@striae-org/striae 3.1.0 → 3.2.0

package/app/components/sidebar/case-export/case-export.module.css

@@ -317,164 +317,6 @@
   border-color: color-mix(in lab, var(--primary) 55%, transparent);
 }
 
-.publicKeyOverlay {
-  position: fixed;
-  inset: 0;
-  background-color: color-mix(in lab, var(--background) 60%, transparent);
-  display: flex;
-  justify-content: center;
-  align-items: center;
-  z-index: var(--zIndex5);
-  padding: var(--spaceL);
-}
-
-.publicKeyModal {
-  width: 100%;
-  max-width: 640px;
-  max-height: 90vw;
-  background: var(--backgroundLight);
-  border-radius: var(--spaceXS);
-  display: flex;
-  flex-direction: column;
-  box-shadow: 0 var(--spaceXS) var(--spaceL)
-    color-mix(in lab, var(--black) 18%, transparent);
-  overflow: hidden;
-  cursor: default;
-}
-
-.publicKeyHeader {
-  display: flex;
-  justify-content: space-between;
-  align-items: center;
-  padding: var(--spaceL);
-  border-bottom: 1px solid color-mix(in lab, var(--text) 10%, transparent);
-}
-
-.publicKeyTitle {
-  margin: 0;
-  font-size: var(--fontSizeBodyL);
-  font-weight: 600;
-  color: var(--textTitle);
-}
-
-.publicKeyContent {
-  padding: var(--spaceL);
-  flex: 1 1 auto;
-  min-height: 0;
-  display: flex;
-  flex-direction: column;
-  gap: var(--spaceM);
-  overflow-y: auto;
-  overflow-x: hidden;
-}
-
-.publicKeyDescription {
-  margin: 0;
-  font-size: var(--fontSizeBodyS);
-  color: var(--textBody);
-}
-
-.publicKeyMeta {
-  margin: 0;
-  font-size: var(--fontSizeBodyS);
-  color: var(--textTitle);
-}
-
-.publicKeyMeta span {
-  font-weight: var(--fontWeightMedium);
-}
-
-.publicKeyLabel {
-  font-size: var(--fontSizeBodyXS);
-  font-weight: var(--fontWeightMedium);
-  color: var(--textTitle);
-}
-
-.publicKeyField {
-  width: 100%;
-  max-width: 100%;
-  box-sizing: border-box;
-  min-height: 180px;
-  padding: var(--spaceM);
-  border: 1px solid color-mix(in lab, var(--text) 10%, transparent);
-  border-radius: var(--spaceXS);
-  background: color-mix(in lab, var(--background) 96%, transparent);
-  color: var(--textBody);
-  font-size: var(--fontSizeBodyXS);
-  line-height: 1.4;
-  font-family: Consolas, "Courier New", monospace;
-  resize: vertical;
-}
-
-.publicKeyHowToTitle {
-  margin: 0;
-  font-size: var(--fontSizeBodyS);
-  font-weight: var(--fontWeightMedium);
-  color: var(--textTitle);
-}
-
-.publicKeyHowToList {
-  margin: 0;
-  padding-left: var(--spaceL);
-  display: flex;
-  flex-direction: column;
-  gap: var(--spaceXS);
-  color: var(--textBody);
-  font-size: var(--fontSizeBodyS);
-}
-
-.publicKeyActions {
-  display: flex;
-  justify-content: flex-end;
-  gap: var(--spaceS);
-}
-
-.publicKeyStatus {
-  margin: 0;
-  font-size: var(--fontSizeBodyXS);
-  color: var(--textBody);
-}
-
-.publicKeyCopyButton {
-  background: transparent;
-  color: var(--primary);
-  border: 1px solid color-mix(in lab, var(--primary) 35%, transparent);
-  border-radius: var(--spaceXS);
-  padding: var(--spaceS) var(--spaceL);
-  font-size: var(--fontSizeBodyS);
-  font-weight: var(--fontWeightMedium);
-  cursor: pointer;
-  transition: all var(--durationS) var(--bezierFastoutSlowin);
-}
-
-.publicKeyCopyButton:hover:not(:disabled) {
-  background: color-mix(in lab, var(--primary) 10%, transparent);
-  border-color: color-mix(in lab, var(--primary) 55%, transparent);
-}
-
-.publicKeyCopyButton:disabled {
-  background: color-mix(in lab, var(--background) 95%, transparent);
-  color: var(--textLight);
-  border-color: color-mix(in lab, var(--text) 10%, transparent);
-  cursor: not-allowed;
-}
-
-.publicKeyCloseButton {
-  background: var(--primary);
-  color: white;
-  border: none;
-  border-radius: var(--spaceXS);
-  padding: var(--spaceS) var(--spaceL);
-  font-size: var(--fontSizeBodyS);
-  font-weight: var(--fontWeightMedium);
-  cursor: pointer;
-  transition: all var(--durationS) var(--bezierFastoutSlowin);
-}
-
-.publicKeyCloseButton:hover {
-  background: color-mix(in lab, var(--primary) 85%, var(--black));
-}
-
 .divider {
   margin: var(--spaceL) 0;
   text-align: center;

