Merge pull request #6 from enxoco/features/akeyless-encryption

Added akeyless api integration
Merge pull request #5 from enxoco/features/docker
2023-08-31 21:18:31 -04:00 · 2023-08-31 21:18:14 -04:00 · 2023-08-31 17:14:13 -04:00 · 2023-08-31 16:17:56 -04:00 · 2023-08-27 20:27:01 -04:00
12 changed files with 127 additions and 11 deletions
--- a/.dockerignore
+++ b/.dockerignore
@ -0,0 +1 @@
+node_modules/*
--- a/.env.example
+++ b/.env.example
@ -0,0 +1,3 @@
+VITE_AKEYLESS_ACCESS_ID=""
+VITE_AKEYLESS_ACCESS_KEY=""
+VITE_AKEYLESS_KEY_PATH=""
--- a/.gitignore
+++ b/.gitignore
@ -22,4 +22,4 @@ dist-ssr
 *.njsproj
 *.sln
 *.sw?
-tokens.ts
+.env
--- a/9
+++ b/9
@ -0,0 +1,9 @@
+FROM node:18 AS Build
+WORKDIR /app/node/
+COPY . .
+RUN yarn
+RUN yarn build
+
+FROM nginx AS Production
+WORKDIR /usr/share/nginx/html
+COPY --from=Build /app/node/dist /usr/share/nginx/html/
--- a/src/env.d.ts
+++ b/src/env.d.ts
@ -0,0 +1,12 @@
+/// <reference types="vite/client" />
+
+interface ImportMetaEnv {
+    readonly VITE_AKEYLESS_KEY_PATH: string
+    readonly VITE_AKEYLESS_ACCESS_ID: string
+    readonly VITE_AKEYLESS_ACCESS_KEY: string
+    // more env variables...
+  }
+  
+  interface ImportMeta {
+    readonly env: ImportMetaEnv
+  }
--- a/src/main.ts
+++ b/src/main.ts
@ -2,7 +2,4 @@ import "./style.css";

 import { tokenList } from "./tokenList";
 import rootDiv from "./utils/root";
-
-rootDiv!.innerHTML = `
-  ${tokenList()}
-`;
+rootDiv!.innerHTML = await tokenList();
--- a/src/toast.ts
+++ b/src/toast.ts
@ -2,6 +2,11 @@ export function toast(element: HTMLDivElement, message: string) {
    // Target our predefined DIV that will hold toast messages.
    const toastDiv = element.getElementsByClassName('toast')
 
+    const interval = setInterval(() => {
+        toastDiv[0].remove()
+        clearInterval(interval)
+    }, 5000)
+
    // If we currently have a toast displayed, let's remove it from the DOM.
    if (toastDiv && toastDiv.length != 0) {
        for (const el of toastDiv){
--- a/src/token.ts
+++ b/src/token.ts
@ -1,8 +1,7 @@
 import totp from 'totp-generator'
 const period = 30
 const digits = 6
-
-export function displayToken(secret) {
+export function displayToken(secret: string) {
  const token = totp(secret.replace(/ /g, '').trim(), {
    digits,
    period,
--- a/src/tokenList.ts
+++ b/src/tokenList.ts
@ -1,8 +1,9 @@
-import { displayTokenListItem } from "./TokenListItem";
-import { tokens } from "./tokens";
+import { displayTokenListItem } from "./tokenListItem";
+import { Token, decryptTokensWithAkeyless } from "./utils/api";

