colin/browserpass-extension
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Pass OTP data across to OTP extension for further action (#118)

Browse Source 
Provides OTP into, current hostname & current tab to the OTP extension.
This commit is contained in:
Erayd
2019-04-16 03:38:16 +12:00
committed by GitHub
parent d177d9539a
commit aa4bab00a8
1 changed files with 35 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

36
src/background.js
View File

@@ -9,6 +9,12 @@ var idb = require("idb");
// native application id // native application id
var appID = "com.github.browserpass.native"; var appID = "com.github.browserpass.native";
// OTP extension id
var otpID = [
"afjjoildnccgmjbblnklbohcbjehjaph", // webstore releases
"jbnpmhhgnchcoljeobafpinmchnpdpin" // github releases
];
// default settings // default settings
var defaultSettings = { var defaultSettings = {
autoSubmit: false, autoSubmit: false,
@@ -785,6 +791,7 @@ async function parseFields(settings, login) {
secret: ["secret", "password", "pass"], secret: ["secret", "password", "pass"],
login: ["login", "username", "user"], login: ["login", "username", "user"],
openid: ["openid"], openid: ["openid"],
otp: ["otp", "totp", "hotp"],
url: ["url", "uri", "website", "site", "link", "launch"] url: ["url", "uri", "website", "site", "link", "launch"]
}; };
login.settings = { login.settings = {
@@ -792,6 +799,12 @@ async function parseFields(settings, login) {
}; };
var lines = login.raw.split(/[\r\n]+/).filter(line => line.trim().length > 0); var lines = login.raw.split(/[\r\n]+/).filter(line => line.trim().length > 0);
lines.forEach(function(line) { lines.forEach(function(line) {
// check for uri-encoded otp
if (line.match(/^otpauth:\/\/.+/)) {
login.fields.otp = { key: null, data: line };
return;
}
// split key / value & ignore non-k/v lines // split key / value & ignore non-k/v lines
var parts = line.match(/^(.+?):(.+)$/); var parts = line.match(/^(.+?):(.+)$/);
if (parts === null) { if (parts === null) {
@@ -811,7 +824,11 @@ async function parseFields(settings, login) {
Array.isArray(login.fields[key]) && Array.isArray(login.fields[key]) &&
login.fields[key].includes(parts[0].toLowerCase()) login.fields[key].includes(parts[0].toLowerCase())
) { ) {
login.fields[key] = parts[1]; if (key === "otp") {
login.fields[key] = { key: parts[0].toLowerCase(), data: parts[1] };
} else {
login.fields[key] = parts[1];
}
break; break;
} }
} }
@@ -851,6 +868,23 @@ async function parseFields(settings, login) {
delete login.settings[key]; delete login.settings[key];
} }
} }
// trigger otp extension
if (login.fields.hasOwnProperty("otp")) {
for (let key in otpID) {
chrome.runtime
.sendMessage(otpID[key], {
otp: login.fields.otp,
host: settings.host,
tab: settings.tab
})
// Both response & error are noop functions, because we don't care about
// the response, and if there's an error it just means the otp extension
// is probably not installed. We can't detect that without requesting the
// management permission, so this is an acceptable workaround.
.then(noop => null, noop => null);
}
}
} }
/** /**