const select = xpath.useNamespaces({ xmlns: 'urn:org:ebics:H004' });
+		const node = select('//xmlns:header/xmlns:mutable/xmlns:SegmentNumber', this.doc);
+
+		return !!node.length;
+	},
+
+	isLastSegment() {
+		const select = xpath.useNamespaces({ xmlns: 'urn:org:ebics:H004' });
+		const node = select("//xmlns:header/xmlns:mutable/*[@lastSegment='true']", this.doc);
+
+		return !!node.length;
+	},
+
+	orderData() {
+		const orderDataNode = this.doc.getElementsByTagNameNS('urn:org:ebics:H004', 'OrderData');
+
+		if (!orderDataNode.length) return {};
+
+		const orderData = orderDataNode[0].textContent;
+		const decipher = crypto.createDecipheriv('aes-128-cbc', this.transactionKey(), DEFAULT_IV).setAutoPadding(false);
+		const data = Buffer.from(decipher.update(orderData, 'base64', 'binary') + decipher.final('binary'), 'binary');
+
+		return zlib.inflateSync(data);
+	},
+
+	transactionKey() {
+		const keyNodeText = this.doc.getElementsByTagNameNS('urn:org:ebics:H004', 'TransactionKey')[0].textContent;
+
+		return Crypto.privateDecrypt(this.keys.e(), Buffer.from(keyNodeText, 'base64'));
+	},
+
+	transactionId() {
+		const select = xpath.useNamespaces({ xmlns: 'urn:org:ebics:H004' });
+		const node = select('//xmlns:header/xmlns:static/xmlns:TransactionID', this.doc);
+
+		return node.length ? node[0].textContent : '';
+	},
+
+	orderId() {
+		const select = xpath.useNamespaces({ xmlns: 'urn:org:ebics:H004' });
+		const node = select('//xmlns:header/xmlns:mutable/xmlns:OrderID', this.doc);
+
+		return node.length ? node[0].textContent : '';
+	},
+
+	businessCode() {
+		const select = xpath.useNamespaces({ xmlns: 'urn:org:ebics:H004' });
+		const node = select('//xmlns:body/xmlns:ReturnCode', this.doc)
+
+		return node.length ? node[0].textContent : '';
+	},
+
+	businessSymbol(code) {
+		return errors.business[code].symbol;
+	},
+
+	businessShortText(code) {
+		return errors.business[code].short_text;
+	},
+
+	businessMeaning(code) {
+		return errors.business[code].meaning;
+	},
+
+	technicalCode() {
+		const select = xpath.useNamespaces({ xmlns: 'urn:org:ebics:H004' });
+		const node = select('//xmlns:header/xmlns:mutable/xmlns:ReturnCode', this.doc);
+
+		return node.length ? node[0].textContent : '';
+	},
+
+	technicalSymbol() {
+		const select = xpath.useNamespaces({ xmlns: 'urn:org:ebics:H004' });
+		const node = select('//xmlns:header/xmlns:mutable/xmlns:ReportText', this.doc);
+
+		return node.length ? node[0].textContent : '';
+	},
+
+	technicalShortText(code) {
+		return errors.technical[code].short_text;
+	},
+
+	technicalMeaning(code) {
+		return errors.technical[code].meaning;
+	},
+
+	bankKeys() {
+		const orderData = this.orderData().toString();
+		if (!Object.keys(orderData).length) return {};
+
+		const doc = new DOMParser().parseFromString(orderData, 'text/xml');
+		const select = xpath.useNamespaces({ xmlns: 'urn:org:ebics:H004' });
+		const keyNodes = select('//xmlns:PubKeyValue', doc);
+		const bankKeys = {};
+
+		if (!keyNodes.length) return {};
+
+		for (let i = 0; i < keyNodes.length; i++) {
+			const type = lastChild(keyNodes[i].parentNode).textContent;
+			const modulus = xpath.select(".//*[local-name(.)='Modulus']", keyNodes[i])[0].textContent;
+			const exponent = xpath.select(".//*[local-name(.)='Exponent']", keyNodes[i])[0].textContent;
+
+			const mod = new BN(Buffer.from(modulus, 'base64'), 2).toBuffer();
+			const exp = new BN(Buffer.from(exponent, 'base64')).toNumber();
+
+			bankKeys[`bank${type}`] = { mod, exp };
+		}
+
+		return bankKeys;
+	},
+
+	toXML() {
+		return new XMLSerializer().serializeToString(this.doc);
+	},
+});

packages/ebics-client/lib/orders/H004/serializer.js

@@ -0,0 +1,19 @@
+'use strict';
+
+const constants = require('../../consts');
+
+const iniSerializer = require('./serializers/ini');
+const downloadSerializer = require('./serializers/download');
+const uploadSerializer = require('./serializers/upload');
+
+module.exports = {
+	use(order, client) {
+		const operation = order.operation.toUpperCase();
+
+		if (operation === constants.orderOperations.ini) return iniSerializer.use(order, client);
+		if (operation === constants.orderOperations.download) return downloadSerializer.use(order, client);
+		if (operation === constants.orderOperations.upload) return uploadSerializer.use(order, client);
+
+		throw Error('Error from orders/orders.js: Wrong order version/type.');
+	},
+};

