take out js extension of jest config until that's set up

Reviewed-on: #27

.gitignore

@@ -35,5 +35,5 @@ npm-debug.log
 /priv/cert/
 
 dev.secret.exs
-/uploads/*
+priv/uploads/*
-!/uploads/.gitkeep
+!priv/uploads/.gitkeep

LICENSE.md

@@ -0,0 +1,157 @@
+### GNU LESSER GENERAL PUBLIC LICENSE
+
+Version 3, 29 June 2007
+
+Copyright (C) 2007 Free Software Foundation, Inc.
+<https://fsf.org/>
+
+Everyone is permitted to copy and distribute verbatim copies of this
+license document, but changing it is not allowed.
+
+This version of the GNU Lesser General Public License incorporates the
+terms and conditions of version 3 of the GNU General Public License,
+supplemented by the additional permissions listed below.
+
+#### 0. Additional Definitions.
+
+As used herein, "this License" refers to version 3 of the GNU Lesser
+General Public License, and the "GNU GPL" refers to version 3 of the
+GNU General Public License.
+
+"The Library" refers to a covered work governed by this License, other
+than an Application or a Combined Work as defined below.
+
+An "Application" is any work that makes use of an interface provided
+by the Library, but which is not otherwise based on the Library.
+Defining a subclass of a class defined by the Library is deemed a mode
+of using an interface provided by the Library.
+
+A "Combined Work" is a work produced by combining or linking an
+Application with the Library. The particular version of the Library
+with which the Combined Work was made is also called the "Linked
+Version".
+
+The "Minimal Corresponding Source" for a Combined Work means the
+Corresponding Source for the Combined Work, excluding any source code
+for portions of the Combined Work that, considered in isolation, are
+based on the Application, and not on the Linked Version.
+
+The "Corresponding Application Code" for a Combined Work means the
+object code and/or source code for the Application, including any data
+and utility programs needed for reproducing the Combined Work from the
+Application, but excluding the System Libraries of the Combined Work.
+
+#### 1. Exception to Section 3 of the GNU GPL.
+
+You may convey a covered work under sections 3 and 4 of this License
+without being bound by section 3 of the GNU GPL.
+
+#### 2. Conveying Modified Versions.
+
+If you modify a copy of the Library, and, in your modifications, a
+facility refers to a function or data to be supplied by an Application
+that uses the facility (other than as an argument passed when the
+facility is invoked), then you may convey a copy of the modified
+version:
+
+- a) under this License, provided that you make a good faith effort
+  to ensure that, in the event an Application does not supply the
+  function or data, the facility still operates, and performs
+  whatever part of its purpose remains meaningful, or
+- b) under the GNU GPL, with none of the additional permissions of
+  this License applicable to that copy.
+
+#### 3. Object Code Incorporating Material from Library Header Files.
+
+The object code form of an Application may incorporate material from a
+header file that is part of the Library. You may convey such object
+code under terms of your choice, provided that, if the incorporated
+material is not limited to numerical parameters, data structure
+layouts and accessors, or small macros, inline functions and templates
+(ten or fewer lines in length), you do both of the following:
+
+- a) Give prominent notice with each copy of the object code that
+  the Library is used in it and that the Library and its use are
+  covered by this License.
+- b) Accompany the object code with a copy of the GNU GPL and this
+  license document.
+
+#### 4. Combined Works.
+
+You may convey a Combined Work under terms of your choice that, taken
+together, effectively do not restrict modification of the portions of
+the Library contained in the Combined Work and reverse engineering for
+debugging such modifications, if you also do each of the following:
+
+- a) Give prominent notice with each copy of the Combined Work that
+  the Library is used in it and that the Library and its use are
+  covered by this License.
+- b) Accompany the Combined Work with a copy of the GNU GPL and this
+  license document.
+- c) For a Combined Work that displays copyright notices during
+  execution, include the copyright notice for the Library among
+  these notices, as well as a reference directing the user to the
+  copies of the GNU GPL and this license document.
+- d) Do one of the following:
+  - 0. Convey the Minimal Corresponding Source under the terms of
+       this License, and the Corresponding Application Code in a form
+       suitable for, and under terms that permit, the user to
+       recombine or relink the Application with a modified version of
+       the Linked Version to produce a modified Combined Work, in the
+       manner specified by section 6 of the GNU GPL for conveying
+       Corresponding Source.
+  - 1. Use a suitable shared library mechanism for linking with
+       the Library. A suitable mechanism is one that (a) uses at run
+       time a copy of the Library already present on the user's
+       computer system, and (b) will operate properly with a modified
+       version of the Library that is interface-compatible with the
+       Linked Version.
+- e) Provide Installation Information, but only if you would
+  otherwise be required to provide such information under section 6
+  of the GNU GPL, and only to the extent that such information is
+  necessary to install and execute a modified version of the
+  Combined Work produced by recombining or relinking the Application
+  with a modified version of the Linked Version. (If you use option
+  4d0, the Installation Information must accompany the Minimal
+  Corresponding Source and Corresponding Application Code. If you
+  use option 4d1, you must provide the Installation Information in
+  the manner specified by section 6 of the GNU GPL for conveying
+  Corresponding Source.)
+
+#### 5. Combined Libraries.
+
+You may place library facilities that are a work based on the Library
+side by side in a single library together with other library
+facilities that are not Applications and are not covered by this
+License, and convey such a combined library under terms of your
+choice, if you do both of the following:
+
+- a) Accompany the combined library with a copy of the same work
+  based on the Library, uncombined with any other library
+  facilities, conveyed under the terms of this License.
+- b) Give prominent notice with the combined library that part of it
+  is a work based on the Library, and explaining where to find the
+  accompanying uncombined form of the same work.
+
+#### 6. Revised Versions of the GNU Lesser General Public License.
+
+The Free Software Foundation may publish revised and/or new versions
+of the GNU Lesser General Public License from time to time. Such new
+versions will be similar in spirit to the present version, but may
+differ in detail to address new problems or concerns.
+
+Each version is given a distinguishing version number. If the Library
+as you received it specifies that a certain numbered version of the
+GNU Lesser General Public License "or any later version" applies to
+it, you have the option of following the terms and conditions either
+of that published version or of any later version published by the
+Free Software Foundation. If the Library as you received it does not
+specify a version number of the GNU Lesser General Public License, you
+may choose any version of the GNU Lesser General Public License ever
+published by the Free Software Foundation.
+
+If the Library as you received it specifies that a proxy can decide
+whether future versions of the GNU Lesser General Public License shall
+apply, that proxy's public statement of acceptance of any version is
+permanent authorization for you to choose that version for the
+Library.

