packages/core/api/vault.js

import getId from "../utils/id";

export default class Vault {
  /**
   *
   * @param {import('./index').default} database
   */
  constructor(database, context) {
    this._db = database;
    this._context = context;
    this._key = "Notesnook";
    this._password = "";
    this.ERRORS = {
      noVault: "ERR_NO_VAULT",
      vaultLocked: "ERR_VAULT_LOCKED",
      wrongPassword: "ERR_WRONG_PASSWORD",
    };
  }

  async _getKey() {
    if (await this._exists()) return await this._context.read("vaultKey");
  }

  async _setKey(vaultKey) {
    if (!vaultKey) return;
    await this._context.write("vaultKey", vaultKey);
  }

  async create(password) {
    const vaultKey = await this._context.read("vaultKey");
    if (!vaultKey || !vaultKey.cipher || !vaultKey.iv) {
      const encryptedData = await this._context.encrypt(
        { password },
        this._key
      );
      await this._context.write("vaultKey", encryptedData);
      this._password = password;
    }
    return true;
  }

  async unlock(password) {
    const vaultKey = await this._context.read("vaultKey");
    if (!(await this._exists(vaultKey))) throw new Error("ERR_NO_VAULT");
    var data;
    try {
      data = await this._context.decrypt({ password }, vaultKey);
    } catch (e) {
      throw new Error(this.ERRORS.wrongPassword);
    }
    if (data !== this._key) {
      throw new Error(this.ERRORS.wrongPassword);
    }
    this._password = password;
    return true;
  }

  async _exists(vaultKey) {
    if (!vaultKey) vaultKey = await this._context.read("vaultKey");
    return vaultKey && vaultKey.cipher && vaultKey.iv;
  }

  async _locked() {
    return !this._password || !this._password.length;
  }

  async _check() {
    if (!(await this._exists())) {
      throw new Error(this.ERRORS.noVault);
    }

    if (await this._locked()) {
      throw new Error(this.ERRORS.vaultLocked);
    }
  }

  async add(id) {
    await this._check();
    //const note = this._db.notes.note(id).data;
    await this._lockNote(id);
  }

  async remove(id, password) {
    if (await this.unlock(password)) {
      const note = this._db.notes.note(id).data;
      await this._unlockNote(note, true);
    }
  }

  async open(id, password) {
    if (await this.unlock(password)) {
      const note = this._db.notes.note(id).data;
      return this._unlockNote(note, false);
    }
  }

  async save(note) {
    if (!note) return;
    await this._check();
    let id = note.id || getId();
    return await this._lockNote(id, note);
  }

  async _encryptContent(content, ids) {
    let { text, delta } = { ...content };
    let { deltaId, textId } = ids;

    if (!delta.ops) delta = await this._db.delta.get(deltaId);
    if (text === textId) text = await this._db.text.get(textId);

    text = await this._context.encrypt({ password: this._password }, text);
    delta = await this._context.encrypt(
      { password: this._password },
      JSON.stringify(delta)
    );

    await this._db.text.add({ id: textId, data: text });
    await this._db.delta.add({ id: deltaId, data: delta });
  }

  async _decryptContent(content) {
    let { text, delta } = { ...content };

    text = await this._db.text.get(text);
    text = await this._context.decrypt({ password: this._password }, text);

    delta = await this._db.text.get(delta);
    delta = await this._context.decrypt({ password: this._password }, delta);

    if (typeof delta === "string") delta = JSON.parse(delta);

    return {
      delta,
      text,
    };
  }

  async _lockNote(id, note) {
    note = note || this._db.notes.note(id).data;

    let deltaId = 0;
    let textId = 0;

    if (note && note.content) {
      deltaId = note.content.delta;
      textId = note.content.text;
    }

    await this._encryptContent(note.content, { textId, deltaId });

    return await this._db.notes.add({
      id,
      locked: true,
    });
  }

  async _unlockNote(note, perm = false) {
    if (!note.locked) return;

    let { delta, text } = await this._decryptContent(note.content);

    if (perm) {
      await this._db.notes.add({
        id: note.id,
        locked: false,
      });
      await this._db.delta.add({ id: note.content.delta, data: delta });
      await this._db.text.add({ id: note.content.text, data: text });
      return;
    }

