目录
- binfix config for docs13年前
- clientremoved jetpack specific stuff from client.js13年前
- etcupgrade hapi and hawk; have PUT payload return timestamp13年前
- libensure request params are marked required13年前
- publicadd inline install script13年前
- scriptsavoid undefined emails doc13年前
- testaccount creation now takes an initial payload13年前
- viewsadd inline install script13年前
- .awsbox.jsonconfigure database for production13年前
- .gitignoredeploy, cleanup, and serve new extension updates13年前
- .travis.ymladd irc notifications for travis13年前
- CODE_OF_CONDUCT.mdAdd Mozilla Code of Conduct file7年前
- README.mdinitial docs on client api13年前
- grunt.jsadd hybrid of sandstone and Mozilla labs theme13年前
- package.jsonmake sure travis has enough time for crypto13年前
邀请码
版权所有:中国计算机学会技术支持:开源发展技术委员会
京ICP备13000930号-9
京公网安备 11010802032778号
What is this?
This is a highly EXPERIMENTAL server to support Gombot, a tool that securely remembers your passwords for you.
Deploy site changes
If you’re on the Identity team, simply clone this repo then add a new remote repo:
and push your changes:
and you’re done.
Update addons
Push code to the gombot-chrome repo and the extension will be built and hosted on dev.tobmog.org for immediate download.
Client API V1
The client can be used from the browser or node.js.
GombotClient(url, options)The constructor for new clients.
url: URL for the gombot server API endpoint, e.g.http://gombot.org/api.options: this is useful for initializing a client with credentials, rather than signing in lateruser: email address of user for auth’d requestskeys: and object withauthKey,aesKey, andhmacKeykeys of the correspondinguserExample:
Callbacks
Every API call takes a callback with a common signature.
callbackshould be a function with signaturefunction (err, result) { }.resultwill have a commonsuccessproperty across all API calls that indicates if the operation was successful or not (trueorfalse). Additional result properties are described where appropriate.client.context([args], [callback])This will retrieve entropy from the server and seed the crypto library for future computations. It should be called early on before encrypt/decrypt methods are used.
client.account(args, [callback]);Creates a new account and generates crypto keys.
args: object with properties:email: user’s email addresspass: plaintext master passwordnewsletter: boolean indicating whether or not the user wishes to receive future email updatesAfter successful account creation,
clientwill have cryptographic keys stored inclient.keysin order to make authorized API calls later on.client.emailstores the email address of the account.client.status(args, [callback])Makes an authorized API request, so
client.keysshould have the correct keys for theclient.emailaccount.client.signIn(args, [callback])args: object with properties:email: user’s email addresspass: plaintext master passwordAfter successful sign in,
clientwill have cryptographic keys stored inclient.keysin order to make authorized API calls later on.client.emailstores the email address of the account.client.storePayload(args, [callback])Makes an authorized API request to store new user credentials
args: object with properties:payload: plaintext credentials; encrypted by the client before sendingclient.getPayload(args, [callback])Makes an authorized API request to retrieve new user credentials
argsis empty.callbackshould be a function with signaturefunction (err, result) { }.resultwill have three keys:success: the standard success/failure indicatorpayload: the decrypted payloadupdated: the timestamp of when the payload was last updatedclient.getTimestamp(args, [callback])Makes an authorized API request to retrieve the timestamp of when the user’s payload was last updated
argsis empty.callbackshould be a function with signaturefunction (err, result) { }.resultwill have three keys:success: the standard success/failure indicatorupdated: the timestamp of when the payload was last updated