assets/css/app.css

@@ -12,15 +12,15 @@
   transition: opacity 1s ease-out;
 }
 
-.phx-disconnected{
+.phx-disconnected {
   cursor: wait;
 }
-.phx-disconnected *{
+.phx-disconnected * {
   pointer-events: none;
 }
 
 .phx-modal {
-  opacity: 1!important;
+  opacity: 1 !important;
   position: fixed;
   z-index: 1;
   left: 0;
@@ -28,8 +28,8 @@
   width: 100%;
   height: 100%;
   overflow: auto;
-  background-color: rgb(0,0,0);
+  background-color: rgb(0, 0, 0);
-  background-color: rgba(0,0,0,0.4);
+  background-color: rgba(0, 0, 0, 0.4);
 }
 
 .phx-modal-content {
@@ -54,7 +54,6 @@
   cursor: pointer;
 }
 
-
 /* Alerts and form errors */
 .alert {
   padding: 15px;
@@ -88,3 +87,47 @@
   display: block;
   margin: -1rem 0 2rem;
 }
+
+.logo {
+  width: 200px;
+  padding: 20px;
+  border-right: 1px #efefef solid;
+}
+
+.centered-container {
+  margin-top: 3rem;
+  background: none !important;
+  height: auto;
+}
+
+html {
+  height: 100%;
+}
+
+@media screen and (min-width: 1025px) {
+  .centered-container {
+    margin-top: 0px;
+    position: absolute;
+    top: 50%;
+    transform: translate(0, -50%);
+  }
+}
+
+@media screen and (max-width: 1024px) {
+  .logo {
+    display: block;
+    margin-left: auto;
+    margin-right: auto;
+    border-right: none;
+    border-bottom: 1px #efefef solid;
+  }
+
+  .splashHeader {
+    font-size: 1.9rem;
+  }
+
+  .splashSubheader {
+    font-size: 1.4rem;
+    font-weight: 200;
+  }
+}

assets/jest.config

@@ -0,0 +1,9 @@
+import type {Config} from '@jest/types';
+// Sync object
+const config: Config.InitialOptions = {
+  verbose: true,
+  transform: {
+  ‘^.+\\.tsx?$’: ‘ts-jest’,
+  },
+};
+export default config;

assets/js/app.js

@@ -24,6 +24,7 @@ import JustPage from './pages/JustPage';
 import ForPage from './pages/ForPage';
 import YouPage from './pages/YouPage';
 import AuthPage from './pages/AuthPage';
+import PrivacyPolicyPage from './pages/PrivacyPolicyPage';
 
 let csrfToken = document.querySelector("meta[name='csrf-token']").getAttribute("content")
 let liveSocket = new LiveSocket("/live", Socket, {params: {_csrf_token: csrfToken}})
@@ -43,5 +44,5 @@ liveSocket.connect()
 window.liveSocket = liveSocket
 
 window.Components = {
-  SplashPage, JustPage, ForPage, YouPage, AuthPage
+  SplashPage, JustPage, ForPage, YouPage, AuthPage, PrivacyPolicyPage
 }

assets/js/definitions/index.d.ts

@@ -12,5 +12,7 @@ type OAuthEmail = {
 
 type IntendedLink = {
   filename: string | null,
-  filetype: string | null
+  filetype: string | null,
+  text_content: string | null,
+  file_content: string | null
 };

assets/js/pages/AuthPage.tsx

@@ -35,17 +35,22 @@ interface LinkFiles {
   filetype: string | null;
 }
 
+interface GithubEmail {
+  email: string;
+  verified: boolean;
+}
+
 const AuthPage = (props: AuthPageProps) => {
   const { service, recipient, user } = props;
 
   const [secretFileUrl, setSecretFileUrl] = useState<string>("#");
   const [secretFileName, setSecretFileName] = useState<string>("");
-  const [secretMessage, setSecretMessage] = useState<string>("Decrypting...");
+  const [secretMessage, setSecretMessage] = useState<string>("");
   const [messageRevealed, setMessageRevealed] = useState<boolean>(false);
 
   useEffect(() => {
     init().catch((reason) => {
-      alert(reason);
+      console.log(reason);
     });
   }, []);
 
@@ -55,19 +60,32 @@ const AuthPage = (props: AuthPageProps) => {
   const init = async (): Promise<void> => {
     const link: LinkFiles | null = await retrieveLink();
     const keys: Keys | null = await retrieveKeys();
-    if (link && keys) {
+    if (link && keys && user) {
       await decrypt(link, keys);
     }
   };
 
   const userEmails = (): string[] => {
+    if (!user?.emails) return [];
+    if (user.emails.length <= 0) return [];
     return user
       ? user.emails
-          .filter((email) => email.verified)
+          .filter(verifiedUserEmails)
-          .map((email) => email.email)
+          .map((email) => (typeof email == "string" ? email : email.email))
       : [];
   };
 
