writefreely
/
writefreely
镜像自地址 https://github.com/writefreely/writefreely.git
2
0
派生 0
代码 工单 版本发布 25 百科 动态
A clean, Markdown-based publishing platform made for writers. Write together, and build a community. https://writefreely.org
您最多选择25个主题 主题必须以字母或数字开头,可以包含连字符 (-),并且长度不得超过35个字符
1329 提交
45 分支
305 MiB
 
 
 
 
 
分支: hotfix-0.13.2
分支列表 标签列表
${ item.name }
创建分支 ${ searchTerm }
从 'hotfix-0.13.2'
${ noResults }
writefreely/keys.go

76 行
2.1 KiB
原始文件 永久链接 Blame 文件历史 

  1. /*

  2.  * Copyright © 2018-2019, 2021 Musing Studio LLC.

  3.  *

  4.  * This file is part of WriteFreely.

  5.  *

  6.  * WriteFreely is free software: you can redistribute it and/or modify

  7.  * it under the terms of the GNU Affero General Public License, included

  8.  * in the LICENSE file in this source code package.

  9.  */

  10. 

  11. package writefreely

  12. 

  13. import (

  14. 	"github.com/writeas/web-core/log"

  15. 	"github.com/writefreely/writefreely/key"

  16. 	"io/ioutil"

  17. 	"os"

  18. 	"path/filepath"

  19. )

  20. 

  21. const (

  22. 	keysDir = "keys"

  23. )

  24. 

  25. var (

  26. 	emailKeyPath      = filepath.Join(keysDir, "email.aes256")

  27. 	cookieAuthKeyPath = filepath.Join(keysDir, "cookies_auth.aes256")

  28. 	cookieKeyPath     = filepath.Join(keysDir, "cookies_enc.aes256")

  29. 	csrfKeyPath       = filepath.Join(keysDir, "csrf.aes256")

  30. )

  31. 

  32. // InitKeys loads encryption keys into memory via the given Apper interface

  33. func InitKeys(apper Apper) error {

  34. 	log.Info("Loading encryption keys...")

  35. 	err := apper.LoadKeys()

  36. 	if err != nil {

  37. 		return err

  38. 	}

  39. 	return nil

  40. }

  41. 

  42. func initKeyPaths(app *App) {

  43. 	emailKeyPath = filepath.Join(app.cfg.Server.KeysParentDir, emailKeyPath)

  44. 	cookieAuthKeyPath = filepath.Join(app.cfg.Server.KeysParentDir, cookieAuthKeyPath)

  45. 	cookieKeyPath = filepath.Join(app.cfg.Server.KeysParentDir, cookieKeyPath)

  46. 	csrfKeyPath = filepath.Join(app.cfg.Server.KeysParentDir, csrfKeyPath)

  47. }

  48. 

  49. // generateKey generates a key at the given path used for the encryption of

  50. // certain user data. Because user data becomes unrecoverable without these

  51. // keys, this won't overwrite any existing key, and instead outputs a message.

  52. func generateKey(path string) error {

  53. 	// Check if key file exists

  54. 	if _, err := os.Stat(path); err == nil {

  55. 		log.Info("%s already exists. rm the file if you understand the consquences.", path)

  56. 		return nil

  57. 	} else if !os.IsNotExist(err) {

  58. 		log.Error("%s", err)

  59. 		return err

  60. 	}

  61. 

  62. 	log.Info("Generating %s.", path)

  63. 	b, err := key.GenerateBytes(key.EncKeysBytes)

  64. 	if err != nil {

  65. 		log.Error("FAILED. %s. Run writefreely --gen-keys again.", err)

  66. 		return err

  67. 	}

  68. 	err = ioutil.WriteFile(path, b, 0600)

  69. 	if err != nil {

  70. 		log.Error("FAILED writing file: %s", err)

  71. 		return err

  72. 	}

  73. 	log.Info("Success.")

  74. 	return nil

  75. }