2021-10-29 13:37:38 +00:00
|
|
|
const tokenentryheight = 46;
|
|
|
|
|
// Hash functions
|
|
|
|
|
const crypto = require("crypto");
|
2021-11-09 15:24:05 +00:00
|
|
|
const algos = {
|
|
|
|
|
"SHA512":{sha:crypto.SHA512,retsz:64,blksz:128},
|
|
|
|
|
"SHA256":{sha:crypto.SHA256,retsz:32,blksz:64 },
|
|
|
|
|
"SHA1" :{sha:crypto.SHA1 ,retsz:20,blksz:64 },
|
|
|
|
|
};
|
2021-10-29 13:37:38 +00:00
|
|
|
|
2021-10-31 14:15:25 +00:00
|
|
|
var tokens = require("Storage").readJSON("authentiwatch.json", true) || [
|
2021-10-29 13:37:38 +00:00
|
|
|
{algorithm:"SHA512",digits:8,period:60,secret:"aaaa aaaa aaaa aaaa",label:"AgAgAg"},
|
|
|
|
|
{algorithm:"SHA1",digits:6,period:30,secret:"bbbb bbbb bbbb bbbb",label:"BgBgBg"},
|
2021-10-29 14:10:43 +00:00
|
|
|
{algorithm:"SHA1",digits:6,period:30,secret:"cccc cccc cccc cccc",label:"CgCgCg"},
|
2021-10-29 13:37:38 +00:00
|
|
|
{algorithm:"SHA1",digits:6,period:60,secret:"yyyy yyyy yyyy yyyy",label:"YgYgYg"},
|
|
|
|
|
{algorithm:"SHA1",digits:8,period:30,secret:"zzzz zzzz zzzz zzzz",label:"ZgZgZg"},
|
|
|
|
|
];
|
|
|
|
|
|
|
|
|
|
// QR Code Text
|
|
|
|
|
//
|
|
|
|
|
// Example:
|
|
|
|
|
//
|
|
|
|
|
// otpauth://totp/${url}:AA_${algorithm}_${digits}dig_${period}s@${url}?algorithm=${algorithm}&digits=${digits}&issuer=${url}&period=${period}&secret=${secret}
|
|
|
|
|
//
|
|
|
|
|
// ${algorithm} : one of SHA1 / SHA256 / SHA512
|
|
|
|
|
// ${digits} : one of 6 / 8
|
|
|
|
|
// ${period} : one of 30 / 60
|
|
|
|
|
// ${url} : a domain name "example.com"
|
|
|
|
|
// ${secret} : the seed code
|
|
|
|
|
|
|
|
|
|
function b32decode(seedstr) {
|
|
|
|
|
// RFC4648
|
|
|
|
|
var i, buf = 0, bitcount = 0, retstr = "";
|
|
|
|
|
for (i in seedstr) {
|
2021-10-31 14:15:25 +00:00
|
|
|
var c = "ABCDEFGHIJKLMNOPQRSTUVWXYZ234567".indexOf(seedstr.charAt(i).toUpperCase(), 0);
|
2021-10-29 13:37:38 +00:00
|
|
|
if (c != -1) {
|
|
|
|
|
buf <<= 5;
|
|
|
|
|
buf |= c;
|
|
|
|
|
bitcount += 5;
|
|
|
|
|
if (bitcount >= 8) {
|
|
|
|
|
retstr += String.fromCharCode(buf >> (bitcount - 8));
|
|
|
|
|
buf &= (0xFF >> (16 - bitcount));
|
|
|
|
|
bitcount -= 8;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (bitcount > 0) {
|
|
|
|
|
retstr += String.fromCharCode(buf << (8 - bitcount));
|
|
|
|
|
}
|
|
|
|
|
var retbuf = new Uint8Array(retstr.length);
|
|
|
|
|
for (i in retstr) {
|
|
|
|
|
retbuf[i] = retstr.charCodeAt(i);
|
|
|
|
|
}
|
|
|
|
|
return retbuf;
|
|
|
|
|
}
|
|
|
|
|
function do_hmac(key, message, algo) {
|
2021-11-09 15:24:05 +00:00
|
|
|
var a = algos[algo];
|
2021-10-29 13:37:38 +00:00
|
|
|
// RFC2104
|
2021-11-09 15:24:05 +00:00
|
|
|
if (key.length > a.blksz) {
|
|
|
|
|
key = a.sha(key);
|
2021-10-29 13:37:38 +00:00
|
|
|
}
|
2021-11-09 15:24:05 +00:00
|
|
|
var istr = new Uint8Array(a.blksz + message.length);
|
|
|
|
|
var ostr = new Uint8Array(a.blksz + a.retsz);
|
|
|
|
|
for (var i = 0; i < a.blksz; ++i) {
|
2021-10-31 14:15:25 +00:00
|
|
|
var c = (i < key.length) ? key[i] : 0;
|
2021-10-29 13:37:38 +00:00
|
|
|
istr[i] = c ^ 0x36;
|
|
|
|
|
ostr[i] = c ^ 0x5C;
|
|
|
|
|
}
|
2021-11-09 15:24:05 +00:00
|
|
|
istr.set(message, a.blksz);
|
|
|
|
|
ostr.set(a.sha(istr), a.blksz);
|
|
|
|
|
var ret = a.sha(ostr);
|
2021-10-29 13:37:38 +00:00
|
|
|
