rmorawski/standardnotes-app-web
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

clear auth hash depending on version

Browse Source
This commit is contained in:
Mo Bitar
2017-03-09 18:01:57 -06:00
parent 2a8bc1a0b4
commit 23611c31ae
4 changed files with 47 additions and 18 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
app/assets/javascripts/app/frontend/models/local/itemParams.js
View File

@@ -33,10 +33,15 @@ class ItemParams {
var params = {uuid: this.item.uuid, content_type: this.item.content_type, deleted: this.item.deleted, created_at: this.item.created_at}; var params = {uuid: this.item.uuid, content_type: this.item.content_type, deleted: this.item.deleted, created_at: this.item.created_at};
if(this.keys) { if(this.keys) {
EncryptionHelper.encryptItem(itemCopy, this.keys, "002"); let encryptionVersion = "001";
EncryptionHelper.encryptItem(itemCopy, this.keys, encryptionVersion);
params.content = itemCopy.content; params.content = itemCopy.content;
params.enc_item_key = itemCopy.enc_item_key; params.enc_item_key = itemCopy.enc_item_key;
params.auth_hash = itemCopy.auth_hash; if(encryptionVersion === "001") {
params.auth_hash = itemCopy.auth_hash;
} else {
params.auth_hash = null;
}
} }
else { else {
params.content = this.forExportFile ? itemCopy.createContentJSONFromProperties() : "000" + Neeto.crypto.base64(JSON.stringify(itemCopy.createContentJSONFromProperties())); params.content = this.forExportFile ? itemCopy.createContentJSONFromProperties() : "000" + Neeto.crypto.base64(JSON.stringify(itemCopy.createContentJSONFromProperties()));

7
app/assets/javascripts/app/services/helpers/crypto.js
View File

@@ -30,7 +30,12 @@ class SNCrypto {
} }
} }
decryptText({ciphertextToAuth, contentCiphertext, encryptionKey, iv, authHash, authKey} = {}) { decryptText({ciphertextToAuth, contentCiphertext, encryptionKey, iv, authHash, authKey} = {}, requiresAuth) {
if(requiresAuth && !authHash) {
console.error("Auth hash is required.");
return;
}
if(authHash) { if(authHash) {
var localAuthHash = Neeto.crypto.hmac256(ciphertextToAuth, authKey); var localAuthHash = Neeto.crypto.hmac256(ciphertextToAuth, authKey);
if(authHash !== localAuthHash) { if(authHash !== localAuthHash) {

15
app/assets/javascripts/app/services/helpers/encryptionHelper.js
View File

@@ -47,7 +47,8 @@ class EncryptionHelper {
ciphertextToAuth: string, ciphertextToAuth: string,
iv: null, iv: null,
authHash: null, authHash: null,
encryptionKey: baseKey encryptionKey: baseKey,
authKey: authKey
} }
} else { } else {
let components = string.split(":"); let components = string.split(":");
@@ -66,12 +67,14 @@ class EncryptionHelper {
static decryptItem(item, keys) { static decryptItem(item, keys) {
// decrypt encrypted key // decrypt encrypted key
var encryptedItemKey = item.enc_item_key; var encryptedItemKey = item.enc_item_key;
if(!encryptedItemKey.startsWith("002")) { var requiresAuth = true;
if(encryptedItemKey.startsWith("002") === false) {
// legacy encryption type, has no prefix // legacy encryption type, has no prefix
encryptedItemKey = "001" + encryptedItemKey; encryptedItemKey = "001" + encryptedItemKey;
requiresAuth = false;
} }
var keyParams = this.encryptionComponentsFromString(encryptedItemKey, keys.mk, keys.encryptionKey, keys.authKey); var keyParams = this.encryptionComponentsFromString(encryptedItemKey, keys.mk, keys.encryptionKey, keys.authKey);
var item_key = Neeto.crypto.decryptText(keyParams); var item_key = Neeto.crypto.decryptText(keyParams, requiresAuth);
if(!item_key) { if(!item_key) {
return; return;
@@ -81,8 +84,10 @@ class EncryptionHelper {
var ek = Neeto.crypto.firstHalfOfKey(item_key); var ek = Neeto.crypto.firstHalfOfKey(item_key);
var ak = Neeto.crypto.secondHalfOfKey(item_key); var ak = Neeto.crypto.secondHalfOfKey(item_key);
var itemParams = this.encryptionComponentsFromString(item.content, ek, ek, ak); var itemParams = this.encryptionComponentsFromString(item.content, ek, ek, ak);
var content = Neeto.crypto.decryptText(itemParams); if(!itemParams.authHash) {
itemParams.authHash = item.auth_hash;
}
var content = Neeto.crypto.decryptText(itemParams, true);
item.content = content; item.content = content;
} }

34
app/assets/javascripts/app/services/syncManager.js
View File

@@ -172,7 +172,7 @@ class SyncManager {
params.sync_token = this.syncToken; params.sync_token = this.syncToken;
params.cursor_token = this.cursorToken; params.cursor_token = this.cursorToken;
this.httpManager.postAbsolute(this.syncURL, params, function(response){ var onSyncSuccess = function(response) {
this.modelManager.clearDirtyItems(subItems); this.modelManager.clearDirtyItems(subItems);
this.syncStatus.error = null; this.syncStatus.error = null;
@@ -209,19 +209,33 @@ class SyncManager {
} else { } else {
this.callQueuedCallbacksAndCurrent(callback, response); this.callQueuedCallbacksAndCurrent(callback, response);
} }
}.bind(this);
}.bind(this), function(response){ try {
console.log("Sync error: ", response); this.httpManager.postAbsolute(this.syncURL, params, function(response){
var error = response ? response.error : {message: "Could not connect to server."};
this.syncStatus.syncOpInProgress = false; try {
this.syncStatus.error = error; onSyncSuccess(response);
this.writeItemsToLocalStorage(allDirtyItems, false, null); } catch(e) {
console.log("Caught sync success exception:", e);
}
this.$rootScope.$broadcast("sync:error", error); }.bind(this), function(response){
console.log("Sync error: ", response);
var error = response ? response.error : {message: "Could not connect to server."};
this.callQueuedCallbacksAndCurrent(callback, {error: "Sync error"}); this.syncStatus.syncOpInProgress = false;
}.bind(this)); this.syncStatus.error = error;
this.writeItemsToLocalStorage(allDirtyItems, false, null);
this.$rootScope.$broadcast("sync:error", error);
this.callQueuedCallbacksAndCurrent(callback, {error: "Sync error"});
}.bind(this));
}
catch(e) {
console.log("Sync exception caught:", e);
}
} }
handleUnsavedItemsResponse(unsaved) { handleUnsavedItemsResponse(unsaved) {