autho 0.0.7 → 0.0.9

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License Copyright (c) 2024 Nir Adler
+
+Permission is hereby granted, free of
+charge, to any person obtaining a copy of this software and associated
+documentation files (the "Software"), to deal in the Software without
+restriction, including without limitation the rights to use, copy, modify, merge,
+publish, distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to the
+following conditions:
+
+The above copyright notice and this permission notice
+(including the next paragraph) shall be included in all copies or substantial
+portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF
+ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO
+EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR
+OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
+FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.

package/Readme.md

@@ -33,7 +33,9 @@ This will start the Autho CLI, where you can generate OTPs, manage passwords, an
 
 3. **Managing Passwords**: Autho provides a secure vault for storing and managing your passwords. You can add, view, update, and delete passwords using the CLI interface.
 
-4. **Self-Hosting**: If you prefer self-hosting, deploy Autho on your own server by following the instructions provided in the documentation.
+4. **Secure files**: Autho offers a reliable method for encrypting and decrypting files, ensuring their security and integrity.
+
+5. **Self-Hosting**: If you prefer self-hosting, deploy Autho on your own server by following the instructions provided in the documentation. (TBD)
 
 ## Security Considerations
 
@@ -51,11 +53,11 @@ Autho is an open-source project, and contributions are welcome! Feel free to rep
 
 ## License
 
-Autho is licensed under the [MIT License](link-to-license), allowing for unrestricted use, modification, and distribution.
+Autho is licensed under the [MIT License](LICENSE), allowing for unrestricted use, modification, and distribution.
 
 ## Support
 
-For support or inquiries, please reach out to the [official Autho community](link-to-community) for assistance.
+For support or inquiries, please open an issue for assistance.
 
 ## Acknowledgments
 

package/build/bin.js

@@ -57319,7 +57319,9 @@ var Cipher = class _Cipher {
       algorithm,
       signature: _Cipher.sign(value),
       encoding,
-      authTag
+      authTag,
+      provider: "crypto",
+      platform: "autho"
     };
   }
   static decrypt({
@@ -57349,18 +57351,37 @@ var Cipher = class _Cipher {
     }
     return decrypted;
   }
+  static canDecrypt(options) {
+    return options.platform === "autho";
+  }
   static encryptFile(inputFilePath, outputFilePath, encryptionKey) {
     const inputBuffer = import_fs.default.readFileSync(inputFilePath);
-    const encryptedData = _Cipher.encrypt(inputBuffer, encryptionKey);
+    const params = {
+      value: inputBuffer,
+      encryptionKey
+    };
+    const encryptedData = _Cipher.encrypt(params);
     import_fs.default.writeFileSync(
       outputFilePath,
-      Buffer.from(JSON.stringify(encryptedData))
+      Buffer.from(JSON.stringify(encryptedData)).toString("base64")
     );
   }
   static decryptFile(inputFilePath, outputFilePath, encryptionKey) {
     const inputFileContent = import_fs.default.readFileSync(inputFilePath);
-    const encryptedData = JSON.parse(inputFileContent.toString());
-    const decryptedData = _Cipher.decrypt(encryptedData, encryptionKey);
+    const decoded = Buffer.from(
+      inputFileContent.toString("utf-8"),
+      "base64"
+    ).toString("utf-8");
+    const encryptedData = JSON.parse(decoded);
+    if (!_Cipher.canDecrypt(encryptedData)) {
+      throw new Error("Invalid file");
+    }
+    const params = {
+      ...encryptedData,
+      value: encryptedData.encrypted,
+      encryptionKey
+    };
+    const decryptedData = _Cipher.decrypt(params);
     import_fs.default.writeFileSync(outputFilePath, decryptedData);
   }
 };
@@ -59508,7 +59529,7 @@ var getAuthoAbsolutePath = (path5) => {
   return import_path.default.join(process.cwd(), path5, ".autho");
 };
 program2.name("autho").description("Secrets manager").version("0.0.1").option("-p, --password <password>", "Master password").option("-ph, --passwordHash <passwordHash>", "Master password hash").option("-n, --name <name>", "Collection name", "default").option(
-  "-d, --dataFolder <folderPath>",
+  "-data, --dataFolder <folderPath>",
   "Folder path to store secrets db",
   getAuthoAbsolutePath
 ).action(async (args) => {
@@ -59582,6 +59603,27 @@ program2.name("autho").description("Secrets manager").version("0.0.1").option("-
     process.exit(1);
   }
 });
+program2.command("file").description("Encrypt/Decrypt file").option("-f, --filePath <filePath>", "File path").option("-en, --encrypt", "Encrypt file", false).option("-de, --decrypt", "Decrypt file", false).option("--override", "Override original file", false).action(async (args) => {
+  const { encrypt, decrypt, filePath, override } = args;
+  const encryptionKey = await App.masterKey();
+  if (!encrypt && !decrypt) {
+    console.log("Please provide either --encrypt or --decrypt");
+    process.exit(1);
+  } else if (encrypt) {
+    if (filePath.endsWith(".autho")) {
+      console.log(".autho files are already encrypted.");
+      process.exit(1);
+    }
+    console.log("Encrypting file:", filePath);
+    const outputFilePath = override ? filePath : filePath + ".autho";
+    Cipher.encryptFile(filePath, outputFilePath, encryptionKey);
+  } else if (decrypt) {
+    console.log("Decrypting file:", filePath);
+    const outputFilePath = filePath.endsWith(".autho") ? filePath.replace(/\.autho$/, "") : filePath;
+    Cipher.decryptFile(filePath, outputFilePath, encryptionKey);
+  }
+  process.exit(0);
+});
 program2.parse();
 /*! Bundled license information:
 

