Notes/static/js/key.mjs

import 'preact/devtools'
import { h, Component } from 'preact'
import htm from 'htm'
import Crypto from 'crypto'
const html = htm.bind(h)

export class Keys extends Component {
	constructor(props) {//{{{
		super(props)
		this.state = {
			create: false,
		}

		props.nodeui.retrieveKeys()
	}//}}}
	render({ nodeui }, { create }) {//{{{
		let keys = nodeui.keys.value
			.sort((a,b)=>{
				if(a.description < b.description) return -1
				if(a.description > b.description) return  1
				return 0
			})
			.map(key=>
				html`<${KeyComponent} key=${`key-${key.ID}`} model=${key} />`
			)

		let createButton = ''
		let createComponents = ''
		if(create) {
			createComponents = html`
			<div id="key-create">
				<h2>New key</h2>

				<div class="fields">
					<input type="text" id="key-description" placeholder="Name" />

					<input type="password" id="key-pass1" placeholder="Password" />
					<input type="password" id="key-pass2" placeholder="Repeat password" />

					<textarea id="key-key" placeholder="Key"></textarea>

					<div>
						<button class="generate" onclick=${()=>this.generateKey()}>Generate</button>
						<button class="create" onclick=${()=>this.createKey()}>Create</button>
					</div>
				</div>
			</div>
			`
		} else {
			createButton = html`<div style="margin-top: 16px;"><button onclick=${()=>this.setState({ create: true })}>Create new key</button></div>`
		}

		return html`
			<div id="keys">
				<h1>Encryption keys</h1>
				<p>
					Unlock a key by clicking its name. Lock it by clicking it again.
				</p>

				<p>
					Copy the key and store it in a very secure place to have a way to access notes
					in case the password is forgotten, or database is corrupted.
				</p>

				<p>Click "View key" after unlocking it.</p>

				${createButton}
				${createComponents}

				<h2>Keys</h2>
				<div class="key-list">
					${keys}
				</div>
			</div>`
	}//}}}

	generateKey() {//{{{
		let keyTextarea = document.getElementById('key-key')
		let key = sjcl.codec.hex.fromBits(Crypto.generate_key()).replace(/(....)/g, '$1 ').trim()
		keyTextarea.value = key
	}//}}}
	validateNewKey() {//{{{
		let keyDescription = document.getElementById('key-description').value
		let keyTextarea = document.getElementById('key-key').value
		let pass1 = document.getElementById('key-pass1').value
		let pass2 = document.getElementById('key-pass2').value

		if(keyDescription.trim() == '')
			throw new Error('The key has to have a description')

		if(pass1.trim() == '' || pass1.length < 4)
			throw new Error('The password has to be at least 4 characters long.')

		if(pass1 != pass2)
			throw new Error(`Passwords doesn't match`)

		let cleanKey = keyTextarea.replace(/\s+/g, '')
		if(!cleanKey.match(/^[0-9a-f]{64}$/i))
			throw new Error('Invalid key - has to be 64 characters of 0-9 and A-F')
	}//}}}
	createKey() {//{{{
		try {
			this.validateNewKey()

			let description = document.getElementById('key-description').value
			let keyAscii = document.getElementById('key-key').value
			let pass1 = document.getElementById('key-pass1').value

			// Key in hex taken from user.
			let actual_key = sjcl.codec.hex.toBits(keyAscii.replace(/\s+/g, ''))

			// Key generated from password, used to encrypt the actual key.
			let pass_gen = Crypto.pass_to_key(pass1)

			let crypto = new Crypto(pass_gen.key)
			let encrypted_actual_key = crypto.encrypt(actual_key, 0x1n, false)

			// Database value is salt + actual key, needed to generate the same key from the password.
			let db_encoded = sjcl.codec.hex.fromBits(
				pass_gen.salt.concat(encrypted_actual_key)
			)

