jappixmini/lib.js

   1 function jappixmini_addon_xor(str1, str2) {
   2     if (str1.length != str2.length) throw "not same length";
   3
   4     encoded = "";
   5
   6     for (i=0; i<str1.length;i++) {
   7         var a = str1.charCodeAt(i);
   8         var b = str2.charCodeAt(i);
   9         var c = a ^ b;
  10
  11         encoded += String.fromCharCode(c);
  12     }
  13
  14     return encoded;
  15 }
  16
  17 function jappixmini_addon_set_client_secret(password) {
  18         if (!password) return;
  19
  20         salt1 = "h8doCRekWto0njyQohKpdx6BN0UTyC6N";
  21         salt2 = "jdX8OwFC1kWAq3s9uOyAcE8g3UNNO5t3";
  22
  23         client_secret1 = str_sha1(salt1+password);
  24         client_secret2 = str_sha1(salt2+password);
  25         client_secret = client_secret1 + client_secret2;
  26
  27         setPersistent('jappix-mini', 'client-secret', client_secret);
  28         console.log("client secret set");
  29 }
  30
  31 function jappixmini_addon_get_client_secret(callback) {
  32         client_secret = getPersistent('jappix-mini', 'client-secret');
  33         if (client_secret===null) {
  34                 div = document.getElementById("#jappixmini-password-query-div");
  35
  36                 if (!div) {
  37                         div = $('<div id="jappixmini-password-query-div" style="position:fixed;padding:1em;background-color:#F00;color:#fff;top:50px;left:50px;">Retype your Friendica password for chatting:<br></div>');
  38
  39                         input = $('<input type="password" id="jappixmini-password-query-input">')
  40                         div.append(input);
  41
  42                         button = $('<input type="button" value="OK" id="jappixmini-password-query-button">');
  43                         div.append(button);
  44
  45                         $("body").append(div);
  46                 }
  47
  48                 button.click(function(){
  49                         password = $("#jappixmini-password-query-input").val();
  50                         jappixmini_addon_set_client_secret(password);
  51                         div.remove();
  52
  53                         client_secret = getPersistent('jappix-mini', 'client-secret');
  54                         callback(client_secret);
  55                 });
  56         }
  57         else {
  58                 callback(client_secret);
  59         }
  60 }
  61
  62 function jappixmini_addon_encrypt_password(password, callback) {
  63         jappixmini_addon_get_client_secret(function(client_secret){
  64                 // add \0 to password until it has the same length as secret
  65                 if (password.length>client_secret.length-1) throw "password too long";
  66                 while (password.length<client_secret.length) {
  67                         password += "\0";
  68                 }
  69
  70                 // xor password with secret
  71                 encrypted_password = jappixmini_addon_xor(client_secret, password);
  72
  73                 encrypted_password = encodeURI(encrypted_password)
  74                 callback(encrypted_password);
  75         });
  76 }
  77
  78 function jappixmini_addon_decrypt_password(encrypted_password, callback) {
  79         encrypted_password = decodeURI(encrypted_password);
  80
  81         jappixmini_addon_get_client_secret(function(client_secret){
  82                 // xor password with secret
  83                 password = jappixmini_addon_xor(client_secret, encrypted_password);
  84
  85                 // remove \0
  86                 first_null = password.indexOf("\0")
  87                 if (first_null==-1) throw "Decrypted password does not contain \\0";
  88                 password = password.substr(0, first_null);
  89
  90                 callback(password);
  91         });
  92 }
  93
  94 function jappixmini_manage_roster(contacts, autoapprove, autosubscribe) {
  95         // listen for subscriptions
  96         con.registerHandler('presence',function(presence){
  97                 var type = presence.getType();
  98                 if (type != "subscribe") return;
  99
 100                 var from = fullXID(getStanzaFrom(presence));
 101                 var xid = bareXID(from);
 102                 var pstatus = presence.getStatus();
 103
 104                 if (autoapprove && contacts[xid]!==undefined) {
 105                         // approve known address
 106                         approve = true;
 107                         console.log("Approve known Friendica contact "+xid+".");
 108                 }
 109                 else if (autoapprove && pstatus && pstatus.indexOf("Friendica")!=-1) {
 110                         // Unknown address claims to be a Friendica contact.
 111                         // This is probably because the other side knows our
 112                         // address, but we do not know the other side yet.
 113                         // But it's only a matter of time, so wait - do not
 114                         // approve yet and do not annoy the user by asking.
