bitwarden-estensione-browser/src/services/audit.service.ts

import { AuditService as AuditServiceAbstraction } from '../abstractions/audit.service';
import { CryptoFunctionService } from '../abstractions/cryptoFunction.service';
import { Utils } from '../misc/utils';

const PwnedPasswordsApi = 'https://api.pwnedpasswords.com/range/';

export class AuditService implements AuditServiceAbstraction {
    constructor(private cryptoFunctionService: CryptoFunctionService) { }

    async passwordLeaked(password: string): Promise<number> {
        const hashBytes = await this.cryptoFunctionService.hash(password, 'sha1');
        const hash = Utils.fromBufferToHex(hashBytes).toUpperCase();
        const hashStart = hash.substr(0, 5);
        const hashEnding = hash.substr(5);

        const response = await fetch(PwnedPasswordsApi + hashStart);
        const leakedHashes = await response.text();
        const match = leakedHashes.split(/\r?\n/).find((v) => {
            return v.split(':')[0] === hashEnding;
        });

        return match != null ? parseInt(match.split(':')[1], 10) : 0;
    }
}
search service with lunr implementation 2018-02-28 21:15:10 +01:00			`import { AuditService as AuditServiceAbstraction } from '../abstractions/audit.service';`
implement crypto functions in more places 2018-04-22 05:55:21 +02:00			`import { CryptoFunctionService } from '../abstractions/cryptoFunction.service';`
			`import { Utils } from '../misc/utils';`
AuditService (#2) * Add AuditService. * Change sha1 to use Webcrypto. * Add interface for AuditService. * Move PwnedPasswodsApi constant outside class. * Change FromBufferToHex implementation to simpler code. * Use correct string to array function. * Change auditService interface to abstract class. Add missing type to utils. 2018-02-28 16:52:35 +01:00
			`const PwnedPasswordsApi = 'https://api.pwnedpasswords.com/range/';`

search service with lunr implementation 2018-02-28 21:15:10 +01:00			`export class AuditService implements AuditServiceAbstraction {`
implement crypto functions in more places 2018-04-22 05:55:21 +02:00			`constructor(private cryptoFunctionService: CryptoFunctionService) { }`
AuditService (#2) * Add AuditService. * Change sha1 to use Webcrypto. * Add interface for AuditService. * Move PwnedPasswodsApi constant outside class. * Change FromBufferToHex implementation to simpler code. * Use correct string to array function. * Change auditService interface to abstract class. Add missing type to utils. 2018-02-28 16:52:35 +01:00
			`async passwordLeaked(password: string): Promise<number> {`
implement crypto functions in more places 2018-04-22 05:55:21 +02:00			`const hashBytes = await this.cryptoFunctionService.hash(password, 'sha1');`
			`const hash = Utils.fromBufferToHex(hashBytes).toUpperCase();`
cleanup auditservice 2018-02-28 16:58:34 +01:00			`const hashStart = hash.substr(0, 5);`
			`const hashEnding = hash.substr(5);`
AuditService (#2) * Add AuditService. * Change sha1 to use Webcrypto. * Add interface for AuditService. * Move PwnedPasswodsApi constant outside class. * Change FromBufferToHex implementation to simpler code. * Use correct string to array function. * Change auditService interface to abstract class. Add missing type to utils. 2018-02-28 16:52:35 +01:00
cleanup auditservice 2018-02-28 16:58:34 +01:00			`const response = await fetch(PwnedPasswordsApi + hashStart);`
AuditService (#2) * Add AuditService. * Change sha1 to use Webcrypto. * Add interface for AuditService. * Move PwnedPasswodsApi constant outside class. * Change FromBufferToHex implementation to simpler code. * Use correct string to array function. * Change auditService interface to abstract class. Add missing type to utils. 2018-02-28 16:52:35 +01:00			`const leakedHashes = await response.text();`
cleanup auditservice 2018-02-28 16:58:34 +01:00			`const match = leakedHashes.split(/\r?\n/).find((v) => {`
			`return v.split(':')[0] === hashEnding;`
			`});`
AuditService (#2) * Add AuditService. * Change sha1 to use Webcrypto. * Add interface for AuditService. * Move PwnedPasswodsApi constant outside class. * Change FromBufferToHex implementation to simpler code. * Use correct string to array function. * Change auditService interface to abstract class. Add missing type to utils. 2018-02-28 16:52:35 +01:00
cleanup auditservice 2018-02-28 16:58:34 +01:00			`return match != null ? parseInt(match.split(':')[1], 10) : 0;`
AuditService (#2) * Add AuditService. * Change sha1 to use Webcrypto. * Add interface for AuditService. * Move PwnedPasswodsApi constant outside class. * Change FromBufferToHex implementation to simpler code. * Use correct string to array function. * Change auditService interface to abstract class. Add missing type to utils. 2018-02-28 16:52:35 +01:00			`}`
			`}`