Notes/routes/api/note_history.js

"use strict";

const express = require('express');
const router = express.Router();
const sql = require('../../services/sql');
const auth = require('../../services/auth');
const data_encryption = require('../../services/data_encryption');
const protected_session = require('../../services/protected_session');

router.get('/:noteId', auth.checkApiAuth, async (req, res, next) => {
    const noteId = req.params.noteId;
    const history = await sql.getResults("select * from notes_history where note_id = ? order by date_modified_to desc", [noteId]);

    const dataKey = protected_session.getDataKey(req);

    for (const hist of history) {
        if (hist.is_protected) {
            hist.note_title = data_encryption.decryptCbc(dataKey, data_encryption.noteTitleIv(hist.note_history_id), hist.note_title);
            hist.note_text = data_encryption.decryptCbc(dataKey, data_encryption.noteTitleIv(hist.note_history_id), hist.note_text);
        }
    }

    res.send(history);
});

router.put('', auth.checkApiAuth, async (req, res, next) => {
    await sql.doInTransaction(async () => {
        await sql.replace("notes_history", req.body);

        await sql.addNoteHistorySync(req.body.note_history_id);
    });

    res.send();
});

module.exports = router;
use strict in all JS files 2017-10-21 21:10:33 -04:00			`"use strict";`

backend ported to node.js (work in progress) 2017-10-14 23:31:44 -04:00			`const express = require('express');`
			`const router = express.Router();`
reorganization of source code 2017-10-15 19:47:05 -04:00			`const sql = require('../../services/sql');`
			`const auth = require('../../services/auth');`
note history decryption now works, more cleanup 2017-11-14 22:21:56 -05:00			`const data_encryption = require('../../services/data_encryption');`
			`const protected_session = require('../../services/protected_session');`
backend ported to node.js (work in progress) 2017-10-14 23:31:44 -04:00
node authentication 2017-10-15 16:32:49 -04:00			`router.get('/:noteId', auth.checkApiAuth, async (req, res, next) => {`
backend ported to node.js (work in progress) 2017-10-14 23:31:44 -04:00			`const noteId = req.params.noteId;`
note history decryption now works, more cleanup 2017-11-14 22:21:56 -05:00			`const history = await sql.getResults("select * from notes_history where note_id = ? order by date_modified_to desc", [noteId]);`
backend ported to node.js (work in progress) 2017-10-14 23:31:44 -04:00
note history decryption now works, more cleanup 2017-11-14 22:21:56 -05:00			`const dataKey = protected_session.getDataKey(req);`
encryption of note history if the note is encrypted 2017-11-02 23:36:58 -04:00
note history decryption now works, more cleanup 2017-11-14 22:21:56 -05:00			`for (const hist of history) {`
			`if (hist.is_protected) {`
changing from AES-256-CTR to AES-128-CBC for note encryption 2017-11-15 22:13:45 -05:00			`hist.note_title = data_encryption.decryptCbc(dataKey, data_encryption.noteTitleIv(hist.note_history_id), hist.note_title);`
			`hist.note_text = data_encryption.decryptCbc(dataKey, data_encryption.noteTitleIv(hist.note_history_id), hist.note_text);`
note history decryption now works, more cleanup 2017-11-14 22:21:56 -05:00			`}`
encryption of note history if the note is encrypted 2017-11-02 23:36:58 -04:00			`}`
backend ported to node.js (work in progress) 2017-10-14 23:31:44 -04:00
			`res.send(history);`
			`});`

also de-encryption of note history plus bug fixes 2017-11-02 23:55:22 -04:00			`router.put('', auth.checkApiAuth, async (req, res, next) => {`
encryption of note history if the note is encrypted 2017-11-02 23:36:58 -04:00			`await sql.doInTransaction(async () => {`
			`await sql.replace("notes_history", req.body);`

			`await sql.addNoteHistorySync(req.body.note_history_id);`
			`});`

			`res.send();`
			`});`

backend ported to node.js (work in progress) 2017-10-14 23:31:44 -04:00			`module.exports = router;`