ente/src/pages/credentials/index.tsx

import React, { useEffect, useState } from 'react';
import Container from 'components/Container';
import styled from 'styled-components';
import Card from 'react-bootstrap/Card';
import Form from 'react-bootstrap/Form';
import Button from 'react-bootstrap/Button';
import constants from 'utils/strings/constants';
import { Formik, FormikHelpers } from 'formik';
import { getData, LS_KEYS, setData } from 'utils/storage/localStorage';
import { useRouter } from 'next/router';
import * as Yup from 'yup';
import { keyAttributes } from 'types';
import { setKey, SESSION_KEYS, getKey } from 'utils/storage/sessionStorage';
import * as libsodium from 'utils/crypto/libsodium';
import * as Comlink from "comlink";

const CryptoWorker = typeof window !== 'undefined'
    && Comlink.wrap(new Worker("worker/crypto.worker.js", { type: 'module' }));

const Image = styled.img`
    width: 200px;
    margin-bottom: 20px;
    max-width: 100%;
`;

interface formValues {
    passphrase: string;
}

export default function Credentials() {
    const router = useRouter();
    const [keyAttributes, setKeyAttributes] = useState<keyAttributes>();
    const [loading, setLoading] = useState(false);

    useEffect(() => {
        router.prefetch('/gallery');
        const user = getData(LS_KEYS.USER);
        const keyAttributes = getData(LS_KEYS.KEY_ATTRIBUTES);
        const key = getKey(SESSION_KEYS.ENCRYPTION_KEY);
        if (!user?.token) {
            router.push('/');
        } else if (!keyAttributes) {
            router.push('/generate');
        } else if (key) {
            router.push('/gallery')
        } else {
            setKeyAttributes(keyAttributes);
        }
    }, []);

    const verifyPassphrase = async (values: formValues, { setFieldError }: FormikHelpers<formValues>) => {
        setLoading(true);
        try {
            const cryptoWorker = await new CryptoWorker();
            const { passphrase } = values;
            const kek = await libsodium.deriveKey(await libsodium.fromString(passphrase),
                await libsodium.fromB64(keyAttributes.kekSalt));

            if (await cryptoWorker.verifyHash(keyAttributes.kekHash, kek)) {
                const key = await libsodium.decrypt(
                    await libsodium.fromB64(keyAttributes.encryptedKey),
                    await libsodium.fromB64(keyAttributes.keyDecryptionNonce),
                    kek);
                const sessionKeyAttributes = await libsodium.encrypt(key);
                const sessionKey = await libsodium.toB64(sessionKeyAttributes.key);
                const sessionNonce = await libsodium.toB64(sessionKeyAttributes.nonce);
                const encryptionKey = await libsodium.toB64(sessionKeyAttributes.encryptedData);
                setKey(SESSION_KEYS.ENCRYPTION_KEY, { encryptionKey });
                setData(LS_KEYS.SESSION, { sessionKey, sessionNonce });
                router.push('/gallery');
            } else {
                setFieldError('passphrase', constants.INCORRECT_PASSPHRASE);
            }
        } catch (e) {
            setFieldError('passphrase', `${constants.UNKNOWN_ERROR} ${e.message}`);
        }
        setLoading(false);
    }

