lock/unlock commands

2025-12-14 23:33:31 +00:00 · 2018-05-16 10:25:25 -04:00
parent e7782b2082
commit 8d66118b19
5 changed files with 101 additions and 20 deletions
--- a/src/commands/unlock.command.ts
+++ b/src/commands/unlock.command.ts
@@ -0,0 +1,51 @@
+import * as program from 'commander';
+import * as readline from 'readline-sync';
+
+import { CryptoService } from 'jslib/abstractions/crypto.service';
+import { CryptoFunctionService } from 'jslib/abstractions/cryptoFunction.service';
+import { UserService } from 'jslib/abstractions/user.service';
+
+import { Response } from '../models/response';
+import { MessageResponse } from '../models/response/messageResponse';
+
+import { Utils } from 'jslib/misc/utils';
+
+export class UnlockCommand {
+    constructor(private cryptoService: CryptoService, private userService: UserService,
+        private cryptoFunctionService: CryptoFunctionService) { }
+
+    async run(password: string, cmd: program.Command) {
+        if (password == null || password === '') {
+            password = readline.question('Master password: ', {
+                hideEchoBack: true,
+                mask: '*',
+            });
+        }
+        if (password == null || password === '') {
+            return Response.badRequest('Master password is required.');
+        }
+
+        this.setNewSessionKey();
+        const email = await this.userService.getEmail();
+        const key = await this.cryptoService.makeKey(password, email);
+        const keyHash = await this.cryptoService.hashPassword(password, key);
+        const storedKeyHash = await this.cryptoService.getKeyHash();
+        if (storedKeyHash != null && keyHash != null && storedKeyHash === keyHash) {
+            await this.cryptoService.setKey(key);
+            const res = new MessageResponse('Your vault is now unlocked!', '\n' +
+                'To unlock your vault, set your session key to the `BW_SESSION` environment variable. ex:\n' +
+                '$ export BW_SESSION="' + process.env.BW_SESSION + '"\n\n' +
+                'You can also pass the session key to any command with the `--session` option. ex:\n' +
+                '$ bw get items --session ' + process.env.BW_SESSION);
+            res.raw = process.env.BW_SESSION;
+            return Response.success(res);
+        } else {
+            return Response.error('Invalid master password.');
+        }
+    }
+
+    private async setNewSessionKey() {
+        const key = await this.cryptoFunctionService.randomBytes(64);
+        process.env.BW_SESSION = Utils.fromBufferToB64(key);
+    }
+}