+  const isGithubEmail = (email: string | GithubEmail): email is GithubEmail =>
+    (email as GithubEmail).verified !== undefined;
+
+  const verifiedUserEmails = (email: string | GithubEmail) => {
+    if (isGithubEmail(email)) {
+      return (email as GithubEmail).verified;
+    } else {
+      return true;
+    }
+  };
+
   const retrieveLink = async (): Promise<LinkFiles | null> => {
     const urlSegments = new URL(document.URL).pathname.split("/");
     const linkId = urlSegments.pop() || urlSegments.pop();
@@ -75,27 +93,42 @@ const AuthPage = (props: AuthPageProps) => {
       alert("Could not find intended link in URL");
       return null;
     }
+    if (!user) {
+      // no need to retrieve link if they weren't authenticated
+      return null;
+    }
 
     const linkResponse = await fetch(`/links/${linkId}`);
-    const linkData: IntendedLink = await linkResponse.json();
+    let linkData: IntendedLink | null;
-    const textResponse = await fetch(
+    let textData = null;
-      `/uploads/links/${linkId}/secret_message.txt`
+    let fileData = null;
-    );
+    if (linkResponse.status !== 200) {
-    const textData = await textResponse.blob();
+      throw new Error(linkResponse.statusText);
-    const fileResponse = await fetch(
+      return null;
-      `/uploads/links/${linkId}/${linkData.filename}`
+    }
-    );
+    linkData = await linkResponse.json();
-    const fileData = await fileResponse.blob();
+
+    if (linkData) {
+      const textResponse = linkData.text_content
+        ? await fetch(`/uploads/links/${linkId}/secret_message.txt`)
+        : null;
+      textData = textResponse ? await textResponse.blob() : null;
+
+      const fileResponse = linkData.file_content
+        ? await fetch(`/uploads/links/${linkId}/${linkData.filename}`)
+        : null;
+      fileData = fileResponse ? await fileResponse.blob() : null;
 
       if (linkData.filename) {
         await setSecretFileName(linkData.filename);
       }
+    }
 
     return {
-      text: textData.size > 0 ? textData : null,
+      text: textData,
-      file: fileData.size > 0 ? fileData : null,
+      file: fileData,
-      filename: linkData.filename,
+      filename: linkData ? linkData.filename : null,
-      filetype: linkData.filetype,
+      filetype: linkData ? linkData.filetype : null,
     };
   };
 
@@ -107,13 +140,13 @@ const AuthPage = (props: AuthPageProps) => {
     fragmentData[0] = fragmentData[0].slice(1);
 
     if (fragmentData.length <= 1) {
-      key = sessionStorage.getItem("link_key");
+      key = sessionStorage.getItem("key_hex");
-      iv = sessionStorage.getItem("link_iv");
+      iv = sessionStorage.getItem("iv_hex");
     } else {
       key = fragmentData[0];
       iv = fragmentData[1];
-      sessionStorage.setItem("link_key", key);
+      sessionStorage.setItem("key_hex", key);
-      sessionStorage.setItem("link_iv", iv);
+      sessionStorage.setItem("iv_hex", iv);
     }
 
     if (key && iv) {
@@ -134,6 +167,7 @@ const AuthPage = (props: AuthPageProps) => {
       true,
       ["encrypt", "decrypt"]
     );
+
     if (link?.text) {
       const textFile = await link.text.arrayBuffer();
       const encodedText = await window.crypto.subtle.decrypt(
@@ -178,10 +212,13 @@ const AuthPage = (props: AuthPageProps) => {
         small
         style={{ color: "#CCCCCC", fontSize: "1.4rem", textAlign: "left" }}
       >
-        Hello {user.name}, you are logged in to{" "}
+        Hello{user.name ? ` ${user.name}` : ""}! You are logged in to{" "}
-        <span style={{ color: "#A849CF" }}>{capitalize(service)}</span> as{" "}
+        <span style={{ color: "#A849CF" }}>{capitalize(service)}</span>
-        <span style={{ color: "#32EFE7" }}>{user.username}</span>. This account
+        {user.username ? " as " : ""}
-        has the following emails associated with it:
+        <span style={{ color: "#32EFE7" }}>
+          {user.username ? `${user.username}` : ""}
+        </span>
+        . This account has the following emails associated with it:
         <br />
         <br />
         <span style={{ color: "#32EFE7" }}>{userEmails().join(", ")}</span>
@@ -201,7 +238,7 @@ const AuthPage = (props: AuthPageProps) => {
   const renderHeader = (): JSX.Element => {
     return (
       <div>
-        <Header2 style={{ margin: ".4rem" }}>
+        <Header2 style={{ marginBottom: ".4rem" }}>
           {user ? "You have been identified!" : "Someone sent you a secret"}
         </Header2>
         {user ? (
@@ -226,7 +263,7 @@ const AuthPage = (props: AuthPageProps) => {
 
   const renderAuth = (): JSX.Element => {
     return (
-      <CenteredContainer fullscreen>
+      <CenteredContainer fullscreen className="centered-container">
         <CenteredContainer>
           {renderHeader()}
           <Spacer space="3rem" />
@@ -256,7 +293,7 @@ const AuthPage = (props: AuthPageProps) => {
 
   const renderReveal = (): JSX.Element => {
     return (
-      <CenteredContainer fullscreen>
+      <CenteredContainer fullscreen className="centered-container">
         <CenteredContainer>
           {renderHeader()}
           <Spacer space="3rem" />

assets/js/pages/ForPage.tsx

@@ -1,11 +1,23 @@
 import React, { useState } from "react";
 
