Updated PoW library, removed unused graphics, moved checking client token validity serverside in clientKeyShare, made not having a user account not crash the app, made the PoW easier and have a cleaner interface, fixed some elements in dark mode, optimised 0px -> 0 in some CSS, updated some packages

Signed-off-by: Arzumify <jliwin98@danwin1210.de>
This commit is contained in:
Tracker-Friendly 2024-09-29 16:06:28 +01:00
parent 29faa02dbb
commit 5b53e5e56f
13 changed files with 354 additions and 497 deletions

View File

@ -3,9 +3,9 @@ module git.ailur.dev/ailur/fulgens
go 1.23.0
require (
git.ailur.dev/ailur/pow-argon2 v0.0.0-20240922143345-8f9af6dce3a5
git.ailur.dev/ailur/pow v0.0.0-20240929101731-4d0b2593b7dd
github.com/cespare/xxhash/v2 v2.3.0
github.com/go-chi/chi v1.5.5
github.com/go-chi/chi/v5 v5.1.0
github.com/go-playground/validator/v10 v10.22.1
github.com/golang-jwt/jwt v3.2.2+incompatible
github.com/google/uuid v1.6.0

View File

@ -1,5 +1,5 @@
git.ailur.dev/ailur/pow-argon2 v0.0.0-20240922143345-8f9af6dce3a5 h1:QGICG5QsXtGVDV0YjR4bXiEV2kWQ96riPR9qFWuFpr4=
git.ailur.dev/ailur/pow-argon2 v0.0.0-20240922143345-8f9af6dce3a5/go.mod h1:dDulL+Bfr47BPmvSPRkRD3uOVNsfM6yOTwhdAkctZU4=
git.ailur.dev/ailur/pow v0.0.0-20240929101731-4d0b2593b7dd h1:yJRi9yGRICOb6NSIE9dBRbHsWU+jSUEeAFohVW59n38=
git.ailur.dev/ailur/pow v0.0.0-20240929101731-4d0b2593b7dd/go.mod h1:BHl7H6B6uN+q2cCCUlno6JMhqLa2A52wkbAdJbq2izA=
github.com/cespare/xxhash/v2 v2.3.0 h1:UL815xU9SqsFlibzuggzjXhog7bL6oX9BbNZnL2UFvs=
github.com/cespare/xxhash/v2 v2.3.0/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
@ -10,6 +10,8 @@ github.com/gabriel-vasile/mimetype v1.4.3 h1:in2uUcidCuFcDKtdcBxlR0rJ1+fsokWf+uq
github.com/gabriel-vasile/mimetype v1.4.3/go.mod h1:d8uq/6HKRL6CGdk+aubisF/M5GcPfT7nKyLpA0lbSSk=
github.com/go-chi/chi v1.5.5 h1:vOB/HbEMt9QqBqErz07QehcOKHaWFtuj87tTDVz2qXE=
github.com/go-chi/chi v1.5.5/go.mod h1:C9JqLr3tIYjDOZpzn+BCuxY8z8vmca43EeMgyZt7irw=
github.com/go-chi/chi/v5 v5.1.0 h1:acVI1TYaD+hhedDJ3r54HyA6sExp3HfXq7QWEEY/xMw=
github.com/go-chi/chi/v5 v5.1.0/go.mod h1:DslCQbL2OYiznFReuXYUmQ2hGd1aDpCnlMNITLSKoi8=
github.com/go-playground/assert/v2 v2.2.0 h1:JvknZsQTYeFEAhQwI4qEt9cyV5ONwRHC+lYKSsYSR8s=
github.com/go-playground/assert/v2 v2.2.0/go.mod h1:VDjEfimB/XKnb+ZQfWdccd7VUvScMdVu0Titje2rxJ4=
github.com/go-playground/locales v0.14.1 h1:EWaQ/wswjilfKLTECiXz7Rh+3BjFhfDFKv/oXslEjJA=

