vybe/src/event/authenticate.js

const db = require('../db');
const openpgp = require('openpgp');

const authenticate = async (msg, respond, socket, io) => {
	if (!msg.name || !msg.message) {
		return respond({
			success: false,
			message: 'invalid message'
		});
	}
	const result = await db.query('select * from user where name = ?', [
		msg.name
	]);
	if (result.rows.length === 0) {
		return respond({
			success: false,
			message: 'user not found'
		});
	}
	try {
		const key = await openpgp.readKey({ armoredKey: result.rows[0].pubkey });
		const verification = await openpgp.verify({
			message: await openpgp.readCleartextMessage({
				cleartextMessage: msg.message,
			}),
			verificationKeys: key,
			expectSigned: true
		});
		const data = verification.data.split(' ');
		if (data[0] !== 'vybe_auth') {
			return respond({
				success: false,
				message: 'bad auth message'
			});
		}
		const auths = await db.query(
			'select * from authentication where user = ? and salt = ?',
			[result.rows[0].id, data[1]]
		);
		if (auths.rows.length === 0) {
			await db.query('insert into authentication (user, salt) values (?, ?)', [
				result.rows[0].id,
				data[1]
			]);
			socket.username = msg.name;
			if (io.cache[msg.name]) {
				io.cache[msg.name].push(socket.id);
			} else {
				io.cache[msg.name] = [socket.id];
			}
			return respond({
				success: true,
			});
		} else {
			return respond({
				success: false,
				message: 'already authenticated with this message'
			});
		}
	} catch (err) {
		console.error('error in authentication: ' + err);
		return respond({
			success: false,
			message: 'message signature verification failed'
		});
	}
};

module.exports = authenticate;
reorganized source files 2024-04-21 23:31:37 -07:00			`const db = require('../db');`
			`const openpgp = require('openpgp');`
Authentication flow changes 2023-05-07 18:43:57 -07:00
permissions (basic) 2023-05-28 14:56:08 -07:00			`const authenticate = async (msg, respond, socket, io) => {`
space ui and updates 2024-03-18 23:07:48 -07:00			`if (!msg.name \|\| !msg.message) {`
			`return respond({`
			`success: false,`
reorganized source files 2024-04-21 23:31:37 -07:00			`message: 'invalid message'`
space ui and updates 2024-03-18 23:07:48 -07:00			`});`
			`}`
reorganized source files 2024-04-21 23:31:37 -07:00			`const result = await db.query('select * from user where name = ?', [`
			`msg.name`
space ui and updates 2024-03-18 23:07:48 -07:00			`]);`
			`if (result.rows.length === 0) {`
			`return respond({`
			`success: false,`
reorganized source files 2024-04-21 23:31:37 -07:00			`message: 'user not found'`
space ui and updates 2024-03-18 23:07:48 -07:00			`});`
			`}`
			`try {`
			`const key = await openpgp.readKey({ armoredKey: result.rows[0].pubkey });`
			`const verification = await openpgp.verify({`
			`message: await openpgp.readCleartextMessage({`
			`cleartextMessage: msg.message,`
			`}),`
			`verificationKeys: key,`
reorganized source files 2024-04-21 23:31:37 -07:00			`expectSigned: true`
space ui and updates 2024-03-18 23:07:48 -07:00			`});`
reorganized source files 2024-04-21 23:31:37 -07:00			`const data = verification.data.split(' ');`
			`if (data[0] !== 'vybe_auth') {`
space ui and updates 2024-03-18 23:07:48 -07:00			`return respond({`
			`success: false,`
reorganized source files 2024-04-21 23:31:37 -07:00			`message: 'bad auth message'`
space ui and updates 2024-03-18 23:07:48 -07:00			`});`
			`}`
			`const auths = await db.query(`
reorganized source files 2024-04-21 23:31:37 -07:00			`'select * from authentication where user = ? and salt = ?',`
space ui and updates 2024-03-18 23:07:48 -07:00			`[result.rows[0].id, data[1]]`
			`);`
			`if (auths.rows.length === 0) {`
reorganized source files 2024-04-21 23:31:37 -07:00			`await db.query('insert into authentication (user, salt) values (?, ?)', [`
space ui and updates 2024-03-18 23:07:48 -07:00			`result.rows[0].id,`
reorganized source files 2024-04-21 23:31:37 -07:00			`data[1]`
space ui and updates 2024-03-18 23:07:48 -07:00			`]);`
			`socket.username = msg.name;`
			`if (io.cache[msg.name]) {`
			`io.cache[msg.name].push(socket.id);`
			`} else {`
			`io.cache[msg.name] = [socket.id];`
			`}`
			`return respond({`
			`success: true,`
			`});`
			`} else {`
			`return respond({`
			`success: false,`
reorganized source files 2024-04-21 23:31:37 -07:00			`message: 'already authenticated with this message'`
space ui and updates 2024-03-18 23:07:48 -07:00			`});`
			`}`
			`} catch (err) {`
reorganized source files 2024-04-21 23:31:37 -07:00			`console.error('error in authentication: ' + err);`
space ui and updates 2024-03-18 23:07:48 -07:00			`return respond({`
			`success: false,`
reorganized source files 2024-04-21 23:31:37 -07:00			`message: 'message signature verification failed'`
space ui and updates 2024-03-18 23:07:48 -07:00			`});`
			`}`
Authentication flow changes 2023-05-07 18:43:57 -07:00			`};`

			`module.exports = authenticate;`