Bram
/
BangleApps
forked from FOSS/BangleApps
1
0
Fork 0
Code Pull Requests Activity
BangleApps/apps/authentiwatch/app.js

264 lines
6.8 KiB
JavaScript
Raw Normal View History

Create app.js
2021-10-29 13:37:38 +00:00
const tokenentryheight = 46;
// Hash functions
const crypto = require("crypto");
const sha1 = crypto.SHA1;
const sha224 = crypto.SHA224;
const sha256 = crypto.SHA256;
const sha384 = crypto.SHA384;
const sha512 = crypto.SHA512;
var tokens = require("Storage").readJSON("authentiwatch.tokens.json", true) || [
{algorithm:"SHA512",digits:8,period:60,secret:"aaaa aaaa aaaa aaaa",label:"AgAgAg"},
{algorithm:"SHA1",digits:6,period:30,secret:"bbbb bbbb bbbb bbbb",label:"BgBgBg"},
{algorithm:"SHA1",digits:6,period:30,secret:"6crw upgx ntjb 3wuj",label:"Discord"},
{algorithm:"SHA1",digits:6,period:60,secret:"yyyy yyyy yyyy yyyy",label:"YgYgYg"},
{algorithm:"SHA1",digits:8,period:30,secret:"zzzz zzzz zzzz zzzz",label:"ZgZgZg"},
];
// QR Code Text
//
// Example:
//
// otpauth://totp/${url}:AA_${algorithm}_${digits}dig_${period}s@${url}?algorithm=${algorithm}&digits=${digits}&issuer=${url}&period=${period}&secret=${secret}
//
// ${algorithm} : one of SHA1 / SHA256 / SHA512
// ${digits} : one of 6 / 8
// ${period} : one of 30 / 60
// ${url} : a domain name "example.com"
// ${secret} : the seed code
function b32decode(seedstr) {
// RFC4648
var i, buf = 0, bitcount = 0, retstr = "";
for (i in seedstr) {
let c = "ABCDEFGHIJKLMNOPQRSTUVWXYZ234567".indexOf(seedstr.charAt(i).toUpperCase(), 0);
if (c != -1) {
buf <<= 5;
buf |= c;
bitcount += 5;
if (bitcount >= 8) {
retstr += String.fromCharCode(buf >> (bitcount - 8));
buf &= (0xFF >> (16 - bitcount));
bitcount -= 8;
}
}
}
if (bitcount > 0) {
retstr += String.fromCharCode(buf << (8 - bitcount));
}
var retbuf = new Uint8Array(retstr.length);
for (i in retstr) {
retbuf[i] = retstr.charCodeAt(i);
}
return retbuf;
}
function do_hmac(key, message, algo) {
var sha, retsz, blksz;
if (algo == "SHA512") {
sha = sha512;
retsz = 64;
blksz = 128;
} else if (algo == "SHA384") {
sha = sha384;
retsz = 48;
blksz = 128;
} else if (algo == "SHA256") {
sha = sha256;
retsz = 32;
blksz = 64;
} else if (algo == "SHA224") {
sha = sha224;
retsz = 28;
blksz = 64;
} else {
sha = sha1;
retsz = 20;
blksz = 64;
}
// RFC2104
if (key.length > blksz) {
key = sha(key);
}
var istr = new Uint8Array(blksz + message.length);
var ostr = new Uint8Array(blksz + retsz);
for (var i = 0; i < blksz; ++i) {
let c = (i < key.length) ? key[i] : 0;
istr[i] = c ^ 0x36;
ostr[i] = c ^ 0x5C;
}
istr.set(message, blksz);
ostr.set(sha(istr), blksz);
var ret = sha(ostr);
// RFC4226 dynamic truncation
var v = new DataView(ret, ret[ret.length - 1] & 0x0F, 4);
return v.getUint32(0) & 0x7FFFFFFF;
}
function hotp_timed(seed, digits, period, algo) {
// RFC6238
var d = new Date();
var seconds = Math.floor(d.getTime() / 1000);
var tick = Math.floor(seconds / period);
var msg = new Uint8Array(8);
var v = new DataView(msg.buffer);
v.setUint32(0, tick >> 16 >> 16);
v.setUint32(4, tick & 0xFFFFFFFF);
var hash = do_hmac(b32decode(seed), msg, algo.toUpperCase());
var ret = "" + hash % Math.pow(10, digits);
while (ret.length < digits) {
ret = "0" + ret;
}
