trilium/src/public/javascripts/services/protected_session.js

import treeService from './tree.js';
import utils from './utils.js';
import server from './server.js';
import protectedSessionHolder from './protected_session_holder.js';
import toastService from "./toast.js";
import ws from "./ws.js";
import appContext from "./app_context.js";

const $enterProtectedSessionButton = $("#enter-protected-session-button");
const $leaveProtectedSessionButton = $("#leave-protected-session-button");

let protectedSessionDeferred = null;

async function leaveProtectedSession() {
    if (protectedSessionHolder.isProtectedSessionAvailable()) {
        utils.reloadApp();
    }
}

/** returned promise resolves with true if new protected session was established, false if no action was necessary */
function enterProtectedSession() {
    const dfd = $.Deferred();

    if (protectedSessionHolder.isProtectedSessionAvailable()) {
        dfd.resolve(false);
    }
    else {
        // using deferred instead of promise because it allows resolving from outside
        protectedSessionDeferred = dfd;

        import("../dialogs/protected_session.js").then(dialog => dialog.show());
    }

    return dfd.promise();
}

async function setupProtectedSession(password) {
    const response = await enterProtectedSessionOnServer(password);

    if (!response.success) {
        toastService.showError("Wrong password.", 3000);
        return;
    }

    $("#container").addClass('protected-session-active');

    protectedSessionHolder.setProtectedSessionId(response.protectedSessionId);
    protectedSessionHolder.touchProtectedSession();

    appContext.triggerEvent('protectedSessionStarted');

    if (protectedSessionDeferred !== null) {
        import("../dialogs/protected_session.js").then(dialog => dialog.close());

        protectedSessionDeferred.resolve(true);
        protectedSessionDeferred = null;
    }

    $enterProtectedSessionButton.hide();
    $leaveProtectedSessionButton.show();

    toastService.showMessage("Protected session has been started.");
}

async function enterProtectedSessionOnServer(password) {
    return await server.post('login/protected', {
        password: password
    });
}

async function protectNoteAndSendToServer() {
    if (!appContext.tabManager.getActiveTabNote() || appContext.tabManager.getActiveTabNote().isProtected) {
        return;
    }

    await enterProtectedSession();

    const note = appContext.tabManager.getActiveTabNote();
    note.isProtected = true;

    await appContext.tabManager.getActiveTabContext().saveNote();
}

async function unprotectNoteAndSendToServer() {
    const activeNote = appContext.tabManager.getActiveTabNote();

    if (!activeNote.isProtected) {
        toastService.showAndLogError(`Note ${activeNote.noteId} is not protected`);

        return;
    }

    if (!protectedSessionHolder.isProtectedSessionAvailable()) {
        console.log("Unprotecting notes outside of protected session is not allowed.");
        // the reason is that it's not easy to handle even with enterProtectedSession,
        // because we would first have to make sure the note is loaded and only then unprotect
        // we used to have a bug where we would overwrite the previous note with unprotected content.

        return;
    }

    activeNote.isProtected = false;

    await appContext.tabManager.getActiveTabContext().saveNote();
}

async function protectSubtree(noteId, protect) {
    await enterProtectedSession();

    await server.put('notes/' + noteId + "/protect/" + (protect ? 1 : 0));
}

function makeToast(message, protectingLabel, text) {
    return {
        id: message.taskId,
        title: protectingLabel + " status",
        message: text,
        icon: message.data.protect ? "check-shield" : "shield"
    };
}

ws.subscribeToMessages(async message => {
    if (message.taskType !== 'protect-notes') {
        return;
    }

    const protectingLabel = message.data.protect ? "Protecting" : "Unprotecting";

    if (message.type === 'task-error') {
        toastService.closePersistent(message.taskId);
        toastService.showError(message.message);
    } else if (message.type === 'task-progress-count') {
        toastService.showPersistent(makeToast(message, protectingLabel,protectingLabel + " in progress: " + message.progressCount));
    } else if (message.type === 'task-succeeded') {
        const toast = makeToast(message, protectingLabel, protectingLabel + " finished successfully.");
        toast.closeAfter = 3000;

        toastService.showPersistent(toast);
    }
});

