writefreely
/
writefreely
mirror of https://github.com/writefreely/writefreely.git
2
0
Fork 0
Code Issues Releases 25 Wiki Activity
A clean, Markdown-based publishing platform made for writers. Write together, and build a community. https://writefreely.org
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
354 Commits
45 Branches
203 MiB
 
 
 
 
 
Tree: 758269e3d8
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '758269e3d8'
${ noResults }
writefreely/keys.go

96 lines
2.3 KiB
Raw Blame History 

  1. /*

  2.  * Copyright © 2018-2019 A Bunch Tell LLC.

  3.  *

  4.  * This file is part of WriteFreely.

  5.  *

  6.  * WriteFreely is free software: you can redistribute it and/or modify

  7.  * it under the terms of the GNU Affero General Public License, included

  8.  * in the LICENSE file in this source code package.

  9.  */

  10. 

  11. package writefreely

  12. 

  13. import (

  14. 	"github.com/writeas/web-core/log"

  15. 	"github.com/writeas/writefreely/key"

  16. 	"io/ioutil"

  17. 	"os"

  18. 	"path/filepath"

  19. )

  20. 

  21. const (

  22. 	keysDir = "keys"

  23. )

  24. 

  25. var (

  26. 	emailKeyPath      = filepath.Join(keysDir, "email.aes256")

  27. 	cookieAuthKeyPath = filepath.Join(keysDir, "cookies_auth.aes256")

  28. 	cookieKeyPath     = filepath.Join(keysDir, "cookies_enc.aes256")

  29. )

  30. 

  31. 

  32. func initKeyPaths(app *App) {

  33. 	emailKeyPath = filepath.Join(app.cfg.Server.KeysParentDir, emailKeyPath)

  34. 	cookieAuthKeyPath = filepath.Join(app.cfg.Server.KeysParentDir, cookieAuthKeyPath)

  35. 	cookieKeyPath = filepath.Join(app.cfg.Server.KeysParentDir, cookieKeyPath)

  36. }

  37. 

  38. func initKeys(app *App) error {

  39. 	var err error

  40. 	app.keys = &key.Keychain{}

  41. 

  42. 	if debugging {

  43. 		log.Info("  %s", emailKeyPath)

  44. 	}

  45. 	app.keys.EmailKey, err = ioutil.ReadFile(emailKeyPath)

  46. 	if err != nil {

  47. 		return err

  48. 	}

  49. 

  50. 	if debugging {

  51. 		log.Info("  %s", cookieAuthKeyPath)

  52. 	}

  53. 	app.keys.CookieAuthKey, err = ioutil.ReadFile(cookieAuthKeyPath)

  54. 	if err != nil {

  55. 		return err

  56. 	}

  57. 

  58. 	if debugging {

  59. 		log.Info("  %s", cookieKeyPath)

  60. 	}

  61. 	app.keys.CookieKey, err = ioutil.ReadFile(cookieKeyPath)

  62. 	if err != nil {

  63. 		return err

  64. 	}

  65. 

  66. 	return nil

  67. }

  68. 

  69. // generateKey generates a key at the given path used for the encryption of

  70. // certain user data. Because user data becomes unrecoverable without these

  71. // keys, this won't overwrite any existing key, and instead outputs a message.

  72. func generateKey(path string) error {

  73. 	// Check if key file exists

  74. 	if _, err := os.Stat(path); err == nil {

  75. 		log.Info("%s already exists. rm the file if you understand the consquences.", path)

  76. 		return nil

  77. 	} else if !os.IsNotExist(err) {

  78. 		log.Error("%s", err)

  79. 		return err

  80. 	}

  81. 

  82. 	log.Info("Generating %s.", path)

  83. 	b, err := key.GenerateBytes(key.EncKeysBytes)

  84. 	if err != nil {

  85. 		log.Error("FAILED. %s. Run writefreely --gen-keys again.", err)

  86. 		return err

  87. 	}

  88. 	err = ioutil.WriteFile(path, b, 0600)

  89. 	if err != nil {

  90. 		log.Error("FAILED writing file: %s", err)

  91. 		return err

  92. 	}

  93. 	log.Info("Success.")

  94. 	return nil

  95. }