infra
/
cryptpad
2
1
Fork 0
Code Issues Pull Requests Projects Releases 1 Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
master
v4.14.0
v4.14.1
v5.0.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '89e5830409'
${ noResults }
cryptpad/www/user/main.js

332 lines
9.9 KiB
JavaScript
Raw Normal View History Unescape Escape

prototype of password based key derivation
8 years ago
define([
'/api/config?cb=' + Math.random().toString(16).substring(2),
'/bower_components/chainpad-listmap/chainpad-listmap.js',
'/bower_components/chainpad-crypto/crypto.js',
'/common/cryptpad-common.js',
more restructuring of user app
8 years ago
'credential.js',
use more bits from the users' seed and parse into various subkeys
8 years ago
'/bower_components/tweetnacl/nacl-fast.min.js',
more restructuring of user app
8 years ago
'/bower_components/scrypt-async/scrypt-async.min.js', // better load speed
prototype of password based key derivation
8 years ago
'/bower_components/jquery/dist/jquery.min.js',
better crypto hygeine, start thinking more about ui
8 years ago
], function (Config, Listmap, Crypto, Cryptpad, Cred) {
prototype of password based key derivation
8 years ago
var $ = window.jQuery;
use more bits from the users' seed and parse into various subkeys
8 years ago
var Nacl = window.nacl;
prototype of password based key derivation
8 years ago
better flow and animations for login page
8 years ago
var USERNAME_KEY = 'cryptpad.username';
prototype of password based key derivation
8 years ago
basic outline of logins
8 years ago
var APP = window.APP = {
prototype of password based key derivation
8 years ago
Cryptpad: Cryptpad,
basic outline of logins
8 years ago
Crypto: Crypto,
prototype of password based key derivation
8 years ago
};
latest work
8 years ago
var $warning = $('#warning');
more restructuring of user app
8 years ago
// login elements
var $loginBox = $('#login-box');
latest work
8 years ago
var $login = $('#login');
var $username = $('#username');
var $password = $('#password');
var $remember = $('#remember');
more restructuring of user app
8 years ago
better flow and animations for login page
8 years ago
// hashing elements
var $noticeBox = $('#notice-box');
var $notice = $('#notice');
APP.setNotice = function (s) {
$notice.text(s);
};
// confirm elements
var $confirmBox = $('#confirm-box');
var $confirm = $('#confirm');
var $cancelRegister = $('#cancel-register');
var $register = $('#register');
more restructuring of user app
8 years ago
// log out elements
latest work
8 years ago
var $logoutBox = $('#logout-box');
more restructuring of user app
8 years ago
var $logout = $('#logout');
latest work
8 years ago
better flow and animations for login page
8 years ago
// user elements
var $userBox = $('#user-box');
var $displayName = $('#display-name');
more restructuring of user app
8 years ago
var revealer = function ($el) {
better flow and animations for login page
8 years ago
return function (bool, cb) {
$el[bool?'slideDown': 'slideUp'](400, cb);
};
latest work
8 years ago
};
more restructuring of user app
8 years ago
var revealLogin = APP.revealLogin = revealer($loginBox);
better flow and animations for login page
8 years ago
var revealNotice = APP.revealNotice = revealer($noticeBox);
var revealConfirm = APP.revealConfirm = revealer($confirmBox);
more restructuring of user app
8 years ago
var revealLogout = APP.revealLogout= revealer($logoutBox);
better flow and animations for login page
8 years ago
var revealUser = APP.revealUser = revealer($userBox);
// TODO set registered name AND display name
APP.setName = function (name) {
$displayName.text(name);
};
latest work
8 years ago
more restructuring of user app
8 years ago
var resetUI = APP.resetUI = function () {
$username.val("");
$password.val("");
$confirm.val("");
better flow and animations for login page
8 years ago
APP.setName('');
};
APP.abort = function () {
if (!(APP.realtime && APP.realtime.abort)) { return; }
console.log('aborting realtime session');
APP.realtime.abort();
prototype of password based key derivation
