From c0f55f48077a9290921748be7fabaa35a510908b Mon Sep 17 00:00:00 2001
From: Michael Jackson <michael@jackson.us>
Date: Sun, 6 Jan 2019 21:04:47 -0800
Subject: [PATCH] Keep secret key in separate file

---
 rollup.config.js | 22 +---------------------
 secretKey.js     | 25 +++++++++++++++++++++++++
 2 files changed, 26 insertions(+), 21 deletions(-)
 create mode 100644 secretKey.js

diff --git a/rollup.config.js b/rollup.config.js
index 61774b0..c582e1a 100644
--- a/rollup.config.js
+++ b/rollup.config.js
@@ -1,7 +1,5 @@
-const fs = require('fs');
 const path = require('path');
 const builtinModules = require('module').builtinModules;
-const forge = require('node-forge');
 const babel = require('rollup-plugin-babel');
 const commonjs = require('rollup-plugin-commonjs');
 const json = require('rollup-plugin-json');
@@ -16,25 +14,7 @@ const dev = env === 'development';
 // Allow storing env vars in .env in dev.
 if (dev) require('dotenv').config();
 
-function readFile(file) {
-  return fs.readFileSync(path.resolve(__dirname, file), 'utf8');
-}
-
-let secretKey;
-if (process.env.NODE_ENV === 'production') {
-  secretKey = {
-    public: readFile('./secret_key.pub'),
-    private: readFile('./secret_key')
-  };
-} else {
-  // Generate a random keypair for dev/testing.
-  // See https://gist.github.com/sebadoom/2b70969e70db5da9a203bebd9cff099f
-  const keypair = forge.rsa.generateKeyPair({ bits: 2048 });
-  secretKey = {
-    public: forge.pki.publicKeyToPem(keypair.publicKey, 72),
-    private: forge.pki.privateKeyToPem(keypair.privateKey, 72)
-  };
-}
+const secretKey = require('./secretKey');
 
 const functionsIndex = {
   external: id => true,
diff --git a/secretKey.js b/secretKey.js
new file mode 100644
index 0000000..3ca76cd
--- /dev/null
+++ b/secretKey.js
@@ -0,0 +1,25 @@
+const fs = require('fs');
+const path = require('path');
+const forge = require('node-forge');
+
+function readFile(file) {
+  return fs.readFileSync(path.resolve(__dirname, file), 'utf8');
+}
+
+let secretKey;
+if (process.env.NODE_ENV === 'production') {
+  secretKey = {
+    public: readFile('./secret_key.pub'),
+    private: readFile('./secret_key')
+  };
+} else {
+  // Generate a random keypair for dev/testing.
+  // See https://gist.github.com/sebadoom/2b70969e70db5da9a203bebd9cff099f
+  const keypair = forge.rsa.generateKeyPair({ bits: 2048 });
+  secretKey = {
+    public: forge.pki.publicKeyToPem(keypair.publicKey, 72),
+    private: forge.pki.privateKeyToPem(keypair.privateKey, 72)
+  };
+}
+
+module.exports = secretKey;