-import { ProgressIndicator, Header2, Button, IconArrow, Label, Input, Select, CenteredContainer, SpaceBetweenContainer, Spacer, TextAlignWrapper, GlobalStyle } from "@intended/intended-ui";
+import {
-
+  ProgressIndicator,
+  Header2,
+  Button,
+  IconArrow,
+  Label,
+  Input,
+  Select,
+  CenteredContainer,
+  SpaceBetweenContainer,
+  Spacer,
+  TextAlignWrapper,
+  GlobalStyle,
+} from "@intended/intended-ui";
 
 type ForPageProps = {
-  csrf: string
+  csrf: string;
-}
+};
 
 const ForPage = (props: ForPageProps) => {
   const [recipientInput, setRecipientInput] = useState("");
@@ -22,12 +34,6 @@ const ForPage = (props: ForPageProps) => {
   };
 
   const postContacts = async () => {
-    // const fragmentData = window.location.hash.split('.');
-    // if (fragmentData.length <= 0) {
-    //   alert("No key found in fragment URI");
-    //   return;
-    // }
-
     const linkId = sessionStorage.getItem("link_id");
     if (!linkId) {
       alert("No created link found in storage");
@@ -35,20 +41,20 @@ const ForPage = (props: ForPageProps) => {
     }
 
     const formData = new FormData();
-    formData.append('recipient', recipientInput);
+    formData.append("recipient", recipientInput);
-    formData.append('service', serviceSelect);
+    formData.append("service", serviceSelect);
     formData.append("link_id", linkId);
 
     try {
       const results = await fetch(`${window.location.origin}/just/for`, {
         headers: {
-          "X-CSRF-Token": props.csrf
+          "X-CSRF-Token": props.csrf,
         },
         body: formData,
-        method: "POST"
+        method: "POST",
       });
       if (!results.ok) {
-        throw new Error('Network response was not OK');
+        throw new Error("Network response was not OK");
       }
 
       await results.json();
@@ -61,7 +67,7 @@ const ForPage = (props: ForPageProps) => {
   return (
     <React.StrictMode>
       <GlobalStyle />
-      <CenteredContainer fullscreen>
+      <CenteredContainer fullscreen className="centered-container">
         <CenteredContainer>
           <ProgressIndicator currentProgress={2} />
           <Header2>Tell Someone</Header2>
@@ -79,7 +85,8 @@ const ForPage = (props: ForPageProps) => {
           <Spacer space="2.5rem" />
           <TextAlignWrapper align="left">
             <Label htmlFor="serviceSelector">
-              What type of account is the above username or email associated with?
+              What type of account is the above username or email associated
+              with?
             </Label>
           </TextAlignWrapper>
           <Select
@@ -87,11 +94,15 @@ const ForPage = (props: ForPageProps) => {
             onChange={handleServiceChange}
             value={serviceSelect}
           >
-            <option value='github'>Github</option>
+            <option value="github">Github</option>
+            <option value="google">Gmail</option>
           </Select>
           <Spacer space="3rem" />
           <SpaceBetweenContainer>
-            <Button variant="secondary" onClick={() => window.location.href = "/just"}>
+            <Button
+              variant="secondary"
+              onClick={() => (window.location.href = "/just")}
+            >
               <IconArrow arrowDirection="left" />
             </Button>
             <Button onClick={postContacts}>Generate Secret Code</Button>

assets/js/pages/JustPage.tsx

@@ -74,7 +74,11 @@ const JustPage = (props: JustPageProps) => {
     }
   };
 
-  const fileFormData = async (form: FormData, aesKey: AESKey) => {
+  const fileFormData = async (
+    form: FormData,
+    aesKey: AESKey
+  ): Promise<FormData> => {
+    if (!fileInput) return form;
     const encoded = HexMix.stringToArrayBuffer(fileInput as string);
     const encrypted = await window.crypto.subtle.encrypt(
       {
@@ -91,9 +95,14 @@ const JustPage = (props: JustPageProps) => {
     HexMix.arrayBufferToString(encrypted, (result: string) => {
       sessionStorage.setItem("encoded_file", result);
     });
+    return form;
   };
 
-  const textFormData = async (form: FormData, aesKey: AESKey) => {
+  const textFormData = async (
+    form: FormData,
+    aesKey: AESKey
+  ): Promise<FormData> => {
+    if (!secretInput) return form;
     const encoded = HexMix.stringToArrayBuffer(secretInput);
     const encrypted = await window.crypto.subtle.encrypt(
       {
@@ -108,6 +117,7 @@ const JustPage = (props: JustPageProps) => {
     HexMix.arrayBufferToString(encrypted, (result: string) => {
       sessionStorage.setItem("encoded_message", result);
     });
+    return form;
   };
 
   const createKey = async (): Promise<AESKey> => {
@@ -141,9 +151,9 @@ const JustPage = (props: JustPageProps) => {
     }
 
     const key = await createKey();
-    const formData = new FormData();
+    let formData = new FormData();
-    await fileFormData(formData, key);
+    formData = await fileFormData(formData, key);
-    await textFormData(formData, key);
+    formData = await textFormData(formData, key);
 
     try {
       const link: Response = await fetch(`${window.location.origin}/just`, {
@@ -167,18 +177,18 @@ const JustPage = (props: JustPageProps) => {
   return (
     <React.StrictMode>
       <GlobalStyle />
-      <CenteredContainer fullscreen>
+      <CenteredContainer fullscreen className="centered-container">
         <CenteredContainer>
           <ProgressIndicator currentProgress={1} />
           <Header2>Create a secret</Header2>
           <TextAlignWrapper align="left">
-            <Label htmlFor="secretInput">Enter your secret here</Label>
+            <Label htmlFor="secretInput">Enter a secret message</Label>
           </TextAlignWrapper>
           <TextArea
             id="secretInput"
             value={secretInput}
             onChange={handleChange}
-            placeholder="Tell me your secrets"
+            placeholder="Only your intended recipient will see this message."
           />
           <Spacer space="2rem" />
           <TextAlignWrapper align="center">

