services/protected_session.js

"use strict";

const utils = require('./utils');

function setDataKey(req, decryptedDataKey) {
    req.session.decryptedDataKey = Array.from(decryptedDataKey); // can't store buffer in session
    req.session.protectedSessionId = utils.randomSecureToken(32);

    return req.session.protectedSessionId;
}

function getProtectedSessionId(req) {
    return req.headers['x-protected-session-id'];
}

function getDataKey(req) {
    const protectedSessionId = getProtectedSessionId(req);

    if (protectedSessionId && req.session.protectedSessionId === protectedSessionId) {
        return req.session.decryptedDataKey;
    }
    else {
        return null;
    }
}

function isProtectedSessionAvailable(req) {
    const protectedSessionId = getProtectedSessionId(req);

    return protectedSessionId && req.session.protectedSessionId === protectedSessionId;
}

module.exports = {
    setDataKey,
    getDataKey,
    isProtectedSessionAvailable
};
server side WIP - saving encrypted note now works, changing terminology of "encrypted note" to "protected note" 2017-11-14 21:54:12 -05:00			`"use strict";`

refactoring of password change and preparations for server side encryption 2017-11-09 23:25:23 -05:00			`const utils = require('./utils');`

			`function setDataKey(req, decryptedDataKey) {`
data key is not encrypted with aes-cbc as well 2017-11-15 23:39:50 -05:00			`req.session.decryptedDataKey = Array.from(decryptedDataKey); // can't store buffer in session`
refactoring of password change and preparations for server side encryption 2017-11-09 23:25:23 -05:00			`req.session.protectedSessionId = utils.randomSecureToken(32);`

			`return req.session.protectedSessionId;`
			`}`

server side WIP - saving encrypted note now works, changing terminology of "encrypted note" to "protected note" 2017-11-14 21:54:12 -05:00			`function getProtectedSessionId(req) {`
			`return req.headers['x-protected-session-id'];`
			`}`

server side encryption WIP 2017-11-10 22:55:19 -05:00			`function getDataKey(req) {`
server side WIP - saving encrypted note now works, changing terminology of "encrypted note" to "protected note" 2017-11-14 21:54:12 -05:00			`const protectedSessionId = getProtectedSessionId(req);`
server side encryption WIP 2017-11-10 22:55:19 -05:00
refactoring of password change and preparations for server side encryption 2017-11-09 23:25:23 -05:00			`if (protectedSessionId && req.session.protectedSessionId === protectedSessionId) {`
			`return req.session.decryptedDataKey;`
			`}`
			`else {`
			`return null;`
			`}`
			`}`

server side WIP - saving encrypted note now works, changing terminology of "encrypted note" to "protected note" 2017-11-14 21:54:12 -05:00			`function isProtectedSessionAvailable(req) {`
			`const protectedSessionId = getProtectedSessionId(req);`

			`return protectedSessionId && req.session.protectedSessionId === protectedSessionId;`
			`}`

refactoring of password change and preparations for server side encryption 2017-11-09 23:25:23 -05:00			`module.exports = {`
			`setDataKey,`
server side WIP - saving encrypted note now works, changing terminology of "encrypted note" to "protected note" 2017-11-14 21:54:12 -05:00			`getDataKey,`
			`isProtectedSessionAvailable`
refactoring of password change and preparations for server side encryption 2017-11-09 23:25:23 -05:00			`};`