mirror of https://github.com/xwiki-labs/cryptpad
123 lines
3.8 KiB
JavaScript
123 lines
3.8 KiB
JavaScript
// SPDX-FileCopyrightText: 2023 XWiki CryptPad Team <contact@cryptpad.org> and contributors
|
|
//
|
|
// SPDX-License-Identifier: AGPL-3.0-or-later
|
|
|
|
(function () {
|
|
var factory = function (Util, Cred, Nacl, Crypto) {
|
|
var Invite = {};
|
|
|
|
var encode64 = Nacl.util.encodeBase64;
|
|
var decode64 = Nacl.util.decodeBase64;
|
|
|
|
// ed and curve keys can be random...
|
|
Invite.generateKeys = function () {
|
|
var ed = Nacl.sign.keyPair();
|
|
var curve = Nacl.box.keyPair();
|
|
return {
|
|
edPublic: encode64(ed.publicKey),
|
|
edPrivate: encode64(ed.secretKey),
|
|
curvePublic: encode64(curve.publicKey),
|
|
curvePrivate: encode64(curve.secretKey),
|
|
};
|
|
};
|
|
|
|
Invite.generateSignPair = function () {
|
|
var ed = Nacl.sign.keyPair();
|
|
return {
|
|
validateKey: encode64(ed.publicKey),
|
|
signKey: encode64(ed.secretKey),
|
|
};
|
|
};
|
|
|
|
var b64ToChannelKeys = function (b64) {
|
|
var dispense = Cred.dispenser(decode64(b64));
|
|
return {
|
|
channel: Util.uint8ArrayToHex(dispense(16)),
|
|
cryptKey: dispense(Nacl.secretbox.keyLength),
|
|
};
|
|
};
|
|
|
|
// the secret invite values (cryptkey and channel) can be derived
|
|
// from the link seed and (optional) password
|
|
Invite.deriveInviteKeys = b64ToChannelKeys;
|
|
|
|
// the preview values (cryptkey and channel) are less sensitive than the invite values
|
|
// as they cannot be leveraged to access any further content on their own
|
|
// unless the message contains secrets.
|
|
// derived from the link seed alone.
|
|
Invite.derivePreviewKeys = b64ToChannelKeys;
|
|
|
|
Invite.createRosterEntry = function (roster, data, cb) {
|
|
var toInvite = {};
|
|
toInvite[data.curvePublic] = data.content;
|
|
roster.invite(toInvite, cb);
|
|
};
|
|
|
|
// Invite links should only be visible to members or above, so
|
|
// we store them in the roster encrypted with a string only available
|
|
// to users with edit rights
|
|
var decodeUTF8 = Nacl.util.decodeUTF8;
|
|
Invite.encryptHash = function (data, seedStr) {
|
|
var array = decodeUTF8(seedStr);
|
|
var bytes = Nacl.hash(array);
|
|
var cryptKey = bytes.subarray(0, 32);
|
|
return Crypto.encrypt(data, cryptKey);
|
|
};
|
|
Invite.decryptHash = function (encryptedStr, seedStr) {
|
|
var array = decodeUTF8(seedStr);
|
|
var bytes = Nacl.hash(array);
|
|
var cryptKey = bytes.subarray(0, 32);
|
|
return Crypto.decrypt(encryptedStr, cryptKey);
|
|
};
|
|
|
|
|
|
/* INPUTS
|
|
|
|
* password (for scrypt)
|
|
* message (personal note)
|
|
* link hash
|
|
* bytes64 (scrypt output)
|
|
* preview_hash
|
|
|
|
*/
|
|
|
|
/* IO / FUNCTIONALITY
|
|
|
|
* creator
|
|
* generate a random signKey (prevent writes to preview channel)
|
|
* encrypt and upload the preview content
|
|
* via CryptGet
|
|
* owned by:
|
|
* the ephemeral edPublic
|
|
* the invite creator
|
|
* create a roster entry for the invitation
|
|
* with encrypted notes for the creator
|
|
* redeemer
|
|
* get the preview content
|
|
* redeem the invite
|
|
* add yourself to the roster
|
|
* add the team to your proxy-manager
|
|
|
|
*/
|
|
|
|
return Invite;
|
|
};
|
|
if (typeof(module) !== 'undefined' && module.exports) {
|
|
module.exports = factory(
|
|
require("../common-util"),
|
|
require("../common-credential.js"),
|
|
require("tweetnacl/nacl-fast"),
|
|
require("chainpad-crypto/crypto")
|
|
);
|
|
} else if ((typeof(define) !== 'undefined' && define !== null) && (define.amd !== null)) {
|
|
define([
|
|
'/common/common-util.js',
|
|
'/common/common-credential.js',
|
|
'/components/chainpad-crypto/crypto.js',
|
|
'/components/tweetnacl/nacl-fast.min.js',
|
|
], function (Util, Cred, Crypto) {
|
|
return factory(Util, Cred, window.nacl, Crypto);
|
|
});
|
|
}
|
|
}());
|