package bitwarden import ( "context" "encoding/base64" "time" "github.com/quexten/goldwarden/agent/bitwarden/crypto" "github.com/quexten/goldwarden/agent/config" ) type CreateAuthRequestData struct { AccessCode string `json:"accessCode"` DeviceIdentifier string `json:"deviceIdentifier"` Email string `json:"email"` PublicKey string `json:"publicKey"` Type int `json:"type"` } type AuthRequestData struct { CreationDate time.Time `json:"creationDate"` ID string `json:"id"` Key string `json:"key"` MasterPasswordHash string `json:"masterPasswordHash"` Object string `json:"object"` Origin string `json:"origin"` PublicKey string `json:"publicKey"` RequestApproved bool `json:"requestApproved"` RequestDeviceType string `json:"requestDeviceType"` RequestIpAddress string `json:"requestIpAddress"` ResponseDate time.Time `json:"responseDate"` } type AuthRequestResponseData struct { DeviceIdentifier string `json:"deviceIdentifier"` Key string `json:"key"` MasterPasswordHash string `json:"masterPasswordHash"` Requestapproved bool `json:"requestApproved"` } func GetAuthRequest(ctx context.Context, requestUUID string, config *config.Config) (AuthRequestData, error) { var authRequest AuthRequestData err := authenticatedHTTPGet(ctx, config.ConfigFile.ApiUrl+"/auth-requests/"+requestUUID, &authRequest) return authRequest, err } func GetAuthRequests(ctx context.Context, config *config.Config) ([]AuthRequestData, error) { var authRequests []AuthRequestData err := authenticatedHTTPGet(ctx, config.ConfigFile.ApiUrl+"/auth-requests", &authRequests) return authRequests, err } func PutAuthRequest(ctx context.Context, requestUUID string, authRequest AuthRequestData, config *config.Config) error { var response interface{} err := authenticatedHTTPPut(ctx, config.ConfigFile.ApiUrl+"/auth-requests/"+requestUUID, &response, authRequest) return err } func CreateAuthResponse(ctx context.Context, authRequest AuthRequestData, keyring *crypto.Keyring, config *config.Config) (AuthRequestResponseData, error) { var authRequestResponse AuthRequestResponseData userSymmetricKey, err := config.GetUserSymmetricKey() if err != nil { return authRequestResponse, err } //masterPasswordHash, err := config.GetMasterPasswordHash() //if err != nil { // return authRequestResponse, err //} publicKey, err := base64.StdEncoding.DecodeString(authRequest.PublicKey) requesterKey, err := crypto.MemoryAssymmetricEncryptionKeyFromBytes(publicKey) encryptedUserSymmetricKey, err := crypto.EncryptWithAsymmetric(userSymmetricKey, requesterKey) if err != nil { panic(err) } //encryptedMasterPasswordHash, err := crypto.EncryptWithAsymmetric(masterPasswordHash, requesterKey) //if err != nil { // panic(err) //} err = authenticatedHTTPPut(ctx, config.ConfigFile.ApiUrl+"/auth-requests/"+authRequest.ID, &authRequestResponse, AuthRequestResponseData{ DeviceIdentifier: config.ConfigFile.DeviceUUID, Key: string(encryptedUserSymmetricKey), Requestapproved: true, }) return authRequestResponse, err } func CreateAuthRequest(ctx context.Context, code string, deviceIdentifier string, email string, publicKey string, config *config.Config) (AuthRequestData, error) { var authrequestData AuthRequestData err := authenticatedHTTPPost(ctx, config.ConfigFile.ApiUrl+"/auth-requests/", &authrequestData, &CreateAuthRequestData{ AccessCode: code, DeviceIdentifier: deviceIdentifier, Email: email, PublicKey: publicKey, Type: 0, }) if err != nil { return AuthRequestData{}, err } else { return authrequestData, nil } } func GetAuthResponse(ctx context.Context, code string, requestUUID string, config *config.Config) (AuthRequestData, error) { var authRequest AuthRequestData err := authenticatedHTTPGet(ctx, config.ConfigFile.ApiUrl+"/auth-requests/"+requestUUID+"/response?code="+code, &authRequest) return authRequest, err }