return {hotp:ret, next:(tick + 1) * period * 1000};
}
var state = {
listy: 0,
curtoken:-1,
nextTime:0,
otp:"",
rem:0
};
function drawToken(id, r) {
var x1 = r.x;
var y1 = r.y;
var x2 = r.x + r.w - 1;
var y2 = r.y + r.h - 1;
var ylabel;
if (id == state.curtoken) {
// current token
g.setColor(g.theme.fgH);
g.setBgColor(g.theme.bgH);
g.setFont6x15(1);
// center just below top line
g.setFontAlign(0, -1, 0);
ylabel = y1 + 2;
} else {
g.setColor(g.theme.fg);
g.setBgColor(g.theme.bg);
g.setFont6x15(2);
// center in box
g.setFontAlign(0, 0, 0);
ylabel = (y1 + y2) / 2;
}
g.clearRect(x1, y1, x2, y2);
g.drawString(tokens[id].label, x2 / 2, ylabel, false);
if (id == state.curtoken) {
// digits just below label
g.setFont6x15(2);
g.drawString(state.otp, x2 / 2, y1 + 17, false);
// draw progress bar
let xr = Math.floor(g.getWidth() * state.rem / tokens[id].period);
g.fillRect(x1, y2 - 4, xr, y2 - 1);
}
// shaded lines top and bottom
if (g.theme.dark) {
g.setColor(0.25, 0.25, 0.25);
} else {
g.setColor(0.75, 0.75, 0.75);
}
g.drawLine(x1, y1, x2, y1);
g.drawLine(x1, y2, x2, y2);
}
function draw() {
if (state.curtoken != -1) {
var t = tokens[state.curtoken];
var d = new Date();
if (d.getTime() > state.nextTime) {
try {
var r = hotp_timed(t.secret, t.digits, t.period, t.algorithm);
state.nextTime = r.next;
state.otp = r.hotp;
} catch (err) {
state.nextTime = 0;
state.otp = "Not supported";
}
}
state.rem = Math.max(0, Math.floor((state.nextTime - d.getTime()) / 1000));
}
if (tokens.length > 0) {
var drewcur = false;
var id = Math.floor(state.listy / tokenentryheight);
var y = id * tokenentryheight - state.listy;
while (id < tokens.length && y < g.getHeight()) {
drawToken(id, {x:0, y:y, w:g.getWidth(), h:tokenentryheight});
if (id == state.curtoken && state.nextTime != 0) {
drewcur = true;
}
id += 1;
y += tokenentryheight;
}
if (drewcur) {
if (state.drawtimer) {
clearTimeout(state.drawtimer);
}
state.drawtimer = setTimeout(draw, 1000);
}
} else {
g.setFont6x15(2);
g.setFontAlign(0, 0, 0);
g.drawString("No tokens", g.getWidth() / 2, g.getHeight() / 2, false);
}
}
function onTouch(zone, e) {
var id = Math.floor((state.listy + e.y) / tokenentryheight);
if (id == state.curtoken) {
id = -1;
}
if (state.curtoken != id) {
if (id != -1) {
var y = id * tokenentryheight - state.listy;
if (y < 0) {
state.listy += y;
y = 0;
}
y += tokenentryheight;
if (y > g.getHeight()) {
state.listy += (y - g.getHeight());
}
}
state.nextTime = 0;
state.curtoken = id;
draw();
}
}
function onDrag(e) {
if (e.x > g.getWidth() || e.y > g.getHeight()) return;
if (e.dx == 0 && e.dy == 0) return;
var maxy = tokens.length * tokenentryheight - g.getHeight();
var newy = state.listy - e.dy;
if (newy > maxy) {
newy = maxy;
}
if (newy < 0) {
newy = 0;
}
if (newy != state.listy) {
state.listy = newy;
draw();
}
}
function onSwipe(e) {
if (e == 1) {
Bangle.showLauncher();
}
}
function tokenSelected(id) {
state.curtoken = (id == state.curtoken) ? -1 : id;
scroller.drawMenu();
}
Bangle.on('touch', onTouch);
Bangle.on('drag' , onDrag );
Bangle.on('swipe', onSwipe);
// Clear the screen once, at startup
g.clear();
draw();
//var scroller = E.showScroller({h:tokenentryheight,c:tokens.length,draw:drawToken,select:tokenSelected});