cryptpad/www/auth/main.js

define([
    'jquery',
    '/common/cryptget.js',
    '/common/pinpad.js',
    '/common/common-constants.js',
    '/common/outer/local-store.js',
    '/common/outer/login-block.js',
    '/common/outer/network-config.js',
    '/customize/login.js',
    '/common/test.js',
    '/bower_components/nthen/index.js',
    '/bower_components/netflux-websocket/netflux-client.js',
    '/bower_components/tweetnacl/nacl-fast.min.js'
], function ($, Crypt, Pinpad, Constants, LocalStore, Block, NetConfig, Login, Test, nThen, Netflux) {
    var Nacl = window.nacl;

    var signMsg = function (msg, privKey) {
        var signKey = Nacl.util.decodeBase64(privKey);
        var buffer = Nacl.util.decodeUTF8(msg);
        return Nacl.util.encodeBase64(Nacl.sign(buffer, signKey));
    };

    // TODO: Allow authing for any domain as long as the user clicks an "accept" button
    //       inside of the iframe.
    var AUTHORIZED_DOMAINS = [
        /\.cryptpad\.fr$/,
        /^http(s)?:\/\/localhost\:/
    ];

    // Safari is weird about localStorage in iframes but seems to let sessionStorage slide.
    localStorage[Constants.userHashKey] = localStorage[Constants.userHashKey] ||
                                          sessionStorage[Constants.userHashKey];

    var proxy;
    var rpc;
    var network;
    var rpcError;

    var loadProxy = function (hash) {
        nThen(function (waitFor) {
            var wsUrl = NetConfig.getWebsocketURL();
            var w = waitFor();
            Netflux.connect(wsUrl).then(function (_network) {
                network = _network;
                w();
            }, function (err) {
                rpcError = err;
                console.error(err);
            });
        }).nThen(function (waitFor) {
            Crypt.get(hash, waitFor(function (err, val) {
                if (err) {
                    waitFor.abort();
                    console.error(err);
                    return;
                }
                try {
                    var parsed = JSON.parse(val);
                    proxy = parsed;
                } catch (e) {
                    console.log("Can't parse user drive", e);
                }
            }), {
                network: network
            });
        }).nThen(function (waitFor) {
            if (!network) { return void waitFor.abort(); }
            Pinpad.create(network, proxy, waitFor(function (e, call) {
                if (e) {
                    rpcError = e;
                    return void waitFor.abort();
                }
                rpc = call;
            }));
        }).nThen(function () {
            Test(function () {
                // This is only here to maybe trigger an error.
                window.drive = proxy['drive'];
                Test.passed();
            });
        });
    };

    var whenReady = function (cb) {
        if (proxy && (rpc || rpcError)) { return void cb(); }
        console.log('CryptPad not ready...');
        setTimeout(function () {
            whenReady(cb);
        }, 100);
    };

    $(window).on("message", function (jqe) {
        var evt = jqe.originalEvent;
        var data = JSON.parse(evt.data);
        var domain = evt.origin;
        var srcWindow = evt.source;
        var ret = { txid: data.txid };
        console.log('CP receiving', data);
        if (data.cmd === 'PING') {
            ret.res = 'PONG';
        } else if (data.cmd === 'LOGIN') {
            Login.loginOrRegister(data.data.name, data.data.password, false, false, function (err) {
                if (err) {
                    ret.error = 'LOGIN_ERROR';
                    srcWindow.postMessage(JSON.stringify(ret), domain);
                    return;
                }
                loadProxy(LocalStore.getUserHash());
                srcWindow.postMessage(JSON.stringify(ret), domain);
            });
            return;
        } else if (data.cmd === 'SIGN') {
            if (!AUTHORIZED_DOMAINS.filter(function (x) { return x.test(domain); }).length) {
                ret.error = "UNAUTH_DOMAIN";
            } else if (!LocalStore.isLoggedIn()) {
                ret.error = "NOT_LOGGED_IN";
            } else {
                return void whenReady(function () {
                    var sig = signMsg(data.data, proxy.edPrivate);
                    ret.res = {
                        uname: proxy.login_name,
                        edPublic: proxy.edPublic,
                        sig: sig
                    };
                    srcWindow.postMessage(JSON.stringify(ret), domain);
                });
            }
        } else if (data.cmd === 'UPDATE_LIMIT') {
            return void whenReady(function () {
                if (rpcError) {
                    // Tell the user on accounts that there was an issue and they need to wait maximum 24h or contact an admin
                    ret.warning = true;
                    srcWindow.postMessage(JSON.stringify(ret), domain);
                    return;
                }
                rpc.updatePinLimits(function (e, limit, plan, note) {
                    if (e) {
                        ret.warning = true;
                    }
                    ret.res = [limit, plan, note];
                    srcWindow.postMessage(JSON.stringify(ret), domain);
                });
            });
        } else {
            ret.error = "UNKNOWN_CMD";
        }
        srcWindow.postMessage(JSON.stringify(ret), domain);
    });

