Merge branch 'staging' of github.com:xwiki-labs/cryptpad into staging

2018-01-11 16:02:18 +01:00
parent ef480fea79 dc376fdb1c
commit bd9c44dbb2
22 changed files with 120 additions and 1986 deletions
--- a/www/common/common-ui-elements.js
+++ b/www/common/common-ui-elements.js
@@ -867,9 +867,14 @@ define([
        if (typeof config !== "object" || !Array.isArray(config.options)) { return; }
        if (config.feedback && !config.common) { return void console.error("feedback in a dropdown requires sframe-common"); }

+        var isElement = function (o) {
+            return /HTML/.test(Object.prototype.toString.call(o)) &&
+                typeof(o.tagName) === 'string';
+        };
        var allowedTags = ['a', 'p', 'hr'];
        var isValidOption = function (o) {
            if (typeof o !== "object") { return false; }
+            if (isElement(o)) { return true; }
            if (!o.tag || allowedTags.indexOf(o.tag) === -1) { return false; }
            return true;
        };
@@ -901,6 +906,7 @@ define([

        config.options.forEach(function (o) {
            if (!isValidOption(o)) { return; }
+            if (isElement(o)) { return $innerblock.append($(o)); }
            $('<' + o.tag + '>', o.attributes || {}).html(o.content || '').appendTo($innerblock);
        });