View File

@ -1,7 +1,7 @@
package library
import (

View File

@ -18,7 +18,7 @@ import (

View File

@ -4,9 +4,7 @@ import (
// Fulgens libraries
authLibrary "git.ailur.dev/ailur/fulgens/services-src/auth/library"
// First-party libraries
pow "git.ailur.dev/ailur/pow-argon2/library"
// Standard libraries
@ -417,9 +415,58 @@ func Main(information library.ServiceInitializationInformation) {
logFunc(err.Error(), 1, information)
// Parse the JWT from the query string
if r.URL.Query().Get("token") == "" {
renderString(400, w, "No token provided", information)
// Verify the JWT
_, claims, ok := verifyJwt(strings.TrimPrefix(r.Header.Get("Authorization"), "Bearer "), publicKey, mem)
if !ok {
renderString(401, w, "Invalid token", information)
// Check if they have the clientKeyShare scope
var scopes string
err = conn.QueryRow("SELECT scopes FROM oauth WHERE appId = ?", claims["aud"]).Scan(&scopes)
if err != nil {
renderString(500, w, "Sorry, something went wrong on our end. Error code: 20. Please report to the administrator.", information)
logFunc(err.Error(), 2, information)
// Unmarshal the scopes
var scopesArray []string
err = json.Unmarshal([]byte(scopes), &scopesArray)
if err != nil {
renderString(500, w, "Sorry, something went wrong on our end. Error code: 21. Please report to the administrator.", information)
logFunc(err.Error(), 2, information)
// Check if the clientKeyShare scope is present
var hasClientKeyShare bool
for _, scope := range scopesArray {
if scope == "clientKeyShare" {
hasClientKeyShare = true
if !hasClientKeyShare {
renderString(403, w, "Missing scope", information)
// Check it's not an openid token
if claims["isOpenID"] == true {
renderString(400, w, "Invalid token", information)
} else {
renderTemplate(200, w, map[string]interface{}{
"identifier": identifier,
}, "clientKeyShare.html", information)
router.Get("/.well-known/openid-configuration", func(w http.ResponseWriter, r *http.Request) {
@ -520,24 +567,9 @@ func Main(information library.ServiceInitializationInformation) {
// Check if the PoW is spent
hash := make([]byte, 8)
binary.LittleEndian.PutUint64(hash, xxhash.Sum64String(data.ProofOfWork))
_, err = mem.Exec("INSERT INTO spent (hash, expires) VALUES (?, ?)", hash, time.Now().Unix()+60)
if err != nil {
if strings.Contains(err.Error(), "UNIQUE constraint failed") {
renderJSON(409, w, map[string]interface{}{"error": "Proof of work already spent"}, information)
} else {
renderJSON(500, w, map[string]interface{}{"error": "Internal server error", "code": "07"}, information)
logFunc(err.Error(), 2, information)
// Check if the difficulty, timestamp and resource are correct
powSlice := strings.Split(data.ProofOfWork, ":")
if powSlice[0] != "3" || powSlice[3] != "fg-auth-signup" {
if powSlice[0] != "2" || powSlice[3] != "fg-auth-signup" {
renderJSON(400, w, map[string]interface{}{"error": "Invalid PoW"}, information)
@ -554,11 +586,26 @@ func Main(information library.ServiceInitializationInformation) {
// Verify the PoW
if !pow.VerifyPoW(data.ProofOfWork) {
if !ailur_pow.VerifyPoW(data.ProofOfWork) {
renderJSON(400, w, map[string]interface{}{"error": "Invalid PoW"}, information)
// Check if the PoW is spent
hash := make([]byte, 8)
binary.LittleEndian.PutUint64(hash, xxhash.Sum64String(data.ProofOfWork))
_, err = mem.Exec("INSERT INTO spent (hash, expires) VALUES (?, ?)", hash, time.Now().Unix()+60)
if err != nil {
if strings.Contains(err.Error(), "UNIQUE constraint failed") {
renderJSON(400, w, map[string]interface{}{"error": "Proof of work already spent"}, information)
} else {
renderJSON(500, w, map[string]interface{}{"error": "Internal server error", "code": "07"}, information)
logFunc(err.Error(), 2, information)
// Decode the password
password, err := base64.StdEncoding.DecodeString(data.Password)
if err != nil {
@ -858,65 +905,6 @@ func Main(information library.ServiceInitializationInformation) {
renderJSON(200, w, map[string]interface{}{"username": username, "sub": uuid.Must(uuid.FromBytes(userId)).String()}, information)
router.Get("/api/oauth/clientKeyShare", func(w http.ResponseWriter, r *http.Request) {
defer func(Body io.ReadCloser) {
err := Body.Close()
if err != nil {
logFunc(err.Error(), 1, information)
// Parse the JWT
if r.Header.Get("Authorization") == "" {
renderJSON(401, w, map[string]interface{}{"error": "No token provided"}, information)
// Verify the JWT
_, claims, ok := verifyJwt(strings.TrimPrefix(r.Header.Get("Authorization"), "Bearer "), publicKey, mem)
if !ok {
renderJSON(401, w, map[string]interface{}{"error": "Invalid token"}, information)
// Check if they have the clientKeyShare scope
var scopes string
err = conn.QueryRow("SELECT scopes FROM oauth WHERE appId = ?", claims["aud"]).Scan(&scopes)
if err != nil {
renderJSON(500, w, map[string]interface{}{"error": "Internal server error", "code": "20"}, information)
logFunc(err.Error(), 2, information)
// Unmarshal the scopes
var scopesArray []string
err = json.Unmarshal([]byte(scopes), &scopesArray)
if err != nil {
renderJSON(500, w, map[string]interface{}{"error": "Internal server error", "code": "21"}, information)
logFunc(err.Error(), 2, information)
// Check if the clientKeyShare scope is present
var hasClientKeyShare bool
for _, scope := range scopesArray {
if scope == "clientKeyShare" {
hasClientKeyShare = true
if !hasClientKeyShare {
renderJSON(403, w, map[string]interface{}{"error": "Missing scope"}, information)
// Check it's not an openid token
if claims["isOpenID"] == true {
renderJSON(401, w, map[string]interface{}{"error": "Invalid token"}, information)
} else {
renderJSON(200, w, map[string]interface{}{"key": publicKey}, information)
router.Post("/api/authorize", func(w http.ResponseWriter, r *http.Request) {
defer func(Body io.ReadCloser) {
err := Body.Close()

View File

@ -3,7 +3,6 @@ module git.ailur.dev/fulgens/services-src/auth/resources-src
go 1.23.0
require (
git.ailur.dev/ailur/pow-argon2 v0.0.0-20240922143345-8f9af6dce3a5
github.com/cespare/xxhash/v2 v2.3.0
golang.org/x/crypto v0.27.0

