packages/core/api/vault.js

import getId from "../utils/id";

export default class Vault {
  /**
   *
   * @param {import('./index').default} db
   */
  constructor(db) {
    this._db = db;
    this._context = db.context;
    this._key = "Notesnook";
    this._password = "";
    this.ERRORS = {
      noVault: "ERR_NO_VAULT",
      vaultLocked: "ERR_VAULT_LOCKED",
      wrongPassword: "ERR_WRONG_PASSWORD",
    };
  }

  /**
   * Creates a new vault (replacing if any older exists)
   * @param {string} password The password
   * @returns {Boolean}
   */
  async create(password) {
    const vaultKey = await this._context.read("vaultKey");
    if (!vaultKey || !vaultKey.cipher || !vaultKey.iv) {
      const encryptedData = await this._context.encrypt(
        { password },
        this._key
      );
      await this._context.write("vaultKey", encryptedData);
      this._password = password;
    }
    return true;
  }

  /**
   * Unlocks the vault with the given password
   * @param {string} password The password
   * @throws ERR_NO_VAULT | ERR_WRONG_PASSWORD
   * @returns {Boolean}
   */
  async unlock(password) {
    const vaultKey = await this._context.read("vaultKey");
    if (!(await this._exists(vaultKey))) throw new Error(this.ERRORS.noVault);
    var data;
    try {
      data = await this._context.decrypt({ password }, vaultKey);
    } catch (e) {
      throw new Error(this.ERRORS.wrongPassword);
    }
    if (data !== this._key) {
      throw new Error(this.ERRORS.wrongPassword);
    }
    this._password = password;
    return true;
  }

  /**
   * Locks (add to vault) a note
   * @param {string} noteId The id of the note to lock
   */
  async add(noteId) {
    await this._check();
    const note = this._db.notes.note(noteId).data;
    await this._lockNote(noteId, note);
  }

  /**
   * Permanently unlocks (remove from vault) a note
   * @param {string} noteId The note id
   * @param {string} password The password to unlock note with
   */
  async remove(noteId, password) {
    if (await this.unlock(password)) {
      const note = this._db.notes.note(noteId).data;
      await this._unlockNote(note, true);
    }
  }

  /**
   * Temporarily unlock (open) a note
   * @param {string} noteId The note id
   * @param {string} password The password to open note with
   */
  async open(noteId, password) {
    if (await this.unlock(password)) {
      const note = this._db.notes.note(noteId).data;
      return this._unlockNote(note, false);
    }
  }

  /**
   * Saves a note into the vault
   * @param {{Object}} note The note to save into the vault
   */
  async save(note) {
    if (!note) return;
    await this._check();
    let id = note.id || getId();
    return await this._lockNote(id, note);
  }

  // Private & internal methods

  /** @private */
  async _exists(vaultKey) {
    if (!vaultKey) vaultKey = await this._context.read("vaultKey");
    return vaultKey && vaultKey.cipher && vaultKey.iv;
  }

  /** @private */
  async _locked() {
    return !this._password || !this._password.length;
  }

  /** @private */
  async _check() {
    if (!(await this._exists())) {
      throw new Error(this.ERRORS.noVault);
    }

    if (await this._locked()) {
      throw new Error(this.ERRORS.vaultLocked);
    }
  }

  /** @private */
  async _encryptContent(content, ids) {
    let { text, delta } = { ...content };
    let { deltaId, textId } = ids;

    if (!delta.ops) delta = await this._db.delta.get(deltaId);
    if (text === textId) text = await this._db.text.get(textId);

    text = await this._context.encrypt({ password: this._password }, text);
    delta = await this._context.encrypt(
      { password: this._password },
      JSON.stringify(delta)
    );

    await this._db.text.add({ id: textId, data: text });
    await this._db.delta.add({ id: deltaId, data: delta });
  }

  /** @private */
  async _decryptContent(content) {
    let { text, delta } = { ...content };

    text = await this._db.text.get(text);
    text = await this._context.decrypt({ password: this._password }, text);

    delta = await this._db.text.get(delta);
    delta = await this._context.decrypt({ password: this._password }, delta);

    if (typeof delta === "string") delta = JSON.parse(delta);

    return {
      delta,
      text,
    };
  }

  /** @private */
  async _lockNote(id, note) {
    if (!note) return;
    let oldNote = this._db.notes.note(id);

    let deltaId = 0;
    let textId = 0;

    if (oldNote && oldNote.data.content) {
      deltaId = oldNote.data.content.delta;
      textId = oldNote.data.content.text;
    }

    await this._encryptContent(note.content, { textId, deltaId });

    return await this._db.notes.add({
      id,
      locked: true,
      headline: "",
    });
  }

