Compare commits
	
		
			35 Commits
		
	
	
		
			33a5600a30
			...
			terminal
		
	
	| Author | SHA1 | Date | |
|---|---|---|---|
| 61d9acc7c6 | |||
| 8d7b01629d | |||
| 5685948608 | |||
| c98a065587 | |||
| e46c3d2b4d | |||
| e7e0f9d33e | |||
| a51b20add7 | |||
|  | 890f715388 | ||
| 89bc74e644 | |||
|  | 60c24e3ee4 | ||
|  | 486001b584 | ||
|  | 52c949e396 | ||
|  | d7c5c2f37b | ||
|  | ae5b8f31db | ||
| c260e37e78 | |||
| 7501253970 | |||
| 5b9c711008 | |||
| ddd1005067 | |||
| e866a4a643 | |||
| 94400ba7d5 | |||
| 616600687d | |||
|  | e8b8dc2976 | ||
|  | ddf865d0b4 | ||
| 96bbc2dbc2 | |||
| 161148d1f6 | |||
| 760987f09b | |||
| a75f34865e | |||
| 886fcd9bb8 | |||
| 55775b6b05 | |||
| 871dedf0a3 | |||
| 913148a75a | |||
| e746963052 | |||
| b761d3b493 | |||
| c5dcc2e50a | |||
| 70d71ce14e | 
							
								
								
									
										1
									
								
								.gitignore
									
									
									
									
										vendored
									
									
								
							
							
						
						
									
										1
									
								
								.gitignore
									
									
									
									
										vendored
									
									
								
							| @@ -5,3 +5,4 @@ src-tauri/target/ | |||||||
|  |  | ||||||
| # just in case | # just in case | ||||||
| credentials* | credentials* | ||||||
|  | !credentials.rs | ||||||
|   | |||||||
							
								
								
									
										9
									
								
								doc/cryptography.md
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										9
									
								
								doc/cryptography.md
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,9 @@ | |||||||
|  | My original plan was to use [libsodium](https://doc.libsodium.org/) to handle encryption. However, the Rust bindings for libsodium are no longer actively maintained, which left me uncomfortable with using it. Instead, I switched to the [RustCrypto](https://github.com/RustCrypto) implementations of the same (or nearly the same) cryptographic primitives provided by libsodium. | ||||||
|  |  | ||||||
|  | Creddy makes use of two cryptographic primitives: A key-derivation function, which is currently `argon2id`, and a symmetric encryption algorithm, currently `XChaCha20Poly1305`.  | ||||||
|  | * I chose `argon2id` because it's what libsodium uses, and because its difficulty parameters admit of very granular tuning. | ||||||
|  | * I chose `XChaCha20Poly1305` because it's _almost_ what libsodium uses - libsodium uses `XSalsa20Poly1305`, and it's my undersatnding that `XChaCha20Poly1305` is an evolution of the former. In both cases I use the eXtended variants, which make use of longer (24-byte) nonces than the non-X variants. This appealed to me because I wanted to be able to randomly generate a nonce every time I needed one, and I have seen [recommendations](https://latacora.micro.blog/2018/04/03/cryptographic-right-answers.html) that the 12-byte nonces used by the non-X variants are _juuust_ a touch small for that to be truly worry-free. The RustCrypto implementation of `XChaCha20Poly1305` has also been subject to a security audit, which is nice. | ||||||
|  |  | ||||||
|  | I tuned the `argon2id` parameters so that key-derivation would take ~800ms on my Ryzen 1600X. This is probably overkill, but I don't intend for key-derivation to be a frequent occurrence - no more than once a day, under normal circumstances. Taking in the neighborhood of 1 second seemed about the longest I could reasonably go. | ||||||
|  |  | ||||||
|  | **DISCLAIMER**: I am not a professional cryptographer, merely an interested amateur. While I've tried to be as careful as possible with selecting and making use of the cryptographic building blocks I've chosen here, there is always the possibility that I've screwed something up. If anyone would like to sponsor an _actual_ security review of Creddy by people who _actually_ know what they're doing instead of just what they've read on the internet, please let me know. | ||||||
							
								
								
									
										540
									
								
								package-lock.json
									
									
									
										generated
									
									
									
								
							
							
						
						
									
										540
									
								
								package-lock.json
									
									
									
										generated
									
									
									
