npm - bitty-tui - Versions diffs - 0.0.14 → 0.0.16 - Mend

bitty-tui 0.0.14 → 0.0.16

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/dist/clients/bw.d.ts +1 -0
package/dist/clients/bw.js +16 -3
package/dist/dashboard/DashboardView.js +1 -0
package/dist/hooks/bw.js +0 -4
package/dist/login/LoginView.js +52 -6
package/package.json +1 -1
package/readme.md +10 -4

package/dist/clients/bw.d.ts CHANGED Viewed

@@ -239,4 +239,5 @@ export declare class Client {
             type: number;
         }[] | undefined;
     };
+    logout(): void;
 }

package/dist/clients/bw.js CHANGED Viewed

@@ -101,9 +101,12 @@ export var KeyType;
 export const TwoFactorProvider = {
     "0": "Authenticator",
     "1": "Email",
-    "2": "Fido2",
+    "2": "Duo",
     "3": "Yubikey",
-    "4": "Duo",
+    "4": "U2f",
+    "6": "Org Duo",
+    "7": "Fido2",
+    "8": "Recovery Code",
 };
 export var KdfType;
 (function (KdfType) {
@@ -439,6 +442,7 @@ export class Client {
         this.refreshToken = identityReq.refresh_token;
         this.tokenExpiration = Date.now() + identityReq.expires_in * 1000;
         const { userKey, privateKey } = mcbw.decodeUserKeys(identityReq.Key, identityReq.PrivateKey || "", keys);
+        keys.masterKey = undefined; // Clear master key from memory
         this.keys = {
             ...keys,
             userKey,
@@ -449,7 +453,7 @@ export class Client {
         this.orgKeys = {};
     }
     async sendEmailMfaCode(email) {
-        fetch("https://vault.bitwarden.eu/api/two-factor/send-email-login", {
+        fetch(`${this.apiUrl}/two-factor/send-email-login`, {
             method: "POST",
             headers: {
                 "Content-Type": "application/json",
@@ -798,4 +802,13 @@ export class Client {
         }
         return ret;
     }
+    logout() {
+        this.token = null;
+        this.refreshToken = null;
+        this.tokenExpiration = null;
+        this.keys = {};
+        this.orgKeys = {};
+        this.decryptedSyncCache = null;
+        this.syncCache = null;
+    }
 }

package/dist/dashboard/DashboardView.js CHANGED Viewed

@@ -42,6 +42,7 @@ export function DashboardView({ onLogout }) {
     }, [listSelected, filteredCiphers]);
     const selectedCipher = detailMode === "new" ? editedCipher : filteredCiphers[listIndex];
     const logout = async () => {
+        bwClient.logout();
         await clearConfig();
         onLogout();
     };

package/dist/hooks/bw.js CHANGED Viewed

@@ -15,8 +15,6 @@ export async function loadConfig() {
             }
             if (config.keys && config.refreshToken) {
                 const keys = {};
-                if (config.keys.masterKey)
-                    keys.masterKey = Uint8Array.from(config.keys.masterKey);
                 if (config.keys.masterPasswordHash)
                     keys.masterPasswordHash = config.keys.masterPasswordHash;
                 if (config.keys.privateKey)
@@ -50,8 +48,6 @@ export async function loadConfig() {
 }
 export async function saveConfig(config) {
     const keys = {};
-    if (config.keys.masterKey)
-        keys.masterKey = Array.from(config.keys.masterKey);
     if (config.keys.masterPasswordHash)
         keys.masterPasswordHash = config.keys.masterPasswordHash;
     if (config.keys.privateKey)