    return {
      ...note,
      content: { delta, text },
    };
  }
}
feat: seperate text & delta 2020-03-19 11:30:05 +05:00			`import getId from "../utils/id";`
fix: resolve all circular dependencies (fix #9) 2020-04-12 11:04:30 +05:00
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`export default class Vault {`
			`/**`
			`*`
fix: resolve all circular dependencies (fix #9) 2020-04-12 11:04:30 +05:00			`* @param {import('./index').default} database`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`*/`
			`constructor(database, context) {`
refactor: vault api 2020-03-08 11:33:55 +05:00			`this._db = database;`
			`this._context = context;`
			`this._key = "Notesnook";`
			`this._password = "";`
fix: classProperties not supproted error 2020-03-10 13:54:34 +05:00			`this.ERRORS = {`
			`noVault: "ERR_NO_VAULT",`
			`vaultLocked: "ERR_VAULT_LOCKED",`
crypto: migrate to the new crypto api interface 2020-04-13 11:13:32 +05:00			`wrongPassword: "ERR_WRONG_PASSWORD",`
fix: classProperties not supproted error 2020-03-10 13:54:34 +05:00			`};`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`}`

sync: sync vaultKey 2020-04-15 14:00:05 +05:00			`async _getKey() {`
			`if (await this._exists()) return await this._context.read("vaultKey");`
			`}`

			`async _setKey(vaultKey) {`
			`if (!vaultKey) return;`
			`await this._context.write("vaultKey", vaultKey);`
			`}`

feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`async create(password) {`
sync: sync vaultKey 2020-04-15 14:00:05 +05:00			`const vaultKey = await this._context.read("vaultKey");`
			`if (!vaultKey \|\| !vaultKey.cipher \|\| !vaultKey.iv) {`
crypto: migrate to the new crypto api interface 2020-04-13 11:13:32 +05:00			`const encryptedData = await this._context.encrypt(`
			`{ password },`
			`this._key`
			`);`
sync: sync vaultKey 2020-04-15 14:00:05 +05:00			`await this._context.write("vaultKey", encryptedData);`
refactor: vault api 2020-03-08 11:33:55 +05:00			`this._password = password;`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`}`
			`return true;`
			`}`

			`async unlock(password) {`
sync: sync vaultKey 2020-04-15 14:00:05 +05:00			`const vaultKey = await this._context.read("vaultKey");`
			`if (!(await this._exists(vaultKey))) throw new Error("ERR_NO_VAULT");`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`var data;`
			`try {`
sync: sync vaultKey 2020-04-15 14:00:05 +05:00			`data = await this._context.decrypt({ password }, vaultKey);`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`} catch (e) {`
refactor: export errors 2020-03-10 13:52:20 +05:00			`throw new Error(this.ERRORS.wrongPassword);`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`}`
refactor: vault api 2020-03-08 11:33:55 +05:00			`if (data !== this._key) {`
refactor: export errors 2020-03-10 13:52:20 +05:00			`throw new Error(this.ERRORS.wrongPassword);`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`}`
refactor: vault api 2020-03-08 11:33:55 +05:00			`this._password = password;`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`return true;`
			`}`

sync: sync vaultKey 2020-04-15 14:00:05 +05:00			`async _exists(vaultKey) {`
			`if (!vaultKey) vaultKey = await this._context.read("vaultKey");`
			`return vaultKey && vaultKey.cipher && vaultKey.iv;`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`}`

			`async _locked() {`
refactor: vault api 2020-03-08 11:33:55 +05:00			`return !this._password \|\| !this._password.length;`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`}`

			`async _check() {`
			`if (!(await this._exists())) {`
refactor: export errors 2020-03-10 13:52:20 +05:00			`throw new Error(this.ERRORS.noVault);`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`}`

			`if (await this._locked()) {`
refactor: export errors 2020-03-10 13:52:20 +05:00			`throw new Error(this.ERRORS.vaultLocked);`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`}`
			`}`

			`async add(id) {`
			`await this._check();`
vault: fix noteId of delta & text being undefined after locking 2020-04-15 11:53:57 +05:00			`//const note = this._db.notes.note(id).data;`
			`await this._lockNote(id);`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`}`

			`async remove(id, password) {`
			`if (await this.unlock(password)) {`
refactor: vault api 2020-03-08 11:33:55 +05:00			`const note = this._db.notes.note(id).data;`
			`await this._unlockNote(note, true);`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`}`
			`}`

			`async open(id, password) {`
			`if (await this.unlock(password)) {`
refactor: vault api 2020-03-08 11:33:55 +05:00			`const note = this._db.notes.note(id).data;`
			`return this._unlockNote(note, false);`
			`}`
			`}`