View File

@ -1,5 +1,5 @@
git.ailur.dev/ailur/pow-argon2 v0.0.0-20240922143345-8f9af6dce3a5 h1:QGICG5QsXtGVDV0YjR4bXiEV2kWQ96riPR9qFWuFpr4=
git.ailur.dev/ailur/pow-argon2 v0.0.0-20240922143345-8f9af6dce3a5/go.mod h1:dDulL+Bfr47BPmvSPRkRD3uOVNsfM6yOTwhdAkctZU4=
git.ailur.dev/ailur/pow v0.0.0-20240929101731-4d0b2593b7dd h1:yJRi9yGRICOb6NSIE9dBRbHsWU+jSUEeAFohVW59n38=
git.ailur.dev/ailur/pow v0.0.0-20240929101731-4d0b2593b7dd/go.mod h1:BHl7H6B6uN+q2cCCUlno6JMhqLa2A52wkbAdJbq2izA=
github.com/cespare/xxhash/v2 v2.3.0 h1:UL815xU9SqsFlibzuggzjXhog7bL6oX9BbNZnL2UFvs=
github.com/cespare/xxhash/v2 v2.3.0/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
golang.org/x/crypto v0.27.0 h1:GXm2NjJrPaiv/h1tb2UH8QfgC/hOf/+z0p6PT8o1w7A=

View File

@ -11,6 +11,9 @@
--hover-nonimportant-theme-color: #dbdbdb;
--nonimportant-text-color: #000;
--inOutDiv: #fafafa;
--disabled: lightgray;
--disabled-hover: #a2a0a0;
--disabled-text-color: gray;
/* dark mode */
@ -21,8 +24,11 @@
--inOutDiv: #2d2f31;
--text-color: #ffffff;
--editor: #1E1E1E;
--nonimporant-theme-color: #8E8E8E;
--nonimportant-text-color: #fff;
--border-color: #393b3d;
--disabled: #606060;
--disabled-hover: #737373;
.inOutDiv p {
@ -46,6 +52,8 @@ h2,
h6 {
color: var(--text-color);
white-space: break-spaces;
@ -90,11 +98,43 @@ input {
min-width: 20px;
.inputBox .captchaDiv {
background-color: var(--editor);
height: 32px;
width: calc(100% - 15px);
margin: 0 5px 0 5px;
border-radius: 8px;
border: 1px var(--border-color) solid;
display: flex;
.inputBox .captchaDiv button {
background-color: var(--editor);
color: var(--text-color);
border-right: 1px solid var(--border-color);
border-radius: 0;
padding: 0 10px 0 0;
margin: 0 0 0 10px;
.inputBox .captchaDiv .vAlign {
margin-left: 5px;
.inputBox .captchaDiv .vAlign span {
font-size: 14px;
.inputBox input {
margin-left: 5px;
margin-right: 0;
.inputBox input:disabled {
background-color: var(--disabled);
color: var(--disabled-text-color);
@media only screen and (max-width: 600px) {
body {
background-color: var(--inOutDiv);
@ -210,6 +250,15 @@ button {
transition: 0.125s;
button:disabled {
background-color: var(--disabled);
color: var(--disabled-text-color);
button:disabled:hover {
background-color: var(--disabled-hover);
button:hover {
background-color: var(--hover-theme-color);
transition: all 0.3s ease 0s;