package/app/components/sidebar/case-export/case-export.tsx

@@ -2,6 +2,7 @@ import { useState, useEffect, useContext } from 'react';
 import styles from './case-export.module.css';
 import config from '~/config/config.json';
 import { AuthContext } from '~/contexts/auth.context';
+import { PublicSigningKeyModal } from '~/components/public-signing-key-modal/public-signing-key-modal';
 import { getVerificationPublicKey } from '~/utils/signature-utils';
 import { getCaseConfirmations, exportConfirmationData } from '../../actions/confirm-export';
 
@@ -86,8 +87,6 @@ export const CaseExport = ({
   const [includeImages, setIncludeImages] = useState(false);
   const [hasConfirmationData, setHasConfirmationData] = useState(false);
   const [isPublicKeyModalOpen, setIsPublicKeyModalOpen] = useState(false);
-  const [isCopyingPublicKey, setIsCopyingPublicKey] = useState(false);
-  const [publicKeyCopyMessage, setPublicKeyCopyMessage] = useState('');
   const { keyId: publicSigningKeyId, publicKeyPem } = getPublicSigningKeyDetails();
 
   // Update caseNumber when currentCaseNumber prop changes
@@ -153,22 +152,10 @@ export const CaseExport = ({
     }
   }, [isOpen]);
 
-  useEffect(() => {
-    if (!isPublicKeyModalOpen) {
-      setIsCopyingPublicKey(false);
-      setPublicKeyCopyMessage('');
-    }
-  }, [isPublicKeyModalOpen]);
-
   // Handle Escape key to close modal
   useEffect(() => {
     const handleEscapeKey = (event: KeyboardEvent) => {
-      if (event.key === 'Escape' && isOpen) {
-        if (isPublicKeyModalOpen) {
-          setIsPublicKeyModalOpen(false);
-          return;
-        }
-
+      if (event.key === 'Escape' && isOpen && !isPublicKeyModalOpen) {
         onClose();
       }
     };
@@ -261,81 +248,6 @@ export const CaseExport = ({
     }
   };
 
-  const handlePublicKeyOverlayMouseDown = (e: React.MouseEvent<HTMLDivElement>) => {
-    if (e.target === e.currentTarget) {
-      setIsPublicKeyModalOpen(false);
-    }
-  };
-
-  const handlePublicKeyOverlayKeyDown = (e: React.KeyboardEvent<HTMLDivElement>) => {
-    if (e.target !== e.currentTarget) {
-      return;
-    }
-
-    if (e.key === 'Enter' || e.key === ' ') {
-      e.preventDefault();
-      setIsPublicKeyModalOpen(false);
-    }
-  };
-
-  const copyTextWithExecCommand = (text: string): boolean => {
-    const tempTextarea = document.createElement('textarea');
-    tempTextarea.value = text;
-    tempTextarea.setAttribute('readonly', '');
-    tempTextarea.style.position = 'fixed';
-    tempTextarea.style.opacity = '0';
-    tempTextarea.style.pointerEvents = 'none';
-
-    document.body.appendChild(tempTextarea);
-    tempTextarea.select();
-
-    let copied = false;
-    try {
-      copied = document.execCommand('copy');
-    } finally {
-      document.body.removeChild(tempTextarea);
-    }
-
-    return copied;
-  };
-
-  const handleCopyPublicKey = async () => {
-    if (!publicKeyPem) {
-      setPublicKeyCopyMessage('No public signing key is configured for this environment.');
-      return;
-    }
-
-    setIsCopyingPublicKey(true);
-    setPublicKeyCopyMessage('');
-
-    try {
-      if (navigator.clipboard && typeof navigator.clipboard.writeText === 'function') {
-        await navigator.clipboard.writeText(publicKeyPem);
-        setPublicKeyCopyMessage('Public key copied to clipboard.');
-      } else {
-        const copied = copyTextWithExecCommand(publicKeyPem);
-        setPublicKeyCopyMessage(
-          copied
-            ? 'Public key copied to clipboard.'
-            : 'Copy failed. Select and copy the key manually.'
-        );
-      }
-    } catch (copyError) {
-      const copied = copyTextWithExecCommand(publicKeyPem);
-      setPublicKeyCopyMessage(
-        copied
-          ? 'Public key copied to clipboard.'
-          : 'Copy failed. Select and copy the key manually.'
-      );
-
-      if (!copied) {
-        console.error('Failed to copy public signing key:', copyError);
-      }
-    } finally {
-      setIsCopyingPublicKey(false);
-    }
-  };
-
   return (
     <div
       className={styles.overlay}
@@ -497,101 +409,12 @@ export const CaseExport = ({
         </div>
       </div>
 
