rodolphe/sake-app
1
0
Fork 0
Code Issues Pull requests Projects Releases 5 Packages Wiki Activity

Restrict secret keys to 128 or 256 bits

Browse source
This commit is contained in:
Rodolphe Bréard 2023-08-25 10:11:50 +02:00
parent faa8056d2d
commit 72bc29ba66
4 changed files with 11 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

4
src/views/AddAccountView.vue
View file

@ -15,6 +15,7 @@ const separator = ref('+');
const domainName = ref('');
const privateKey = ref('');
const errorMessageId = ref('');
const authorizedKeyLengths = [16, 32];
const base64Decode = (str_b64) => {
try {
@ -47,6 +48,9 @@ const addAccount = () => {
throw new Error('addAccount.error.invalidSeparator');
}
const key = base64Decode(privateKey.value);
if (!authorizedKeyLengths.includes(key.length)) {
throw new Error('addAccount.error.invalidKeyLength');
}
const hash = sha256(`${localPart.value}@${domainName.value}`);
const newAccount = {
id: base32Encode(hash, 'RFC4648', { padding: false }).toLowerCase(),