    return (<Container>
        <Image alt='vault' src='/vault.svg' />
        <Card style={{ minWidth: '300px' }}>
            <Card.Body>
                <p className="text-center">{constants.ENTER_PASSPHRASE}</p>
                <Formik<formValues>
                    initialValues={{ passphrase: '' }}
                    onSubmit={verifyPassphrase}
                    validationSchema={Yup.object().shape({
                        passphrase: Yup.string().required(constants.REQUIRED),
                    })}
                >
                    {({ values, touched, errors, handleChange, handleBlur, handleSubmit }) => (
                        <Form noValidate onSubmit={handleSubmit}>
                            <Form.Group>
                                <Form.Control
                                    type="password"
                                    placeholder={constants.RETURN_PASSPHRASE_HINT}
                                    value={values.passphrase}
                                    onChange={handleChange('passphrase')}
                                    onBlur={handleBlur('passphrase')}
                                    isInvalid={Boolean(touched.passphrase && errors.passphrase)}
                                    disabled={loading}
                                />
                                <Form.Control.Feedback type="invalid">
                                    {errors.passphrase}
                                </Form.Control.Feedback>
                            </Form.Group>
                            <Button block type='submit' disabled={loading}>{constants.VERIFY_PASSPHRASE}</Button>
                        </Form>
                    )}
                </Formik>
            </Card.Body>
        </Card>
    </Container>)
}
Use libsodium for key encryption and decryption 2020-10-01 01:29:24 +00:00			`import React, { useEffect, useState } from 'react';`
Login and key generation flow complete! 2020-09-12 21:53:41 +00:00			`import Container from 'components/Container';`
			`import styled from 'styled-components';`
			`import Card from 'react-bootstrap/Card';`
			`import Form from 'react-bootstrap/Form';`
			`import Button from 'react-bootstrap/Button';`
			`import constants from 'utils/strings/constants';`
			`import { Formik, FormikHelpers } from 'formik';`
Using local and session storage to maintain session. + Fixed SSR of styled components. + Added warninig message in console. 2020-09-13 06:30:07 +00:00			`import { getData, LS_KEYS, setData } from 'utils/storage/localStorage';`
Login and key generation flow complete! 2020-09-12 21:53:41 +00:00			`import { useRouter } from 'next/router';`
			`import * as Yup from 'yup';`
			`import { keyAttributes } from 'types';`
Using local and session storage to maintain session. + Fixed SSR of styled components. + Added warninig message in console. 2020-09-13 06:30:07 +00:00			`import { setKey, SESSION_KEYS, getKey } from 'utils/storage/sessionStorage';`
Use libsodium for key encryption and decryption 2020-10-01 01:29:24 +00:00			`import * as libsodium from 'utils/crypto/libsodium';`
Verify the hash over a worker 2020-10-01 11:47:13 +00:00			`import * as Comlink from "comlink";`

			`const CryptoWorker = typeof window !== 'undefined'`
			`&& Comlink.wrap(new Worker("worker/crypto.worker.js", { type: 'module' }));`
Login and key generation flow complete! 2020-09-12 21:53:41 +00:00
			const Image = styled.img`
			`width: 200px;`
			`margin-bottom: 20px;`
			`max-width: 100%;`
			`;

			`interface formValues {`
			`passphrase: string;`
			`}`

			`export default function Credentials() {`
			`const router = useRouter();`
			`const [keyAttributes, setKeyAttributes] = useState<keyAttributes>();`
			`const [loading, setLoading] = useState(false);`
Use libsodium for key encryption and decryption 2020-10-01 01:29:24 +00:00
Login and key generation flow complete! 2020-09-12 21:53:41 +00:00			`useEffect(() => {`
Changed API endpoint 2020-09-14 09:32:01 +00:00			`router.prefetch('/gallery');`
Using local and session storage to maintain session. + Fixed SSR of styled components. + Added warninig message in console. 2020-09-13 06:30:07 +00:00			`const user = getData(LS_KEYS.USER);`
			`const keyAttributes = getData(LS_KEYS.KEY_ATTRIBUTES);`
			`const key = getKey(SESSION_KEYS.ENCRYPTION_KEY);`
Login and key generation flow complete! 2020-09-12 21:53:41 +00:00			`if (!user?.token) {`
			`router.push('/');`
			`} else if (!keyAttributes) {`
			`router.push('/generate');`
Using local and session storage to maintain session. + Fixed SSR of styled components. + Added warninig message in console. 2020-09-13 06:30:07 +00:00			`} else if (key) {`
Login and key generation flow complete! 2020-09-12 21:53:41 +00:00			`router.push('/gallery')`
			`} else {`
			`setKeyAttributes(keyAttributes);`
			`}`
			`}, []);`