								
							| @@ -1,12 +1,12 @@ | |||||||
| { | { | ||||||
|   "name": "creddy", |   "name": "creddy", | ||||||
|   "version": "0.1.0", |   "version": "0.2.2", | ||||||
|   "lockfileVersion": 2, |   "lockfileVersion": 2, | ||||||
|   "requires": true, |   "requires": true, | ||||||
|   "packages": { |   "packages": { | ||||||
|     "": { |     "": { | ||||||
|       "name": "creddy", |       "name": "creddy", | ||||||
|       "version": "0.1.0", |       "version": "0.2.2", | ||||||
|       "dependencies": { |       "dependencies": { | ||||||
|         "@tauri-apps/api": "^1.0.2", |         "@tauri-apps/api": "^1.0.2", | ||||||
|         "daisyui": "^2.51.5" |         "daisyui": "^2.51.5" | ||||||
| @@ -21,6 +21,17 @@ | |||||||
|         "vite": "^3.0.7" |         "vite": "^3.0.7" | ||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|  |     "node_modules/@alloc/quick-lru": { | ||||||
|  |       "version": "5.2.0", | ||||||
|  |       "resolved": "https://registry.npmjs.org/@alloc/quick-lru/-/quick-lru-5.2.0.tgz", | ||||||
|  |       "integrity": "sha512-UrcABB+4bUrFABwbluTIBErXwvbsU/V7TZWfmbgJfbkwiBuziS9gxdODUyuiecfdGQ85jglMW6juS3+z5TsKLw==", | ||||||
|  |       "engines": { | ||||||
|  |         "node": ">=10" | ||||||
|  |       }, | ||||||
|  |       "funding": { | ||||||
|  |         "url": "https://github.com/sponsors/sindresorhus" | ||||||
|  |       } | ||||||
|  |     }, | ||||||
|     "node_modules/@esbuild/android-arm": { |     "node_modules/@esbuild/android-arm": { | ||||||
|       "version": "0.15.18", |       "version": "0.15.18", | ||||||
|       "resolved": "https://registry.npmjs.org/@esbuild/android-arm/-/android-arm-0.15.18.tgz", |       "resolved": "https://registry.npmjs.org/@esbuild/android-arm/-/android-arm-0.15.18.tgz", | ||||||
| @@ -155,9 +166,9 @@ | |||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "node_modules/@tauri-apps/api": { |     "node_modules/@tauri-apps/api": { | ||||||
|       "version": "1.2.0", |       "version": "1.4.0", | ||||||
|       "resolved": "https://registry.npmjs.org/@tauri-apps/api/-/api-1.2.0.tgz", |       "resolved": "https://registry.npmjs.org/@tauri-apps/api/-/api-1.4.0.tgz", | ||||||
|       "integrity": "sha512-lsI54KI6HGf7VImuf/T9pnoejfgkNoXveP14pVV7XarrQ46rOejIVJLFqHI9sRReJMGdh2YuCoI3cc/yCWCsrw==", |       "integrity": "sha512-Jd6HPoTM1PZSFIzq7FB8VmMu3qSSyo/3lSwLpoapW+lQ41CL5Dow2KryLg+gyazA/58DRWI9vu/XpEeHK4uMdw==", | ||||||
|       "engines": { |       "engines": { | ||||||
|         "node": ">= 14.6.0", |         "node": ">= 14.6.0", | ||||||
|         "npm": ">= 6.6.0", |         "npm": ">= 6.6.0", | ||||||
| @@ -169,9 +180,9 @@ | |||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "node_modules/@tauri-apps/cli": { |     "node_modules/@tauri-apps/cli": { | ||||||
|       "version": "1.2.3", |       "version": "1.4.0", | ||||||
|       "resolved": "https://registry.npmjs.org/@tauri-apps/cli/-/cli-1.2.3.tgz", |       "resolved": "https://registry.npmjs.org/@tauri-apps/cli/-/cli-1.4.0.tgz", | ||||||
|       "integrity": "sha512-erxtXuPhMEGJPBtnhPILD4AjuT81GZsraqpFvXAmEJZ2p8P6t7MVBifCL8LznRknznM3jn90D3M8RNBP3wcXTw==", |       "integrity": "sha512-VXYr2i2iVFl98etQSQsqLzXgX96bnWiNZd1YADgatqwy/qecbd6Kl5ZAPB5R4ynsgE8A1gU7Fbzh7dCEQYFfmA==", | ||||||
|       "dev": true, |       "dev": true, | ||||||
|       "bin": { |       "bin": { | ||||||
|         "tauri": "tauri.js" |         "tauri": "tauri.js" | ||||||
| @@ -184,21 +195,22 @@ | |||||||
|         "url": "https://opencollective.com/tauri" |         "url": "https://opencollective.com/tauri" | ||||||
|       }, |       }, | ||||||
|       "optionalDependencies": { |       "optionalDependencies": { | ||||||
|         "@tauri-apps/cli-darwin-arm64": "1.2.3", |         "@tauri-apps/cli-darwin-arm64": "1.4.0", | ||||||
|         "@tauri-apps/cli-darwin-x64": "1.2.3", |         "@tauri-apps/cli-darwin-x64": "1.4.0", | ||||||
|         "@tauri-apps/cli-linux-arm-gnueabihf": "1.2.3", |         "@tauri-apps/cli-linux-arm-gnueabihf": "1.4.0", | ||||||
|         "@tauri-apps/cli-linux-arm64-gnu": "1.2.3", |         "@tauri-apps/cli-linux-arm64-gnu": "1.4.0", | ||||||
|         "@tauri-apps/cli-linux-arm64-musl": "1.2.3", |         "@tauri-apps/cli-linux-arm64-musl": "1.4.0", | ||||||
|         "@tauri-apps/cli-linux-x64-gnu": "1.2.3", |         "@tauri-apps/cli-linux-x64-gnu": "1.4.0", | ||||||
|         "@tauri-apps/cli-linux-x64-musl": "1.2.3", |         "@tauri-apps/cli-linux-x64-musl": "1.4.0", | ||||||
|         "@tauri-apps/cli-win32-ia32-msvc": "1.2.3", |         "@tauri-apps/cli-win32-arm64-msvc": "1.4.0", | ||||||
|         "@tauri-apps/cli-win32-x64-msvc": "1.2.3" |         "@tauri-apps/cli-win32-ia32-msvc": "1.4.0", | ||||||
|  |         "@tauri-apps/cli-win32-x64-msvc": "1.4.0" | ||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "node_modules/@tauri-apps/cli-darwin-arm64": { |     "node_modules/@tauri-apps/cli-darwin-arm64": { | ||||||
|       "version": "1.2.3", |       "version": "1.4.0", | ||||||
|       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-darwin-arm64/-/cli-darwin-arm64-1.2.3.tgz", |       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-darwin-arm64/-/cli-darwin-arm64-1.4.0.tgz", | ||||||
|       "integrity": "sha512-phJN3fN8FtZZwqXg08bcxfq1+X1JSDglLvRxOxB7VWPq+O5SuB8uLyssjJsu+PIhyZZnIhTGdjhzLSFhSXfLsw==", |       "integrity": "sha512-nA/ml0SfUt6/CYLVbHmT500Y+ijqsuv5+s9EBnVXYSLVg9kbPUZJJHluEYK+xKuOj6xzyuT/+rZFMRapmJD3jQ==", | ||||||
|       "cpu": [ |       "cpu": [ | ||||||
|         "arm64" |         "arm64" | ||||||
|       ], |       ], | ||||||
| @@ -212,9 +224,9 @@ | |||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "node_modules/@tauri-apps/cli-darwin-x64": { |     "node_modules/@tauri-apps/cli-darwin-x64": { | ||||||
|       "version": "1.2.3", |       "version": "1.4.0", | ||||||
|       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-darwin-x64/-/cli-darwin-x64-1.2.3.tgz", |       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-darwin-x64/-/cli-darwin-x64-1.4.0.tgz", | ||||||
|       "integrity": "sha512-jFZ/y6z8z6v4yliIbXKBXA7BJgtZVMsITmEXSuD6s5+eCOpDhQxbRkr6CA+FFfr+/r96rWSDSgDenDQuSvPAKw==", |       "integrity": "sha512-ov/F6Zr+dg9B0PtRu65stFo2G0ow2TUlneqYYrkj+vA3n+moWDHfVty0raDjMLQbQt3rv3uayFMXGPMgble9OA==", | ||||||
|       "cpu": [ |       "cpu": [ | ||||||
|         "x64" |         "x64" | ||||||
|       ], |       ], | ||||||
| @@ -228,9 +240,9 @@ | |||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "node_modules/@tauri-apps/cli-linux-arm-gnueabihf": { |     "node_modules/@tauri-apps/cli-linux-arm-gnueabihf": { | ||||||
|       "version": "1.2.3", |       "version": "1.4.0", | ||||||
|       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-linux-arm-gnueabihf/-/cli-linux-arm-gnueabihf-1.2.3.tgz", |       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-linux-arm-gnueabihf/-/cli-linux-arm-gnueabihf-1.4.0.tgz", | ||||||
|       "integrity": "sha512-C7h5vqAwXzY0kRGSU00Fj8PudiDWFCiQqqUNI1N+fhCILrzWZB9TPBwdx33ZfXKt/U4+emdIoo/N34v3TiAOmQ==", |       "integrity": "sha512-zwjbiMncycXDV7doovymyKD7sCg53ouAmfgpUqEBOTY3vgBi9TwijyPhJOqoG5vUVWhouNBC08akGmE4dja15g==", | ||||||
|       "cpu": [ |       "cpu": [ | ||||||
|         "arm" |         "arm" | ||||||
|       ], |       ], | ||||||
| @@ -244,9 +256,9 @@ | |||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "node_modules/@tauri-apps/cli-linux-arm64-gnu": { |     "node_modules/@tauri-apps/cli-linux-arm64-gnu": { | ||||||
|       "version": "1.2.3", |       "version": "1.4.0", | ||||||
|       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-linux-arm64-gnu/-/cli-linux-arm64-gnu-1.2.3.tgz", |       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-linux-arm64-gnu/-/cli-linux-arm64-gnu-1.4.0.tgz", | ||||||
|       "integrity": "sha512-buf1c8sdkuUzVDkGPQpyUdAIIdn5r0UgXU6+H5fGPq/Xzt5K69JzXaeo6fHsZEZghbV0hOK+taKV4J0m30UUMQ==", |       "integrity": "sha512-5MCBcziqXC72mMXnkZU68mutXIR6zavDxopArE2gQtK841IlE06bIgtLi0kUUhlFJk2nhPRgiDgdLbrPlyt7fw==", | ||||||
|       "cpu": [ |       "cpu": [ | ||||||
|         "arm64" |         "arm64" | ||||||
|       ], |       ], | ||||||
| @@ -260,9 +272,9 @@ | |||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "node_modules/@tauri-apps/cli-linux-arm64-musl": { |     "node_modules/@tauri-apps/cli-linux-arm64-musl": { | ||||||
|       "version": "1.2.3", |       "version": "1.4.0", | ||||||
|       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-linux-arm64-musl/-/cli-linux-arm64-musl-1.2.3.tgz", |       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-linux-arm64-musl/-/cli-linux-arm64-musl-1.4.0.tgz", | ||||||
|       "integrity": "sha512-x88wPS9W5xAyk392vc4uNHcKBBvCp0wf4H9JFMF9OBwB7vfd59LbQCFcPSu8f0BI7bPrOsyHqspWHuFL8ojQEA==", |       "integrity": "sha512-7J3pRB6n6uNYgIfCeKt2Oz8J7oSaz2s8GGFRRH2HPxuTHrBNCinzVYm68UhVpJrL3bnGkU0ziVZLsW/iaOGfUg==", | ||||||
|       "cpu": [ |       "cpu": [ | ||||||
|         "arm64" |         "arm64" | ||||||
|       ], |       ], | ||||||
| @@ -276,9 +288,9 @@ | |||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "node_modules/@tauri-apps/cli-linux-x64-gnu": { |     "node_modules/@tauri-apps/cli-linux-x64-gnu": { | ||||||
|       "version": "1.2.3", |       "version": "1.4.0", | ||||||
|       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-linux-x64-gnu/-/cli-linux-x64-gnu-1.2.3.tgz", |       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-linux-x64-gnu/-/cli-linux-x64-gnu-1.4.0.tgz", | ||||||
|       "integrity": "sha512-ZMz1jxEVe0B4/7NJnlPHmwmSIuwiD6ViXKs8F+OWWz2Y4jn5TGxWKFg7DLx5OwQTRvEIZxxT7lXHi5CuTNAxKg==", |       "integrity": "sha512-Zh5gfAJxOv5AVWxcwuueaQ2vIAhlg0d6nZui6nMyfIJ8dbf3aZQ5ZzP38sYow5h/fbvgL+3GSQxZRBIa3c2E1w==", | ||||||
|       "cpu": [ |       "cpu": [ | ||||||
|         "x64" |         "x64" | ||||||
|       ], |       ], | ||||||
| @@ -292,9 +304,9 @@ | |||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "node_modules/@tauri-apps/cli-linux-x64-musl": { |     "node_modules/@tauri-apps/cli-linux-x64-musl": { | ||||||
|       "version": "1.2.3", |       "version": "1.4.0", | ||||||
|       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-linux-x64-musl/-/cli-linux-x64-musl-1.2.3.tgz", |       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-linux-x64-musl/-/cli-linux-x64-musl-1.4.0.tgz", | ||||||
|       "integrity": "sha512-B/az59EjJhdbZDzawEVox0LQu2ZHCZlk8rJf85AMIktIUoAZPFbwyiUv7/zjzA/sY6Nb58OSJgaPL2/IBy7E0A==", |       "integrity": "sha512-OLAYoICU3FaYiTdBsI+lQTKnDHeMmFMXIApN0M+xGiOkoIOQcV9CConMPjgmJQ867+NHRNgUGlvBEAh9CiJodQ==", | ||||||
|       "cpu": [ |       "cpu": [ | ||||||
|         "x64" |         "x64" | ||||||
|       ], |       ], | ||||||
| @@ -307,10 +319,26 @@ | |||||||
|         "node": ">= 10" |         "node": ">= 10" | ||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|  |     "node_modules/@tauri-apps/cli-win32-arm64-msvc": { | ||||||
|  |       "version": "1.4.0", | ||||||
|  |       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-win32-arm64-msvc/-/cli-win32-arm64-msvc-1.4.0.tgz", | ||||||
|  |       "integrity": "sha512-gZ05GENFbI6CB5MlOUsLlU0kZ9UtHn9riYtSXKT6MYs8HSPRffPHaHSL0WxsJweWh9nR5Hgh/TUU8uW3sYCzCg==", | ||||||
|  |       "cpu": [ | ||||||
|  |         "arm64" | ||||||
|  |       ], | ||||||
|  |       "dev": true, | ||||||
|  |       "optional": true, | ||||||
|  |       "os": [ | ||||||
|  |         "win32" | ||||||
|  |       ], | ||||||
|  |       "engines": { | ||||||
|  |         "node": ">= 10" | ||||||
|  |       } | ||||||
|  |     }, | ||||||
|     "node_modules/@tauri-apps/cli-win32-ia32-msvc": { |     "node_modules/@tauri-apps/cli-win32-ia32-msvc": { | ||||||
|       "version": "1.2.3", |       "version": "1.4.0", | ||||||
|       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-win32-ia32-msvc/-/cli-win32-ia32-msvc-1.2.3.tgz", |       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-win32-ia32-msvc/-/cli-win32-ia32-msvc-1.4.0.tgz", | ||||||
|       "integrity": "sha512-ypdO1OdC5ugNJAKO2m3sb1nsd+0TSvMS9Tr5qN/ZSMvtSduaNwrcZ3D7G/iOIanrqu/Nl8t3LYlgPZGBKlw7Ng==", |       "integrity": "sha512-JsetT/lTx/Zq98eo8T5CiRyF1nKeX04RO8JlJrI3ZOYsZpp/A5RJvMd/szQ17iOzwiHdge+tx7k2jHysR6oBlQ==", | ||||||
|       "cpu": [ |       "cpu": [ | ||||||
|         "ia32" |         "ia32" | ||||||
|       ], |       ], | ||||||
| @@ -324,9 +352,9 @@ | |||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "node_modules/@tauri-apps/cli-win32-x64-msvc": { |     "node_modules/@tauri-apps/cli-win32-x64-msvc": { | ||||||
|       "version": "1.2.3", |       "version": "1.4.0", | ||||||
|       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-win32-x64-msvc/-/cli-win32-x64-msvc-1.2.3.tgz", |       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-win32-x64-msvc/-/cli-win32-x64-msvc-1.4.0.tgz", | ||||||
|       "integrity": "sha512-CsbHQ+XhnV/2csOBBDVfH16cdK00gNyNYUW68isedmqcn8j+s0e9cQ1xXIqi+Hue3awp8g3ImYN5KPepf3UExw==", |       "integrity": "sha512-z8Olcnwp5aYhzqUAarFjqF+oELCjuYWnB2HAJHlfsYNfDCAORY5kct3Fklz8PSsubC3U2EugWn8n42DwnThurg==", | ||||||
|       "cpu": [ |       "cpu": [ | ||||||
|         "x64" |         "x64" | ||||||
|       ], |       ], | ||||||
| @@ -427,9 +455,9 @@ | |||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "node_modules/browserslist": { |     "node_modules/browserslist": { | ||||||
|       "version": "4.21.5", |       "version": "4.21.9", | ||||||
|       "resolved": "https://registry.npmjs.org/browserslist/-/browserslist-4.21.5.tgz", |       "resolved": "https://registry.npmjs.org/browserslist/-/browserslist-4.21.9.tgz", | ||||||
|       "integrity": "sha512-tUkiguQGW7S3IhB7N+c2MV/HZPSCPAAiYBZXLsBhFB/PCy6ZKKsZrmBayHV9fdGV/ARIfJ14NkxKzRDjvp7L6w==", |       "integrity": "sha512-M0MFoZzbUrRU4KNfCrDLnvyE7gub+peetoTid3TBIqtunaDJyXlwhakT+/VkvSXcfIzFfK/nkCs4nmyTmxdNSg==", | ||||||
|       "funding": [ |       "funding": [ | ||||||
|         { |         { | ||||||
|           "type": "opencollective", |           "type": "opencollective", | ||||||
| @@ -438,13 +466,17 @@ | |||||||
|         { |         { | ||||||
|           "type": "tidelift", |           "type": "tidelift", | ||||||
|           "url": "https://tidelift.com/funding/github/npm/browserslist" |           "url": "https://tidelift.com/funding/github/npm/browserslist" | ||||||
|  |         }, | ||||||
|  |         { | ||||||
|  |           "type": "github", | ||||||
|  |           "url": "https://github.com/sponsors/ai" | ||||||
|         } |         } | ||||||
|       ], |       ], | ||||||
|       "dependencies": { |       "dependencies": { | ||||||
|         "caniuse-lite": "^1.0.30001449", |         "caniuse-lite": "^1.0.30001503", | ||||||
|         "electron-to-chromium": "^1.4.284", |         "electron-to-chromium": "^1.4.431", | ||||||
|         "node-releases": "^2.0.8", |         "node-releases": "^2.0.12", | ||||||
|         "update-browserslist-db": "^1.0.10" |         "update-browserslist-db": "^1.0.11" | ||||||
|       }, |       }, | ||||||
|       "bin": { |       "bin": { | ||||||
|         "browserslist": "cli.js" |         "browserslist": "cli.js" | ||||||
| @@ -462,9 +494,9 @@ | |||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "node_modules/caniuse-lite": { |     "node_modules/caniuse-lite": { | ||||||
|       "version": "1.0.30001481", |       "version": "1.0.30001515", | ||||||
|       "resolved": "https://registry.npmjs.org/caniuse-lite/-/caniuse-lite-1.0.30001481.tgz", |       "resolved": "https://registry.npmjs.org/caniuse-lite/-/caniuse-lite-1.0.30001515.tgz", | ||||||
|       "integrity": "sha512-KCqHwRnaa1InZBtqXzP98LPg0ajCVujMKjqKDhZEthIpAsJl/YEIa3YvXjGXPVqzZVguccuu7ga9KOE1J9rKPQ==", |       "integrity": "sha512-eEFDwUOZbE24sb+Ecsx3+OvNETqjWIdabMy52oOkIgcUtAsQifjUG9q4U9dgTHJM2mfk4uEPxc0+xuFdJ629QA==", | ||||||
|       "funding": [ |       "funding": [ | ||||||
|         { |         { | ||||||
|           "type": "opencollective", |           "type": "opencollective", | ||||||
| @@ -588,9 +620,9 @@ | |||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "node_modules/daisyui": { |     "node_modules/daisyui": { | ||||||
|       "version": "2.51.5", |       "version": "2.52.0", | ||||||
|       "resolved": "https://registry.npmjs.org/daisyui/-/daisyui-2.51.5.tgz", |       "resolved": "https://registry.npmjs.org/daisyui/-/daisyui-2.52.0.tgz", | ||||||
|       "integrity": "sha512-L05dRw0tasmz2Ha+10LhftEGLq4kaA8vRR/T0wDaXfHwqcgsf81jfXDJ6NlZ63Z7Rl1k3rj7UHs0l0p7CM3aYA==", |       "integrity": "sha512-LQTA5/IVXAJHBMFoeaEMfd7/akAFPPcdQPR3O9fzzcFiczneJFM73CFPnScmW2sOgn/D83cvkP854ep2T9OfTg==", | ||||||
|       "dependencies": { |       "dependencies": { | ||||||
|         "color": "^4.2", |         "color": "^4.2", | ||||||
|         "css-selector-tokenizer": "^0.8.0", |         "css-selector-tokenizer": "^0.8.0", | ||||||
| @@ -643,9 +675,9 @@ | |||||||
|       "integrity": "sha512-+HlytyjlPKnIG8XuRG8WvmBP8xs8P71y+SKKS6ZXWoEgLuePxtDoUEiH7WkdePWrQ5JBpE6aoVqfZfJUQkjXwA==" |       "integrity": "sha512-+HlytyjlPKnIG8XuRG8WvmBP8xs8P71y+SKKS6ZXWoEgLuePxtDoUEiH7WkdePWrQ5JBpE6aoVqfZfJUQkjXwA==" | ||||||
|     }, |     }, | ||||||
|     "node_modules/electron-to-chromium": { |     "node_modules/electron-to-chromium": { | ||||||
|       "version": "1.4.369", |       "version": "1.4.455", | ||||||
|       "resolved": "https://registry.npmjs.org/electron-to-chromium/-/electron-to-chromium-1.4.369.tgz", |       "resolved": "https://registry.npmjs.org/electron-to-chromium/-/electron-to-chromium-1.4.455.tgz", | ||||||
|       "integrity": "sha512-LfxbHXdA/S+qyoTEA4EbhxGjrxx7WK2h6yb5K2v0UCOufUKX+VZaHbl3svlzZfv9sGseym/g3Ne4DpsgRULmqg==" |       "integrity": "sha512-8tgdX0Odl24LtmLwxotpJCVjIndN559AvaOtd67u+2mo+IDsgsTF580NB+uuDCqsHw8yFg53l5+imFV9Fw3cbA==" | ||||||
|     }, |     }, | ||||||
|     "node_modules/esbuild": { |     "node_modules/esbuild": { | ||||||
|       "version": "0.15.18", |       "version": "0.15.18", | ||||||
| @@ -1013,9 +1045,9 @@ | |||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "node_modules/fast-glob": { |     "node_modules/fast-glob": { | ||||||
|       "version": "3.2.12", |       "version": "3.3.0", | ||||||
|       "resolved": "https://registry.npmjs.org/fast-glob/-/fast-glob-3.2.12.tgz", |       "resolved": "https://registry.npmjs.org/fast-glob/-/fast-glob-3.3.0.tgz", | ||||||
|       "integrity": "sha512-DVj4CQIYYow0BlaelwK1pHl5n5cRSJfM60UA0zK891sVInoPri2Ekj7+e1CT3/3qxXenpI+nBBmQAcJPJgaj4w==", |       "integrity": "sha512-ChDuvbOypPuNjO8yIDf36x7BlZX1smcUMTTcyoIjycexOxd6DFsKsg21qVBzEmr3G7fUKIRy2/psii+CIUt7FA==", | ||||||
|       "dependencies": { |       "dependencies": { | ||||||
|         "@nodelib/fs.stat": "^2.0.2", |         "@nodelib/fs.stat": "^2.0.2", | ||||||
|         "@nodelib/fs.walk": "^1.2.3", |         "@nodelib/fs.walk": "^1.2.3", | ||||||
| @@ -1169,9 +1201,9 @@ | |||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "node_modules/is-core-module": { |     "node_modules/is-core-module": { | ||||||
|       "version": "2.12.0", |       "version": "2.12.1", | ||||||
|       "resolved": "https://registry.npmjs.org/is-core-module/-/is-core-module-2.12.0.tgz", |       "resolved": "https://registry.npmjs.org/is-core-module/-/is-core-module-2.12.1.tgz", | ||||||
|       "integrity": "sha512-RECHCBCd/viahWmwj6enj19sKbHfJrddi/6cBDsNTKbNq0f7VeaUkBo60BqzvPqo/W54ChS62Z5qyun7cfOMqQ==", |       "integrity": "sha512-Q4ZuBAe2FUsKtyQJoQHlvP8OvBERxO3jEmy1I7hcRXcJBGGHFh/aJBswbXuS9sgrDH2QUO8ilkwNPHvHMd8clg==", | ||||||
|       "dependencies": { |       "dependencies": { | ||||||
|         "has": "^1.0.3" |         "has": "^1.0.3" | ||||||
|       }, |       }, | ||||||
| @@ -1207,9 +1239,9 @@ | |||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "node_modules/jiti": { |     "node_modules/jiti": { | ||||||
|       "version": "1.18.2", |       "version": "1.19.1", | ||||||
|       "resolved": "https://registry.npmjs.org/jiti/-/jiti-1.18.2.tgz", |       "resolved": "https://registry.npmjs.org/jiti/-/jiti-1.19.1.tgz", | ||||||
|       "integrity": "sha512-QAdOptna2NYiSSpv0O/BwoHBSmz4YhpzJHyi+fnMRTXFjp7B8i/YG5Z8IfusxB1ufjcD2Sre1F3R+nX3fvy7gg==", |       "integrity": "sha512-oVhqoRDaBXf7sjkll95LHVS6Myyyb1zaunVwk4Z0+WPSW4gjS0pl01zYKHScTuyEhQsFxV5L4DR5r+YqSyqyyg==", | ||||||
|       "bin": { |       "bin": { | ||||||
|         "jiti": "bin/jiti.js" |         "jiti": "bin/jiti.js" | ||||||
|       } |       } | ||||||
| @@ -1313,9 +1345,9 @@ | |||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "node_modules/node-releases": { |     "node_modules/node-releases": { | ||||||
|       "version": "2.0.10", |       "version": "2.0.13", | ||||||
|       "resolved": "https://registry.npmjs.org/node-releases/-/node-releases-2.0.10.tgz", |       "resolved": "https://registry.npmjs.org/node-releases/-/node-releases-2.0.13.tgz", | ||||||
|       "integrity": "sha512-5GFldHPXVG/YZmFzJvKK2zDSzPKhEp0+ZR5SVaoSag9fsL5YgHbUHDfnG5494ISANDcK4KwPXAx2xqVEydmd7w==" |       "integrity": "sha512-uYr7J37ae/ORWdZeQ1xxMJe3NtdmqMC/JZK+geofDrkLUApKRHPd18/TxtBOJ4A0/+uUIliorNrfYV6s1b02eQ==" | ||||||
|     }, |     }, | ||||||
|     "node_modules/normalize-path": { |     "node_modules/normalize-path": { | ||||||
|       "version": "3.0.0", |       "version": "3.0.0", | ||||||
| @@ -1395,17 +1427,17 @@ | |||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "node_modules/pirates": { |     "node_modules/pirates": { | ||||||
|       "version": "4.0.5", |       "version": "4.0.6", | ||||||
|       "resolved": "https://registry.npmjs.org/pirates/-/pirates-4.0.5.tgz", |       "resolved": "https://registry.npmjs.org/pirates/-/pirates-4.0.6.tgz", | ||||||
|       "integrity": "sha512-8V9+HQPupnaXMA23c5hvl69zXvTwTzyAYasnkb0Tts4XvO4CliqONMOnvlq26rkhLC3nWDFBJf73LU1e1VZLaQ==", |       "integrity": "sha512-saLsH7WeYYPiD25LDuLRRY/i+6HaPYr6G1OUlN39otzkSTxKnubR9RTxS3/Kk50s1g2JTgFwWQDQyplC5/SHZg==", | ||||||
|       "engines": { |       "engines": { | ||||||
|         "node": ">= 6" |         "node": ">= 6" | ||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "node_modules/postcss": { |     "node_modules/postcss": { | ||||||
|       "version": "8.4.23", |       "version": "8.4.25", | ||||||
|       "resolved": "https://registry.npmjs.org/postcss/-/postcss-8.4.23.tgz", |       "resolved": "https://registry.npmjs.org/postcss/-/postcss-8.4.25.tgz", | ||||||
|       "integrity": "sha512-bQ3qMcpF6A/YjR55xtoTr0jGOlnPOKAIMdOWiv0EIT6HVPEaJiJB4NLljSbiHoC2RX7DN5Uvjtpbg1NPdwv1oA==", |       "integrity": "sha512-7taJ/8t2av0Z+sQEvNzCkpDynl0tX3uJMCODi6nT3PfASC7dYCWV9aQ+uiCf+KBD4SEFcu+GvJdGdwzQ6OSjCw==", | ||||||
|       "funding": [ |       "funding": [ | ||||||
|         { |         { | ||||||
|           "type": "opencollective", |           "type": "opencollective", | ||||||
| @@ -1430,16 +1462,16 @@ | |||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "node_modules/postcss-import": { |     "node_modules/postcss-import": { | ||||||
|       "version": "14.1.0", |       "version": "15.1.0", | ||||||
|       "resolved": "https://registry.npmjs.org/postcss-import/-/postcss-import-14.1.0.tgz", |       "resolved": "https://registry.npmjs.org/postcss-import/-/postcss-import-15.1.0.tgz", | ||||||
|       "integrity": "sha512-flwI+Vgm4SElObFVPpTIT7SU7R3qk2L7PyduMcokiaVKuWv9d/U+Gm/QAd8NDLuykTWTkcrjOeD2Pp1rMeBTGw==", |       "integrity": "sha512-hpr+J05B2FVYUAXHeK1YyI267J/dDDhMU6B6civm8hSY1jYJnBXxzKDKDswzJmtLHryrjhnDjqqp/49t8FALew==", | ||||||
|       "dependencies": { |       "dependencies": { | ||||||
|         "postcss-value-parser": "^4.0.0", |         "postcss-value-parser": "^4.0.0", | ||||||
|         "read-cache": "^1.0.0", |         "read-cache": "^1.0.0", | ||||||
|         "resolve": "^1.1.7" |         "resolve": "^1.1.7" | ||||||
|       }, |       }, | ||||||
|       "engines": { |       "engines": { | ||||||
|         "node": ">=10.0.0" |         "node": ">=14.0.0" | ||||||
|       }, |       }, | ||||||
|       "peerDependencies": { |       "peerDependencies": { | ||||||
|         "postcss": "^8.0.0" |         "postcss": "^8.0.0" | ||||||
| @@ -1464,15 +1496,15 @@ | |||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "node_modules/postcss-load-config": { |     "node_modules/postcss-load-config": { | ||||||
|       "version": "3.1.4", |       "version": "4.0.1", | ||||||
|       "resolved": "https://registry.npmjs.org/postcss-load-config/-/postcss-load-config-3.1.4.tgz", |       "resolved": "https://registry.npmjs.org/postcss-load-config/-/postcss-load-config-4.0.1.tgz", | ||||||
|       "integrity": "sha512-6DiM4E7v4coTE4uzA8U//WhtPwyhiim3eyjEMFCnUpzbrkK9wJHgKDT2mR+HbtSrd/NubVaYTOpSpjUl8NQeRg==", |       "integrity": "sha512-vEJIc8RdiBRu3oRAI0ymerOn+7rPuMvRXslTvZUKZonDHFIczxztIyJ1urxM1x9JXEikvpWWTUUqal5j/8QgvA==", | ||||||
|       "dependencies": { |       "dependencies": { | ||||||
|         "lilconfig": "^2.0.5", |         "lilconfig": "^2.0.5", | ||||||
|         "yaml": "^1.10.2" |         "yaml": "^2.1.1" | ||||||
|       }, |       }, | ||||||
|       "engines": { |       "engines": { | ||||||
|         "node": ">= 10" |         "node": ">= 14" | ||||||
|       }, |       }, | ||||||
|       "funding": { |       "funding": { | ||||||
|         "type": "opencollective", |         "type": "opencollective", | ||||||
| @@ -1492,11 +1524,11 @@ | |||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "node_modules/postcss-nested": { |     "node_modules/postcss-nested": { | ||||||
|       "version": "6.0.0", |       "version": "6.0.1", | ||||||
|       "resolved": "https://registry.npmjs.org/postcss-nested/-/postcss-nested-6.0.0.tgz", |       "resolved": "https://registry.npmjs.org/postcss-nested/-/postcss-nested-6.0.1.tgz", | ||||||
|       "integrity": "sha512-0DkamqrPcmkBDsLn+vQDIrtkSbNkv5AD/M322ySo9kqFkCIYklym2xEmWkwo+Y3/qZo34tzEPNUw4y7yMCdv5w==", |       "integrity": "sha512-mEp4xPMi5bSWiMbsgoPfcP74lsWLHkQbZc3sY+jWYd65CUwXrUaTp0fmNpa01ZcETKlIgUdFN/MpS2xZtqL9dQ==", | ||||||
|       "dependencies": { |       "dependencies": { | ||||||
|         "postcss-selector-parser": "^6.0.10" |         "postcss-selector-parser": "^6.0.11" | ||||||
|       }, |       }, | ||||||
|       "engines": { |       "engines": { | ||||||
|         "node": ">=12.0" |         "node": ">=12.0" | ||||||
| @@ -1510,9 +1542,9 @@ | |||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "node_modules/postcss-selector-parser": { |     "node_modules/postcss-selector-parser": { | ||||||
|       "version": "6.0.11", |       "version": "6.0.13", | ||||||
|       "resolved": "https://registry.npmjs.org/postcss-selector-parser/-/postcss-selector-parser-6.0.11.tgz", |       "resolved": "https://registry.npmjs.org/postcss-selector-parser/-/postcss-selector-parser-6.0.13.tgz", | ||||||
|       "integrity": "sha512-zbARubNdogI9j7WY4nQJBiNqQf3sLS3wCP4WfOidu+p28LofJqDH1tcXypGrcmMHhDk2t9wGhCsYe/+szLTy1g==", |       "integrity": "sha512-EaV1Gl4mUEV4ddhDnv/xtj7sxwrwxdetHdWUGnT4VJQf+4d05v6lHYZr8N573k5Z0BViss7BDhfWtKS3+sfAqQ==", | ||||||
|       "dependencies": { |       "dependencies": { | ||||||
|         "cssesc": "^3.0.0", |         "cssesc": "^3.0.0", | ||||||
|         "util-deprecate": "^1.0.2" |         "util-deprecate": "^1.0.2" | ||||||
| @@ -1545,17 +1577,6 @@ | |||||||
|         } |         } | ||||||
|       ] |       ] | ||||||
|     }, |     }, | ||||||
|     "node_modules/quick-lru": { |  | ||||||
|       "version": "5.1.1", |  | ||||||
|       "resolved": "https://registry.npmjs.org/quick-lru/-/quick-lru-5.1.1.tgz", |  | ||||||
|       "integrity": "sha512-WuyALRjWPDGtt/wzJiadO5AXY+8hZ80hVpe6MyivgraREW751X3SbhRvG3eLKOYN+8VEvqLcf3wdnt44Z4S4SA==", |  | ||||||
|       "engines": { |  | ||||||
|         "node": ">=10" |  | ||||||
|       }, |  | ||||||
|       "funding": { |  | ||||||
|         "url": "https://github.com/sponsors/sindresorhus" |  | ||||||
|       } |  | ||||||
|     }, |  | ||||||
|     "node_modules/read-cache": { |     "node_modules/read-cache": { | ||||||
|       "version": "1.0.0", |       "version": "1.0.0", | ||||||
|       "resolved": "https://registry.npmjs.org/read-cache/-/read-cache-1.0.0.tgz", |       "resolved": "https://registry.npmjs.org/read-cache/-/read-cache-1.0.0.tgz", | ||||||
| @@ -1693,65 +1714,61 @@ | |||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "node_modules/svelte": { |     "node_modules/svelte": { | ||||||
|       "version": "3.58.0", |       "version": "3.59.2", | ||||||
|       "resolved": "https://registry.npmjs.org/svelte/-/svelte-3.58.0.tgz", |       "resolved": "https://registry.npmjs.org/svelte/-/svelte-3.59.2.tgz", | ||||||
|       "integrity": "sha512-brIBNNB76mXFmU/Kerm4wFnkskBbluBDCjx/8TcpYRb298Yh2dztS2kQ6bhtjMcvUhd5ynClfwpz5h2gnzdQ1A==", |       "integrity": "sha512-vzSyuGr3eEoAtT/A6bmajosJZIUWySzY2CzB3w2pgPvnkUjGqlDnsNnA0PMO+mMAhuyMul6C2uuZzY6ELSkzyA==", | ||||||
|       "dev": true, |       "dev": true, | ||||||
|       "engines": { |       "engines": { | ||||||
|         "node": ">= 8" |         "node": ">= 8" | ||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "node_modules/svelte-hmr": { |     "node_modules/svelte-hmr": { | ||||||
|       "version": "0.15.1", |       "version": "0.15.2", | ||||||
|       "resolved": "https://registry.npmjs.org/svelte-hmr/-/svelte-hmr-0.15.1.tgz", |       "resolved": "https://registry.npmjs.org/svelte-hmr/-/svelte-hmr-0.15.2.tgz", | ||||||
|       "integrity": "sha512-BiKB4RZ8YSwRKCNVdNxK/GfY+r4Kjgp9jCLEy0DuqAKfmQtpL38cQK3afdpjw4sqSs4PLi3jIPJIFp259NkZtA==", |       "integrity": "sha512-q/bAruCvFLwvNbeE1x3n37TYFb3mTBJ6TrCq6p2CoFbSTNhDE9oAtEfpy+wmc9So8AG0Tja+X0/mJzX9tSfvIg==", | ||||||
|       "dev": true, |       "dev": true, | ||||||
|       "engines": { |       "engines": { | ||||||
|         "node": "^12.20 || ^14.13.1 || >= 16" |         "node": "^12.20 || ^14.13.1 || >= 16" | ||||||
|       }, |       }, | ||||||
|       "peerDependencies": { |       "peerDependencies": { | ||||||
|         "svelte": ">=3.19.0" |         "svelte": "^3.19.0 || ^4.0.0-next.0" | ||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "node_modules/tailwindcss": { |     "node_modules/tailwindcss": { | ||||||
|       "version": "3.3.1", |       "version": "3.3.2", | ||||||
|       "resolved": "https://registry.npmjs.org/tailwindcss/-/tailwindcss-3.3.1.tgz", |       "resolved": "https://registry.npmjs.org/tailwindcss/-/tailwindcss-3.3.2.tgz", | ||||||
|       "integrity": "sha512-Vkiouc41d4CEq0ujXl6oiGFQ7bA3WEhUZdTgXAhtKxSy49OmKs8rEfQmupsfF0IGW8fv2iQkp1EVUuapCFrZ9g==", |       "integrity": "sha512-9jPkMiIBXvPc2KywkraqsUfbfj+dHDb+JPWtSJa9MLFdrPyazI7q6WX2sUrm7R9eVR7qqv3Pas7EvQFzxKnI6w==", | ||||||
|       "dependencies": { |       "dependencies": { | ||||||
|  |         "@alloc/quick-lru": "^5.2.0", | ||||||
|         "arg": "^5.0.2", |         "arg": "^5.0.2", | ||||||
|         "chokidar": "^3.5.3", |         "chokidar": "^3.5.3", | ||||||
|         "color-name": "^1.1.4", |  | ||||||
|         "didyoumean": "^1.2.2", |         "didyoumean": "^1.2.2", | ||||||
|         "dlv": "^1.1.3", |         "dlv": "^1.1.3", | ||||||
|         "fast-glob": "^3.2.12", |         "fast-glob": "^3.2.12", | ||||||
|         "glob-parent": "^6.0.2", |         "glob-parent": "^6.0.2", | ||||||
|         "is-glob": "^4.0.3", |         "is-glob": "^4.0.3", | ||||||
|         "jiti": "^1.17.2", |         "jiti": "^1.18.2", | ||||||
|         "lilconfig": "^2.0.6", |         "lilconfig": "^2.1.0", | ||||||
|         "micromatch": "^4.0.5", |         "micromatch": "^4.0.5", | ||||||
|         "normalize-path": "^3.0.0", |         "normalize-path": "^3.0.0", | ||||||
|         "object-hash": "^3.0.0", |         "object-hash": "^3.0.0", | ||||||
|         "picocolors": "^1.0.0", |         "picocolors": "^1.0.0", | ||||||
|         "postcss": "^8.0.9", |         "postcss": "^8.4.23", | ||||||
|         "postcss-import": "^14.1.0", |         "postcss-import": "^15.1.0", | ||||||
|         "postcss-js": "^4.0.0", |         "postcss-js": "^4.0.1", | ||||||
|         "postcss-load-config": "^3.1.4", |         "postcss-load-config": "^4.0.1", | ||||||
|         "postcss-nested": "6.0.0", |         "postcss-nested": "^6.0.1", | ||||||
|         "postcss-selector-parser": "^6.0.11", |         "postcss-selector-parser": "^6.0.11", | ||||||
|         "postcss-value-parser": "^4.2.0", |         "postcss-value-parser": "^4.2.0", | ||||||
|         "quick-lru": "^5.1.1", |         "resolve": "^1.22.2", | ||||||
|         "resolve": "^1.22.1", |         "sucrase": "^3.32.0" | ||||||
|         "sucrase": "^3.29.0" |  | ||||||
|       }, |       }, | ||||||
|       "bin": { |       "bin": { | ||||||
|         "tailwind": "lib/cli.js", |         "tailwind": "lib/cli.js", | ||||||
|         "tailwindcss": "lib/cli.js" |         "tailwindcss": "lib/cli.js" | ||||||
|       }, |       }, | ||||||
|       "engines": { |       "engines": { | ||||||
|         "node": ">=12.13.0" |         "node": ">=14.0.0" | ||||||
|       }, |  | ||||||
|       "peerDependencies": { |  | ||||||
|         "postcss": "^8.0.9" |  | ||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "node_modules/thenify": { |     "node_modules/thenify": { | ||||||
| @@ -1824,9 +1841,9 @@ | |||||||
|       "integrity": "sha512-EPD5q1uXyFxJpCrLnCc1nHnq3gOa6DZBocAIiI2TaSCA7VCJ1UJDMagCzIkXNsUYfD1daK//LTEQ8xiIbrHtcw==" |       "integrity": "sha512-EPD5q1uXyFxJpCrLnCc1nHnq3gOa6DZBocAIiI2TaSCA7VCJ1UJDMagCzIkXNsUYfD1daK//LTEQ8xiIbrHtcw==" | ||||||
|     }, |     }, | ||||||
|     "node_modules/vite": { |     "node_modules/vite": { | ||||||
|       "version": "3.2.6", |       "version": "3.2.7", | ||||||
|       "resolved": "https://registry.npmjs.org/vite/-/vite-3.2.6.tgz", |       "resolved": "https://registry.npmjs.org/vite/-/vite-3.2.7.tgz", | ||||||
|       "integrity": "sha512-nTXTxYVvaQNLoW5BQ8PNNQ3lPia57gzsQU/Khv+JvzKPku8kNZL6NMUR/qwXhMG6E+g1idqEPanomJ+VZgixEg==", |       "integrity": "sha512-29pdXjk49xAP0QBr0xXqu2s5jiQIXNvE/xwd0vUizYT2Hzqe4BksNNoWllFVXJf4eLZ+UlVQmXfB4lWrc+t18g==", | ||||||
|       "dev": true, |       "dev": true, | ||||||
|       "dependencies": { |       "dependencies": { | ||||||
|         "esbuild": "^0.15.9", |         "esbuild": "^0.15.9", | ||||||
| @@ -1892,15 +1909,20 @@ | |||||||
|       "integrity": "sha512-l4Sp/DRseor9wL6EvV2+TuQn63dMkPjZ/sp9XkghTEbV9KlPS1xUsZ3u7/IQO4wxtcFB4bgpQPRcR3QCvezPcQ==" |       "integrity": "sha512-l4Sp/DRseor9wL6EvV2+TuQn63dMkPjZ/sp9XkghTEbV9KlPS1xUsZ3u7/IQO4wxtcFB4bgpQPRcR3QCvezPcQ==" | ||||||
|     }, |     }, | ||||||
|     "node_modules/yaml": { |     "node_modules/yaml": { | ||||||
|       "version": "1.10.2", |       "version": "2.3.1", | ||||||
|       "resolved": "https://registry.npmjs.org/yaml/-/yaml-1.10.2.tgz", |       "resolved": "https://registry.npmjs.org/yaml/-/yaml-2.3.1.tgz", | ||||||
|       "integrity": "sha512-r3vXyErRCYJ7wg28yvBY5VSoAF8ZvlcW9/BwUzEtUsjvX/DKs24dIkuwjtuprwJJHsbyUbLApepYTR1BN4uHrg==", |       "integrity": "sha512-2eHWfjaoXgTBC2jNM1LRef62VQa0umtvRiDSk6HSzW7RvS5YtkabJrwYLLEKWBc8a5U2PTSCs+dJjUTJdlHsWQ==", | ||||||
|       "engines": { |       "engines": { | ||||||
|         "node": ">= 6" |         "node": ">= 14" | ||||||
|       } |       } | ||||||
|     } |     } | ||||||
|   }, |   }, | ||||||
|   "dependencies": { |   "dependencies": { | ||||||
|  |     "@alloc/quick-lru": { | ||||||
|  |       "version": "5.2.0", | ||||||
|  |       "resolved": "https://registry.npmjs.org/@alloc/quick-lru/-/quick-lru-5.2.0.tgz", | ||||||
|  |       "integrity": "sha512-UrcABB+4bUrFABwbluTIBErXwvbsU/V7TZWfmbgJfbkwiBuziS9gxdODUyuiecfdGQ85jglMW6juS3+z5TsKLw==" | ||||||
|  |     }, | ||||||
|     "@esbuild/android-arm": { |     "@esbuild/android-arm": { | ||||||
|       "version": "0.15.18", |       "version": "0.15.18", | ||||||
|       "resolved": "https://registry.npmjs.org/@esbuild/android-arm/-/android-arm-0.15.18.tgz", |       "resolved": "https://registry.npmjs.org/@esbuild/android-arm/-/android-arm-0.15.18.tgz", | ||||||
| @@ -1994,87 +2016,95 @@ | |||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "@tauri-apps/api": { |     "@tauri-apps/api": { | ||||||
|       "version": "1.2.0", |       "version": "1.4.0", | ||||||
|       "resolved": "https://registry.npmjs.org/@tauri-apps/api/-/api-1.2.0.tgz", |       "resolved": "https://registry.npmjs.org/@tauri-apps/api/-/api-1.4.0.tgz", | ||||||
|       "integrity": "sha512-lsI54KI6HGf7VImuf/T9pnoejfgkNoXveP14pVV7XarrQ46rOejIVJLFqHI9sRReJMGdh2YuCoI3cc/yCWCsrw==" |       "integrity": "sha512-Jd6HPoTM1PZSFIzq7FB8VmMu3qSSyo/3lSwLpoapW+lQ41CL5Dow2KryLg+gyazA/58DRWI9vu/XpEeHK4uMdw==" | ||||||
|     }, |     }, | ||||||
|     "@tauri-apps/cli": { |     "@tauri-apps/cli": { | ||||||
|       "version": "1.2.3", |       "version": "1.4.0", | ||||||
|       "resolved": "https://registry.npmjs.org/@tauri-apps/cli/-/cli-1.2.3.tgz", |       "resolved": "https://registry.npmjs.org/@tauri-apps/cli/-/cli-1.4.0.tgz", | ||||||
|       "integrity": "sha512-erxtXuPhMEGJPBtnhPILD4AjuT81GZsraqpFvXAmEJZ2p8P6t7MVBifCL8LznRknznM3jn90D3M8RNBP3wcXTw==", |       "integrity": "sha512-VXYr2i2iVFl98etQSQsqLzXgX96bnWiNZd1YADgatqwy/qecbd6Kl5ZAPB5R4ynsgE8A1gU7Fbzh7dCEQYFfmA==", | ||||||
|       "dev": true, |       "dev": true, | ||||||
|       "requires": { |       "requires": { | ||||||
|         "@tauri-apps/cli-darwin-arm64": "1.2.3", |         "@tauri-apps/cli-darwin-arm64": "1.4.0", | ||||||
|         "@tauri-apps/cli-darwin-x64": "1.2.3", |         "@tauri-apps/cli-darwin-x64": "1.4.0", | ||||||
|         "@tauri-apps/cli-linux-arm-gnueabihf": "1.2.3", |         "@tauri-apps/cli-linux-arm-gnueabihf": "1.4.0", | ||||||
|         "@tauri-apps/cli-linux-arm64-gnu": "1.2.3", |         "@tauri-apps/cli-linux-arm64-gnu": "1.4.0", | ||||||
|         "@tauri-apps/cli-linux-arm64-musl": "1.2.3", |         "@tauri-apps/cli-linux-arm64-musl": "1.4.0", | ||||||
|         "@tauri-apps/cli-linux-x64-gnu": "1.2.3", |         "@tauri-apps/cli-linux-x64-gnu": "1.4.0", | ||||||
|         "@tauri-apps/cli-linux-x64-musl": "1.2.3", |         "@tauri-apps/cli-linux-x64-musl": "1.4.0", | ||||||
|         "@tauri-apps/cli-win32-ia32-msvc": "1.2.3", |         "@tauri-apps/cli-win32-arm64-msvc": "1.4.0", | ||||||
|         "@tauri-apps/cli-win32-x64-msvc": "1.2.3" |         "@tauri-apps/cli-win32-ia32-msvc": "1.4.0", | ||||||
|  |         "@tauri-apps/cli-win32-x64-msvc": "1.4.0" | ||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "@tauri-apps/cli-darwin-arm64": { |     "@tauri-apps/cli-darwin-arm64": { | ||||||
|       "version": "1.2.3", |       "version": "1.4.0", | ||||||
|       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-darwin-arm64/-/cli-darwin-arm64-1.2.3.tgz", |       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-darwin-arm64/-/cli-darwin-arm64-1.4.0.tgz", | ||||||
|       "integrity": "sha512-phJN3fN8FtZZwqXg08bcxfq1+X1JSDglLvRxOxB7VWPq+O5SuB8uLyssjJsu+PIhyZZnIhTGdjhzLSFhSXfLsw==", |       "integrity": "sha512-nA/ml0SfUt6/CYLVbHmT500Y+ijqsuv5+s9EBnVXYSLVg9kbPUZJJHluEYK+xKuOj6xzyuT/+rZFMRapmJD3jQ==", | ||||||
|       "dev": true, |       "dev": true, | ||||||
|       "optional": true |       "optional": true | ||||||
|     }, |     }, | ||||||
|     "@tauri-apps/cli-darwin-x64": { |     "@tauri-apps/cli-darwin-x64": { | ||||||
|       "version": "1.2.3", |       "version": "1.4.0", | ||||||
|       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-darwin-x64/-/cli-darwin-x64-1.2.3.tgz", |       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-darwin-x64/-/cli-darwin-x64-1.4.0.tgz", | ||||||
|       "integrity": "sha512-jFZ/y6z8z6v4yliIbXKBXA7BJgtZVMsITmEXSuD6s5+eCOpDhQxbRkr6CA+FFfr+/r96rWSDSgDenDQuSvPAKw==", |       "integrity": "sha512-ov/F6Zr+dg9B0PtRu65stFo2G0ow2TUlneqYYrkj+vA3n+moWDHfVty0raDjMLQbQt3rv3uayFMXGPMgble9OA==", | ||||||
|       "dev": true, |       "dev": true, | ||||||
|       "optional": true |       "optional": true | ||||||
|     }, |     }, | ||||||
|     "@tauri-apps/cli-linux-arm-gnueabihf": { |     "@tauri-apps/cli-linux-arm-gnueabihf": { | ||||||
|       "version": "1.2.3", |       "version": "1.4.0", | ||||||
|       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-linux-arm-gnueabihf/-/cli-linux-arm-gnueabihf-1.2.3.tgz", |       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-linux-arm-gnueabihf/-/cli-linux-arm-gnueabihf-1.4.0.tgz", | ||||||
|       "integrity": "sha512-C7h5vqAwXzY0kRGSU00Fj8PudiDWFCiQqqUNI1N+fhCILrzWZB9TPBwdx33ZfXKt/U4+emdIoo/N34v3TiAOmQ==", |       "integrity": "sha512-zwjbiMncycXDV7doovymyKD7sCg53ouAmfgpUqEBOTY3vgBi9TwijyPhJOqoG5vUVWhouNBC08akGmE4dja15g==", | ||||||
|       "dev": true, |       "dev": true, | ||||||
|       "optional": true |       "optional": true | ||||||
|     }, |     }, | ||||||
|     "@tauri-apps/cli-linux-arm64-gnu": { |     "@tauri-apps/cli-linux-arm64-gnu": { | ||||||
|       "version": "1.2.3", |       "version": "1.4.0", | ||||||
|       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-linux-arm64-gnu/-/cli-linux-arm64-gnu-1.2.3.tgz", |       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-linux-arm64-gnu/-/cli-linux-arm64-gnu-1.4.0.tgz", | ||||||
|       "integrity": "sha512-buf1c8sdkuUzVDkGPQpyUdAIIdn5r0UgXU6+H5fGPq/Xzt5K69JzXaeo6fHsZEZghbV0hOK+taKV4J0m30UUMQ==", |       "integrity": "sha512-5MCBcziqXC72mMXnkZU68mutXIR6zavDxopArE2gQtK841IlE06bIgtLi0kUUhlFJk2nhPRgiDgdLbrPlyt7fw==", | ||||||
|       "dev": true, |       "dev": true, | ||||||
|       "optional": true |       "optional": true | ||||||
|     }, |     }, | ||||||
|     "@tauri-apps/cli-linux-arm64-musl": { |     "@tauri-apps/cli-linux-arm64-musl": { | ||||||
|       "version": "1.2.3", |       "version": "1.4.0", | ||||||
|       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-linux-arm64-musl/-/cli-linux-arm64-musl-1.2.3.tgz", |       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-linux-arm64-musl/-/cli-linux-arm64-musl-1.4.0.tgz", | ||||||
|       "integrity": "sha512-x88wPS9W5xAyk392vc4uNHcKBBvCp0wf4H9JFMF9OBwB7vfd59LbQCFcPSu8f0BI7bPrOsyHqspWHuFL8ojQEA==", |       "integrity": "sha512-7J3pRB6n6uNYgIfCeKt2Oz8J7oSaz2s8GGFRRH2HPxuTHrBNCinzVYm68UhVpJrL3bnGkU0ziVZLsW/iaOGfUg==", | ||||||
|       "dev": true, |       "dev": true, | ||||||
|       "optional": true |       "optional": true | ||||||
|     }, |     }, | ||||||
|     "@tauri-apps/cli-linux-x64-gnu": { |     "@tauri-apps/cli-linux-x64-gnu": { | ||||||
|       "version": "1.2.3", |       "version": "1.4.0", | ||||||
|       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-linux-x64-gnu/-/cli-linux-x64-gnu-1.2.3.tgz", |       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-linux-x64-gnu/-/cli-linux-x64-gnu-1.4.0.tgz", | ||||||
|       "integrity": "sha512-ZMz1jxEVe0B4/7NJnlPHmwmSIuwiD6ViXKs8F+OWWz2Y4jn5TGxWKFg7DLx5OwQTRvEIZxxT7lXHi5CuTNAxKg==", |       "integrity": "sha512-Zh5gfAJxOv5AVWxcwuueaQ2vIAhlg0d6nZui6nMyfIJ8dbf3aZQ5ZzP38sYow5h/fbvgL+3GSQxZRBIa3c2E1w==", | ||||||
|       "dev": true, |       "dev": true, | ||||||
|       "optional": true |       "optional": true | ||||||
|     }, |     }, | ||||||
|     "@tauri-apps/cli-linux-x64-musl": { |     "@tauri-apps/cli-linux-x64-musl": { | ||||||
|       "version": "1.2.3", |       "version": "1.4.0", | ||||||
|       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-linux-x64-musl/-/cli-linux-x64-musl-1.2.3.tgz", |       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-linux-x64-musl/-/cli-linux-x64-musl-1.4.0.tgz", | ||||||
|       "integrity": "sha512-B/az59EjJhdbZDzawEVox0LQu2ZHCZlk8rJf85AMIktIUoAZPFbwyiUv7/zjzA/sY6Nb58OSJgaPL2/IBy7E0A==", |       "integrity": "sha512-OLAYoICU3FaYiTdBsI+lQTKnDHeMmFMXIApN0M+xGiOkoIOQcV9CConMPjgmJQ867+NHRNgUGlvBEAh9CiJodQ==", | ||||||
|  |       "dev": true, | ||||||
|  |       "optional": true | ||||||
|  |     }, | ||||||
|  |     "@tauri-apps/cli-win32-arm64-msvc": { | ||||||
|  |       "version": "1.4.0", | ||||||
|  |       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-win32-arm64-msvc/-/cli-win32-arm64-msvc-1.4.0.tgz", | ||||||
|  |       "integrity": "sha512-gZ05GENFbI6CB5MlOUsLlU0kZ9UtHn9riYtSXKT6MYs8HSPRffPHaHSL0WxsJweWh9nR5Hgh/TUU8uW3sYCzCg==", | ||||||
|       "dev": true, |       "dev": true, | ||||||
|       "optional": true |       "optional": true | ||||||
|     }, |     }, | ||||||
|     "@tauri-apps/cli-win32-ia32-msvc": { |     "@tauri-apps/cli-win32-ia32-msvc": { | ||||||
|       "version": "1.2.3", |       "version": "1.4.0", | ||||||
|       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-win32-ia32-msvc/-/cli-win32-ia32-msvc-1.2.3.tgz", |       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-win32-ia32-msvc/-/cli-win32-ia32-msvc-1.4.0.tgz", | ||||||
|       "integrity": "sha512-ypdO1OdC5ugNJAKO2m3sb1nsd+0TSvMS9Tr5qN/ZSMvtSduaNwrcZ3D7G/iOIanrqu/Nl8t3LYlgPZGBKlw7Ng==", |       "integrity": "sha512-JsetT/lTx/Zq98eo8T5CiRyF1nKeX04RO8JlJrI3ZOYsZpp/A5RJvMd/szQ17iOzwiHdge+tx7k2jHysR6oBlQ==", | ||||||
|       "dev": true, |       "dev": true, | ||||||
|       "optional": true |       "optional": true | ||||||
|     }, |     }, | ||||||
|     "@tauri-apps/cli-win32-x64-msvc": { |     "@tauri-apps/cli-win32-x64-msvc": { | ||||||
|       "version": "1.2.3", |       "version": "1.4.0", | ||||||
|       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-win32-x64-msvc/-/cli-win32-x64-msvc-1.2.3.tgz", |       "resolved": "https://registry.npmjs.org/@tauri-apps/cli-win32-x64-msvc/-/cli-win32-x64-msvc-1.4.0.tgz", | ||||||
|       "integrity": "sha512-CsbHQ+XhnV/2csOBBDVfH16cdK00gNyNYUW68isedmqcn8j+s0e9cQ1xXIqi+Hue3awp8g3ImYN5KPepf3UExw==", |       "integrity": "sha512-z8Olcnwp5aYhzqUAarFjqF+oELCjuYWnB2HAJHlfsYNfDCAORY5kct3Fklz8PSsubC3U2EugWn8n42DwnThurg==", | ||||||
|       "dev": true, |       "dev": true, | ||||||
|       "optional": true |       "optional": true | ||||||
|     }, |     }, | ||||||
| @@ -2138,14 +2168,14 @@ | |||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "browserslist": { |     "browserslist": { | ||||||
|       "version": "4.21.5", |       "version": "4.21.9", | ||||||
|       "resolved": "https://registry.npmjs.org/browserslist/-/browserslist-4.21.5.tgz", |       "resolved": "https://registry.npmjs.org/browserslist/-/browserslist-4.21.9.tgz", | ||||||
|       "integrity": "sha512-tUkiguQGW7S3IhB7N+c2MV/HZPSCPAAiYBZXLsBhFB/PCy6ZKKsZrmBayHV9fdGV/ARIfJ14NkxKzRDjvp7L6w==", |       "integrity": "sha512-M0MFoZzbUrRU4KNfCrDLnvyE7gub+peetoTid3TBIqtunaDJyXlwhakT+/VkvSXcfIzFfK/nkCs4nmyTmxdNSg==", | ||||||
|       "requires": { |       "requires": { | ||||||
|         "caniuse-lite": "^1.0.30001449", |         "caniuse-lite": "^1.0.30001503", | ||||||
|         "electron-to-chromium": "^1.4.284", |         "electron-to-chromium": "^1.4.431", | ||||||
|         "node-releases": "^2.0.8", |         "node-releases": "^2.0.12", | ||||||
|         "update-browserslist-db": "^1.0.10" |         "update-browserslist-db": "^1.0.11" | ||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "camelcase-css": { |     "camelcase-css": { | ||||||
| @@ -2154,9 +2184,9 @@ | |||||||
|       "integrity": "sha512-QOSvevhslijgYwRx6Rv7zKdMF8lbRmx+uQGx2+vDc+KI/eBnsy9kit5aj23AgGu3pa4t9AgwbnXWqS+iOY+2aA==" |       "integrity": "sha512-QOSvevhslijgYwRx6Rv7zKdMF8lbRmx+uQGx2+vDc+KI/eBnsy9kit5aj23AgGu3pa4t9AgwbnXWqS+iOY+2aA==" | ||||||
|     }, |     }, | ||||||
|     "caniuse-lite": { |     "caniuse-lite": { | ||||||
|       "version": "1.0.30001481", |       "version": "1.0.30001515", | ||||||
|       "resolved": "https://registry.npmjs.org/caniuse-lite/-/caniuse-lite-1.0.30001481.tgz", |       "resolved": "https://registry.npmjs.org/caniuse-lite/-/caniuse-lite-1.0.30001515.tgz", | ||||||
|       "integrity": "sha512-KCqHwRnaa1InZBtqXzP98LPg0ajCVujMKjqKDhZEthIpAsJl/YEIa3YvXjGXPVqzZVguccuu7ga9KOE1J9rKPQ==" |       "integrity": "sha512-eEFDwUOZbE24sb+Ecsx3+OvNETqjWIdabMy52oOkIgcUtAsQifjUG9q4U9dgTHJM2mfk4uEPxc0+xuFdJ629QA==" | ||||||
|     }, |     }, | ||||||
|     "chokidar": { |     "chokidar": { | ||||||
|       "version": "3.5.3", |       "version": "3.5.3", | ||||||
| @@ -2239,9 +2269,9 @@ | |||||||
|       "integrity": "sha512-/Tb/JcjK111nNScGob5MNtsntNM1aCNUDipB/TkwZFhyDrrE47SOx/18wF2bbjgc3ZzCSKW1T5nt5EbFoAz/Vg==" |       "integrity": "sha512-/Tb/JcjK111nNScGob5MNtsntNM1aCNUDipB/TkwZFhyDrrE47SOx/18wF2bbjgc3ZzCSKW1T5nt5EbFoAz/Vg==" | ||||||
|     }, |     }, | ||||||
|     "daisyui": { |     "daisyui": { | ||||||
|       "version": "2.51.5", |       "version": "2.52.0", | ||||||
|       "resolved": "https://registry.npmjs.org/daisyui/-/daisyui-2.51.5.tgz", |       "resolved": "https://registry.npmjs.org/daisyui/-/daisyui-2.52.0.tgz", | ||||||
|       "integrity": "sha512-L05dRw0tasmz2Ha+10LhftEGLq4kaA8vRR/T0wDaXfHwqcgsf81jfXDJ6NlZ63Z7Rl1k3rj7UHs0l0p7CM3aYA==", |       "integrity": "sha512-LQTA5/IVXAJHBMFoeaEMfd7/akAFPPcdQPR3O9fzzcFiczneJFM73CFPnScmW2sOgn/D83cvkP854ep2T9OfTg==", | ||||||
|       "requires": { |       "requires": { | ||||||
|         "color": "^4.2", |         "color": "^4.2", | ||||||
|         "css-selector-tokenizer": "^0.8.0", |         "css-selector-tokenizer": "^0.8.0", | ||||||
| @@ -2275,9 +2305,9 @@ | |||||||
|       "integrity": "sha512-+HlytyjlPKnIG8XuRG8WvmBP8xs8P71y+SKKS6ZXWoEgLuePxtDoUEiH7WkdePWrQ5JBpE6aoVqfZfJUQkjXwA==" |       "integrity": "sha512-+HlytyjlPKnIG8XuRG8WvmBP8xs8P71y+SKKS6ZXWoEgLuePxtDoUEiH7WkdePWrQ5JBpE6aoVqfZfJUQkjXwA==" | ||||||
|     }, |     }, | ||||||
|     "electron-to-chromium": { |     "electron-to-chromium": { | ||||||
|       "version": "1.4.369", |       "version": "1.4.455", | ||||||
|       "resolved": "https://registry.npmjs.org/electron-to-chromium/-/electron-to-chromium-1.4.369.tgz", |       "resolved": "https://registry.npmjs.org/electron-to-chromium/-/electron-to-chromium-1.4.455.tgz", | ||||||
|       "integrity": "sha512-LfxbHXdA/S+qyoTEA4EbhxGjrxx7WK2h6yb5K2v0UCOufUKX+VZaHbl3svlzZfv9sGseym/g3Ne4DpsgRULmqg==" |       "integrity": "sha512-8tgdX0Odl24LtmLwxotpJCVjIndN559AvaOtd67u+2mo+IDsgsTF580NB+uuDCqsHw8yFg53l5+imFV9Fw3cbA==" | ||||||
|     }, |     }, | ||||||
|     "esbuild": { |     "esbuild": { | ||||||
|       "version": "0.15.18", |       "version": "0.15.18", | ||||||
| @@ -2455,9 +2485,9 @@ | |||||||
|       "integrity": "sha512-k0er2gUkLf8O0zKJiAhmkTnJlTvINGv7ygDNPbeIsX/TJjGJZHuh9B2UxbsaEkmlEo9MfhrSzmhIlhRlI2GXnw==" |       "integrity": "sha512-k0er2gUkLf8O0zKJiAhmkTnJlTvINGv7ygDNPbeIsX/TJjGJZHuh9B2UxbsaEkmlEo9MfhrSzmhIlhRlI2GXnw==" | ||||||
|     }, |     }, | ||||||
|     "fast-glob": { |     "fast-glob": { | ||||||
|       "version": "3.2.12", |       "version": "3.3.0", | ||||||
|       "resolved": "https://registry.npmjs.org/fast-glob/-/fast-glob-3.2.12.tgz", |       "resolved": "https://registry.npmjs.org/fast-glob/-/fast-glob-3.3.0.tgz", | ||||||
|       "integrity": "sha512-DVj4CQIYYow0BlaelwK1pHl5n5cRSJfM60UA0zK891sVInoPri2Ekj7+e1CT3/3qxXenpI+nBBmQAcJPJgaj4w==", |       "integrity": "sha512-ChDuvbOypPuNjO8yIDf36x7BlZX1smcUMTTcyoIjycexOxd6DFsKsg21qVBzEmr3G7fUKIRy2/psii+CIUt7FA==", | ||||||
|       "requires": { |       "requires": { | ||||||
|         "@nodelib/fs.stat": "^2.0.2", |         "@nodelib/fs.stat": "^2.0.2", | ||||||
|         "@nodelib/fs.walk": "^1.2.3", |         "@nodelib/fs.walk": "^1.2.3", | ||||||
| @@ -2575,9 +2605,9 @@ | |||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "is-core-module": { |     "is-core-module": { | ||||||
|       "version": "2.12.0", |       "version": "2.12.1", | ||||||
|       "resolved": "https://registry.npmjs.org/is-core-module/-/is-core-module-2.12.0.tgz", |       "resolved": "https://registry.npmjs.org/is-core-module/-/is-core-module-2.12.1.tgz", | ||||||
|       "integrity": "sha512-RECHCBCd/viahWmwj6enj19sKbHfJrddi/6cBDsNTKbNq0f7VeaUkBo60BqzvPqo/W54ChS62Z5qyun7cfOMqQ==", |       "integrity": "sha512-Q4ZuBAe2FUsKtyQJoQHlvP8OvBERxO3jEmy1I7hcRXcJBGGHFh/aJBswbXuS9sgrDH2QUO8ilkwNPHvHMd8clg==", | ||||||
|       "requires": { |       "requires": { | ||||||
|         "has": "^1.0.3" |         "has": "^1.0.3" | ||||||
|       } |       } | ||||||
| @@ -2601,9 +2631,9 @@ | |||||||
|       "integrity": "sha512-41Cifkg6e8TylSpdtTpeLVMqvSBEVzTttHvERD741+pnZ8ANv0004MRL43QKPDlK9cGvNp6NZWZUBlbGXYxxng==" |       "integrity": "sha512-41Cifkg6e8TylSpdtTpeLVMqvSBEVzTttHvERD741+pnZ8ANv0004MRL43QKPDlK9cGvNp6NZWZUBlbGXYxxng==" | ||||||
|     }, |     }, | ||||||
|     "jiti": { |     "jiti": { | ||||||
|       "version": "1.18.2", |       "version": "1.19.1", | ||||||
|       "resolved": "https://registry.npmjs.org/jiti/-/jiti-1.18.2.tgz", |       "resolved": "https://registry.npmjs.org/jiti/-/jiti-1.19.1.tgz", | ||||||
|       "integrity": "sha512-QAdOptna2NYiSSpv0O/BwoHBSmz4YhpzJHyi+fnMRTXFjp7B8i/YG5Z8IfusxB1ufjcD2Sre1F3R+nX3fvy7gg==" |       "integrity": "sha512-oVhqoRDaBXf7sjkll95LHVS6Myyyb1zaunVwk4Z0+WPSW4gjS0pl01zYKHScTuyEhQsFxV5L4DR5r+YqSyqyyg==" | ||||||
|     }, |     }, | ||||||
|     "kleur": { |     "kleur": { | ||||||
|       "version": "4.1.5", |       "version": "4.1.5", | ||||||
| @@ -2674,9 +2704,9 @@ | |||||||
|       "integrity": "sha512-BGcqMMJuToF7i1rt+2PWSNVnWIkGCU78jBG3RxO/bZlnZPK2Cmi2QaffxGO/2RvWi9sL+FAiRiXMgsyxQ1DIDA==" |       "integrity": "sha512-BGcqMMJuToF7i1rt+2PWSNVnWIkGCU78jBG3RxO/bZlnZPK2Cmi2QaffxGO/2RvWi9sL+FAiRiXMgsyxQ1DIDA==" | ||||||
|     }, |     }, | ||||||
|     "node-releases": { |     "node-releases": { | ||||||
|       "version": "2.0.10", |       "version": "2.0.13", | ||||||
|       "resolved": "https://registry.npmjs.org/node-releases/-/node-releases-2.0.10.tgz", |       "resolved": "https://registry.npmjs.org/node-releases/-/node-releases-2.0.13.tgz", | ||||||
|       "integrity": "sha512-5GFldHPXVG/YZmFzJvKK2zDSzPKhEp0+ZR5SVaoSag9fsL5YgHbUHDfnG5494ISANDcK4KwPXAx2xqVEydmd7w==" |       "integrity": "sha512-uYr7J37ae/ORWdZeQ1xxMJe3NtdmqMC/JZK+geofDrkLUApKRHPd18/TxtBOJ4A0/+uUIliorNrfYV6s1b02eQ==" | ||||||
|     }, |     }, | ||||||
|     "normalize-path": { |     "normalize-path": { | ||||||
|       "version": "3.0.0", |       "version": "3.0.0", | ||||||
| @@ -2732,14 +2762,14 @@ | |||||||
|       "integrity": "sha512-udgsAY+fTnvv7kI7aaxbqwWNb0AHiB0qBO89PZKPkoTmGOgdbrHDKD+0B2X4uTfJ/FT1R09r9gTsjUjNJotuog==" |       "integrity": "sha512-udgsAY+fTnvv7kI7aaxbqwWNb0AHiB0qBO89PZKPkoTmGOgdbrHDKD+0B2X4uTfJ/FT1R09r9gTsjUjNJotuog==" | ||||||
|     }, |     }, | ||||||
|     "pirates": { |     "pirates": { | ||||||
|       "version": "4.0.5", |       "version": "4.0.6", | ||||||
|       "resolved": "https://registry.npmjs.org/pirates/-/pirates-4.0.5.tgz", |       "resolved": "https://registry.npmjs.org/pirates/-/pirates-4.0.6.tgz", | ||||||
|       "integrity": "sha512-8V9+HQPupnaXMA23c5hvl69zXvTwTzyAYasnkb0Tts4XvO4CliqONMOnvlq26rkhLC3nWDFBJf73LU1e1VZLaQ==" |       "integrity": "sha512-saLsH7WeYYPiD25LDuLRRY/i+6HaPYr6G1OUlN39otzkSTxKnubR9RTxS3/Kk50s1g2JTgFwWQDQyplC5/SHZg==" | ||||||
|     }, |     }, | ||||||
|     "postcss": { |     "postcss": { | ||||||
|       "version": "8.4.23", |       "version": "8.4.25", | ||||||
|       "resolved": "https://registry.npmjs.org/postcss/-/postcss-8.4.23.tgz", |       "resolved": "https://registry.npmjs.org/postcss/-/postcss-8.4.25.tgz", | ||||||
|       "integrity": "sha512-bQ3qMcpF6A/YjR55xtoTr0jGOlnPOKAIMdOWiv0EIT6HVPEaJiJB4NLljSbiHoC2RX7DN5Uvjtpbg1NPdwv1oA==", |       "integrity": "sha512-7taJ/8t2av0Z+sQEvNzCkpDynl0tX3uJMCODi6nT3PfASC7dYCWV9aQ+uiCf+KBD4SEFcu+GvJdGdwzQ6OSjCw==", | ||||||
|       "requires": { |       "requires": { | ||||||
|         "nanoid": "^3.3.6", |         "nanoid": "^3.3.6", | ||||||
|         "picocolors": "^1.0.0", |         "picocolors": "^1.0.0", | ||||||
| @@ -2747,9 +2777,9 @@ | |||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "postcss-import": { |     "postcss-import": { | ||||||
|       "version": "14.1.0", |       "version": "15.1.0", | ||||||
|       "resolved": "https://registry.npmjs.org/postcss-import/-/postcss-import-14.1.0.tgz", |       "resolved": "https://registry.npmjs.org/postcss-import/-/postcss-import-15.1.0.tgz", | ||||||
|       "integrity": "sha512-flwI+Vgm4SElObFVPpTIT7SU7R3qk2L7PyduMcokiaVKuWv9d/U+Gm/QAd8NDLuykTWTkcrjOeD2Pp1rMeBTGw==", |       "integrity": "sha512-hpr+J05B2FVYUAXHeK1YyI267J/dDDhMU6B6civm8hSY1jYJnBXxzKDKDswzJmtLHryrjhnDjqqp/49t8FALew==", | ||||||
|       "requires": { |       "requires": { | ||||||
|         "postcss-value-parser": "^4.0.0", |         "postcss-value-parser": "^4.0.0", | ||||||
|         "read-cache": "^1.0.0", |         "read-cache": "^1.0.0", | ||||||
| @@ -2765,26 +2795,26 @@ | |||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "postcss-load-config": { |     "postcss-load-config": { | ||||||
|       "version": "3.1.4", |       "version": "4.0.1", | ||||||
|       "resolved": "https://registry.npmjs.org/postcss-load-config/-/postcss-load-config-3.1.4.tgz", |       "resolved": "https://registry.npmjs.org/postcss-load-config/-/postcss-load-config-4.0.1.tgz", | ||||||
|       "integrity": "sha512-6DiM4E7v4coTE4uzA8U//WhtPwyhiim3eyjEMFCnUpzbrkK9wJHgKDT2mR+HbtSrd/NubVaYTOpSpjUl8NQeRg==", |       "integrity": "sha512-vEJIc8RdiBRu3oRAI0ymerOn+7rPuMvRXslTvZUKZonDHFIczxztIyJ1urxM1x9JXEikvpWWTUUqal5j/8QgvA==", | ||||||
|       "requires": { |       "requires": { | ||||||
|         "lilconfig": "^2.0.5", |         "lilconfig": "^2.0.5", | ||||||
|         "yaml": "^1.10.2" |         "yaml": "^2.1.1" | ||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "postcss-nested": { |     "postcss-nested": { | ||||||
|       "version": "6.0.0", |       "version": "6.0.1", | ||||||
|       "resolved": "https://registry.npmjs.org/postcss-nested/-/postcss-nested-6.0.0.tgz", |       "resolved": "https://registry.npmjs.org/postcss-nested/-/postcss-nested-6.0.1.tgz", | ||||||
|       "integrity": "sha512-0DkamqrPcmkBDsLn+vQDIrtkSbNkv5AD/M322ySo9kqFkCIYklym2xEmWkwo+Y3/qZo34tzEPNUw4y7yMCdv5w==", |       "integrity": "sha512-mEp4xPMi5bSWiMbsgoPfcP74lsWLHkQbZc3sY+jWYd65CUwXrUaTp0fmNpa01ZcETKlIgUdFN/MpS2xZtqL9dQ==", | ||||||
|       "requires": { |       "requires": { | ||||||
|         "postcss-selector-parser": "^6.0.10" |         "postcss-selector-parser": "^6.0.11" | ||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "postcss-selector-parser": { |     "postcss-selector-parser": { | ||||||
|       "version": "6.0.11", |       "version": "6.0.13", | ||||||
|       "resolved": "https://registry.npmjs.org/postcss-selector-parser/-/postcss-selector-parser-6.0.11.tgz", |       "resolved": "https://registry.npmjs.org/postcss-selector-parser/-/postcss-selector-parser-6.0.13.tgz", | ||||||
|       "integrity": "sha512-zbARubNdogI9j7WY4nQJBiNqQf3sLS3wCP4WfOidu+p28LofJqDH1tcXypGrcmMHhDk2t9wGhCsYe/+szLTy1g==", |       "integrity": "sha512-EaV1Gl4mUEV4ddhDnv/xtj7sxwrwxdetHdWUGnT4VJQf+4d05v6lHYZr8N573k5Z0BViss7BDhfWtKS3+sfAqQ==", | ||||||
|       "requires": { |       "requires": { | ||||||
|         "cssesc": "^3.0.0", |         "cssesc": "^3.0.0", | ||||||
|         "util-deprecate": "^1.0.2" |         "util-deprecate": "^1.0.2" | ||||||
| @@ -2800,11 +2830,6 @@ | |||||||
|       "resolved": "https://registry.npmjs.org/queue-microtask/-/queue-microtask-1.2.3.tgz", |       "resolved": "https://registry.npmjs.org/queue-microtask/-/queue-microtask-1.2.3.tgz", | ||||||
|       "integrity": "sha512-NuaNSa6flKT5JaSYQzJok04JzTL1CA6aGhv5rfLW3PgqA+M2ChpZQnAC8h8i4ZFkBS8X5RqkDBHA7r4hej3K9A==" |       "integrity": "sha512-NuaNSa6flKT5JaSYQzJok04JzTL1CA6aGhv5rfLW3PgqA+M2ChpZQnAC8h8i4ZFkBS8X5RqkDBHA7r4hej3K9A==" | ||||||
|     }, |     }, | ||||||
|     "quick-lru": { |  | ||||||
|       "version": "5.1.1", |  | ||||||
|       "resolved": "https://registry.npmjs.org/quick-lru/-/quick-lru-5.1.1.tgz", |  | ||||||
|       "integrity": "sha512-WuyALRjWPDGtt/wzJiadO5AXY+8hZ80hVpe6MyivgraREW751X3SbhRvG3eLKOYN+8VEvqLcf3wdnt44Z4S4SA==" |  | ||||||
|     }, |  | ||||||
|     "read-cache": { |     "read-cache": { | ||||||
|       "version": "1.0.0", |       "version": "1.0.0", | ||||||
|       "resolved": "https://registry.npmjs.org/read-cache/-/read-cache-1.0.0.tgz", |       "resolved": "https://registry.npmjs.org/read-cache/-/read-cache-1.0.0.tgz", | ||||||
| @@ -2892,47 +2917,46 @@ | |||||||
|       "integrity": "sha512-ot0WnXS9fgdkgIcePe6RHNk1WA8+muPa6cSjeR3V8K27q9BB1rTE3R1p7Hv0z1ZyAc8s6Vvv8DIyWf681MAt0w==" |       "integrity": "sha512-ot0WnXS9fgdkgIcePe6RHNk1WA8+muPa6cSjeR3V8K27q9BB1rTE3R1p7Hv0z1ZyAc8s6Vvv8DIyWf681MAt0w==" | ||||||
|     }, |     }, | ||||||
|     "svelte": { |     "svelte": { | ||||||
|       "version": "3.58.0", |       "version": "3.59.2", | ||||||
|       "resolved": "https://registry.npmjs.org/svelte/-/svelte-3.58.0.tgz", |       "resolved": "https://registry.npmjs.org/svelte/-/svelte-3.59.2.tgz", | ||||||
|       "integrity": "sha512-brIBNNB76mXFmU/Kerm4wFnkskBbluBDCjx/8TcpYRb298Yh2dztS2kQ6bhtjMcvUhd5ynClfwpz5h2gnzdQ1A==", |       "integrity": "sha512-vzSyuGr3eEoAtT/A6bmajosJZIUWySzY2CzB3w2pgPvnkUjGqlDnsNnA0PMO+mMAhuyMul6C2uuZzY6ELSkzyA==", | ||||||
|       "dev": true |       "dev": true | ||||||
|     }, |     }, | ||||||
|     "svelte-hmr": { |     "svelte-hmr": { | ||||||
|       "version": "0.15.1", |       "version": "0.15.2", | ||||||
|       "resolved": "https://registry.npmjs.org/svelte-hmr/-/svelte-hmr-0.15.1.tgz", |       "resolved": "https://registry.npmjs.org/svelte-hmr/-/svelte-hmr-0.15.2.tgz", | ||||||
|       "integrity": "sha512-BiKB4RZ8YSwRKCNVdNxK/GfY+r4Kjgp9jCLEy0DuqAKfmQtpL38cQK3afdpjw4sqSs4PLi3jIPJIFp259NkZtA==", |       "integrity": "sha512-q/bAruCvFLwvNbeE1x3n37TYFb3mTBJ6TrCq6p2CoFbSTNhDE9oAtEfpy+wmc9So8AG0Tja+X0/mJzX9tSfvIg==", | ||||||
|       "dev": true, |       "dev": true, | ||||||
|       "requires": {} |       "requires": {} | ||||||
|     }, |     }, | ||||||
|     "tailwindcss": { |     "tailwindcss": { | ||||||
|       "version": "3.3.1", |       "version": "3.3.2", | ||||||
|       "resolved": "https://registry.npmjs.org/tailwindcss/-/tailwindcss-3.3.1.tgz", |       "resolved": "https://registry.npmjs.org/tailwindcss/-/tailwindcss-3.3.2.tgz", | ||||||
|       "integrity": "sha512-Vkiouc41d4CEq0ujXl6oiGFQ7bA3WEhUZdTgXAhtKxSy49OmKs8rEfQmupsfF0IGW8fv2iQkp1EVUuapCFrZ9g==", |       "integrity": "sha512-9jPkMiIBXvPc2KywkraqsUfbfj+dHDb+JPWtSJa9MLFdrPyazI7q6WX2sUrm7R9eVR7qqv3Pas7EvQFzxKnI6w==", | ||||||
|       "requires": { |       "requires": { | ||||||
|  |         "@alloc/quick-lru": "^5.2.0", | ||||||
|         "arg": "^5.0.2", |         "arg": "^5.0.2", | ||||||
|         "chokidar": "^3.5.3", |         "chokidar": "^3.5.3", | ||||||
|         "color-name": "^1.1.4", |  | ||||||
|         "didyoumean": "^1.2.2", |         "didyoumean": "^1.2.2", | ||||||
|         "dlv": "^1.1.3", |         "dlv": "^1.1.3", | ||||||
|         "fast-glob": "^3.2.12", |         "fast-glob": "^3.2.12", | ||||||
|         "glob-parent": "^6.0.2", |         "glob-parent": "^6.0.2", | ||||||
|         "is-glob": "^4.0.3", |         "is-glob": "^4.0.3", | ||||||
|         "jiti": "^1.17.2", |         "jiti": "^1.18.2", | ||||||
|         "lilconfig": "^2.0.6", |         "lilconfig": "^2.1.0", | ||||||
|         "micromatch": "^4.0.5", |         "micromatch": "^4.0.5", | ||||||
|         "normalize-path": "^3.0.0", |         "normalize-path": "^3.0.0", | ||||||
|         "object-hash": "^3.0.0", |         "object-hash": "^3.0.0", | ||||||
|         "picocolors": "^1.0.0", |         "picocolors": "^1.0.0", | ||||||
|         "postcss": "^8.0.9", |         "postcss": "^8.4.23", | ||||||
|         "postcss-import": "^14.1.0", |         "postcss-import": "^15.1.0", | ||||||
|         "postcss-js": "^4.0.0", |         "postcss-js": "^4.0.1", | ||||||
|         "postcss-load-config": "^3.1.4", |         "postcss-load-config": "^4.0.1", | ||||||
|         "postcss-nested": "6.0.0", |         "postcss-nested": "^6.0.1", | ||||||
|         "postcss-selector-parser": "^6.0.11", |         "postcss-selector-parser": "^6.0.11", | ||||||
|         "postcss-value-parser": "^4.2.0", |         "postcss-value-parser": "^4.2.0", | ||||||
|         "quick-lru": "^5.1.1", |         "resolve": "^1.22.2", | ||||||
|         "resolve": "^1.22.1", |         "sucrase": "^3.32.0" | ||||||
|         "sucrase": "^3.29.0" |  | ||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "thenify": { |     "thenify": { | ||||||
| @@ -2979,9 +3003,9 @@ | |||||||
|       "integrity": "sha512-EPD5q1uXyFxJpCrLnCc1nHnq3gOa6DZBocAIiI2TaSCA7VCJ1UJDMagCzIkXNsUYfD1daK//LTEQ8xiIbrHtcw==" |       "integrity": "sha512-EPD5q1uXyFxJpCrLnCc1nHnq3gOa6DZBocAIiI2TaSCA7VCJ1UJDMagCzIkXNsUYfD1daK//LTEQ8xiIbrHtcw==" | ||||||
|     }, |     }, | ||||||
|     "vite": { |     "vite": { | ||||||
|       "version": "3.2.6", |       "version": "3.2.7", | ||||||
|       "resolved": "https://registry.npmjs.org/vite/-/vite-3.2.6.tgz", |       "resolved": "https://registry.npmjs.org/vite/-/vite-3.2.7.tgz", | ||||||
|       "integrity": "sha512-nTXTxYVvaQNLoW5BQ8PNNQ3lPia57gzsQU/Khv+JvzKPku8kNZL6NMUR/qwXhMG6E+g1idqEPanomJ+VZgixEg==", |       "integrity": "sha512-29pdXjk49xAP0QBr0xXqu2s5jiQIXNvE/xwd0vUizYT2Hzqe4BksNNoWllFVXJf4eLZ+UlVQmXfB4lWrc+t18g==", | ||||||
|       "dev": true, |       "dev": true, | ||||||
|       "requires": { |       "requires": { | ||||||
|         "esbuild": "^0.15.9", |         "esbuild": "^0.15.9", | ||||||
| @@ -3004,9 +3028,9 @@ | |||||||
|       "integrity": "sha512-l4Sp/DRseor9wL6EvV2+TuQn63dMkPjZ/sp9XkghTEbV9KlPS1xUsZ3u7/IQO4wxtcFB4bgpQPRcR3QCvezPcQ==" |       "integrity": "sha512-l4Sp/DRseor9wL6EvV2+TuQn63dMkPjZ/sp9XkghTEbV9KlPS1xUsZ3u7/IQO4wxtcFB4bgpQPRcR3QCvezPcQ==" | ||||||
|     }, |     }, | ||||||
|     "yaml": { |     "yaml": { | ||||||
|       "version": "1.10.2", |       "version": "2.3.1", | ||||||
|       "resolved": "https://registry.npmjs.org/yaml/-/yaml-1.10.2.tgz", |       "resolved": "https://registry.npmjs.org/yaml/-/yaml-2.3.1.tgz", | ||||||
|       "integrity": "sha512-r3vXyErRCYJ7wg28yvBY5VSoAF8ZvlcW9/BwUzEtUsjvX/DKs24dIkuwjtuprwJJHsbyUbLApepYTR1BN4uHrg==" |       "integrity": "sha512-2eHWfjaoXgTBC2jNM1LRef62VQa0umtvRiDSk6HSzW7RvS5YtkabJrwYLLEKWBc8a5U2PTSCs+dJjUTJdlHsWQ==" | ||||||
|     } |     } | ||||||
|   } |   } | ||||||
| } | } | ||||||
|   | |||||||
| @@ -1,6 +1,6 @@ | |||||||
| { | { | ||||||
|   "name": "creddy", |   "name": "creddy", | ||||||
|   "version": "0.1.0", |   "version": "0.2.3", | ||||||
|   "scripts": { |   "scripts": { | ||||||
|     "dev": "vite", |     "dev": "vite", | ||||||
|     "build": "vite build", |     "build": "vite build", | ||||||
|   | |||||||
| @@ -1 +1 @@ | |||||||
| DATABASE_URL=sqlite://creddy.db?mode=rwc | DATABASE_URL=sqlite://C:/Users/Joe/AppData/Roaming/creddy/creddy.dev.db | ||||||
|   | |||||||
							