			// Create on server.
			window._app.current.request('/key/create', {
				description,
				key: db_encoded,
			})
			.then(res=>{
				let key = new Key(res.Key, this.props.nodeui.keyCounter)
				this.props.nodeui.keys.value = this.props.nodeui.keys.value.concat(key)
			})
			.catch(window._app.current.responseError)
		} catch(err) {
			alert(err.message)
			return
		}
	}//}}}
}

export class Key {
	constructor(data, counter_callback) {//{{{
		this.ID           = data.ID
		this.description  = data.Description
		this.encryptedKey = data.Key
		this.key          = null

		this._counter_cbk = counter_callback

		let hex_key = window.sessionStorage.getItem(`key-${this.ID}`)
		if(hex_key)
			this.key = sjcl.codec.hex.toBits(hex_key)
	}//}}}
	status() {//{{{
		if(this.key === null)
			return 'locked'
		return 'unlocked'
	}//}}}
	lock() {//{{{
		this.key = null
		window.sessionStorage.removeItem(`key-${this.ID}`)
	}//}}}
	unlock(password) {//{{{
		let db = sjcl.codec.hex.toBits(this.encryptedKey)
		let salt = db.slice(0, 4)
		let pass_key = Crypto.pass_to_key(password, salt)
		let crypto = new Crypto(pass_key.key)
		this.key = crypto.decrypt(sjcl.codec.base64.fromBits(db.slice(4)))
		window.sessionStorage.setItem(`key-${this.ID}`, sjcl.codec.hex.fromBits(this.key))
	}//}}}
	async counter() {//{{{
		return this._counter_cbk()
	}//}}}
}

export class KeyComponent extends Component {
	constructor({ model }) {//{{{
		super({ model })
		this.state = {
			show_key: false,
		}
	}//}}}
	render({ model }, { show_key }) {//{{{
		let status = ''
		switch(model.status()) {
			case 'locked':
				status = html`<div class="status locked"><img src="/images/${window._VERSION}/padlock-closed.svg" /></div>`
				break

			case 'unlocked':
				status = html`<div class="status unlocked"><img src="/images/${window._VERSION}/padlock-open.svg" /></div>`
				break
		}

		let hex_key = ''
		if(show_key) {
			if(model.status() == 'locked')
				hex_key = html`<div class="hex-key">Unlock key first</div>`
			else {
				let key = sjcl.codec.hex.fromBits(model.key)
				key = key.replace(/(....)/g, "$1 ").trim()
				hex_key = html`<div class="hex-key">${key}</div>`
			}
		}

		let unlocked = model.status()=='unlocked'

		return html`
			<div class="status" onclick=${()=>this.toggle()}>${status}</div>
			<div class="description" onclick=${()=>this.toggle()}>${model.description}</div>
			<div class="view" onclick=${()=>this.toggleViewKey()}>${unlocked ? 'View key' : ''}</div>
			${hex_key}
		`
	}//}}}
	toggle() {//{{{
		if(this.props.model.status() == 'locked')
			this.unlock()
		else
			this.lock()
	}//}}}
	lock() {//{{{
		this.props.model.lock()
		this.forceUpdate()
	}//}}}
	unlock() {//{{{
		let pass = prompt("Password")
		if(!pass)
			return

		try {
			this.props.model.unlock(pass)
			this.forceUpdate()
		} catch(err) {
			alert(err)
		}
	}//}}}
	toggleViewKey() {//{{{
		this.setState({ show_key: !this.state.show_key })
	}//}}}
}

// vim: foldmethod=marker
Keys unlocking/locking 2023-07-01 20:33:26 +02:00			`import 'preact/devtools'`
			`import { h, Component } from 'preact'`
			`import htm from 'htm'`
			`import Crypto from 'crypto'`
			`const html = htm.bind(h)`

			`export class Keys extends Component {`
			`constructor(props) {//{{{`
			`super(props)`
Work on cryptokeys 2023-07-12 22:35:38 +02:00			`this.state = {`
			`create: false,`
			`}`

			`props.nodeui.retrieveKeys()`
Keys unlocking/locking 2023-07-01 20:33:26 +02:00			`}//}}}`
Work on cryptokeys 2023-07-12 22:35:38 +02:00			`render({ nodeui }, { create }) {//{{{`
Keys unlocking/locking 2023-07-01 20:33:26 +02:00			`let keys = nodeui.keys.value`
			`.sort((a,b)=>{`
			`if(a.description < b.description) return -1`
			`if(a.description > b.description) return 1`
			`return 0`
			`})`
			`.map(key=>`
			html`<${KeyComponent} key=${`key-${key.ID}`} model=${key} />`
			`)`

Work on cryptokeys 2023-07-12 22:35:38 +02:00			`let createButton = ''`
			`let createComponents = ''`
			`if(create) {`
			createComponents = html`
			`<div id="key-create">`
			`<h2>New key</h2>`