View File

@ -1,174 +0,0 @@
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
<!-- Generator: Adobe Illustrator 26.0.1, SVG Export Plug-In . SVG Version: 6.00 Build 0) -->
viewBox="0 0 1000000 1000000"
id="defs124" />
d="m 312.793,520.329 c 0.704,14.774 15.634,7.817 22.122,3.283 6.488,-4.534 7.817,-0.704 8.755,-9.381 0.576,-5.661 0.811,-11.352 0.704,-17.041 -9.851,-1.008 -19.74,1.513 -27.907,7.114 -4.065,2.97 -11.647,12.351 -3.752,15.634"
id="path92" />
d="m 320.454,531.039 c -1.461,0.02 -2.906,-0.301 -4.221,-0.938 -3.063,-1.768 -4.921,-5.063 -4.847,-8.599 -1.966,-0.979 -3.293,-2.897 -3.518,-5.081 0.567,-5.266 3.427,-10.013 7.817,-12.976 8.433,-5.806 18.662,-8.411 28.845,-7.348 h 1.173 v 1.173 c 0.163,4.46 0.033,8.925 -0.391,13.367 v 3.909 c -0.391,6.097 -1.563,7.035 -4.69,7.817 -1.668,0.516 -3.249,1.281 -4.69,2.267 -4.498,3.473 -9.841,5.686 -15.478,6.409 z m 19.855,-32.285 c -8.21,-0.127 -16.251,2.335 -22.982,7.035 -3.535,2.441 -5.91,6.229 -6.566,10.475 0.196,1.491 1.229,2.737 2.658,3.205 h 0.782 v 0.86 c -0.23,2.761 1.019,5.438 3.283,7.035 5.994,0.93 12.092,-0.845 16.65,-4.847 1.631,-1.144 3.422,-2.039 5.316,-2.658 2.032,-0.703 2.501,-0.86 2.814,-5.706 v -3.909 c 0.366,-3.897 0.522,-7.812 0.469,-11.726 h -2.423 v 0.236 z"
id="path93" />
d="m 312.793,520.329 c 2.234,-0.495 4.274,-1.637 5.863,-3.283"
id="path94" />
d="m 312.793,521.736 c -0.756,0.237 -1.56,-0.182 -1.798,-0.938 -0.237,-0.755 0.183,-1.56 0.938,-1.798 h 0.938 c 1.652,-0.383 3.15,-1.255 4.299,-2.501 0.475,-0.626 1.367,-0.749 1.993,-0.274 0.626,0.475 0.749,1.367 0.274,1.993 v 0 c -1.478,1.698 -3.443,2.899 -5.628,3.44 h -1.016 z"
id="path95" />
d="m 346.875,344.522 c -56.518,-15.634 -14.462,-87.786 31.268,-58.237 z"
id="path96" />
d="m 347.579,346.164 h -1.094 c -16.103,-4.534 -26.031,-14.071 -27.907,-26.813 -1.356,-14.13 5.394,-27.812 17.432,-35.333 13.121,-8.301 29.982,-7.743 42.525,1.407 l 1.094,0.704 z m 7.817,-65.507 c -6.415,0.008 -12.689,1.882 -18.058,5.394 -11.143,6.915 -17.411,19.541 -16.181,32.597 1.72,11.335 10.475,19.934 24.78,24.233 l 29.705,-56.049 c -6.009,-3.758 -12.926,-5.812 -20.012,-5.941 z"
id="path97" />
d="m 597.961,280.891 c 44.714,-31.268 85.128,39.086 33.145,57.299 z"
id="path98" />
d="m 630.48,339.91 -34.395,-59.41 1.016,-0.704 c 11.708,-9.385 27.933,-10.745 41.04,-3.44 12.329,7.221 19.552,20.759 18.683,35.021 -0.782,7.817 -5.003,21.184 -25.249,28.142 z m -30.643,-58.628 31.894,55.189 c 11.834,-3.209 20.605,-13.18 22.279,-25.327 0.835,-13.209 -5.849,-25.761 -17.276,-32.441 -11.685,-6.699 -26.258,-5.681 -36.897,2.579 z"
id="path99" />
d="m 607.576,701.999 c 11.335,7.035 32.128,28.298 15.087,38.617 -16.338,15.009 -25.562,-16.494 -39.945,-20.794 5.58,-9.016 14.528,-15.432 24.858,-17.823 z"
id="path100" />
d="m 613.986,746.009 h -0.625 c -6.488,-0.391 -11.804,-6.723 -16.963,-12.742 -3.565,-5.187 -8.413,-9.361 -14.071,-12.117 l -1.876,-0.547 1.173,-1.954 c 5.815,-9.275 15.059,-15.878 25.718,-18.37 h 1.016 c 7.27,4.534 22.279,17.667 22.201,29.549 -0.092,4.782 -2.791,9.131 -7.035,11.335 -2.423,2.801 -5.847,4.541 -9.538,4.846 z m -29.08,-26.891 c 5.303,3.119 9.906,7.297 13.524,12.273 3.418,5.614 8.747,9.806 15.009,11.804 2.993,-0.128 5.809,-1.451 7.817,-3.674 3.476,-1.699 5.709,-5.2 5.785,-9.068 0,-9.537 -12.038,-21.497 -20.403,-26.891 -8.911,2.291 -16.638,7.842 -21.653,15.556 z"
id="path101" />
d="m 622.663,742.101 c -0.531,-0.004 -1.015,-0.306 -1.251,-0.782 -0.827,-1.73 -1.557,-3.505 -2.189,-5.316 -0.951,-3.538 -2.718,-6.805 -5.159,-9.537 -0.561,-0.54 -0.579,-1.432 -0.039,-1.993 0.54,-0.561 1.432,-0.579 1.993,-0.039 2.699,2.947 4.679,6.479 5.785,10.319 0.613,1.705 1.317,3.375 2.111,5.003 0.34,0.691 0.062,1.527 -0.625,1.876 z"
id="path102" />
d="m 404.566,725.997 c -13.367,2.032 -20.872,14.071 -31.972,20.168 -3.934,3.631 -10.066,3.386 -13.697,-0.547 -0.839,-0.909 -1.497,-1.97 -1.937,-3.127 -1.572,0.037 -3.073,-0.655 -4.065,-1.876 -9.693,-15.634 10.084,-26.5 20.481,-34.161 14.617,-2.814 23.607,9.615 31.19,19.543 z"
id="path103" />