  /** @private */
  async _unlockNote(note, perm = false) {
    if (!note.locked) return;

    let { delta, text } = await this._decryptContent(note.content);

    if (perm) {
      await this._db.notes.add({
        id: note.id,
        locked: false,
        content: {
          delta,
          text,
        },
      });
      return;
    }

    return {
      ...note,
      content: { delta, text },
    };
  }

  /** @inner */
  async _getKey() {
    if (await this._exists()) return await this._context.read("vaultKey");
  }

  /** @inner */
  async _setKey(vaultKey) {
    if (!vaultKey) return;
    await this._context.write("vaultKey", vaultKey);
  }
}
feat: seperate text & delta 2020-03-19 11:30:05 +05:00			`import getId from "../utils/id";`
fix: resolve all circular dependencies (fix #9) 2020-04-12 11:04:30 +05:00
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`export default class Vault {`
			`/**`
			`*`
vault: add jsdoc and reorder methods 2020-04-16 02:36:09 +05:00			`* @param {import('./index').default} db`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`*/`
vault: add jsdoc and reorder methods 2020-04-16 02:36:09 +05:00			`constructor(db) {`
			`this._db = db;`
			`this._context = db.context;`
refactor: vault api 2020-03-08 11:33:55 +05:00			`this._key = "Notesnook";`
			`this._password = "";`
fix: classProperties not supproted error 2020-03-10 13:54:34 +05:00			`this.ERRORS = {`
			`noVault: "ERR_NO_VAULT",`
			`vaultLocked: "ERR_VAULT_LOCKED",`
crypto: migrate to the new crypto api interface 2020-04-13 11:13:32 +05:00			`wrongPassword: "ERR_WRONG_PASSWORD",`
fix: classProperties not supproted error 2020-03-10 13:54:34 +05:00			`};`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`}`

vault: add jsdoc and reorder methods 2020-04-16 02:36:09 +05:00			`/**`
			`* Creates a new vault (replacing if any older exists)`
			`* @param {string} password The password`
			`* @returns {Boolean}`
			`*/`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`async create(password) {`
sync: sync vaultKey 2020-04-15 14:00:05 +05:00			`const vaultKey = await this._context.read("vaultKey");`
			`if (!vaultKey \|\| !vaultKey.cipher \|\| !vaultKey.iv) {`
crypto: migrate to the new crypto api interface 2020-04-13 11:13:32 +05:00			`const encryptedData = await this._context.encrypt(`
			`{ password },`
			`this._key`
			`);`
sync: sync vaultKey 2020-04-15 14:00:05 +05:00			`await this._context.write("vaultKey", encryptedData);`
refactor: vault api 2020-03-08 11:33:55 +05:00			`this._password = password;`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`}`
			`return true;`
			`}`

vault: add jsdoc and reorder methods 2020-04-16 02:36:09 +05:00			`/**`
			`* Unlocks the vault with the given password`
			`* @param {string} password The password`
			`* @throws ERR_NO_VAULT \| ERR_WRONG_PASSWORD`
			`* @returns {Boolean}`
			`*/`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`async unlock(password) {`
sync: sync vaultKey 2020-04-15 14:00:05 +05:00			`const vaultKey = await this._context.read("vaultKey");`
vault: add jsdoc and reorder methods 2020-04-16 02:36:09 +05:00			`if (!(await this._exists(vaultKey))) throw new Error(this.ERRORS.noVault);`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`var data;`
			`try {`
sync: sync vaultKey 2020-04-15 14:00:05 +05:00			`data = await this._context.decrypt({ password }, vaultKey);`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`} catch (e) {`
refactor: export errors 2020-03-10 13:52:20 +05:00			`throw new Error(this.ERRORS.wrongPassword);`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`}`
refactor: vault api 2020-03-08 11:33:55 +05:00			`if (data !== this._key) {`
refactor: export errors 2020-03-10 13:52:20 +05:00			`throw new Error(this.ERRORS.wrongPassword);`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`}`
refactor: vault api 2020-03-08 11:33:55 +05:00			`this._password = password;`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`return true;`
			`}`

