messy code, but it works

Author: kurtseifried

README.md

@@ -21,7 +21,7 @@ Simple create a page rule:
 
 The service is split up into different subdomains to make securing and serving it from different services and levels easier. webfinger.io currently relies upon email based confirmation of a normalized email address (e.g. we remove +stuff and dots) which provides strong proof of control. We do not currently confirm Mastodon ID's are owned by the user, this is planned for the future
 
-### register
+### registration
 
 webfinger.io frontpage and entry form, passes POST request to processing
 
@@ -31,8 +31,12 @@ processing script for entry form, takes POST request, checks if email Block is o
 
 ### confirmation
 
-confirmation script takes GET request with action, email, key and optional Mastodon ID (if registering one), presents user with a confirmation screen, if they hit submit it sends a POST request to itself and does the action specified and clears the auth record
+confirmation script takes a GET request with action, email, key and optional Mastodon ID (if registering one) for email processing, presents user with a confirmation screen, if they hit submit it sends a POST request to itself and does the action specified and clears the auth record. Also handles POST requests directly for social media via the verification API.
 
 ### webfinger
 
 webfinger script that serves requests from KV store, please note it normalizes outgoing emails and Mastodon ID's for safety and reliability
+
+## Validation API
+
+PHP script to run the validation (is Mastodon ID X in web page Y basically)

assets/mastodon-validation.png

@@ -0,0 +1,11 @@
+# Webfinger
+
+You'll need a Cloudflare account with workers and two KV stores (one for auth and one for prod).
+
+# API Validation Server
+
+This is currently a PHP script and some custom scripts to start the VPN/etc. Long term it will be containerized to ease setup.
+
+# Email
+
+See DKIM-setup.md

docs.webfinger.io/SETUP.MD

@@ -0,0 +1,2 @@
+# TODO 
+

docs.webfinger.io/TODO.md

@@ -1,6 +1,6 @@
 {
   "name": "webservice",
-  "version": "0.0.0",
+  "version": "0.1.0",
   "devDependencies": {
     "wrangler": "2.1.10"
   },

webservice/package.json

@@ -57,7 +57,7 @@ If you have any concerns or questions just hit reply to contact our admin help.
 
     email_content["footer"] = `
 \n\n
-` + globalDomain + ` is a Cloud Security Alliance (https://cloudsecurityalliance.org/) Research beta. 
+` + globalDomain + ` is a Cloud Security Alliance (https://cloudsecurityalliance.org/) Research project. 
 The Cloud Security Alliance is a not-for-profit organization promoting best practices for 
 providing security assurance within Cloud Computing. We are also working on various projects 
 within the Blockchain and Fediverse ecosystems. The Cloud Security Alliance privacy policy is available at:

webservice/src/emailContentProcessing.js

@@ -15,7 +15,7 @@ export function gethtmlContentConfirmation(status, data) {
     <html lang="en">
     <head>
     <meta charset="utf-8">
-    <title>webfinger.io (a Cloud Security Alliance Research beta)</title>
+    <title>webfinger.io (a Cloud Security Alliance Research project)</title>
     <meta name="viewport" content="width=device-width, initial-scale=1.0">
     <link rel="icon" href="https://assetswebfingerio.pages.dev/favicon.ico"/>
     <link rel="stylesheet" href="https://assetswebfingerio.pages.dev/fonts.googleapis.com-css-family-Roboto-300-300italic-700-700italic.txt"/>
@@ -26,7 +26,7 @@ export function gethtmlContentConfirmation(status, data) {
     <body>
     <main>
     <section class="container" id="registration">
-    <h1>webfinger.io is a <a href="https://cloudsecurityalliance.org/">Cloud Security Alliance</a> Research beta</h1>
+    <h3>webfinger.io is a <a href="https://cloudsecurityalliance.org/">Cloud Security Alliance</a> Research project</h3>
     `
 
     html_content_reply["echovariables"] = `
@@ -64,7 +64,7 @@ Please check that your email and Mastodon ID were entered correctly.</p>
 `;
 
     html_content_reply["link_mastodon_id"] = `
-<p>We have processed your request to link MASTODON_ID to EMAIL_ADDRESS.</p>
+<p>We have processed your request to link MASTODON_ID to <a href="https://webfinger.io/EMAIL_ADDRESS">EMAIL_ADDRESS</a>. You can test it by clicking on your email address</p>
 