d="m 365.558,749.918 c -0.83,0.11 -1.671,0.11 -2.501,0 -2.964,-0.959 -5.416,-3.073 -6.801,-5.863 -1.532,-0.011 -2.962,-0.77 -3.83,-2.032 -9.381,-14.774 6.566,-25.953 17.119,-33.379 l 3.674,-2.658 c 14.774,-2.971 24.155,9.224 31.659,19.074 l 2.111,2.814 h -2.345 c -7.543,1.802 -14.409,5.737 -19.777,11.335 -3.6,3.31 -7.529,6.243 -11.726,8.755 -2.321,1.283 -4.93,1.956 -7.583,1.954 z m -9.38,-9.068 c 0.541,-0.119 1.101,-0.119 1.642,0 h 0.391 l 0.625,1.251 c 1.027,2.234 2.917,3.955 5.237,4.768 2.75,0.413 5.554,-0.259 7.817,-1.876 4.054,-2.423 7.852,-5.252 11.335,-8.442 5.276,-5.274 11.735,-9.214 18.839,-11.491 -7.192,-9.38 -15.634,-19.543 -27.907,-17.198 l -3.518,2.501 c -10.788,7.817 -24.155,17.041 -16.416,29.471 0.351,0.596 0.956,0.999 1.642,1.094 z"
id="path104" />
d="m 357.194,743.977 c -0.776,0.045 -1.441,-0.548 -1.486,-1.323 -0.011,-0.188 0.016,-0.376 0.079,-0.553 0.576,-3.755 2.141,-7.289 4.534,-10.24 1.132,-1.552 2.126,-3.2 2.97,-4.925 0.324,-0.712 1.164,-1.027 1.876,-0.704 0.712,0.323 1.027,1.164 0.704,1.876 -0.908,1.889 -1.98,3.694 -3.205,5.394 -2.064,2.656 -3.386,5.812 -3.83,9.146 -0.032,0.776 -0.688,1.38 -1.464,1.348 -0.06,-0.003 -0.119,-0.009 -0.178,-0.019 z m -7.974,-419.31 c -7.817,-3.909 -12.898,-9.302 -8.364,-17.901 4.534,-8.599 12.038,-7.114 19.543,-3.205 z m 270.082,-7.505 c 7.817,-3.909 12.898,-9.302 8.364,-17.901 -4.534,-8.599 -12.038,-7.114 -19.543,-3.205 z"
id="path105" />
d="m 670.66,518.453 c -0.704,14.774 -15.634,7.817 -22.122,3.283 -6.488,-4.534 -7.817,-0.704 -8.755,-9.381 -0.576,-5.661 -0.811,-11.352 -0.703,-17.041 9.851,-1.008 19.74,1.513 27.907,7.114 4.065,2.971 11.648,12.351 3.752,15.634"
id="path106" />
d="m 662.999,528.85 c -5.373,-0.584 -10.509,-2.521 -14.931,-5.628 -1.441,-0.986 -3.022,-1.75 -4.69,-2.267 -3.127,-1.094 -4.299,-2.032 -4.69,-7.817 v -3.909 c -0.424,-4.442 -0.554,-8.908 -0.391,-13.367 v -1.876 h 1.173 c 10.183,-1.063 20.412,1.542 28.845,7.348 4.39,2.963 7.25,7.711 7.817,12.976 -0.225,2.184 -1.552,4.102 -3.518,5.081 0.074,3.536 -1.783,6.831 -4.847,8.599 -1.487,0.696 -3.131,0.992 -4.768,0.86 z m -22.748,-32.207 c -0.053,3.914 0.104,7.828 0.469,11.726 v 3.909 c 0,4.768 0.704,4.925 2.814,5.706 1.893,0.619 3.685,1.514 5.316,2.658 4.553,4.011 10.656,5.788 16.65,4.847 2.264,-1.598 3.513,-4.274 3.283,-7.035 v -0.938 h 0.782 c 1.429,-0.468 2.462,-1.714 2.658,-3.205 -0.657,-4.245 -3.031,-8.034 -6.566,-10.475 -7.406,-5.214 -16.366,-7.751 -25.406,-7.193 z"
id="path107" />
d="m 670.66,518.453 c -2.208,-0.429 -4.244,-1.488 -5.863,-3.049"
id="path108" />
d="m 670.66,519.86 h -1.485 c -2.189,-0.696 -4.103,-2.064 -5.472,-3.909 -0.475,-0.626 -0.352,-1.518 0.274,-1.993 0.626,-0.475 1.518,-0.352 1.993,0.274 1.149,1.247 2.648,2.118 4.299,2.501 h 0.938 c 0.863,0.151 1.441,0.974 1.29,1.837 -0.151,0.864 -0.974,1.441 -1.837,1.29 z"
id="path109" />
d="m 486.098,251.03 c 56.596,0 109.44,7.817 137.268,62.537 24.78,60.895 15.634,126.637 19.777,190.972 3.283,55.267 10.475,119.133 -15.165,170.413 -26.813,53.782 -94.509,67.149 -150.01,65.351 -43.619,-1.563 -96.307,-15.634 -120.931,-55.658 -28.923,-46.903 -15.243,-116.319 -13.133,-168.302 2.501,-61.599 -16.729,-123.432 3.518,-183.78 21.028,-62.537 77.624,-76.686 138.597,-81.532"
id="path110" />
d="m 487.583,742.101 h -9.693 c -23.301,-0.655 -46.323,-5.254 -68.087,-13.602 -22.158,-8.032 -41.113,-23.036 -54.016,-42.76 -23.451,-37.835 -19.23,-90.053 -15.634,-136.174 0.938,-11.569 1.798,-22.591 2.189,-32.91 0.414,-21.873 -0.526,-43.751 -2.814,-65.507 -3.283,-39.086 -6.723,-79.5 6.41,-118.664 8.567,-27.82 28.42,-50.764 54.72,-63.24 21.106,-10.319 46.903,-16.26 84.816,-19.23 55.814,-0.391 110.847,7.426 139.145,62.85 18.136,44.558 18.37,92.398 18.683,138.676 0,17.354 0,35.255 1.251,52.766 0,5.316 0.625,10.709 1.016,16.103 3.283,50.733 7.035,108.345 -16.338,154.935 -29.238,58.314 -102.718,66.757 -141.648,66.757 z m -1.485,-489.664 c -58.863,5.003 -116.24,17.667 -137.347,80.594 -12.976,38.617 -9.537,78.718 -6.332,117.257 2.296,21.861 3.236,43.843 2.814,65.82 -0.391,10.397 -1.329,21.419 -2.189,33.066 -3.596,45.652 -7.817,97.479 15.087,134.454 9.615,15.634 40.571,52.14 119.836,54.72 34.317,1.251 117.257,-2.658 148.525,-64.726 22.982,-45.965 19.308,-103.108 16.025,-153.528 0,-5.472 -0.704,-10.866 -1.016,-16.103 -0.86,-17.041 -1.251,-35.021 -1.251,-52.375 0,-45.965 -0.469,-93.805 -18.448,-137.581 -11.565,-23.797 -32.039,-42.079 -56.987,-50.889 -25.435,-8.035 -52.059,-11.657 -78.717,-10.709 z"
