martin/databag
1
0
Fork 0
mirror of https://github.com/balzack/databag.git synced 2025-05-02 06:25:18 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
databag/app/sdk/src/settings.ts
balzack f08e738f9a renaming handle method to username
2024-08-28 18:51:22 -07:00

228 lines
7.9 KiB
TypeScript
Raw Blame History

import { EventEmitter } from 'eventemitter3';
import type { Settings } from './api';
import type { Config } from './types';
import { Store } from './store';
import { Crypto } from './crypto';
import { Logging } from './logging';
import { defaultConfigEntity, ConfigEntity } from './entities';
import { getAccountStatus } from './net/getAccountStatus';
import { addAccountMFAuth } from './net/addAccountMFAuth';
import { setAccountMFAuth } from './net/setAccountMFAuth';
import { removeAccountMFAuth } from './net/removeAccountMFAuth';
import { setAccountLogin } from './net/setAccountLogin';
import { setAccountNotifications } from './net/setAccountNotifications';
import { setAccountSearchable } from './net/setAccountSearchable';
import { setAccountSeal } from './net/setAccountSeal';
import { clearAccountSeal } from './net/clearAccountSeal';
import { getUsername } from './net/getUsername';
const CLOSE_POLL_MS = 100;
const RETRY_POLL_MS = 2000;
export class SettingsModule implements Settings {
private emitter: EventEmitter;
private guid: string;
private token: string;
private node: string;
private secure: boolean;
private log: Logging;
private store: Store;
private crypto: Crypto | null;
private syncing: boolean;
private closing: boolean;
private revision: number;
private nextRevision: number | null;
private config: ConfigEntity;
private sealKey: { privateKey: string, publicKey: string } | null;
constructor(log: Logging, store: Store, crypto: Crypto | null, guid: string, token: string, node: string, secure: boolean) {
this.log = log;
this.store = store;
this.crypto = crypto;
this.emitter = new EventEmitter();
this.guid = guid;
this.token = token;
this.node = node;
this.sealKey = null;
this.secure = secure;
this.revision = 0;
this.config = defaultConfigEntity;
this.syncing = true;
this.closing = false;
this.nextRevision = null;
this.init();
}
private async init() {
this.revision = await this.store.getSettingsRevision(this.guid);
this.config = await this.store.getSettingsData(this.guid);
this.sealKey = await this.store.getSeal(this.guid);
this.syncing = false;
await this.sync();
}
private async sync(): Promise<void> {
if (!this.syncing) {
this.syncing = true;
while (this.nextRevision && !this.closing) {
if (this.revision == this.nextRevision) {
this.nextRevision = null;
}
else {
const nextRev = this.nextRevision;
try {
const { guid, node, secure, token } = this;
const config = await getAccountStatus(node, secure, token);
await this.store.setSettingsData(guid, config);
await this.store.setSettingsRevision(guid, nextRev);
this.config = config;
this.emitter.emit('config', this.getStatus());
this.revision = nextRev;
if (this.nextRevision === nextRev) {
this.nextRevision = null;
}
this.log.info(`account revision: ${nextRev}`);
}
catch (err) {
this.log.warn(err);
await new Promise(r => setTimeout(r, RETRY_POLL_MS));
}
}
}
this.syncing = false;
}
}
public getStatus() {
const { storageUsed, storageAvailable, forwardingAddress, searchable, allowUnsealed, pushEnabled, sealable, seal, enableIce, multiFactorAuth, webPushKey } = this.config;
const { passwordSalt, privateKeyIv, privateKeyEncrypted, publicKey } = seal || {};
const sealSet = Boolean(passwordSalt && privateKeyIv && privateKeyEncrypted && publicKey);
const sealUnlocked = Boolean(sealSet && this.sealKey?.privateKey && this.sealKey?.publicKey == publicKey)
return { storageUsed, storageAvailable, forwardingAddress, searchable, allowUnsealed, pushEnabled, sealable, sealSet, sealUnlocked, enableIce, multiFactorAuth, webPushKey };