8 years ago
};
more restructuring of user app
8 years ago
APP.logout = function () {
better flow and animations for login page
8 years ago
Cryptpad.confirm("Are you sure?", function (yes) {
if (!yes) { return; }
Cryptpad.logout(function () {
revealLogout(false);
revealLogin(true);
revealUser(false);
APP.abort();
$username.focus();
});
more restructuring of user app
8 years ago
});
};
$logout.click(function () {
APP.logout();
});
better flow and animations for login page
8 years ago
var handleRegisteredUser = function (proxy, opt) {
if (!proxy.atime) {
console.log("first time visiting!");
}
else {
console.log("last visit was %ss ago", (opt.now - proxy.atime) / 1000);
}
// welcome back
proxy.atime = opt.now;
var userHash = '/1/edit/' + [opt.channel64, opt.keys.editKeyStr].join('/');
APP.setName(opt.name);
Cryptpad.login(userHash, opt.remember);
APP.revealLogin(false);
APP.revealUser(true);
APP.revealLogout(true);
better crypto hygeine, start thinking more about ui
8 years ago
};
better flow and animations for login page
8 years ago
var abortRegistration = function () {
if (!APP.confirming) { return; }
APP.abort();
APP.revealConfirm(false);
APP.revealLogin(true);
};
$cancelRegister.click(function () {
abortRegistration();
});
$register.click(function () {
if (!APP.confirming) { return; }
if (typeof(APP.register) === 'function') {
APP.register();
}
});
var addEnterListener = function ($el, f) {
$el.on('keyup', function (e) {
if (e.which !== 13) { return; } // enter
window.clearTimeout(APP.to);
APP.to = window.setTimeout(function () {
f();
window.clearTimeout(APP.to);
});
});
};
addEnterListener($confirm, function () {
$register.click();
});
addEnterListener($password, function () {
$login.click();
});
var confirmPassword = function (proxy, passwd, cb) {
APP.confirming = true;
revealLogin(false);
// reveal confirm box
revealConfirm(true);
$confirm.focus();
// TODO translate
APP.register = function () {
if ($confirm.val() === passwd) {
return void Cryptpad.alert("registered successfully. Make sure you don't forget your password!", cb);
}
Cryptpad.alert("The two passwords you entered do not match. Try again");
};
};
var handleNewUser = function (proxy, opt) {
// could not find a profile for that username/password
confirmPassword(proxy, opt.password, function () {
APP.confirming = false;
APP.setName(opt.name);
proxy.login_name = opt.name;
var next = function () {
revealConfirm(false);
handleRegisteredUser(proxy, opt);
};
Cryptpad.confirm(Cryptpad.Messages.login_migrate, function (yes) {
if (!yes) { return next(); }
Cryptpad.store.keys(function (e, keys) {
if (e) { return void console.error(e); }
Cryptpad.store.getBatch(keys, function (e, map) {
if (e) { return void console.error(e); }
keys.forEach(function (k) {
console.log("migrating %s from existing store", k);
proxy[k] = map[k];
});
delete localStorage.FS_hash;
// TODO if name has changed, prompt user
//proxy[USERNAME_KEY] =
next();
});
});
});
});
};
var handleUser = function (proxy, opt) {
var proxyKeys = Object.keys(proxy);
var now = opt.now = +(new Date());
if (!proxyKeys.length) {
return handleNewUser(proxy, opt);
}
handleRegisteredUser(proxy, opt);
better crypto hygeine, start thinking more about ui
8 years ago
};
use more bits from the users' seed and parse into various subkeys
8 years ago
better crypto hygeine, start thinking more about ui
8 years ago
var useBytes = function (bytes, opt) {
opt = opt || {};
if (opt.remember) {
console.log("user would like to stay logged in");
} else {
console.log("user would like to be forgotten");
}
prototype of password based key derivation
8 years ago
more restructuring of user app
8 years ago
var dispense = Cred.dispenser(bytes);
prototype of password based key derivation
8 years ago
more restructuring of user app
8 years ago
// dispense 18 bytes of entropy for your encryption key
var encryptionSeed = dispense(18);
better crypto hygeine, start thinking more about ui
8 years ago
// 16 bytes for a deterministic channel key
more restructuring of user app
8 years ago
var channelSeed = dispense(16);
