[
{
"path": ".editorconfig",
"content": "root = true\n\n[*]\nend_of_line = lf\ninsert_final_newline = true\nindent_style = space\nindent_size = 4\n\n[{.prettierrc,package.json,package-lock.json,.babelrc}]\nindent_size = 2\n"
},
{
"path": ".github/workflows/test.yml",
"content": "name: Tests\n\non: push\n\njobs:\n lint:\n runs-on: ubuntu-latest\n strategy:\n matrix:\n node-version: [20.x]\n steps:\n - uses: actions/checkout@v2\n - name: Node.js specs ${{ matrix.node-version }}\n uses: actions/setup-node@v1\n with:\n node-version: ${{ matrix.node-version }}\n - run: npm ci\n - run: npm run test:format\n release:\n runs-on: ubuntu-latest\n strategy:\n matrix:\n node-version: [20.x]\n steps:\n - uses: actions/checkout@v2\n - name: Node.js specs ${{ matrix.node-version }}\n uses: actions/setup-node@v1\n with:\n node-version: ${{ matrix.node-version }}\n - run: npm ci\n - run: npm run release\n"
},
{
"path": ".gitignore",
"content": "*.log\n.DS_Store\n.history\nnode_modules\n/dist\n/release\nArchive.zip\ndist.zip\n/secrets.json\n"
},
{
"path": ".prettierrc",
"content": "{\n \"printWidth\": 120,\n \"tabWidth\": 4,\n \"trailingComma\": \"none\"\n}\n"
},
{
"path": ".vscode/settings.json",
"content": "{\n \"vsicons.presets.angular\": false,\n \"eslint.enable\": false,\n \"files.associations\": {\n \"**/*.js\": \"javascriptreact\"\n },\n \"typescript.preferences.importModuleSpecifierEnding\": \"js\"\n}\n"
},
{
"path": "CHANGELOG.md",
"content": "# Buttercup browser extension changelog\n\n## v3.2.0\n_2024-04-09_\n\n * Input button customisation (global)\n * Dutch language (not yet selectable)\n * **Bugfix**:\n * Some fields not filled correctly (partial fix)\n * Login save prompt shown for existing credentials\n\n## v3.1.0\n_2024-03-27_\n\n * ([#467](https://github.com/buttercup/buttercup-browser-extension/issues/467)) Entry info popup\n * **Bugfix**:\n * ([#469](https://github.com/buttercup/buttercup-browser-extension/issues/469)) Forms recognised as login forms when they should not be\n * ([#466](https://github.com/buttercup/buttercup-browser-extension/issues/466)) Bad OTP URIs crash application\n * Entry page search does nothing when first opening the extension\n\n## v3.0.0\n_2024-03-26_\n\n * **Major rewrite**\n * Requires desktop application for vault access\n * Nested iframe traversal\n * OTP support\n\n## v2.26.0\n_2023-11-08_\n\n * **Important version 3 update notice**\n * Updates for core libraries and datasources\n\n## v2.25.3\n_2023-01-31_\n\n * **Bugfix**:\n * Google Drive would fail when tokens expire (new response format)\n\n## v2.25.2\n_2022-09-03_\n\n * **Bugfix**:\n * Fixed Dropbox connectivity issues\n * Fixed Google Drive re-authentication loop, short auth time\n\n## v2.25.1\n_2022-08-16_\n\n * **Bugfix**:\n * Format B saving new properties would fail\n * Format B conversion would omit history\n\n## v2.25.0\n_2022-06-02_\n\n * Buttercup upgrade: v6\n * Improved Dropbox/Google Drive integrations\n * Improved vault stability and performance\n * Improved support for Vault Format B\n * Removed My Buttercup integration\n * Vault editor page redesign\n * Updated vault UI\n\n## v2.24.3\n_2021-05-24_\n\n * **Bugfix**:\n * Vault pages not taking up 100% of the height of the window\n\n## v2.24.2\n_2021-05-22_\n\n * **Bugfix**:\n * ([#381](https://github.com/buttercup/buttercup-browser-extension/issues/381)) Search results not showing most recent result (URL detection)\n * WebDAV connection crashes tab during failed connection attempt (when adding a vault)\n * **Critical auto-update issue**: Core crash when receiving updated vaults in the background\n\n## v2.24.1\n_2021-01-06_\n\n * Remove `activeTab` permission requirement\n * **Bugfix**:\n * ([#393](https://github.com/buttercup/buttercup-browser-extension/issues/393)) Copy to clipboard not working for in-page dialog\n\n## v2.24.0\n_2020-12-09_\n\n * Site icons for results within in-page search dialog\n * Performance improvements regarding search\n * Vault unlock/save performance improvements\n\n## v2.23.1\n_2020-11-27_\n\n * **Bugfix**:\n * ([#368](https://github.com/buttercup/buttercup-browser-extension/issues/368)) Popup / Dialog menus very slow to open (performance bugfix for search)\n\n## v2.23.0\n_2020-09-05_\n\n * Dynamic icons defaults to **enabled**\n * Removed dynamic icons setting popup page\n * **Bugfix**:\n * ([#366](https://github.com/buttercup/buttercup-browser-extension/issues/366)) Google Drive bad refresh-token method call\n\n## v2.22.0\n_2020-09-04_\n\n * Core group/entry lookup performance upgrades\n * **Bugfix**:\n * ([#370](https://github.com/buttercup/buttercup-browser-extension/issues/370)) Critical CPU/memory use after some time\n * Entries not able to be moved from group to group\n\n## v2.21.0\n_2020-08-30_\n\n * **Buttercup Core v5**\n * Improved performance\n * Improved stability\n * Future support for **Vault Format B**\n * Dynamic icons for entries (optional)\n * Reduced extension size (< 50% of the size of 2.20.2)\n * Removed `Buffer` dependencies\n * **Bugfix**:\n * Search wouldn't work (no results)\n\n## v2.20.2\n_2020-08-19_\n\n * **Bugfix**:\n * ([buttercup-core#287](https://github.com/buttercup/buttercup-core/issues/287)) Vaults grow to enormous size\n\n## v2.20.1\n_2020-08-03_\n\n * **Attachments** (My Buttercup)\n * Add, remove, preview and download attachments when using My Buttercup vaults\n * Core memory/stability improvements when merging vault changes from remote sources\n\n## v2.19.0\n_2020-07-25_\n\n * New Buttercup form button behaviour (to improve login form stability)\n * Clipboard-writing permission for certain browsers\n * Improved auto-update stability\n\n## v2.18.0\n_2020-07-07_\n\n * Search results won't show items in trash\n * **Bugfix**:\n * ([#337](https://github.com/buttercup/buttercup-browser-extension/pull/337)) No login-save-prompt when entry selected for login form (includes auto login)\n\n## v2.17.0\n_2020-07-05_\n\n * New search functionality\n * Result scoring per domain\n * Vault type icons on unlock-all-vaults page\n\n## v2.16.2\n_2020-07-02_\n\n * **Bugfix**:\n * Unable to enter form details when selecting entry result in dialog\n\n## v2.16.1\n_2020-07-01_\n\n * **Bugfix**:\n * Unable to select vault in save credentials form\n * No search results in popup dialog\n * Broken vault lock state in menu\n\n## v2.16.0\n_2020-06-30_\n\n * Core version 4\n * My Buttercup datasource support\n * ([#340](https://github.com/buttercup/buttercup-browser-extension/pull/340)) Allow localhost in disabled domains\n\n## v2.15.1\n_2020-04-02_\n\n * **Bugfix**:\n * WebDAV would fail to connect on some services, such as ownCloud\n\n## v2.15.0\n_2020-03-18_\n\n * Disable save prompt for domains\n * Memory for all login form inputs\n * **Bugfix**:\n * Buttons would disappear from some forms (Dropbox)\n\n## v2.14.0\n_2020-02-03_\n\n * Upgrade webdav for reduced application size\n * **Bugfix**:\n * ([#325](https://github.com/buttercup/buttercup-browser-extension/issues/325)) New vaults fail to create\n * ([#286](https://github.com/buttercup/buttercup-browser-extension/issues/286)) Unlock-vaults page not opening in FF after clicking button in on-page dialog\n\n## v2.13.1\n_2020-01-24_\n\n * **Bugfix**:\n * ([#324](https://github.com/buttercup/buttercup-browser-extension/issues/324)) Very slow vault contents navigation\n * ([#323](https://github.com/buttercup/buttercup-browser-extension/issues/323)) OTP (HOTP) failures crashing entire vault management UI\n * ([#322](https://github.com/buttercup/buttercup-browser-extension/issues/322)) Auto-update of search results by URL not working\n\n## v2.13.0\n_2020-01-22_\n\n * Group context menu: creation, renaming, moving and deletion\n * New group in root button\n * Entry field history (basic)\n * **Bugfix**:\n * Credit card entry type would crash application\n * State sync for vault management interface inconsistent\n\n## v2.12.0\n_2020-01-18_\n\n * ([#320](https://github.com/buttercup/buttercup-browser-extension/issues/320)) Open permissions option when adding Google Drive vaults\n * **Bugfix**:\n * ([#270](https://github.com/buttercup/buttercup-browser-extension/issues/270)) _(2nd