diff options
Diffstat (limited to 'server/helpers')
-rw-r--r-- | server/helpers/peertube-crypto.js | 38 |
1 files changed, 28 insertions, 10 deletions
diff --git a/server/helpers/peertube-crypto.js b/server/helpers/peertube-crypto.js index 0f1e02ad6..ef6808d5c 100644 --- a/server/helpers/peertube-crypto.js +++ b/server/helpers/peertube-crypto.js | |||
@@ -4,6 +4,7 @@ const crypto = require('crypto') | |||
4 | const bcrypt = require('bcrypt') | 4 | const bcrypt = require('bcrypt') |
5 | const fs = require('fs') | 5 | const fs = require('fs') |
6 | const openssl = require('openssl-wrapper') | 6 | const openssl = require('openssl-wrapper') |
7 | const pathUtils = require('path') | ||
7 | 8 | ||
8 | const constants = require('../initializers/constants') | 9 | const constants = require('../initializers/constants') |
9 | const logger = require('./logger') | 10 | const logger = require('./logger') |
@@ -13,6 +14,8 @@ const peertubeCrypto = { | |||
13 | comparePassword, | 14 | comparePassword, |
14 | createCertsIfNotExist, | 15 | createCertsIfNotExist, |
15 | cryptPassword, | 16 | cryptPassword, |
17 | getMyPrivateCert, | ||
18 | getMyPublicCert, | ||
16 | sign | 19 | sign |
17 | } | 20 | } |
18 | 21 | ||
@@ -55,7 +58,8 @@ function sign (data) { | |||
55 | sign.update(dataString, 'utf8') | 58 | sign.update(dataString, 'utf8') |
56 | 59 | ||
57 | // TODO: make async | 60 | // TODO: make async |
58 | const myKey = fs.readFileSync(constants.CONFIG.STORAGE.CERT_DIR + 'peertube.key.pem') | 61 | const certPath = pathUtils.join(constants.CONFIG.STORAGE.CERT_DIR, constants.PRIVATE_CERT_NAME) |
62 | const myKey = fs.readFileSync(certPath) | ||
59 | const signature = sign.sign(myKey, constants.SIGNATURE_ENCODING) | 63 | const signature = sign.sign(myKey, constants.SIGNATURE_ENCODING) |
60 | 64 | ||
61 | return signature | 65 | return signature |
@@ -91,6 +95,16 @@ function cryptPassword (password, callback) { | |||
91 | }) | 95 | }) |
92 | } | 96 | } |
93 | 97 | ||
98 | function getMyPrivateCert (callback) { | ||
99 | const certPath = pathUtils.join(constants.CONFIG.STORAGE.CERT_DIR, constants.PRIVATE_CERT_NAME) | ||
100 | fs.readFile(certPath, 'utf8', callback) | ||
101 | } | ||
102 | |||
103 | function getMyPublicCert (callback) { | ||
104 | const certPath = pathUtils.join(constants.CONFIG.STORAGE.CERT_DIR, constants.PUBLIC_CERT_NAME) | ||
105 | fs.readFile(certPath, 'utf8', callback) | ||
106 | } | ||
107 | |||
94 | // --------------------------------------------------------------------------- | 108 | // --------------------------------------------------------------------------- |
95 | 109 | ||
96 | module.exports = peertubeCrypto | 110 | module.exports = peertubeCrypto |
@@ -98,7 +112,8 @@ module.exports = peertubeCrypto | |||
98 | // --------------------------------------------------------------------------- | 112 | // --------------------------------------------------------------------------- |
99 | 113 | ||
100 | function certsExist (callback) { | 114 | function certsExist (callback) { |
101 | fs.exists(constants.CONFIG.STORAGE.CERT_DIR + 'peertube.key.pem', function (exists) { | 115 | const certPath = pathUtils.join(constants.CONFIG.STORAGE.CERT_DIR, constants.PRIVATE_CERT_NAME) |
116 | fs.exists(certPath, function (exists) { | ||
102 | return callback(exists) | 117 | return callback(exists) |
103 | }) | 118 | }) |
104 | } | 119 | } |
@@ -113,24 +128,27 @@ function createCerts (callback) { | |||
113 | 128 | ||
114 | logger.info('Generating a RSA key...') | 129 | logger.info('Generating a RSA key...') |
115 | 130 | ||
116 | let options = { | 131 | const privateCertPath = pathUtils.join(constants.CONFIG.STORAGE.CERT_DIR, constants.PRIVATE_CERT_NAME) |
117 | 'out': constants.CONFIG.STORAGE.CERT_DIR + 'peertube.key.pem', | 132 | const genRsaOptions = { |
133 | 'out': privateCertPath, | ||
118 | '2048': false | 134 | '2048': false |
119 | } | 135 | } |
120 | openssl.exec('genrsa', options, function (err) { | 136 | openssl.exec('genrsa', genRsaOptions, function (err) { |
121 | if (err) { | 137 | if (err) { |
122 | logger.error('Cannot create private key on this pod.') | 138 | logger.error('Cannot create private key on this pod.') |
123 | return callback(err) | 139 | return callback(err) |
124 | } | 140 | } |
141 | |||
125 | logger.info('RSA key generated.') | 142 | logger.info('RSA key generated.') |
143 | logger.info('Managing public key...') | ||
126 | 144 | ||
127 | options = { | 145 | const publicCertPath = pathUtils.join(constants.CONFIG.STORAGE.CERT_DIR, 'peertube.pub') |
128 | 'in': constants.CONFIG.STORAGE.CERT_DIR + 'peertube.key.pem', | 146 | const rsaOptions = { |
147 | 'in': privateCertPath, | ||
129 | 'pubout': true, | 148 | 'pubout': true, |
130 | 'out': constants.CONFIG.STORAGE.CERT_DIR + 'peertube.pub' | 149 | 'out': publicCertPath |
131 | } | 150 | } |
132 | logger.info('Manage public key...') | 151 | openssl.exec('rsa', rsaOptions, function (err) { |
133 | openssl.exec('rsa', options, function (err) { | ||
134 | if (err) { | 152 | if (err) { |
135 | logger.error('Cannot create public key on this pod.') | 153 | logger.error('Cannot create public key on this pod.') |
136 | return callback(err) | 154 | return callback(err) |