 115                         approve = false;
 116                         console.log("Do not approve unknown Friendica contact "+xid+" - wait instead.");
 117                 }
 118                 else {
 119                         // In all other cases, ask the user.
 120                         message = "Accept "+xid+" for chat?";
 121                         if (pstatus) message += "\n\nStatus:\n"+pstatus;
 122                         approve = confirm(message);
 123                 }
 124
 125                 if (approve) {
 126                         acceptSubscribe(xid, contacts[xid]);
 127                         console.log("Accepted "+xid+" for chat.");
 128                 }
 129         });
 130
 131         // autosubscribe
 132         if (!autosubscribe) return;
 133
 134         var get_roster = new JSJaCIQ();
 135         get_roster.setType('get');
 136         get_roster.setQuery(NS_ROSTER);
 137
 138         con.send(get_roster, function(iq){
 139                 var handleXML = iq.getQuery();
 140
 141                 // filter out contacts that are already in the roster
 142                 $(handleXML).find('item').each(function() {
 143                         xid = $(this).attr("jid");
 144                         name = $(this).attr("name");
 145                         subscription = $(this).attr("subscription");
 146                         console.log(xid+" "+subscription);
 147
 148                         // ignore accounts not in the list
 149                         if (contacts[xid]===undefined) return;
 150
 151                         // TODO: add to Friendica group
 152
 153                         // TODO: unblock and authorize if necessary
 154
 155                         // remove from list
 156                         delete contacts[xid];
 157                 });
 158
 159                 // go through remaining contacts
 160                 for (var xid in contacts) {if(!contacts.hasOwnProperty(xid)) continue;
 161                         // subscribe
 162                         var presence = new JSJaCPresence();
 163                         presence.setTo(xid);
 164                         presence.setType("subscribe");
 165
 166                         // must contain the word "~Friendica" so the other side knows
 167                         // how to handle this
 168                         presence.setStatus("I'm "+MINI_NICKNAME+" from ~Friendica.\n[machine-generated message]");
 169
 170                         con.send(presence);
 171                         console.log("subscribed to "+xid);
 172
 173                         // add to roster
 174                         var iq = new JSJaCIQ();
 175                         iq.setType('set');
 176                         var iqQuery = iq.setQuery(NS_ROSTER);
 177                         var item = iqQuery.appendChild(iq.buildNode('item', {'xmlns': NS_ROSTER, 'jid': xid}));
 178                         item.setAttribute('name', contacts[xid]);
 179                         item.appendChild(iq.buildNode('group', {'xmlns': NS_ROSTER}, "Friendica"));
 180                         con.send(iq);
 181                         console.log("added to roster "+xid);
 182                 }
 183         });
 184 }
 185
 186 function jappixmini_addon_subscribe() {
 187         if (!window.con) {
 188                 alert("Not connected.");
 189                 return;
 190         }
 191
 192         xid = prompt("Jabber address");
 193         sendSubscribe(xid, "subscribe");
 194 }
 195
 196 function jappixmini_addon_start(server, username, proxy, bosh, encrypted, password, nickname, contacts, autoapprove, autosubscribe) {
 197     handler = function(password){
 198         // check if settings have changed, reinitialize jappix mini if this is the case
 199         settings_identifier = str_sha1(server);
 200         settings_identifier += str_sha1(username);
 201         settings_identifier += str_sha1(proxy);
 202         settings_identifier += str_sha1(bosh);
 203         settings_identifier += str_sha1(password);
 204         settings_identifier += str_sha1(nickname);
 205
 206         saved_identifier = getDB("jappix-mini", "settings_identifier");
 207         if (saved_identifier != settings_identifier) removeDB('jappix-mini', 'dom');
 208         setDB("jappix-mini", "settings_identifier", settings_identifier);
 209
 210         // set HOST_BOSH
 211         if (proxy)
 212                 HOST_BOSH = proxy+"?host_bosh="+encodeURI(bosh);
 213         else
 214                 HOST_BOSH = bosh;
 215
 216         // start jappix mini
 217         MINI_NICKNAME = nickname;
 218         LOCK_HOST = "off";
 219         console.log("launchMini");
 220         launchMini(true, false, server, username, password);
 221
 222         // increase priority over other Jabber clients
 223         priority = 101;
 224         sendPresence(null,null,priority);
 225
 226         jappixmini_manage_roster(contacts, autoapprove, autosubscribe)
 227     }
 228
 229     // decrypt password if necessary
 230     if (encrypted)
 231         jappixmini_addon_decrypt_password(password, handler);
 232     else
 233         handler(password);
 234 }