-export function tokenList() {
-  return `<form id="tokens">${tokens.map((token) =>
+export async function tokenList() {
+  const decryptedTokens = (await decryptTokensWithAkeyless(import.meta.env.VITE_AKEYLESS_KEY_PATH))
+  return `<form id="tokens">${decryptedTokens.map((token: Token) =>
    displayTokenListItem(token.account, token.secret)
  )}</form>`;
 }
--- a/src/tokens.ts
+++ b/src/tokens.ts
@ -0,0 +1 @@
+export const tokens = "AQAAAAEIAd3tVg6Vbzp/2fXBP6JdFoK7A5fu5n8daqwUzGKK3CgAYW+SujAoXcK5R3QgGkUp34Vi/DEtjOU9WNd3vGIMZAUQhngRqDS0rfK3i8kN4/C5oBjhkYhWKY6ABbJtmnI9p4EzfnC5RkZlSpHFNK6yAxk2jJVAFU6ynXkqVZKLamtf+aViyYyX8wI="
--- a/src/utils/api.ts
+++ b/src/utils/api.ts
@ -0,0 +1,68 @@
+import { tokens } from "../tokens";
+
+export interface TokenResponse {
+    token: string;
+    creds: null;
+}
+
+export interface Token {
+    account: string;
+    secret: string;
+  }
+
+export interface GenericAPIResponse {
+    result: string;
+}
+
+const baseUrl = 'https://api.akeyless.io'
+async function fetchAkeylessAuthToken(): Promise<TokenResponse> {
+
+    const options = {
+        method: 'POST',
+        headers: {accept: 'application/json', 'content-type': 'application/json'},
+        body: JSON.stringify({
+          'access-type': 'access_key',
+          'gcp-audience': 'akeyless.io',
+          json: false,
+          'access-id': import.meta.env.VITE_AKEYLESS_ACCESS_ID,
+          'access-key': import.meta.env.VITE_AKEYLESS_ACCESS_KEY
+        })
+      };
+      const token = await fetch(`${baseUrl}/auth`, options)
+      return await token.json()
+
+}
+
+async function encryptTokensWithAkeyless(encryptionKeyName: string): Promise<GenericAPIResponse>{
+    const options = {
+        method: 'POST',
+        headers: {accept: 'application/json', 'content-type': 'application/json'},
+        body: JSON.stringify({
+          json: false,
+          'key-name': encryptionKeyName,
+          plaintext: JSON.stringify(tokens),
+          token: (await fetchAkeylessAuthToken()).token
+        })
+      };
+      
+      const response = await fetch(`${baseUrl}/encrypt`, options)
+      return await response.json()
+}
+
+async function decryptTokensWithAkeyless(encryptionKeyName: string): Promise<Token[]>{
+    const options = {
+        method: 'POST',
+        headers: {accept: 'application/json', 'content-type': 'application/json'},
+        body: JSON.stringify({
+          json: false,
+          'key-name': encryptionKeyName,
+          ciphertext: tokens,
+          token: (await fetchAkeylessAuthToken()).token
+        })
+      };
+      
+      const response = await fetch(`${baseUrl}/decrypt`, options)
+      const decodedTokens = await response.json()
+      return JSON.parse(decodedTokens.result)
+}
+export {fetchAkeylessAuthToken, encryptTokensWithAkeyless, decryptTokensWithAkeyless}
--- a/tsconfig.json
+++ b/tsconfig.json
@ -0,0 +1,20 @@
+{
+    "compilerOptions": {
+      "target": "ESNext",
+      "lib": ["DOM", "DOM.Iterable", "ESNext"],
+      "types": [],
+      "allowJs": false,
+      "skipLibCheck": false,
+      "esModuleInterop": false,
+      "allowSyntheticDefaultImports": true,
+      "strict": true,
+      "forceConsistentCasingInFileNames": true,
+      "module": "ESNext",
+      "moduleResolution": "Node",
+      "resolveJsonModule": true,
+      "isolatedModules": true,
+      "noEmit": true,
+      "jsx": "react"
+    },
+    "include": ["src"]
+  }
Author	SHA1	Message	Date
enxoco	fe8ea62a98	Merge pull request #6 from enxoco/features/akeyless-encryption Added akeyless api integration	2023-08-31 21:18:31 -04:00
enxoco	3b7f4d025d	Merge pull request #5 from enxoco/features/docker Added docker config	2023-08-31 21:18:14 -04:00
Mike Conrad	80737a2927	Added akeyless api integration	2023-08-31 17:14:13 -04:00
Mike Conrad	e0d4cb41b0	Added docker config	2023-08-31 16:17:56 -04:00
enxoco	c1b9a1fa41	Merge pull request #4 from enxoco/features/toast Added toast and copy to clipboard functionality	2023-08-27 20:27:01 -04:00
				`@ -0,0 +1 @@`
				`export const tokens = "AQAAAAEIAd3tVg6Vbzp/2fXBP6JdFoK7A5fu5n8daqwUzGKK3CgAYW+SujAoXcK5R3QgGkUp34Vi/DEtjOU9WNd3vGIMZAUQhngRqDS0rfK3i8kN4/C5oBjhkYhWKY6ABbJtmnI9p4EzfnC5RkZlSpHFNK6yAxk2jJVAFU6ynXkqVZKLamtf+aViyYyX8wI="`