id="path111" />
d="m 496.026,326.934 c 10.162,59.019 106.625,43.463 92.789,-16.103 -12.429,-53.391 -96.151,-38.617 -92.789,16.103"
id="path112" />
d="m 541.912,365.472 c -6.009,0.025 -11.98,-0.952 -17.667,-2.892 -15.784,-5.222 -27.237,-18.948 -29.549,-35.411 -1.062,-12.778 3.373,-25.403 12.195,-34.708 8.366,-8.583 19.383,-14.091 31.268,-15.634 10.893,-1.724 22.051,0.2 31.737,5.472 10.451,6.104 17.812,16.364 20.246,28.22 4.292,15.119 -0.375,31.364 -12.038,41.9 -10.085,8.588 -22.945,13.226 -36.192,13.053 z m -44.479,-38.694 c 2.183,15.449 12.937,28.324 27.751,33.223 17.592,5.883 36.978,2.213 51.202,-9.693 10.742,-9.913 15.054,-24.992 11.178,-39.086 -4.99,-22.11 -26.712,-36.199 -48.935,-31.737 -24.239,2.074 -42.465,22.998 -41.196,47.293 z"
id="path113" />
d="m 380.723,336.549 c 13.133,51.358 95.369,38.147 92.32,-13.367 -3.674,-61.756 -104.905,-50.108 -92.32,13.367"
id="path114" />
d="m 424.656,370.397 c -8.362,0.063 -16.608,-1.952 -23.999,-5.863 -10.701,-5.799 -18.411,-15.899 -21.184,-27.751 -4.163,-16.329 1.579,-33.587 14.696,-44.167 15.808,-12.062 36.86,-14.746 55.189,-7.035 14.958,6.54 24.731,21.199 25.015,37.522 1.642,27.36 -20.09,43.307 -40.883,46.903 -2.931,0.358 -5.884,0.489 -8.834,0.391 z m -42.369,-34.161 c 5.629,22.608 28.348,36.525 51.046,31.268 19.699,-3.127 40.258,-18.136 38.695,-43.854 -0.193,-15.363 -9.369,-29.189 -23.451,-35.333 -17.426,-7.314 -37.434,-4.75 -52.453,6.723 -12.199,9.896 -17.589,25.944 -13.837,41.196 z"
id="path115" />
d="m 507.361,398.148 c 0.752,8.139 0.752,16.329 0,24.468 -2.289,2.897 -5.528,4.891 -9.146,5.628 -4.521,-0.694 -8.379,-3.639 -10.24,-7.817 -0.502,-9.228 -0.267,-18.482 0.704,-27.673 z"
id="path116" />
d="m 499.074,429.416 h -0.391 c -5.052,-0.785 -9.339,-4.126 -11.335,-8.833 -0.649,-6.315 -0.649,-12.68 0,-18.996 0,-2.892 0.469,-5.941 0.547,-8.911 v -2.345 l 21.106,6.488 v 1.329 c 0,2.501 0,5.159 0.391,7.817 0.706,5.58 0.706,11.227 0,16.807 v 0.391 c -1.655,2.703 -4.334,4.62 -7.426,5.316 l -2.423,0.938 h -0.469 z m -9.067,-9.849 c 1.588,3.625 4.866,6.229 8.755,6.957 l 2.189,-0.86 c 2.356,-0.567 4.401,-2.024 5.706,-4.065 0.62,-5.193 0.62,-10.441 0,-15.634 0,-2.423 0,-4.768 -0.391,-7.114 l -15.634,-4.768 c 0,2.423 0,4.847 -0.469,7.192 -0.693,6.048 -0.771,12.15 -0.235,18.214 z"
id="path117" />
id="ellipse117" />
id="ellipse118" />
id="ellipse119" />
id="ellipse120" />
d="m 468.275,396.975 c -6.097,14.696 3.361,44.088 19.855,22.435 -0.502,-9.228 -0.267,-18.482 0.704,-27.673 z"
id="path120" />
d="m 476.796,428.556 c -1.43,0.014 -2.836,-0.365 -4.065,-1.094 -6.645,-3.83 -10.788,-19.543 -6.097,-31.268 v -0.625 l 23.451,-5.941 v 1.876 c 0,3.049 0,6.097 -0.547,8.99 -0.637,6.133 -0.637,12.315 0,18.448 v 1.016 c -2.571,4.791 -7.337,8.007 -12.742,8.598 z m -7.739,-30.408 c -3.361,9.146 -0.704,23.451 5.159,26.813 4.221,2.423 8.911,-1.798 12.195,-6.019 -0.595,-6.135 -0.595,-12.313 0,-18.448 0,-2.267 0,-4.69 0.469,-7.035 z"
id="path121" />
d="m 470.073,368.677 c -9.842,0.937 -17.061,9.674 -16.125,19.517 0.181,1.897 0.663,3.753 1.429,5.498 7.817,14.071 25.171,-1.251 35.959,0 12.429,0 22.67,13.133 32.676,2.345 11.1,-12.038 -4.768,-23.451 -17.198,-29.001 z"
id="path122" />
d="m 515.178,401.978 c -3.974,-0.331 -7.848,-1.419 -11.413,-3.205 -3.866,-1.909 -8.055,-3.075 -12.351,-3.44 -4.477,-0.002 -8.902,0.958 -12.976,2.814 -8.755,3.049 -18.683,6.488 -24.311,-3.596 -2.839,-5.104 -2.839,-11.312 0,-16.416 3.084,-5.967 8.956,-9.99 15.634,-10.709 l 37.6,-1.642 c 9.224,3.909 19.777,11.022 21.575,19.308 1.099,8.172 -4.635,15.689 -12.807,16.788 -0.316,0.044 -0.633,0.076 -0.951,0.098 z m -23.452,-9.459 c 4.622,0.375 9.131,1.622 13.289,3.674 7.035,2.97 12.586,5.237 18.214,-0.86 2.612,-2.4 3.82,-5.966 3.205,-9.459 -1.563,-7.192 -11.491,-13.758 -19.621,-17.198 l -36.35,1.485 c -5.68,0.696 -10.651,4.147 -13.289,9.224 -2.351,4.257 -2.351,9.423 0,13.68 4.456,7.817 12.429,5.237 20.95,2.345 4.279,-1.913 8.915,-2.899 13.602,-2.891 z"
id="path123" />
d="m 468.275,368.13 c -0.86,-19.543 36.506,-22.044 40.883,-5.628 4.378,16.416 -39.085,20.168 -40.883,5.628 z"
id="path124" />