								
								
									
										2854
									
								
								src-tauri/Cargo.lock
									
									
									
										generated
									
									
									
								
							
							
						
						
									
										2854
									
								
								src-tauri/Cargo.lock
									
									
									
										generated
									
									
									
								
							
										
											
												File diff suppressed because it is too large
												Load Diff
											
										
									
								
							| @@ -1,14 +1,22 @@ | |||||||
| [package] | [package] | ||||||
| name = "app" | name = "creddy" | ||||||
| version = "0.1.0" | version = "0.2.3" | ||||||
| description = "A Tauri App" | description = "A friendly AWS credentials manager" | ||||||
| authors = ["you"] | authors = ["Joseph Montanaro"] | ||||||
| license = "" | license = "" | ||||||
| repository = "" | repository = "" | ||||||
| default-run = "app" | default-run = "creddy" | ||||||
| edition = "2021" | edition = "2021" | ||||||
| rust-version = "1.57" | rust-version = "1.57" | ||||||
|  |  | ||||||
|  | [[bin]] | ||||||
|  | name = "creddy_cli" | ||||||
|  | path = "src/bin/creddy_cli.rs" | ||||||
|  |  | ||||||
|  | [[bin]] | ||||||
|  | name = "creddy" | ||||||
|  | path = "src/main.rs" | ||||||
|  |  | ||||||
| # See more keys and their definitions at https://doc.rust-lang.org/cargo/reference/manifest.html | # See more keys and their definitions at https://doc.rust-lang.org/cargo/reference/manifest.html | ||||||
|  |  | ||||||
| [build-dependencies] | [build-dependencies] | ||||||
| @@ -17,7 +25,8 @@ tauri-build = { version = "1.0.4", features = [] } | |||||||
| [dependencies] | [dependencies] | ||||||
| serde_json = "1.0" | serde_json = "1.0" | ||||||
| serde = { version = "1.0", features = ["derive"] } | serde = { version = "1.0", features = ["derive"] } | ||||||
| tauri = { version = "1.0.5", features = ["api-all", "system-tray"] } | tauri = { version = "1.2", features = ["dialog", "dialog-open", "global-shortcut", "os-all", "system-tray"] } | ||||||
|  | tauri-plugin-single-instance = { git = "https://github.com/tauri-apps/plugins-workspace", branch = "dev" } | ||||||
| sodiumoxide = "0.2.7" | sodiumoxide = "0.2.7" | ||||||
| tokio = { version = ">=1.19", features = ["full"] } | tokio = { version = ">=1.19", features = ["full"] } | ||||||
| sqlx = { version = "0.6.2", features = ["sqlite", "runtime-tokio-rustls"] } | sqlx = { version = "0.6.2", features = ["sqlite", "runtime-tokio-rustls"] } | ||||||
| @@ -32,14 +41,20 @@ once_cell = "1.16.0" | |||||||
| strum = "0.24" | strum = "0.24" | ||||||
| strum_macros = "0.24" | strum_macros = "0.24" | ||||||
| auto-launch = "0.4.0" | auto-launch = "0.4.0" | ||||||
|  | dirs = "5.0" | ||||||
|  | clap = { version = "3.2.23", features = ["derive"] } | ||||||
|  | is-terminal = "0.4.7" | ||||||
|  | argon2 = { version = "0.5.0", features = ["std"] } | ||||||
|  | chacha20poly1305 = { version = "0.10.1", features = ["std"] } | ||||||
|  | which = "4.4.0" | ||||||
|  |  | ||||||
| [features] | [features] | ||||||
| # by default Tauri runs in production mode | # by default Tauri runs in production mode | ||||||
| # when `tauri dev` runs it is executed with `cargo run --no-default-features` if `devPath` is an URL | # when `tauri dev` runs it is executed with `cargo run --no-default-features` if `devPath` is an URL | ||||||
| default = [ "custom-protocol" ] | default = ["custom-protocol"] | ||||||
| # this feature is used used for production builds where `devPath` points to the filesystem | # this feature is used used for production builds where `devPath` points to the filesystem | ||||||
| # DO NOT remove this | # DO NOT remove this | ||||||
| custom-protocol = [ "tauri/custom-protocol" ] | custom-protocol = ["tauri/custom-protocol"] | ||||||
|  |  | ||||||
| # [profile.dev.build-override] | # [profile.dev.build-override] | ||||||
| # opt-level = 3 | # opt-level = 3 | ||||||
|   | |||||||
							
								
								
									
										22
									
								
								src-tauri/conf/cli.wxs
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										22
									
								
								src-tauri/conf/cli.wxs
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,22 @@ | |||||||
|  | <?xml version="1.0" encoding="utf-8"?> | ||||||
|  | <Wix xmlns="http://schemas.microsoft.com/wix/2006/wi"> | ||||||
|  |     <Fragment> | ||||||
|  |  | ||||||
|  |         <DirectoryRef Id="INSTALLDIR"> | ||||||
|  |             <!-- Create a subdirectory for the console binary so that we can add it to PATH --> | ||||||
|  |             <Directory Id="BinDir" Name="bin"> | ||||||
|  |                 <Component Id="CliBinary" Guid="b6358c8e-504f-41fd-b14b-38af821dcd04"> | ||||||
|  |                     <!-- Same name as the main executable, so that it can be invoked as just "creddy" --> | ||||||
|  |                     <File Id="Bin_Cli" Source="..\..\creddy_cli.exe" Name="creddy.exe" KeyPath="yes"/> | ||||||
|  |                 </Component> | ||||||
|  |             </Directory> | ||||||
|  |         </DirectoryRef> | ||||||
|  |  | ||||||
|  |         <DirectoryRef Id="TARGETDIR"> | ||||||
|  |             <Component Id="AddToPath" Guid="b5fdaf7e-94f2-4aad-9144-aa3a8edfa675"> | ||||||
|  |                 <Environment Id="CreddyInstallDir" Action="set" Name="PATH" Part="last" Permanent="no" Value="[BinDir]" /> | ||||||
|  |             </Component> | ||||||
|  |         </DirectoryRef> | ||||||
|  |  | ||||||
|  |     </Fragment> | ||||||
|  | </Wix> | ||||||
							
								
								
									
										97
									
								
								src-tauri/src/app.rs
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										97
									
								
								src-tauri/src/app.rs
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,97 @@ | |||||||
|  | use std::error::Error; | ||||||
|  |  | ||||||
|  | use once_cell::sync::OnceCell; | ||||||
|  | use sqlx::{ | ||||||
|  |     SqlitePool, | ||||||
|  |     sqlite::SqlitePoolOptions, | ||||||
|  |     sqlite::SqliteConnectOptions, | ||||||
|  | }; | ||||||
|  | use tauri::{ | ||||||
|  |     App, | ||||||
|  |     AppHandle, | ||||||
|  |     Manager, | ||||||
|  |     async_runtime as rt, | ||||||
|  | }; | ||||||
|  |  | ||||||
|  | use crate::{ | ||||||
|  |     config::{self, AppConfig}, | ||||||
|  |     credentials::Session, | ||||||
|  |     ipc, | ||||||
|  |     server::Server, | ||||||
|  |     errors::*, | ||||||
|  |     state::AppState, | ||||||
|  |     tray, | ||||||
|  | }; | ||||||
|  |  | ||||||
|  |  | ||||||
|  | pub static APP: OnceCell<AppHandle> = OnceCell::new(); | ||||||
|  |  | ||||||
|  |  | ||||||
|  | pub fn run() -> tauri::Result<()> { | ||||||
|  |     tauri::Builder::default() | ||||||
|  |         .plugin(tauri_plugin_single_instance::init(|app, _argv, _cwd| { | ||||||
|  |             app.get_window("main") | ||||||
|  |                 .map(|w| w.show().error_popup("Failed to show main window")); | ||||||
|  |         })) | ||||||
|  |         .system_tray(tray::create()) | ||||||
|  |         .on_system_tray_event(tray::handle_event) | ||||||
|  |         .invoke_handler(tauri::generate_handler![ | ||||||
|  |             ipc::unlock, | ||||||
|  |             ipc::respond, | ||||||
|  |             ipc::get_session_status, | ||||||
|  |             ipc::save_credentials, | ||||||
|  |             ipc::get_config, | ||||||
|  |             ipc::save_config, | ||||||
|  |             ipc::launch_terminal, | ||||||
|  |         ]) | ||||||
|  |         .setup(|app| rt::block_on(setup(app))) | ||||||
|  |         .build(tauri::generate_context!())? | ||||||
|  |         .run(|app, run_event| match run_event { | ||||||
|  |             tauri::RunEvent::WindowEvent { label, event, .. } => match event { | ||||||
|  |                 tauri::WindowEvent::CloseRequested { api, .. } => { | ||||||
|  |                     let _ = app.get_window(&label).map(|w| w.hide()); | ||||||
|  |                     api.prevent_close(); | ||||||
|  |                 } | ||||||
|  |                 _ => () | ||||||
|  |             } | ||||||
|  |             _ => () | ||||||
|  |         }); | ||||||
|  |  | ||||||
|  |     Ok(()) | ||||||
|  | } | ||||||
|  |  | ||||||
|  |  | ||||||
|  | pub async fn connect_db() -> Result<SqlitePool, SetupError> { | ||||||
|  |     let conn_opts = SqliteConnectOptions::new() | ||||||
|  |         .filename(config::get_or_create_db_path()?) | ||||||
|  |         .create_if_missing(true); | ||||||
|  |     let pool_opts = SqlitePoolOptions::new(); | ||||||
|  |     let pool: SqlitePool = pool_opts.connect_with(conn_opts).await?; | ||||||
|  |     sqlx::migrate!().run(&pool).await?; | ||||||
|  |     Ok(pool) | ||||||
|  | } | ||||||
|  |  | ||||||
|  |  | ||||||
|  | async fn setup(app: &mut App) -> Result<(), Box<dyn Error>> { | ||||||
|  |     APP.set(app.handle()).unwrap(); | ||||||
|  |  | ||||||
|  |     let is_first_launch = config::get_or_create_db_path()?.exists(); | ||||||
|  |  | ||||||
|  |     let pool = connect_db().await?; | ||||||
|  |     let conf = AppConfig::load(&pool).await?; | ||||||
|  |     let session = Session::load(&pool).await?; | ||||||
|  |     let srv = Server::new(conf.listen_addr, conf.listen_port, app.handle()).await?; | ||||||
|  |  | ||||||
|  |     config::set_auto_launch(conf.start_on_login)?; | ||||||
|  |     config::register_hotkeys(&conf.hotkeys)?; | ||||||
|  |     // if session is empty, this is probably the first launch, so don't autohide | ||||||
|  |     if !conf.start_minimized || is_first_launch { | ||||||
|  |         app.get_window("main") | ||||||
|  |             .ok_or(HandlerError::NoMainWindow)? | ||||||
|  |             .show()?; | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     let state = AppState::new(conf, session, srv, pool); | ||||||
|  |     app.manage(state); | ||||||
|  |     Ok(()) | ||||||
|  | } | ||||||
							
								
								
