2017-06-02 05:59:27 +02:00
|
|
|
const EventEmitter = require('events');
|
2017-06-28 20:30:14 +02:00
|
|
|
const { arrayToHex } = require('./utils');
|
2017-06-02 05:59:27 +02:00
|
|
|
|
2017-06-22 23:50:57 +02:00
|
|
|
const Raven = window.Raven;
|
|
|
|
|
2017-06-02 05:59:27 +02:00
|
|
|
class FileSender extends EventEmitter {
|
|
|
|
constructor(file) {
|
|
|
|
super();
|
|
|
|
this.file = file;
|
2017-06-20 22:03:04 +02:00
|
|
|
this.iv = window.crypto.getRandomValues(new Uint8Array(12));
|
2017-06-02 05:59:27 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
static delete(fileId, token) {
|
|
|
|
return new Promise((resolve, reject) => {
|
|
|
|
if (!fileId || !token) {
|
2017-06-09 15:45:06 +02:00
|
|
|
return reject();
|
2017-06-02 05:59:27 +02:00
|
|
|
}
|
2017-06-09 19:44:12 +02:00
|
|
|
const xhr = new XMLHttpRequest();
|
2017-06-02 05:59:27 +02:00
|
|
|
xhr.open('post', '/delete/' + fileId, true);
|
|
|
|
xhr.setRequestHeader('Content-Type', 'application/json');
|
|
|
|
|
|
|
|
xhr.onreadystatechange = () => {
|
|
|
|
if (xhr.readyState === XMLHttpRequest.DONE) {
|
|
|
|
resolve();
|
|
|
|
}
|
|
|
|
|
|
|
|
if (xhr.status === 200) {
|
2017-06-21 23:31:21 +02:00
|
|
|
console.log('The file was successfully deleted.');
|
2017-06-02 05:59:27 +02:00
|
|
|
} else {
|
|
|
|
console.log('The file has expired, or has already been deleted.');
|
|
|
|
}
|
|
|
|
};
|
|
|
|
|
|
|
|
xhr.send(JSON.stringify({ delete_token: token }));
|
|
|
|
});
|
|
|
|
}
|
|
|
|
|
|
|
|
upload() {
|
|
|
|
return Promise.all([
|
2017-06-29 19:30:08 +02:00
|
|
|
window.crypto.subtle
|
|
|
|
.generateKey(
|
|
|
|
{
|
|
|
|
name: 'AES-GCM',
|
|
|
|
length: 128
|
|
|
|
},
|
|
|
|
true,
|
|
|
|
['encrypt', 'decrypt']
|
|
|
|
)
|
|
|
|
.catch(err =>
|
|
|
|
console.log('There was an error generating a crypto key')
|
|
|
|
),
|
2017-06-02 05:59:27 +02:00
|
|
|
new Promise((resolve, reject) => {
|
|
|
|
const reader = new FileReader();
|
|
|
|
reader.readAsArrayBuffer(this.file);
|
|
|
|
reader.onload = function(event) {
|
2017-07-10 20:25:03 +02:00
|
|
|
const plaintext = new Uint8Array(this.result);
|
|
|
|
window.crypto.subtle.digest('SHA-256', plaintext).then(hash => {
|
|
|
|
resolve({plaintext: plaintext, hash: new Uint8Array(hash)});
|
|
|
|
})
|
2017-06-02 05:59:27 +02:00
|
|
|
};
|
|
|
|
})
|
|
|
|
])
|
2017-07-10 20:25:03 +02:00
|
|
|
.then(([secretKey, file]) => {
|
2017-06-09 19:44:12 +02:00
|
|
|
return Promise.all([
|
2017-06-29 19:30:08 +02:00
|
|
|
window.crypto.subtle
|
|
|
|
.encrypt(
|
|
|
|
{
|
|
|
|
name: 'AES-GCM',
|
|
|
|