assets/js/pages/PrivacyPolicyPage.tsx

@@ -0,0 +1,62 @@
+import React from "react";
+
+import {
+  CenteredContainer,
+  Header1,
+  Header3,
+  GlobalStyle,
+} from "@intended/intended-ui";
+
+const PrivacyPolicyPage = () => {
+  return (
+    <React.StrictMode>
+      <GlobalStyle />
+      <CenteredContainer
+        fullscreen
+        style={{
+          background: "none",
+          height: "auto",
+        }}
+      >
+        <CenteredContainer wide style={{ maxWidth: "800px" }}>
+          <Header1>Privacy Policy</Header1>
+          <Header3
+            small
+            style={{
+              color: "#CCCCCC",
+              textAlign: "left",
+              fontSize: "18px",
+              lineHeight: 1.6,
+            }}
+          >
+            <p>
+              This instance of Intended Link collects as little data as
+              necessary to provide its service. It can not read the secret
+              message and secret file, and all data associated with a link is
+              deleted once it expires.
+            </p>
+            <p>
+              Each link created will store the recipient's username or email and
+              its associated service for authorization purposes. It will store
+              the filename and filetype of the secret file, if it exists, to
+              make it easier for users to download and use the file once it's
+              decrypted. We store the timestamps of when the Link was created
+              and updated, along with when the link should expire.
+            </p>
+            <p>
+              When you authenticate with one of our supported OAuth providers,
+              we receive the third party's response, and if verification was
+              successful, we store the account's username and verified emails in
+              a short-lived session store. This data is then used to determine
+              whether the user is permitted to download the link's associated
+              secret message and file.
+            </p>
+            <p>This software is licensed under LGPL.</p>
+          </Header3>
+        </CenteredContainer>
+      </CenteredContainer>
+    </React.StrictMode>
+  );
+};
+
+export default PrivacyPolicyPage;

assets/js/pages/SplashPage.tsx

@@ -28,13 +28,31 @@ const SplashPage = (props: SplashPageProps) => {
   return (
     <React.StrictMode>
       <GlobalStyle />
-      <CenteredContainer fullscreen>
+      <CenteredContainer
+        fullscreen
+        style={{
+          background: "none",
+          position: "absolute",
+          top: "50%",
+          transform: "translate(0, -50%)",
+          height: "auto",
+        }}
+      >
         <CenteredContainer wide>
-          <SplashIconHeader />
+          <SplashIconHeader style={{ width: "100%", maxWidth: "440px" }} />
-          <Header1>Securely Share Your Secrets</Header1>
+          <Header1>
+            <span
+              className="splashHeader"
+              style={{ display: "block", marginTop: "20px" }}
+            >
+              Securely Share Your Secrets
+            </span>
+          </Header1>
           <Header3>
-            With Intended Link you can easily share messages and files securely
+            <span className="splashSubheader">
-            and secretly.
+              With Intended Link, you can send messages and files to any social
+              account in a secure and private manner.
+            </span>
           </Header3>
           <Spacer />
           <Button

assets/js/pages/YouPage.tsx

@@ -49,7 +49,7 @@ const YouPage = () => {
   return (
     <React.StrictMode>
       <GlobalStyle />
-      <CenteredContainer fullscreen>
+      <CenteredContainer fullscreen className="centered-container">
         <CenteredContainer>
           <ProgressIndicator currentProgress={3} />
           <Header2>Share the secret</Header2>

assets/package.json

@@ -4,10 +4,11 @@
   "license": "MIT",
   "scripts": {
     "deploy": "webpack --mode production",
-    "watch": "webpack --mode development --watch"
+    "watch": "webpack --mode development --watch",
+    "test": "jest"
   },
   "dependencies": {
-    "@intended/intended-ui": "0.1.21",
+    "@intended/intended-ui": "0.1.26",
     "phoenix": "file:../deps/phoenix",
     "phoenix_html": "file:../deps/phoenix_html",
     "phoenix_live_view": "file:../deps/phoenix_live_view",
@@ -20,6 +21,7 @@
     "@babel/core": "^7.0.0",
     "@babel/preset-env": "^7.0.0",
     "@babel/preset-react": "^7.16.0",
+    "@types/jest": "^27.4.1",
     "@types/phoenix": "^1.5.3",
     "@types/react": "^17.0.37",
     "@types/react-dom": "^17.0.11",
@@ -27,12 +29,14 @@
     "copy-webpack-plugin": "^5.1.1",
     "css-loader": "^3.4.2",
     "hard-source-webpack-plugin": "^0.13.1",
+    "jest": "^27.5.1",
     "mini-css-extract-plugin": "^0.9.0",
     "node-sass": "^4.13.1",
     "optimize-css-assets-webpack-plugin": "^5.0.1",
     "sass-loader": "^8.0.2",
     "source-map-loader": "^3.0.0",
     "terser-webpack-plugin": "^2.3.2",
+    "ts-jest": "^27.1.3",
     "ts-loader": "8.2.0",
     "typescript": "^4.5.2",
     "webpack": "^4.41.5",

assets/tests/integrations/IMPLEMENT.md

@@ -0,0 +1,3 @@
+## Implementation Details
+
+Write info on what we'd use, or just start adding in the tests and remove this file.

