import { Injectable } from '@angular/core'; import { UnsafeKeyStore } from '../_helpers'; import { hobaParseChallengeHeader } from '../../assets/js/hoba.js'; import { signChallenge } from '../../assets/js/hoba-pgp.js'; const origin = 'http://localhost:4444'; const pgpKeyStore = new UnsafeKeyStore(); @Injectable({ providedIn: 'root' }) export class AuthService { sessionToken: any; sessionLoginCount = 0; privateKey: any; constructor() { if (sessionStorage.getItem(btoa('CICADA_SESSION_TOKEN'))) { this.sessionToken = sessionStorage.getItem(btoa('CICADA_SESSION_TOKEN')); } if (localStorage.getItem(btoa('CICADA_PRIVATE_KEY'))) { this.privateKey = localStorage.getItem(btoa('CICADA_PRIVATE_KEY')); } } setState(s): void { (document.getElementById('state') as HTMLInputElement).value = s; } getWithToken(): void { const xhr = new XMLHttpRequest(); xhr.responseType = 'text'; xhr.open('GET', origin + window.location.search.substring(1)); xhr.setRequestHeader('Authorization', 'Bearer ' + this.sessionToken); xhr.setRequestHeader('Content-Type', 'application/json'); xhr.setRequestHeader('x-cic-automerge', 'none'); xhr.addEventListener('load', (e) => { if (xhr.status === 401) { throw new Error('login rejected'); } this.sessionLoginCount++; this.setState('click to perform login ' + this.sessionLoginCount + ' with token ' + this.sessionToken); console.log('received', xhr.responseText); return; }); xhr.send(); } sendResponse(hobaResponseEncoded): void { const xhr = new XMLHttpRequest(); // xhr.responseType = 'arraybuffer'; xhr.responseType = 'text'; xhr.open('GET', origin + window.location.search.substring(1)); xhr.setRequestHeader('Authorization', 'HOBA ' + hobaResponseEncoded); xhr.setRequestHeader('Content-Type', 'application/json'); xhr.setRequestHeader('x-cic-automerge', 'none'); xhr.addEventListener('load', (e) => { if (xhr.status === 401) { throw new Error('login rejected'); } this.sessionToken = xhr.getResponseHeader('Token'); sessionStorage.setItem(btoa('CICADA_SESSION_TOKEN'), this.sessionToken); this.sessionLoginCount++; this.setState('click to perform login ' + this.sessionLoginCount + ' with token ' + this.sessionToken); console.log('received', xhr.responseText); return; }); xhr.send(); } getChallenge(): void { const xhr = new XMLHttpRequest(); xhr.responseType = 'arraybuffer'; xhr.open('GET', origin + window.location.search.substring(1)); xhr.onload = (e) => { if (xhr.status === 401) { const authHeader = xhr.getResponseHeader('WWW-Authenticate'); const o = hobaParseChallengeHeader(authHeader); this.loginResponse(o).then(); } }; xhr.send(); } login(): boolean { if (this.sessionToken !== undefined) { try { this.getWithToken(); return true; } catch (e) { console.error('login token failed', e); } } else { try { const o = this.getChallenge(); return true; } catch (e) { console.error('login challenge failed', e); } } return false; } async loginResponse(o): Promise { const r = await signChallenge(o.challenge, o.realm, origin, pgpKeyStore); this.sendResponse(r); } loginView(): void { document.getElementById('one').style.display = 'none'; document.getElementById('two').style.display = 'block'; this.setState('click to log in with PGP key ' + pgpKeyStore.keyId().toHex()); } async setKey(privateKeyArmored): Promise { console.log('settings pk' + privateKeyArmored); try { await pgpKeyStore.set(privateKeyArmored); localStorage.setItem(btoa('CICADA_PRIVATE_KEY'), privateKeyArmored); } catch (e) { console.error('failed setting key', e); return false; } this.loginView(); return true; } logout(): void { sessionStorage.removeItem(btoa('CICADA_SESSION_TOKEN')); window.location.reload(true); } }