packages/ebics-client/lib/orders/H004/serializers/download.js

@@ -0,0 +1,67 @@
+'use strict';
+
+const js2xmlparser = require('js2xmlparser');
+
+const Crypto = require('../../../crypto/Crypto');
+
+const genericSerializer = require('./generic');
+
+module.exports = {
+	async use(order, client) {
+		const keys = await client.keys();
+		const ebicsAccount = {
+			partnerId: client.partnerId,
+			userId: client.userId,
+			hostId: client.hostId,
+		};
+		const { orderDetails, transactionId } = order;
+		const {
+			rootName, xmlOptions, xmlSchema, receipt, transfer, productString,
+		} = genericSerializer(client.hostId, transactionId);
+
+		this.productString = productString;
+		this.rootName = rootName;
+		this.xmlOptions = xmlOptions;
+		this.xmlSchema = xmlSchema;
+		this.receipt = receipt;
+		this.transfer = transfer;
+
+		if (transactionId) return this.receipt();
+
+		this.xmlSchema.header = {
+			'@': { authenticate: true },
+			static: {
+				HostID: ebicsAccount.hostId,
+				Nonce: Crypto.nonce(),
+				Timestamp: Crypto.timestamp(),
+				PartnerID: ebicsAccount.partnerId,
+				UserID: ebicsAccount.userId,
+				Product: {
+					'@': { Language: 'en' },
+					'#': productString,
+				},
+				OrderDetails: orderDetails,
+				BankPubKeyDigests: {
+					Authentication: {
+						'@': { Version: 'X002', Algorithm: 'http://www.w3.org/2001/04/xmlenc#sha256' },
+						'#': Crypto.digestPublicKey(keys.bankX()),
+					},
+					Encryption: {
+						'@': { Version: 'E002', Algorithm: 'http://www.w3.org/2001/04/xmlenc#sha256' },
+						'#': Crypto.digestPublicKey(keys.bankE()),
+					},
+				},
+				SecurityMedium: '0000',
+			},
+			mutable: {
+				TransactionPhase: 'Initialisation',
+			},
+		};
+
+		return this;
+	},
+
+	toXML() {
+		return js2xmlparser.parse(this.rootName, this.xmlSchema, this.xmlOptions);
+	},
+};

packages/ebics-client/lib/orders/H004/serializers/generic.js

@@ -0,0 +1,134 @@
+'use strict';
+
+const constants = require('../../../consts');
+
+const rootName = 'ebicsRequest';
+const rootAttributes = {
+	'xmlns:ds': 'http://www.w3.org/2000/09/xmldsig#',
+	xmlns: 'urn:org:ebics:H004',
+	Version: 'H004',
+	Revision: '1',
+};
+const header = {};
+const authSignature = ({
+	'ds:SignedInfo': {
+		'ds:CanonicalizationMethod': {
+			'@': {
+				Algorithm:
+						'http://www.w3.org/TR/2001/REC-xml-c14n-20010315',
+			},
+		},
+		'ds:SignatureMethod': {
+			'@': {
+				Algorithm:
+						'http://www.w3.org/2001/04/xmldsig-more#rsa-sha256',
+			},
+		},
+		'ds:Reference': {
+			'@': { URI: "#xpointer(//*[@authenticate='true'])" },
+			'ds:Transforms': {
+				'ds:Transform': {
+					'@': {
+						Algorithm:
+								'http://www.w3.org/TR/2001/REC-xml-c14n-20010315',
+					},
+				},
+			},
+			'ds:DigestMethod': {
+				'@': {
+					Algorithm:
+							'http://www.w3.org/2001/04/xmlenc#sha256',
+				},
+			},
+			'ds:DigestValue': {},
+		},
+	},
+	'ds:SignatureValue': {},
+});
+const body = {};
+
+const xmlOptions = {
+	declaration: {
+		include: true,
+		encoding: 'utf-8',
+	},
+	format: {
+		doubleQuotes: true,
+		indent: '',
+		newline: '',
+		pretty: true,
+	},
+};
+
+module.exports = (hostId, transactionId) => ({
+	// return {
+	productString: constants.productString,
+	rootName,
+	xmlOptions,
+	xmlSchema: {
+		'@': rootAttributes,
+		header,
+		AuthSignature: authSignature,
+		body,
+	},
+
+	receipt() {
+		this.xmlSchema = {
+			'@': rootAttributes,
+
+			header: {
+				'@': { authenticate: true },
+				static: {
+					HostID: hostId,
+					TransactionID: transactionId,
+				},
+				mutable: {
+					TransactionPhase: 'Receipt',
+				},
+			},
+
+			AuthSignature: authSignature,
+
+			body: {
+				TransferReceipt: {
+					'@': { authenticate: true },
+					ReceiptCode: 0,
+				},
+			},
+		};
+
+		return this;
+	},
+
+	transfer(encryptedOrderData) {
+		this.xmlSchema = {
+			'@': rootAttributes,
+
+			header: {
+				'@': { authenticate: true },
+				static: {
+					HostID: hostId,
+					TransactionID: transactionId,
+				},
+				mutable: {
+					TransactionPhase: 'Transfer',
+					SegmentNumber: {
+						'@': { lastSegment: true },
+						'#': 1,
+					},
+				},
+			},
+
+			AuthSignature: authSignature,
+
+			body: {
+				DataTransfer: {
+					OrderData: encryptedOrderData,
+				},
+			},
+		};
+
+		return this;
+	},
+	// };
+});