package/dist/login/LoginView.js CHANGED Viewed

@@ -16,10 +16,17 @@ export function LoginView({ onLogin }) {
     const [password, setPassword] = useState("");
     const [mfaParams, setMfaParams] = useState(null);
     const [askMfa, setAskMfa] = useState(null);
+    const [mfaProviderData, setMfaProviderData] = useState(null);
     const [rememberMe, setRememberMe] = useState(false);
+    const [resendTimeout, setResendTimeout] = useState(0);
     const { stdout } = useStdout();
     const { focusNext, focusPrevious } = useFocusManager();
     const { statusMessage, statusMessageColor, showStatusMessage } = useStatusMessage();
+    const getProviderLabel = (provider) => TwoFactorProvider[String(provider)] ?? `Provider ${provider}`;
+    const getProviderData = (provider) => mfaProviderData?.[String(provider)] ?? null;
+    const isEmailProvider = (provider) => String(provider) === "1";
+    const isDuoProvider = (provider) => String(provider) === "2" || String(provider) === "6";
+    const isWebAuthnProvider = (provider) => String(provider) === "7";
     useInput(async (_, key) => {
         if (key.upArrow) {
             focusPrevious();
@@ -47,14 +54,29 @@ export function LoginView({ onLogin }) {
             catch (e) {
                 if (e instanceof FetchError) {
                     const data = e.json();
+                    if (data.TwoFactorProviders2) {
+                        setMfaProviderData(data.TwoFactorProviders2);
+                    }
                     if (data.TwoFactorProviders) {
-                        if (data.TwoFactorProviders.length === 1) {
+                        const providers = data.TwoFactorProviders;
+                        if (providers.length === 1) {
                             setMfaParams({
-                                twoFactorProvider: data.TwoFactorProviders[0],
+                                twoFactorProvider: providers[0],
                             });
                         }
-                        else if (data.TwoFactorProviders.length > 1) {
-                            setAskMfa(data.TwoFactorProviders);
+                        else if (providers.length > 1) {
+                            setAskMfa(providers);
+                        }
+                    }
+                    else if (data.TwoFactorProviders2) {
+                        const providers = Object.keys(data.TwoFactorProviders2);
+                        if (providers.length === 1) {
+                            setMfaParams({
+                                twoFactorProvider: providers[0],
+                            });
+                        }
+                        else if (providers.length > 1) {
+                            setAskMfa(providers);
                         }
                     }
                 }
@@ -93,8 +115,20 @@ export function LoginView({ onLogin }) {
             }
         })();
     }, []);
+    useEffect(() => {
+        let interval;
+        if (resendTimeout > 0) {
+            interval = setInterval(() => {
+                setResendTimeout((t) => t - 1);
+            }, 1000);
+        }
+        return () => {
+            if (interval)
+                clearInterval(interval);
+        };
+    }, [resendTimeout]);
     return (_jsxs(Box, { flexDirection: "column", alignItems: "center", padding: 1, flexGrow: 1, minHeight: stdout.rows - 2, children: [_jsx(Box, { marginBottom: 2, children: _jsx(Text, { color: primary, children: art }) }), loading ? (_jsx(Text, { children: "Loading..." })) : askMfa ? (_jsx(Box, { flexDirection: "column", width: "50%", children: Object.values(askMfa).map((provider) => (_jsx(Button, { autoFocus: true, onClick: () => {
-                        if (provider === "1" &&
+                        if (isEmailProvider(provider) &&
                             (Object.values(askMfa).length > 1 ||
                                 !bwClient.isVaultWarden())) {
                             bwClient.sendEmailMfaCode(email);
@@ -104,7 +138,19 @@ export function LoginView({ onLogin }) {
                             twoFactorProvider: provider,
                         }));
                         setAskMfa(null);
