add function to add keys

mulbc · mulbc · commit 0eb68f81ae8b · 2025-10-17T16:46:58.000+02:00
diff --git a/addKey.html b/addKey.html
@@ -0,0 +1,114 @@
+<!doctype html>
+<html>
+  <head>
+    <title>Add Key - VaultPass</title>
+    <meta charset="utf-8" />
+    <script
+      type="application/javascript"
+      src="browser-polyfill.min.js"
+    ></script>
+    <link rel="stylesheet" href="style.css" />
+  </head>
+
+  <body>
+    <header class="header">
+      <div class="header__container">
+        <h1 class="h1 title">Add Key</h1>
+        <nav role="navigation" class="menu" aria-label="Main Menu">
+          <div class="tabs">
+            <a href="/popup.html" class="tab" data-page="keys">Keys</a>
+            <a href="/options.html" class="tab" data-page="options">Options</a>
+          </div>
+        </nav>
+      </div>
+    </header>
+
+    <main class="main">
+      <div role="alert" id="notify" aria-live="assertive"></div>
+
+      <form id="addKeyForm">
+        <div class="form-group">
+          <label for="secretPath" class="label">
+            Secret Path:
+            <span class="text-secondary" style="font-weight: normal">
+              Select where to store this key
+            </span>
+          </label>
+          <select
+            id="secretPath"
+            name="secretPath"
+            required
+            aria-required="true"
+          >
+            <option value="">-- Select a path --</option>
+          </select>
+        </div>
+
+        <div class="form-group">
+          <label for="urlRegex" class="label">
+            URL Pattern (regex):
+            <span class="text-secondary" style="font-weight: normal">
+              e.g., ^example\.com.* (used as KV object name)
+            </span>
+          </label>
+          <input
+            type="text"
+            id="urlRegex"
+            name="urlRegex"
+            placeholder="^example\.com.*"
+            required
+            aria-required="true"
+          />
+        </div>
+
+        <div class="form-group">
+          <label for="username" class="label">Username:</label>
+          <input
+            type="text"
+            id="username"
+            name="username"
+            placeholder="Enter username"
+            required
+            aria-required="true"
+          />
+        </div>
+
+        <div class="form-group">
+          <label for="password" class="label">Password:</label>
+          <input
+            type="password"
+            id="password"
+            name="password"
+            placeholder="Enter password"
+            required
+            aria-required="true"
+          />
+        </div>
+
+        <div class="form-group">
+          <label for="title" class="label">
+            Title (optional):
+            <span class="text-secondary" style="font-weight: normal">
+              A friendly name for this key
+            </span>
+          </label>
+          <input
+            type="text"
+            id="title"
+            name="title"
+            placeholder="e.g., Example Site Login"
+          />
+        </div>
+
+        <div class="flex justify-between" style="gap: 1rem">
+          <button type="button" id="cancelButton" class="button">Cancel</button>
+          <button type="submit" class="button button--primary">Save Key</button>
+        </div>
+      </form>
+    </main>
+
+    <script src="Notify.js"></script>
+    <script src="common.js"></script>
+    <script src="addKey.js"></script>
+  </body>
+</html>
diff --git a/addKey.js b/addKey.js
@@ -0,0 +1,156 @@
+/* global Notify storePathComponents */
+
+const notify = new Notify(document.querySelector('#notify'));
+const addKeyForm = document.getElementById('addKeyForm');
+const cancelButton = document.getElementById('cancelButton');
+const secretPathSelect = document.getElementById('secretPath');
+
+async function mainLoaded() {
+  // Load available secret paths
+  await loadSecretPaths();
+
+  // Set up event listeners
+  addKeyForm.addEventListener('submit', handleFormSubmit);
+  cancelButton.addEventListener('click', handleCancel);
+}
+
+async function loadSecretPaths() {
+  try {
+    const secrets = (await browser.storage.sync.get('secrets')).secrets;
+
+    if (!secrets || secrets.length === 0) {
+      notify.error(
+        'No secret paths configured. Please go to Options and configure at least one secret path first.'
+      );
+      return;
+    }
+
+    // Populate the dropdown
+    secrets.forEach((secret) => {
+      const option = document.createElement('option');
+      option.value = secret;
+      option.textContent = secret;
+      secretPathSelect.appendChild(option);
+    });
+
+    // If there's only one path, auto-select it
+    if (secrets.length === 1) {
+      secretPathSelect.value = secrets[0];
+    }
+  } catch (err) {
+    notify.error(`Error loading secret paths: ${err.message}`);
+  }
+}
+
+async function handleFormSubmit(event) {
+  event.preventDefault();
+
+  // Clear any existing messages
+  notify.clear();
+
+  // Scroll to top to show messages
+  window.scrollTo({ top: 0, behavior: 'smooth' });
+
+  const secretPath = document.getElementById('secretPath').value.trim();
+  const urlRegex = document.getElementById('urlRegex').value.trim();
+  const username = document.getElementById('username').value.trim();
+  const password = document.getElementById('password').value.trim();
+  const title = document.getElementById('title').value.trim();
+
+  // Validate inputs
+  if (!secretPath) {
+    notify.error('Please select a secret path.');
+    return;
+  }
+
+  if (!urlRegex || !username || !password) {
+    notify.error('URL pattern, username, and password are required.');
+    return;
+  }
+
+  // Check if URL pattern starts with http:// or https://
+  if (urlRegex.startsWith('http://') || urlRegex.startsWith('https://')) {
+    notify.error(
+      'URL pattern cannot start with http:// or https://. Please use a regex pattern instead (e.g., ^https://example\\.com.*).'
+    );
+    return;
+  }
+
+  // Validate regex pattern
+  try {
+    new RegExp(urlRegex);
+  } catch {
+    notify.error('Invalid URL regex pattern. Please check your pattern.');
+    return;
+  }
+
+  // Double-encode the URL regex to use as the key name in Vault
+  // First encoding: a/b -> a%2Fb
+  // Second encoding: a%2Fb -> a%252Fb
+  // Vault will decode once: a%252Fb -> a%2Fb (stored in Vault)
+  const encodedKeyName = encodeURIComponent(encodeURIComponent(urlRegex));
+
+  try {
+    // Get Vault credentials
+    const vaultToken = (await browser.storage.local.get('vaultToken'))
+      .vaultToken;
+    const vaultServerAddress = (await browser.storage.sync.get('vaultAddress'))
+      .vaultAddress;
+    const storePath = (await browser.storage.sync.get('storePath')).storePath;
+
+    if (!vaultToken || !vaultServerAddress) {
+      notify.error(
+        'Not authenticated with Vault. Please go to Options and login first.'
+      );
+      return;
+    }
+
+    const storeComponents = storePathComponents(storePath);
+
+    // Create the data object to save
+    const keyData = {
+      username: username,
+      password: password,
+    };
+
+    if (title) {
+      keyData.title = title;
+    }
+
+    // Save to Vault using the encoded key name
+    // The key name is already encoded earlier in the function
+    const vaultUrl = `${vaultServerAddress}/v1/${storeComponents.root}/data/${storeComponents.subPath}/${secretPath}${encodedKeyName}`;
+
+    const response = await fetch(vaultUrl, {
+      method: 'POST',
+      headers: {
+        'X-Vault-Token': vaultToken,
+        'Content-Type': 'application/json',
+      },
+      body: JSON.stringify({ data: keyData }),
+    });
+
+    if (!response.ok) {
+      const errorText = await response.text();
+      throw new Error(`Failed to save to Vault: ${errorText}`);
+    }
+
+    notify.success('Key saved successfully to Vault!', { time: 2000 });
+
+    // Clear form
+    addKeyForm.reset();
+
+    // Redirect back to popup after a short delay
+    setTimeout(() => {
+      window.location.href = '/popup.html';
+    }, 1500);
+  } catch (err) {
+    notify.error(`Error saving key: ${err.message}`);
+  }
+}
+
+function handleCancel() {
+  window.location.href = '/popup.html';
+}
+
+document.addEventListener('DOMContentLoaded', mainLoaded, false);
diff --git a/popup.html b/popup.html
@@ -31,7 +31,19 @@ <h1 class="h1 title">VaultPass</h1>
 