vault: add jsdoc and reorder methods 2020-04-16 02:36:09 +05:00			`/**`
			`* Locks (add to vault) a note`
			`* @param {string} noteId The id of the note to lock`
			`*/`
			`async add(noteId) {`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`await this._check();`
vault: add jsdoc and reorder methods 2020-04-16 02:36:09 +05:00			`const note = this._db.notes.note(noteId).data;`
			`await this._lockNote(noteId, note);`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`}`

vault: add jsdoc and reorder methods 2020-04-16 02:36:09 +05:00			`/**`
			`* Permanently unlocks (remove from vault) a note`
			`* @param {string} noteId The note id`
			`* @param {string} password The password to unlock note with`
			`*/`
			`async remove(noteId, password) {`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`if (await this.unlock(password)) {`
vault: add jsdoc and reorder methods 2020-04-16 02:36:09 +05:00			`const note = this._db.notes.note(noteId).data;`
refactor: vault api 2020-03-08 11:33:55 +05:00			`await this._unlockNote(note, true);`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`}`
			`}`

vault: add jsdoc and reorder methods 2020-04-16 02:36:09 +05:00			`/**`
			`* Temporarily unlock (open) a note`
			`* @param {string} noteId The note id`
			`* @param {string} password The password to open note with`
			`*/`
			`async open(noteId, password) {`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`if (await this.unlock(password)) {`
vault: add jsdoc and reorder methods 2020-04-16 02:36:09 +05:00			`const note = this._db.notes.note(noteId).data;`
refactor: vault api 2020-03-08 11:33:55 +05:00			`return this._unlockNote(note, false);`
			`}`
			`}`

vault: add jsdoc and reorder methods 2020-04-16 02:36:09 +05:00			`/**`
			`* Saves a note into the vault`
			`* @param {{Object}} note The note to save into the vault`
			`*/`
refactor: vault api 2020-03-08 11:33:55 +05:00			`async save(note) {`
			`if (!note) return;`
			`await this._check();`
feat: seperate text & delta 2020-03-19 11:30:05 +05:00			`let id = note.id \|\| getId();`
refactor: vault api 2020-03-08 11:33:55 +05:00			`return await this._lockNote(id, note);`
			`}`

vault: add jsdoc and reorder methods 2020-04-16 02:36:09 +05:00			`// Private & internal methods`

			`/** @private */`
			`async _exists(vaultKey) {`
			`if (!vaultKey) vaultKey = await this._context.read("vaultKey");`
			`return vaultKey && vaultKey.cipher && vaultKey.iv;`
			`}`

			`/** @private */`
			`async _locked() {`
			`return !this._password \|\| !this._password.length;`
			`}`

			`/** @private */`
			`async _check() {`
			`if (!(await this._exists())) {`
			`throw new Error(this.ERRORS.noVault);`
			`}`

			`if (await this._locked()) {`
			`throw new Error(this.ERRORS.vaultLocked);`
			`}`
			`}`

			`/** @private */`
feat: seperate text & delta 2020-03-19 11:30:05 +05:00			`async _encryptContent(content, ids) {`
			`let { text, delta } = { ...content };`
			`let { deltaId, textId } = ids;`
refactor: vault api 2020-03-08 11:33:55 +05:00
feat: seperate text & delta 2020-03-19 11:30:05 +05:00			`if (!delta.ops) delta = await this._db.delta.get(deltaId);`
			`if (text === textId) text = await this._db.text.get(textId);`
refactor: vault api 2020-03-08 11:33:55 +05:00
crypto: migrate to the new crypto api interface 2020-04-13 11:13:32 +05:00			`text = await this._context.encrypt({ password: this._password }, text);`
vault: convert delta to string 2020-04-15 16:45:40 +05:00			`delta = await this._context.encrypt(`
			`{ password: this._password },`
			`JSON.stringify(delta)`
			`);`
feat: seperate text & delta 2020-03-19 11:30:05 +05:00
			`await this._db.text.add({ id: textId, data: text });`
			`await this._db.delta.add({ id: deltaId, data: delta });`
refactor: vault api 2020-03-08 11:33:55 +05:00			`}`

vault: add jsdoc and reorder methods 2020-04-16 02:36:09 +05:00			`/** @private */`
feat: seperate text & delta 2020-03-19 11:30:05 +05:00			`async _decryptContent(content) {`
			`let { text, delta } = { ...content };`

