fulgens/services-src/auth/resources/wasm/clientKeyShare/main.go

package main

import (
	"crypto/aes"
	"crypto/cipher"
	"crypto/ecdh"
	"crypto/rand"
	"encoding/base64"
	"net/url"
	"strings"
	"syscall/js"
)

func main() {
	// Redirect to log-in if not signed in
	localStorage := js.Global().Get("localStorage")
	if localStorage.Call("getItem", "DONOTSHARE-secretKey").IsNull() {
		js.Global().Get("window").Get("location").Call("replace", "/login"+js.Global().Get("window").Get("location").Get("search").String())
	}

	statusBox := js.Global().Get("document").Call("getElementById", "statusBox")

	// Parse the query string
	query, err := url.ParseQuery(strings.TrimPrefix(js.Global().Get("window").Get("location").Get("search").String(), "?"))
	if err != nil {
		statusBox.Set("innerText", "Error parsing query: "+err.Error())
		return
	}

	// Get the ECDH public key from the query string
	clientKeyBytes, err := base64.URLEncoding.DecodeString(query.Get("ecdhPublicKey"))
	if err != nil {
		statusBox.Set("innerText", "Error decoding ECDH public key: "+err.Error())
		return
	}

	// Encode the ECDH public key
	key, err := ecdh.X25519().NewPublicKey(clientKeyBytes)
	if err != nil {
		statusBox.Set("innerText", "Error encoding ECDH public key: "+err.Error())
		return
	}

	// Generate a new ECDH key pair
	privateKey, err := ecdh.X25519().GenerateKey(rand.Reader)
	if err != nil {
		statusBox.Set("innerText", "Error generating ECDH key pair: "+err.Error())
		return
	}

	// Generate the shared secret
	sharedSecret, err := privateKey.ECDH(key)
	if err != nil {
		statusBox.Set("innerText", "Error generating shared secret: "+err.Error())
		return
	}

	// AES-GCM encrypt the DONOTSHARE-clientKey
	block, err := aes.NewCipher(sharedSecret)
	if err != nil {
		statusBox.Set("innerText", "Error creating AES cipher: "+err.Error())
		return
	}

	gcm, err := cipher.NewGCM(block)
	if err != nil {
		statusBox.Set("innerText", "Error creating GCM cipher: "+err.Error())
		return
	}

	nonce := make([]byte, gcm.NonceSize())
	_, err = rand.Read(nonce)
	if err != nil {
		statusBox.Set("innerText", "Error generating nonce: "+err.Error())
		return
	}

	// Un-base64 the client key
	decodedClientKey, err := base64.StdEncoding.DecodeString(localStorage.Call("getItem", "DONOTSHARE-clientKey").String())
	if err != nil {
		statusBox.Set("innerText", "Error decoding client key: "+err.Error())
		return
	}

	encryptedClientKey := gcm.Seal(nil, nonce, decodedClientKey, nil)

	// Redirect back to the referrer with the encrypted client key
	redirectUri := strings.Split(js.Global().Get("document").Get("referrer").String(), "?")[0]
	js.Global().Get("window").Get("location").Call("replace", redirectUri+"?ecdhPublicKey="+base64.URLEncoding.EncodeToString(privateKey.PublicKey().Bytes())+"&nonce="+base64.URLEncoding.EncodeToString(nonce)+"&cipherText="+base64.URLEncoding.EncodeToString(encryptedClientKey))
}
Initial commit 2024-09-28 19:41:34 +01:00			`package main`

			`import (`
			`"crypto/aes"`
			`"crypto/cipher"`
			`"crypto/ecdh"`
			`"crypto/rand"`
			`"encoding/base64"`
			`"net/url"`
			`"strings"`
			`"syscall/js"`
			`)`