better crypto hygeine, start thinking more about ui
8 years ago
// 32 bytes for a curve key
more restructuring of user app
8 years ago
var curveSeed = dispense(32);
better crypto hygeine, start thinking more about ui
8 years ago
// 32 more for a signing key
more restructuring of user app
8 years ago
var edSeed = dispense(32);
latest work
8 years ago
better flow and animations for login page
8 years ago
var keys = opt.keys = Crypto.createEditCryptor(null, encryptionSeed);
basic outline of logins
8 years ago
better crypto hygeine, start thinking more about ui
8 years ago
// 24 bytes of base64
keys.editKeyStr = keys.editKeyStr.replace(/\//g, '-');
basic outline of logins
8 years ago
better crypto hygeine, start thinking more about ui
8 years ago
// 32 bytes of hex
better flow and animations for login page
8 years ago
opt.channel = Cryptpad.uint8ArrayToHex(channelSeed);
basic outline of logins
8 years ago
better flow and animations for login page
8 years ago
var channelHex = opt.channel;
basic outline of logins
8 years ago
better flow and animations for login page
8 years ago
if (channelHex.length !== 32) { throw new Error('invalid channel id'); }
basic outline of logins
8 years ago
better flow and animations for login page
8 years ago
var channel64 = opt.channel64 = Cryptpad.hexToBase64(channelHex);
basic outline of logins
8 years ago
better flow and animations for login page
8 years ago
opt.editHash = Cryptpad.getEditHashFromKeys(channelHex, keys.editKeyStr);
basic outline of logins
8 years ago
var config = {
websocketURL: Cryptpad.getWebsocketURL(),
channel: channelHex,
data: {},
better crypto hygeine, start thinking more about ui
8 years ago
validateKey: keys.validateKey, // derived validation key
better flow and animations for login page
8 years ago
crypto: Crypto.createEncryptor(opt.keys),
basic outline of logins
8 years ago
};
var rt = APP.rt = Listmap.create(config);
rt.proxy.on('create', function (info) {
better flow and animations for login page
8 years ago
APP.realtime = info.realtime;
basic outline of logins
8 years ago
})
.on('ready', function (info) {
console.log('ready');
better flow and animations for login page
8 years ago
handleUser(rt.proxy, opt);
basic outline of logins
8 years ago
})
.on('disconnect', function (info) {
console.log('disconnected');
console.log(info);
});
};
latest work
8 years ago
Cryptpad.ready(function () {
if (Cryptpad.getUserHash()) {
better flow and animations for login page
8 years ago
Cryptpad.getAttribute('username', function (err, uname) {
revealLogout(true);
if (err) {
console.error(err);
return;
}
APP.setName(uname);
revealUser(true);
});
latest work
8 years ago
} else {
more restructuring of user app
8 years ago
revealLogin(true);
better crypto hygeine, start thinking more about ui
8 years ago
}
basic outline of logins
8 years ago
better flow and animations for login page
8 years ago
$username.focus();
latest work
8 years ago
$login.click(function () {
var uname = $username.val();
var passwd = $password.val();
var confirm = $confirm.val();
var remember = $remember[0].checked;
if (!Cred.isValidUsername(uname)) {
return void Cryptpad.alert('invalid username');
}
if (!Cred.isValidPassword(passwd)) {
return void Cryptpad.alert('invalid password');
}
basic outline of logins
8 years ago
better flow and animations for login page
8 years ago
APP.setNotice(Cryptpad.Messages.login_hashing);
revealNotice(true);
revealLogin(false, function () {
window.setTimeout(function () {
resetUI();
// dispense 128 bytes, to be divided later
// we can safely increase this size, but we don't need much right now
Cred.deriveFromPassphrase(uname, passwd, 128, function (bytes) {
revealNotice(false);
window.setTimeout(function () {
useBytes(bytes, {
remember: remember,
//register: register,
name: uname,
password: passwd,
});
}, 75);
latest work
8 years ago
});
better flow and animations for login page
8 years ago
}, 75);
better crypto hygeine, start thinking more about ui
8 years ago
});
prototype of password based key derivation
8 years ago
});
});
});