config/config.exs

@@ -30,7 +30,9 @@ config :phoenix, :json_library, Jason
 
 config :ueberauth, Ueberauth,
   providers: [
-    github: {Ueberauth.Strategy.Github, [default_scope: "user:email", allow_private_emails: true]}
+    github:
+      {Ueberauth.Strategy.Github, [default_scope: "user:email", allow_private_emails: true]},
+    google: {Ueberauth.Strategy.Google, [default_scope: "email"]}
   ]
 
 config :waffle,

config/prod.exs

@@ -10,7 +10,7 @@ use Mix.Config
 # which you should run after static files are built and
 # before starting your production server.
 config :entendu, EntenduWeb.Endpoint,
-  url: [host: "example.com", port: 80],
+  url: [host: "intended.link", port: 80],
   cache_static_manifest: "priv/static/cache_manifest.json"
 
 # Do not print debug messages in production
@@ -45,8 +45,7 @@ config :logger, level: :info
 # We also recommend setting `force_ssl` in your endpoint, ensuring
 # no data is ever sent via http, always redirecting to https:
 #
-#     config :entendu, EntenduWeb.Endpoint,
+config :my_app, EntenduWeb.Endpoint, force_ssl: [rewrite_on: [:x_forwarded_proto]]
-#       force_ssl: [hsts: true]
 #
 # Check `Plug.SSL` for all available options in `force_ssl`.
 

config/prod.secret.exs

@@ -34,6 +34,10 @@ config :ueberauth, Ueberauth.Strategy.Github.OAuth,
   client_id: System.get_env("GH_OAUTH_ID"),
   client_secret: System.get_env("GH_OAUTH_SECRET")
 
+config :ueberauth, Ueberauth.Strategy.Google.OAuth,
+  client_id: System.get_env("GOOGLE_OAUTH_ID"),
+  client_secret: System.get_env("GOOGLE_OAUTH_SECRET")
+
 # ## Using releases (Elixir v1.9+)
 #
 # If you are doing OTP releases, you need to instruct Phoenix

lib/entendu/user_from_auth.ex

@@ -6,7 +6,6 @@ defmodule Entendu.UserFromAuth do
   require Jason
 
   alias Ueberauth.Auth
-  alias Entendu.Links.Link
 
   def find_or_create(%Auth{} = auth) do
     {:ok, basic_info(auth)}
@@ -71,7 +70,22 @@ defmodule Entendu.UserFromAuth do
     do: email_matches?(recipient, emails) || username_matches?(recipient, username)
 
   defp email_matches?(recipient, emails),
-    do: emails |> Enum.any?(&(&1["verified"] == true and &1["email"] == recipient))
+    do:
+      emails
+      |> Enum.filter(&only_verified_emails/1)
+      |> Enum.map(&retrieve_email/1)
+      |> Enum.any?(&(&1 == recipient))
+
+  # Github lists unverified emails and need to be filtered out
+  defp only_verified_emails(%{"verified" => is_verified}), do: is_verified
+
+  defp only_verified_emails(_), do: true
+
+  defp retrieve_email(%{"email" => email}), do: email
+
+  defp retrieve_email(email), do: email
+
+  defp username_matches?(_recipient, nil), do: false
 
   defp username_matches?(recipient, username), do: String.trim(username) === recipient
 end

lib/entendu_web/controllers/auth_controller.ex

@@ -8,8 +8,6 @@ defmodule EntenduWeb.AuthController do
   plug Ueberauth
 
   alias Entendu.UserFromAuth
-  alias EntenduWeb.LinkView
-  alias Entendu.EncryptedLink
 
   def delete(conn, _params) do
     conn
@@ -27,11 +25,8 @@ defmodule EntenduWeb.AuthController do
   def callback(%{assigns: %{ueberauth_auth: auth}} = conn, _params) do
     link = get_session(conn, :intended_link)
 
-    with %{id: link_id, recipient: recipient} <- link,
+    with %{id: link_id} <- link,
-         {:ok, user} <- UserFromAuth.find_or_create(auth),
+         {:ok, user} <- UserFromAuth.find_or_create(auth) do
-         true <- UserFromAuth.can_access?(recipient, user) do
-      # TODO: send over encrypted data that the frontend can decrypt
-
       conn
       |> put_session(:current_user, user)
       |> configure_session(renew: true)
@@ -42,11 +37,6 @@ defmodule EntenduWeb.AuthController do
         |> put_flash(:error, "Could not find link to authenticate against")
         |> redirect(to: "/just/for/you/")
 
-      false ->
-        conn
-        |> put_flash(:error, "#{link.recipient} was not found in your list of verified emails")
-        |> redirect(to: "/just/for/you/#{link.id}")
-
       {:error, reason} ->
         conn
         |> put_flash(:error, reason)

lib/entendu_web/controllers/link_controller.ex

@@ -9,8 +9,6 @@ defmodule EntenduWeb.LinkController do
   alias Entendu.Links
   alias Links.Link
   alias EntenduWeb.FallbackController
-  alias Entendu.EncryptedLink
-  alias Entendu.UserFromAuth
   alias EntenduWeb.Plugs.AuthorizeLink
 
   plug AuthorizeLink when action in [:text, :file]
@@ -18,7 +16,8 @@ defmodule EntenduWeb.LinkController do
   action_fallback(FallbackController)
 
   def just_page(conn, _params) do
-    render(conn, "just.html")
+    conn
+    |> render("just.html")
   end
 
   def just(conn, params) do
@@ -36,6 +35,7 @@ defmodule EntenduWeb.LinkController do
     with %Link{} = link <- Links.get_link(link_id),
          Links.update_link(link, %{recipient: recipient, service: service}) do
       conn
+      |> put_session(:intended_link, %{})
       |> render("show_authorized.json", %{link: link})
     end
   end
@@ -45,9 +45,9 @@ defmodule EntenduWeb.LinkController do
   end
 