			`func main() {`
			`// Redirect to log-in if not signed in`
			`localStorage := js.Global().Get("localStorage")`
			`if localStorage.Call("getItem", "DONOTSHARE-secretKey").IsNull() {`
			`js.Global().Get("window").Get("location").Call("replace", "/login"+js.Global().Get("window").Get("location").Get("search").String())`
			`}`

			`statusBox := js.Global().Get("document").Call("getElementById", "statusBox")`

Updated PoW library, removed unused graphics, moved checking client token validity serverside in clientKeyShare, made not having a user account not crash the app, made the PoW easier and have a cleaner interface, fixed some elements in dark mode, optimised 0px -> 0 in some CSS, updated some packages Signed-off-by: Arzumify <jliwin98@danwin1210.de> 2024-09-29 16:06:28 +01:00			`// Parse the query string`
			`query, err := url.ParseQuery(strings.TrimPrefix(js.Global().Get("window").Get("location").Get("search").String(), "?"))`
Initial commit 2024-09-28 19:41:34 +01:00			`if err != nil {`
Updated PoW library, removed unused graphics, moved checking client token validity serverside in clientKeyShare, made not having a user account not crash the app, made the PoW easier and have a cleaner interface, fixed some elements in dark mode, optimised 0px -> 0 in some CSS, updated some packages Signed-off-by: Arzumify <jliwin98@danwin1210.de> 2024-09-29 16:06:28 +01:00			`statusBox.Set("innerText", "Error parsing query: "+err.Error())`
Initial commit 2024-09-28 19:41:34 +01:00			`return`
			`}`

Updated PoW library, removed unused graphics, moved checking client token validity serverside in clientKeyShare, made not having a user account not crash the app, made the PoW easier and have a cleaner interface, fixed some elements in dark mode, optimised 0px -> 0 in some CSS, updated some packages Signed-off-by: Arzumify <jliwin98@danwin1210.de> 2024-09-29 16:06:28 +01:00			`// Get the ECDH public key from the query string`
			`clientKeyBytes, err := base64.URLEncoding.DecodeString(query.Get("ecdhPublicKey"))`
Initial commit 2024-09-28 19:41:34 +01:00			`if err != nil {`
Updated PoW library, removed unused graphics, moved checking client token validity serverside in clientKeyShare, made not having a user account not crash the app, made the PoW easier and have a cleaner interface, fixed some elements in dark mode, optimised 0px -> 0 in some CSS, updated some packages Signed-off-by: Arzumify <jliwin98@danwin1210.de> 2024-09-29 16:06:28 +01:00			`statusBox.Set("innerText", "Error decoding ECDH public key: "+err.Error())`
Initial commit 2024-09-28 19:41:34 +01:00			`return`
			`}`

Updated PoW library, removed unused graphics, moved checking client token validity serverside in clientKeyShare, made not having a user account not crash the app, made the PoW easier and have a cleaner interface, fixed some elements in dark mode, optimised 0px -> 0 in some CSS, updated some packages Signed-off-by: Arzumify <jliwin98@danwin1210.de> 2024-09-29 16:06:28 +01:00			`// Encode the ECDH public key`
			`key, err := ecdh.X25519().NewPublicKey(clientKeyBytes)`
Initial commit 2024-09-28 19:41:34 +01:00			`if err != nil {`
Updated PoW library, removed unused graphics, moved checking client token validity serverside in clientKeyShare, made not having a user account not crash the app, made the PoW easier and have a cleaner interface, fixed some elements in dark mode, optimised 0px -> 0 in some CSS, updated some packages Signed-off-by: Arzumify <jliwin98@danwin1210.de> 2024-09-29 16:06:28 +01:00			`statusBox.Set("innerText", "Error encoding ECDH public key: "+err.Error())`
Initial commit 2024-09-28 19:41:34 +01:00			`return`
			`}`