-      {isPublicKeyModalOpen && (
-        <div
-          className={styles.publicKeyOverlay}
-          onMouseDown={handlePublicKeyOverlayMouseDown}
-          onKeyDown={handlePublicKeyOverlayKeyDown}
-          role="button"
-          tabIndex={0}
-          aria-label="Close public signing key dialog"
-        >
-          <div
-            className={styles.publicKeyModal}
-            role="dialog"
-            aria-modal="true"
-            aria-labelledby="publicSigningKeyTitle"
-          >
-            <div className={styles.publicKeyHeader}>
-              <h3 id="publicSigningKeyTitle" className={styles.publicKeyTitle}>
-                Striae Public Signing Key
-              </h3>
-              <button
-                type="button"
-                className={styles.closeButton}
-                onClick={() => setIsPublicKeyModalOpen(false)}
-                aria-label="Close public signing key dialog"
-              >
-                ×
-              </button>
-            </div>
-
-            <div className={styles.publicKeyContent}>
-              <p className={styles.publicKeyDescription}>
-                This key verifies digital signatures attached to Striae exports. It is safe to share for
-                independent verification.
-              </p>
-
-              {publicSigningKeyId && (
-                <p className={styles.publicKeyMeta}>
-                  Key ID: <span>{publicSigningKeyId}</span>
-                </p>
-              )}
-
-              <label htmlFor="publicSigningKey" className={styles.publicKeyLabel}>
-                Public signing key (PEM)
-              </label>
-              <textarea
-                id="publicSigningKey"
-                className={styles.publicKeyField}
-                value={publicKeyPem || 'No public signing key is configured for this environment.'}
-                readOnly
-                rows={10}
-              />
-
-              <p className={styles.publicKeyHowToTitle}>How to verify Striae exports</p>
-              <ol className={styles.publicKeyHowToList}>
-                <li>
-                  Locate signature metadata in the export (for case ZIP exports, see FORENSIC_MANIFEST.json;
-                  for confirmation exports, see metadata.signature).
-                </li>
-                <li>
-                  Use this public key with your signature verification workflow (for example OpenSSL or an
-                  internal verifier) to validate the signed payload.
-                </li>
-                <li>
-                  Trust the export only when signature verification succeeds and the key ID matches the export
-                  metadata.
-                </li>
-              </ol>
-
-              {publicKeyCopyMessage && (
-                <p className={styles.publicKeyStatus} role="status" aria-live="polite">
-                  {publicKeyCopyMessage}
-                </p>
-              )}
-
-              <div className={styles.publicKeyActions}>
-                <button
-                  type="button"
-                  className={styles.publicKeyCopyButton}
-                  onClick={handleCopyPublicKey}
-                  disabled={isCopyingPublicKey || !publicKeyPem}
-                >
-                  {isCopyingPublicKey ? 'Copying...' : 'Copy Key'}
-                </button>
-                <button
-                  type="button"
-                  className={styles.publicKeyCloseButton}
-                  onClick={() => setIsPublicKeyModalOpen(false)}
-                >
-                  Close
-                </button>
-              </div>
-            </div>
-          </div>
-        </div>
-      )}
+      <PublicSigningKeyModal
+        isOpen={isPublicKeyModalOpen}
+        onClose={() => setIsPublicKeyModalOpen(false)}
+        publicSigningKeyId={publicSigningKeyId}
+        publicKeyPem={publicKeyPem}
+      />
     </div>
   );
 };