   def auth_page(conn, %{"id" => link_id}) do
-    with %Link{service: service, recipient: recipient} = link <- Links.get_link(link_id) do
+    with %Link{id: id, service: service, recipient: recipient} <- Links.get_link(link_id) do
       conn
-      |> put_session(:intended_link, %{service: service, recipient: recipient})
+      |> put_session(:intended_link, %{id: id, service: service, recipient: recipient})
       |> render("auth.html", %{intended_link: %{service: service, recipient: recipient}})
     end
   end

lib/entendu_web/controllers/page_controller.ex

@@ -6,6 +6,13 @@ defmodule EntenduWeb.PageController do
   use EntenduWeb, :controller
 
   def index(conn, _params) do
-    render(conn, "index.html", current_user: get_session(conn, :current_user))
+    conn
+    |> clear_session()
+    |> render("index.html")
+  end
+
+  def privacy(conn, _params) do
+    conn
+    |> render("privacy_policy.html")
   end
 end

lib/entendu_web/plugs/authorize_link.ex

@@ -2,11 +2,9 @@ defmodule EntenduWeb.Plugs.AuthorizeLink do
   import Plug.Conn
   use EntenduWeb, :controller
 
-  alias Entendu.Repo
   alias Entendu.UserFromAuth
   alias Entendu.Links
   alias Entendu.Links.Link
-  alias EntenduWeb.FallbackController
   alias EntenduWeb.ErrorView
 
   def init(_params) do
@@ -23,7 +21,7 @@ defmodule EntenduWeb.Plugs.AuthorizeLink do
     if !user do
       conn
       |> put_status(403)
-      |> put_view(EntenduWeb.ErrorView)
+      |> put_view(ErrorView)
       |> render("error_code.json", message: "Unauthorized", code: 403)
       |> halt
     else
@@ -35,21 +33,21 @@ defmodule EntenduWeb.Plugs.AuthorizeLink do
         nil ->
           conn
           |> put_status(404)
-          |> put_view(EntenduWeb.ErrorView)
+          |> put_view(ErrorView)
           |> render("error_code.json", message: "Link could not be found", code: 404)
           |> halt
 
         false ->
           conn
           |> put_status(403)
-          |> put_view(EntenduWeb.ErrorView)
+          |> put_view(ErrorView)
           |> render("error_code.json", message: "Unauthorized", code: 403)
           |> halt
 
         {:error, reason} ->
           conn
           |> put_status(422)
-          |> put_view(EntenduWeb.ErrorView)
+          |> put_view(ErrorView)
           |> render("error_code.json", message: reason, code: 422)
           |> halt
       end

lib/entendu_web/router.ex

@@ -18,7 +18,7 @@ defmodule EntenduWeb.Router do
 
   pipeline :authorized_files do
     plug AuthorizeLink
-    plug Plug.Static, at: "/uploads", from: Path.expand('./uploads'), gzip: false
+    plug Plug.Static, at: "/uploads", from: {:entendu, "priv/uploads"}, gzip: false
   end
 
   pipeline :authorized_link do
@@ -35,6 +35,8 @@ defmodule EntenduWeb.Router do
     post "/just/for", LinkController, :for
     get "/just/for/you", LinkController, :you_page
     get "/just/for/you/:id", LinkController, :auth_page
+
+    get "/privacy-policy", PageController, :privacy
   end
 
   scope "/auth", EntenduWeb do

lib/entendu_web/templates/layout/app.html.eex

@@ -1,3 +1,6 @@
 <main role="main">
+  <a href="/">
+    <img src="<%= Routes.static_path(@conn, "/images/logo.png") %>" class="logo" />
+  </a>
   <%= @inner_content %>
 </main>

lib/entendu_web/templates/layout/root.html.leex

@@ -4,12 +4,24 @@
     <meta charset="utf-8"/>
     <meta http-equiv="X-UA-Compatible" content="IE=edge"/>
     <meta name="viewport" content="width=device-width, initial-scale=1.0"/>
+    <!--  Essential META Tags -->
+    <meta property="og:title" content="Intended Link">
+    <meta property="og:type" content="website" />
+    <meta property="og:image" content="https://intended.link/images/thumbnail.jpg">
+    <meta property="og:url" content="https://intended.link">
+    <meta name="twitter:card" content="summary_large_image">
+
+    <!--  Non-Essential, But Recommended -->
+    <meta property="og:description" content="Securely send private messages to social media accounts.">
+    <meta property="og:site_name" content="Intended Link">
+    <meta name="twitter:image:alt" content="Preview of splash page">
+
     <%= csrf_meta_tag() %>
-    <%= live_title_tag assigns[:page_title] || "Entendu", suffix: " · Phoenix Framework" %>
+    <%= live_title_tag assigns[:page_title] || "Intended Link", suffix: "" %>
     <link phx-track-static rel="stylesheet" href="<%= Routes.static_path(@conn, "/css/app.css") %>"/>
     <script defer phx-track-static type="text/javascript" src="<%= Routes.static_path(@conn, "/js/app.js") %>"></script>
   </head>
-  <body style="background: #060b2e;">
+  <body style="background: linear-gradient(180deg,#060b2e 0%,#051745 100%); min-height: 100%;">
     <%= @inner_content %>
   </body>
 </html>

lib/entendu_web/templates/page/index.html.eex

@@ -2,45 +2,4 @@
 
   <%= react_component("Components.SplashPage", %{ error: get_flash(@conn, :error) }) %>
 