packages/ebics-client/lib/orders/H004/serializers/ini.js

@@ -0,0 +1,148 @@
+'use strict';
+
+const zlib = require('zlib');
+
+const js2xmlparser = require('js2xmlparser');
+
+const Crypto = require('../../../crypto/Crypto');
+
+const genericSerializer = require('./generic');
+
+const keySignature = (ebicsAccount, key, xmlOptions) => {
+	const xmlOrderData = {
+		'@': {
+			'xmlns:ds': 'http://www.w3.org/2000/09/xmldsig#',
+			xmlns: 'http://www.ebics.org/S001',
+		},
+		SignaturePubKeyInfo: {
+			PubKeyValue: {
+				'ds:RSAKeyValue': {
+					'ds:Modulus': key.n().toString('base64'),
+					'ds:Exponent': key.e().toString('base64'),
+				},
+				TimeStamp: Crypto.timestamp(),
+			},
+			SignatureVersion: 'A006',
+		},
+		PartnerID: ebicsAccount.partnerId,
+		UserID: ebicsAccount.userId,
+	};
+
+	return js2xmlparser.parse('SignaturePubKeyOrderData', xmlOrderData, xmlOptions);
+};
+const orderData = (ebicsAccount, keys, xmlOptions) => {
+	const xmlOrderData = {
+		'@': {
+			'xmlns:ds': 'http://www.w3.org/2000/09/xmldsig#',
+			xmlns: 'urn:org:ebics:H004',
+		},
+		AuthenticationPubKeyInfo: {
+			PubKeyValue: {
+				'ds:RSAKeyValue': {
+					'ds:Modulus': keys.x().n().toString('base64'),
+					'ds:Exponent': keys.x().e().toString('base64'),
+				},
+			},
+			AuthenticationVersion: 'X002',
+		},
+		EncryptionPubKeyInfo: {
+			PubKeyValue: {
+				'ds:RSAKeyValue': {
+					'ds:Modulus': keys.e().n().toString('base64'),
+					'ds:Exponent': keys.e().e().toString('base64'),
+				},
+			},
+			EncryptionVersion: 'E002',
+		},
+		PartnerID: ebicsAccount.partnerId,
+		UserID: ebicsAccount.userId,
+	};
+
+	return js2xmlparser.parse('HIARequestOrderData', xmlOrderData, xmlOptions);
+};
+const commonHeader = (ebicsAccount, orderDetails, productString) => ({
+	'@': { authenticate: true },
+	static: {
+		HostID: ebicsAccount.hostId,
+		Nonce: Crypto.nonce(),
+		Timestamp: Crypto.timestamp(),
+		PartnerID: ebicsAccount.partnerId,
+		UserID: ebicsAccount.userId,
+		Product: {
+			'@': { Language: 'en' },
+			'#': productString,
+		},
+		OrderDetails: orderDetails,
+		SecurityMedium: '0000',
+	},
+	mutable: {},
+});
+const process = {
+	INI: {
+		rootName: 'ebicsUnsecuredRequest',
+		header: (ebicsAccount, orderDetails, productString) => {
+			const ch = commonHeader(ebicsAccount, orderDetails, productString);
+
+			delete ch.static.Nonce;
+			delete ch.static.Timestamp;
+
+			return ch;
+		},
+		body: (ebicsAccount, keys, xmlOptions) => ({
+			DataTransfer: {
+				OrderData: Buffer.from(zlib.deflateSync(keySignature(ebicsAccount, keys.a(), xmlOptions))).toString('base64'),
+			},
+		}),
+	},
+	HIA: {
+		rootName: 'ebicsUnsecuredRequest',
+		header: (ebicsAccount, orderDetails, productString) => {
+			const ch = commonHeader(ebicsAccount, orderDetails, productString);
+
+			delete ch.static.Nonce;
+			delete ch.static.Timestamp;
+
+			return ch;
+		},
+		body: (ebicsAccount, keys, xmlOptions) => ({
+			DataTransfer: {
+				OrderData: Buffer.from(zlib.deflateSync(orderData(ebicsAccount, keys, xmlOptions))).toString('base64'),
+			},
+		}),
+	},
+	HPB: {
+		rootName: 'ebicsNoPubKeyDigestsRequest',
+		header: (ebicsAccount, orderDetails, productString) => commonHeader(ebicsAccount, orderDetails, productString),
+		body: () => ({}),
+	},
+};
+
+module.exports = {
+	async use(order, client) {
+		const keys = await client.keys();
+		const { orderDetails, transactionId } = order;
+		const { xmlOptions, xmlSchema, productString } = genericSerializer(client.host, transactionId);
+		const orderType = orderDetails.OrderType.toUpperCase();
+		const ebicsAccount = {
+			partnerId: client.partnerId,
+			userId: client.userId,
+			hostId: client.hostId,
+		};
+
+		this.rootName = process[orderType].rootName;
+		this.xmlOptions = xmlOptions;
+		this.xmlSchema = xmlSchema;
+
+		this.xmlSchema.header = process[orderType].header(ebicsAccount, orderDetails, productString);
+		this.xmlSchema.body = process[orderType].body(ebicsAccount, keys, this.xmlOptions);
+
+		if (orderType !== 'HPB' && Object.prototype.hasOwnProperty.call(this.xmlSchema, 'AuthSignature'))
+			delete this.xmlSchema.AuthSignature;
+
+		return this;
+	},
+
+	toXML() {
+		return js2xmlparser.parse(this.rootName, this.xmlSchema, this.xmlOptions);
+	},
+};