									
										45
									
								
								src-tauri/src/bin/creddy_cli.rs
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										45
									
								
								src-tauri/src/bin/creddy_cli.rs
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,45 @@ | |||||||
|  | // Windows isn't really amenable to having a single executable work as both a CLI and GUI app, | ||||||
|  | // so we just have a second binary for CLI usage | ||||||
|  | use creddy::{ | ||||||
|  |     cli, | ||||||
|  |     errors::CliError, | ||||||
|  | }; | ||||||
|  | use std::{ | ||||||
|  |     env, | ||||||
|  |     process::{self, Command}, | ||||||
|  | }; | ||||||
|  |  | ||||||
|  |  | ||||||
|  | fn main() { | ||||||
|  |     let args = cli::parser().get_matches(); | ||||||
|  |     if let Some(true) = args.get_one::<bool>("help") { | ||||||
|  |         cli::parser().print_help().unwrap(); // if we can't print help we can't print an error | ||||||
|  |         process::exit(0); | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     let res = match args.subcommand() { | ||||||
|  |         None | Some(("run", _)) => launch_gui(), | ||||||
|  |         Some(("show", m)) => cli::show(m), | ||||||
|  |         Some(("exec", m)) => cli::exec(m), | ||||||
|  |         _ => unreachable!(), | ||||||
|  |     }; | ||||||
|  |  | ||||||
|  |     if let Err(e) = res { | ||||||
|  |         eprintln!("Error: {e}"); | ||||||
|  |     } | ||||||
|  | } | ||||||
|  |  | ||||||
|  |  | ||||||
|  | fn launch_gui() -> Result<(), CliError>  { | ||||||
|  |     let mut path = env::current_exe()?; | ||||||
|  |     path.pop(); // bin dir | ||||||
|  |      | ||||||
|  |     // binaries are colocated in dev, but not in production | ||||||
|  |     #[cfg(not(debug_assertions))] | ||||||
|  |     path.pop(); // install dir | ||||||
|  |  | ||||||
|  |     path.push("creddy.exe"); // exe in main install dir (aka gui exe) | ||||||
|  |  | ||||||
|  |     Command::new(path).spawn()?; | ||||||
|  |     Ok(()) | ||||||
|  | } | ||||||
							
								
								
									
										160
									
								
								src-tauri/src/cli.rs
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										160
									
								
								src-tauri/src/cli.rs
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,160 @@ | |||||||
|  | use std::ffi::OsString; | ||||||
|  | use std::process::Command as ChildCommand; | ||||||
|  | #[cfg(unix)] | ||||||
|  | use std::os::unix::process::CommandExt; | ||||||
|  |  | ||||||
|  | use clap::{ | ||||||
|  |     Command, | ||||||
|  |      Arg, | ||||||
|  |      ArgMatches, | ||||||
|  |      ArgAction | ||||||
|  |  }; | ||||||
|  | use tokio::{ | ||||||
|  |     net::TcpStream, | ||||||
|  |     io::{AsyncReadExt, AsyncWriteExt}, | ||||||
|  | }; | ||||||
|  |  | ||||||
|  |  | ||||||
|  | use crate::app; | ||||||
|  | use crate::config::AppConfig; | ||||||
|  | use crate::credentials::{BaseCredentials, SessionCredentials}; | ||||||
|  | use crate::errors::*; | ||||||
|  |  | ||||||
|  |  | ||||||
|  | pub fn parser() -> Command<'static> { | ||||||
|  |     Command::new("creddy") | ||||||
|  |         .about("A friendly AWS credentials manager") | ||||||
|  |         .subcommand( | ||||||
|  |             Command::new("run") | ||||||
|  |                 .about("Launch Creddy") | ||||||
|  |         ) | ||||||
|  |         .subcommand( | ||||||
|  |             Command::new("show") | ||||||
|  |                 .about("Fetch and display AWS credentials") | ||||||
|  |                 .arg( | ||||||
|  |                     Arg::new("base") | ||||||
|  |                         .short('b') | ||||||
|  |                         .long("base") | ||||||
|  |                         .action(ArgAction::SetTrue) | ||||||
|  |                         .help("Use base credentials instead of session credentials") | ||||||
|  |                 ) | ||||||
|  |         ) | ||||||
|  |         .subcommand( | ||||||
|  |             Command::new("exec") | ||||||
|  |                 .about("Inject AWS credentials into the environment of another command") | ||||||
|  |                 .trailing_var_arg(true) | ||||||
|  |                 .arg( | ||||||
|  |                     Arg::new("base") | ||||||
|  |                         .short('b') | ||||||
|  |                         .long("base") | ||||||
|  |                         .action(ArgAction::SetTrue) | ||||||
|  |                         .help("Use base credentials instead of session credentials") | ||||||
|  |                 ) | ||||||
|  |                 .arg( | ||||||
|  |                     Arg::new("command") | ||||||
|  |                         .multiple_values(true) | ||||||
|  |                 ) | ||||||
|  |         ) | ||||||
|  | } | ||||||
|  |  | ||||||
|  |  | ||||||
|  | pub fn show(args: &ArgMatches) -> Result<(), CliError> { | ||||||
|  |     let base = args.get_one("base").unwrap_or(&false); | ||||||
|  |     let creds = get_credentials(*base)?; | ||||||
|  |     println!("{creds}"); | ||||||
|  |     Ok(()) | ||||||
|  | } | ||||||
|  |  | ||||||
|  |  | ||||||
|  | pub fn exec(args: &ArgMatches) -> Result<(), CliError> { | ||||||
|  |     let base = *args.get_one("base").unwrap_or(&false); | ||||||
|  |     let mut cmd_line = args.get_many("command") | ||||||
|  |         .ok_or(ExecError::NoCommand)?; | ||||||
|  |  | ||||||
|  |     let cmd_name: &String = cmd_line.next().unwrap(); // Clap guarantees that there will be at least one | ||||||
|  |     let mut cmd = ChildCommand::new(cmd_name); | ||||||
|  |     cmd.args(cmd_line); | ||||||
|  |      | ||||||
|  |     if base { | ||||||
|  |         let creds: BaseCredentials = serde_json::from_str(&get_credentials(base)?) | ||||||
|  |             .map_err(|_| RequestError::InvalidJson)?; | ||||||
|  |         cmd.env("AWS_ACCESS_KEY_ID", creds.access_key_id); | ||||||
|  |         cmd.env("AWS_SECRET_ACCESS_KEY", creds.secret_access_key); | ||||||
|  |     } | ||||||
|  |     else { | ||||||
|  |         let creds: SessionCredentials = serde_json::from_str(&get_credentials(base)?) | ||||||
|  |             .map_err(|_| RequestError::InvalidJson)?; | ||||||
|  |         cmd.env("AWS_ACCESS_KEY_ID", creds.access_key_id); | ||||||
|  |         cmd.env("AWS_SECRET_ACCESS_KEY", creds.secret_access_key); | ||||||
|  |         cmd.env("AWS_SESSION_TOKEN", creds.token); | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     #[cfg(unix)] | ||||||
|  |     { | ||||||
|  |         // cmd.exec() never returns if successful | ||||||
|  |         let e = cmd.exec(); | ||||||
|  |         match e.kind() { | ||||||
|  |             std::io::ErrorKind::NotFound => { | ||||||
|  |                 let name: OsString = cmd_name.into(); | ||||||
|  |                 Err(ExecError::NotFound(name).into()) | ||||||
|  |             } | ||||||
|  |             e => Err(ExecError::ExecutionFailed(e).into()), | ||||||
|  |         } | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     #[cfg(windows)] | ||||||
|  |     { | ||||||
|  |         let mut child = match cmd.spawn() { | ||||||
|  |             Ok(c) => c, | ||||||
|  |             Err(e) if e.kind() == std::io::ErrorKind::NotFound => { | ||||||
|  |                 let name: OsString = cmd_name.into(); | ||||||
|  |                 return Err(ExecError::NotFound(name).into()); | ||||||
|  |             } | ||||||
|  |             Err(e) => return Err(ExecError::ExecutionFailed(e).into()), | ||||||
|  |         }; | ||||||
|  |  | ||||||
|  |         let status = child.wait() | ||||||
|  |             .map_err(|e| ExecError::ExecutionFailed(e))?; | ||||||
|  |         std::process::exit(status.code().unwrap_or(1)); | ||||||
|  |     }; | ||||||
|  | } | ||||||
|  |  | ||||||
|  |  | ||||||
|  | #[tokio::main] | ||||||
|  | async fn get_credentials(base: bool) -> Result<String, RequestError> { | ||||||
|  |     let pool = app::connect_db().await?; | ||||||
|  |     let config = AppConfig::load(&pool).await?; | ||||||
|  |     let path = if base {"/creddy/base-credentials"} else {"/"}; | ||||||
|  |  | ||||||
|  |     let mut stream = TcpStream::connect((config.listen_addr, config.listen_port)).await?; | ||||||
|  |     let req = format!("GET {path} HTTP/1.0\r\n\r\n"); | ||||||
|  |     stream.write_all(req.as_bytes()).await?; | ||||||
|  |  | ||||||
|  |     // some day we'll have a proper HTTP parser | ||||||
|  |     let mut buf = vec![0; 8192]; | ||||||
|  |     stream.read_to_end(&mut buf).await?; | ||||||
|  |  | ||||||
|  |     let status = buf.split(|&c| &[c] == b" ") | ||||||
|  |         .skip(1) | ||||||
|  |         .next() | ||||||
|  |         .ok_or(RequestError::MalformedHttpResponse)?; | ||||||
|  |  | ||||||
|  |     if status != b"200" { | ||||||
|  |         let s = String::from_utf8_lossy(status).to_string(); | ||||||
|  |         return Err(RequestError::Failed(s)); | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     let break_idx = buf.windows(4) | ||||||
|  |         .position(|w| w == b"\r\n\r\n") | ||||||
|  |         .ok_or(RequestError::MalformedHttpResponse)?; | ||||||
|  |     let body = &buf[(break_idx + 4)..]; | ||||||
|  |  | ||||||
|  |     let creds_str = std::str::from_utf8(body) | ||||||
|  |         .map_err(|_| RequestError::MalformedHttpResponse)? | ||||||
|  |         .to_string(); | ||||||
|  |  | ||||||
|  |     if creds_str == "Denied!" { | ||||||
|  |         return Err(RequestError::Rejected); | ||||||
|  |     } | ||||||
|  |     Ok(creds_str) | ||||||
|  | } | ||||||
| @@ -1,25 +1,37 @@ | |||||||
|  | use std::path::PathBuf; | ||||||
|  |  | ||||||
| use netstat2::{AddressFamilyFlags, ProtocolFlags, ProtocolSocketInfo}; | use netstat2::{AddressFamilyFlags, ProtocolFlags, ProtocolSocketInfo}; | ||||||
|  | use tauri::Manager; | ||||||
| use sysinfo::{System, SystemExt, Pid, PidExt, ProcessExt}; | use sysinfo::{System, SystemExt, Pid, PidExt, ProcessExt}; | ||||||
| use serde::{Serialize, Deserialize}; | use serde::{Serialize, Deserialize}; | ||||||
|  |  | ||||||
| use crate::errors::*; | use crate::{ | ||||||
| use crate::get_state; |     app::APP, | ||||||
|  |     errors::*, | ||||||
|  |     config::AppConfig, | ||||||
|  |     state::AppState, | ||||||
|  | }; | ||||||
|  |  | ||||||
|  |  | ||||||
| #[derive(Clone, Debug, Serialize, Deserialize, Eq, PartialEq, Hash)] | #[derive(Clone, Debug, Serialize, Deserialize, Eq, PartialEq, Hash)] | ||||||
| pub struct Client { | pub struct Client { | ||||||
|     pub pid: u32, |     pub pid: u32, | ||||||
|     pub exe: String, |     pub exe: PathBuf, | ||||||
| } | } | ||||||
|  |  | ||||||
|  |  | ||||||
| fn get_associated_pids(local_port: u16) -> Result<Vec<u32>, netstat2::error::Error> { | async fn get_associated_pids(local_port: u16) -> Result<Vec<u32>, netstat2::error::Error> { | ||||||
|  |     let state = APP.get().unwrap().state::<AppState>(); | ||||||
|  |     let AppConfig { | ||||||
|  |         listen_addr: app_listen_addr, | ||||||
|  |         listen_port: app_listen_port, | ||||||
|  |         .. | ||||||
|  |     } = *state.config.read().await; | ||||||
|  |  | ||||||
|     let sockets_iter = netstat2::iterate_sockets_info( |     let sockets_iter = netstat2::iterate_sockets_info( | ||||||
|         AddressFamilyFlags::IPV4, |         AddressFamilyFlags::IPV4, | ||||||
|         ProtocolFlags::TCP |         ProtocolFlags::TCP | ||||||
|     )?; |     )?; | ||||||
|  |  | ||||||
|     get_state!(config as app_config); |  | ||||||
|     for item in sockets_iter { |     for item in sockets_iter { | ||||||
|         let sock_info = item?; |         let sock_info = item?; | ||||||
|         let proto_info = match sock_info.protocol_socket_info { |         let proto_info = match sock_info.protocol_socket_info { | ||||||
| @@ -28,9 +40,9 @@ fn get_associated_pids(local_port: u16) -> Result<Vec<u32>, netstat2::error::Err | |||||||
|         }; |         }; | ||||||
|  |  | ||||||
|         if proto_info.local_port == local_port |         if proto_info.local_port == local_port | ||||||
|             && proto_info.remote_port == app_config.listen_port |             && proto_info.remote_port == app_listen_port | ||||||
|             && proto_info.local_addr == app_config.listen_addr |             && proto_info.local_addr == app_listen_addr | ||||||
|             && proto_info.remote_addr == app_config.listen_addr |             && proto_info.remote_addr == app_listen_addr | ||||||
|         { |         { | ||||||
|             return Ok(sock_info.associated_pids) |             return Ok(sock_info.associated_pids) | ||||||
|         } |         } | ||||||
| @@ -40,10 +52,10 @@ fn get_associated_pids(local_port: u16) -> Result<Vec<u32>, netstat2::error::Err | |||||||
|  |  | ||||||
|  |  | ||||||
| // Theoretically, on some systems, multiple processes can share a socket | // Theoretically, on some systems, multiple processes can share a socket | ||||||
| pub fn get_clients(local_port: u16) -> Result<Vec<Option<Client>>, ClientInfoError> { | pub async fn get_clients(local_port: u16) -> Result<Vec<Option<Client>>, ClientInfoError> { | ||||||
|     let mut clients = Vec::new();     |     let mut clients = Vec::new();     | ||||||
|     let mut sys = System::new(); |     let mut sys = System::new(); | ||||||
|     for p in get_associated_pids(local_port)? { |     for p in get_associated_pids(local_port).await? { | ||||||
|         let pid = Pid::from_u32(p); |         let pid = Pid::from_u32(p); | ||||||
|         sys.refresh_process(pid); |         sys.refresh_process(pid); | ||||||
|         let proc = sys.process(pid) |         let proc = sys.process(pid) | ||||||
| @@ -51,7 +63,7 @@ pub fn get_clients(local_port: u16) -> Result<Vec<Option<Client>>, ClientInfoErr | |||||||
|  |  | ||||||
|         let client = Client { |         let client = Client { | ||||||
|             pid: p, |             pid: p, | ||||||
|             exe: proc.exe().to_string_lossy().into_owned(), |             exe: proc.exe().to_path_buf(), | ||||||
|         }; |         }; | ||||||
|         clients.push(Some(client)); |         clients.push(Some(client)); | ||||||
|     } |     } | ||||||
|   | |||||||
| @@ -2,12 +2,44 @@ use std::net::Ipv4Addr; | |||||||
| use std::path::PathBuf; | use std::path::PathBuf; | ||||||
|  |  | ||||||
| use auto_launch::AutoLaunchBuilder; | use auto_launch::AutoLaunchBuilder; | ||||||
|  | use is_terminal::IsTerminal; | ||||||
| use serde::{Serialize, Deserialize}; | use serde::{Serialize, Deserialize}; | ||||||
| use sqlx::SqlitePool; | use sqlx::SqlitePool; | ||||||
|  | use tauri::{ | ||||||
|  |     Manager, | ||||||
|  |     GlobalShortcutManager, | ||||||
|  |     async_runtime as rt, | ||||||
|  | }; | ||||||
|  |  | ||||||
| use crate::errors::*; | use crate::errors::*; | ||||||
|  |  | ||||||
|  |  | ||||||
|  | #[derive(Clone, Debug, Serialize, Deserialize)] | ||||||
|  | pub struct TermConfig { | ||||||
|  |     pub name: String, | ||||||
|  |     // we call it exec because it isn't always the actual path, | ||||||
|  |     // in some cases it's just the name and relies on path-searching | ||||||
|  |     // it's a string because it can come from the frontend as json | ||||||
|  |     pub exec: String, | ||||||
|  |     pub args: Vec<String>, | ||||||
|  | } | ||||||
|  |  | ||||||
|  |  | ||||||
|  | #[derive(Clone, Debug, Serialize, Deserialize, Eq, PartialEq)] | ||||||
|  | pub struct Hotkey { | ||||||
|  |     pub keys: String, | ||||||
|  |     pub enabled: bool, | ||||||
|  | } | ||||||
|  |  | ||||||
|  |  | ||||||
|  | #[derive(Clone, Debug, Serialize, Deserialize, Eq, PartialEq)] | ||||||
|  | pub struct HotkeysConfig { | ||||||
|  |     // tauri uses strings to represent keybinds, so we will as well | ||||||
|  |     pub show_window: Hotkey, | ||||||
|  |     pub launch_terminal: Hotkey, | ||||||
|  | } | ||||||
|  |  | ||||||
|  |  | ||||||
| #[derive(Clone, Debug, Serialize, Deserialize)] | #[derive(Clone, Debug, Serialize, Deserialize)] | ||||||
| pub struct AppConfig { | pub struct AppConfig { | ||||||
|     #[serde(default = "default_listen_addr")] |     #[serde(default = "default_listen_addr")] | ||||||
| @@ -20,6 +52,10 @@ pub struct AppConfig { | |||||||
|     pub start_minimized: bool, |     pub start_minimized: bool, | ||||||
|     #[serde(default = "default_start_on_login")] |     #[serde(default = "default_start_on_login")] | ||||||
|     pub start_on_login: bool, |     pub start_on_login: bool, | ||||||
|  |     #[serde(default = "default_term_config")] | ||||||
|  |     pub terminal: TermConfig, | ||||||
|  |     #[serde(default = "default_hotkey_config")] | ||||||
|  |     pub hotkeys: HotkeysConfig, | ||||||
| } | } | ||||||
|  |  | ||||||
|  |  | ||||||
| @@ -31,6 +67,8 @@ impl Default for AppConfig { | |||||||
|             rehide_ms: default_rehide_ms(), |             rehide_ms: default_rehide_ms(), | ||||||
|             start_minimized: default_start_minimized(), |             start_minimized: default_start_minimized(), | ||||||
|             start_on_login: default_start_on_login(), |             start_on_login: default_start_on_login(), | ||||||
|  |             terminal: default_term_config(), | ||||||
|  |             hotkeys: default_hotkey_config(), | ||||||
|         } |         } | ||||||
|     } |     } | ||||||
| } | } | ||||||
| @@ -66,7 +104,7 @@ impl AppConfig { | |||||||
| } | } | ||||||
|  |  | ||||||
|  |  | ||||||
| pub fn set_auto_launch(enable: bool) -> Result<(), SetupError> { | pub fn set_auto_launch(is_configured: bool) -> Result<(), SetupError> { | ||||||
|     let path_buf = std::env::current_exe() |     let path_buf = std::env::current_exe() | ||||||
|         .map_err(|e| auto_launch::Error::Io(e))?; |         .map_err(|e| auto_launch::Error::Io(e))?; | ||||||
|     let path = path_buf |     let path = path_buf | ||||||
| @@ -77,10 +115,11 @@ pub fn set_auto_launch(enable: bool) -> Result<(), SetupError> { | |||||||
|         .set_app_path(&path) |         .set_app_path(&path) | ||||||
|         .build()?; |         .build()?; | ||||||
|  |  | ||||||
|     if enable { |     let is_enabled = auto.is_enabled()?; | ||||||
|  |     if is_configured && !is_enabled { | ||||||
|         auto.enable()?; |         auto.enable()?; | ||||||
|     } |     } | ||||||
|     else { |     else if !is_configured && is_enabled { | ||||||
|         auto.disable()?; |         auto.disable()?; | ||||||
|     } |     } | ||||||
|  |  | ||||||
| @@ -88,21 +127,20 @@ pub fn set_auto_launch(enable: bool) -> Result<(), SetupError> { | |||||||
| } | } | ||||||
|  |  | ||||||
|  |  | ||||||
| pub fn get_or_create_db_path() -> PathBuf { | pub fn get_or_create_db_path() -> Result<PathBuf, DataDirError> { | ||||||
|     if cfg!(debug_assertions) { |     let mut path = dirs::data_dir() | ||||||
|         return PathBuf::from("./creddy.db"); |         .ok_or(DataDirError::NotFound)?; | ||||||
|  |     path.push("Creddy"); | ||||||
|  |  | ||||||
|  |     std::fs::create_dir_all(&path)?; | ||||||
|  |     if cfg!(debug_assertions) && std::io::stdout().is_terminal() { | ||||||
|  |         path.push("creddy.dev.db"); | ||||||
|  |     } | ||||||
|  |     else { | ||||||
|  |         path.push("creddy.db"); | ||||||
|     } |     } | ||||||
|  |  | ||||||
|     let mut parent = std::env::var("HOME") |     Ok(path) | ||||||
|         .map(|h| { |  | ||||||
|             let mut p = PathBuf::from(h); |  | ||||||
|             p.push(".config"); |  | ||||||
|             p |  | ||||||
|         }) |  | ||||||
|         .unwrap_or(PathBuf::from(".")); |  | ||||||
|  |  | ||||||
|     parent.push("creddy.db"); |  | ||||||
|     parent |  | ||||||
| } | } | ||||||
|  |  | ||||||
|  |  | ||||||
| @@ -115,6 +153,91 @@ fn default_listen_port() -> u16 { | |||||||
|     } |     } | ||||||
| } | } | ||||||
|  |  | ||||||
|  |  | ||||||
|  | fn default_term_config() -> TermConfig { | ||||||
|  |     #[cfg(windows)] | ||||||
|  |     { | ||||||
|  |         let shell = if which::which("pwsh.exe").is_ok() { | ||||||
|  |             "pwsh.exe".to_string() | ||||||
|  |         } | ||||||
|  |         else { | ||||||
|  |             "powershell.exe".to_string() | ||||||
|  |         }; | ||||||
|  |  | ||||||
|  |         let (exec, args) = if cfg!(debug_assertions) { | ||||||
|  |             ("conhost.exe".to_string(), vec![shell.clone()]) | ||||||
|  |         } else { | ||||||
|  |             (shell.clone(), vec![]) | ||||||
|  |         }; | ||||||
|  |  | ||||||
|  |         TermConfig { name: shell, exec, args } | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     #[cfg(unix)] | ||||||
|  |     { | ||||||
|  |         for bin in ["gnome-terminal", "konsole"] { | ||||||
|  |             if let Ok(_) = which::which(bin) { | ||||||
|  |                 return TermConfig { | ||||||
|  |                     name: bin.into(), | ||||||
|  |                     exec: bin.into(), | ||||||
|  |                     args: vec![], | ||||||
|  |                 } | ||||||
|  |             } | ||||||
|  |         } | ||||||
|  |         return TermConfig { | ||||||
|  |             name: "gnome-terminal".into(), | ||||||
|  |             exec: "gnome-terminal".into(), | ||||||
|  |             args: vec![], | ||||||
|  |         }; | ||||||
|  |     } | ||||||
|  | } | ||||||
|  |  | ||||||
|  |  | ||||||
|  | fn default_hotkey_config() -> HotkeysConfig { | ||||||
|  |     HotkeysConfig { | ||||||
|  |         show_window: Hotkey {keys: "alt+shift+C".into(), enabled: true}, | ||||||
|  |         launch_terminal: Hotkey {keys: "alt+shift+T".into(), enabled: true}, | ||||||
|  |     } | ||||||
|  | } | ||||||
|  |  | ||||||
|  | // note: will panic if called before APP is set | ||||||
|  | pub fn register_hotkeys(hotkeys: &HotkeysConfig) -> tauri::Result<()> { | ||||||
|  |     let app = crate::app::APP.get().unwrap(); | ||||||
|  |  | ||||||
|  |     let mut manager = app.global_shortcut_manager(); | ||||||
|  |     manager.unregister_all()?; | ||||||
|  |  | ||||||
|  |     if hotkeys.show_window.enabled { | ||||||
|  |         let handle = app.app_handle(); | ||||||
|  |         manager.register( | ||||||
|  |             &hotkeys.show_window.keys, | ||||||
|  |             move || {  | ||||||
|  |                 handle.get_window("main") | ||||||
|  |                     .map(|w| w.show().error_popup("Failed to show")) | ||||||
|  |                     .ok_or(HandlerError::NoMainWindow) | ||||||
|  |                     .error_popup("No main window"); | ||||||
|  |             }, | ||||||
|  |         )?; | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     if hotkeys.launch_terminal.enabled { | ||||||
|  |         // register() doesn't take an async fn, so we have to use spawn | ||||||
|  |         manager.register( | ||||||
|  |             &hotkeys.launch_terminal.keys, | ||||||
|  |             || {  | ||||||
|  |                 rt::spawn(async { | ||||||
|  |                     crate::terminal::launch(false) | ||||||
|  |                         .await | ||||||
|  |                         .error_popup("Failed to launch"); | ||||||
|  |                 }); | ||||||
|  |             } | ||||||
|  |         )?; | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     Ok(()) | ||||||
|  | } | ||||||
|  |  | ||||||
|  |  | ||||||
| fn default_listen_addr() -> Ipv4Addr { Ipv4Addr::LOCALHOST } | fn default_listen_addr() -> Ipv4Addr { Ipv4Addr::LOCALHOST } | ||||||
| fn default_rehide_ms() -> u64 { 1000 } | fn default_rehide_ms() -> u64 { 1000 } | ||||||
| // start minimized and on login only in production mode | // start minimized and on login only in production mode | ||||||
|   | |||||||
							
								
								
									
										331
									
								
								src-tauri/src/credentials.rs
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										331
									
