Skip to content
This repository has been archived by the owner on Nov 25, 2021. It is now read-only.

Latest commit

 

History

History
47 lines (23 loc) · 2.05 KB

README.md

File metadata and controls

47 lines (23 loc) · 2.05 KB

CryptoPix

CryptoPix is concept for image sharing service fully anonymous, database-less and client side encryption these data is encrypted and decrypted in the browser using 256bit AES using crypto-js lib.

The images are converted to b64, at this point they are treated as text (Pastebin-like system), encrypted and sent to server by axios.

Easy and minimalistic code, easy to setup and modified with zero configuration

Functionality

In very questionable diagram

Database-less

All sessions in the web generate a JWT token these uses to name the local file and uses to referer the file when it is shared, there is no any database configuration but can be easily modified to connect to a database such as Firebase. The server never knows what files are uploaded and it does not retrieve any user-related in JWT data.

Share link

The sahre link contains id for encrypted file and contains a # character is a fragment URL. The portion of the URL to the right of the # is the key for decrypt, If you try using fragment URLs in an HTTP sniffer like HttpWatch, you’ll never see the fragment IDs in the requested URL or Referer header. The reason is that the fragment identifier is only used by the browser, fragments Are not Sent in HTTP Request Messages!

Configuration & setup

There are a file you might reasonably want to edit if you deploy this code:

  • config.json, for port ip or other server details.

Config details:

max-file-size Bytes format

clean-time Hours Format

secret-key JWT private server key

After this just download repo and run server.go in root server directory.

Demo

License

CryptoPix is licensed under like non-commercial attribution for more details check LICENSE or contact me in my email available in my profile.