packages/ebics-client/lib/orders/H004/serializers/upload.js

@@ -0,0 +1,93 @@
+'use strict';
+
+const zlib = require('zlib');
+const crypto = require('crypto');
+
+const js2xmlparser = require('js2xmlparser');
+
+const Crypto = require('../../../crypto/Crypto');
+
+const downloadSerializer = require('./download');
+
+const transKey = crypto.randomBytes(16);
+
+const signatureValue = (document, key) => {
+	const digested = Crypto.digestWithHash(document.replace(/\n|\r/g, ''));
+
+	return Crypto.sign(key, digested);
+};
+const orderSignature = (ebicsAccount, document, key, xmlOptions) => {
+	const xmlObj = {
+		'@': {
+			xmlns: 'http://www.ebics.org/S001',
+			'xmlns:xsi': 'http://www.w3.org/2001/XMLSchema-instance',
+			'xsi:schemaLocation': 'http://www.ebics.org/S001 http://www.ebics.org/S001/ebics_signature.xsd',
+		},
+		OrderSignatureData: {
+			SignatureVersion: 'A006',
+			SignatureValue: signatureValue(document, key),
+			PartnerID: ebicsAccount.partnerId,
+			UserID: ebicsAccount.userId,
+		},
+	};
+
+	return js2xmlparser.parse('UserSignatureData', xmlObj, xmlOptions);
+};
+const encryptedOrderSignature = (ebicsAccount, document, transactionKey, key, xmlOptions) => {
+	const dst = zlib.deflateSync(orderSignature(ebicsAccount, document, key, xmlOptions));
+	const cipher = crypto.createCipheriv('aes-128-cbc', transactionKey, Buffer.from([0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0])).setAutoPadding(false);
+
+	return Buffer.concat([cipher.update(Crypto.pad(dst)), cipher.final()]).toString('base64');
+};
+const encryptedOrderData = (document, transactionKey) => {
+	const dst = zlib.deflateSync(document.replace(/\n|\r/g, ''));
+	const cipher = crypto.createCipheriv('aes-128-cbc', transactionKey, Buffer.from([0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0])).setAutoPadding(false);
+
+	return Buffer.concat([cipher.update(Crypto.pad(dst)), cipher.final()]).toString('base64');
+};
+
+module.exports = {
+	async use(order, client) {
+		const keys = await client.keys();
+		const ebicsAccount = {
+			partnerId: client.partnerId,
+			userId: client.userId,
+			hostId: client.hostId,
+		};
+		const { transactionId, document } = order;
+		const {
+			rootName, xmlOptions, xmlSchema, transfer,
+		} = await downloadSerializer.use(order, client);
+
+		this.rootName = rootName;
+		this.xmlOptions = xmlOptions;
+		this.xmlSchema = xmlSchema;
+		this.transfer = transfer;
+
+		if (transactionId) return this.transfer(encryptedOrderData(document, transKey));
+
+		this.xmlSchema.header.static.NumSegments = 1;
+		this.xmlSchema.body = {
+			DataTransfer: {
+				DataEncryptionInfo: {
+					'@': { authenticate: true },
+					EncryptionPubKeyDigest: {
+						'@': { Version: 'E002', Algorithm: 'http://www.w3.org/2001/04/xmlenc#sha256' },
+						'#': Crypto.digestPublicKey(keys.bankE()),
+					},
+					TransactionKey: Crypto.publicEncrypt(keys.bankE(), transKey).toString('base64'),
+				},
+				SignatureData: {
+					'@': { authenticate: true },
+					'#': encryptedOrderSignature(ebicsAccount, document, transKey, keys.a(), this.xmlOptions),
+				},
+			},
+		};
+
+		return this;
+	},
+
+	toXML() {
+		return js2xmlparser.parse(this.rootName, this.xmlSchema, this.xmlOptions);
+	},
+};