export default {
    protectSubtree,
    enterProtectedSession,
    leaveProtectedSession,
    protectNoteAndSendToServer,
    unprotectNoteAndSendToServer,
    setupProtectedSession
};
renamed service variables to conform to new naming scheme 2018-03-26 01:41:29 +08:00			`import treeService from './tree.js';`
using ES6 modules for whole frontend SPA app 2018-03-25 23:09:17 +08:00			`import utils from './utils.js';`
			`import server from './server.js';`
decoupled protected session holder from presentation stuff and similar things 2018-03-26 09:16:57 +08:00			`import protectedSessionHolder from './protected_session_holder.js';`
rename info service to toast service 2019-10-20 16:00:18 +08:00			`import toastService from "./toast.js";`
protect/unprotect tree reports progress via notifications 2019-10-19 15:58:18 +08:00			`import ws from "./ws.js";`
moved tab management to app context 2020-01-12 19:30:30 +08:00			`import appContext from "./app_context.js";`
using ES6 modules for whole frontend SPA app 2018-03-25 23:09:17 +08:00
on/off button for entering/leaving protected session has been changed to literal buttons 2018-11-25 21:12:33 +08:00			`const $enterProtectedSessionButton = $("#enter-protected-session-button");`
			`const $leaveProtectedSessionButton = $("#leave-protected-session-button");`
using ES6 modules for whole frontend SPA app 2018-03-25 23:09:17 +08:00
			`let protectedSessionDeferred = null;`

add switch to manually enter/leave protected session, fixes #107 2018-06-01 08:00:39 +08:00			`async function leaveProtectedSession() {`
			`if (protectedSessionHolder.isProtectedSessionAvailable()) {`
			`utils.reloadApp();`
			`}`
			`}`

fix for protected note freezing because of double initialization of CKEditor 2018-08-28 21:03:23 +08:00			`/** returned promise resolves with true if new protected session was established, false if no action was necessary */`
protected session in a dialog now works, proper reloading 2019-05-06 02:45:07 +08:00			`function enterProtectedSession() {`
using ES6 modules for whole frontend SPA app 2018-03-25 23:09:17 +08:00			`const dfd = $.Deferred();`

protected session in a dialog now works, proper reloading 2019-05-06 02:45:07 +08:00			`if (protectedSessionHolder.isProtectedSessionAvailable()) {`
			`dfd.resolve(false);`
			`}`
			`else {`
unprotecting note outside of protected session is not forbidden because it could overwrite previous note 2018-08-17 21:21:59 +08:00			`// using deferred instead of promise because it allows resolving from outside`
using ES6 modules for whole frontend SPA app 2018-03-25 23:09:17 +08:00			`protectedSessionDeferred = dfd;`

various small fixes 2019-09-08 17:25:57 +08:00			`import("../dialogs/protected_session.js").then(dialog => dialog.show());`
encryption code separated into its own file 2017-09-07 10:06:43 +08:00			`}`
initial decallbackization and promisification of frontend 2017-11-04 08:01:32 +08:00
using ES6 modules for whole frontend SPA app 2018-03-25 23:09:17 +08:00			`return dfd.promise();`
			`}`
encryption code separated into its own file 2017-09-07 10:06:43 +08:00
non-modal protected session password form is now done separately as a kind of detail component. Also reworked branch prefix dialog input 2018-12-28 03:04:59 +08:00			`async function setupProtectedSession(password) {`
add switch to manually enter/leave protected session, fixes #107 2018-06-01 08:00:39 +08:00			`const response = await enterProtectedSessionOnServer(password);`
encryption code separated into its own file 2017-09-07 10:06:43 +08:00
using ES6 modules for whole frontend SPA app 2018-03-25 23:09:17 +08:00			`if (!response.success) {`
rename info service to toast service 2019-10-20 16:00:18 +08:00			`toastService.showError("Wrong password.", 3000);`
using ES6 modules for whole frontend SPA app 2018-03-25 23:09:17 +08:00			`return;`
encryption converted to module 2017-11-05 06:18:55 +08:00			`}`
frontend now generates two scrypt hashes with different salts - one for verification and one for encryption. Lowered complexity to half to not affect frontend performance. 2017-09-09 08:55:24 +08:00
all consistency checkers have now fixers 2020-01-09 02:28:22 +08:00			`$("#container").addClass('protected-session-active');`