			`async save(note) {`
			`if (!note) return;`
			`await this._check();`
feat: seperate text & delta 2020-03-19 11:30:05 +05:00			`let id = note.id \|\| getId();`
refactor: vault api 2020-03-08 11:33:55 +05:00			`return await this._lockNote(id, note);`
			`}`

feat: seperate text & delta 2020-03-19 11:30:05 +05:00			`async _encryptContent(content, ids) {`
			`let { text, delta } = { ...content };`
			`let { deltaId, textId } = ids;`
refactor: vault api 2020-03-08 11:33:55 +05:00
feat: seperate text & delta 2020-03-19 11:30:05 +05:00			`if (!delta.ops) delta = await this._db.delta.get(deltaId);`
			`if (text === textId) text = await this._db.text.get(textId);`
refactor: vault api 2020-03-08 11:33:55 +05:00
crypto: migrate to the new crypto api interface 2020-04-13 11:13:32 +05:00			`text = await this._context.encrypt({ password: this._password }, text);`
vault: convert delta to string 2020-04-15 16:45:40 +05:00			`delta = await this._context.encrypt(`
			`{ password: this._password },`
			`JSON.stringify(delta)`
			`);`
feat: seperate text & delta 2020-03-19 11:30:05 +05:00
			`await this._db.text.add({ id: textId, data: text });`
			`await this._db.delta.add({ id: deltaId, data: delta });`
refactor: vault api 2020-03-08 11:33:55 +05:00			`}`

feat: seperate text & delta 2020-03-19 11:30:05 +05:00			`async _decryptContent(content) {`
			`let { text, delta } = { ...content };`

			`text = await this._db.text.get(text);`
crypto: migrate to the new crypto api interface 2020-04-13 11:13:32 +05:00			`text = await this._context.decrypt({ password: this._password }, text);`
feat: seperate text & delta 2020-03-19 11:30:05 +05:00
			`delta = await this._db.text.get(delta);`
crypto: migrate to the new crypto api interface 2020-04-13 11:13:32 +05:00			`delta = await this._context.decrypt({ password: this._password }, delta);`
feat: seperate text & delta 2020-03-19 11:30:05 +05:00
vault: fix delta data not being parsed if it was string 2020-04-15 12:30:36 +05:00			`if (typeof delta === "string") delta = JSON.parse(delta);`

feat: seperate text & delta 2020-03-19 11:30:05 +05:00			`return {`
			`delta,`
crypto: migrate to the new crypto api interface 2020-04-13 11:13:32 +05:00			`text,`
feat: seperate text & delta 2020-03-19 11:30:05 +05:00			`};`
refactor: vault api 2020-03-08 11:33:55 +05:00			`}`

			`async _lockNote(id, note) {`
vault: fix noteId of delta & text being undefined after locking 2020-04-15 11:53:57 +05:00			`note = note \|\| this._db.notes.note(id).data;`
feat: seperate text & delta 2020-03-19 11:30:05 +05:00
			`let deltaId = 0;`
			`let textId = 0;`

vault: fix noteId of delta & text being undefined after locking 2020-04-15 11:53:57 +05:00			`if (note && note.content) {`
			`deltaId = note.content.delta;`
			`textId = note.content.text;`
feat: seperate text & delta 2020-03-19 11:30:05 +05:00			`}`
refactor: vault api 2020-03-08 11:33:55 +05:00
feat: seperate text & delta 2020-03-19 11:30:05 +05:00			`await this._encryptContent(note.content, { textId, deltaId });`
refactor: vault api 2020-03-08 11:33:55 +05:00
			`return await this._db.notes.add({`
			`id,`
crypto: migrate to the new crypto api interface 2020-04-13 11:13:32 +05:00			`locked: true,`
refactor: vault api 2020-03-08 11:33:55 +05:00			`});`
			`}`

			`async _unlockNote(note, perm = false) {`
			`if (!note.locked) return;`

feat: seperate text & delta 2020-03-19 11:30:05 +05:00			`let { delta, text } = await this._decryptContent(note.content);`
refactor: vault api 2020-03-08 11:33:55 +05:00
			`if (perm) {`
			`await this._db.notes.add({`
			`id: note.id,`
crypto: migrate to the new crypto api interface 2020-04-13 11:13:32 +05:00			`locked: false,`
refactor: vault api 2020-03-08 11:33:55 +05:00			`});`
feat: seperate text & delta 2020-03-19 11:30:05 +05:00			`await this._db.delta.add({ id: note.content.delta, data: delta });`
			`await this._db.text.add({ id: note.content.text, data: text });`
			`return;`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`}`
refactor: vault api 2020-03-08 11:33:55 +05:00
			`return {`
			`...note,`
vault: send text with delta when opening locked note 2020-04-15 12:40:45 +05:00			`content: { delta, text },`
refactor: vault api 2020-03-08 11:33:55 +05:00			`};`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`}`
			`}`