packages/ebics-client/lib/orders/H004/signer.js

@@ -0,0 +1,49 @@
+
+'use strict';
+
+// const crypto = require('crypto');
+const Crypto = require('../../crypto/Crypto');
+
+const { DOMParser, XMLSerializer } = require('xmldom');
+const xpath = require('xpath');
+const C14n = require('xml-crypto/lib/c14n-canonicalization').C14nCanonicalization;
+
+const digest = (doc) => {
+	// get the xml node, where the digested value is supposed to be
+	const nodeDigestValue = doc.getElementsByTagName('ds:DigestValue')[0];
+
+	// canonicalize the node that has authenticate='true' attribute
+	const contentToDigest = xpath.select("//*[@authenticate='true']", doc)
+		.map(x => new C14n().process(x)).join('');
+
+	// fix the canonicalization
+	const fixedContent = contentToDigest.replace(/xmlns="urn:org:ebics:H004"/g, 'xmlns="urn:org:ebics:H004" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"');
+
+	if (nodeDigestValue)
+		nodeDigestValue.textContent = Crypto.digestWithHash(fixedContent).toString('base64').trim();
+
+	return doc;
+};
+
+const sign = (doc, key) => {
+	const nodeSignatureValue = doc.getElementsByTagName('ds:SignatureValue')[0];
+
+	if (nodeSignatureValue) {
+		const select = xpath.useNamespaces({ ds: 'http://www.w3.org/2000/09/xmldsig#' });
+		const contentToSign = (new C14n().process(select('//ds:SignedInfo', doc)[0])).replace('xmlns:ds="http://www.w3.org/2000/09/xmldsig#"', 'xmlns="urn:org:ebics:H004" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"');
+
+		nodeSignatureValue.textContent = Crypto.privateSign(key, contentToSign); // this.keys.x().key.sign(contentToSign, 'base64');
+	}
+
+	return doc;
+};
+
+const toXML = doc => new XMLSerializer().serializeToString(doc);
+
+module.exports = {
+	sign(data, keyX) {
+		const doc = new DOMParser().parseFromString(data, 'text/xml');
+
+		return toXML(sign(digest(doc), keyX));
+	},
+};

packages/ebics-client/lib/predefinedOrders/AZV.js

@@ -0,0 +1,8 @@
+'use strict';
+
+module.exports = document => ({
+	version: 'h004',
+	orderDetails: { OrderType: 'AZV', OrderAttribute: 'OZHNN', StandardOrderParams: {} },
+	operation: 'upload',
+	document,
+});

packages/ebics-client/lib/predefinedOrders/CCS.js

@@ -0,0 +1,8 @@
+'use strict';
+
+module.exports = document => ({
+	version: 'h004',
+	orderDetails: { OrderType: 'CCS', OrderAttribute: 'OZHNN', StandardOrderParams: {} },
+	operation: 'upload',
+	document,
+});

packages/ebics-client/lib/predefinedOrders/CCT.js

@@ -0,0 +1,8 @@
+'use strict';
+
+module.exports = document => ({
+	version: 'h004',
+	orderDetails: { OrderType: 'CCT', OrderAttribute: 'OZHNN', StandardOrderParams: {} },
+	operation: 'upload',
+	document,
+});

packages/ebics-client/lib/predefinedOrders/CD1.js

@@ -0,0 +1,8 @@
+'use strict';
+
+module.exports = document => ({
+	version: 'h004',
+	orderDetails: { OrderType: 'CD1', OrderAttribute: 'OZHNN', StandardOrderParams: {} },
+	operation: 'upload',
+	document,
+});

packages/ebics-client/lib/predefinedOrders/CDB.js

@@ -0,0 +1,8 @@
+'use strict';
+
+module.exports = document => ({
+	version: 'h004',
+	orderDetails: { OrderType: 'CDB', OrderAttribute: 'OZHNN', StandardOrderParams: {} },
+	operation: 'upload',
+	document,
+});

packages/ebics-client/lib/predefinedOrders/CDD.js

@@ -0,0 +1,8 @@
+'use strict';
+
+module.exports = document => ({
+	version: 'h004',
+	orderDetails: { OrderType: 'CDD', OrderAttribute: 'OZHNN', StandardOrderParams: {} },
+	operation: 'upload',
+	document,
+});