-                    }, children: TwoFactorProvider[provider] }, provider))) })) : mfaParams && mfaParams.twoFactorProvider ? (_jsx(Box, { flexDirection: "column", width: "50%", children: _jsx(TextInput, { autoFocus: true, placeholder: `Enter your ${TwoFactorProvider[mfaParams.twoFactorProvider]} code`, value: mfaParams.twoFactorToken || "", onChange: (value) => setMfaParams((p) => ({ ...p, twoFactorToken: value })), onSubmit: () => handleLogin() }) })) : (_jsxs(Box, { flexDirection: "column", width: "50%", children: [_jsx(TextInput, { placeholder: "Server URL", value: url, onChange: setUrl }), _jsx(TextInput, { autoFocus: true, placeholder: "Email address", value: email, onChange: setEmail }), _jsx(TextInput, { placeholder: "Master password", value: password, onChange: setPassword, onSubmit: () => {
+                    }, children: getProviderLabel(provider) }, provider))) })) : mfaParams && mfaParams.twoFactorProvider ? (_jsxs(Box, { flexDirection: "column", width: "50%", children: [isDuoProvider(mfaParams.twoFactorProvider) && (_jsxs(Box, { flexDirection: "column", marginBottom: 1, children: [_jsx(Text, { children: "Open the Duo URL in a browser and approve the request." }), _jsx(Text, { children: "Then paste the `code` and `state` from the final URL as `code|state`." }), getProviderData(mfaParams.twoFactorProvider)?.AuthUrl && (_jsxs(Text, { children: ["Auth URL:", " ", getProviderData(mfaParams.twoFactorProvider).AuthUrl] }))] })), isWebAuthnProvider(mfaParams.twoFactorProvider) && (_jsx(Box, { flexDirection: "column", marginBottom: 1, children: _jsx(Text, { children: "Use your FIDO2/WebAuthn security key to generate a response, then paste it here." }) })), _jsx(TextInput, { autoFocus: true, placeholder: `Enter your ${getProviderLabel(mfaParams.twoFactorProvider)} ${isWebAuthnProvider(mfaParams.twoFactorProvider)
+                            ? "response"
+                            : "code"}`, value: mfaParams.twoFactorToken || "", onChange: (value) => setMfaParams((p) => ({ ...p, twoFactorToken: value })), onSubmit: () => handleLogin() }), isEmailProvider(mfaParams.twoFactorProvider) && (_jsx(Button, { marginTop: 1, isActive: resendTimeout === 0, onClick: () => {
+                            bwClient
+                                .sendEmailMfaCode(email)
+                                .then(() => {
+                                showStatusMessage("Sent new MFA code to your email.", "success");
+                            })
+                                .catch(() => {
+                                showStatusMessage("Failed to resend MFA code.", "error");
+                            });
+                            setResendTimeout(30);
+                        }, children: "Resend Code" }))] })) : (_jsxs(Box, { flexDirection: "column", width: "50%", children: [_jsx(TextInput, { placeholder: "Server URL", value: url, onChange: setUrl }), _jsx(TextInput, { autoFocus: true, placeholder: "Email address", value: email, onChange: setEmail }), _jsx(TextInput, { placeholder: "Master password", value: password, onChange: setPassword, onSubmit: () => {
                             if (email?.length && password?.length) {
                                 handleLogin();
                             }

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "bitty-tui",
-  "version": "0.0.14",
+  "version": "0.0.16",
   "license": "MIT",
   "repository": "https://github.com/mceck/bitty",
   "keywords": [

package/readme.md CHANGED Viewed

@@ -3,7 +3,13 @@
 ## Install
 ```bash
-$ npm install -g bitty-tui
+npm install -g bitty-tui
+```
+Run with:
+```bash
+bitty
 ```
 ## Description
@@ -20,13 +26,13 @@ If you check "Remember me" during login, your vault encryption keys will be stor
 ## TODO
 - Collections support
-- Implement Fido, Duo MFA support
+- Test Fido, Duo MFA support
 - Handle more fields editing
 - Handle creating different cipher types
 ## Acknowledgments
-- [Bitwarden](https://github.com/bitwarden)
+- [Bitwarden whitepaper](https://bitwarden.com/help/bitwarden-security-white-paper)
+- [Bitwarden github](https://github.com/bitwarden)
 - [BitwardenDecrypt](https://github.com/GurpreetKang/BitwardenDecrypt)
 This project is not associated with [Bitwarden](https://github.com/bitwarden) or [Bitwarden, Inc.](https://bitwarden.com/)