package/app/config-example/inactivity.ts

@@ -1,5 +1,5 @@
 export const INACTIVITY_CONFIG = {
-  TIMEOUT_MINUTES: 60,  
+  TIMEOUT_MINUTES: 30,  
   WARNING_MINUTES: 5, 
   TRACKED_ACTIVITIES: [
     'mousedown',

package/app/services/audit-export.service.ts

@@ -557,7 +557,7 @@ Audit Signature: ${JSON.stringify(signaturePayload.signature)}
 Verification Instructions:
 1. Copy the entire report content above the "INTEGRITY VERIFICATION" section
 2. Calculate SHA256 hash of that content (excluding this verification section)
-3. Validate audit signature metadata and signature with the Striae Hash Utility
+3. Validate audit signature metadata and signature with your signature verification workflow (for example OpenSSL or an internal verifier)
 4. Confirm both hash and signature validation pass before relying on this report
 
 This report requires both hash and signature validation for tamper detection.

package/app/services/firebase.ts

@@ -1,6 +1,8 @@
 import { initializeApp } from 'firebase/app';
 import { 
     getAuth,
+    setPersistence,
+    browserSessionPersistence,
     //connectAuthEmulator,    
  } from 'firebase/auth';
 import firebaseConfig from '~/config/firebase';
@@ -9,6 +11,8 @@ import { getAppVersion } from '~/utils/version';
 export const app = initializeApp(firebaseConfig, "Striae");
 export const auth = getAuth(app);
 
+setPersistence(auth, browserSessionPersistence);
+
 console.log(`Welcome to ${app.name} v${getAppVersion()}`);
 
 //Connect to the Firebase Auth emulator if running locally

package/app/utils/auth.ts

@@ -3,7 +3,7 @@ import paths from '~/config/config.json';
 const KEYS_URL = paths.keys_url;
 const KEYS_AUTH = paths.keys_auth;
 
-type KeyType = 'USER_DB_AUTH' | 'R2_KEY_SECRET' | 'IMAGES_API_TOKEN' | 'ACCOUNT_HASH';
+type KeyType = 'USER_DB_AUTH' | 'R2_KEY_SECRET' | 'IMAGES_API_TOKEN' | 'ACCOUNT_HASH' | 'PDF_WORKER_AUTH';
 
 async function getApiKey(keyType: KeyType): Promise<string> {
   const keyResponse = await fetch(`${KEYS_URL}/${keyType}`, {
@@ -31,4 +31,8 @@ export async function getImageApiKey(): Promise<string> {
 
 export async function getAccountHash(): Promise<string> {
   return getApiKey('ACCOUNT_HASH');
+}
+
+export async function getPdfApiKey(): Promise<string> {
+  return getApiKey('PDF_WORKER_AUTH');
 }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@striae-org/striae",
-  "version": "3.1.0",
+  "version": "3.2.0",
   "private": false,
   "description": "Cloud-native forensic annotation application for firearms identification (Remix + Cloudflare Workers).",
   "license": "Apache-2.0",
@@ -77,9 +77,9 @@
     "publish:github": "npm publish --registry=https://npm.pkg.github.com --@striae-org:registry=https://npm.pkg.github.com",
     "publish:github:dry-run": "npm publish --dry-run --registry=https://npm.pkg.github.com --@striae-org:registry=https://npm.pkg.github.com",
     "publish:all": "npm run publish:npm && npm run publish:github",
-    "publish:all:dry-run": "npm run publish:npm:dry-run && npm run publish:github:dry-run",
+    "publish:all:dry-run": "npm run publish:npm:dry-run && npm run publish:github:dry-run",    
     "lint": "node ./scripts/run-eslint.cjs",
-    "start": "node ./scripts/dev.cjs && wrangler pages dev ./build/client",
+    "start": "node ./scripts/dev.cjs && wrangler pages dev",
     "typecheck": "tsc",
     "typegen": "wrangler types",
     "preview": "npm run build && wrangler pages dev",
@@ -130,6 +130,9 @@
     "vite-tsconfig-paths": "^6.1.1",
     "wrangler": "^3.114.17"
   },
+  "overrides": {
+    "tar": "7.5.11"
+  },
   "engines": {
     "node": ">=20.0.0"
   },

package/public/_routes.json

@@ -8,6 +8,7 @@
     "/*.css",
     "/*.js",
     "/*.pdf",
+    "/*.png",
     "/*.zip"    
   ]
 }