 <p>The Cloud Security Alliance privacy policy is available 
 <a href="https://cloudsecurityalliance.org/legal/privacy-notice/">here</a>.</p>

webservice/src/htmlContentConfirmation.js

@@ -9,7 +9,7 @@ export function gethtmlContentProcessing(status, data) {
     <html lang="en">
     <head>
     <meta charset="utf-8">
-    <title>webfinger.io (a Cloud Security Alliance Research beta)</title>
+    <title>webfinger.io (a Cloud Security Alliance Research project)</title>
     <meta name="viewport" content="width=device-width, initial-scale=1.0">
     <link rel="icon" href="https://assetswebfingerio.pages.dev/favicon.ico"/>
     <link rel="stylesheet" href="https://assetswebfingerio.pages.dev/fonts.googleapis.com-css-family-Roboto-300-300italic-700-700italic.txt"/>
@@ -20,7 +20,7 @@ export function gethtmlContentProcessing(status, data) {
     <body>
     <main>
     <section class="container" id="registration">
-    <h1>webfinger.io is a <a href="https://cloudsecurityalliance.org/">Cloud Security Alliance</a> Research beta</h1>
+    <h3>webfinger.io is a <a href="https://cloudsecurityalliance.org/">Cloud Security Alliance</a> Research project</h3>
     
     `
 
@@ -62,6 +62,7 @@ export function gethtmlContentProcessing(status, data) {
     </body>
     </html>
     `;
+
     html_content["delete_record"] = `
     <p>We have processed your request to delete the record for EMAIL_ADDRESS, you should check for 
     an email shortly, please check your spam folders if it doesn't show up. It will be valid 