// RFC4226 dynamic truncation
|
|
|
|
|
var v = new DataView(ret, ret[ret.length - 1] & 0x0F, 4);
|
|
|
|
|
return v.getUint32(0) & 0x7FFFFFFF;
|
|
|
|
|
}
|
|
|
|
|
function hotp_timed(seed, digits, period, algo) {
|
|
|
|
|
// RFC6238
|
|
|
|
|
var d = new Date();
|
|
|
|
|
var seconds = Math.floor(d.getTime() / 1000);
|
|
|
|
|
var tick = Math.floor(seconds / period);
|
|
|
|
|
var msg = new Uint8Array(8);
|
|
|
|
|
var v = new DataView(msg.buffer);
|
|
|
|
|
v.setUint32(0, tick >> 16 >> 16);
|
|
|
|
|
v.setUint32(4, tick & 0xFFFFFFFF);
|
|
|
|
|
var hash = do_hmac(b32decode(seed), msg, algo.toUpperCase());
|
|
|
|
|
var ret = "" + hash % Math.pow(10, digits);
|
|
|
|
|
while (ret.length < digits) {
|
|
|
|
|
ret = "0" + ret;
|
|
|
|
|
}
|
|
|
|
|
return {hotp:ret, next:(tick + 1) * period * 1000};
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
var state = {
|
|
|
|
|
listy: 0,
|
|
|
|
|
curtoken:-1,
|
|
|
|
|
nextTime:0,
|
|
|
|
|
otp:"",
|
|
|
|
|
rem:0
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
function drawToken(id, r) {
|
|
|
|
|
var x1 = r.x;
|
|
|
|
|
var y1 = r.y;
|
|
|
|
|
var x2 = r.x + r.w - 1;
|
|
|
|
|
var y2 = r.y + r.h - 1;
|
|
|
|
|
var ylabel;
|
2021-10-31 14:15:25 +00:00
|
|
|
g.setClipRect(Math.max(x1, Bangle.appRect.x ), Math.max(y1, Bangle.appRect.y ),
|
|
|
|
|
Math.min(x2, Bangle.appRect.x2), Math.min(y2, Bangle.appRect.y2));
|
2021-10-29 13:37:38 +00:00
|
|
|
if (id == state.curtoken) {
|
|
|
|
|
// current token
|
|
|
|
|
g.setColor(g.theme.fgH);
|
|
|
|
|
g.setBgColor(g.theme.bgH);
|
2021-11-09 15:24:05 +00:00
|
|
|
g.setFont("Vector", 16);
|
2021-10-29 13:37:38 +00:00
|
|
|
// center just below top line
|
|
|
|
|
g.setFontAlign(0, -1, 0);
|
2021-11-09 15:24:05 +00:00
|
|
|
ylabel = y1;
|
2021-10-29 13:37:38 +00:00
|
|
|
} else {
|
|
|
|
|
g.setColor(g.theme.fg);
|
|
|
|
|
g.setBgColor(g.theme.bg);
|
2021-11-09 15:24:05 +00:00
|
|
|
g.setFont("Vector", 30);
|
2021-10-29 13:37:38 +00:00
|
|
|
// center in box
|
|
|
|
|
g.setFontAlign(0, 0, 0);
|
|
|
|
|
ylabel = (y1 + y2) / 2;
|
|
|
|
|
}
|
|
|
|
|
g.clearRect(x1, y1, x2, y2);
|
2021-11-09 15:24:05 +00:00
|
|
|
g.drawString(tokens[id].label, (x1 + x2) / 2, ylabel, false);
|
2021-10-29 13:37:38 +00:00
|
|
|
if (id == state.curtoken) {
|
|
|
|
|
// digits just below label
|
2021-11-09 15:24:05 +00:00
|
|
|
g.setFont("Vector", 30);
|
|
|
|
|
g.drawString(state.otp, (x1 + x2) / 2, y1 + 16, false);
|
2021-10-29 13:37:38 +00:00
|
|
|
// draw progress bar
|
2021-11-02 04:47:59 +00:00
|
|
|
let xr = Math.floor(Bangle.appRect.w * state.rem / tokens[id].period);
|
2021-10-29 13:37:38 +00:00
|
|
|
g.fillRect(x1, y2 - 4, xr, y2 - 1);
|
|
|
|
|
}
|
|
|
|
|
// shaded lines top and bottom
|
|
|
|
|
if (g.theme.dark) {
|
|
|
|
|
g.setColor(0.25, 0.25, 0.25);
|
|
|
|
|
} else {
|
|
|
|
|
g.setColor(0.75, 0.75, 0.75);
|
|
|
|
|
}
|
|
|
|
|
g.drawLine(x1, y1, x2, y1);
|
|
|
|
|
g.drawLine(x1, y2, x2, y2);
|
2021-10-31 14:15:25 +00:00
|
|
|
g.setClipRect(0, 0, g.getWidth(), g.getHeight());
|
2021-10-29 13:37:38 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
function draw() {
|
|
|
|
|
if (state.curtoken != -1) {
|
|
|
|
|
var t = tokens[state.curtoken];
|
|
|
|
|
var d = new Date();
|
|
|
|
|
if (d.getTime() > state.nextTime) {
|
|