			`const verifyPassphrase = async (values: formValues, { setFieldError }: FormikHelpers<formValues>) => {`
			`setLoading(true);`
			`try {`
Verify the hash over a worker 2020-10-01 11:47:13 +00:00			`const cryptoWorker = await new CryptoWorker();`
Login and key generation flow complete! 2020-09-12 21:53:41 +00:00			`const { passphrase } = values;`
Use libsodium for key encryption and decryption 2020-10-01 01:29:24 +00:00			`const kek = await libsodium.deriveKey(await libsodium.fromString(passphrase),`
			`await libsodium.fromB64(keyAttributes.kekSalt));`

Update contract for verifying hash 2020-10-02 13:06:16 +00:00			`if (await cryptoWorker.verifyHash(keyAttributes.kekHash, kek)) {`
Use libsodium for key encryption and decryption 2020-10-01 01:29:24 +00:00			`const key = await libsodium.decrypt(`
			`await libsodium.fromB64(keyAttributes.encryptedKey),`
			`await libsodium.fromB64(keyAttributes.keyDecryptionNonce),`
			`kek);`
			`const sessionKeyAttributes = await libsodium.encrypt(key);`
			`const sessionKey = await libsodium.toB64(sessionKeyAttributes.key);`
			`const sessionNonce = await libsodium.toB64(sessionKeyAttributes.nonce);`
			`const encryptionKey = await libsodium.toB64(sessionKeyAttributes.encryptedData);`
Using local and session storage to maintain session. + Fixed SSR of styled components. + Added warninig message in console. 2020-09-13 06:30:07 +00:00			`setKey(SESSION_KEYS.ENCRYPTION_KEY, { encryptionKey });`
Use libsodium for key encryption and decryption 2020-10-01 01:29:24 +00:00			`setData(LS_KEYS.SESSION, { sessionKey, sessionNonce });`
Login and key generation flow complete! 2020-09-12 21:53:41 +00:00			`router.push('/gallery');`
			`} else {`
			`setFieldError('passphrase', constants.INCORRECT_PASSPHRASE);`
			`}`
			`} catch (e) {`
			setFieldError('passphrase', `${constants.UNKNOWN_ERROR} ${e.message}`);
			`}`
			`setLoading(false);`
			`}`

			`return (<Container>`
Accessibility improvements. 2020-09-13 17:15:48 +00:00			`<Image alt='vault' src='/vault.svg' />`
Use libsodium for key encryption and decryption 2020-10-01 01:29:24 +00:00			`<Card style={{ minWidth: '300px' }}>`
Login and key generation flow complete! 2020-09-12 21:53:41 +00:00			`<Card.Body>`
			`<p className="text-center">{constants.ENTER_PASSPHRASE}</p>`
			`<Formik<formValues>`
			`initialValues={{ passphrase: '' }}`
			`onSubmit={verifyPassphrase}`
			`validationSchema={Yup.object().shape({`
			`passphrase: Yup.string().required(constants.REQUIRED),`
			`})}`
			`>`
			`{({ values, touched, errors, handleChange, handleBlur, handleSubmit }) => (`
			`<Form noValidate onSubmit={handleSubmit}>`
			`<Form.Group>`
			`<Form.Control`
			`type="password"`
			`placeholder={constants.RETURN_PASSPHRASE_HINT}`
			`value={values.passphrase}`
			`onChange={handleChange('passphrase')}`
			`onBlur={handleBlur('passphrase')}`
			`isInvalid={Boolean(touched.passphrase && errors.passphrase)}`
			`disabled={loading}`
			`/>`
			`<Form.Control.Feedback type="invalid">`
			`{errors.passphrase}`
			`</Form.Control.Feedback>`
			`</Form.Group>`
Using local and session storage to maintain session. + Fixed SSR of styled components. + Added warninig message in console. 2020-09-13 06:30:07 +00:00			`<Button block type='submit' disabled={loading}>{constants.VERIFY_PASSPHRASE}</Button>`
Login and key generation flow complete! 2020-09-12 21:53:41 +00:00			`</Form>`
			`)}`
			`</Formik>`
			`</Card.Body>`
			`</Card>`
			`</Container>)`
			`}`