packages/ebics-client/lib/predefinedOrders/CDS.js

@@ -0,0 +1,8 @@
+'use strict';
+
+module.exports = document => ({
+	version: 'h004',
+	orderDetails: { OrderType: 'CDS', OrderAttribute: 'OZHNN', StandardOrderParams: {} },
+	operation: 'upload',
+	document,
+});

packages/ebics-client/lib/predefinedOrders/HAA.js

@@ -0,0 +1,11 @@
+'use strict';
+
+module.exports = {
+	version: 'h004',
+	orderDetails: {
+		OrderType: 'HAA',
+		OrderAttribute: 'DZHNN',
+		StandardOrderParams: {},
+	},
+	operation: 'download',
+};

packages/ebics-client/lib/predefinedOrders/HAC.js

@@ -0,0 +1,13 @@
+'use strict';
+
+const utils = require('../utils');
+
+module.exports = (start = null, end = null) => ({
+	version: 'h004',
+	orderDetails: {
+		OrderType: 'HAC',
+		OrderAttribute: 'DZHNN',
+		StandardOrderParams: utils.dateRange(start, end),
+	},
+	operation: 'download',
+});

packages/ebics-client/lib/predefinedOrders/HIA.js

@@ -0,0 +1,7 @@
+'use strict';
+
+module.exports = {
+	version: 'h004',
+	orderDetails: { OrderType: 'HIA', OrderAttribute: 'DZNNN' },
+	operation: 'ini',
+};

packages/ebics-client/lib/predefinedOrders/HKD.js

@@ -0,0 +1,11 @@
+'use strict';
+
+module.exports = {
+	version: 'h004',
+	orderDetails: {
+		OrderType: 'HKD',
+		OrderAttribute: 'DZHNN',
+		StandardOrderParams: {},
+	},
+	operation: 'download',
+};

packages/ebics-client/lib/predefinedOrders/HPB.js

@@ -0,0 +1,7 @@
+'use strict';
+
+module.exports = {
+	version: 'h004',
+	orderDetails: { OrderType: 'HPB', OrderAttribute: 'DZHNN' },
+	operation: 'ini',
+};

packages/ebics-client/lib/predefinedOrders/HPD.js

@@ -0,0 +1,11 @@
+'use strict';
+
+module.exports = {
+	version: 'h004',
+	orderDetails: {
+		OrderType: 'HPD',
+		OrderAttribute: 'DZHNN',
+		StandardOrderParams: {},
+	},
+	operation: 'download',
+};

packages/ebics-client/lib/predefinedOrders/HTD.js

@@ -0,0 +1,11 @@
+'use strict';
+
+module.exports = {
+	version: 'h004',
+	orderDetails: {
+		OrderType: 'HTD',
+		OrderAttribute: 'DZHNN',
+		StandardOrderParams: {},
+	},
+	operation: 'download',
+};

packages/ebics-client/lib/predefinedOrders/INI.js

@@ -0,0 +1,7 @@
+'use strict';
+
+module.exports = {
+	version: 'h004',
+	orderDetails: { OrderType: 'INI', OrderAttribute: 'DZNNN' },
+	operation: 'ini',
+};

packages/ebics-client/lib/predefinedOrders/PTK.js

@@ -0,0 +1,13 @@
+'use strict';
+
+const utils = require('../utils');
+
+module.exports = (start = null, end = null) => ({
+	version: 'h004',
+	orderDetails: {
+		OrderType: 'PTK',
+		OrderAttribute: 'DZHNN',
+		StandardOrderParams: utils.dateRange(start, end),
+	},
+	operation: 'download',
+});

packages/ebics-client/lib/predefinedOrders/STA.js

@@ -0,0 +1,13 @@
+'use strict';
+
+const utils = require('../utils');
+
+module.exports = (start = null, end = null) => ({
+	version: 'h004',
+	orderDetails: {
+		OrderType: 'STA',
+		OrderAttribute: 'DZHNN',
+		StandardOrderParams: utils.dateRange(start, end),
+	},
+	operation: 'download',
+});

packages/ebics-client/lib/predefinedOrders/VMK.js

@@ -0,0 +1,13 @@
+'use strict';
+
+const utils = require('../utils');
+
+module.exports = (start = null, end = null) => ({
+	version: 'h004',
+	orderDetails: {
+		OrderType: 'VMK',
+		OrderAttribute: 'DZHNN',
+		StandardOrderParams: utils.dateRange(start, end),
+	},
+	operation: 'download',
+});

packages/ebics-client/lib/predefinedOrders/XCT.js

@@ -0,0 +1,8 @@
+'use strict';
+
+module.exports = document => ({
+	version: 'h004',
+	orderDetails: { OrderType: 'XCT', OrderAttribute: 'OZHNN', StandardOrderParams: {} },
+	operation: 'upload',
+	document,
+});