decoupled protected session holder from presentation stuff and similar things 2018-03-26 09:16:57 +08:00			`protectedSessionHolder.setProtectedSessionId(response.protectedSessionId);`
fix unloading protected session after the timeout, fixes #571 2019-06-20 04:23:55 +08:00			`protectedSessionHolder.touchProtectedSession();`
server side encryption WIP 2017-11-11 11:55:19 +08:00
appContext is now component 2020-02-17 02:21:17 +08:00			`appContext.triggerEvent('protectedSessionStarted');`
encryption code separated into its own file 2017-09-07 10:06:43 +08:00
using ES6 modules for whole frontend SPA app 2018-03-25 23:09:17 +08:00			`if (protectedSessionDeferred !== null) {`
various small fixes 2019-09-08 17:25:57 +08:00			`import("../dialogs/protected_session.js").then(dialog => dialog.close());`
encrypt and decrypt subtrees (in tree context menu) 2017-09-18 00:46:14 +08:00
fix for protected note freezing because of double initialization of CKEditor 2018-08-28 21:03:23 +08:00			`protectedSessionDeferred.resolve(true);`
new UI for search, closes #108 (still needs cleanup) 2018-06-04 08:42:25 +08:00			`protectedSessionDeferred = null;`
cosmetic cleanup, mostly in encryption 2017-11-09 11:33:08 +08:00			`}`
cssClass is correctly filled for new note 2018-09-01 19:18:55 +08:00
enter/leave protected session button is not refreshed after entering from note detail (not dialog), fixes #555 2019-06-04 02:36:37 +08:00			`$enterProtectedSessionButton.hide();`
			`$leaveProtectedSessionButton.show();`

rename info service to toast service 2019-10-20 16:00:18 +08:00			`toastService.showMessage("Protected session has been started.");`
using ES6 modules for whole frontend SPA app 2018-03-25 23:09:17 +08:00			`}`
encryption code separated into its own file 2017-09-07 10:06:43 +08:00
add switch to manually enter/leave protected session, fixes #107 2018-06-01 08:00:39 +08:00			`async function enterProtectedSessionOnServer(password) {`
using ES6 modules for whole frontend SPA app 2018-03-25 23:09:17 +08:00			`return await server.post('login/protected', {`
			`password: password`
			`});`
			`}`
server side encryption WIP 2017-11-11 11:55:19 +08:00
using ES6 modules for whole frontend SPA app 2018-03-25 23:09:17 +08:00			`async function protectNoteAndSendToServer() {`
moved tab related stuff to tab manager from app context 2020-02-08 04:08:55 +08:00			`if (!appContext.tabManager.getActiveTabNote() \|\| appContext.tabManager.getActiveTabNote().isProtected) {`
better protected/unprotected note indicator, fixes #110 2018-06-02 23:47:16 +08:00			`return;`
			`}`

protected session in a dialog now works, proper reloading 2019-05-06 02:45:07 +08:00			`await enterProtectedSession();`
encryption code separated into its own file 2017-09-07 10:06:43 +08:00
moved tab related stuff to tab manager from app context 2020-02-08 04:08:55 +08:00			`const note = appContext.tabManager.getActiveTabNote();`
introduced NoteFull entity, fixes 2018-03-26 11:25:17 +08:00			`note.isProtected = true;`
encryption code separated into its own file 2017-09-07 10:06:43 +08:00
moved tab related stuff to tab manager from app context 2020-02-08 04:08:55 +08:00			`await appContext.tabManager.getActiveTabContext().saveNote();`
using ES6 modules for whole frontend SPA app 2018-03-25 23:09:17 +08:00			`}`
also de-encryption of note history plus bug fixes 2017-11-03 11:55:22 +08:00
using ES6 modules for whole frontend SPA app 2018-03-25 23:09:17 +08:00			`async function unprotectNoteAndSendToServer() {`
moved tab related stuff to tab manager from app context 2020-02-08 04:08:55 +08:00			`const activeNote = appContext.tabManager.getActiveTabNote();`
unprotecting note after protecting it sometimes didn't work fix protected note background 2018-11-09 21:36:27 +08:00
renamed currentNote to activeNote to be consistent with frontend API 2019-03-15 03:21:27 +08:00			`if (!activeNote.isProtected) {`
rename info service to toast service 2019-10-20 16:00:18 +08:00			toastService.showAndLogError(`Note ${activeNote.noteId} is not protected`);
unprotecting note after protecting it sometimes didn't work fix protected note background 2018-11-09 21:36:27 +08:00
better protected/unprotected note indicator, fixes #110 2018-06-02 23:47:16 +08:00			`return;`
			`}`

unprotecting note outside of protected session is not forbidden because it could overwrite previous note 2018-08-17 21:21:59 +08:00			`if (!protectedSessionHolder.isProtectedSessionAvailable()) {`
			`console.log("Unprotecting notes outside of protected session is not allowed.");`
protected session in a dialog now works, proper reloading 2019-05-06 02:45:07 +08:00			`// the reason is that it's not easy to handle even with enterProtectedSession,`
unprotecting note outside of protected session is not forbidden because it could overwrite previous note 2018-08-17 21:21:59 +08:00			`// because we would first have to make sure the note is loaded and only then unprotect`
			`// we used to have a bug where we would overwrite the previous note with unprotected content.`