     <main class="main">
       <div role="alert" id="notify" aria-live="assertive"></div>
-      <label for="vault-search">Search Secrets:</label>
+      <div
+        class="flex justify-between items-center"
+        style="margin-bottom: 1rem"
+      >
+        <label for="vault-search">Search Secrets:</label>
+        <button
+          id="addKeyButton"
+          class="button button--primary"
+          title="Add new key"
+        >
+          + Add Key
+        </button>
+      </div>
       <input
         type="search"
         id="vault-search"
diff --git a/popup.js b/popup.js
@@ -81,18 +81,25 @@ async function querySecrets(searchString, manualSearch) {
           return;
         }
         for (const element of (await secretsInPath.json()).data.keys) {
-          const pattern = new RegExp(element);
+          // Vault returns keys as stored (e.g., a%2Fb)
+          // Decode it for pattern matching (a%2Fb -> a/b)
+          const decodedElement = decodeURIComponent(element);
+          const pattern = new RegExp(decodedElement);
           const patternMatches =
-            pattern.test(searchString) || element.includes(searchString);
+            pattern.test(searchString) || decodedElement.includes(searchString);
           if (patternMatches) {
-            const urlPath = `${vaultServerAddress}/v1/${storeComponents.root}/data/${storeComponents.subPath}/${secret}${element}`;
+            // Encode the element again for the URL since Vault will decode it
+            // element is a%2Fb, we need to send a%252Fb so Vault decodes to a%2Fb
+            const encodedElement = encodeURIComponent(element);
+            const urlPath = `${vaultServerAddress}/v1/${storeComponents.root}/data/${storeComponents.subPath}/${secret}${encodedElement}`;
             const credentials = await getCredentials(urlPath);
             const credentialsSets = extractCredentialsSets(
               credentials.data.data
             );
 
             for (const item of credentialsSets) {
-              addCredentialsToList(item, element, resultList);
+              // Display the decoded element name to the user
+              addCredentialsToList(item, decodedElement, resultList);
 
               matches++;
             }
@@ -138,6 +145,14 @@ const searchHandler = function (e) {
 
 searchInput.addEventListener('keyup', searchHandler);
 
+// Add Key button handler
+const addKeyButton = document.getElementById('addKeyButton');
+if (addKeyButton) {
+  addKeyButton.addEventListener('click', function () {
+    window.location.href = '/addKey.html';
+  });
+}
+
 function extractCredentialsSets(data) {
   const keys = Object.keys(data);
   const credentials = [];