-  <%= if @current_user do %>
-    <h2>Welcome, <%= @current_user.name %>!</h2>
-    <div>
-      <img src="<%= @current_user.avatar %>" />
-    </div>
-    <%= link "Logout", to: Routes.auth_path(@conn, :delete), method: "delete", class: "button" %>
-    <br>
-  <% else %>
-    <ul style="display: none;">
-      <li>
-        <a class="button" href="<%= Routes.auth_path(@conn, :request, "github") %>">
-          <i class="fa fa-github"></i>
-          Sign in with GitHub
-        </a>
-      </li>
-      <li>
-        <a class="button" href="<%= Routes.auth_path(@conn, :request, "facebook") %>">
-        <i class="fa fa-facebook"></i>
-        Sign in with Facebook
-        </a>
-      </li>
-      <li>
-        <a class="button" href="<%= Routes.auth_path(@conn, :request, "google") %>">
-        <i class="fa fa-google"></i>
-        Sign in with Google
-        </a>
-      </li>
-      <li>
-        <a class="button" href="<%= Routes.auth_path(@conn, :request, "slack") %>">
-        <i class="fa fa-slack"></i>
-        Sign in with Slack
-        </a>
-      </li>
-      <li>
-        <a class="button" href="<%= Routes.auth_path(@conn, :request, "twitter") %>">
-        <i class="fa fa-twitter"></i>
-        Sign in with Twitter
-        </a>
-      </li>
-    </ul>
-  <% end %>
 </section>

lib/entendu_web/templates/page/privacy_policy.html.eex

@@ -0,0 +1,3 @@
+<section>
+  <%= react_component("Components.PrivacyPolicyPage") %>
+</section>

lib/entendu_web/uploaders/encrypted_link.ex

@@ -36,8 +36,8 @@ defmodule Entendu.EncryptedLink do
   # end
 
   # Override the storage directory:
-  def storage_dir(version, {_file, scope}) do
+  def storage_dir(_version, {_file, scope}) do
-    "uploads/links/#{scope.id}"
+    "priv/uploads/links/#{scope.id}"
   end
 
   # Provide a default URL if there hasn't been a file uploaded

mix.exs

@@ -50,6 +50,7 @@ defmodule Entendu.MixProject do
       {:libcluster, "~> 3.2"},
       {:ueberauth, "~> 0.7.0"},
       {:ueberauth_github, "~> 0.8.1"},
+      {:ueberauth_google, "~> 0.10.1"},
       {:react_phoenix, "~> 1.3"},
       {:params, "~> 2.2"},
       {:waffle, "~> 1.1"},

mix.lock

@@ -41,6 +41,7 @@
   "telemetry_poller": {:hex, :telemetry_poller, "0.5.1", "21071cc2e536810bac5628b935521ff3e28f0303e770951158c73eaaa01e962a", [:rebar3], [{:telemetry, "~> 0.4", [hex: :telemetry, repo: "hexpm", optional: false]}], "hexpm", "4cab72069210bc6e7a080cec9afffad1b33370149ed5d379b81c7c5f0c663fd4"},
   "ueberauth": {:hex, :ueberauth, "0.7.0", "9c44f41798b5fa27f872561b6f7d2bb0f10f03fdd22b90f454232d7b087f4b75", [:mix], [{:plug, "~> 1.5", [hex: :plug, repo: "hexpm", optional: false]}], "hexpm", "2efad9022e949834f16cc52cd935165049d81fa9e925690f91035c2e4b58d905"},
   "ueberauth_github": {:hex, :ueberauth_github, "0.8.1", "0be487b5afc29bc805fa5e31636f37c8f09d5159ef73fc08c4c7a98c9cfe2c18", [:mix], [{:oauth2, "~> 1.0 or ~> 2.0", [hex: :oauth2, repo: "hexpm", optional: false]}, {:ueberauth, "~> 0.7.0", [hex: :ueberauth, repo: "hexpm", optional: false]}], "hexpm", "143d6130b945ea9bdbd0ef94987f40788f1d7e8090decbfc0722773155e7a74a"},
+  "ueberauth_google": {:hex, :ueberauth_google, "0.10.1", "db7bd2d99d2ff38e7449042a08d9560741b0dcaf1c31191729b97188b025465e", [:mix], [{:oauth2, "~> 1.0 or ~> 2.0", [hex: :oauth2, repo: "hexpm", optional: false]}, {:ueberauth, "~> 0.7.0", [hex: :ueberauth, repo: "hexpm", optional: false]}], "hexpm", "b799f547d279bb836e1f7039fc9fbb3a9d008a695e2a25bd06bffe591a168ba1"},
   "unicode_util_compat": {:hex, :unicode_util_compat, "0.7.0", "bc84380c9ab48177092f43ac89e4dfa2c6d62b40b8bd132b1059ecc7232f9a78", [:rebar3], [], "hexpm", "25eee6d67df61960cf6a794239566599b09e17e668d3700247bc498638152521"},
   "waffle": {:hex, :waffle, "1.1.5", "11b8b41c9dc46a21c8e1e619e1e9048d18d166b57b33d1fada8e11fcd4e678b3", [:mix], [{:ex_aws, "~> 2.1", [hex: :ex_aws, repo: "hexpm", optional: true]}, {:ex_aws_s3, "~> 2.1", [hex: :ex_aws_s3, repo: "hexpm", optional: true]}, {:hackney, "~> 1.9", [hex: :hackney, repo: "hexpm", optional: false]}, {:sweet_xml, "~> 0.6", [hex: :sweet_xml, repo: "hexpm", optional: true]}], "hexpm", "68e6f92b457b13c71e33cc23f7abb60446a01515dc6618b7d493d8cd466b1f39"},
   "waffle_ecto": {:hex, :waffle_ecto, "0.0.11", "3d9581b3dfc83964ad968ef6bbf31132b5e6959c542a74c49e2a2245a9521048", [:mix], [{:ecto, "~> 3.0", [hex: :ecto, repo: "hexpm", optional: false]}, {:waffle, "~> 1.0", [hex: :waffle, repo: "hexpm", optional: false]}], "hexpm", "626c2832ba94e20840532e609d3af70526d18ff9dfe1b352afb3fbabedb31a7e"},