mirror of
https://github.com/kmc7468/arkvault.git
synced 2025-12-14 22:08:45 +00:00
78 lines
2.2 KiB
TypeScript
78 lines
2.2 KiB
TypeScript
import { error } from "@sveltejs/kit";
|
|
import { getAllUserClients, setUserClientStateToActive } from "$lib/server/db/client";
|
|
import {
|
|
registerInitialMek,
|
|
registerActiveMek,
|
|
getAllValidMeks,
|
|
getNextActiveMekVersion,
|
|
registerClientMeks,
|
|
getAllValidClientMeks,
|
|
} from "$lib/server/db/mek";
|
|
import { isInitialMekNeeded } from "$lib/server/modules/mek";
|
|
|
|
export const getClientMekList = async (userId: number, clientId: number) => {
|
|
const clientMeks = await getAllValidClientMeks(userId, clientId);
|
|
return {
|
|
meks: clientMeks.map((clientMek) => ({
|
|
version: clientMek.master_encryption_key.version,
|
|
state: clientMek.master_encryption_key.state,
|
|
mek: clientMek.client_master_encryption_key.encMek,
|
|
})),
|
|
};
|
|
};
|
|
|
|
export const registerInitialActiveMek = async (
|
|
userId: number,
|
|
createdBy: number,
|
|
encMek: string,
|
|
) => {
|
|
if (!(await isInitialMekNeeded(userId))) {
|
|
error(409, "Initial MEK already registered");
|
|
}
|
|
|
|
await registerInitialMek(userId, createdBy, encMek);
|
|
await setUserClientStateToActive(userId, createdBy);
|
|
};
|
|
|
|
export const registerNewActiveMek = async (
|
|
userId: number,
|
|
createdBy: number,
|
|
clientMeks: {
|
|
clientId: number;
|
|
encMek: string;
|
|
}[],
|
|
) => {
|
|
const userClients = await getAllUserClients(userId);
|
|
const activeUserClients = userClients.filter(({ state }) => state === "active");
|
|
if (
|
|
clientMeks.length !== activeUserClients.length ||
|
|
!clientMeks.every((clientMek) =>
|
|
activeUserClients.some((userClient) => userClient.clientId === clientMek.clientId),
|
|
)
|
|
) {
|
|
error(400, "Invalid key list");
|
|
}
|
|
|
|
const newMekVersion = await getNextActiveMekVersion(userId);
|
|
await registerActiveMek(userId, newMekVersion, createdBy, clientMeks);
|
|
};
|
|
|
|
export const shareMeksForNewClient = async (
|
|
userId: number,
|
|
targetClientId: number,
|
|
clientMeks: {
|
|
version: number;
|
|
encMek: string;
|
|
}[],
|
|
) => {
|
|
const meks = await getAllValidMeks(userId);
|
|
if (
|
|
clientMeks.length !== meks.length ||
|
|
!clientMeks.every((clientMek) => meks.some((mek) => mek.version === clientMek.version))
|
|
) {
|
|
error(400, "Invalid key list");
|
|
}
|
|
|
|
await registerClientMeks(userId, targetClientId, clientMeks);
|
|
};
|