}
public addConfigListener(ev: (config: Config) => void): void {
this.emitter.on('config', ev);
this.emitter.emit('config', this.getStatus());
}
public removeConfigListener(ev: (config: Config) => void): void {
this.emitter.off('config', ev);
}
public async close(): Promise<void> {
this.closing = true;
while(this.syncing) {
await new Promise(r => setTimeout(r, CLOSE_POLL_MS));
}
}
public async setRevision(rev: number): Promise<void> {
this.nextRevision = rev;
await this.sync();
}
public async enableNotifications(): Promise<void> {
const { node, secure, token } = this;
await setAccountNotifications(node, secure, token, true);
}
public async disableNotifications(): Promise<void> {
const { node, secure, token } = this;
await setAccountNotifications(node, secure, token, false);
}
public async enableRegistry(): Promise<void> {
const { node, secure, token } = this;
await setAccountSearchable(node, secure, token, true);
}
public async disableRegistry(): Promise<void> {
const { node, secure, token } = this;
await setAccountSearchable(node, secure, token, false);
}
public async enableMFA(): Promise<{ secretImage: string, secretText: string }> {
const { node, secure, token } = this;
const { image, text } = await addAccountMFAuth(node, secure, token);
return { secretImage: image, secretText: text };
}
public async disableMFA(): Promise<void> {
const { node, secure, token } = this;
await removeAccountMFAuth(node, secure, token);
}
public async confirmMFA(code: string): Promise<void> {
const { node, secure, token } = this;
await setAccountMFAuth(node, secure, token, code);
}
public async setSeal(password: string): Promise<void> {
const { crypto, guid, node, secure, token } = this;
if (!crypto) {
throw new Error('crypto not enabled');
}
const { saltHex } = crypto.pbkdfSalt();
const { aesKeyHex } = crypto.pbkdfKey(saltHex, password);
const { publicKeyB64, privateKeyB64 } = crypto.rsaKey();
const { ivHex } = crypto.aesIv();
const { encryptedDataB64 } = crypto.aesEncrypt(privateKeyB64, ivHex, aesKeyHex);
const seal = { passwordSalt: saltHex, privateKeyIv: ivHex, privateKeyEncrypted: encryptedDataB64, publicKey: publicKeyB64 };
await setAccountSeal(node, secure, token, seal);
const sealKey = { publicKey: publicKeyB64, privateKey: privateKeyB64 };
this.store.setSeal(guid, sealKey);
this.sealKey = sealKey;
this.emitter.emit('config', this.getStatus());
}
public async clearSeal(): Promise<void> {
const { guid, node, secure, token } = this;
await clearAccountSeal(node, secure, token);
await this.store.clearSeal(guid);
this.sealKey = null;
this.emitter.emit('config', this.getStatus());
}
public async unlockSeal(password: string): Promise<void> {
const { guid, config, crypto } = this;
const { passwordSalt, privateKeyIv, privateKeyEncrypted, publicKey } = config.seal;
if (!passwordSalt || !privateKeyIv || !privateKeyEncrypted || !publicKey) {
throw new Error('account seal not set');
}
if (!crypto) {
throw new Error('crypto not set');
}
const { aesKeyHex } = crypto.pbkdfKey(passwordSalt, password);
const { data } = crypto.aesDecrypt(privateKeyEncrypted, privateKeyIv, aesKeyHex);
const seal = { publicKey: publicKey, privateKey: data };
this.store.setSeal(guid, seal);
this.sealKey = seal;
this.emitter.emit('config', this.getStatus());
}
public async forgetSeal(): Promise<void> {
const { guid } = this;
await this.store.clearSeal(guid);
this.sealKey = null;
this.emitter.emit('config', this.getStatus());
}
public async getUsernameStatus(username: string): Promise<boolean> {
const { node, secure, token } = this;
return await getUsername(username, token, node, secure);
}
public async setLogin(username: string, password: string): Promise<void> {
const { node, secure, token } = this;
await setAccountLogin(node, secure, token, username, password);
}
}
Reference in New Issue View Git Blame Copy Permalink