    var userHash = LocalStore.getUserHash();
    if (userHash) {
        loadProxy(userHash);
    }
});
Added an authentication page to allow getting the user pubkey 2017-04-20 08:15:07 +00:00			`define([`
			`'jquery',`
Fast auth 2019-11-27 16:26:21 +00:00			`'/common/cryptget.js',`
			`'/common/pinpad.js',`
Clean cryptpad-common 2017-11-23 11:28:49 +00:00			`'/common/common-constants.js',`
			`'/common/outer/local-store.js',`
Fast auth 2019-11-27 16:26:21 +00:00			`'/common/outer/login-block.js',`
			`'/common/outer/network-config.js',`
Login from accounts 2019-12-03 09:37:47 +00:00			`'/customize/login.js',`
Delicious testing 2017-05-31 17:40:17 +00:00			`'/common/test.js',`
Async store part 1 2017-11-30 09:33:09 +00:00			`'/bower_components/nthen/index.js',`
Fast auth 2019-11-27 16:26:21 +00:00			`'/bower_components/netflux-websocket/netflux-client.js',`
Added an authentication page to allow getting the user pubkey 2017-04-20 08:15:07 +00:00			`'/bower_components/tweetnacl/nacl-fast.min.js'`
Login from accounts 2019-12-03 09:37:47 +00:00			`], function ($, Crypt, Pinpad, Constants, LocalStore, Block, NetConfig, Login, Test, nThen, Netflux) {`
Added an authentication page to allow getting the user pubkey 2017-04-20 08:15:07 +00:00			`var Nacl = window.nacl;`

			`var signMsg = function (msg, privKey) {`
			`var signKey = Nacl.util.decodeBase64(privKey);`
			`var buffer = Nacl.util.decodeUTF8(msg);`
			`return Nacl.util.encodeBase64(Nacl.sign(buffer, signKey));`
			`};`

			`// TODO: Allow authing for any domain as long as the user clicks an "accept" button`
			`// inside of the iframe.`
			`var AUTHORIZED_DOMAINS = [`
			`/\.cryptpad\.fr$/,`
			`/^http(s)?:\/\/localhost\:/`
			`];`

Sync localStorage with sessionStorage in auth because safari... 2017-05-26 13:30:01 +00:00			`// Safari is weird about localStorage in iframes but seems to let sessionStorage slide.`
Clean cryptpad-common 2017-11-23 11:28:49 +00:00			`localStorage[Constants.userHashKey] = localStorage[Constants.userHashKey] \|\|`
			`sessionStorage[Constants.userHashKey];`
Sync localStorage with sessionStorage in auth because safari... 2017-05-26 13:30:01 +00:00
Async store part 1 2017-11-30 09:33:09 +00:00			`var proxy;`
Fast auth 2019-11-27 16:26:21 +00:00			`var rpc;`
			`var network;`
			`var rpcError;`

			`var loadProxy = function (hash) {`
			`nThen(function (waitFor) {`
Load only one network to get history keeper ID from cryptget 2019-12-04 10:13:05 +00:00			`var wsUrl = NetConfig.getWebsocketURL();`
			`var w = waitFor();`
			`Netflux.connect(wsUrl).then(function (_network) {`
			`network = _network;`
			`w();`
			`}, function (err) {`
			`rpcError = err;`
			`console.error(err);`
			`});`
			`}).nThen(function (waitFor) {`
Fast auth 2019-11-27 16:26:21 +00:00			`Crypt.get(hash, waitFor(function (err, val) {`
			`if (err) {`
			`waitFor.abort();`
			`console.error(err);`
Remove debug logs 2019-11-29 09:46:34 +00:00			`return;`
Fast auth 2019-11-27 16:26:21 +00:00			`}`
			`try {`
			`var parsed = JSON.parse(val);`
			`proxy = parsed;`
			`} catch (e) {`
			`console.log("Can't parse user drive", e);`
			`}`
Load only one network to get history keeper ID from cryptget 2019-12-04 10:13:05 +00:00			`}), {`
			`network: network`
Fast auth 2019-11-27 16:26:21 +00:00			`});`
			`}).nThen(function (waitFor) {`
Load only one network to get history keeper ID from cryptget 2019-12-04 10:13:05 +00:00			`if (!network) { return void waitFor.abort(); }`
Fast auth 2019-11-27 16:26:21 +00:00			`Pinpad.create(network, proxy, waitFor(function (e, call) {`
			`if (e) {`
			`rpcError = e;`
			`return void waitFor.abort();`
			`}`
			`rpc = call;`
			`}));`
			`}).nThen(function () {`
			`Test(function () {`
			`// This is only here to maybe trigger an error.`
			`window.drive = proxy['drive'];`
			`Test.passed();`
			`});`
			`});`
			`};`
Avoid timeout in accounts.cryptpad.fr caused by the auth app 2018-09-28 13:05:39 +00:00
			`var whenReady = function (cb) {`
Fast auth 2019-11-27 16:26:21 +00:00			`if (proxy && (rpc \|\| rpcError)) { return void cb(); }`
Avoid timeout in accounts.cryptpad.fr caused by the auth app 2018-09-28 13:05:39 +00:00			`console.log('CryptPad not ready...');`
			`setTimeout(function () {`
			`whenReady(cb);`
			`}, 100);`
			`};`