webservice/src/htmlContentProcessing.js

@@ -0,0 +1,143 @@
+// filename: ./src/htmlContentProcessingNew.js
+
+export function gethtmlContentProcessingNew(processing_results, data) {
+    // check processing_results and generate the HTML
+    // then process the variables via data
+    
+    html_content = {};
+
+    html_content["header"] = `
+    <!DOCTYPE html>
+    <html lang="en">
+    <head>
+    <meta charset="utf-8">
+    <title>webfinger.io (a Cloud Security Alliance Research project)</title>
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <link rel="icon" href="https://assetswebfingerio.pages.dev/favicon.ico"/>
+    <link rel="stylesheet" href="https://assetswebfingerio.pages.dev/fonts.googleapis.com-css-family-Roboto-300-300italic-700-700italic.txt"/>
+    <link rel="stylesheet" href="https://assetswebfingerio.pages.dev/normalize.css"/>
+    <link rel="stylesheet" href="https://assetswebfingerio.pages.dev/milligram.min.css"/>
+    <link rel="stylesheet" href="https://assetswebfingerio.pages.dev/main.css"/>
+    </head>
+    <body>
+    <main>
+    <section class="container" id="registration">
+    <h3>webfinger.io is a <a href="https://cloudsecurityalliance.org/">Cloud Security Alliance</a> Research project</h3>
+    
+    `
+
+    html_content["badinput"] = `
+    <p>We cannot process your request at this time, please try again later.
+    Please check that your email and Mastodon ID were entered correctly.</p>
+    `;
+
+    html_content["link_mastodon_id_email"] = `
+    <p>We have processed your request to link MASTODON_ID to EMAIL_ADDRESS, you should check 
+    for an email shortly, please check your spam folders if it doesn't show up. 
+    It will be valid for one hour, and then the link expires.</p>
+    `;
+
+    html_content["link_mastodon_id_social"] = `
+    <p>We have processed your request to link MASTODON_ID to SOCIAL_ID (please wait about 10 seconds and then click to ensure it works, you should see a success and a link to your GitHub profile). </p>
+    `;
+
+    html_content["block_email"] = `
+    <p>We have processed your request to unsubscribe and block any more email to EMAIL_ADDRESS. 
+    In order to prevent abuse we've sent an email with a confirmation link, 
+    please check your spam folders if it doesn't show up. It will be valid 
+    for one hour, and then the link expires.</p>
+    `;
+
+    html_content["delete_record"] = `
+    <p>We have processed your request to delete the record for SOCIAL_ID, you should check for 
+    an email shortly, please check your spam folders if it doesn't show up. It will be valid 
+    for one hour, and then the link expires.</p>
+    `;
+
+    html_content["footer"] = `
+    <p>The Cloud Security Alliance privacy policy is available 
+    <a href="https://cloudsecurityalliance.org/legal/privacy-notice/">here</a>.</p>
+    </section>
+    
+    </body>
+    </html>
+    `;
+
+
+    
+    new_content = html_content["header"];
+
+    // Email processing
+
+    if (processing_results["email_address"]){
+        if (processing_results["email_address"] == "SUCCESS:LINK_MASTODON_ID") {
+            new_content = new_content + html_content["link_mastodon_id_email"];
+        }
+        else if (processing_results["email_address"] == "SUCCESS:BLOCK_EMAIL") {
+            new_content = new_content + html_content["block_email"];
+        }
+        else if (processing_results["email_address"] == "SUCCESS:DELETE_RECORD") {
+            new_content = new_content + html_content["delete_record"];
+        }
+        // replacements go later since email is special
+    }
+
+
+    // Twitter processing
+    if (processing_results["twitter_id"]){
+        if (processing_results["twitter_id"] == "SUCCESS:LINK_MASTODON_ID") {
+            new_content = new_content + html_content["link_mastodon_id_social"];
+        }
+        else if (processing_results["twitter_id"] == "SUCCESS:DELETE_RECORD") {
+            new_content = new_content + html_content["delete_record"];
+        }
+        new_content = new_content.replace(/SOCIAL_ID/g, "<a target=\"_blank\" href=\"https://webfinger.io/@TWITTER_ID\">https://webfinger.io/@TWITTER_ID</a>");
+    }
+
+    // GitHub processing
+    if (processing_results["github_id"]){
+        if (processing_results["github_id"] == "SUCCESS:LINK_MASTODON_ID") {
+            new_content = new_content + html_content["link_mastodon_id_social"];
+        }
+        else if (processing_results["github_id"] == "SUCCESS:DELETE_RECORD") {
+            new_content = new_content + html_content["delete_record"];
+        }
+        new_content = new_content.replace(/SOCIAL_ID/g, "<a target=\"_blank\" href=\"https://webfinger.io/github/GITHUB_ID\">https://webfinger.io/github/GITHUB_ID</a>");
+    }
+
+    // Reddit processing
+    if (processing_results["reddit_id"]){
+        if (processing_results["reddit_id"] == "SUCCESS:LINK_MASTODON_ID") {
+            new_content = new_content + html_content["link_mastodon_id_social"];
+        }
+        else if (processing_results["reddit_id"] == "SUCCESS:DELETE_RECORD") {
+            new_content = new_content + html_content["delete_record"];
+        }
+        new_content = new_content.replace(/SOCIAL_ID/g, "<a target=\"_blank\" href=\"https://webfinger.io/u/REDDIT_ID\">https://webfinger.io/u/REDDIT_ID</a>");
+    }
+
+    // Add footer
+    new_content = new_content + html_content["footer"];
+
+    // replacements of ID's, tokens, etc.
+    if (data["mastodon_id"]) {
+        new_content = new_content.replace(/MASTODON_ID/g, data["mastodon_id"]);
+    } 
+    if (data["token"]) {
+        new_content = new_content.replace(/TOKEN/g, data["token"]);
+    }
+    if (data["email_address"]) {
+        new_content = new_content.replace(/EMAIL_ADDRESS/g, data["email_address"]);
+    } 
+    if (data["twitter_id"]) {
+        new_content = new_content.replace(/TWITTER_ID/g, data["twitter_id"]);
+    } 
+    if (data["github_id"]) {
+        new_content = new_content.replace(/GITHUB_ID/g, data["github_id"]);
+    } 
+    if (data["reddit_id"]) {
+        new_content = new_content.replace(/REDDIT_ID/g, data["reddit_id"]);
+    } 
+    return new_content;
+
+}