--- a/www/common/credential.js
+++ b/www/common/credential.js
@@ -1,77 +0,0 @@
-define([
-    '/customize/application_config.js',
-    '/bower_components/scrypt-async/scrypt-async.min.js',
-], function (AppConfig) {
-    var Cred = {};
-    var Scrypt = window.scrypt;
-
-    Cred.MINIMUM_PASSWORD_LENGTH = typeof(AppConfig.minimumPasswordLength) === 'number'?
-        AppConfig.minimumPasswordLength: 8;
-
-    Cred.isLongEnoughPassword = function (passwd) {
-        return passwd.length >= Cred.MINIMUM_PASSWORD_LENGTH;
-    };
-
-    var isString = Cred.isString = function (x) {
-        return typeof(x) === 'string';
-    };
-
-    Cred.isValidUsername = function (name) {
-        return !!(name && isString(name));
-    };
-
-    Cred.isValidPassword = function (passwd) {
-        return !!(passwd && isString(passwd));
-    };
-
-    Cred.passwordsMatch = function (a, b) {
-        return isString(a) && isString(b) && a === b;
-    };
-
-    Cred.customSalt = function () {
-        return typeof(AppConfig.loginSalt) === 'string'?
-            AppConfig.loginSalt: '';
-    };
-
-    Cred.deriveFromPassphrase = function (username, password, len, cb) {
-        Scrypt(password,
-            username + Cred.customSalt(), // salt
-            8, // memoryCost (n)
-            1024, // block size parameter (r)
-            len || 128, // dkLen
-            200, // interruptStep
-            cb,
-            undefined); // format, could be 'base64'
-    };
-
-    Cred.dispenser = function (bytes) {
-        var entropy = {
-            used: 0,
-        };
-
-        // crypto hygeine
-        var consume = function (n) {
-            // explode if you run out of bytes
-            if (entropy.used + n > bytes.length) {
-                throw new Error('exceeded available entropy');
-            }
-            if (typeof(n) !== 'number') { throw new Error('expected a number'); }
-            if (n <= 0) {
-                throw new Error('expected to consume a positive number of bytes');
-            }
-
-            // grab an unused slice of the entropy
-            var A = bytes.slice(entropy.used, entropy.used + n);
-
-            // account for the bytes you used so you don't reuse bytes
-            entropy.used += n;
-
-            //console.info("%s bytes of entropy remaining", bytes.length - entropy.used);
-            return A;
-        };
-
-        return consume;
-    };
-
-    return Cred;
-});
--- a/www/common/login.js
+++ b/www/common/login.js
@@ -1,146 +0,0 @@
-define([
-    'jquery',
-    '/bower_components/chainpad-listmap/chainpad-listmap.js',
-    '/bower_components/chainpad-crypto/crypto.js',
-    '/common/common-util.js',
-    '/common/outer/network-config.js',
-    '/common/credential.js',
-    '/bower_components/chainpad/chainpad.dist.js',
-
-    '/bower_components/tweetnacl/nacl-fast.min.js',
-    '/bower_components/scrypt-async/scrypt-async.min.js', // better load speed
-], function ($, Listmap, Crypto, Util, NetConfig, Cred, ChainPad) {
-    var Exports = {
-        Cred: Cred,
-    };
-
-    var Nacl = window.nacl;
-    var allocateBytes = function (bytes) {
-        var dispense = Cred.dispenser(bytes);
-
-        var opt = {};
-
-        // dispense 18 bytes of entropy for your encryption key
-        var encryptionSeed = dispense(18);
-        // 16 bytes for a deterministic channel key
-        var channelSeed = dispense(16);
-        // 32 bytes for a curve key
-        var curveSeed = dispense(32);
-
-        var curvePair = Nacl.box.keyPair.fromSecretKey(new Uint8Array(curveSeed));
-        opt.curvePrivate = Nacl.util.encodeBase64(curvePair.secretKey);
-        opt.curvePublic = Nacl.util.encodeBase64(curvePair.publicKey);
-
-        // 32 more for a signing key
-        var edSeed = opt.edSeed = dispense(32);
-
-        // derive a private key from the ed seed
-        var signingKeypair = Nacl.sign.keyPair.fromSeed(new Uint8Array(edSeed));
-
-        opt.edPrivate = Nacl.util.encodeBase64(signingKeypair.secretKey);
-        opt.edPublic = Nacl.util.encodeBase64(signingKeypair.publicKey);
-
-        var keys = opt.keys = Crypto.createEditCryptor(null, encryptionSeed);
-
-        // 24 bytes of base64
-        keys.editKeyStr = keys.editKeyStr.replace(/\//g, '-');
-
-        // 32 bytes of hex
-        var channelHex = opt.channelHex = Util.uint8ArrayToHex(channelSeed);
-
-        // should never happen
-        if (channelHex.length !== 32) { throw new Error('invalid channel id'); }
-
-        opt.channel64 = Util.hexToBase64(channelHex);
-
-        opt.userHash = '/1/edit/' + [opt.channel64, opt.keys.editKeyStr].join('/');
-
-        return opt;
-    };
-
-    var loadUserObject = function (opt, cb) {
-        var config = {
-            websocketURL: NetConfig.getWebsocketURL(),
-            channel: opt.channelHex,
-            data: {},
-            validateKey: opt.keys.validateKey, // derived validation key
-            crypto: Crypto.createEncryptor(opt.keys),
-            logLevel: 1,
-            classic: true,
-            ChainPad: ChainPad,
-        };
-
-        var rt = opt.rt = Listmap.create(config);
-        rt.proxy
-        .on('ready', function () {
-            cb(void 0, rt);
-        })
-        .on('disconnect', function (info) {
-            cb('E_DISCONNECT', info);
-        });
-    };
-
-    var isProxyEmpty = function (proxy) {
-        return Object.keys(proxy).length === 0;
-    };
-
-    Exports.loginOrRegister = function (uname, passwd, isRegister, cb) {
-        if (typeof(cb) !== 'function') { return; }
-
-        // Usernames are all lowercase. No going back on this one
-        uname = uname.toLowerCase();
-
-        // validate inputs
-        if (!Cred.isValidUsername(uname)) { return void cb('INVAL_USER'); }
-        if (!Cred.isValidPassword(passwd)) { return void cb('INVAL_PASS'); }
-        if (isRegister && !Cred.isLongEnoughPassword(passwd)) {
-            return void cb('PASS_TOO_SHORT');
-        }
-
-        Cred.deriveFromPassphrase(uname, passwd, 128, function (bytes) {
-            // results...
-            var res = {
-                register: isRegister,
-            };
-
-            // run scrypt to derive the user's keys
-            var opt = res.opt = allocateBytes(bytes);
-
-            // use the derived key to generate an object
-            loadUserObject(opt, function (err, rt) {
-                if (err) { return void cb(err); }
-
-                res.proxy = rt.proxy;
-                res.realtime = rt.realtime;
-                res.network = rt.network;
-
-                // they're registering...
-                res.userHash = opt.userHash;
-                res.userName = uname;
-
-                // export their signing key
-                res.edPrivate = opt.edPrivate;
-                res.edPublic = opt.edPublic;
-
-                res.curvePrivate = opt.curvePrivate;
-                res.curvePublic = opt.curvePublic;
-
-                // they tried to just log in but there's no such user
-                if (!isRegister && isProxyEmpty(rt.proxy)) {
-                    rt.network.disconnect(); // clean up after yourself
-                    return void cb('NO_SUCH_USER', res);
-                }
-
-                // they tried to register, but those exact credentials exist
-                if (isRegister && !isProxyEmpty(rt.proxy)) {
-                    rt.network.disconnect();
-                    return void cb('ALREADY_REGISTERED', res);
-                }
-
-                setTimeout(function () { cb(void 0, res); });
-            });
-        });
-    };
-
-    return Exports;
-});
--- a/www/common/test.js
+++ b/www/common/test.js
@@ -34,6 +34,11 @@ define([], function () {
                if (locks.length === 1) {
                    runLock(locks.shift());
                }
+            },
+            assert: function (expr) {
+                if (expr || failed) { return; }
+                failed = true;
+                out.failed("Failed assertion");
            }
        });
    };
@@ -131,10 +136,12 @@ define([], function () {
    };
    var enableManual = function () {
        out.testing = 'manual';
+        console.log('manual testing enabled');
        out.passed = function () {
            window.alert("Test passed");
        };
        out.failed = function (reason) {
+            try { throw new Error(reason); } catch (err) { console.log(err.stack); }
            window.alert("Test failed [" + reason + "]");
        };
        out.registerInner = function () { };
@@ -146,18 +153,18 @@ define([], function () {
    out.registerInner = function () { };
    out.registerOuter = function () { };