Updated PoW library, removed unused graphics, moved checking client token validity serverside in clientKeyShare, made not having a user account not crash the app, made the PoW easier and have a cleaner interface, fixed some elements in dark mode, optimised 0px -> 0 in some CSS, updated some packages Signed-off-by: Arzumify <jliwin98@danwin1210.de> 2024-09-29 16:06:28 +01:00			`// Generate a new ECDH key pair`
			`privateKey, err := ecdh.X25519().GenerateKey(rand.Reader)`
Initial commit 2024-09-28 19:41:34 +01:00			`if err != nil {`
Updated PoW library, removed unused graphics, moved checking client token validity serverside in clientKeyShare, made not having a user account not crash the app, made the PoW easier and have a cleaner interface, fixed some elements in dark mode, optimised 0px -> 0 in some CSS, updated some packages Signed-off-by: Arzumify <jliwin98@danwin1210.de> 2024-09-29 16:06:28 +01:00			`statusBox.Set("innerText", "Error generating ECDH key pair: "+err.Error())`
			`return`
Initial commit 2024-09-28 19:41:34 +01:00			`}`

Updated PoW library, removed unused graphics, moved checking client token validity serverside in clientKeyShare, made not having a user account not crash the app, made the PoW easier and have a cleaner interface, fixed some elements in dark mode, optimised 0px -> 0 in some CSS, updated some packages Signed-off-by: Arzumify <jliwin98@danwin1210.de> 2024-09-29 16:06:28 +01:00			`// Generate the shared secret`
			`sharedSecret, err := privateKey.ECDH(key)`
Initial commit 2024-09-28 19:41:34 +01:00			`if err != nil {`
Updated PoW library, removed unused graphics, moved checking client token validity serverside in clientKeyShare, made not having a user account not crash the app, made the PoW easier and have a cleaner interface, fixed some elements in dark mode, optimised 0px -> 0 in some CSS, updated some packages Signed-off-by: Arzumify <jliwin98@danwin1210.de> 2024-09-29 16:06:28 +01:00			`statusBox.Set("innerText", "Error generating shared secret: "+err.Error())`
Initial commit 2024-09-28 19:41:34 +01:00			`return`
			`}`

Updated PoW library, removed unused graphics, moved checking client token validity serverside in clientKeyShare, made not having a user account not crash the app, made the PoW easier and have a cleaner interface, fixed some elements in dark mode, optimised 0px -> 0 in some CSS, updated some packages Signed-off-by: Arzumify <jliwin98@danwin1210.de> 2024-09-29 16:06:28 +01:00			`// AES-GCM encrypt the DONOTSHARE-clientKey`
			`block, err := aes.NewCipher(sharedSecret)`
Initial commit 2024-09-28 19:41:34 +01:00			`if err != nil {`
Updated PoW library, removed unused graphics, moved checking client token validity serverside in clientKeyShare, made not having a user account not crash the app, made the PoW easier and have a cleaner interface, fixed some elements in dark mode, optimised 0px -> 0 in some CSS, updated some packages Signed-off-by: Arzumify <jliwin98@danwin1210.de> 2024-09-29 16:06:28 +01:00			`statusBox.Set("innerText", "Error creating AES cipher: "+err.Error())`
Initial commit 2024-09-28 19:41:34 +01:00			`return`
			`}`

Updated PoW library, removed unused graphics, moved checking client token validity serverside in clientKeyShare, made not having a user account not crash the app, made the PoW easier and have a cleaner interface, fixed some elements in dark mode, optimised 0px -> 0 in some CSS, updated some packages Signed-off-by: Arzumify <jliwin98@danwin1210.de> 2024-09-29 16:06:28 +01:00			`gcm, err := cipher.NewGCM(block)`
Initial commit 2024-09-28 19:41:34 +01:00			`if err != nil {`
Updated PoW library, removed unused graphics, moved checking client token validity serverside in clientKeyShare, made not having a user account not crash the app, made the PoW easier and have a cleaner interface, fixed some elements in dark mode, optimised 0px -> 0 in some CSS, updated some packages Signed-off-by: Arzumify <jliwin98@danwin1210.de> 2024-09-29 16:06:28 +01:00			`statusBox.Set("innerText", "Error creating GCM cipher: "+err.Error())`
Initial commit 2024-09-28 19:41:34 +01:00			`return`
			`}`