packages/ebics-client/lib/predefinedOrders/XE3.js

@@ -0,0 +1,8 @@
+'use strict';
+
+module.exports = document => ({
+	version: 'h004',
+	orderDetails: { OrderType: 'XE3', OrderAttribute: 'OZHNN', StandardOrderParams: {} },
+	operation: 'upload',
+	document,
+});

packages/ebics-client/lib/predefinedOrders/Z53.js

@@ -0,0 +1,13 @@
+'use strict';
+
+const utils = require('../utils');
+
+module.exports = (start = null, end = null) => ({
+	version: 'h004',
+	orderDetails: {
+		OrderType: 'Z53',
+		OrderAttribute: 'DZHNN',
+		StandardOrderParams: utils.dateRange(start, end),
+	},
+	operation: 'download',
+});

packages/ebics-client/lib/predefinedOrders/index.js

@@ -0,0 +1,50 @@
+'use strict';
+
+const INI = require('./INI');
+const HIA = require('./HIA');
+const HPB = require('./HPB');
+
+const AZV = require('./AZV');
+const CD1 = require('./CD1');
+const CDB = require('./CDB');
+const CDD = require('./CDD');
+const CDS = require('./CDS');
+const CCT = require('./CCT');
+const CCS = require('./CCS');
+const XE3 = require('./XE3');
+const XCT = require('./XCT');
+
+const STA = require('./STA');
+const VMK = require('./VMK');
+const HAA = require('./HAA');
+const HTD = require('./HTD');
+const HPD = require('./HPD');
+const HKD = require('./HKD');
+const PTK = require('./PTK');
+const HAC = require('./HAC');
+const Z53 = require('./Z53');
+
+module.exports = {
+	INI,
+	HIA,
+	HPB,
+	Z53,
+
+	AZV,
+	CD1,
+	CDB,
+	CDD,
+	CDS,
+	CCT,
+	CCS,
+	XE3,
+	XCT,
+	STA,
+	VMK,
+	HAA,
+	HTD,
+	HPD,
+	HKD,
+	PTK,
+	HAC,
+};

packages/ebics-client/lib/storages/fsKeysStorage.js

@@ -0,0 +1,29 @@
+'use strict';
+
+const fs = require('fs');
+
+module.exports = (pathToFile) => {
+	const path = pathToFile;
+
+	return {
+		write(data) {
+			return new Promise((resolve, reject) => {
+				fs.writeFile(path, data, { encoding: 'utf8' }, (error) => {
+					if (error) reject(error);
+
+					return resolve();
+				});
+			});
+		},
+
+		read() {
+			return new Promise((resolve, reject) => {
+				fs.readFile(path, { encoding: 'utf8' }, (error, data) => {
+					if (error) reject(error);
+
+					return resolve(data);
+				});
+			});
+		},
+	};
+};

packages/ebics-client/lib/storages/tracesStorage.js

@@ -0,0 +1,67 @@
+'use strict';
+
+const fs = require('fs');
+
+const uuidv1 = require('uuid/v1');
+
+const traceName = (uuid, label, type, ext = 'xml') => {
+	return `${uuid}_${label}_${type}.${ext}`;
+};
+
+module.exports = dir => ({
+	traceData: '',
+	traceLabel: '',
+	lastTraceID: null,
+	connectToLastTrace: false,
+
+	label(str) {
+		this.traceLabel = str;
+
+		return this;
+	},
+
+	data(data) {
+		if (!data)
+			throw Error('No trace given to be persisted.');
+
+		this.traceData = data;
+
+		return this;
+	},
+
+	ofType(type) {
+		this.type = type;
+
+		return this;
+	},
+
+	new() {
+		this.connectToLastTrace = false;
+
+		return this;
+	},
+
+	connect() {
+		this.connectToLastTrace = true;
+
+		return this;
+	},
+
+	persist() {
+		if (!dir)
+			throw Error('No directory to save the traces to provided.');
+
+		this.lastTraceID = this.connectToLastTrace ? this.lastTraceID : uuidv1();
+
+		const name = traceName(this.lastTraceID, this.traceLabel, this.type);
+		const path = `${dir}/${name}`;
+
+		try {
+			fs.writeFileSync(path, this.traceData);
+			console.log("Data written to file");
+		} catch (error) {
+			console.log(error);
+			throw error;
+		}
+	},
+});

packages/ebics-client/lib/utils.js

@@ -0,0 +1,18 @@
+'use strict';
+
+const dateRange = (start, end) => {
+	if (start && end)
+		return {
+			DateRange: {
+				Start: start,
+				End: end,
+			},
+		};
+
+	return {};
+};
+
+
+module.exports = {
+	dateRange,
+};