Width:  |  Height:  |  Size: 14 KiB

View File

@ -18,16 +18,27 @@
<p id="statusBox"></p>
<table id="inputContainer">
<td><span id="inputNameBox">Username:</span></td>
<td class="inputBox"><input id="usernameBox" type="text" placeholder="Username"></td>
<td class="inputBox">
<div class="captchaDiv">
<button id="captchaButton">Start</button>
<div class="vAlign">
<span id="captchaStatus">Loading...</span>
<td><span id="inputPasswordBox">Password: </span></td>
<td class="inputBox"><input id="passwordBox" type="password" placeholder="Password"><br></td>
<td class="inputBox"><input disabled id="usernameBox" type="text" placeholder="Put your username here"><br></td>
<td><span>Password: </span></td>
<td class="inputBox"><input disabled id="passwordBox" type="password" placeholder="Must be at least 8 characters"><br></td>
<button id="signupButton">Signup</button>
<button id="signupButton" disabled>Signup</button>
<button id="loginButton" class="unimportant">Login</button>
<a href="/privacy">Privacy &amp; Terms</a>

View File

@ -1,15 +1,11 @@
package main
import (
@ -24,102 +20,13 @@ func main() {
statusBox := js.Global().Get("document").Call("getElementById", "statusBox")
// Check if the token is valid
requestUri, err := url.JoinPath(js.Global().Get("window").Get("location").Get("origin").String(), "/api/loggedIn")
if err != nil {
statusBox.Set("innerText", "Error joining URL: "+err.Error())
loggedInBody := map[string]interface{}{
"token": localStorage.Call("getItem", "DONOTSHARE-secretKey").String(),
// Marshal the body
body, err := json.Marshal(loggedInBody)
if err != nil {
statusBox.Set("innerText", "Error marshaling signup body: "+err.Error())
response, err := http.Post(requestUri, "application/json", bytes.NewReader(body))
if err != nil {
statusBox.Set("innerText", "Error contacting server: "+err.Error())
// Check if the response is 200
if response.StatusCode == 401 {
// Close the response body
err = response.Body.Close()
if err != nil {
fmt.Println("Could not close response body: " + err.Error() + ", memory leaks may occur")
// Redirect to log-out if not signed in
js.Global().Get("window").Get("location").Call("replace", "/logout"+js.Global().Get("window").Get("location").Get("search").String())
} else if response.StatusCode == 500 {
// Read the response
var responseMap map[string]interface{}
decoder := json.NewDecoder(response.Body)
err = decoder.Decode(&responseMap)
if err != nil {
js.Global().Call("alert", "Error decoding server response: "+err.Error())
// Close the response body
err = response.Body.Close()
if err != nil {
fmt.Println("Could not close response body: " + err.Error() + ", memory leaks may occur")
// Alert the user if the server is down
js.Global().Call("alert", "Something went wrong! (error code: "+responseMap["code"].(string)+")")
// Close the response body
err = response.Body.Close()
if err != nil {
fmt.Println("Could not close response body: " + err.Error() + ", memory leaks may occur")
// Parse the query string
query, err := url.ParseQuery(strings.TrimPrefix(js.Global().Get("window").Get("location").Get("search").String(), "?"))
if err != nil {
statusBox.Set("innerText", "Error parsing query: "+err.Error())
// Check if the access token we were given is valid and that the scope is correct
requestUri, err = url.JoinPath(js.Global().Get("window").Get("location").Get("origin").String(), "/api/oauth/clientKeyShare")
if err != nil {
statusBox.Set("innerText", "Error joining URL: "+err.Error())
request, err := http.NewRequest("GET", requestUri, nil)
if err != nil {
statusBox.Set("innerText", "Error creating request: "+err.Error())
request.Header.Set("Authorization", "Bearer "+query.Get("accessToken"))
response, err = http.DefaultClient.Do(request)
if err != nil {
statusBox.Set("innerText", "Error contacting server: "+err.Error())
// Close the response body
err = response.Body.Close()
if err != nil {
fmt.Println("Could not close response body: " + err.Error() + ", memory leaks may occur")
if response.StatusCode == 200 {
// Get the ECDH public key from the query string
clientKeyBytes, err := base64.URLEncoding.DecodeString(query.Get("ecdhPublicKey"))
if err != nil {
@ -180,5 +87,4 @@ func main() {
// Redirect back to the referrer with the encrypted client key
redirectUri := strings.Split(js.Global().Get("document").Get("referrer").String(), "?")[0]
js.Global().Get("window").Get("location").Call("replace", redirectUri+"?ecdhPublicKey="+base64.URLEncoding.EncodeToString(privateKey.PublicKey().Bytes())+"&nonce="+base64.URLEncoding.EncodeToString(nonce)+"&cipherText="+base64.URLEncoding.EncodeToString(encryptedClientKey))