-    if (window.location.hash.indexOf("test=auto") > -1) {
-        enableAuto();
-    } else if (window.location.hash.indexOf("test=manual") > -1) {
-        enableManual();
-    } else if (document.cookie.indexOf('test=') === 0) {
+    if (document.cookie.indexOf('test=') === 0) {
        try {
            var x = JSON.parse(decodeURIComponent(document.cookie.replace('test=', '')));
            if (x.test === 'auto') {
                out.options = x.opts;
                enableAuto('auto');
+                console.log("Enable auto testing " + window.origin);
+            } else if (x.test === 'manual') {
+                out.options = x.opts;
+                enableManual();
+                console.log("Enable manual testing " + window.origin);
            }
-            console.log("Enable auto testing " + window.origin);
        } catch (e) { }
    }

--- a/www/common/toolbar3.js
+++ b/www/common/toolbar3.js
@@ -496,6 +496,13 @@ define([
                content: '<span class="fa fa-eye"></span> ' + Messages.getEmbedCode
            });
        }
+        if (typeof(Config.customizeShareOptions) === 'function') {
+            Config.customizeShareOptions(hashes, options, {
+                type: 'DEFAULT',
+                origin: origin,
+                pathname: pathname
+            });
+        }
        var dropdownConfigShare = {
            text: $('<div>').append($shareIcon).html(),
            options: options,
@@ -582,6 +589,15 @@ define([
            attributes: {title: Messages.fileEmbedTitle, 'class': 'cp-toolbar-share-file-embed'},
            content: '<span class="fa fa-file"></span> ' + Messages.getEmbedCode
        });
+
+        if (typeof(Config.customizeShareOptions) === 'function') {
+            Config.customizeShareOptions(hashes, options, {
+                type: 'FILE',
+                origin: origin,
+                pathname: pathname
+            });
+        }
+
        var dropdownConfigShare = {
            text: $('<div>').append($shareIcon).html(),
            options: options,