								
								src-tauri/src/credentials.rs
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,331 @@ | |||||||
|  | use std::fmt::{self, Formatter}; | ||||||
|  | use std::time::{SystemTime, UNIX_EPOCH}; | ||||||
|  |  | ||||||
|  |  use aws_smithy_types::date_time::{DateTime, Format}; | ||||||
|  | use argon2::{ | ||||||
|  |     Argon2, | ||||||
|  |     Algorithm, | ||||||
|  |     Version, | ||||||
|  |     ParamsBuilder, | ||||||
|  |     password_hash::rand_core::{RngCore, OsRng}, | ||||||
|  | }; | ||||||
|  | use chacha20poly1305::{ | ||||||
|  |     XChaCha20Poly1305, | ||||||
|  |     XNonce, | ||||||
|  |     aead::{ | ||||||
|  |         Aead, | ||||||
|  |         AeadCore, | ||||||
|  |         KeyInit, | ||||||
|  |         Error as AeadError, | ||||||
|  |         generic_array::GenericArray, | ||||||
|  |     }, | ||||||
|  | }; | ||||||
|  | use serde::{ | ||||||
|  |     Serialize, | ||||||
|  |     Deserialize, | ||||||
|  |     Serializer, | ||||||
|  |     Deserializer, | ||||||
|  | }; | ||||||
|  | use serde::de::{self, Visitor}; | ||||||
|  | use sqlx::SqlitePool; | ||||||
|  |  | ||||||
|  |  | ||||||
|  | use crate::errors::*; | ||||||
|  |  | ||||||
|  |  | ||||||
|  | #[derive(Clone, Debug)] | ||||||
|  | pub enum Session { | ||||||
|  |     Unlocked{ | ||||||
|  |         base: BaseCredentials, | ||||||
|  |         session: SessionCredentials, | ||||||
|  |     }, | ||||||
|  |     Locked(LockedCredentials), | ||||||
|  |     Empty, | ||||||
|  | } | ||||||
|  |  | ||||||
|  | impl Session { | ||||||
|  |     pub async fn load(pool: &SqlitePool) -> Result<Self, SetupError> { | ||||||
|  |         let res = sqlx::query!("SELECT * FROM credentials ORDER BY created_at desc") | ||||||
|  |             .fetch_optional(pool) | ||||||
|  |             .await?; | ||||||
|  |         let row = match res { | ||||||
|  |             Some(r) => r, | ||||||
|  |             None => {return Ok(Session::Empty);} | ||||||
|  |         }; | ||||||
|  |  | ||||||
|  |         let salt: [u8; 32] = row.salt | ||||||
|  |             .try_into() | ||||||
|  |             .map_err(|_e| SetupError::InvalidRecord)?; | ||||||
|  |         let nonce = XNonce::from_exact_iter(row.nonce.into_iter()) | ||||||
|  |             .ok_or(SetupError::InvalidRecord)?; | ||||||
|  |  | ||||||
|  |         let creds = LockedCredentials { | ||||||
|  |             access_key_id: row.access_key_id, | ||||||
|  |             secret_key_enc: row.secret_key_enc, | ||||||
|  |             salt, | ||||||
|  |             nonce, | ||||||
|  |         }; | ||||||
|  |         Ok(Session::Locked(creds)) | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     pub async fn renew_if_expired(&mut self) -> Result<bool, GetSessionError> { | ||||||
|  |         match self { | ||||||
|  |             Session::Unlocked{ref base, ref mut session} => { | ||||||
|  |                 if !session.is_expired() { | ||||||
|  |                     return Ok(false); | ||||||
|  |                 } | ||||||
|  |                 *session = SessionCredentials::from_base(base).await?; | ||||||
|  |                 Ok(true) | ||||||
|  |             }, | ||||||
|  |             Session::Locked(_) => Err(GetSessionError::CredentialsLocked), | ||||||
|  |             Session::Empty => Err(GetSessionError::CredentialsEmpty), | ||||||
|  |         } | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     pub fn try_get( | ||||||
|  |         &self | ||||||
|  |     ) -> Result<(&BaseCredentials, &SessionCredentials), GetCredentialsError> { | ||||||
|  |         match self { | ||||||
|  |             Self::Empty => Err(GetCredentialsError::Empty), | ||||||
|  |             Self::Locked(_) => Err(GetCredentialsError::Locked), | ||||||
|  |             Self::Unlocked{ ref base, ref session } => Ok((base, session)) | ||||||
|  |         } | ||||||
|  |     } | ||||||
|  | } | ||||||
|  |  | ||||||
|  |  | ||||||
|  | #[derive(Clone, Debug)] | ||||||
|  | pub struct LockedCredentials { | ||||||
|  |     pub access_key_id: String, | ||||||
|  |     pub secret_key_enc: Vec<u8>, | ||||||
|  |     pub salt: [u8; 32], | ||||||
|  |     pub nonce: XNonce, | ||||||
|  | } | ||||||
|  |  | ||||||
|  | impl LockedCredentials { | ||||||
|  |     pub async fn save(&self, pool: &SqlitePool) -> Result<(), sqlx::Error> { | ||||||
|  |         sqlx::query( | ||||||
|  |             "INSERT INTO credentials (access_key_id, secret_key_enc, salt, nonce, created_at) | ||||||
|  |             VALUES (?, ?, ?, ?, strftime('%s'))" | ||||||
|  |         ) | ||||||
|  |             .bind(&self.access_key_id) | ||||||
|  |             .bind(&self.secret_key_enc) | ||||||
|  |             .bind(&self.salt[..]) | ||||||
|  |             .bind(&self.nonce[..]) | ||||||
|  |             .execute(pool) | ||||||
|  |             .await?; | ||||||
|  |  | ||||||
|  |         Ok(()) | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     pub fn decrypt(&self, passphrase: &str) -> Result<BaseCredentials, UnlockError> { | ||||||
|  |         let crypto = Crypto::new(passphrase, &self.salt) | ||||||
|  |             .map_err(|e| CryptoError::Argon2(e))?; | ||||||
|  |         let decrypted = crypto.decrypt(&self.nonce, &self.secret_key_enc) | ||||||
|  |             .map_err(|e| CryptoError::Aead(e))?; | ||||||
|  |         let secret_access_key = String::from_utf8(decrypted) | ||||||
|  |             .map_err(|_| UnlockError::InvalidUtf8)?; | ||||||
|  |  | ||||||
|  |         let creds = BaseCredentials { | ||||||
|  |             access_key_id: self.access_key_id.clone(), | ||||||
|  |             secret_access_key, | ||||||
|  |         }; | ||||||
|  |         Ok(creds) | ||||||
|  |     } | ||||||
|  | } | ||||||
|  |  | ||||||
|  |  | ||||||
|  | #[derive(Clone, Debug, Serialize, Deserialize)] | ||||||
|  | #[serde(rename_all = "PascalCase")] | ||||||
|  | pub struct BaseCredentials { | ||||||
|  |     pub access_key_id: String, | ||||||
|  |     pub secret_access_key: String, | ||||||
|  | } | ||||||
|  |  | ||||||
|  | impl BaseCredentials { | ||||||
|  |     pub fn encrypt(&self, passphrase: &str) -> Result<LockedCredentials, CryptoError> { | ||||||
|  |         let salt = Crypto::salt(); | ||||||
|  |         let crypto = Crypto::new(passphrase, &salt)?; | ||||||
|  |         let (nonce, secret_key_enc) = crypto.encrypt(self.secret_access_key.as_bytes())?; | ||||||
|  |  | ||||||
|  |         let locked = LockedCredentials { | ||||||
|  |             access_key_id: self.access_key_id.clone(), | ||||||
|  |             secret_key_enc, | ||||||
|  |             salt, | ||||||
|  |             nonce, | ||||||
|  |         }; | ||||||
|  |         Ok(locked) | ||||||
|  |     } | ||||||
|  | } | ||||||
|  |  | ||||||
|  |  | ||||||
|  | #[derive(Clone, Debug, Serialize, Deserialize)] | ||||||
|  | #[serde(rename_all = "PascalCase")] | ||||||
|  | pub struct SessionCredentials { | ||||||
|  |     pub access_key_id: String, | ||||||
|  |     pub secret_access_key: String, | ||||||
|  |     pub token: String, | ||||||
|  |     #[serde(serialize_with = "serialize_expiration")] | ||||||
|  |     #[serde(deserialize_with = "deserialize_expiration")] | ||||||
|  |     pub expiration: DateTime, | ||||||
|  | } | ||||||
|  |  | ||||||
|  | impl SessionCredentials { | ||||||
|  |     pub async fn from_base(base: &BaseCredentials) -> Result<Self, GetSessionError> { | ||||||
|  |         let req_creds = aws_sdk_sts::Credentials::new( | ||||||
|  |             &base.access_key_id, | ||||||
|  |             &base.secret_access_key, | ||||||
|  |             None, // token | ||||||
|  |             None, //expiration | ||||||
|  |             "Creddy", // "provider name" apparently | ||||||
|  |         ); | ||||||
|  |         let config = aws_config::from_env() | ||||||
|  |             .credentials_provider(req_creds) | ||||||
|  |             .load() | ||||||
|  |             .await; | ||||||
|  |  | ||||||
|  |         let client = aws_sdk_sts::Client::new(&config); | ||||||
|  |         let resp = client.get_session_token() | ||||||
|  |             .duration_seconds(43_200) | ||||||
|  |             .send() | ||||||
|  |             .await?; | ||||||
|  |  | ||||||
|  |         let aws_session = resp.credentials().ok_or(GetSessionError::EmptyResponse)?; | ||||||
|  |  | ||||||
|  |         let access_key_id = aws_session.access_key_id() | ||||||
|  |             .ok_or(GetSessionError::EmptyResponse)? | ||||||
|  |             .to_string(); | ||||||
|  |         let secret_access_key = aws_session.secret_access_key() | ||||||
|  |             .ok_or(GetSessionError::EmptyResponse)? | ||||||
|  |             .to_string(); | ||||||
|  |         let token = aws_session.session_token() | ||||||
|  |             .ok_or(GetSessionError::EmptyResponse)? | ||||||
|  |             .to_string(); | ||||||
|  |         let expiration = aws_session.expiration() | ||||||
|  |             .ok_or(GetSessionError::EmptyResponse)? | ||||||
|  |             .clone(); | ||||||
|  |  | ||||||
|  |         let session_creds = SessionCredentials { | ||||||
|  |             access_key_id, | ||||||
|  |             secret_access_key, | ||||||
|  |             token, | ||||||
|  |             expiration, | ||||||
|  |         }; | ||||||
|  |  | ||||||
|  |         #[cfg(debug_assertions)] | ||||||
|  |         println!("Got new session:\n{}", serde_json::to_string(&session_creds).unwrap()); | ||||||
|  |  | ||||||
|  |         Ok(session_creds) | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     pub fn is_expired(&self) -> bool { | ||||||
|  |         let current_ts = SystemTime::now() | ||||||
|  |             .duration_since(UNIX_EPOCH) | ||||||
|  |             .unwrap() // doesn't panic because UNIX_EPOCH won't be later than now() | ||||||
|  |             .as_secs(); | ||||||
|  |  | ||||||
|  |         let expire_ts = self.expiration.secs(); | ||||||
|  |         let remaining = expire_ts - (current_ts as i64); | ||||||
|  |         remaining < 60 | ||||||
|  |     } | ||||||
|  | } | ||||||
|  |  | ||||||
|  | fn serialize_expiration<S>(exp: &DateTime, serializer: S) -> Result<S::Ok, S::Error> | ||||||
|  | where S: Serializer | ||||||
|  | { | ||||||
|  |     // this only fails if the d/t is out of range, which it can't be for this format | ||||||
|  |     let time_str = exp.fmt(Format::DateTime).unwrap(); | ||||||
|  |     serializer.serialize_str(&time_str) | ||||||
|  | } | ||||||
|  |  | ||||||
|  |  | ||||||
|  | struct DateTimeVisitor; | ||||||
|  |  | ||||||
|  | impl<'de> Visitor<'de> for DateTimeVisitor { | ||||||
|  |     type Value = DateTime; | ||||||
|  |  | ||||||
|  |     fn expecting(&self, formatter: &mut Formatter) -> fmt::Result { | ||||||
|  |         write!(formatter, "an RFC 3339 UTC string, e.g. \"2014-01-05T10:17:34Z\"") | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     fn visit_str<E: de::Error>(self, v: &str) -> Result<DateTime, E> { | ||||||
|  |         DateTime::from_str(v, Format::DateTime) | ||||||
|  |             .map_err(|_| E::custom(format!("Invalid date/time: {v}"))) | ||||||
|  |     } | ||||||
|  | } | ||||||
|  |  | ||||||
|  |  | ||||||
|  | fn deserialize_expiration<'de, D>(deserializer: D) -> Result<DateTime, D::Error> | ||||||
|  | where D: Deserializer<'de> | ||||||
|  | { | ||||||
|  |     deserializer.deserialize_str(DateTimeVisitor) | ||||||
|  | } | ||||||
|  |  | ||||||
|  |  | ||||||
|  | struct Crypto { | ||||||
|  |     cipher: XChaCha20Poly1305, | ||||||
|  | } | ||||||
|  |  | ||||||
|  | impl Crypto { | ||||||
|  |     /// Argon2 params rationale: | ||||||
|  |     /// | ||||||
|  |     /// m_cost is measured in KiB, so 128 * 1024 gives us 128MiB. | ||||||
|  |     /// This should roughly double the memory usage of the application | ||||||
|  |     /// while deriving the key. | ||||||
|  |     /// | ||||||
|  |     /// p_cost is irrelevant since (at present) there isn't any parallelism | ||||||
|  |     /// implemented, so we leave it at 1. | ||||||
|  |     /// | ||||||
|  |     /// With the above m_cost, t_cost = 8 results in about 800ms to derive | ||||||
|  |     /// a key on my (somewhat older) CPU. This is probably overkill, but | ||||||
|  |     /// given that it should only have to happen ~once a day for most  | ||||||
|  |     /// usage, it should be acceptable. | ||||||
|  |     #[cfg(not(debug_assertions))] | ||||||
|  |     const MEM_COST: u32 = 128 * 1024; | ||||||
|  |     #[cfg(not(debug_assertions))] | ||||||
|  |     const TIME_COST: u32 = 8; | ||||||
|  |  | ||||||
|  |     /// But since this takes a million years without optimizations, | ||||||
|  |     /// we turn it way down in debug builds. | ||||||
|  |     #[cfg(debug_assertions)] | ||||||
|  |     const MEM_COST: u32 = 48 * 1024; | ||||||
|  |     #[cfg(debug_assertions)] | ||||||
|  |     const TIME_COST: u32 = 1; | ||||||
|  |      | ||||||
|  |  | ||||||
|  |     fn new(passphrase: &str, salt: &[u8]) -> argon2::Result<Crypto> { | ||||||
|  |         let params = ParamsBuilder::new() | ||||||
|  |             .m_cost(Self::MEM_COST) | ||||||
|  |             .p_cost(1) | ||||||
|  |             .t_cost(Self::TIME_COST) | ||||||
|  |             .build() | ||||||
|  |             .unwrap(); // only errors if the given params are invalid | ||||||
|  |  | ||||||
|  |         let hasher = Argon2::new( | ||||||
|  |             Algorithm::Argon2id, | ||||||
|  |             Version::V0x13, | ||||||
|  |             params, | ||||||
|  |         ); | ||||||
|  |  | ||||||
|  |         let mut key = [0; 32]; | ||||||
|  |         hasher.hash_password_into(passphrase.as_bytes(), &salt, &mut key)?; | ||||||
|  |         let cipher = XChaCha20Poly1305::new(GenericArray::from_slice(&key)); | ||||||
|  |         Ok(Crypto { cipher }) | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     fn salt() -> [u8; 32] { | ||||||
|  |         let mut salt = [0; 32]; | ||||||
|  |         OsRng.fill_bytes(&mut salt); | ||||||
|  |         salt | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     fn encrypt(&self, data: &[u8]) -> Result<(XNonce, Vec<u8>), AeadError> { | ||||||
|  |         let nonce = XChaCha20Poly1305::generate_nonce(&mut OsRng); | ||||||
|  |         let ciphertext = self.cipher.encrypt(&nonce, data)?; | ||||||
|  |         Ok((nonce, ciphertext)) | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     fn decrypt(&self, nonce: &XNonce, data: &[u8]) -> Result<Vec<u8>, AeadError> { | ||||||
|  |         self.cipher.decrypt(nonce, data) | ||||||
|  |     } | ||||||
|  | } | ||||||
| @@ -1,9 +1,10 @@ | |||||||
| use std::error::Error; | use std::error::Error; | ||||||
| use std::convert::AsRef; | use std::convert::AsRef; | ||||||
|  | use std::ffi::OsString; | ||||||
|  | use std::sync::mpsc; | ||||||
| use strum_macros::AsRefStr; | use strum_macros::AsRefStr; | ||||||
|  |  | ||||||
| use thiserror::Error as ThisError; | use thiserror::Error as ThisError; | ||||||
|  |  | ||||||
| use aws_sdk_sts::{ | use aws_sdk_sts::{ | ||||||
|     types::SdkError as AwsSdkError,  |     types::SdkError as AwsSdkError,  | ||||||
|     error::GetSessionTokenError, |     error::GetSessionTokenError, | ||||||
| @@ -12,32 +13,29 @@ use sqlx::{ | |||||||
|     error::Error as SqlxError, |     error::Error as SqlxError, | ||||||
|     migrate::MigrateError, |     migrate::MigrateError, | ||||||
| }; | }; | ||||||
|  | use tauri::api::dialog::{ | ||||||
|  |     MessageDialogBuilder,  | ||||||
|  |     MessageDialogKind, | ||||||
|  | }; | ||||||
| use serde::{Serialize, Serializer, ser::SerializeMap}; | use serde::{Serialize, Serializer, ser::SerializeMap}; | ||||||
|  |  | ||||||
|  |  | ||||||
| // pub struct SerializeError<E> { | pub trait ErrorPopup { | ||||||
| //     pub err: E, |     fn error_popup(self, title: &str); | ||||||
| // } | } | ||||||
|  |  | ||||||
| // impl<E: std::error::Error> Serialize for SerializeError<E> | impl<E: Error> ErrorPopup for Result<(), E> { | ||||||
| // { |     fn error_popup(self, title: &str) { | ||||||
| //     fn serialize<S: Serializer>(&self, serializer: S) -> Result<S::Ok, S::Error> { |         if let Err(e) = self { | ||||||
| //         let mut map = serializer.serialize_map(None)?; |             let (tx, rx) = mpsc::channel(); | ||||||
| //         map.serialize_entry("msg", &format!("{}", self.err))?; |             MessageDialogBuilder::new(title, format!("{e}")) | ||||||
| //         if let Some(src) = self.err.source() { |                 .kind(MessageDialogKind::Error) | ||||||
| //             let ser_src = SerializeError { err: src }; |                 .show(move |_| tx.send(true).unwrap()); | ||||||
| //             map.serialize_entry("source", &ser_src)?; |  | ||||||
| //         } |  | ||||||
| //         map.end() |  | ||||||
| //     } |  | ||||||
| // } |  | ||||||
|  |  | ||||||
| // impl<E: std::error::Error> From<E> for SerializeError<E> { |             rx.recv().unwrap(); | ||||||
| //     fn from(err: E) -> Self { |         } | ||||||
| //         SerializeError { err } |     } | ||||||
| //     } | } | ||||||
| // } |  | ||||||
|  |  | ||||||
|  |  | ||||||
| fn serialize_basic_err<E, S>(err: &E, serializer: S) -> Result<S::Ok, S::Error> | fn serialize_basic_err<E, S>(err: &E, serializer: S) -> Result<S::Ok, S::Error> | ||||||
| @@ -60,8 +58,12 @@ where | |||||||
|     E: Error, |     E: Error, | ||||||
|     M: serde::ser::SerializeMap, |     M: serde::ser::SerializeMap, | ||||||
| { | { | ||||||
|     let src = err.source().map(|s| format!("{s}")); |     let msg = err.source().map(|s| format!("{s}")); | ||||||
|     map.serialize_entry("source", &src) |     map.serialize_entry("msg", &msg)?; | ||||||
|  |     map.serialize_entry("code", &None::<&str>)?; | ||||||
|  |     map.serialize_entry("source", &None::<&str>)?; | ||||||
|  |  | ||||||
|  |     Ok(()) | ||||||
| } | } | ||||||
|  |  | ||||||
|  |  | ||||||
| @@ -89,6 +91,21 @@ pub enum SetupError { | |||||||
|     ConfigParseError(#[from] serde_json::Error), |     ConfigParseError(#[from] serde_json::Error), | ||||||
|     #[error("Failed to set up start-on-login: {0}")] |     #[error("Failed to set up start-on-login: {0}")] | ||||||
|     AutoLaunchError(#[from] auto_launch::Error), |     AutoLaunchError(#[from] auto_launch::Error), | ||||||
|  |     #[error("Failed to start listener: {0}")] | ||||||
|  |     ServerSetupError(#[from] std::io::Error), | ||||||
|  |     #[error("Failed to resolve data directory: {0}")] | ||||||
|  |     DataDir(#[from] DataDirError), | ||||||
|  |     #[error("Failed to register hotkeys: {0}")] | ||||||
|  |     RegisterHotkeys(#[from] tauri::Error), | ||||||
|  | } | ||||||
|  |  | ||||||
|  |  | ||||||
|  | #[derive(Debug, ThisError, AsRefStr)] | ||||||
|  | pub enum DataDirError { | ||||||
|  |     #[error("Could not determine data directory")] | ||||||
|  |     NotFound, | ||||||
|  |     #[error("Failed to create data directory: {0}")] | ||||||
|  |     Io(#[from] std::io::Error), | ||||||
| } | } | ||||||
|  |  | ||||||
|  |  | ||||||
| @@ -96,20 +113,23 @@ pub enum SetupError { | |||||||
| #[derive(Debug, ThisError, AsRefStr)] | #[derive(Debug, ThisError, AsRefStr)] | ||||||
| pub enum SendResponseError { | pub enum SendResponseError { | ||||||
|     #[error("The specified credentials request was not found")] |     #[error("The specified credentials request was not found")] | ||||||
|     NotFound, // no request with the given id |     NotFound, | ||||||
|     #[error("The specified request was already closed by the client")] |     #[error("The specified request was already closed by the client")] | ||||||
|     Abandoned, // request has already been closed by client |     Abandoned, | ||||||
|  |     #[error("Could not renew AWS sesssion: {0}")] | ||||||
|  |     SessionRenew(#[from] GetSessionError), | ||||||
| } | } | ||||||
|  |  | ||||||
|  |  | ||||||
| // errors encountered while handling an HTTP request | // errors encountered while handling an HTTP request | ||||||
| #[derive(Debug, ThisError, AsRefStr)] | #[derive(Debug, ThisError, AsRefStr)] | ||||||
| pub enum RequestError { | pub enum HandlerError { | ||||||
|     #[error("Error writing to stream: {0}")] |     #[error("Error writing to stream: {0}")] | ||||||
|     StreamIOError(#[from] std::io::Error), |     StreamIOError(#[from] std::io::Error), | ||||||
|     // #[error("Received invalid UTF-8 in request")] |     // #[error("Received invalid UTF-8 in request")] | ||||||
|     // InvalidUtf8, |     // InvalidUtf8, | ||||||
|     // MalformedHttpRequest, |     #[error("HTTP request malformed")] | ||||||
|  |     BadRequest(Vec<u8>), | ||||||
|     #[error("HTTP request too large")] |     #[error("HTTP request too large")] | ||||||
|     RequestTooLarge, |     RequestTooLarge, | ||||||
|     #[error("Error accessing credentials: {0}")] |     #[error("Error accessing credentials: {0}")] | ||||||
| @@ -135,9 +155,13 @@ pub enum GetCredentialsError { | |||||||
| #[derive(Debug, ThisError, AsRefStr)] | #[derive(Debug, ThisError, AsRefStr)] | ||||||
| pub enum GetSessionError { | pub enum GetSessionError { | ||||||
|     #[error("Request completed successfully but no credentials were returned")] |     #[error("Request completed successfully but no credentials were returned")] | ||||||
|     NoCredentials, // SDK returned successfully but credentials are None |     EmptyResponse, // SDK returned successfully but credentials are None | ||||||
|     #[error("Error response from AWS SDK: {0}")] |     #[error("Error response from AWS SDK: {0}")] | ||||||
|     SdkError(#[from] AwsSdkError<GetSessionTokenError>), |     SdkError(#[from] AwsSdkError<GetSessionTokenError>), | ||||||
|  |     #[error("Could not construt session: credentials are locked")] | ||||||
|  |     CredentialsLocked, | ||||||
|  |     #[error("Could not construct session: no credentials are known")] | ||||||
|  |     CredentialsEmpty, | ||||||
| } | } | ||||||
|  |  | ||||||
|  |  | ||||||
| @@ -147,8 +171,8 @@ pub enum UnlockError { | |||||||
|     NotLocked, |     NotLocked, | ||||||
|     #[error("No saved credentials were found")] |     #[error("No saved credentials were found")] | ||||||
|     NoCredentials, |     NoCredentials, | ||||||
|     #[error("Invalid passphrase")] |     #[error(transparent)] | ||||||
|     BadPassphrase, |     Crypto(#[from] CryptoError), | ||||||
|     #[error("Data was found to be corrupt after decryption")] |     #[error("Data was found to be corrupt after decryption")] | ||||||
|     InvalidUtf8, // Somehow we got invalid utf-8 even though decryption succeeded |     InvalidUtf8, // Somehow we got invalid utf-8 even though decryption succeeded | ||||||
|     #[error("Database error: {0}")] |     #[error("Database error: {0}")] | ||||||
| @@ -158,6 +182,15 @@ pub enum UnlockError { | |||||||
| } | } | ||||||
|  |  | ||||||
|  |  | ||||||
|  | #[derive(Debug, ThisError, AsRefStr)] | ||||||
|  | pub enum CryptoError { | ||||||
|  |     #[error(transparent)] | ||||||
|  |     Argon2(#[from] argon2::Error), | ||||||
|  |     #[error("Invalid passphrase")] // I think this is the only way decryption fails | ||||||
|  |     Aead(#[from] chacha20poly1305::aead::Error), | ||||||
|  | } | ||||||
|  |  | ||||||
|  |  | ||||||
| // Errors encountered while trying to figure out who's on the other end of a request | // Errors encountered while trying to figure out who's on the other end of a request | ||||||
| #[derive(Debug, ThisError, AsRefStr)] | #[derive(Debug, ThisError, AsRefStr)] | ||||||
| pub enum ClientInfoError { | pub enum ClientInfoError { | ||||||
| @@ -168,6 +201,62 @@ pub enum ClientInfoError { | |||||||
| } | } | ||||||
|  |  | ||||||
|  |  | ||||||
|  | // Errors encountered while requesting credentials via CLI (creddy show, creddy exec) | ||||||
|  | #[derive(Debug, ThisError, AsRefStr)] | ||||||
|  | pub enum RequestError { | ||||||
|  |     #[error("Credentials request failed: HTTP {0}")] | ||||||
|  |     Failed(String), | ||||||
|  |     #[error("Credentials request was rejected")] | ||||||
|  |     Rejected, | ||||||
|  |     #[error("Couldn't interpret the server's response")] | ||||||
|  |     MalformedHttpResponse, | ||||||
|  |     #[error("The server did not respond with valid JSON")] | ||||||
|  |     InvalidJson, | ||||||
|  |     #[error("Error reading/writing stream: {0}")] | ||||||
|  |     StreamIOError(#[from] std::io::Error), | ||||||
|  |     #[error("Error loading configuration data: {0}")] | ||||||
|  |     Setup(#[from] SetupError), | ||||||
|  | } | ||||||
|  |  | ||||||
|  |  | ||||||
|  | #[derive(Debug, ThisError, AsRefStr)] | ||||||
|  | pub enum CliError { | ||||||
|  |     #[error(transparent)] | ||||||
|  |     Request(#[from] RequestError), | ||||||
|  |     #[error(transparent)] | ||||||
|  |     Exec(#[from] ExecError), | ||||||
|  |     #[error(transparent)] | ||||||
|  |     Io(#[from] std::io::Error), | ||||||
|  | } | ||||||
|  |  | ||||||
|  |  | ||||||
|  | // Errors encountered while trying to launch a child process | ||||||
|  | #[derive(Debug, ThisError, AsRefStr)] | ||||||
|  | pub enum ExecError { | ||||||
|  |     #[error("Please specify a command")] | ||||||
|  |     NoCommand, | ||||||
|  |     #[error("Executable not found: {0:?}")] | ||||||
|  |     NotFound(OsString), | ||||||
|  |     #[error("Failed to execute command: {0}")] | ||||||
|  |     ExecutionFailed(#[from] std::io::Error), | ||||||
|  |     #[error(transparent)] | ||||||
|  |     GetCredentials(#[from] GetCredentialsError), | ||||||
|  | } | ||||||
|  |  | ||||||
|  |  | ||||||
|  | #[derive(Debug, ThisError, AsRefStr)] | ||||||
|  | pub enum LaunchTerminalError { | ||||||
|  |     #[error("Could not discover main window")] | ||||||
|  |     NoMainWindow, | ||||||
|  |     #[error("Failed to communicate with main Creddy window")] | ||||||
|  |     IpcFailed(#[from] tauri::Error), | ||||||
|  |     #[error("Failed to launch terminal: {0}")] | ||||||
|  |     Exec(#[from] ExecError), | ||||||
|  |     #[error(transparent)] | ||||||
|  |     GetCredentials(#[from] GetCredentialsError), | ||||||
|  | } | ||||||
|  |  | ||||||
|  |  | ||||||
| // ========================= | // ========================= | ||||||
| // Serialize implementations | // Serialize implementations | ||||||
| // ========================= | // ========================= | ||||||
| @@ -189,20 +278,35 @@ impl Serialize for SerializeWrapper<&GetSessionTokenError> { | |||||||
|  |  | ||||||
|  |  | ||||||
| impl_serialize_basic!(SetupError); | impl_serialize_basic!(SetupError); | ||||||
| impl_serialize_basic!(SendResponseError); |  | ||||||
| impl_serialize_basic!(GetCredentialsError); | impl_serialize_basic!(GetCredentialsError); | ||||||
| impl_serialize_basic!(ClientInfoError); | impl_serialize_basic!(ClientInfoError); | ||||||
|  |  | ||||||
|  |  | ||||||
| impl Serialize for RequestError { | impl Serialize for HandlerError { | ||||||
|     fn serialize<S: Serializer>(&self, serializer: S) -> Result<S::Ok, S::Error> { |     fn serialize<S: Serializer>(&self, serializer: S) -> Result<S::Ok, S::Error> { | ||||||
|         let mut map = serializer.serialize_map(None)?; |         let mut map = serializer.serialize_map(None)?; | ||||||
|         map.serialize_entry("code", self.as_ref())?; |         map.serialize_entry("code", self.as_ref())?; | ||||||
|         map.serialize_entry("msg", &format!("{self}"))?; |         map.serialize_entry("msg", &format!("{self}"))?; | ||||||
|  |  | ||||||
|         match self { |         match self { | ||||||
|             RequestError::NoCredentials(src) => map.serialize_entry("source", &src)?, |             HandlerError::NoCredentials(src) => map.serialize_entry("source", &src)?, | ||||||
|             RequestError::ClientInfo(src) => map.serialize_entry("source", &src)?, |             HandlerError::ClientInfo(src) => map.serialize_entry("source", &src)?, | ||||||
|  |             _ => serialize_upstream_err(self, &mut map)?, | ||||||
|  |         } | ||||||
|  |  | ||||||
|  |         map.end() | ||||||
|  |     } | ||||||
|  | } | ||||||
|  |  | ||||||
|  |  | ||||||
|  | impl Serialize for SendResponseError { | ||||||
|  |     fn serialize<S: Serializer>(&self, serializer: S) -> Result<S::Ok, S::Error> { | ||||||
|  |         let mut map = serializer.serialize_map(None)?; | ||||||
|  |         map.serialize_entry("code", self.as_ref())?; | ||||||
|  |         map.serialize_entry("msg", &format!("{self}"))?; | ||||||
|  |  | ||||||
|  |         match self { | ||||||
|  |             SendResponseError::SessionRenew(src) => map.serialize_entry("source", &src)?, | ||||||
|             _ => serialize_upstream_err(self, &mut map)?, |             _ => serialize_upstream_err(self, &mut map)?, | ||||||
|         } |         } | ||||||
|  |  | ||||||
| @@ -243,3 +347,33 @@ impl Serialize for UnlockError { | |||||||
|         map.end() |         map.end() | ||||||
|     } |     } | ||||||
| } | } | ||||||
|  |  | ||||||
|  |  | ||||||
|  | impl Serialize for ExecError { | ||||||
|  |     fn serialize<S: Serializer>(&self, serializer: S) -> Result<S::Ok, S::Error> { | ||||||
|  |         let mut map = serializer.serialize_map(None)?; | ||||||
|  |         map.serialize_entry("code", self.as_ref())?; | ||||||
|  |         map.serialize_entry("msg", &format!("{self}"))?; | ||||||
|  |  | ||||||
|  |         match self { | ||||||
|  |             ExecError::GetCredentials(src) => map.serialize_entry("source", &src)?, | ||||||
|  |             _ => serialize_upstream_err(self, &mut map)?, | ||||||
|  |         } | ||||||
|  |         map.end() | ||||||
|  |     } | ||||||
|  | } | ||||||
|  |  | ||||||
|  |  | ||||||
|  | impl Serialize for LaunchTerminalError { | ||||||
|  |     fn serialize<S: Serializer>(&self, serializer: S) -> Result<S::Ok, S::Error> { | ||||||
|  |         let mut map = serializer.serialize_map(None)?; | ||||||
|  |         map.serialize_entry("code", self.as_ref())?; | ||||||
|  |         map.serialize_entry("msg", &format!("{self}"))?; | ||||||
|  |  | ||||||
|  |         match self { | ||||||
|  |             LaunchTerminalError::Exec(src) => map.serialize_entry("source", &src)?, | ||||||
|  |             _ => serialize_upstream_err(self, &mut map)?, | ||||||
|  |         } | ||||||
|  |         map.end() | ||||||
|  |     } | ||||||
|  | } | ||||||
|   | |||||||
| @@ -1,16 +1,19 @@ | |||||||
| use serde::{Serialize, Deserialize}; | use serde::{Serialize, Deserialize}; | ||||||
| use tauri::State; | use tauri::State; | ||||||
|  |  | ||||||
| use crate::errors::*; |  | ||||||
| use crate::config::AppConfig; | use crate::config::AppConfig; | ||||||
|  | use crate::credentials::{Session,BaseCredentials}; | ||||||
|  | use crate::errors::*; | ||||||
| use crate::clientinfo::Client; | use crate::clientinfo::Client; | ||||||
| use crate::state::{AppState, Session, Credentials}; | use crate::state::AppState; | ||||||
|  | use crate::terminal; | ||||||
|  |  | ||||||
|  |  | ||||||
| #[derive(Clone, Debug, Serialize, Deserialize)] | #[derive(Clone, Debug, Serialize, Deserialize)] | ||||||
| pub struct Request { | pub struct Request { | ||||||
|     pub id: u64, |     pub id: u64, | ||||||
|     pub clients: Vec<Option<Client>>, |     pub clients: Vec<Option<Client>>, | ||||||
|  |     pub base: bool, | ||||||
| } | } | ||||||
|  |  | ||||||
|  |  | ||||||
| @@ -29,43 +32,43 @@ pub enum Approval { | |||||||
|  |  | ||||||
|  |  | ||||||
| #[tauri::command] | #[tauri::command] | ||||||
| pub fn respond(response: RequestResponse, app_state: State<'_, AppState>) -> Result<(), String> { | pub async fn respond(response: RequestResponse, app_state: State<'_, AppState>) -> Result<(), SendResponseError> { | ||||||
|     app_state.send_response(response) |     app_state.send_response(response).await | ||||||
|         .map_err(|e| format!("Error responding to request: {e}")) |  | ||||||
| } | } | ||||||
|  |  | ||||||
|  |  | ||||||
| #[tauri::command] | #[tauri::command] | ||||||
| pub async fn unlock(passphrase: String, app_state: State<'_, AppState>) -> Result<(), UnlockError> { | pub async fn unlock(passphrase: String, app_state: State<'_, AppState>) -> Result<(), UnlockError> { | ||||||
|     app_state.decrypt(&passphrase).await |     app_state.unlock(&passphrase).await | ||||||
| } | } | ||||||
|  |  | ||||||
|  |  | ||||||
| #[tauri::command] | #[tauri::command] | ||||||
| pub fn get_session_status(app_state: State<'_, AppState>) -> String { | pub async fn get_session_status(app_state: State<'_, AppState>) -> Result<String, ()> { | ||||||
|     let session = app_state.session.read().unwrap(); |     let session = app_state.session.read().await; | ||||||
|     match *session { |     let status = match *session { | ||||||
|         Session::Locked(_) => "locked".into(), |         Session::Locked(_) => "locked".into(), | ||||||
|         Session::Unlocked(_) => "unlocked".into(), |         Session::Unlocked{..} => "unlocked".into(), | ||||||
|         Session::Empty => "empty".into() |         Session::Empty => "empty".into() | ||||||
|     } |     }; | ||||||
|  |     Ok(status) | ||||||
| } | } | ||||||
|  |  | ||||||
|  |  | ||||||
| #[tauri::command] | #[tauri::command] | ||||||
| pub async fn save_credentials( | pub async fn save_credentials( | ||||||
|     credentials: Credentials, |     credentials: BaseCredentials, | ||||||
|     passphrase: String, |     passphrase: String, | ||||||
|     app_state: State<'_, AppState> |     app_state: State<'_, AppState> | ||||||
| ) -> Result<(), UnlockError> { | ) -> Result<(), UnlockError> { | ||||||
|     app_state.save_creds(credentials, &passphrase).await |     app_state.new_creds(credentials, &passphrase).await | ||||||
| } | } | ||||||
|  |  | ||||||
|  |  | ||||||
| #[tauri::command] | #[tauri::command] | ||||||
| pub fn get_config(app_state: State<'_, AppState>) -> AppConfig { | pub async fn get_config(app_state: State<'_, AppState>) -> Result<AppConfig, ()> { | ||||||
|     let config = app_state.config.read().unwrap(); |     let config = app_state.config.read().await; | ||||||
|     config.clone() |     Ok(config.clone()) | ||||||
| } | } | ||||||
|  |  | ||||||
|  |  | ||||||
| @@ -73,5 +76,12 @@ pub fn get_config(app_state: State<'_, AppState>) -> AppConfig { | |||||||
| pub async fn save_config(config: AppConfig, app_state: State<'_, AppState>) -> Result<(), String>  { | pub async fn save_config(config: AppConfig, app_state: State<'_, AppState>) -> Result<(), String>  { | ||||||
|     app_state.update_config(config) |     app_state.update_config(config) | ||||||
|         .await |         .await | ||||||
|         .map_err(|e| format!("Error saving config to database: {e}")) |         .map_err(|e| format!("Error saving config: {e}"))?; | ||||||
|  |         Ok(()) | ||||||
|  | } | ||||||
|  |  | ||||||
|  |  | ||||||
|  | #[tauri::command] | ||||||
|  | pub async fn launch_terminal(base: bool) -> Result<(), LaunchTerminalError> { | ||||||
|  |     terminal::launch(base).await | ||||||
| } | } | ||||||
|   | |||||||
							
								
								
									
										11
									
								
								src-tauri/src/lib.rs
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										11
									