iv: this.iv,
|
2017-07-10 20:25:03 +02:00
|
|
|
additionalData: file.hash,
|
2017-07-07 23:59:42 +02:00
|
|
|
tagLength: 128
|
2017-06-29 19:30:08 +02:00
|
|
|
},
|
|
|
|
secretKey,
|
2017-07-10 20:25:03 +02:00
|
|
|
file.plaintext
|
2017-06-29 19:30:08 +02:00
|
|
|
)
|
|
|
|
.catch(err => console.log('Error with encrypting.')),
|
2017-07-10 20:25:03 +02:00
|
|
|
window.crypto.subtle.exportKey('jwk', secretKey),
|
|
|
|
new Promise((resolve, reject) => { resolve(file.hash) })
|
2017-06-09 19:44:12 +02:00
|
|
|
]);
|
|
|
|
})
|
2017-07-10 20:25:03 +02:00
|
|
|
.then(([encrypted, keydata, hash]) => {
|
2017-06-09 19:44:12 +02:00
|
|
|
return new Promise((resolve, reject) => {
|
|
|
|
const file = this.file;
|
2017-06-28 20:30:14 +02:00
|
|
|
const fileId = arrayToHex(this.iv);
|
2017-06-09 19:44:12 +02:00
|
|
|
const dataView = new DataView(encrypted);
|
|
|
|
const blob = new Blob([dataView], { type: file.type });
|
|
|
|
const fd = new FormData();
|
|
|
|
fd.append('data', blob, file.name);
|
2017-06-02 05:59:27 +02:00
|
|
|
|
2017-06-09 19:44:12 +02:00
|
|
|
const xhr = new XMLHttpRequest();
|
2017-06-02 05:59:27 +02:00
|
|
|
|
2017-06-09 19:44:12 +02:00
|
|
|
xhr.upload.addEventListener('progress', e => {
|
|
|
|
if (e.lengthComputable) {
|
|
|
|
const percentComplete = Math.floor(e.loaded / e.total * 100);
|
|
|
|
this.emit('progress', percentComplete);
|
|
|
|
}
|
|
|
|
});
|
2017-06-02 05:59:27 +02:00
|
|
|
|
2017-06-09 19:44:12 +02:00
|
|
|
xhr.onreadystatechange = () => {
|
|
|
|
if (xhr.readyState === XMLHttpRequest.DONE) {
|
|
|
|
// uuid field and url field
|
|
|
|
const responseObj = JSON.parse(xhr.responseText);
|
|
|
|
resolve({
|
|
|
|
url: responseObj.url,
|
|
|
|
fileId: fileId,
|
|
|
|
secretKey: keydata.k,
|
|
|
|
deleteToken: responseObj.uuid
|
|
|
|
});
|
|
|
|
}
|
|
|
|
};
|
2017-06-02 21:49:56 +02:00
|
|
|
|
2017-06-09 19:44:12 +02:00
|
|
|
xhr.open('post', '/upload/' + fileId, true);
|
2017-06-29 19:30:08 +02:00
|
|
|
xhr.setRequestHeader(
|
|
|
|
'X-File-Metadata',
|
|
|
|
JSON.stringify({
|
2017-07-10 20:25:03 +02:00
|
|
|
aad: arrayToHex(hash),
|
2017-06-29 19:30:08 +02:00
|
|
|
iv: fileId,
|
|
|
|
filename: file.name
|
|
|
|
})
|
|
|
|
);
|
2017-06-09 19:44:12 +02:00
|
|
|
xhr.send(fd);
|
|
|
|
});
|
2017-06-22 23:50:57 +02:00
|
|
|
})
|
2017-06-23 21:17:47 +02:00
|
|
|
.catch(err => {
|
|
|
|
Raven.captureException(err);
|
2017-06-22 23:50:57 +02:00
|
|
|
return Promise.reject(err);
|
2017-06-02 05:59:27 +02:00
|
|
|
});
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
module.exports = FileSender;
|