			`return;`
			`}`
initial decallbackization and promisification of frontend 2017-11-04 08:01:32 +08:00
renamed currentNote to activeNote to be consistent with frontend API 2019-03-15 03:21:27 +08:00			`activeNote.isProtected = false;`
encryption code separated into its own file 2017-09-07 10:06:43 +08:00
moved tab related stuff to tab manager from app context 2020-02-08 04:08:55 +08:00			`await appContext.tabManager.getActiveTabContext().saveNote();`
using ES6 modules for whole frontend SPA app 2018-03-25 23:09:17 +08:00			`}`

renamed subtree operations in context menu from "branch" to "subtree" 2018-09-01 00:22:53 +08:00			`async function protectSubtree(noteId, protect) {`
protected session in a dialog now works, proper reloading 2019-05-06 02:45:07 +08:00			`await enterProtectedSession();`
fixing encrypt / decrypt subtree 2017-11-23 09:46:42 +08:00
changes in API format 2018-04-02 08:33:10 +08:00			`await server.put('notes/' + noteId + "/protect/" + (protect ? 1 : 0));`
using ES6 modules for whole frontend SPA app 2018-03-25 23:09:17 +08:00			`}`
protect/unprotect subtree 2017-11-15 13:04:26 +08:00
protect/unprotect tree reports progress via notifications 2019-10-19 15:58:18 +08:00			`function makeToast(message, protectingLabel, text) {`
			`return {`
			`id: message.taskId,`
			`title: protectingLabel + " status",`
			`message: text,`
fix icons in context menu 2019-11-09 20:32:06 +08:00			`icon: message.data.protect ? "check-shield" : "shield"`
protect/unprotect tree reports progress via notifications 2019-10-19 15:58:18 +08:00			`};`
			`}`

			`ws.subscribeToMessages(async message => {`
			`if (message.taskType !== 'protect-notes') {`
			`return;`
			`}`

			`const protectingLabel = message.data.protect ? "Protecting" : "Unprotecting";`

			`if (message.type === 'task-error') {`
rename info service to toast service 2019-10-20 16:00:18 +08:00			`toastService.closePersistent(message.taskId);`
			`toastService.showError(message.message);`
protect/unprotect tree reports progress via notifications 2019-10-19 15:58:18 +08:00			`} else if (message.type === 'task-progress-count') {`
rename info service to toast service 2019-10-20 16:00:18 +08:00			`toastService.showPersistent(makeToast(message, protectingLabel,protectingLabel + " in progress: " + message.progressCount));`
protect/unprotect tree reports progress via notifications 2019-10-19 15:58:18 +08:00			`} else if (message.type === 'task-succeeded') {`
			`const toast = makeToast(message, protectingLabel, protectingLabel + " finished successfully.");`
			`toast.closeAfter = 3000;`

rename info service to toast service 2019-10-20 16:00:18 +08:00			`toastService.showPersistent(toast);`
protect/unprotect tree reports progress via notifications 2019-10-19 15:58:18 +08:00			`}`
			`});`

using ES6 modules for whole frontend SPA app 2018-03-25 23:09:17 +08:00			`export default {`
renamed subtree operations in context menu from "branch" to "subtree" 2018-09-01 00:22:53 +08:00			`protectSubtree,`
add switch to manually enter/leave protected session, fixes #107 2018-06-01 08:00:39 +08:00			`enterProtectedSession,`
frontend API addition to protect current note 2019-01-01 22:39:13 +08:00			`leaveProtectedSession,`
protected session in a component now works 2019-05-06 01:48:30 +08:00			`protectNoteAndSendToServer,`
			`unprotectNoteAndSendToServer,`
			`setupProtectedSession`
using ES6 modules for whole frontend SPA app 2018-03-25 23:09:17 +08:00			`};`