								
								src-tauri/src/lib.rs
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,11 @@ | |||||||
|  | pub mod app; | ||||||
|  | pub mod cli; | ||||||
|  | mod config; | ||||||
|  | mod credentials; | ||||||
|  | pub mod errors; | ||||||
|  | mod clientinfo; | ||||||
|  | mod ipc; | ||||||
|  | mod state; | ||||||
|  | mod server; | ||||||
|  | mod terminal; | ||||||
|  | mod tray; | ||||||
| @@ -3,101 +3,25 @@ | |||||||
|     windows_subsystem = "windows" |     windows_subsystem = "windows" | ||||||
| )] | )] | ||||||
|  |  | ||||||
| use tauri::{AppHandle, Manager, async_runtime as rt}; | use creddy::{ | ||||||
| use once_cell::sync::OnceCell; |     app, | ||||||
|  |     cli, | ||||||
|  |     errors::ErrorPopup, | ||||||
|  | }; | ||||||
|  |  | ||||||
| mod config; |  | ||||||
| mod errors; |  | ||||||
| mod clientinfo; |  | ||||||
| mod ipc; |  | ||||||
| mod state; |  | ||||||
| mod server; |  | ||||||
| mod tray; |  | ||||||
|  |  | ||||||
| use crate::errors::*; |  | ||||||
| use state::AppState; |  | ||||||
|  |  | ||||||
|  |  | ||||||
| pub static APP: OnceCell<AppHandle> = OnceCell::new(); |  | ||||||
|  |  | ||||||
| fn main() { | fn main() { | ||||||
|     let initial_state = match rt::block_on(AppState::load()) { |     let res = match cli::parser().get_matches().subcommand() { | ||||||
|         Ok(state) => state, |         None | Some(("run", _)) => { | ||||||
|         Err(e) => {eprintln!("{}", e); return;} |             app::run().error_popup("Creddy failed to start"); | ||||||
|     }; |  | ||||||
|  |  | ||||||
|     tauri::Builder::default() |  | ||||||
|         .manage(initial_state) |  | ||||||
|         .system_tray(tray::create()) |  | ||||||
|         .on_system_tray_event(tray::handle_event) |  | ||||||
|         .invoke_handler(tauri::generate_handler![ |  | ||||||
|             ipc::unlock, |  | ||||||
|             ipc::respond, |  | ||||||
|             ipc::get_session_status, |  | ||||||
|             ipc::save_credentials, |  | ||||||
|             ipc::get_config, |  | ||||||
|             ipc::save_config, |  | ||||||
|         ]) |  | ||||||
|         .setup(|app| { |  | ||||||
|             APP.set(app.handle()).unwrap(); |  | ||||||
|             let state = app.state::<AppState>(); |  | ||||||
|             let config = state.config.read().unwrap(); |  | ||||||
|             config::set_auto_launch(config.start_on_login)?; |  | ||||||
|  |  | ||||||
|             let addr = std::net::SocketAddrV4::new(config.listen_addr, config.listen_port); |  | ||||||
|             tauri::async_runtime::spawn(server::serve(addr, app.handle())); |  | ||||||
|  |  | ||||||
|             if !config.start_minimized { |  | ||||||
|                 app.get_window("main") |  | ||||||
|                     .ok_or(RequestError::NoMainWindow)? |  | ||||||
|                     .show()?; |  | ||||||
|             } |  | ||||||
|             Ok(()) |             Ok(()) | ||||||
|         }) |         }, | ||||||
|         .build(tauri::generate_context!()) |         Some(("show", m)) => cli::show(m), | ||||||
|         .expect("error while running tauri application") |         Some(("exec", m)) => cli::exec(m), | ||||||
|         .run(|app, run_event| match run_event { |         _ => unreachable!(), | ||||||
|             tauri::RunEvent::WindowEvent { label, event, .. } => match event { |  | ||||||
|                 tauri::WindowEvent::CloseRequested { api, .. } => { |  | ||||||
|                     let _ = app.get_window(&label).map(|w| w.hide()); |  | ||||||
|                     api.prevent_close(); |  | ||||||
|                 } |  | ||||||
|                 _ => () |  | ||||||
|             } |  | ||||||
|             _ => () |  | ||||||
|         }) |  | ||||||
| } |  | ||||||
|  |  | ||||||
|  |  | ||||||
| macro_rules! get_state { |  | ||||||
|     ($prop:ident as $name:ident) => { |  | ||||||
|         use tauri::Manager; |  | ||||||
|         let app = crate::APP.get().unwrap(); // as long as the app is running, this is fine |  | ||||||
|         let state = app.state::<crate::state::AppState>(); |  | ||||||
|         let $name = state.$prop.read().unwrap(); // only panics if another thread has already panicked |  | ||||||
|     }; |  | ||||||
|     (config.$prop:ident as $name:ident) => { |  | ||||||
|         use tauri::Manager; |  | ||||||
|         let app = crate::APP.get().unwrap(); |  | ||||||
|         let state = app.state::<crate::state::AppState>(); |  | ||||||
|         let config = state.config.read().unwrap(); |  | ||||||
|         let $name = config.$prop; |  | ||||||
|     }; |     }; | ||||||
|  |  | ||||||
|     (mut $prop:ident as $name:ident) => { |     if let Err(e) = res { | ||||||
|         use tauri::Manager; |         eprintln!("Error: {e}"); | ||||||
|         let app = crate::APP.get().unwrap(); |  | ||||||
|         let state = app.state::<crate::state::AppState>(); |  | ||||||
|         let $name = state.$prop.write().unwrap(); |  | ||||||
|     }; |  | ||||||
|     (mut config.$prop:ident as $name:ident) => { |  | ||||||
|         use tauri::Manager; |  | ||||||
|         let app = crate::APP.get().unwrap(); |  | ||||||
|         let state = app.state::<crate::state::AppState>(); |  | ||||||
|         let config = state.config.write().unwrap(); |  | ||||||
|         let $name = config.$prop; |  | ||||||
|     } |     } | ||||||
| } | } | ||||||
|  |  | ||||||
|  |  | ||||||
| pub(crate) use get_state; |  | ||||||
|   | |||||||
| @@ -1,12 +1,21 @@ | |||||||
| use core::time::Duration; | use core::time::Duration; | ||||||
| use std::io; | use std::io; | ||||||
| use std::net::{SocketAddr, SocketAddrV4}; | use std::net::{ | ||||||
| use tokio::net::{TcpListener, TcpStream}; |     Ipv4Addr, | ||||||
|  |     SocketAddr, | ||||||
|  |     SocketAddrV4, | ||||||
|  | }; | ||||||
|  | use tokio::net::{ | ||||||
|  |     TcpListener,  | ||||||
|  |     TcpStream, | ||||||
|  | }; | ||||||
| use tokio::io::{AsyncReadExt, AsyncWriteExt}; | use tokio::io::{AsyncReadExt, AsyncWriteExt}; | ||||||
| use tokio::sync::oneshot; | use tokio::sync::oneshot; | ||||||
| use tokio::time::sleep; | use tokio::time::sleep; | ||||||
|  |  | ||||||
| use tauri::{AppHandle, Manager}; | use tauri::{AppHandle, Manager}; | ||||||
|  | use tauri::async_runtime as rt; | ||||||
|  | use tauri::async_runtime::JoinHandle; | ||||||
|  |  | ||||||
| use crate::{clientinfo, clientinfo::Client}; | use crate::{clientinfo, clientinfo::Client}; | ||||||
| use crate::errors::*; | use crate::errors::*; | ||||||
| @@ -22,10 +31,10 @@ struct Handler { | |||||||
| } | } | ||||||
|  |  | ||||||
| impl Handler { | impl Handler { | ||||||
|     fn new(stream: TcpStream, app: AppHandle) -> Self { |     async fn new(stream: TcpStream, app: AppHandle) -> Self { | ||||||
|         let state = app.state::<AppState>(); |         let state = app.state::<AppState>(); | ||||||
|         let (chan_send, chan_recv) = oneshot::channel(); |         let (chan_send, chan_recv) = oneshot::channel(); | ||||||
|         let request_id = state.register_request(chan_send); |         let request_id = state.register_request(chan_send).await; | ||||||
|         Handler {  |         Handler {  | ||||||
|             request_id, |             request_id, | ||||||
|             stream, |             stream, | ||||||
| @@ -39,28 +48,40 @@ impl Handler { | |||||||
|             eprintln!("{e}"); |             eprintln!("{e}"); | ||||||
|         } |         } | ||||||
|         let state = self.app.state::<AppState>(); |         let state = self.app.state::<AppState>(); | ||||||
|         state.unregister_request(self.request_id); |         state.unregister_request(self.request_id).await; | ||||||
|     } |     } | ||||||
|  |  | ||||||
|     async fn try_handle(&mut self) -> Result<(), RequestError> { |     async fn try_handle(&mut self) -> Result<(), HandlerError> { | ||||||
|         let _ = self.recv_request().await?; |         let req_path = self.recv_request().await?; | ||||||
|         let clients = self.get_clients()?; |         let clients = self.get_clients().await?; | ||||||
|         if self.includes_banned(&clients) { |         if self.includes_banned(&clients).await { | ||||||
|             self.stream.write(b"HTTP/1.0 403 Access Denied\r\n\r\n").await?; |             self.stream.write(b"HTTP/1.0 403 Access Denied\r\n\r\n").await?; | ||||||
|             return Ok(()) |             return Ok(()) | ||||||
|         } |         } | ||||||
|  |         let base = req_path == b"/creddy/base-credentials"; | ||||||
|          |          | ||||||
|         let req = Request {id: self.request_id, clients}; |         let req = Request {id: self.request_id, clients, base}; | ||||||
|         self.app.emit_all("credentials-request", &req)?; |         self.app.emit_all("credentials-request", &req)?; | ||||||
|         let starting_visibility = self.show_window()?; |         let starting_visibility = self.show_window()?; | ||||||
|  |  | ||||||
|         match self.wait_for_response().await? { |         match self.wait_for_response().await? { | ||||||
|             Approval::Approved => self.send_credentials().await?, |             Approval::Approved => { | ||||||
|  |                 let state = self.app.state::<AppState>(); | ||||||
|  |                 let creds = if base { | ||||||
|  |                     state.serialize_base_creds().await? | ||||||
|  |                 } | ||||||
|  |                 else { | ||||||
|  |                     state.serialize_session_creds().await? | ||||||
|  |                 }; | ||||||
|  |                 self.send_body(creds.as_bytes()).await?; | ||||||
|  |             }, | ||||||
|             Approval::Denied => { |             Approval::Denied => { | ||||||
|                 let state = self.app.state::<AppState>(); |                 let state = self.app.state::<AppState>(); | ||||||
|                 for client in req.clients { |                 for client in req.clients { | ||||||
|                     state.add_ban(client, self.app.clone()); |                     state.add_ban(client).await; | ||||||
|                 } |                 } | ||||||
|  |                 self.send_body(b"Denied!").await?; | ||||||
|  |                 self.stream.shutdown().await?; | ||||||
|             } |             } | ||||||
|         } |         } | ||||||
|  |  | ||||||
| @@ -68,51 +89,62 @@ impl Handler { | |||||||
|         // and b) there are no other pending requests |         // and b) there are no other pending requests | ||||||
|         let state = self.app.state::<AppState>(); |         let state = self.app.state::<AppState>(); | ||||||
|         let delay = { |         let delay = { | ||||||
|             let config = state.config.read().unwrap(); |             let config = state.config.read().await; | ||||||
|             Duration::from_millis(config.rehide_ms) |             Duration::from_millis(config.rehide_ms) | ||||||
|         }; |         }; | ||||||
|         sleep(delay).await; |         sleep(delay).await; | ||||||
|  |  | ||||||
|         if !starting_visibility && state.req_count() == 0 { |         if !starting_visibility && state.req_count().await == 0 { | ||||||
|             let window = self.app.get_window("main").ok_or(RequestError::NoMainWindow)?; |             let window = self.app.get_window("main").ok_or(HandlerError::NoMainWindow)?; | ||||||
|             window.hide()?; |             window.hide()?; | ||||||
|         } |         } | ||||||
|  |  | ||||||
|         Ok(()) |         Ok(()) | ||||||
|     } |     } | ||||||
|  |  | ||||||
|     async fn recv_request(&mut self) -> Result<Vec<u8>, RequestError> { |     async fn recv_request(&mut self) -> Result<Vec<u8>, HandlerError> { | ||||||
|         let mut buf = vec![0; 8192]; // it's what tokio's BufReader uses |         let mut buf = vec![0; 8192]; // it's what tokio's BufReader uses | ||||||
|         let mut n = 0; |         let mut n = 0; | ||||||
|         loop { |         loop { | ||||||
|             n += self.stream.read(&mut buf[n..]).await?; |             n += self.stream.read(&mut buf[n..]).await?; | ||||||
|             if n >= 4 && &buf[(n - 4)..n] == b"\r\n\r\n" {break;} |             if n >= 4 && &buf[(n - 4)..n] == b"\r\n\r\n" {break;} | ||||||
|             if n == buf.len() {return Err(RequestError::RequestTooLarge);} |             if n == buf.len() {return Err(HandlerError::RequestTooLarge);} | ||||||
|         } |         } | ||||||
|  |  | ||||||
|         if cfg!(debug_assertions) { |         let path = buf.split(|&c| &[c] == b" ") | ||||||
|  |             .skip(1) | ||||||
|  |             .next() | ||||||
|  |             .ok_or(HandlerError::BadRequest(buf.clone()))?; | ||||||
|  |  | ||||||
|  |         #[cfg(debug_assertions)] { | ||||||
|  |             println!("Path: {}", std::str::from_utf8(&path).unwrap()); | ||||||
|             println!("{}", std::str::from_utf8(&buf).unwrap()); |             println!("{}", std::str::from_utf8(&buf).unwrap()); | ||||||
|         } |         } | ||||||
|  |  | ||||||
|         Ok(buf) |         Ok(path.into()) | ||||||
|     } |     } | ||||||
|  |  | ||||||
|     fn get_clients(&self) -> Result<Vec<Option<Client>>, RequestError> { |     async fn get_clients(&self) -> Result<Vec<Option<Client>>, HandlerError> { | ||||||
|         let peer_addr = match self.stream.peer_addr()? { |         let peer_addr = match self.stream.peer_addr()? { | ||||||
|             SocketAddr::V4(addr) => addr, |             SocketAddr::V4(addr) => addr, | ||||||
|             _ => unreachable!(), // we only listen on IPv4 |             _ => unreachable!(), // we only listen on IPv4 | ||||||
|         }; |         }; | ||||||
|         let clients = clientinfo::get_clients(peer_addr.port())?; |         let clients = clientinfo::get_clients(peer_addr.port()).await?; | ||||||
|         Ok(clients) |         Ok(clients) | ||||||
|     } |     } | ||||||
|  |  | ||||||
|     fn includes_banned(&self, clients: &Vec<Option<Client>>) -> bool { |     async fn includes_banned(&self, clients: &Vec<Option<Client>>) -> bool { | ||||||
|         let state = self.app.state::<AppState>(); |         let state = self.app.state::<AppState>(); | ||||||
|         clients.iter().any(|c| state.is_banned(c)) |         for client in clients { | ||||||
|  |             if state.is_banned(client).await { | ||||||
|  |                 return true; | ||||||
|  |             } | ||||||
|  |         } | ||||||
|  |         false | ||||||
|     } |     } | ||||||
|  |  | ||||||
|     fn show_window(&self) -> Result<bool, RequestError> { |     fn show_window(&self) -> Result<bool, HandlerError> { | ||||||
|         let window = self.app.get_window("main").ok_or(RequestError::NoMainWindow)?; |         let window = self.app.get_window("main").ok_or(HandlerError::NoMainWindow)?; | ||||||
|         let starting_visibility = window.is_visible()?; |         let starting_visibility = window.is_visible()?; | ||||||
|         if !starting_visibility { |         if !starting_visibility { | ||||||
|             window.unminimize()?; |             window.unminimize()?; | ||||||
| @@ -122,7 +154,7 @@ impl Handler { | |||||||
|         Ok(starting_visibility) |         Ok(starting_visibility) | ||||||
|     } |     } | ||||||
|  |  | ||||||
|     async fn wait_for_response(&mut self) -> Result<Approval, RequestError> { |     async fn wait_for_response(&mut self) -> Result<Approval, HandlerError> { | ||||||
|         self.stream.write(b"HTTP/1.0 200 OK\r\n").await?; |         self.stream.write(b"HTTP/1.0 200 OK\r\n").await?; | ||||||
|         self.stream.write(b"Content-Type: application/json\r\n").await?; |         self.stream.write(b"Content-Type: application/json\r\n").await?; | ||||||
|         self.stream.write(b"X-Creddy-delaying-tactic: ").await?; |         self.stream.write(b"X-Creddy-delaying-tactic: ").await?; | ||||||
| @@ -145,32 +177,67 @@ impl Handler { | |||||||
|         } |         } | ||||||
|     } |     } | ||||||
|  |  | ||||||
|     async fn send_credentials(&mut self) -> Result<(), RequestError> { |     async fn send_body(&mut self, body: &[u8]) -> Result<(), HandlerError> { | ||||||
|         let state = self.app.state::<AppState>(); |  | ||||||
|         let creds = state.get_creds_serialized()?; |  | ||||||
|  |  | ||||||
|         self.stream.write(b"\r\nContent-Length: ").await?; |         self.stream.write(b"\r\nContent-Length: ").await?; | ||||||
|         self.stream.write(creds.as_bytes().len().to_string().as_bytes()).await?; |         self.stream.write(body.len().to_string().as_bytes()).await?; | ||||||
|         self.stream.write(b"\r\n\r\n").await?; |  | ||||||
|         self.stream.write(creds.as_bytes()).await?; |  | ||||||
|         self.stream.write(b"\r\n\r\n").await?; |         self.stream.write(b"\r\n\r\n").await?; | ||||||
|  |         self.stream.write(body).await?; | ||||||
|  |         self.stream.shutdown().await?; | ||||||
|         Ok(()) |         Ok(()) | ||||||
|     } |     } | ||||||
| } | } | ||||||
|  |  | ||||||
|  |  | ||||||
| pub async fn serve(addr: SocketAddrV4, app_handle: AppHandle) -> io::Result<()> { | #[derive(Debug)] | ||||||
|     let listener = TcpListener::bind(&addr).await?; | pub struct Server { | ||||||
|     println!("Listening on {addr}"); |     addr: Ipv4Addr, | ||||||
|  |     port: u16, | ||||||
|  |     app_handle: AppHandle, | ||||||
|  |     task: JoinHandle<()>, | ||||||
|  | } | ||||||
|  |  | ||||||
|  |  | ||||||
|  | impl Server { | ||||||
|  |     pub async fn new(addr: Ipv4Addr, port: u16, app_handle: AppHandle) -> io::Result<Server> { | ||||||
|  |         let task = Self::start_server(addr, port, app_handle.app_handle()).await?; | ||||||
|  |         Ok(Server { addr, port, app_handle, task}) | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     pub async fn rebind(&mut self, addr: Ipv4Addr, port: u16) -> io::Result<()> { | ||||||
|  |         if addr == self.addr && port == self.port { | ||||||
|  |             return Ok(()) | ||||||
|  |         } | ||||||
|  |  | ||||||
|  |         let new_task = Self::start_server(addr, port, self.app_handle.app_handle()).await?; | ||||||
|  |         self.task.abort(); | ||||||
|  |  | ||||||
|  |         self.addr = addr; | ||||||
|  |         self.port = port; | ||||||
|  |         self.task = new_task; | ||||||
|  |         Ok(()) | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     // construct the listener before spawning the task so that we can return early if it fails | ||||||
|  |     async fn start_server(addr: Ipv4Addr, port: u16, app_handle: AppHandle) -> io::Result<JoinHandle<()>> { | ||||||
|  |         let sock_addr = SocketAddrV4::new(addr, port); | ||||||
|  |         let listener = TcpListener::bind(&sock_addr).await?; | ||||||
|  |         let task = rt::spawn( | ||||||
|  |             Self::serve(listener, app_handle.app_handle()) | ||||||
|  |         ); | ||||||
|  |         Ok(task) | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     async fn serve(listener: TcpListener, app_handle: AppHandle) { | ||||||
|         loop { |         loop { | ||||||
|             match listener.accept().await { |             match listener.accept().await { | ||||||
|                 Ok((stream, _)) => { |                 Ok((stream, _)) => { | ||||||
|                 let handler = Handler::new(stream, app_handle.app_handle()); |                     let handler = Handler::new(stream, app_handle.app_handle()).await; | ||||||
|                 tauri::async_runtime::spawn(handler.handle()); |                     rt::spawn(handler.handle()); | ||||||
|                 }, |                 }, | ||||||
|                 Err(e) => { |                 Err(e) => { | ||||||
|                     eprintln!("Error accepting connection: {e}"); |                     eprintln!("Error accepting connection: {e}"); | ||||||
|                 } |                 } | ||||||
|             } |             } | ||||||
|         } |         } | ||||||
|  |     } | ||||||
| } | } | ||||||
|   | |||||||
| @@ -1,59 +1,26 @@ | |||||||
| use core::time::Duration; |  | ||||||
| use std::collections::{HashMap, HashSet}; | use std::collections::{HashMap, HashSet}; | ||||||
| use std::sync::RwLock; | use std::time::Duration; | ||||||
|  |  | ||||||
| use serde::{Serialize, Deserialize}; | use tokio::{ | ||||||
| use tokio::sync::oneshot::Sender; |     sync::oneshot::Sender, | ||||||
| use tokio::time::sleep; |     sync::RwLock, | ||||||
| use sqlx::{SqlitePool, sqlite::SqlitePoolOptions, sqlite::SqliteConnectOptions}; |     time::sleep, | ||||||
| use sodiumoxide::crypto::{ |  | ||||||
|         pwhash, |  | ||||||
|         pwhash::Salt,  |  | ||||||
|         secretbox,  |  | ||||||
|         secretbox::{Nonce, Key} |  | ||||||
| }; | }; | ||||||
|  | use sqlx::SqlitePool; | ||||||
| use tauri::async_runtime as runtime; | use tauri::async_runtime as runtime; | ||||||
| use tauri::Manager; | use tauri::Manager; | ||||||
|  |  | ||||||
|  | use crate::app::APP; | ||||||
|  | use crate::credentials::{ | ||||||
|  |     Session, | ||||||
|  |     BaseCredentials, | ||||||
|  |     SessionCredentials, | ||||||
|  | }; | ||||||
| use crate::{config, config::AppConfig}; | use crate::{config, config::AppConfig}; | ||||||
| use crate::ipc; | use crate::ipc::{self, Approval}; | ||||||
| use crate::clientinfo::Client; | use crate::clientinfo::Client; | ||||||
| use crate::errors::*; | use crate::errors::*; | ||||||
|  | use crate::server::Server; | ||||||
|  |  | ||||||
| #[derive(Debug, Serialize, Deserialize)] |  | ||||||
| #[serde(untagged)] |  | ||||||
| pub enum Credentials { |  | ||||||
|     #[serde(rename_all = "PascalCase")] |  | ||||||
|     LongLived { |  | ||||||
|         access_key_id: String, |  | ||||||
|         secret_access_key: String, |  | ||||||
|     }, |  | ||||||
|     #[serde(rename_all = "PascalCase")] |  | ||||||
|     ShortLived { |  | ||||||
|         access_key_id: String, |  | ||||||
|         secret_access_key: String, |  | ||||||
|         token: String, |  | ||||||
|         expiration: String, |  | ||||||
|     }, |  | ||||||
| } |  | ||||||
|  |  | ||||||
|  |  | ||||||
| #[derive(Debug)] |  | ||||||
| pub struct LockedCredentials { |  | ||||||
|     access_key_id: String, |  | ||||||
|     secret_key_enc: Vec<u8>, |  | ||||||
|     salt: Salt, |  | ||||||
|     nonce: Nonce, |  | ||||||
| } |  | ||||||
|  |  | ||||||
|  |  | ||||||
| #[derive(Debug)] |  | ||||||
| pub enum Session { |  | ||||||
|     Unlocked(Credentials), |  | ||||||
|     Locked(LockedCredentials), |  | ||||||
|     Empty, |  | ||||||
| } |  | ||||||
|  |  | ||||||
|  |  | ||||||
| #[derive(Debug)] | #[derive(Debug)] | ||||||
| @@ -62,130 +29,90 @@ pub struct AppState { | |||||||
|     pub session: RwLock<Session>, |     pub session: RwLock<Session>, | ||||||
|     pub request_count: RwLock<u64>, |     pub request_count: RwLock<u64>, | ||||||
|     pub open_requests: RwLock<HashMap<u64, Sender<ipc::Approval>>>, |     pub open_requests: RwLock<HashMap<u64, Sender<ipc::Approval>>>, | ||||||
|  |     pub pending_terminal_request: RwLock<bool>, | ||||||
|     pub bans: RwLock<std::collections::HashSet<Option<Client>>>, |     pub bans: RwLock<std::collections::HashSet<Option<Client>>>, | ||||||
|     pool: SqlitePool, |     server: RwLock<Server>, | ||||||
|  |     pool: sqlx::SqlitePool, | ||||||
| } | } | ||||||
|  |  | ||||||
| impl AppState { | impl AppState { | ||||||
|     pub async fn load() -> Result<Self, SetupError> { |     pub fn new(config: AppConfig, session: Session, server: Server, pool: SqlitePool) -> AppState { | ||||||
|         let conn_opts = SqliteConnectOptions::new() |         AppState { | ||||||
|             .filename(config::get_or_create_db_path()) |             config: RwLock::new(config), | ||||||
|             .create_if_missing(true); |             session: RwLock::new(session), | ||||||
|         let pool_opts = SqlitePoolOptions::new(); |  | ||||||
|  |  | ||||||
|         let pool: SqlitePool = pool_opts.connect_with(conn_opts).await?; |  | ||||||
|         sqlx::migrate!().run(&pool).await?; |  | ||||||
|         let creds = Self::load_creds(&pool).await?; |  | ||||||
|         let conf = AppConfig::load(&pool).await?; |  | ||||||
|  |  | ||||||
|         let state = AppState { |  | ||||||
|             config: RwLock::new(conf), |  | ||||||
|             session: RwLock::new(creds), |  | ||||||
|             request_count: RwLock::new(0), |             request_count: RwLock::new(0), | ||||||
|             open_requests: RwLock::new(HashMap::new()), |             open_requests: RwLock::new(HashMap::new()), | ||||||
|  |             pending_terminal_request: RwLock::new(false), | ||||||
|             bans: RwLock::new(HashSet::new()), |             bans: RwLock::new(HashSet::new()), | ||||||
|  |             server: RwLock::new(server), | ||||||
|             pool, |             pool, | ||||||
|         }; |         } | ||||||
|  |  | ||||||
|         Ok(state) |  | ||||||
|     } |     } | ||||||
|  |  | ||||||
|     async fn load_creds(pool: &SqlitePool) -> Result<Session, SetupError> { |     pub async fn new_creds(&self, base_creds: BaseCredentials, passphrase: &str) -> Result<(), UnlockError> { | ||||||
|         let res = sqlx::query!("SELECT * FROM credentials ORDER BY created_at desc") |         let locked = base_creds.encrypt(passphrase)?; | ||||||
|             .fetch_optional(pool) |  | ||||||
|             .await?; |  | ||||||
|         let row = match res { |  | ||||||
|             Some(r) => r, |  | ||||||
|             None => {return Ok(Session::Empty);} |  | ||||||
|         }; |  | ||||||
|  |  | ||||||
|         let salt_buf: [u8; 32] = row.salt |  | ||||||
|             .try_into() |  | ||||||
|             .map_err(|_e| SetupError::InvalidRecord)?; |  | ||||||
|         let nonce_buf: [u8; 24] = row.nonce |  | ||||||
|             .try_into() |  | ||||||
|             .map_err(|_e| SetupError::InvalidRecord)?; |  | ||||||
|  |  | ||||||
|         let creds = LockedCredentials { |  | ||||||
|             access_key_id: row.access_key_id, |  | ||||||
|             secret_key_enc: row.secret_key_enc, |  | ||||||
|             salt: Salt(salt_buf), |  | ||||||
|             nonce: Nonce(nonce_buf), |  | ||||||
|         }; |  | ||||||
|         Ok(Session::Locked(creds)) |  | ||||||
|     } |  | ||||||
|  |  | ||||||
|     pub async fn save_creds(&self, creds: Credentials, passphrase: &str) -> Result<(), UnlockError> { |  | ||||||
|         let (key_id, secret_key) = match creds { |  | ||||||
|             Credentials::LongLived {access_key_id, secret_access_key} => { |  | ||||||
|                 (access_key_id, secret_access_key) |  | ||||||
|             }, |  | ||||||
|             _ => unreachable!(), |  | ||||||
|         }; |  | ||||||
|  |  | ||||||
|         // do this first so that if it fails we don't save bad credentials |         // do this first so that if it fails we don't save bad credentials | ||||||
|         self.new_session(&key_id, &secret_key).await?; |         self.new_session(base_creds).await?; | ||||||
|  |         locked.save(&self.pool).await?; | ||||||
|         let salt = pwhash::gen_salt(); |  | ||||||
|         let mut key_buf = [0; secretbox::KEYBYTES]; |  | ||||||
|         pwhash::derive_key_interactive(&mut key_buf, passphrase.as_bytes(), &salt).unwrap(); |  | ||||||
|         let key = Key(key_buf); |  | ||||||
|         // not sure we need both salt AND nonce given that we generate a |  | ||||||
|         // fresh salt every time we encrypt, but better safe than sorry |  | ||||||
|         let nonce = secretbox::gen_nonce(); |  | ||||||
|         let secret_key_enc = secretbox::seal(secret_key.as_bytes(), &nonce, &key); |  | ||||||
|          |  | ||||||
|  |  | ||||||
|         sqlx::query( |  | ||||||
|             "INSERT INTO credentials (access_key_id, secret_key_enc, salt, nonce, created_at) |  | ||||||
|             VALUES (?, ?, ?, ?, strftime('%s'))" |  | ||||||
|         ) |  | ||||||
|             .bind(&key_id) |  | ||||||
|             .bind(&secret_key_enc) |  | ||||||
|             .bind(&salt.0[0..]) |  | ||||||
|             .bind(&nonce.0[0..]) |  | ||||||
|             .execute(&self.pool) |  | ||||||
|             .await?; |  | ||||||
|  |  | ||||||
|         Ok(()) |         Ok(()) | ||||||
|     } |     } | ||||||
|  |  | ||||||
|     pub async fn update_config(&self, new_config: AppConfig) -> Result<(), SetupError> { |     pub async fn update_config(&self, new_config: AppConfig) -> Result<(), SetupError> { | ||||||
|         new_config.save(&self.pool).await?; |         let mut live_config = self.config.write().await; | ||||||
|          |          | ||||||
|         let mut live_config = self.config.write().unwrap(); |         // update autostart if necessary | ||||||
|         if new_config.start_on_login != live_config.start_on_login { |         if new_config.start_on_login != live_config.start_on_login { | ||||||
|             config::set_auto_launch(new_config.start_on_login)?; |             config::set_auto_launch(new_config.start_on_login)?; | ||||||
|         } |         } | ||||||
|         *live_config = new_config; |         // rebind socket if necessary | ||||||
|  |         if new_config.listen_addr != live_config.listen_addr  | ||||||
|  |             || new_config.listen_port != live_config.listen_port  | ||||||
|  |         { | ||||||
|  |             let mut sv = self.server.write().await; | ||||||
|  |             sv.rebind(new_config.listen_addr, new_config.listen_port).await?; | ||||||
|  |         } | ||||||
|  |         // re-register hotkeys if necessary | ||||||
|  |         if new_config.hotkeys.show_window != live_config.hotkeys.show_window | ||||||
|  |             || new_config.hotkeys.launch_terminal != live_config.hotkeys.launch_terminal | ||||||
|  |         { | ||||||
|  |             config::register_hotkeys(&new_config.hotkeys)?; | ||||||
|  |         } | ||||||
|  |  | ||||||
|  |         new_config.save(&self.pool).await?; | ||||||
|  |         *live_config = new_config; | ||||||
|         Ok(()) |         Ok(()) | ||||||
|     } |     } | ||||||
|  |  | ||||||
|     pub fn register_request(&self, chan: Sender<ipc::Approval>) -> u64 { |     pub async fn register_request(&self, chan: Sender<ipc::Approval>) -> u64 { | ||||||
|         let count = { |         let count = { | ||||||
|             let mut c = self.request_count.write().unwrap(); |             let mut c = self.request_count.write().await; | ||||||
|             *c += 1; |             *c += 1; | ||||||
|             c |             c | ||||||
|         }; |         }; | ||||||
|  |  | ||||||
|         let mut open_requests = self.open_requests.write().unwrap(); |         let mut open_requests = self.open_requests.write().await; | ||||||
|         open_requests.insert(*count, chan); // `count` is the request id |         open_requests.insert(*count, chan); // `count` is the request id | ||||||
|         *count |         *count | ||||||
|     } |     } | ||||||
|  |  | ||||||
|     pub fn unregister_request(&self, id: u64) { |     pub async fn unregister_request(&self, id: u64) { | ||||||
|         let mut open_requests = self.open_requests.write().unwrap(); |         let mut open_requests = self.open_requests.write().await; | ||||||
|         open_requests.remove(&id); |         open_requests.remove(&id); | ||||||
|     } |     } | ||||||
|  |  | ||||||
|     pub fn req_count(&self) -> usize { |     pub async fn req_count(&self) -> usize { | ||||||
|         let open_requests = self.open_requests.read().unwrap(); |         let open_requests = self.open_requests.read().await; | ||||||
|         open_requests.len() |         open_requests.len() | ||||||
|     } |     } | ||||||
|  |  | ||||||
|     pub fn send_response(&self, response: ipc::RequestResponse) -> Result<(), SendResponseError> { |     pub async fn send_response(&self, response: ipc::RequestResponse) -> Result<(), SendResponseError> { | ||||||
|         let mut open_requests = self.open_requests.write().unwrap(); |         if let Approval::Approved = response.approval { | ||||||
|  |             let mut session = self.session.write().await; | ||||||
|  |             session.renew_if_expired().await?; | ||||||
|  |         } | ||||||
|  |  | ||||||
|  |         let mut open_requests = self.open_requests.write().await; | ||||||
|         let chan = open_requests |         let chan = open_requests | ||||||
|             .remove(&response.id) |             .remove(&response.id) | ||||||
|             .ok_or(SendResponseError::NotFound) |             .ok_or(SendResponseError::NotFound) | ||||||
| @@ -195,105 +122,73 @@ impl AppState { | |||||||
|             .map_err(|_e| SendResponseError::Abandoned) |             .map_err(|_e| SendResponseError::Abandoned) | ||||||
|     } |     } | ||||||
|  |  | ||||||
|     pub fn add_ban(&self, client: Option<Client>, app: tauri::AppHandle) { |     pub async fn add_ban(&self, client: Option<Client>) { | ||||||
|         let mut bans = self.bans.write().unwrap(); |         let mut bans = self.bans.write().await; | ||||||
|         bans.insert(client.clone()); |         bans.insert(client.clone()); | ||||||
|  |  | ||||||
|         runtime::spawn(async move { |         runtime::spawn(async move { | ||||||
|             sleep(Duration::from_secs(5)).await; |             sleep(Duration::from_secs(5)).await; | ||||||
|  |             let app = APP.get().unwrap(); | ||||||
|             let state = app.state::<AppState>(); |             let state = app.state::<AppState>(); | ||||||
|             let mut bans = state.bans.write().unwrap(); |             let mut bans = state.bans.write().await; | ||||||
|             bans.remove(&client); |             bans.remove(&client); | ||||||
|         }); |         }); | ||||||
|     } |     } | ||||||
|  |  | ||||||
|     pub fn is_banned(&self, client: &Option<Client>) -> bool { |     pub async fn is_banned(&self, client: &Option<Client>) -> bool { | ||||||
|         self.bans.read().unwrap().contains(&client) |         self.bans.read().await.contains(&client) | ||||||
|     } |     } | ||||||
|  |  | ||||||
|     pub async fn decrypt(&self, passphrase: &str) -> Result<(), UnlockError> { |     pub async fn unlock(&self, passphrase: &str) -> Result<(), UnlockError> { | ||||||
|         let (key_id, secret) = { |         let base_creds = match *self.session.read().await { | ||||||
|             // do this all in a block so that we aren't holding a lock across an await |  | ||||||
|             let session = self.session.read().unwrap(); |  | ||||||
|             let locked = match *session { |  | ||||||
|             Session::Empty => {return Err(UnlockError::NoCredentials);}, |             Session::Empty => {return Err(UnlockError::NoCredentials);}, | ||||||
|                 Session::Unlocked(_) => {return Err(UnlockError::NotLocked);}, |             Session::Unlocked{..} => {return Err(UnlockError::NotLocked);}, | ||||||
|                 Session::Locked(ref c) => c, |             Session::Locked(ref locked) => locked.decrypt(passphrase)?, | ||||||
|         }; |         }; | ||||||
|  |         // Read lock is dropped here, so this doesn't deadlock | ||||||
|             let mut key_buf = [0; secretbox::KEYBYTES]; |         self.new_session(base_creds).await?; | ||||||
|             // pretty sure this only fails if we're out of memory |  | ||||||
|             pwhash::derive_key_interactive(&mut key_buf, passphrase.as_bytes(), &locked.salt).unwrap(); |  | ||||||
|             let decrypted = secretbox::open(&locked.secret_key_enc, &locked.nonce, &Key(key_buf)) |  | ||||||
|                 .map_err(|_e| UnlockError::BadPassphrase)?; |  | ||||||
|  |  | ||||||
|             let secret_str = String::from_utf8(decrypted).map_err(|_e| UnlockError::InvalidUtf8)?; |  | ||||||
|             (locked.access_key_id.clone(), secret_str) |  | ||||||
|         }; |  | ||||||
|  |  | ||||||
|         self.new_session(&key_id, &secret).await?; |  | ||||||
|  |  | ||||||
|         Ok(()) |         Ok(()) | ||||||
|     } |     } | ||||||
|  |  | ||||||
|     pub fn get_creds_serialized(&self) -> Result<String, GetCredentialsError> { |     pub async fn is_unlocked(&self) -> bool { | ||||||
|         let session = self.session.read().unwrap(); |         let session = self.session.read().await; | ||||||
|         match *session { |         matches!(*session, Session::Unlocked{..}) | ||||||
|             Session::Unlocked(ref creds) => Ok(serde_json::to_string(creds).unwrap()), |  | ||||||
|             Session::Locked(_) => Err(GetCredentialsError::Locked), |  | ||||||
|             Session::Empty => Err(GetCredentialsError::Empty), |  | ||||||
|         } |  | ||||||
|     } |     } | ||||||
|  |  | ||||||
|     async fn new_session(&self, key_id: &str, secret_key: &str) -> Result<(), GetSessionError> { |     pub async fn serialize_base_creds(&self) -> Result<String, GetCredentialsError> { | ||||||
|         let creds = aws_sdk_sts::Credentials::new( |         let app_session = self.session.read().await; | ||||||
|             key_id, |         let (base, _session) = app_session.try_get()?; | ||||||
|             secret_key, |         Ok(serde_json::to_string(base).unwrap()) | ||||||
|             None, // token |  | ||||||
|             None, // expiration |  | ||||||
|             "creddy", // "provider name" apparently |  | ||||||
|         ); |  | ||||||
|         let config = aws_config::from_env() |  | ||||||
|             .credentials_provider(creds) |  | ||||||
|             .load() |  | ||||||
|             .await; |  | ||||||
|  |  | ||||||
|         let client = aws_sdk_sts::Client::new(&config); |  | ||||||
|         let resp = client.get_session_token() |  | ||||||
|             .duration_seconds(43_200) |  | ||||||
|             .send() |  | ||||||
|             .await?; |  | ||||||
|  |  | ||||||
|         let aws_session = resp.credentials().ok_or(GetSessionError::NoCredentials)?; |  | ||||||
|  |  | ||||||
|         let access_key_id = aws_session.access_key_id() |  | ||||||
|             .ok_or(GetSessionError::NoCredentials)? |  | ||||||
|             .to_string(); |  | ||||||
|         let secret_access_key = aws_session.secret_access_key() |  | ||||||
|             .ok_or(GetSessionError::NoCredentials)? |  | ||||||
|             .to_string(); |  | ||||||
|         let token = aws_session.session_token() |  | ||||||
|             .ok_or(GetSessionError::NoCredentials)? |  | ||||||
|             .to_string(); |  | ||||||
|         let expiration = aws_session.expiration() |  | ||||||
|             .ok_or(GetSessionError::NoCredentials)? |  | ||||||
|             .fmt(aws_smithy_types::date_time::Format::DateTime) |  | ||||||
|             .unwrap(); // only fails if the d/t is out of range, which it can't be for this format |  | ||||||
|  |  | ||||||
|         let mut app_session = self.session.write().unwrap(); |  | ||||||
|         let session_creds = Credentials::ShortLived { |  | ||||||
|                 access_key_id, |  | ||||||
|                 secret_access_key, |  | ||||||
|                 token, |  | ||||||
|                 expiration, |  | ||||||
|             }; |  | ||||||
|  |  | ||||||
|         if cfg!(debug_assertions) { |  | ||||||
|             println!("Got new session:\n{}", serde_json::to_string(&session_creds).unwrap()); |  | ||||||
|     } |     } | ||||||
|  |  | ||||||
|         *app_session = Session::Unlocked(session_creds); |     pub async fn serialize_session_creds(&self) -> Result<String, GetCredentialsError> { | ||||||
|  |         let app_session = self.session.read().await; | ||||||
|  |         let (_bsae, session) = app_session.try_get()?; | ||||||
|  |         Ok(serde_json::to_string(session).unwrap()) | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     async fn new_session(&self, base: BaseCredentials) -> Result<(), GetSessionError> { | ||||||
|  |         let session = SessionCredentials::from_base(&base).await?; | ||||||
|  |         let mut app_session = self.session.write().await; | ||||||
|  |         *app_session = Session::Unlocked {base, session}; | ||||||
|         Ok(()) |         Ok(()) | ||||||
|     } |     } | ||||||
|  |  | ||||||
|  |     pub async fn register_terminal_request(&self) -> Result<(), ()> { | ||||||
|  |         let mut req = self.pending_terminal_request.write().await; | ||||||
|  |         if *req { | ||||||
|  |             // if a request is already pending, we can't register a new one | ||||||
|  |             Err(()) | ||||||
|  |         } | ||||||
|  |         else { | ||||||
|  |             *req = true; | ||||||
|  |             Ok(()) | ||||||
|  |         } | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     pub async fn unregister_terminal_request(&self) { | ||||||
|  |         let mut req = self.pending_terminal_request.write().await; | ||||||
|  |         *req = false; | ||||||
|  |     } | ||||||
| } | } | ||||||
|   | |||||||
							