|
|
|
try {
|
|
|
|
|
var r = hotp_timed(t.secret, t.digits, t.period, t.algorithm);
|
|
|
|
|
state.nextTime = r.next;
|
|
|
|
|
state.otp = r.hotp;
|
|
|
|
|
} catch (err) {
|
|
|
|
|
state.nextTime = 0;
|
|
|
|
|
state.otp = "Not supported";
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
state.rem = Math.max(0, Math.floor((state.nextTime - d.getTime()) / 1000));
|
|
|
|
|
}
|
|
|
|
|
if (tokens.length > 0) {
|
|
|
|
|
var drewcur = false;
|
|
|
|
|
var id = Math.floor(state.listy / tokenentryheight);
|
2021-10-31 14:15:25 +00:00
|
|
|
var y = id * tokenentryheight + Bangle.appRect.y - state.listy;
|
2021-11-02 04:47:59 +00:00
|
|
|
while (id < tokens.length && y < Bangle.appRect.y2) {
|
2021-10-31 14:15:25 +00:00
|
|
|
drawToken(id, {x:Bangle.appRect.x, y:y, w:Bangle.appRect.w, h:tokenentryheight});
|
2021-10-29 13:37:38 +00:00
|
|
|
if (id == state.curtoken && state.nextTime != 0) {
|
|
|
|
|
drewcur = true;
|
|
|
|
|
}
|
|
|
|
|
id += 1;
|
|
|
|
|
y += tokenentryheight;
|
|
|
|
|
}
|
|
|
|
|
if (drewcur) {
|
|
|
|
|
if (state.drawtimer) {
|
|
|
|
|
clearTimeout(state.drawtimer);
|
|
|
|
|
}
|
|
|
|
|
state.drawtimer = setTimeout(draw, 1000);
|
|
|
|
|
}
|
|
|
|
|
} else {
|
2021-11-09 15:24:05 +00:00
|
|
|
g.setFont("Vector", 30);
|
2021-10-29 13:37:38 +00:00
|
|
|
g.setFontAlign(0, 0, 0);
|
2021-11-02 04:47:59 +00:00
|
|
|
g.drawString("No tokens", Bangle.appRect.x + Bangle.appRect.w / 2,Bangle.appRect.y + Bangle.appRect.h / 2, false);
|
2021-10-29 13:37:38 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
function onTouch(zone, e) {
|
2021-10-31 14:15:25 +00:00
|
|
|
var id = Math.floor((state.listy + (e.y - Bangle.appRect.y)) / tokenentryheight);
|
2021-10-29 13:37:38 +00:00
|
|
|
if (id == state.curtoken) {
|
|
|
|
|
id = -1;
|
|
|
|
|
}
|
|
|
|
|
if (state.curtoken != id) {
|
|
|
|
|
if (id != -1) {
|
|
|
|
|
var y = id * tokenentryheight - state.listy;
|
|
|
|
|
if (y < 0) {
|
|
|
|
|
state.listy += y;
|
|
|
|
|
y = 0;
|
|
|
|
|
}
|
|
|
|
|
y += tokenentryheight;
|
2021-10-31 14:15:25 +00:00
|
|
|
if (y > Bangle.appRect.h) {
|
|
|
|
|
state.listy += (y - Bangle.appRect.h);
|
2021-10-29 13:37:38 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
state.nextTime = 0;
|
|
|
|
|
state.curtoken = id;
|
|
|
|
|
draw();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
function onDrag(e) {
|
|
|
|
|
if (e.x > g.getWidth() || e.y > g.getHeight()) return;
|
|
|
|
|
if (e.dx == 0 && e.dy == 0) return;
|
2021-11-02 04:47:59 +00:00
|
|
|
var newy = Math.min(state.listy - e.dy, tokens.length * tokenentryheight - Bangle.appRect.h);
|
|
|
|
|
newy = Math.max(0, newy);
|
2021-10-29 13:37:38 +00:00
|
|
|
if (newy != state.listy) {
|
|
|
|
|
state.listy = newy;
|
|
|
|
|
draw();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
function onSwipe(e) {
|
|
|
|
|
if (e == 1) {
|
|
|
|
|
Bangle.showLauncher();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Bangle.on('touch', onTouch);
|
|
|
|
|
Bangle.on('drag' , onDrag );
|
|
|
|
|
Bangle.on('swipe', onSwipe);
|
2021-10-31 14:15:25 +00:00
|
|
|
Bangle.loadWidgets();
|
2021-10-29 13:37:38 +00:00
|
|
|
|
|
|
|
|
// Clear the screen once, at startup
|
|
|
|
|
g.clear();
|
|
|
|
|
draw();
|
2021-10-31 14:15:25 +00:00
|
|
|
Bangle.drawWidgets();
|
