Permalink
Switch branches/tags
Nothing to show
Commits on Jul 17, 2012
  1. Make all redirects absolute

    Express' Response.redirect() doesn't deal well with HTTP servers
    that are ultimately proxied over HTTPS.
    committed Jul 17, 2012
Commits on Jul 16, 2012
  1. Explicitly set the views path

    committed Jul 16, 2012
Commits on Jul 15, 2012
Commits on Jul 13, 2012
  1. Rename post_create script and fix it

    Looking at the post_create script for BrowserID, it looks like
    MySQL needs to be started manually and there is no way to pull in
    the schema file because it's not on the filesystem.
    committed Jul 13, 2012
Commits on Jul 2, 2012
  1. Password not needed for MySQL

    committed Jul 2, 2012
Commits on Jun 28, 2012
  1. Initial setup for deploying with awsbox

    This isn't actually working yet because it prompts for the MySQL
    root password.
    committed Jun 28, 2012
Commits on Jun 21, 2012
  1. Default (for now) to a local BrowserID instance

    This code needs an experimental branch of BrowserID so it can't
    use the normal BrowserID server for now.
    committed Jun 21, 2012
Commits on Jun 18, 2012
Commits on May 31, 2012
  1. Remove unnecessary include

    Now that the crypto operations are done in the right context on the
    BID side, this hack is no longer required.
    committed May 31, 2012
Commits on May 30, 2012
  1. Convert == to ===

    committed May 30, 2012
Commits on May 29, 2012
  1. Use identity instead of assertion for wrap/unwrap calls

    Also move localStorage functions out of crypto.js
    committed May 29, 2012
Commits on May 25, 2012
  1. Remove crypto code and use navigator.id.secret instead

    This requires the experimental API from this BrowserID branch:
    
      https://github.com/fmarier/browserid/tree/keywrapping
    committed May 25, 2012
Commits on May 22, 2012
  1. Switch from keypairs to single encryption keys

    Since we have removed the HMACing, there is no need to have two
    keys anymore.
    committed May 22, 2012
Commits on May 21, 2012
  1. Remove dummy HMAC function and rely instead on SJCL

    SJCL's encrypt method uses authenticated encryption (CCM mode)
    so there's no need for us to have our own MAC.
    committed May 21, 2012
Commits on May 18, 2012
  1. tests: make use of parent topics in nested contexts

    This allows us to remove an ugly global variable.
    committed May 18, 2012
  2. tests: cache frequently used test objects

    This cuts down on the number of nested callbacks we need to make.
    committed May 18, 2012
  3. tests: reduce amount of code duplication by adding setup/teardown

    There is now a single account creation / deletion test.
    
    Also switched to using the "var cb = this.callback;" convention
    instead of "var that = this;".
    committed May 18, 2012
Commits on May 15, 2012
  1. Use the user's keys in the calls to jwcrypto.encrypt() and decrypt()

    This does work and according to the SJCL documentation, it provides
    authenticated encryption on the results. Maybe we don't need to
    do the MACing ourselves?
    committed May 15, 2012
Commits on May 14, 2012
  1. Use jwcrypto for encryption, decryption and base64 encoding/decoding

    Make sure you run "npm install" because we rely on a symlink that
    points to the right file within node_modules/jwcrypto/.
    committed May 14, 2012
Commits on May 13, 2012
  1. Turn encryption/decryption into a visible and manual step

    This emphasizes the fact that the notes are encrypted in the
    database and that they are decrypted client-side in Javascript.
    committed May 13, 2012