186526
/
unpkg
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Remove secret key

This commit is contained in:
Michael Jackson 2019-07-09 11:19:38 -07:00
parent c06657d9a7
commit d5022035c1
9 changed files with 2 additions and 98 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

21
modules/__tests__/_publicKey-test.js
View File

@ -1,21 +0,0 @@
import request from 'supertest';
import createServer from '../createServer';
describe('The /_publicKey endpoint', () => {
let server;
beforeEach(() => {
server = createServer();
});
describe('GET /_publicKey', () => {
it('echoes the public key', done => {
request(server)
.get('/_publicKey')
.end((err, res) => {
expect(res.text).toMatch(/PUBLIC KEY/);
done();
});
});
});
});

21
modules/__tests__/api-publicKey-test.js
View File

@ -1,21 +0,0 @@
import request from 'supertest';
import createServer from '../createServer';
describe('The /api/publicKey endpoint', () => {
let server;
beforeEach(() => {
server = createServer();
});
describe('GET /api/publicKey', () => {
it('echoes the public key', done => {
request(server)
.get('/api/publicKey')
.end((err, res) => {
expect(res.text).toMatch(/PUBLIC KEY/);
done();
});
});
});
});

5
modules/actions/servePublicKey.js
View File

@ -1,5 +0,0 @@
import { publicKey } from '../utils/secret';
export default function servePublicKey(req, res) {
res.send({ publicKey });
}

5
modules/server.js
View File

@ -1,9 +1,7 @@
import express from 'express'; import express from 'express';
// import serveAuth from './actions/serveAuth';
import serveFile from './actions/serveFile'; import serveFile from './actions/serveFile';
import serveMainPage from './actions/serveMainPage'; import serveMainPage from './actions/serveMainPage';
import servePublicKey from './actions/servePublicKey';
import serveStats from './actions/serveStats'; import serveStats from './actions/serveStats';
import cors from './middleware/cors'; import cors from './middleware/cors';
@ -12,7 +10,6 @@ import findFile from './middleware/findFile';
import logger from './middleware/logger'; import logger from './middleware/logger';
import redirectLegacyURLs from './middleware/redirectLegacyURLs'; import redirectLegacyURLs from './middleware/redirectLegacyURLs';
import staticFiles from './middleware/staticFiles'; import staticFiles from './middleware/staticFiles';
// import userToken from './middleware/userToken';
import validatePackageURL from './middleware/validatePackageURL'; import validatePackageURL from './middleware/validatePackageURL';
import validatePackageName from './middleware/validatePackageName'; import validatePackageName from './middleware/validatePackageName';
import validateQuery from './middleware/validateQuery'; import validateQuery from './middleware/validateQuery';
@ -43,8 +40,6 @@ app.use(redirectLegacyURLs);
app.use( app.use(
'/api', '/api',
createRouter(app => { createRouter(app => {
// app.get('/auth', userToken, serveAuth);
app.get('/public-key', servePublicKey);
app.get('/stats', serveStats); app.get('/stats', serveStats);
}) })
); );

8
modules/utils/secret.js
View File

@ -1,8 +0,0 @@
import invariant from 'invariant';
const secretKey = process.env.SECRET_KEY;
invariant(secretKey, 'Missing $SECRET_KEY environment variable');
export const privateKey = secretKey.private;
export const publicKey = secretKey.public;

2
package.json
View File

@ -4,7 +4,7 @@
"description": "The CDN for everything on npm", "description": "The CDN for everything on npm",
"scripts": { "scripts": {
"build": "rollup -c", "build": "rollup -c",
"clean": "git clean -e '!/secret_key' -e '!/.env' -fdX .", "clean": "git clean -e '!/.env' -fdX .",
"lint": "eslint modules", "lint": "eslint modules",
"test": "jest", "test": "jest",
"watch": "rollup -c -w" "watch": "rollup -c -w"

4
rollup.config.js
View File

@ -12,7 +12,6 @@ const url = require('rollup-plugin-url');
const entryManifest = require('./plugins/entryManifest'); const entryManifest = require('./plugins/entryManifest');
const pkg = require('./package.json'); const pkg = require('./package.json');
const secretKey = require('./secretKey');
const env = process.env.NODE_ENV || 'development'; const env = process.env.NODE_ENV || 'development';
const dev = env === 'development'; const dev = env === 'development';
@ -91,8 +90,7 @@ const server = {
'process.env.NPM_REGISTRY_URL': JSON.stringify( 'process.env.NPM_REGISTRY_URL': JSON.stringify(
process.env.NPM_REGISTRY_URL process.env.NPM_REGISTRY_URL
), ),
'process.env.ORIGIN': JSON.stringify(process.env.ORIGIN), 'process.env.ORIGIN': JSON.stringify(process.env.ORIGIN)
'process.env.SECRET_KEY': JSON.stringify(secretKey)
}) })
] ]
}; };

25
secretKey.js
View File

@ -1,25 +0,0 @@
const fs = require('fs');
const path = require('path');
const forge = require('node-forge');
function readFile(file) {
return fs.readFileSync(path.resolve(__dirname, file), 'utf8');
}
let secretKey;
if (process.env.NODE_ENV === 'production') {
secretKey = {
public: readFile('./secret_key.pub'),
private: readFile('./secret_key')
};
} else {
// Generate a random keypair for dev/testing.
// See https://gist.github.com/sebadoom/2b70969e70db5da9a203bebd9cff099f
const keypair = forge.rsa.generateKeyPair({ bits: 2048 });
secretKey = {
public: forge.pki.publicKeyToPem(keypair.publicKey, 72),
private: forge.pki.privateKeyToPem(keypair.privateKey, 72)
};
}
module.exports = secretKey;

9
secret_key.pub
View File

@ -1,9 +0,0 @@
-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtWG6vJVKV8+hGDXtYS3i
JN8DO4xsKAM7n72IMH3489J1UUwdFdP3CKAAQzl8kcet/9q5CrLeUnW5oQNezQiC
FcSgF/KhJBITMWe5IIVWZOsFMvvNR+vISSL6We842gEAZWJbo2HZdFTdZjfino/4
CL3Sr0Ue9PFVHcVkT9V7uS7f/7VbwKFbxdpesYeq8odNFPQy6rhmSBT9v0mGK36K
f7kPuVqV7xlZ8nfiHdP+TAP2I4Iv2Ok7kMMy2qPjwizCShPcLIHzmyVdRuoUvxTf
cvC/cI3NUC7Qconn9tEtyvFzegdhS0tQD+Mq9eWAEZYp0rV/TkkaAYkIOkVQoiwQ
9QIDAQAB
-----END PUBLIC KEY-----