			`<div class="fields">`
			`<input type="text" id="key-description" placeholder="Name" />`

			`<input type="password" id="key-pass1" placeholder="Password" />`
			`<input type="password" id="key-pass2" placeholder="Repeat password" />`

			`<textarea id="key-key" placeholder="Key"></textarea>`

			`<div>`
			`<button class="generate" onclick=${()=>this.generateKey()}>Generate</button>`
			`<button class="create" onclick=${()=>this.createKey()}>Create</button>`
			`</div>`
			`</div>`
			`</div>`
			`
			`} else {`
			createButton = html`<div style="margin-top: 16px;"><button onclick=${()=>this.setState({ create: true })}>Create new key</button></div>`
			`}`

Keys unlocking/locking 2023-07-01 20:33:26 +02:00			return html`
			`<div id="keys">`
Work on cryptokeys 2023-07-12 22:35:38 +02:00			`<h1>Encryption keys</h1>`
			`<p>`
			`Unlock a key by clicking its name. Lock it by clicking it again.`
			`</p>`

			`<p>`
			`Copy the key and store it in a very secure place to have a way to access notes`
			`in case the password is forgotten, or database is corrupted.`
			`</p>`

			`<p>Click "View key" after unlocking it.</p>`

			`${createButton}`
			`${createComponents}`

			`<h2>Keys</h2>`
Keys unlocking/locking 2023-07-01 20:33:26 +02:00			`<div class="key-list">`
			`${keys}`
			`</div>`
			</div>`
			`}//}}}`

Work on cryptokeys 2023-07-12 22:35:38 +02:00			`generateKey() {//{{{`
			`let keyTextarea = document.getElementById('key-key')`
			`let key = sjcl.codec.hex.fromBits(Crypto.generate_key()).replace(/(....)/g, '$1 ').trim()`
			`keyTextarea.value = key`
			`}//}}}`
			`validateNewKey() {//{{{`
			`let keyDescription = document.getElementById('key-description').value`
			`let keyTextarea = document.getElementById('key-key').value`
			`let pass1 = document.getElementById('key-pass1').value`
			`let pass2 = document.getElementById('key-pass2').value`

			`if(keyDescription.trim() == '')`
			`throw new Error('The key has to have a description')`

			`if(pass1.trim() == '' \|\| pass1.length < 4)`
			`throw new Error('The password has to be at least 4 characters long.')`

			`if(pass1 != pass2)`
			throw new Error(`Passwords doesn't match`)

			`let cleanKey = keyTextarea.replace(/\s+/g, '')`
			`if(!cleanKey.match(/^[0-9a-f]{64}$/i))`
			`throw new Error('Invalid key - has to be 64 characters of 0-9 and A-F')`
			`}//}}}`
			`createKey() {//{{{`
			`try {`
			`this.validateNewKey()`

			`let description = document.getElementById('key-description').value`
			`let keyAscii = document.getElementById('key-key').value`
			`let pass1 = document.getElementById('key-pass1').value`

			`// Key in hex taken from user.`
			`let actual_key = sjcl.codec.hex.toBits(keyAscii.replace(/\s+/g, ''))`

			`// Key generated from password, used to encrypt the actual key.`
			`let pass_gen = Crypto.pass_to_key(pass1)`

			`let crypto = new Crypto(pass_gen.key)`
			`let encrypted_actual_key = crypto.encrypt(actual_key, 0x1n, false)`

			`// Database value is salt + actual key, needed to generate the same key from the password.`
			`let db_encoded = sjcl.codec.hex.fromBits(`
			`pass_gen.salt.concat(encrypted_actual_key)`
			`)`

			`// Create on server.`
			`window._app.current.request('/key/create', {`
			`description,`
			`key: db_encoded,`
			`})`
			`.then(res=>{`
			`let key = new Key(res.Key, this.props.nodeui.keyCounter)`
			`this.props.nodeui.keys.value = this.props.nodeui.keys.value.concat(key)`
			`})`
			`.catch(window._app.current.responseError)`
			`} catch(err) {`
			`alert(err.message)`
			`return`
			`}`
Keys unlocking/locking 2023-07-01 20:33:26 +02:00			`}//}}}`
			`}`

			`export class Key {`
Work on cryptokeys 2023-07-12 22:35:38 +02:00			`constructor(data, counter_callback) {//{{{`
			`this.ID = data.ID`
			`this.description = data.Description`
			`this.encryptedKey = data.Key`
			`this.key = null`