								
								
									
										82
									
								
								src-tauri/src/terminal.rs
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										82
									
								
								src-tauri/src/terminal.rs
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,82 @@ | |||||||
|  | use std::process::Command; | ||||||
|  |  | ||||||
|  | use tauri::Manager; | ||||||
|  |  | ||||||
|  | use crate::app::APP; | ||||||
|  | use crate::errors::*; | ||||||
|  | use crate::state::AppState; | ||||||
|  |  | ||||||
|  |  | ||||||
|  | pub async fn launch(use_base: bool) -> Result<(), LaunchTerminalError> { | ||||||
|  |     let app = APP.get().unwrap(); | ||||||
|  |     let state = app.state::<AppState>(); | ||||||
|  |  | ||||||
|  |     // register_terminal_request() returns Err if there is another request pending | ||||||
|  |     if state.register_terminal_request().await.is_err() { | ||||||
|  |         return Ok(()); | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     let mut cmd = { | ||||||
|  |         let config = state.config.read().await; | ||||||
|  |         let mut cmd = Command::new(&config.terminal.exec); | ||||||
|  |         cmd.args(&config.terminal.args); | ||||||
|  |         cmd | ||||||
|  |     }; | ||||||
|  |  | ||||||
|  |     // if session is unlocked or empty, wait for credentials from frontend | ||||||
|  |     if !state.is_unlocked().await { | ||||||
|  |         app.emit_all("launch-terminal-request", ())?; | ||||||
|  |         let window = app.get_window("main") | ||||||
|  |             .ok_or(LaunchTerminalError::NoMainWindow)?; | ||||||
|  |         if !window.is_visible()? { | ||||||
|  |             window.unminimize()?; | ||||||
|  |             window.show()?; | ||||||
|  |         } | ||||||
|  |         window.set_focus()?; | ||||||
|  |  | ||||||
|  |         let (tx, rx) = tokio::sync::oneshot::channel(); | ||||||
|  |         app.once_global("credentials-event", move |e| { | ||||||
|  |             let success = match e.payload() { | ||||||
|  |                 Some("\"unlocked\"") | Some("\"entered\"") => true, | ||||||
|  |                 _ => false, | ||||||
|  |             }; | ||||||
|  |             let _ = tx.send(success); | ||||||
|  |         }); | ||||||
|  |  | ||||||
|  |         if !rx.await.unwrap_or(false) { | ||||||
|  |             state.unregister_terminal_request().await; | ||||||
|  |             return Ok(()); // request was canceled by user | ||||||
|  |         } | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     // more lock-management | ||||||
|  |     { | ||||||
|  |         let app_session = state.session.read().await; | ||||||
|  |         // session should really be unlocked at this point, but if the frontend misbehaves | ||||||
|  |         // (i.e. lies about unlocking) we could end up here with a locked session | ||||||
|  |         // this will result in an error popup to the user (see main hotkey handler) | ||||||
|  |         let (base_creds, session_creds) = app_session.try_get()?; | ||||||
|  |         if use_base { | ||||||
|  |             cmd.env("AWS_ACCESS_KEY_ID", &base_creds.access_key_id); | ||||||
|  |             cmd.env("AWS_SECRET_ACCESS_KEY", &base_creds.secret_access_key); | ||||||
|  |         } | ||||||
|  |         else { | ||||||
|  |             cmd.env("AWS_ACCESS_KEY_ID", &session_creds.access_key_id); | ||||||
|  |             cmd.env("AWS_SECRET_ACCESS_KEY", &session_creds.secret_access_key); | ||||||
|  |             cmd.env("AWS_SESSION_TOKEN", &session_creds.token); | ||||||
|  |         } | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     let res = match cmd.spawn() { | ||||||
|  |         Ok(_) => Ok(()), | ||||||
|  |         Err(e) if std::io::ErrorKind::NotFound == e.kind() => { | ||||||
|  |             Err(ExecError::NotFound(cmd.get_program().to_owned())) | ||||||
|  |         }, | ||||||
|  |         Err(e) => Err(ExecError::ExecutionFailed(e)), | ||||||
|  |     }; | ||||||
|  |  | ||||||
|  |     state.unregister_terminal_request().await; | ||||||
|  |  | ||||||
|  |     res?; // ? auto-conversion is more liberal than .into() | ||||||
|  |     Ok(()) | ||||||
|  | } | ||||||
| @@ -8,11 +8,12 @@ | |||||||
|   }, |   }, | ||||||
|   "package": { |   "package": { | ||||||
|     "productName": "creddy", |     "productName": "creddy", | ||||||
|     "version": "0.1.0" |     "version": "0.2.3" | ||||||
|   }, |   }, | ||||||
|   "tauri": { |   "tauri": { | ||||||
|     "allowlist": { |     "allowlist": { | ||||||
|       "all": true |       "os": {"all": true}, | ||||||
|  |       "dialog": {"open": true} | ||||||
|     }, |     }, | ||||||
|     "bundle": { |     "bundle": { | ||||||
|       "active": true, |       "active": true, | ||||||
| @@ -44,11 +45,18 @@ | |||||||
|       "windows": { |       "windows": { | ||||||
|         "certificateThumbprint": null, |         "certificateThumbprint": null, | ||||||
|         "digestAlgorithm": "sha256", |         "digestAlgorithm": "sha256", | ||||||
|         "timestampUrl": "" |         "timestampUrl": "", | ||||||
|  |         "wix": { | ||||||
|  |           "fragmentPaths": ["conf/cli.wxs"], | ||||||
|  |           "componentRefs": ["CliBinary", "AddToPath"] | ||||||
|  |         } | ||||||
|       } |       } | ||||||
|     }, |     }, | ||||||
|     "security": { |     "security": { | ||||||
|       "csp": null |       "csp": { | ||||||
|  |         "default-src": ["'self'"], | ||||||
|  |         "style-src": ["'self'", "'unsafe-inline'"] | ||||||
|  |       } | ||||||
|     }, |     }, | ||||||
|     "updater": { |     "updater": { | ||||||
|       "active": false |       "active": false | ||||||
|   | |||||||
| @@ -1,8 +1,9 @@ | |||||||
| <script> | <script> | ||||||
| import { emit, listen } from '@tauri-apps/api/event'; | import { onMount } from 'svelte'; | ||||||
|  | import { listen } from '@tauri-apps/api/event'; | ||||||
| import { invoke } from '@tauri-apps/api/tauri'; | import { invoke } from '@tauri-apps/api/tauri'; | ||||||
|  |  | ||||||
| import { appState } from './lib/state.js'; | import { appState, acceptRequest } from './lib/state.js'; | ||||||
| import { views, currentView, navigate } from './lib/routing.js'; | import { views, currentView, navigate } from './lib/routing.js'; | ||||||
|  |  | ||||||
|  |  | ||||||
| @@ -14,6 +15,22 @@ invoke('get_config').then(config => $appState.config = config); | |||||||
| listen('credentials-request', (tauriEvent) => { | listen('credentials-request', (tauriEvent) => { | ||||||
|     $appState.pendingRequests.put(tauriEvent.payload); |     $appState.pendingRequests.put(tauriEvent.payload); | ||||||
| }); | }); | ||||||
|  |  | ||||||
|  | listen('launch-terminal-request', async (tauriEvent) => { | ||||||
|  |     if ($appState.currentRequest === null) { | ||||||
|  |         let status = await invoke('get_session_status'); | ||||||
|  |         if (status === 'locked') { | ||||||
|  |             navigate('Unlock'); | ||||||
|  |         } | ||||||
|  |         else if (status === 'empty') { | ||||||
|  |             navigate('EnterCredentials'); | ||||||
|  |         } | ||||||
|  |         // else, session is unlocked, so do nothing | ||||||
|  |         // (although we shouldn't even get the event in that case) | ||||||
|  |     } | ||||||
|  | }) | ||||||
|  |  | ||||||
|  | acceptRequest(); | ||||||
| </script> | </script> | ||||||
|  |  | ||||||
|  |  | ||||||
|   | |||||||
							
								
								
									
										153
									
								
								src/assets/vault_door.svg
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										153
									
								
								src/assets/vault_door.svg
									
									
									
									
									
										Normal file
									
								
							
										
											
												File diff suppressed because one or more lines are too long
											
										
									
								
							| After Width: | Height: | Size: 14 KiB | 
| @@ -9,6 +9,10 @@ export default function() { | |||||||
|  |  | ||||||
|         resolvers: [], |         resolvers: [], | ||||||
|  |  | ||||||
|  |         size() { | ||||||
|  |             return this.items.length; | ||||||
|  |         }, | ||||||
|  |  | ||||||
|         put(item) { |         put(item) { | ||||||
|             this.items.push(item); |             this.items.push(item); | ||||||
|             let resolver = this.resolvers.shift(); |             let resolver = this.resolvers.shift(); | ||||||
|   | |||||||
| @@ -3,6 +3,7 @@ import { writable, get } from 'svelte/store'; | |||||||
|  |  | ||||||
| export let views = writable(); | export let views = writable(); | ||||||
| export let currentView = writable(); | export let currentView = writable(); | ||||||
|  | export let previousView = writable(); | ||||||
|  |  | ||||||
| export function navigate(viewName) { | export function navigate(viewName) { | ||||||
|     let v = get(views)[`./views/${viewName}.svelte`].default; |     let v = get(views)[`./views/${viewName}.svelte`].default; | ||||||
|   | |||||||
| @@ -1,9 +1,33 @@ | |||||||
| import { writable } from 'svelte/store'; | import { writable, get } from 'svelte/store'; | ||||||
|  |  | ||||||
| import queue from './queue.js'; | import queue from './queue.js'; | ||||||
|  | import { navigate, currentView, previousView } from './routing.js'; | ||||||
|  |  | ||||||
|  |  | ||||||
| export let appState = writable({ | export let appState = writable({ | ||||||
|     currentRequest: null, |     currentRequest: null, | ||||||
|     pendingRequests: queue(), |     pendingRequests: queue(), | ||||||
|     credentialStatus: 'locked', |     credentialStatus: 'locked', | ||||||
| }); | }); | ||||||
|  |  | ||||||
|  |  | ||||||
|  | export async function acceptRequest() { | ||||||
|  |     let req = await get(appState).pendingRequests.get(); | ||||||
|  |     appState.update($appState => { | ||||||
|  |         $appState.currentRequest = req; | ||||||
|  |         return $appState; | ||||||
|  |     }); | ||||||
|  |     previousView.set(get(currentView)); | ||||||
|  |     navigate('Approve'); | ||||||
|  | } | ||||||
|  |  | ||||||
|  |  | ||||||
|  | export function completeRequest() { | ||||||
|  |     appState.update($appState => { | ||||||
|  |         $appState.currentRequest = null; | ||||||
|  |         return $appState; | ||||||
|  |     }); | ||||||
|  |     currentView.set(get(previousView)); | ||||||
|  |     previousView.set(null); | ||||||
|  |     acceptRequest(); | ||||||
|  | } | ||||||
|   | |||||||
| @@ -1,3 +1,7 @@ | |||||||
| @tailwind base; | @tailwind base; | ||||||
| @tailwind components; | @tailwind components; | ||||||
| @tailwind utilities; | @tailwind utilities; | ||||||
|  |  | ||||||
|  | .btn-alert-error { | ||||||
|  |     @apply bg-transparent hover:bg-[#cd5a5a] border border-error-content text-error-content | ||||||
|  | } | ||||||
|   | |||||||
| @@ -2,7 +2,7 @@ | |||||||
|     import { onMount } from 'svelte'; |     import { onMount } from 'svelte'; | ||||||
|     import { slide } from 'svelte/transition'; |     import { slide } from 'svelte/transition'; | ||||||
|  |  | ||||||
|     let extraClasses; |     let extraClasses = ""; | ||||||
|     export {extraClasses as class}; |     export {extraClasses as class}; | ||||||
|     export let slideDuration = 150; |     export let slideDuration = 150; | ||||||
|     let animationClass = ""; |     let animationClass = ""; | ||||||
|   | |||||||
							
								
								
									
										13
									
								
								src/ui/KeyCombo.svelte
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										13
									
								
								src/ui/KeyCombo.svelte
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,13 @@ | |||||||
|  | <script> | ||||||
|  |     export let keys; | ||||||
|  | </script> | ||||||
|  |  | ||||||
|  |  | ||||||
|  | <div class="flex gap-x-[0.2em] items-center"> | ||||||
|  |     {#each keys as key, i} | ||||||
|  |         {#if i > 0} | ||||||
|  |             <span class="mt-[-0.1em]">+</span> | ||||||
|  |         {/if} | ||||||
|  |         <kbd class="normal-case px-1 py-0.5 rounded border border-neutral">{key}</kbd> | ||||||
|  |     {/each} | ||||||
|  | </div> | ||||||
| @@ -7,6 +7,9 @@ | |||||||
|     export let alt = false; |     export let alt = false; | ||||||
|     export let shift = false; |     export let shift = false; | ||||||
|  |  | ||||||
|  |     let classes = ""; | ||||||
|  |     export {classes as class}; | ||||||
|  |  | ||||||
|     function click() { |     function click() { | ||||||
|         if (typeof target === 'string') { |         if (typeof target === 'string') { | ||||||
|             navigate(target); |             navigate(target); | ||||||
| @@ -26,10 +29,7 @@ | |||||||
|         if (alt && !event.altKey) return; |         if (alt && !event.altKey) return; | ||||||
|         if (shift && !event.shiftKey) return; |         if (shift && !event.shiftKey) return; | ||||||
|  |  | ||||||
|         if (event.code === hotkey) { |         if (event.key === hotkey) { | ||||||
|             click(); |  | ||||||
|         } |  | ||||||
|         else if (hotkey === 'Enter' && event.code === 'NumpadEnter') { |  | ||||||
|             click(); |             click(); | ||||||
|         } |         } | ||||||
|     } |     } | ||||||
| @@ -38,6 +38,6 @@ | |||||||
|  |  | ||||||
| <svelte:window on:keydown={handleHotkey} /> | <svelte:window on:keydown={handleHotkey} /> | ||||||
|  |  | ||||||
| <a href="#" on:click="{click}"> | <a href="/{target}" on:click|preventDefault="{click}" class={classes}> | ||||||
|     <slot></slot> |     <slot></slot> | ||||||
| </a> | </a> | ||||||
|   | |||||||
| @@ -1,10 +1,12 @@ | |||||||
| <script> | <script> | ||||||
|     import Link from './Link.svelte'; |     import Link from './Link.svelte'; | ||||||
|     import Icon from './Icon.svelte'; |     import Icon from './Icon.svelte'; | ||||||
|  |  | ||||||
|  |     export let position = "sticky"; | ||||||
| </script> | </script> | ||||||
|  |  | ||||||
|  |  | ||||||
| <nav class="fixed top-0 grid grid-cols-2 w-full p-2"> | <nav class="{position} top-0 bg-base-100 w-full flex justify-between items-center p-2"> | ||||||
|     <div> |     <div> | ||||||
|         <Link target="Home"> |         <Link target="Home"> | ||||||
|             <button class="btn btn-square btn-ghost align-middle"> |             <button class="btn btn-square btn-ghost align-middle"> | ||||||
| @@ -13,7 +15,11 @@ | |||||||
|         </Link> |         </Link> | ||||||
|     </div> |     </div> | ||||||
|  |  | ||||||
|     <div class="justify-self-end"> |     {#if $$slots.title} | ||||||
|  |         <slot name="title"></slot> | ||||||
|  |     {/if} | ||||||
|  |  | ||||||
|  |     <div> | ||||||
|         <Link target="Settings"> |         <Link target="Settings"> | ||||||
|             <button class="btn btn-square btn-ghost align-middle "> |             <button class="btn btn-square btn-ghost align-middle "> | ||||||
|                 <Icon name="cog-8-tooth" class="w-8 h-8 stroke-2" /> |                 <Icon name="cog-8-tooth" class="w-8 h-8 stroke-2" /> | ||||||
|   | |||||||
							
								
								
									
										113
									
								
								src/ui/Spinner.svelte
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										113
									
								
								src/ui/Spinner.svelte
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,113 @@ | |||||||
|  | <script> | ||||||
|  |     export let color = 'base-content'; | ||||||
|  |     export let thickness = '2px'; | ||||||
|  |     let classes = ''; | ||||||
|  |     export { classes as class }; | ||||||
|  |  | ||||||
|  |     const colorVars = { | ||||||
|  |         'primary': 'p', | ||||||
|  |         'primary-focus': 'pf', | ||||||
|  |         'primary-content': 'pc', | ||||||
|  |         'secondary': 's', | ||||||
|  |         'secondary-focus': 'sf', | ||||||
|  |         'secondary-content': 'sc', | ||||||
|  |         'accent': 'a', | ||||||
|  |         'accent-focus': 'af', | ||||||
|  |         'accent-content': 'ac', | ||||||
|  |         'neutral': 'n', | ||||||
|  |         'neutral-focus': 'nf', | ||||||
|  |         'neutral-content': 'nc', | ||||||
|  |         'base-100': 'b1', | ||||||
|  |         'base-200': 'b2', | ||||||
|  |         'base-300': 'b3', | ||||||
|  |         'base-content': 'bc', | ||||||
|  |         'info': 'in', | ||||||
|  |         'info-content': 'inc', | ||||||
|  |         'success': 'su', | ||||||
|  |         'success-content': 'suc', | ||||||
|  |         'warning': 'wa', | ||||||
|  |         'warning-content': 'wac', | ||||||
|  |         'error': 'er', | ||||||
|  |         'error-content': 'erc', | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     let arcStyle = `border-width: ${thickness};`; | ||||||
|  |     arcStyle += `border-color: hsl(var(--${colorVars[color]})) transparent transparent transparent;`; | ||||||
|  | </script> | ||||||
|  |  | ||||||
|  | <style> | ||||||
|  |     #spinner { | ||||||
|  |         position: relative; | ||||||
|  |  | ||||||
|  |         animation: spin; | ||||||
|  |         animation-duration: 1.5s; | ||||||
|  |         animation-iteration-count: infinite; | ||||||
|  |         animation-timing-function: linear; | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     @keyframes spin { | ||||||
|  |         50% { transform: rotate(225deg); } | ||||||
|  |         100% { transform: rotate(360deg); } | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     .arc { | ||||||
|  |         position: absolute; | ||||||
|  |         top: 0; | ||||||
|  |         left: 0; | ||||||
|  |         border-radius: 9999px; | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     .arc-top { | ||||||
|  |         transform: rotate(-45deg); | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     .arc-right { | ||||||
|  |         animation: spin-right; | ||||||
|  |         animation-duration: 3s; | ||||||
|  |         animation-iteration-count: infinite; | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     .arc-bottom { | ||||||
|  |         animation: spin-bottom; | ||||||
|  |         animation-duration: 3s; | ||||||
|  |         animation-iteration-count: infinite; | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     .arc-left { | ||||||
|  |         animation: spin-left; | ||||||
|  |         animation-duration: 3s; | ||||||
|  |         animation-iteration-count: infinite; | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     @keyframes spin-top { | ||||||
|  |         0% { transform: rotate(-45deg); } | ||||||
|  |         50% { transform: rotate(315deg); } | ||||||
|  |         100% { transform: rotate(-45deg); } | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     @keyframes spin-right { | ||||||
|  |         0% { transform: rotate(45deg); } | ||||||
|  |         50% { transform: rotate(315deg); } | ||||||
|  |         100% { transform: rotate(405deg); } | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     @keyframes spin-bottom { | ||||||
|  |         0% { transform: rotate(135deg); } | ||||||
|  |         50% { transform: rotate(315deg); } | ||||||
|  |         100% { transform: rotate(495deg); } | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     @keyframes spin-left { | ||||||
|  |         0% { transform: rotate(225deg); } | ||||||
|  |         50% { transform: rotate(315deg); } | ||||||
|  |         100% { transform: rotate(585deg); } | ||||||
|  |     } | ||||||
|  | </style> | ||||||
|  |  | ||||||
|  |  | ||||||
|  | <div id="spinner" class="w-6 h-6 {classes}"> | ||||||
|  |     <div class="arc arc-top w-full h-full" style={arcStyle}></div> | ||||||
|  |     <div class="arc arc-right w-full h-full" style={arcStyle}></div> | ||||||
|  |     <div class="arc arc-bottom w-full h-full" style={arcStyle}></div> | ||||||
|  |     <div class="arc arc-left w-full h-full" style={arcStyle}></div> | ||||||
|  | </div> | ||||||
							
								
								
									
										27
									
								
								src/ui/settings/FileSetting.svelte
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										27
									
								
								src/ui/settings/FileSetting.svelte
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,27 @@ | |||||||
|  | <script> | ||||||
|  |     import { createEventDispatcher } from 'svelte'; | ||||||
|  |     import { open } from '@tauri-apps/api/dialog'; | ||||||
|  |     import Setting from './Setting.svelte'; | ||||||
|  |  | ||||||
|  |     export let title; | ||||||
|  |     export let value; | ||||||
|  |  | ||||||
|  |     const dispatch = createEventDispatcher(); | ||||||
|  | </script> | ||||||
|  |  | ||||||
|  |  | ||||||
|  | <Setting {title}> | ||||||
|  |     <div slot="input"> | ||||||
|  |         <input | ||||||
|  |             type="text" | ||||||
|  |             class="input input-sm input-bordered grow text-right" | ||||||
|  |             bind:value | ||||||
|  |             on:change={() => dispatch('update', {value})} | ||||||
|  |         > | ||||||
|  |         <button  | ||||||
|  |             class="btn btn-sm btn-primary" | ||||||
|  |             on:click={async () => value = await open()} | ||||||
|  |         >Browse</button> | ||||||
|  |     </div> | ||||||
|  |     <slot name="description" slot="description"></slot> | ||||||
|  | </Setting> | ||||||
							
								
								
									
										61
									
								
								src/ui/settings/Keybind.svelte
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										61
									
								
								src/ui/settings/Keybind.svelte
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,61 @@ | |||||||
|  | <script> | ||||||
|  |     import { createEventDispatcher } from 'svelte'; | ||||||
|  |     import KeyCombo from '../KeyCombo.svelte'; | ||||||
|  |  | ||||||
|  |     export let description; | ||||||
|  |     export let value; | ||||||
|  |  | ||||||
|  |     const id = Math.random().toString().slice(2); | ||||||
|  |     const dispatch = createEventDispatcher(); | ||||||
|  |     let listening = false; | ||||||
|  |      | ||||||
|  |     function listen() { | ||||||
|  |         // don't re-listen if we already are | ||||||
|  |         if (listening) return; | ||||||
|  |  | ||||||
|  |         listening = true; | ||||||
|  |         window.addEventListener('keyup', setKeybind, {once: true}); | ||||||
|  |         // setTimeout avoids reacting to the click event that we are currently processing | ||||||
|  |         setTimeout(() => window.addEventListener('click', cancel, {once: true}), 0); | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     function setKeybind(event) { | ||||||
|  |         console.log(event); | ||||||
|  |         let keys = []; | ||||||
|  |         if (event.ctrlKey) keys.push('ctrl'); | ||||||
|  |         if (event.altKey) keys.push('alt'); | ||||||
|  |         if (event.metaKey) keys.push('meta'); | ||||||
|  |         if (event.shiftKey) keys.push('shift'); | ||||||
|  |         keys.push(event.key); | ||||||
|  |  | ||||||
|  |         value.keys = keys.join('+'); | ||||||
|  |         dispatch('update', {value}); | ||||||
|  |         listening = false; | ||||||
|  |         window.removeEventListener('click', cancel, {once: true}); | ||||||
|  |         event.preventDefault(); | ||||||
|  |         event.stopPropagation(); | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     function cancel() { | ||||||
|  |         listening = false; | ||||||
|  |         window.removeEventListener('keyup', setKeybind, {once: true}); | ||||||
|  |     } | ||||||
|  | </script> | ||||||
|  |  | ||||||
|  |  | ||||||
|  | <input  | ||||||
|  |     {id}  | ||||||
|  |     type="checkbox" | ||||||
|  |     class="checkbox checkbox-primary" | ||||||
|  |     bind:checked={value.enabled} | ||||||
|  |     on:change={() => dispatch('update', {value})} | ||||||
|  | > | ||||||
|  | <label for={id} class="cursor-pointer ml-4 text-lg">{description}</label> | ||||||
|  |  | ||||||
|  | <button class="h-12 p-2 rounded border border-neutral cursor-pointer text-center" on:click={listen}> | ||||||
|  |     {#if listening} | ||||||
|  |         Click to cancel | ||||||
|  |     {:else} | ||||||
|  |         <KeyCombo keys={value.keys.split('+')} /> | ||||||
|  |     {/if} | ||||||
|  | </button> | ||||||
| @@ -5,24 +5,43 @@ | |||||||
|  |  | ||||||
|     export let title; |     export let title; | ||||||
|     export let value; |     export let value; | ||||||
|  |  | ||||||
|     export let unit = ''; |     export let unit = ''; | ||||||
|     export let min = null; |     export let min = null; | ||||||
|     export let max = null; |     export let max = null; | ||||||
|     export let decimal = false; |     export let decimal = false; | ||||||
|  |  | ||||||
|     let error = null; |  | ||||||
|     let localValue = value.toString(); |  | ||||||
|     const dispatch = createEventDispatcher(); |     const dispatch = createEventDispatcher(); | ||||||
|     function validate(event) { |  | ||||||
|  |     $: localValue = value.toString(); | ||||||
|  |     let lastInputTime = null; | ||||||
|  |     function debounce(event) { | ||||||
|  |         lastInputTime = Date.now(); | ||||||
|         localValue = localValue.replace(/[^-0-9.]/g, ''); |         localValue = localValue.replace(/[^-0-9.]/g, ''); | ||||||
|  |  | ||||||
|  |         const eventTime = lastInputTime; | ||||||
|  |         const pendingValue = localValue; | ||||||
|  |         window.setTimeout( | ||||||
|  |             () => { | ||||||
|  |                 // if no other inputs have occured since then | ||||||
|  |                 if (eventTime === lastInputTime) { | ||||||
|  |                     updateValue(pendingValue); | ||||||
|  |                 } | ||||||
|  |             }, | ||||||
|  |             500 | ||||||
|  |         ) | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     let error = null; | ||||||
|  |     function updateValue(newValue) { | ||||||
|         // Don't update the value, but also don't error, if it's empty |         // Don't update the value, but also don't error, if it's empty | ||||||
|         // or if it could be the start of a negative or decimal number |         // or if it could be the start of a negative or decimal number | ||||||
|         if (localValue.match(/^$|^-$|^\.$/) !== null) { |         if (newValue.match(/^$|^-$|^\.$/) !== null) { | ||||||
|             error = null; |             error = null; | ||||||
|             return; |             return; | ||||||
|         } |         } | ||||||
|  |  | ||||||
|         let num = parseFloat(localValue); |         const num = parseFloat(newValue); | ||||||
|         if (num % 1 !== 0 && !decimal) { |         if (num % 1 !== 0 && !decimal) { | ||||||
|             error = `${num} is not a whole number`; |             error = `${num} is not a whole number`; | ||||||
|         } |         } | ||||||
| @@ -53,7 +72,7 @@ | |||||||
|                 size="{Math.max(5, localValue.length)}" |                 size="{Math.max(5, localValue.length)}" | ||||||
|                 class:input-error={error}  |                 class:input-error={error}  | ||||||
|                 bind:value={localValue}  |                 bind:value={localValue}  | ||||||
|                 on:input="{validate}" |                 on:input="{debounce}" | ||||||
|             /> |             /> | ||||||
|         </div> |         </div> | ||||||
|     </div> |     </div> | ||||||
|   | |||||||
| @@ -6,14 +6,17 @@ | |||||||
| </script> | </script> | ||||||
|  |  | ||||||
|  |  | ||||||
| <div class="divider"></div> | <div> | ||||||
| <div class="flex justify-between"> |     <div class="flex flex-wrap justify-between gap-y-4"> | ||||||
|     <h3 class="text-lg font-bold">{title}</h3> |         <h3 class="text-lg font-bold shrink-0">{title}</h3> | ||||||
|  |         {#if $$slots.input} | ||||||
|             <slot name="input"></slot> |             <slot name="input"></slot> | ||||||
| </div> |         {/if} | ||||||
|  |     </div> | ||||||
|  |  | ||||||
| {#if $$slots.description} |     {#if $$slots.description} | ||||||
|         <p class="mt-3"> |         <p class="mt-3"> | ||||||
|             <slot name="description"></slot> |             <slot name="description"></slot> | ||||||
|         </p> |         </p> | ||||||
| {/if} |     {/if} | ||||||
|  | </div> | ||||||
|   | |||||||
							
								
								
									
										14
									
								
								src/ui/settings/SettingsGroup.svelte
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										14
									
								
								src/ui/settings/SettingsGroup.svelte
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,14 @@ | |||||||
|  | <script> | ||||||
|  |     export let name; | ||||||
|  | </script> | ||||||
|  |  | ||||||
|  |  | ||||||
|  | <div> | ||||||
|  |     <div class="divider mt-0 mb-8"> | ||||||
|  |         <h2 class="text-xl font-bold">{name}</h2> | ||||||
|  |     </div> | ||||||
|  |  | ||||||
|  |     <div class="space-y-12"> | ||||||
|  |         <slot></slot> | ||||||
|  |     </div> | ||||||
|  | </div> | ||||||
							
								
								