package/package.json

@@ -1,11 +1,24 @@
 {
   "name": "autho",
-  "version": "0.0.7",
+  "version": "0.0.9",
   "main": "build/bin.js",
   "type": "commonjs",
   "bin": {
     "autho": "build/bin.js"
   },
+  "scripts": {
+    "format": "prettier --check .",
+    "format:write": "prettier --write .",
+    "lint": "eslint .",
+    "lint:fix": "eslint --fix .",
+    "build": "esbuild packages/cli/bin.js --bundle --platform=node --target=node18 --outdir=build",
+    "pkg": "npm run pkg:linux && npm run pkg:macos && npm run pkg:win",
+    "pkg:macos-arm64": "pkg build/bin.js --output dist/autho --target node18-macos-arm64",
+    "pkg:macos": "pkg build/bin.js --output dist/autho-macos --target node18-macos-x64",
+    "pkg:linux": "pkg build/bin.js --output dist/autho-linux --target node18-linux-x64",
+    "pkg:win": "pkg build/bin.js --output dist/autho-win --target node18-win-x64",
+    "release": "gh release create v0.0.8 ./dist"
+  },
   "keywords": [
     "secrets",
     "otp"
@@ -36,18 +49,5 @@
       "node18-macos-x64"
     ],
     "outputPath": "dist"
-  },
-  "scripts": {
-    "format": "prettier --check .",
-    "format:write": "prettier --write .",
-    "lint": "eslint .",
-    "lint:fix": "eslint --fix .",
-    "build": "esbuild packages/cli/bin.js --bundle --platform=node --target=node18 --outdir=build",
-    "pkg": "npm run pkg:linux && npm run pkg:macos && npm run pkg:win",
-    "pkg:macos-arm64": "pkg build/bin.js --output dist/autho --target node18-macos-arm64",
-    "pkg:macos": "pkg build/bin.js --output dist/autho-macos --target node18-macos-x64",
-    "pkg:linux": "pkg build/bin.js --output dist/autho-linux --target node18-linux-x64",
-    "pkg:win": "pkg build/bin.js --output dist/autho-win --target node18-win-x64",
-    "release": "gh release create v0.0.6 ./dist"
   }
 }