			`this._counter_cbk = counter_callback`
Keys unlocking/locking 2023-07-01 20:33:26 +02:00
			let hex_key = window.sessionStorage.getItem(`key-${this.ID}`)
			`if(hex_key)`
			`this.key = sjcl.codec.hex.toBits(hex_key)`
			`}//}}}`
			`status() {//{{{`
			`if(this.key === null)`
			`return 'locked'`
			`return 'unlocked'`
			`}//}}}`
			`lock() {//{{{`
			`this.key = null`
			window.sessionStorage.removeItem(`key-${this.ID}`)
			`}//}}}`
			`unlock(password) {//{{{`
Work on cryptokeys 2023-07-12 22:35:38 +02:00			`let db = sjcl.codec.hex.toBits(this.encryptedKey)`
Keys unlocking/locking 2023-07-01 20:33:26 +02:00			`let salt = db.slice(0, 4)`
			`let pass_key = Crypto.pass_to_key(password, salt)`
			`let crypto = new Crypto(pass_key.key)`
			`this.key = crypto.decrypt(sjcl.codec.base64.fromBits(db.slice(4)))`
			window.sessionStorage.setItem(`key-${this.ID}`, sjcl.codec.hex.fromBits(this.key))
			`}//}}}`
Work on cryptokeys 2023-07-12 22:35:38 +02:00			`async counter() {//{{{`
			`return this._counter_cbk()`
			`}//}}}`
Keys unlocking/locking 2023-07-01 20:33:26 +02:00			`}`

			`export class KeyComponent extends Component {`
Work on cryptokeys 2023-07-12 22:35:38 +02:00			`constructor({ model }) {//{{{`
			`super({ model })`
			`this.state = {`
			`show_key: false,`
			`}`
			`}//}}}`
			`render({ model }, { show_key }) {//{{{`
Keys unlocking/locking 2023-07-01 20:33:26 +02:00			`let status = ''`
			`switch(model.status()) {`
			`case 'locked':`
			status = html`<div class="status locked"><img src="/images/${window._VERSION}/padlock-closed.svg" /></div>`
			`break`

			`case 'unlocked':`
			status = html`<div class="status unlocked"><img src="/images/${window._VERSION}/padlock-open.svg" /></div>`
			`break`
			`}`

Work on cryptokeys 2023-07-12 22:35:38 +02:00			`let hex_key = ''`
			`if(show_key) {`
			`if(model.status() == 'locked')`
			hex_key = html`<div class="hex-key">Unlock key first</div>`
			`else {`
			`let key = sjcl.codec.hex.fromBits(model.key)`
			`key = key.replace(/(....)/g, "$1 ").trim()`
			hex_key = html`<div class="hex-key">${key}</div>`
			`}`
			`}`

			`let unlocked = model.status()=='unlocked'`

Keys unlocking/locking 2023-07-01 20:33:26 +02:00			return html`
			`<div class="status" onclick=${()=>this.toggle()}>${status}</div>`
			`<div class="description" onclick=${()=>this.toggle()}>${model.description}</div>`
Work on cryptokeys 2023-07-12 22:35:38 +02:00			`<div class="view" onclick=${()=>this.toggleViewKey()}>${unlocked ? 'View key' : ''}</div>`
			`${hex_key}`
Keys unlocking/locking 2023-07-01 20:33:26 +02:00			`
			`}//}}}`
			`toggle() {//{{{`
			`if(this.props.model.status() == 'locked')`
			`this.unlock()`
			`else`
			`this.lock()`
			`}//}}}`
			`lock() {//{{{`
			`this.props.model.lock()`
			`this.forceUpdate()`
			`}//}}}`
			`unlock() {//{{{`
			`let pass = prompt("Password")`
			`if(!pass)`
			`return`

			`try {`
			`this.props.model.unlock(pass)`
			`this.forceUpdate()`
			`} catch(err) {`
			`alert(err)`
			`}`
			`}//}}}`
Work on cryptokeys 2023-07-12 22:35:38 +02:00			`toggleViewKey() {//{{{`
			`this.setState({ show_key: !this.state.show_key })`
			`}//}}}`
Keys unlocking/locking 2023-07-01 20:33:26 +02:00			`}`

			`// vim: foldmethod=marker`