mirror of
https://github.com/p-stream/backend.git
synced 2026-01-11 20:10:33 +00:00
Implemented saving the febboxKey with encryption
This commit is contained in:
FifthWit
parent
a55abc6669
commit
ff0f2854c1
2 changed files with 81 additions and 0 deletions
|
|
@ -11,6 +11,7 @@ import { userGetRouter } from '@/routes/users/get';
|
|||
import { userProgressRouter } from '@/routes/users/progress';
|
||||
import { userSessionsRouter } from '@/routes/users/sessions';
|
||||
import { userSettingsRouter } from '@/routes/users/settings';
|
||||
import { saveKeyRouter } from '@/routes/users/savekey';
|
||||
import { FastifyInstance } from 'fastify';
|
||||
|
||||
export async function setupRoutes(app: FastifyInstance) {
|
||||
|
|
@ -27,4 +28,5 @@ export async function setupRoutes(app: FastifyInstance) {
|
|||
await app.register(userGetRouter.register);
|
||||
await app.register(metricsRouter.register);
|
||||
await app.register(indexRouter.register);
|
||||
await app.register(saveKeyRouter.register);
|
||||
}
|
||||
|
|
|
|||
79
src/routes/users/savekey.ts
Normal file
79
src/routes/users/savekey.ts
Normal file
|
|
@ -0,0 +1,79 @@
|
|||
import { makeRouter } from '@/services/router';
|
||||
import { handle } from '@/services/handler';
|
||||
import { UserSettings } from '@/db/models/UserSettings';
|
||||
import { z } from 'zod';
|
||||
import crypto from 'crypto';
|
||||
|
||||
export const saveKeyRouter = makeRouter((app) => {
|
||||
app.post(
|
||||
'/key/febbox/set',
|
||||
{
|
||||
schema: {
|
||||
body: z.object({
|
||||
febboxKey: z.string(),
|
||||
encryptToken: z.string(),
|
||||
}),
|
||||
},
|
||||
},
|
||||
handle(async ({ auth, body, em }) => {
|
||||
await auth.assert();
|
||||
|
||||
const { febboxKey, encryptToken } = body;
|
||||
|
||||
const key = crypto.createHash('sha256').update(encryptToken).digest();
|
||||
const iv = crypto.randomBytes(16);
|
||||
const cipher = crypto.createCipheriv('aes-256-cbc', key, iv);
|
||||
let encrypted = cipher.update(febboxKey, 'utf8', 'hex');
|
||||
encrypted += cipher.final('hex');
|
||||
const encryptedFebboxKey = iv.toString('hex') + ':' + encrypted;
|
||||
await em.nativeUpdate(
|
||||
UserSettings,
|
||||
{ id: auth.user.id },
|
||||
{ febboxKey: encryptedFebboxKey },
|
||||
);
|
||||
|
||||
return { message: 'Key saved successfully' };
|
||||
}),
|
||||
);
|
||||
app.post(
|
||||
'/key/febbox/get',
|
||||
{
|
||||
schema: {
|
||||
body: z.object({
|
||||
encryptToken: z.string(),
|
||||
}),
|
||||
},
|
||||
},
|
||||
handle(async ({ auth, body, em }) => {
|
||||
await auth.assert();
|
||||
|
||||
const { encryptToken } = body;
|
||||
|
||||
const userSettings = await em.findOne(UserSettings, {
|
||||
id: auth.user.id,
|
||||
});
|
||||
if (!userSettings || !userSettings.febboxKey) {
|
||||
return { message: 'No stored key found' };
|
||||
}
|
||||
const encryptedFebboxKey = userSettings.febboxKey;
|
||||
const parts = encryptedFebboxKey.split(':');
|
||||
if (parts.length !== 2) {
|
||||
return { message: 'Stored key format is invalid' };
|
||||
}
|
||||
const iv = Buffer.from(parts[0], 'hex');
|
||||
const encrypted = parts[1];
|
||||
|
||||
const key = crypto.createHash('sha256').update(encryptToken).digest();
|
||||
let febboxKey: string;
|
||||
try {
|
||||
const decipher = crypto.createDecipheriv('aes-256-cbc', key, iv);
|
||||
febboxKey = decipher.update(encrypted, 'hex', 'utf8');
|
||||
febboxKey += decipher.final('utf8');
|
||||
} catch (error) {
|
||||
return { message: 'Decryption failed. Invalid token.' };
|
||||
}
|
||||
|
||||
return { febboxKey };
|
||||
}),
|
||||
);
|
||||
});
|
||||
Loading…
Reference in a new issue