Updated PoW library, removed unused graphics, moved checking client token validity serverside in clientKeyShare, made not having a user account not crash the app, made the PoW easier and have a cleaner interface, fixed some elements in dark mode, optimised 0px -> 0 in some CSS, updated some packages Signed-off-by: Arzumify <jliwin98@danwin1210.de> 2024-09-29 16:06:28 +01:00			`nonce := make([]byte, gcm.NonceSize())`
			`_, err = rand.Read(nonce)`
Initial commit 2024-09-28 19:41:34 +01:00			`if err != nil {`
Updated PoW library, removed unused graphics, moved checking client token validity serverside in clientKeyShare, made not having a user account not crash the app, made the PoW easier and have a cleaner interface, fixed some elements in dark mode, optimised 0px -> 0 in some CSS, updated some packages Signed-off-by: Arzumify <jliwin98@danwin1210.de> 2024-09-29 16:06:28 +01:00			`statusBox.Set("innerText", "Error generating nonce: "+err.Error())`
Initial commit 2024-09-28 19:41:34 +01:00			`return`
			`}`

Updated PoW library, removed unused graphics, moved checking client token validity serverside in clientKeyShare, made not having a user account not crash the app, made the PoW easier and have a cleaner interface, fixed some elements in dark mode, optimised 0px -> 0 in some CSS, updated some packages Signed-off-by: Arzumify <jliwin98@danwin1210.de> 2024-09-29 16:06:28 +01:00			`// Un-base64 the client key`
			`decodedClientKey, err := base64.StdEncoding.DecodeString(localStorage.Call("getItem", "DONOTSHARE-clientKey").String())`
Initial commit 2024-09-28 19:41:34 +01:00			`if err != nil {`
Updated PoW library, removed unused graphics, moved checking client token validity serverside in clientKeyShare, made not having a user account not crash the app, made the PoW easier and have a cleaner interface, fixed some elements in dark mode, optimised 0px -> 0 in some CSS, updated some packages Signed-off-by: Arzumify <jliwin98@danwin1210.de> 2024-09-29 16:06:28 +01:00			`statusBox.Set("innerText", "Error decoding client key: "+err.Error())`
			`return`
Initial commit 2024-09-28 19:41:34 +01:00			`}`

Updated PoW library, removed unused graphics, moved checking client token validity serverside in clientKeyShare, made not having a user account not crash the app, made the PoW easier and have a cleaner interface, fixed some elements in dark mode, optimised 0px -> 0 in some CSS, updated some packages Signed-off-by: Arzumify <jliwin98@danwin1210.de> 2024-09-29 16:06:28 +01:00			`encryptedClientKey := gcm.Seal(nil, nonce, decodedClientKey, nil)`
Initial commit 2024-09-28 19:41:34 +01:00
Updated PoW library, removed unused graphics, moved checking client token validity serverside in clientKeyShare, made not having a user account not crash the app, made the PoW easier and have a cleaner interface, fixed some elements in dark mode, optimised 0px -> 0 in some CSS, updated some packages Signed-off-by: Arzumify <jliwin98@danwin1210.de> 2024-09-29 16:06:28 +01:00			`// Redirect back to the referrer with the encrypted client key`
			`redirectUri := strings.Split(js.Global().Get("document").Get("referrer").String(), "?")[0]`
			`js.Global().Get("window").Get("location").Call("replace", redirectUri+"?ecdhPublicKey="+base64.URLEncoding.EncodeToString(privateKey.PublicKey().Bytes())+"&nonce="+base64.URLEncoding.EncodeToString(nonce)+"&cipherText="+base64.URLEncoding.EncodeToString(encryptedClientKey))`
Initial commit 2024-09-28 19:41:34 +01:00			`}`