			`$(window).on("message", function (jqe) {`
			`var evt = jqe.originalEvent;`
			`var data = JSON.parse(evt.data);`
			`var domain = evt.origin;`
			`var srcWindow = evt.source;`
			`var ret = { txid: data.txid };`
			`console.log('CP receiving', data);`
			`if (data.cmd === 'PING') {`
			`ret.res = 'PONG';`
Remove debug logs 2019-11-29 09:46:34 +00:00			`} else if (data.cmd === 'LOGIN') {`
Load only one network to get history keeper ID from cryptget 2019-12-04 10:13:05 +00:00			`Login.loginOrRegister(data.data.name, data.data.password, false, false, function (err) {`
Login from accounts 2019-12-03 09:37:47 +00:00			`if (err) {`
Load only one network to get history keeper ID from cryptget 2019-12-04 10:13:05 +00:00			`ret.error = 'LOGIN_ERROR';`
Login from accounts 2019-12-03 09:37:47 +00:00			`srcWindow.postMessage(JSON.stringify(ret), domain);`
			`return;`
			`}`
			`loadProxy(LocalStore.getUserHash());`
			`srcWindow.postMessage(JSON.stringify(ret), domain);`
			`});`
Remove debug logs 2019-11-29 09:46:34 +00:00			`return;`
Avoid timeout in accounts.cryptpad.fr caused by the auth app 2018-09-28 13:05:39 +00:00			`} else if (data.cmd === 'SIGN') {`
			`if (!AUTHORIZED_DOMAINS.filter(function (x) { return x.test(domain); }).length) {`
			`ret.error = "UNAUTH_DOMAIN";`
			`} else if (!LocalStore.isLoggedIn()) {`
			`ret.error = "NOT_LOGGED_IN";`
			`} else {`
			`return void whenReady(function () {`
			`var sig = signMsg(data.data, proxy.edPrivate);`
			`ret.res = {`
			`uname: proxy.login_name,`
			`edPublic: proxy.edPublic,`
			`sig: sig`
			`};`
			`srcWindow.postMessage(JSON.stringify(ret), domain);`
			`});`
			`}`
			`} else if (data.cmd === 'UPDATE_LIMIT') {`
			`return void whenReady(function () {`
Fast auth 2019-11-27 16:26:21 +00:00			`if (rpcError) {`
			`// Tell the user on accounts that there was an issue and they need to wait maximum 24h or contact an admin`
Send warning to accounts when we can't update pin limit 2019-12-04 09:49:51 +00:00			`ret.warning = true;`
Load only one network to get history keeper ID from cryptget 2019-12-04 10:13:05 +00:00			`srcWindow.postMessage(JSON.stringify(ret), domain);`
			`return;`
Fast auth 2019-11-27 16:26:21 +00:00			`}`
			`rpc.updatePinLimits(function (e, limit, plan, note) {`
			`if (e) {`
Send warning to accounts when we can't update pin limit 2019-12-04 09:49:51 +00:00			`ret.warning = true;`
Fast auth 2019-11-27 16:26:21 +00:00			`}`
Avoid timeout in accounts.cryptpad.fr caused by the auth app 2018-09-28 13:05:39 +00:00			`ret.res = [limit, plan, note];`
			`srcWindow.postMessage(JSON.stringify(ret), domain);`
			`});`
			`});`
			`} else {`
			`ret.error = "UNKNOWN_CMD";`
			`}`
			`srcWindow.postMessage(JSON.stringify(ret), domain);`
			`});`

Fast auth 2019-11-27 16:26:21 +00:00			`var userHash = LocalStore.getUserHash();`
			`if (userHash) {`
			`loadProxy(userHash);`
			`}`
Added an authentication page to allow getting the user pubkey 2017-04-20 08:15:07 +00:00			`});`