									
										22
									
								
								src/ui/settings/TextSetting.svelte
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										22
									
								
								src/ui/settings/TextSetting.svelte
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,22 @@ | |||||||
|  | <script> | ||||||
|  |     import { createEventDispatcher } from 'svelte'; | ||||||
|  |     import Setting from './Setting.svelte'; | ||||||
|  |  | ||||||
|  |     export let title; | ||||||
|  |     export let value; | ||||||
|  |  | ||||||
|  |     const dispatch = createEventDispatcher(); | ||||||
|  | </script> | ||||||
|  |  | ||||||
|  |  | ||||||
|  | <Setting {title}> | ||||||
|  |     <div slot="input"> | ||||||
|  |         <input | ||||||
|  |             type="text" | ||||||
|  |             class="input input-sm input-bordered grow text-right" | ||||||
|  |             bind:value | ||||||
|  |             on:change={() => dispatch('update', {value})} | ||||||
|  |         > | ||||||
|  |     </div> | ||||||
|  |     <slot name="description" slot="description"></slot> | ||||||
|  | </Setting> | ||||||
| @@ -1,3 +1,5 @@ | |||||||
| export { default as Setting } from './Setting.svelte'; | export { default as Setting } from './Setting.svelte'; | ||||||
| export { default as ToggleSetting } from './ToggleSetting.svelte'; | export { default as ToggleSetting } from './ToggleSetting.svelte'; | ||||||
| export { default as NumericSetting } from './NumericSetting.svelte'; | export { default as NumericSetting } from './NumericSetting.svelte'; | ||||||
|  | export { default as FileSetting } from './FileSetting.svelte'; | ||||||
|  | export { default as TextSetting } from './TextSetting.svelte'; | ||||||
|   | |||||||
| @@ -1,16 +1,36 @@ | |||||||
| <script> | <script> | ||||||
|  |     import { onMount } from 'svelte'; | ||||||
|     import { invoke } from '@tauri-apps/api/tauri'; |     import { invoke } from '@tauri-apps/api/tauri'; | ||||||
|  |  | ||||||
|     import { navigate } from '../lib/routing.js'; |     import { navigate } from '../lib/routing.js'; | ||||||
|     import { appState } from '../lib/state.js'; |     import { appState, completeRequest } from '../lib/state.js'; | ||||||
|  |     import ErrorAlert from '../ui/ErrorAlert.svelte'; | ||||||
|     import Link from '../ui/Link.svelte'; |     import Link from '../ui/Link.svelte'; | ||||||
|     import Icon from '../ui/Icon.svelte'; |     import KeyCombo from '../ui/KeyCombo.svelte'; | ||||||
|  |  | ||||||
|  |  | ||||||
|  |     // Send response to backend, display error if applicable | ||||||
|  |     let error, alert; | ||||||
|  |     async function respond() { | ||||||
|  |         let {id, approval} = $appState.currentRequest; | ||||||
|  |         try { | ||||||
|  |             await invoke('respond', {response: {id, approval}}); | ||||||
|  |             navigate('ShowResponse'); | ||||||
|  |         } | ||||||
|  |         catch (e) { | ||||||
|  |             if (error) { | ||||||
|  |                 alert.shake(); | ||||||
|  |             } | ||||||
|  |             error = e; | ||||||
|  |         } | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     // Approval has one of several outcomes depending on current credential state | ||||||
|     async function approve() { |     async function approve() { | ||||||
|  |         $appState.currentRequest.approval = 'Approved'; | ||||||
|         let status = await invoke('get_session_status'); |         let status = await invoke('get_session_status'); | ||||||
|         if (status === 'unlocked') { |         if (status === 'unlocked') { | ||||||
|             navigate('ShowApproved'); |             await respond(); | ||||||
|         } |         } | ||||||
|         else if (status === 'locked') { |         else if (status === 'locked') { | ||||||
|             navigate('Unlock'); |             navigate('Unlock'); | ||||||
| @@ -20,40 +40,86 @@ | |||||||
|         } |         } | ||||||
|     } |     } | ||||||
|  |  | ||||||
|     var appName = null; |     // Denial has only one | ||||||
|  |     async function deny() { | ||||||
|  |         $appState.currentRequest.approval = 'Denied'; | ||||||
|  |         await respond(); | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     // Extract executable name from full path | ||||||
|  |     let appName = null; | ||||||
|     if ($appState.currentRequest.clients.length === 1) { |     if ($appState.currentRequest.clients.length === 1) { | ||||||
|         let path = $appState.currentRequest.clients[0].exe; |         let path = $appState.currentRequest.clients[0].exe; | ||||||
|         let m = path.match(/\/([^/]+?$)|\\([^\\]+?$)/); |         let m = path.match(/\/([^/]+?$)|\\([^\\]+?$)/); | ||||||
|         appName = m[1] || m[2]; |         appName = m[1] || m[2]; | ||||||
|     } |     } | ||||||
|  |  | ||||||
|  |     // Executable paths can be long, so ensure they only break on \ or / | ||||||
|  |     function breakPath(client) { | ||||||
|  |         return client.exe.replace(/(\\|\/)/g, '$1<wbr>'); | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     // if the request has already been approved/denied, send response immediately | ||||||
|  |     onMount(async () => { | ||||||
|  |         if ($appState.currentRequest.approval) { | ||||||
|  |             await respond(); | ||||||
|  |         } | ||||||
|  |     }) | ||||||
| </script> | </script> | ||||||
|  |  | ||||||
|  |  | ||||||
| <div class="flex flex-col space-y-4 p-4 m-auto max-w-max h-screen justify-center"> | <!-- Don't render at all if we're just going to immediately proceed to the next screen --> | ||||||
|     <!-- <div class="p-4 rounded-box border-2 border-neutral-content"> --> | {#if error || !$appState.currentRequest.approval} | ||||||
|  |     <div class="flex flex-col space-y-4 p-4 m-auto max-w-xl h-screen items-center justify-center"> | ||||||
|  |         {#if error} | ||||||
|  |             <ErrorAlert bind:this={alert}> | ||||||
|  |                 {error} | ||||||
|  |                 <svelte:fragment slot="buttons"> | ||||||
|  |                     <button class="btn btn-sm btn-alert-error" on:click={completeRequest}>Cancel</button> | ||||||
|  |                     <button class="btn btn-sm btn-alert-error" on:click={respond}>Retry</button> | ||||||
|  |                 </svelte:fragment> | ||||||
|  |             </ErrorAlert> | ||||||
|  |         {/if} | ||||||
|  |  | ||||||
|  |         {#if $appState.currentRequest.base} | ||||||
|  |             <div class="alert alert-warning shadow-lg"> | ||||||
|  |                 <div> | ||||||
|  |                     <svg xmlns="http://www.w3.org/2000/svg" class="stroke-current flex-shrink-0 h-6 w-6" fill="none" viewBox="0 0 24 24"><path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M12 9v2m0 4h.01m-6.938 4h13.856c1.54 0 2.502-1.667 1.732-3L13.732 4c-.77-1.333-2.694-1.333-3.464 0L3.34 16c-.77 1.333.192 3 1.732 3z" /></svg> | ||||||
|  |                     <span> | ||||||
|  |                         WARNING: This application is requesting your base (long-lived) AWS credentials.  | ||||||
|  |                         These credentials are less secure than session credentials, since they don't expire automatically. | ||||||
|  |                     </span> | ||||||
|  |                 </div> | ||||||
|  |             </div> | ||||||
|  |         {/if} | ||||||
|  |  | ||||||
|         <div class="space-y-1 mb-4"> |         <div class="space-y-1 mb-4"> | ||||||
|             <h2 class="text-xl font-bold">{appName ? `"${appName}"` : 'An appplication'} would like to access your AWS credentials.</h2> |             <h2 class="text-xl font-bold">{appName ? `"${appName}"` : 'An appplication'} would like to access your AWS credentials.</h2> | ||||||
|  |  | ||||||
|  |             <div class="grid grid-cols-[auto_1fr] gap-x-3"> | ||||||
|                 {#each $appState.currentRequest.clients as client} |                 {#each $appState.currentRequest.clients as client} | ||||||
|                 <p>Path: {client ? client.exe : 'Unknown'}</p> |                     <div class="text-right">Path:</div> | ||||||
|                 <p>PID: {client ? client.pid : 'Unknown'}</p> |                     <code class="">{@html client ? breakPath(client) : 'Unknown'}</code> | ||||||
|  |                     <div class="text-right">PID:</div> | ||||||
|  |                     <code>{client ? client.pid : 'Unknown'}</code> | ||||||
|                 {/each} |                 {/each} | ||||||
|             </div> |             </div> | ||||||
|  |         </div> | ||||||
|  |  | ||||||
|         <div class="grid grid-cols-2"> |         <div class="w-full flex justify-between"> | ||||||
|             <Link target="ShowDenied" hotkey="Escape"> |             <Link target={deny} hotkey="Escape"> | ||||||
|                 <button class="btn btn-error justify-self-start"> |                 <button class="btn btn-error justify-self-start"> | ||||||
|                     Deny |                     <span class="mr-2">Deny</span> | ||||||
|                     <kbd class="ml-2 normal-case px-1 py-0.5 rounded border border-neutral">Esc</kbd> |                     <KeyCombo keys={['Esc']} /> | ||||||
|                 </button> |                 </button> | ||||||
|             </Link> |             </Link> | ||||||
|  |  | ||||||
|             <Link target="{approve}" hotkey="Enter" shift="{true}"> |             <Link target={approve} hotkey="Enter" shift="{true}"> | ||||||
|                 <button class="btn btn-success justify-self-end"> |                 <button class="btn btn-success justify-self-end"> | ||||||
|                     Approve |                     <span class="mr-2">Approve</span> | ||||||
|                     <kbd class="ml-2 normal-case px-1 py-0.5 rounded border border-neutral">Shift</kbd> |                     <KeyCombo keys={['Shift', 'Enter']} /> | ||||||
|                     <span class="mx-0.5">+</span> |  | ||||||
|                     <kbd class="normal-case px-1 py-0.5 rounded border border-neutral">Enter</kbd> |  | ||||||
|                 </button> |                 </button> | ||||||
|             </Link> |             </Link> | ||||||
|         </div> |         </div> | ||||||
| </div> |     </div> | ||||||
|  | {/if} | ||||||
| @@ -7,6 +7,7 @@ | |||||||
|     import { navigate } from '../lib/routing.js'; |     import { navigate } from '../lib/routing.js'; | ||||||
|     import Link from '../ui/Link.svelte'; |     import Link from '../ui/Link.svelte'; | ||||||
|     import ErrorAlert from '../ui/ErrorAlert.svelte'; |     import ErrorAlert from '../ui/ErrorAlert.svelte'; | ||||||
|  |     import Spinner from '../ui/Spinner.svelte'; | ||||||
|  |  | ||||||
|  |  | ||||||
|     let errorMsg = null; |     let errorMsg = null; | ||||||
| @@ -19,6 +20,7 @@ | |||||||
|         } |         } | ||||||
|     } |     } | ||||||
|  |  | ||||||
|  |     let saving = false; | ||||||
|     async function save() { |     async function save() { | ||||||
|         if (passphrase !== confirmPassphrase) { |         if (passphrase !== confirmPassphrase) { | ||||||
|             alert.shake(); |             alert.shake(); | ||||||
| @@ -27,28 +29,39 @@ | |||||||
|  |  | ||||||
|         let credentials = {AccessKeyId, SecretAccessKey}; |         let credentials = {AccessKeyId, SecretAccessKey}; | ||||||
|         try { |         try { | ||||||
|  |             saving = true; | ||||||
|             await invoke('save_credentials', {credentials, passphrase}); |             await invoke('save_credentials', {credentials, passphrase}); | ||||||
|  |             emit('credentials-event', 'entered'); | ||||||
|             if ($appState.currentRequest) { |             if ($appState.currentRequest) { | ||||||
|                 navigate('ShowApproved'); |                 navigate('Approve'); | ||||||
|             } |             } | ||||||
|             else { |             else { | ||||||
|                 navigate('Home'); |                 navigate('Home'); | ||||||
|             } |             } | ||||||
|         } |         } | ||||||
|         catch (e) { |         catch (e) { | ||||||
|             if (e.code === "GetSession") { |             window.error = e; | ||||||
|                 let root = getRootCause(e); |             const root = getRootCause(e); | ||||||
|  |             if (e.code === 'GetSession' && root.code) { | ||||||
|                 errorMsg = `Error response from AWS (${root.code}): ${root.msg}`; |                 errorMsg = `Error response from AWS (${root.code}): ${root.msg}`; | ||||||
|             } |             } | ||||||
|             else { |             else { | ||||||
|                 errorMsg = e.msg; |                 errorMsg = e.msg; | ||||||
|             } |             } | ||||||
|  |  | ||||||
|  |             // if the alert already existed, shake it | ||||||
|             if (alert) { |             if (alert) { | ||||||
|                 alert.shake(); |                 alert.shake(); | ||||||
|             } |             } | ||||||
|  |  | ||||||
|  |             saving = false; | ||||||
|         } |         } | ||||||
|     } |     } | ||||||
|  |  | ||||||
|  |     function cancel() { | ||||||
|  |         emit('credentials-event', 'enter-canceled'); | ||||||
|  |         navigate('Home'); | ||||||
|  |     } | ||||||
| </script> | </script> | ||||||
|  |  | ||||||
|  |  | ||||||
| @@ -65,8 +78,14 @@ | |||||||
|     <input type="password" placeholder="Passphrase" bind:value="{passphrase}" class="input input-bordered" /> |     <input type="password" placeholder="Passphrase" bind:value="{passphrase}" class="input input-bordered" /> | ||||||
|     <input type="password" placeholder="Re-enter passphrase" bind:value={confirmPassphrase} class="input input-bordered" on:change={confirm} /> |     <input type="password" placeholder="Re-enter passphrase" bind:value={confirmPassphrase} class="input input-bordered" on:change={confirm} /> | ||||||
|  |  | ||||||
|     <input type="submit" class="btn btn-primary" /> |     <button type="submit" class="btn btn-primary"> | ||||||
|     <Link target="Home" hotkey="Escape"> |         {#if saving} | ||||||
|  |             <Spinner class="w-5 h-5" color="primary-content" thickness="2px"/> | ||||||
|  |         {:else} | ||||||
|  |             Submit | ||||||
|  |         {/if} | ||||||
|  |     </button> | ||||||
|  |     <Link target={cancel} hotkey="Escape"> | ||||||
|         <button class="btn btn-sm btn-outline w-full">Cancel</button> |         <button class="btn btn-sm btn-outline w-full">Cancel</button> | ||||||
|     </Link> |     </Link> | ||||||
| </form> | </form> | ||||||
|   | |||||||
| @@ -8,35 +8,47 @@ | |||||||
|     import Icon from '../ui/Icon.svelte'; |     import Icon from '../ui/Icon.svelte'; | ||||||
|     import Link from '../ui/Link.svelte'; |     import Link from '../ui/Link.svelte'; | ||||||
|  |  | ||||||
|  |     import vaultDoorSvg from '../assets/vault_door.svg?raw'; | ||||||
|  |  | ||||||
|     onMount(async () => { |     let launchBase = false; | ||||||
|         // will block until a request comes in |     function launchTerminal() { | ||||||
|         let req = await $appState.pendingRequests.get(); |         invoke('launch_terminal', {base: launchBase}); | ||||||
|         $appState.currentRequest = req; |         launchBase = false; | ||||||
|         navigate('Approve'); |     } | ||||||
|     }); |  | ||||||
| </script> | </script> | ||||||
|  |  | ||||||
|  |  | ||||||
| <Nav /> | <Nav position="fixed"> | ||||||
|  |     <h2 slot="title" class="text-3xl font-bold">Creddy</h2> | ||||||
|  | </Nav> | ||||||
|  |  | ||||||
| <div class="flex flex-col h-screen items-center justify-center p-4 space-y-4"> | <div class="flex flex-col h-screen items-center justify-center p-4 space-y-4"> | ||||||
|  |     <div class="flex flex-col items-center space-y-4"> | ||||||
|  |         {@html vaultDoorSvg} | ||||||
|         {#await invoke('get_session_status') then status} |         {#await invoke('get_session_status') then status} | ||||||
|             {#if status === 'locked'} |             {#if status === 'locked'} | ||||||
|             <img src="/static/padlock-closed.svg" alt="A locked padlock" class="w-32" /> |  | ||||||
|                 <h2 class="text-2xl font-bold">Creddy is locked</h2> |                 <h2 class="text-2xl font-bold">Creddy is locked</h2> | ||||||
|             <Link target="Unlock"> |                 <Link target="Unlock" hotkey="Enter" class="w-64"> | ||||||
|                 <button class="btn btn-primary">Unlock</button> |                     <button class="btn btn-primary w-full">Unlock</button> | ||||||
|                 </Link> |                 </Link> | ||||||
|  |  | ||||||
|             {:else if status === 'unlocked'} |             {:else if status === 'unlocked'} | ||||||
|             <img src="/static/padlock-open.svg" alt="An unlocked padlock" class="w-24" /> |  | ||||||
|                 <h2 class="text-2xl font-bold">Waiting for requests</h2> |                 <h2 class="text-2xl font-bold">Waiting for requests</h2> | ||||||
|  |                 <button class="btn btn-primary w-full" on:click={launchTerminal}> | ||||||
|  |                     Launch Terminal | ||||||
|  |                 </button> | ||||||
|  |                 <label class="label cursor-pointer flex items-center space-x-2"> | ||||||
|  |                     <input type="checkbox" class="checkbox checkbox-sm" bind:checked={launchBase}> | ||||||
|  |                     <span class="label-text">Launch with base credentials</span> | ||||||
|  |                 </label> | ||||||
|  |  | ||||||
|             {:else if status === 'empty'} |             {:else if status === 'empty'} | ||||||
|             <Link target="EnterCredentials"> |                 <h2 class="text-2xl font-bold">No credentials found</h2> | ||||||
|                 <button class="btn btn-primary">Enter Credentials</button> |                 <Link target="EnterCredentials" hotkey="Enter" class="w-64"> | ||||||
|  |                     <button class="btn btn-primary w-full">Enter Credentials</button> | ||||||
|                 </Link> |                 </Link> | ||||||
|             {/if} |             {/if} | ||||||
|         {/await} |         {/await} | ||||||
|  |     </div> | ||||||
| </div> | </div> | ||||||
| @@ -1,3 +1,9 @@ | |||||||
|  | <script context="module"> | ||||||
|  |     import { type } from '@tauri-apps/api/os'; | ||||||
|  |     const osType = await type(); | ||||||
|  | </script> | ||||||
|  |  | ||||||
|  |  | ||||||
| <script> | <script> | ||||||
|     import { invoke } from '@tauri-apps/api/tauri'; |     import { invoke } from '@tauri-apps/api/tauri'; | ||||||
|  |  | ||||||
| @@ -5,21 +11,35 @@ | |||||||
|     import Nav from '../ui/Nav.svelte'; |     import Nav from '../ui/Nav.svelte'; | ||||||
|     import Link from '../ui/Link.svelte'; |     import Link from '../ui/Link.svelte'; | ||||||
|     import ErrorAlert from '../ui/ErrorAlert.svelte'; |     import ErrorAlert from '../ui/ErrorAlert.svelte'; | ||||||
|     // import Setting from '../ui/settings/Setting.svelte'; |     import SettingsGroup from '../ui/settings/SettingsGroup.svelte'; | ||||||
|     import { Setting, ToggleSetting, NumericSetting } from '../ui/settings'; |     import Keybind from '../ui/settings/Keybind.svelte'; | ||||||
|  |     import { Setting, ToggleSetting, NumericSetting, FileSetting, TextSetting } from '../ui/settings'; | ||||||
|  |  | ||||||
|  |     import { fly } from 'svelte/transition'; | ||||||
|  |     import { backInOut } from 'svelte/easing'; | ||||||
|  |  | ||||||
|  |  | ||||||
|  |     let error = null; | ||||||
|     async function save() { |     async function save() { | ||||||
|  |         console.log('updating config'); | ||||||
|  |         try { | ||||||
|             await invoke('save_config', {config: $appState.config}); |             await invoke('save_config', {config: $appState.config}); | ||||||
|         } |         } | ||||||
|  |         catch (e) { | ||||||
|  |             error = e; | ||||||
|  |             $appState.config = await invoke('get_config'); | ||||||
|  |         } | ||||||
|  |     } | ||||||
| </script> | </script> | ||||||
|  |  | ||||||
|  |  | ||||||
| <Nav /> | <Nav> | ||||||
|  |     <h1 slot="title" class="text-2xl font-bold">Settings</h1> | ||||||
|  | </Nav> | ||||||
|  |  | ||||||
| {#await invoke('get_config') then config} | {#await invoke('get_config') then config} | ||||||
|     <div class="max-w-md mx-auto mt-1.5 p-4"> |     <div class="max-w-lg mx-auto mt-1.5 p-4 space-y-16"> | ||||||
|         <h2 class="text-2xl font-bold text-center">Settings</h2> |         <SettingsGroup name="General">             | ||||||
|  |  | ||||||
|             <ToggleSetting title="Start on login" bind:value={$appState.config.start_on_login} on:update={save}> |             <ToggleSetting title="Start on login" bind:value={$appState.config.start_on_login} on:update={save}> | ||||||
|                 <svelte:fragment slot="description"> |                 <svelte:fragment slot="description"> | ||||||
|                     Start Creddy when you log in to your computer. |                     Start Creddy when you log in to your computer. | ||||||
| @@ -40,7 +60,12 @@ | |||||||
|                 </svelte:fragment> |                 </svelte:fragment> | ||||||
|             </NumericSetting> |             </NumericSetting> | ||||||
|  |  | ||||||
|         <NumericSetting title="Listen port" bind:value={$appState.config.listen_port} min=1 on:update={save}> |             <NumericSetting | ||||||
|  |                 title="Listen port" | ||||||
|  |                 bind:value={$appState.config.listen_port} | ||||||
|  |                 min={osType === 'Windows_NT' ? 1 : 0} | ||||||
|  |                 on:update={save} | ||||||
|  |             > | ||||||
|                 <svelte:fragment slot="description"> |                 <svelte:fragment slot="description"> | ||||||
|                     Listen for credentials requests on this port.  |                     Listen for credentials requests on this port.  | ||||||
|                     (Should be used with <code>$AWS_CONTAINER_CREDENTIALS_FULL_URI</code>) |                     (Should be used with <code>$AWS_CONTAINER_CREDENTIALS_FULL_URI</code>) | ||||||
| @@ -55,5 +80,42 @@ | |||||||
|                     Update or re-enter your encrypted credentials. |                     Update or re-enter your encrypted credentials. | ||||||
|                 </svelte:fragment> |                 </svelte:fragment> | ||||||
|             </Setting> |             </Setting> | ||||||
|  |  | ||||||
|  |             <FileSetting | ||||||
|  |                 title="Terminal emulator" | ||||||
|  |                 bind:value={$appState.config.terminal.exec} | ||||||
|  |                 on:update={save} | ||||||
|  |             > | ||||||
|  |                 <svelte:fragment slot="description"> | ||||||
|  |                     Choose your preferred terminal emulator (e.g. <code>gnome-terminal</code> or <code>wt.exe</code>.) May be an absolute path or an executable discoverable on <code>$PATH</code>. | ||||||
|  |                 </svelte:fragment> | ||||||
|  |             </FileSetting> | ||||||
|  |         </SettingsGroup> | ||||||
|  |  | ||||||
|  |         <SettingsGroup name="Hotkeys"> | ||||||
|  |             <div class="space-y-4"> | ||||||
|  |                 <p>Click on a keybinding to modify it. Use the checkbox to enable or disable a keybinding entirely.</p> | ||||||
|  |  | ||||||
|  |                 <div class="grid grid-cols-[auto_1fr_auto] gap-y-3 items-center"> | ||||||
|  |                     <Keybind description="Show Creddy" value={$appState.config.hotkeys.show_window} on:update={save} /> | ||||||
|  |                     <Keybind description="Launch terminal" value={$appState.config.hotkeys.launch_terminal} on:update={save} /> | ||||||
|  |                 </div> | ||||||
|  |             </div> | ||||||
|  |         </SettingsGroup> | ||||||
|  |  | ||||||
|     </div> |     </div> | ||||||
| {/await} | {/await} | ||||||
|  |  | ||||||
|  | {#if error} | ||||||
|  |     <div transition:fly={{y: 100, easing: backInOut, duration: 400}} class="toast"> | ||||||
|  |         <div class="alert alert-error no-animation"> | ||||||
|  |             <div> | ||||||
|  |                 <span>{error}</span> | ||||||
|  |             </div> | ||||||
|  |  | ||||||
|  |             <div> | ||||||
|  |                 <button class="btn btn-sm btn-alert-error" on:click={() => error = null}>Ok</button> | ||||||
|  |             </div> | ||||||
|  |         </div> | ||||||
|  |     </div> | ||||||
|  | {/if} | ||||||
|   | |||||||
| @@ -1,78 +0,0 @@ | |||||||
| <script> |  | ||||||
|     import { onMount } from 'svelte'; |  | ||||||
|     import { draw, fade } from 'svelte/transition'; |  | ||||||
|     import { emit } from '@tauri-apps/api/event'; |  | ||||||
|     import { invoke } from '@tauri-apps/api/tauri'; |  | ||||||
|  |  | ||||||
|     import { appState } from '../lib/state.js'; |  | ||||||
|     import { navigate } from '../lib/routing.js'; |  | ||||||
|     import ErrorAlert from '../ui/ErrorAlert.svelte'; |  | ||||||
|     import Icon from '../ui/Icon.svelte'; |  | ||||||
|     import Link from '../ui/Link.svelte'; |  | ||||||
|      |  | ||||||
|     let success = false; |  | ||||||
|     let error = null; |  | ||||||
|  |  | ||||||
|     let drawDuration = $appState.config.rehide_ms >= 750 ? 500 : 0; |  | ||||||
|     let fadeDuration = drawDuration * 0.6; |  | ||||||
|     let fadeDelay = drawDuration * 0.4; |  | ||||||
|  |  | ||||||
|     async function respond() { |  | ||||||
|         let response = { |  | ||||||
|             id: $appState.currentRequest.id, |  | ||||||
|             approval: 'Approved', |  | ||||||
|         }; |  | ||||||
|  |  | ||||||
|         try { |  | ||||||
|             await invoke('respond', {response}); |  | ||||||
|             success = true; |  | ||||||
|             $appState.currentRequest = null; |  | ||||||
|  |  | ||||||
|             window.setTimeout( |  | ||||||
|                 () => navigate('Home'), |  | ||||||
|                 // Extra 50ms so the window can finish disappearing before the screen changes |  | ||||||
|                 Math.min(5000, $appState.config.rehide_ms + 50), |  | ||||||
|             ); |  | ||||||
|         } |  | ||||||
|         catch (e) { |  | ||||||
|             error = e; |  | ||||||
|         } |  | ||||||
|  |  | ||||||
|     } |  | ||||||
|     onMount(respond); |  | ||||||
| </script> |  | ||||||
|  |  | ||||||
|  |  | ||||||
| {#if error} |  | ||||||
|     <div class="flex flex-col h-screen items-center justify-center m-auto max-w-lg"> |  | ||||||
|         <ErrorAlert> |  | ||||||
|             {error} |  | ||||||
|             <svelte:fragment slot="buttons"> |  | ||||||
|                 <Link target="Home"> |  | ||||||
|                     <button class="btn btn-sm bg-transparent hover:bg-[#cd5a5a] border border-error-content text-error-content"> |  | ||||||
|                         Ok |  | ||||||
|                     </button> |  | ||||||
|                 </Link> |  | ||||||
|             </svelte:fragment> |  | ||||||
|         </ErrorAlert> |  | ||||||
|     </div> |  | ||||||
| {:else if success} |  | ||||||
|     <div class="flex flex-col h-screen items-center justify-center max-w-max m-auto"> |  | ||||||
|         <svg xmlns="http://www.w3.org/2000/svg" class="w-36 h-36" fill="none" viewBox="0 0 24 24" stroke-width="1" stroke="currentColor"> |  | ||||||
|           <path in:draw="{{duration: drawDuration}}" stroke-linecap="round" stroke-linejoin="round" d="M9 12.75L11.25 15 15 9.75M21 12a9 9 0 11-18 0 9 9 0 0118 0z" /> |  | ||||||
|         </svg> |  | ||||||
|  |  | ||||||
|  |  | ||||||
|         <div in:fade="{{duration: fadeDuration, delay: fadeDelay}}" class="text-2xl font-bold">Approved!</div> |  | ||||||
|     </div> |  | ||||||
| {/if} |  | ||||||
|  |  | ||||||
|    |  | ||||||
|  |  | ||||||
| <!--  |  | ||||||
| {#if error} |  | ||||||
|     <div class="text-red-400">{error}</div> |  | ||||||
| {:else} |  | ||||||
|     <h1 class="text-4xl text-gray-300">Approved!</h1> |  | ||||||
| {/if} |  | ||||||
|  --> |  | ||||||
| @@ -1,56 +0,0 @@ | |||||||
| <script> |  | ||||||
|     import { onMount } from 'svelte'; |  | ||||||
|     import { draw, fade } from 'svelte/transition'; |  | ||||||
|     import { emit } from '@tauri-apps/api/event'; |  | ||||||
|     import { invoke } from '@tauri-apps/api/tauri'; |  | ||||||
|  |  | ||||||
|     import { appState } from '../lib/state.js'; |  | ||||||
|     import { navigate } from '../lib/routing.js'; |  | ||||||
|     import ErrorAlert from '../ui/ErrorAlert.svelte'; |  | ||||||
|     import Icon from '../ui/Icon.svelte'; |  | ||||||
|     import Link from '../ui/Link.svelte'; |  | ||||||
|      |  | ||||||
|     let error = null; |  | ||||||
|      |  | ||||||
|     async function respond() { |  | ||||||
|         let response = { |  | ||||||
|             id: $appState.currentRequest.id, |  | ||||||
|             approval: 'Denied', |  | ||||||
|         } |  | ||||||
|  |  | ||||||
|         try { |  | ||||||
|             await invoke('respond', {response}); |  | ||||||
|             $appState.currentRequest = null; |  | ||||||
|             window.setTimeout(() => navigate('Home'), 1000); |  | ||||||
|         } |  | ||||||
|         catch (e) { |  | ||||||
|             error = e; |  | ||||||
|         } |  | ||||||
|  |  | ||||||
|     } |  | ||||||
|  |  | ||||||
|     onMount(respond); |  | ||||||
| </script> |  | ||||||
|  |  | ||||||
| {#if error} |  | ||||||
|     <div class="flex flex-col h-screen items-center justify-center m-auto max-w-lg"> |  | ||||||
|         <ErrorAlert> |  | ||||||
|             {error} |  | ||||||
|             <svelte:fragment slot="buttons"> |  | ||||||
|                 <Link target="Home"> |  | ||||||
|                     <button class="btn btn-sm bg-transparent hover:bg-[#cd5a5a] border border-error-content text-error-content" on:click="{() => navigate('Home')}"> |  | ||||||
|                         Ok |  | ||||||
|                     </button> |  | ||||||
|                 </Link> |  | ||||||
|             </svelte:fragment> |  | ||||||
|         </ErrorAlert> |  | ||||||
|     </div> |  | ||||||
| {:else} |  | ||||||
|     <div class="flex flex-col items-center justify-center h-screen max-w-max m-auto"> |  | ||||||
|         <svg xmlns="http://www.w3.org/2000/svg" class="w-36 h-36" fill="none" viewBox="0 0 24 24" stroke-width="1" stroke="currentColor"> |  | ||||||
|             <path in:draw="{{duration: 500}}" stroke-linecap="round" stroke-linejoin="round" d="M9.75 9.75l4.5 4.5m0-4.5l-4.5 4.5M21 12a9 9 0 11-18 0 9 9 0 0118 0z" /> |  | ||||||
|         </svg> |  | ||||||
|  |  | ||||||
|         <div in:fade="{{delay: 200, duration: 300}}" class="text-2xl font-bold">Denied!</div> |  | ||||||
|     </div> |  | ||||||
| {/if} |  | ||||||
							
								
								
									
										38
									
								
								src/views/ShowResponse.svelte
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										38
									
								
								src/views/ShowResponse.svelte
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,38 @@ | |||||||
|  | <script> | ||||||
|  |     import { onMount } from 'svelte'; | ||||||
|  |     import { draw, fade } from 'svelte/transition'; | ||||||
|  |  | ||||||
|  |     import { appState, completeRequest } from '../lib/state.js'; | ||||||
|  |      | ||||||
|  |     let success = false; | ||||||
|  |     let error = null; | ||||||
|  |  | ||||||
|  |     let drawDuration = $appState.config.rehide_ms >= 750 ? 500 : 0; | ||||||
|  |     let fadeDuration = drawDuration * 0.6; | ||||||
|  |     let fadeDelay = drawDuration * 0.4; | ||||||
|  |  | ||||||
|  |     onMount(() => { | ||||||
|  |         window.setTimeout( | ||||||
|  |             completeRequest, | ||||||
|  |             // Extra 50ms so the window can finish disappearing before the redraw | ||||||
|  |             Math.min(5000, $appState.config.rehide_ms + 50), | ||||||
|  |         ) | ||||||
|  |     }) | ||||||
|  | </script> | ||||||
|  |  | ||||||
|  |  | ||||||
|  | <div class="flex flex-col h-screen items-center justify-center max-w-max m-auto"> | ||||||
|  |     {#if $appState.currentRequest.approval === 'Approved'} | ||||||
|  |         <svg xmlns="http://www.w3.org/2000/svg" class="w-36 h-36" fill="none" viewBox="0 0 24 24" stroke-width="1" stroke="currentColor"> | ||||||
|  |           <path in:draw="{{duration: drawDuration}}" stroke-linecap="round" stroke-linejoin="round" d="M9 12.75L11.25 15 15 9.75M21 12a9 9 0 11-18 0 9 9 0 0118 0z" /> | ||||||
|  |         </svg> | ||||||
|  |     {:else} | ||||||
|  |         <svg xmlns="http://www.w3.org/2000/svg" class="w-36 h-36" fill="none" viewBox="0 0 24 24" stroke-width="1" stroke="currentColor"> | ||||||
|  |             <path in:draw="{{duration: 500}}" stroke-linecap="round" stroke-linejoin="round" d="M9.75 9.75l4.5 4.5m0-4.5l-4.5 4.5M21 12a9 9 0 11-18 0 9 9 0 0118 0z" /> | ||||||
|  |         </svg> | ||||||
|  |     {/if} | ||||||
|  |  | ||||||
|  |     <div in:fade="{{duration: fadeDuration, delay: fadeDelay}}" class="text-2xl font-bold"> | ||||||
|  |         {$appState.currentRequest.approval}! | ||||||
|  |     </div> | ||||||
|  | </div> | ||||||
| @@ -1,42 +1,66 @@ | |||||||
| <script> | <script> | ||||||
|     import { invoke } from '@tauri-apps/api/tauri'; |     import { invoke } from '@tauri-apps/api/tauri'; | ||||||
|  |     import { emit } from '@tauri-apps/api/event'; | ||||||
|  |     import { onMount } from 'svelte'; | ||||||
|  |  | ||||||
|     import { appState } from '../lib/state.js'; |     import { appState } from '../lib/state.js'; | ||||||
|     import { navigate } from '../lib/routing.js'; |     import { navigate } from '../lib/routing.js'; | ||||||
|     import { getRootCause } from '../lib/errors.js'; |     import { getRootCause } from '../lib/errors.js'; | ||||||
|     import ErrorAlert from '../ui/ErrorAlert.svelte'; |     import ErrorAlert from '../ui/ErrorAlert.svelte'; | ||||||
|     import Link from '../ui/Link.svelte'; |     import Link from '../ui/Link.svelte'; | ||||||
|  |     import Spinner from '../ui/Spinner.svelte'; | ||||||
|  |  | ||||||
|  |  | ||||||
|     let errorMsg = null; |     let errorMsg = null; | ||||||
|     let alert; |     let alert; | ||||||
|     let passphrase = ''; |     let passphrase = ''; | ||||||
|  |     let loadTime = 0; | ||||||
|  |     let saving = false; | ||||||
|     async function unlock() { |     async function unlock() { | ||||||
|  |         // The hotkey for navigating here from homepage is Enter, which also | ||||||
|  |         // happens to trigger the form submit event | ||||||
|  |         if (Date.now() - loadTime < 10) { | ||||||
|  |             return; | ||||||
|  |         } | ||||||
|  |  | ||||||
|         try { |         try { | ||||||
|  |             saving = true; | ||||||
|             let r = await invoke('unlock', {passphrase}); |             let r = await invoke('unlock', {passphrase}); | ||||||
|             $appState.credentialStatus = 'unlocked'; |             $appState.credentialStatus = 'unlocked'; | ||||||
|  |             emit('credentials-event', 'unlocked'); | ||||||
|             if ($appState.currentRequest) { |             if ($appState.currentRequest) { | ||||||
|                 navigate('ShowApproved'); |                 navigate('Approve'); | ||||||
|             } |             } | ||||||
|             else { |             else { | ||||||
|                 navigate('Home'); |                 navigate('Home'); | ||||||
|             } |             } | ||||||
|         } |         } | ||||||
|         catch (e) { |         catch (e) { | ||||||
|             window.error = e; |             const root = getRootCause(e); | ||||||
|             if (e.code === 'GetSession') { |             if (e.code === 'GetSession' && root.code) { | ||||||
|                 let root = getRootCause(e); |  | ||||||
|                 errorMsg = `Error response from AWS (${root.code}): ${root.msg}`; |                 errorMsg = `Error response from AWS (${root.code}): ${root.msg}`; | ||||||
|             } |             } | ||||||
|             else { |             else { | ||||||
|                 errorMsg = e.msg; |                 errorMsg = e.msg; | ||||||
|             } |             } | ||||||
|              |              | ||||||
|  |             // if the alert already existed, shake it | ||||||
|             if (alert) { |             if (alert) { | ||||||
|                 alert.shake(); |                 alert.shake(); | ||||||
|             } |             } | ||||||
|  |  | ||||||
|  |             saving = false; | ||||||
|         } |         } | ||||||
|     } |     } | ||||||
|  |  | ||||||
|  |     function cancel() { | ||||||
|  |         emit('credentials-event', 'unlock-canceled'); | ||||||
|  |         navigate('Home'); | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |     onMount(() => { | ||||||
|  |         loadTime = Date.now(); | ||||||
|  |     }) | ||||||
| </script> | </script> | ||||||
|  |  | ||||||
|  |  | ||||||
| @@ -47,10 +71,18 @@ | |||||||
|         <ErrorAlert bind:this="{alert}">{errorMsg}</ErrorAlert> |         <ErrorAlert bind:this="{alert}">{errorMsg}</ErrorAlert> | ||||||
|     {/if} |     {/if} | ||||||
|  |  | ||||||
|  |     <!-- svelte-ignore a11y-autofocus --> | ||||||
|     <input autofocus name="password" type="password" placeholder="correct horse battery staple" bind:value="{passphrase}" class="input input-bordered" /> |     <input autofocus name="password" type="password" placeholder="correct horse battery staple" bind:value="{passphrase}" class="input input-bordered" /> | ||||||
|  |  | ||||||
|     <input type="submit" class="btn btn-primary" /> |     <button type="submit" class="btn btn-primary"> | ||||||
|     <Link target="Home" hotkey="Escape"> |         {#if saving} | ||||||
|         <button class="btn btn-outline btn-sm w-full">Cancel</button> |             <Spinner class="w-5 h-5" color="primary-content" thickness="2px"/> | ||||||
|  |         {:else} | ||||||
|  |             Submit | ||||||
|  |         {/if} | ||||||
|  |     </button> | ||||||
|  |  | ||||||
|  |     <Link target={cancel} hotkey="Escape"> | ||||||
|  |         <button class="btn btn-sm btn-outline w-full">Cancel</button> | ||||||
|     </Link> |     </Link> | ||||||
| </form> | </form> | ||||||
|   | |||||||
										
											
												File diff suppressed because one or more lines are too long
											
										
									
								
							| Before Width: | Height: | Size: 34 KiB | 
										
											
												File diff suppressed because one or more lines are too long
											
										
									
								
							| Before Width: | Height: | Size: 46 KiB | 
		Reference in New Issue
	
	Block a user