View File

@ -155,6 +155,7 @@ func main() {
fmt.Println("Could not close response body: " + err.Error() + ", memory leaks may occur")
if response.StatusCode == 200 {
// Decode the salt
salt, err := base64.StdEncoding.DecodeString(responseMap["salt"].(string))
if err != nil {
@ -233,6 +234,13 @@ func main() {
showInput(1, inputContainer, usernameBox, signupButton, passwordBox, backButton, inputNameBox, statusBox, nextButton)
statusBox.Set("innerText", "Something went wrong! (error code: "+responseMap["code"].(string)+")")
} else if response.StatusCode != 500 {
showInput(1, inputContainer, usernameBox, signupButton, passwordBox, backButton, inputNameBox, statusBox, nextButton)
statusBox.Set("innerText", responseMap["error"].(string))
} else {
showInput(1, inputContainer, usernameBox, signupButton, passwordBox, backButton, inputNameBox, statusBox, nextButton)
statusBox.Set("innerText", "Something went wrong! (error code: "+responseMap["code"].(string)+")")

View File

@ -4,14 +4,16 @@ import (
@ -40,6 +42,21 @@ func hashPassword(password string, salt []byte) string {
// This is my code: I can re-license it I all like, despite it being MIT licensed
func pow(resource string) (string, string, error) {
initialTime := time.Now().Unix()
var timestamp [8]byte
binary.LittleEndian.PutUint64(timestamp[:], uint64(initialTime))
var nonce [16]byte
_, err := rand.Read(nonce[:])
if err != nil {
return "", "", err
return strconv.FormatInt(initialTime, 10) + ":" + hex.EncodeToString(nonce[:]) + ":" + resource + ":", hex.EncodeToString(argon2.IDKey(nonce[:], bytes.Join([][]byte{timestamp[:], []byte(resource)}, []byte{}), 1, 64*1024, 4, 32)), nil
func main() {
// Redirect to app if already signed in
localStorage := js.Global().Get("localStorage")
@ -53,6 +70,20 @@ func main() {
var signupButton = js.Global().Get("document").Call("getElementById", "signupButton")
var loginButton = js.Global().Get("document").Call("getElementById", "loginButton")
var inputContainer = js.Global().Get("document").Call("getElementById", "inputContainer")
var captchaButton = js.Global().Get("document").Call("getElementById", "captchaButton")
var captchaStatus = js.Global().Get("document").Call("getElementById", "captchaStatus")
captchaButton.Set("disabled", false)
usernameBox.Set("disabled", true)
passwordBox.Set("disabled", true)
signupButton.Set("disabled", true)
if localStorage.Call("getItem", "CONFIG-captchaStarted").IsNull() {
captchaStatus.Set("innerText", "CAPTCHA not started - start CAPTCHA to signup.")
} else {
captchaStatus.Set("innerText", "Captcha calculation paused.")
var captcha string
signupButton.Call("addEventListener", "click", js.FuncOf(func(this js.Value, args []js.Value) interface{} {
go func() {
@ -76,20 +107,8 @@ func main() {
// Start the signup process
fmt.Println("Starting signup process for user: " + username)
showElements(false, inputContainer, signupButton, loginButton)
// Wait about 10ms to allow the UI to update
var pow string
if localStorage.Call("getItem", "DEBUG-customPoW").IsNull() {
var err error
statusBox.Set("innerText", "Computing PoW Challenge...\nThe UI may be unresponsive during this time, as we are performing a lot of work! Please wait a few minutes for the process to complete.")
time.Sleep(time.Millisecond * 10)
pow, err = library.PoW(3, "fg-auth-signup")
if err != nil {
showElements(true, inputContainer, signupButton, loginButton)
statusBox.Set("innerText", "Error computing PoW challenge: "+err.Error())
} else {
pow = localStorage.Call("getItem", "DEBUG-customPoW").String()
if captcha == "" {
statusBox.Set("innerText", "You must have a valid captcha! Press the \"Start\" button to start calculating a captcha.")
// PoW challenge computed, hash password
@ -113,7 +132,7 @@ func main() {
"username": username,
"password": hashedPassword,
"salt": base64.StdEncoding.EncodeToString(salt),
"proofOfWork": pow,
"proofOfWork": captcha,
// Marshal the body
@ -170,7 +189,7 @@ func main() {
} else if response.StatusCode == 409 {
// Username taken
showElements(true, inputContainer, signupButton, loginButton)
statusBox.Set("innerText", "Username or password taken!")
statusBox.Set("innerText", "Username already taken!")
} else if response.StatusCode != 500 {
// Other error
showElements(true, inputContainer, signupButton, loginButton)
@ -190,6 +209,55 @@ func main() {
return nil
captchaInProgress := false
captchaButton.Call("addEventListener", "click", js.FuncOf(func(this js.Value, args []js.Value) interface{} {
if !captchaInProgress {
captchaInProgress = true
captchaButton.Set("innerText", "Pause")
localStorage.Call("setItem", "CONFIG-captchaStarted", "true")
go func() {
go func() {
time.Sleep(time.Minute * 5)
if captchaInProgress {
captchaStatus.Set("innerText", "Taking a long time? Try the desktop version.")
for {
if !captchaInProgress {
captchaStatus.Set("innerText", "Captcha calculation paused.")
captchaButton.Set("innerText", "Start")
} else {
captchaStatus.Set("innerText", "Calculating captcha... Stopping or refreshing will not lose progress.")
powParams, powResult, err := pow("fg-auth-signup")
if err != nil {
captchaStatus.Set("innerText", "Error calculating captcha: "+err.Error())
captchaInProgress = false
if powResult[:2] == "00" {
localStorage.Call("removeItem", "CONFIG-captchaStarted")
captcha = "2:" + powParams
captchaStatus.Set("innerText", "Captcha calculated!")
captchaButton.Set("disabled", true)
captchaButton.Set("innerText", "Start")
usernameBox.Set("disabled", false)
passwordBox.Set("disabled", false)
signupButton.Set("disabled", false)
captchaInProgress = false
} else {
captchaInProgress = false
return nil
// Wait for events
select {}