Giter Club home page Giter Club logo

ephemeral-whisper's Introduction

Ephemeral Whisper

A self hosted e2e encrypted temporary note sharing application used for sending sensitive information.

A demo of this app can be found at https://ephemeral-whisper.vercel.app

Getting Started

Quickstart

  1. bin/generate_env
  2. docker compose up

Configuration

To use this application you need an RSA keypair with passphrase, an IV, and a symetric key value. All values except for the encryption passphrase need to be BASE64 encoded environment variables.

You can use the bin/generate_env script to automatically create a .env file along with the certificate files as a quick way to get started. Once the .env file is created, you can move it to the root directory of this project.

Environment Variables

DATABASE_URL

Can be set to any relative filepath such as file:./dev.db

ENCRYPTION_PASSPHRASE

Random string with at least 24 charachters

SYMETRIC_KEY_BASE64

openssl rand -base64 32

PRIVATE_KEY_BASE64

openssl genrsa -des3 -out private.pem 2048 && cat private.pem | base64 When prompted enter the value used for your ENCRYPTION_PASSPHRASE

PUBLIC_KEY_BASE64

openssl rsa -in private.pem -pubout -out public.pem && cat public.pem | base64 When prompted enter the value used for your ENCRYPTION_PASSPHRASE

IV_BASE64

openssl rand -base64 16

Cron Jobs

In order to automatically purge expired whispers, you will need to set up a cron job that calls GET /api/purge_expired_secrets

Calling this endpoint will automatically purge any whispers that have expired as of the time of the call and utilizes a temporary lock. So it is safe to call as frequently as you want.

Local Dev

Docker

You can run the entire app locally using docker compose up

Open http://localhost:3000 with your browser to see the app.

Optionally you can run just the database with docker compose up db and then run the rest of the application locally

Direct

You can run the development server directly with yarn dev

You must first make sure you have a Postgres database and add in the URLs to the .env file.

Open http://localhost:3000 with your browser to see the app.

Tests

Tests are run using Playwright and have a GitHub action set up to automatically run on pushes to main or PR's.

TODO

  • Add salting to the encryption
  • Component tests
  • Make it so the client encryption keys are not required at build time

ephemeral-whisper's People

Contributors

dstotz avatar

Watchers

avatar avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.