			`text = await this._db.text.get(text);`
crypto: migrate to the new crypto api interface 2020-04-13 11:13:32 +05:00			`text = await this._context.decrypt({ password: this._password }, text);`
feat: seperate text & delta 2020-03-19 11:30:05 +05:00
			`delta = await this._db.text.get(delta);`
crypto: migrate to the new crypto api interface 2020-04-13 11:13:32 +05:00			`delta = await this._context.decrypt({ password: this._password }, delta);`
feat: seperate text & delta 2020-03-19 11:30:05 +05:00
vault: fix delta data not being parsed if it was string 2020-04-15 12:30:36 +05:00			`if (typeof delta === "string") delta = JSON.parse(delta);`

feat: seperate text & delta 2020-03-19 11:30:05 +05:00			`return {`
			`delta,`
crypto: migrate to the new crypto api interface 2020-04-13 11:13:32 +05:00			`text,`
feat: seperate text & delta 2020-03-19 11:30:05 +05:00			`};`
refactor: vault api 2020-03-08 11:33:55 +05:00			`}`

vault: add jsdoc and reorder methods 2020-04-16 02:36:09 +05:00			`/** @private */`
refactor: vault api 2020-03-08 11:33:55 +05:00			`async _lockNote(id, note) {`
fix: open locked note not working 2020-04-15 17:16:13 +05:00			`if (!note) return;`
			`let oldNote = this._db.notes.note(id);`
feat: seperate text & delta 2020-03-19 11:30:05 +05:00
			`let deltaId = 0;`
			`let textId = 0;`

fix: open locked note not working 2020-04-15 17:16:13 +05:00			`if (oldNote && oldNote.data.content) {`
			`deltaId = oldNote.data.content.delta;`
			`textId = oldNote.data.content.text;`
feat: seperate text & delta 2020-03-19 11:30:05 +05:00			`}`
refactor: vault api 2020-03-08 11:33:55 +05:00
feat: seperate text & delta 2020-03-19 11:30:05 +05:00			`await this._encryptContent(note.content, { textId, deltaId });`
refactor: vault api 2020-03-08 11:33:55 +05:00
			`return await this._db.notes.add({`
			`id,`
crypto: migrate to the new crypto api interface 2020-04-13 11:13:32 +05:00			`locked: true,`
fix: open locked note not working 2020-04-15 17:16:13 +05:00			`headline: "",`
refactor: vault api 2020-03-08 11:33:55 +05:00			`});`
			`}`

vault: add jsdoc and reorder methods 2020-04-16 02:36:09 +05:00			`/** @private */`
refactor: vault api 2020-03-08 11:33:55 +05:00			`async _unlockNote(note, perm = false) {`
			`if (!note.locked) return;`

feat: seperate text & delta 2020-03-19 11:30:05 +05:00			`let { delta, text } = await this._decryptContent(note.content);`
refactor: vault api 2020-03-08 11:33:55 +05:00
			`if (perm) {`
			`await this._db.notes.add({`
			`id: note.id,`
crypto: migrate to the new crypto api interface 2020-04-13 11:13:32 +05:00			`locked: false,`
vault: restore headline on perm note unlock 2020-04-16 12:31:32 +05:00			`content: {`
			`delta,`
			`text,`
			`},`
refactor: vault api 2020-03-08 11:33:55 +05:00			`});`
feat: seperate text & delta 2020-03-19 11:30:05 +05:00			`return;`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`}`
refactor: vault api 2020-03-08 11:33:55 +05:00
			`return {`
			`...note,`
vault: send text with delta when opening locked note 2020-04-15 12:40:45 +05:00			`content: { delta, text },`
refactor: vault api 2020-03-08 11:33:55 +05:00			`};`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`}`
vault: add jsdoc and reorder methods 2020-04-16 02:36:09 +05:00
			`/** @inner */`
			`async _getKey() {`
			`if (await this._exists()) return await this._context.read("vaultKey");`
			`}`

			`/** @inner */`
			`async _setKey(vaultKey) {`
			`if (!vaultKey) return;`
			`await this._context.write("vaultKey", vaultKey);`
			`}`
feat: impl vault for encryption/decryption of notes 2020-03-07 12:29:55 +05:00			`}`