packages/ebics-client/package.json

@@ -0,0 +1,43 @@
+{
+	"name": "ebics-client",
+	"version": "0.0.7",
+	"description": "Node.js ISO 20022 Compliant EBICS Client",
+	"main": "index.js",
+	"scripts": {
+		"test": "echo \"Error: no test specified\" && exit 1"
+	},
+	"repository": {
+		"type": "git",
+		"url": "https://github.com/eCollect/node-ebics-client"
+	},
+	"keywords": [
+		"EBICS",
+		"ISO20022",
+		"nodejs",
+		"api"
+	],
+	"author": "eCollect Sofia Tech Team",
+	"contributors": [
+		{
+			"name": "Vasyl Stashuk",
+			"url": "https://github.com/vasyas"
+		},
+		{
+			"name": "Yago",
+			"url": "https://github.com/yagop"
+		}
+	],
+	"license": "MIT",
+	"dependencies": {
+		"bn.js": "^4.11.8",
+		"handlebars": "^4.0.11",
+		"js2xmlparser": "^3.0.0",
+		"moment": "^2.22.1",
+		"node-rsa": "^0.4.2",
+		"request": "^2.87.0",
+		"uuid": "^3.3.2",
+		"xml-crypto": "^0.10.1",
+		"xmldom": "^0.1.27",
+		"xpath": "0.0.27"
+	}
+}

packages/ebics-client/test/responseParser.js

@@ -0,0 +1,43 @@
+'use strict';
+
+const { assert } = require('chai');
+const H004Response = require('../lib/orders/H004/response');
+
+describe('H004 response parsing', () => {
+	it('parses bank keys', () => {
+		const response = H004Response('<xml/>', {});
+
+		const x002mod = 'ntbX6WFjAJP5RyH4ogDG/26wZGzEJXsTudyvcgXmUdk1AExCNqArXDiSlGXpVNq4BKddUMFUmVOyvkdNckPRV2mk3uHNCE5T3tFKQI3FlwHSJHvPSpb9gtHnsK03jByMigWjhTKvsjIdfLVay5m5Bctxq9+5JMHwlNk7MlVXBQcqaFiHFFS1lPfA3Wk1bptPeeGyYcP0+U798oQWnCABKwS8hmYcp5xBtozGoRj9L/NDE68pdP8o/wTKNwT4Jo5nQKYfDsgO4R+z9vVv37Htp6bWhK8Jw3tpkcd3JnkYWx+Ylg0XBpg8LfjFhY2Jc7FqLlx0Bn0Y3PRLI1apxgC85w==';
+		const e002mod = '4eOGrzcJHVzbEgZTmyPYUIq9kFoua8Ure1Mvyq6XlawFgCWskfu/xSKNLIMJ7H675wl/5y0Oy16P/b6pJEhWrzOw8omW46PBDTaXw9BDYBTuBblluz1yUnzpgfblP8gkRmxAo+QMIskmwdSzuZMiJcLNSzu/bkmLHK2RdrVYMAZLlB6QXTykdenPZtNmc2z4VU6TRmGljAwg2VUNF6iQoucbzDUuca+yUo3fiXZp69nfXv81X2ND+p1ir6zQpx7tbOdfauw0sEKI/Z/lC+E4fMrMlh/ZvOxSYUMA55J4liC3aUV3mTR3dPJHWu1aD1a7EfJnNw0eHLwlB+36qfgGuw==';
+
+		response.orderData = () => `<?xml version="1.0" encoding="UTF-8"?>
+			<HPBResponseOrderData xmlns="urn:org:ebics:H004" xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+			  <AuthenticationPubKeyInfo>
+				<PubKeyValue>
+				  <ds:RSAKeyValue>
+					<ds:Modulus>${x002mod}</ds:Modulus>
+					<ds:Exponent>AQAB</ds:Exponent>
+				  </ds:RSAKeyValue>
+				  <TimeStamp>2015-02-25T08:01:13.061Z</TimeStamp>
+				</PubKeyValue>
+				<AuthenticationVersion>X002</AuthenticationVersion>
+			  </AuthenticationPubKeyInfo>
+			  <EncryptionPubKeyInfo>
+				<PubKeyValue>  
+				  <ds:RSAKeyValue>
+					<ds:Modulus>${e002mod}</ds:Modulus>
+					<ds:Exponent>AQAB</ds:Exponent>
+				  </ds:RSAKeyValue>
+				  <TimeStamp>2015-02-25T08:01:12.344Z</TimeStamp>
+				</PubKeyValue>
+				<EncryptionVersion>E002</EncryptionVersion>
+			  </EncryptionPubKeyInfo>
+			  <HostID>SBKPR01</HostID>
+			</HPBResponseOrderData>`;
+
+		const bankKeys = response.bankKeys();
+
+		assert.equal(bankKeys.bankX002.mod.toString('base64'), x002mod);
+		assert.equal(bankKeys.bankE002.mod.toString('base64'), e002mod);
+	});
+});