attempt)_: Support multiple Google accounts\n * ([#319](https://github.com/buttercup/buttercup-browser-extension/issues/319)) Google Drive authentication not working in Microsoft Edge (unofficial patch - pre-release)\n\n## v2.11.1\n_2020-01-08_\n\n * **Bugfix**:\n * ([#316](https://github.com/buttercup/buttercup-browser-extension/issues/316)) `createSession` is not defined (local file host vaults)\n\n## v2.11.0\n_2020-01-05_\n\n * Core integration with App-Env for web-based crypto improvement\n * ([#270](https://github.com/buttercup/buttercup-browser-extension/issues/270)) Prompt for account-selection on Google authentication (Google Drive) to support multiple accounts\n * ([#245](https://github.com/buttercup/buttercup-browser-extension/issues/245)) Google Drive permissions reduced - Only files touched by Buttercup are accessible to the application\n * **Bugfix**:\n * ([#314](https://github.com/buttercup/buttercup-browser-extension/issues/314)) Unable to open Google Drive vault\n\n## v2.10.1\n_2019-12-26_\n\n * **Bugfix**:\n * ([#312](https://github.com/buttercup/buttercup-browser-extension/issues/312)) No login prompt visible on Firefox\n\n## v2.10.0\n_2019-12-24_\n\n * Ability to change vault password\n * **Bugfix**:\n * ([#307](https://github.com/buttercup/buttercup-browser-extension/issues/307)) Cannot save new note-type entry (or any other custom types)\n\n## v2.9.0\n_2019-11-12_\n\n * My Buttercup preparation\n * ownCloud/Nextcloud removed in favour of WebDAV (existing connections should still function)\n * ([#95](https://github.com/buttercup/buttercup-browser-extension/issues/95)) Context menus to choose credentials for form-filling and login\n\n## v2.8.2\n_2019-09-01_\n\n * **Bugfix**:\n * ([#269](https://github.com/buttercup/buttercup-browser-extension/issues/269)) Password field in popup menu not copy-able and always visible\n\n## v2.8.1\n_2019-09-01_\n\n * **Bugfix**:\n * ([#253](https://github.com/buttercup/buttercup-browser-extension/issues/253)) Vault saving via editing UI (second attempt)\n\n## v2.8.0\n_2019-07-23_\n\n * **Bugfix**:\n * ~~([#253](https://github.com/buttercup/buttercup-browser-extension/issues/253)) Vault saving via editing UI~~\n * ([#259](https://github.com/buttercup/buttercup-browser-extension/pull/259)) General improvements to the add-vault page\n * Unlock button on in-page dialog when vaults are locked\n * Unlock button for single-vault now navigates to edit page\n * TOTP / HOTP support via vault UI (display only, no form-fill)\n * Entry value type support via vault UI\n * Updated Dropbox/Google Drive clients for compatibiltiy\n\n## v2.7.0\n_2019-04-28_\n\n * Vault editing interface\n\n## v2.6.0\n_2019-04-14_\n\n * ([#246](https://github.com/buttercup/buttercup-browser-extension/issues/246)) Google Drive refresh token support\n\n## v2.5.1\n_2019-03-13_\n\n * **Bugfix**:\n * ([#244](https://github.com/buttercup/buttercup-browser-extension/issues/244)) Google Drive fetching fails on large directories\n\n## v2.5.0\n_2019-03-09_\n\n * **Google Drive** support\n * Unlock-vaults button in popup\n\n## v2.4.1\n_2019-02-05_\n\n * **Bugfix**:\n * Regression in auto-unlock functionality\n\n## v2.4.0\n_2019-02-04_\n\n * ([#235](https://github.com/buttercup/buttercup-browser-extension/issues/235)) Use local (static) icons and don't request them from remote sources\n * ([#171](https://github.com/buttercup/buttercup-browser-extension/issues/171)) Auto-lock vaults after a configurable time\n * Auto-login button in popup menu\n\n## v2.3.1\n_2019-01-19_\n\n * **Bugfixes**:\n * ([#214](https://github.com/buttercup/buttercup-browser-extension/issues/214)) Popup menu layout broken for long items\n * ([#216](https://github.com/buttercup/buttercup-browser-extension/issues/216)) Autofocus extension popover search input\n\n## v2.3.0\n_2018-01-12_\n\n * **Bugfixes**:\n * ([#217](https://github.com/buttercup/buttercup-browser-extension/issues/217)) Popup menu layout broken\n * ([#218](https://github.com/buttercup/buttercup-browser-extension/issues/218)) Some website forms not recognised\n * Improved entry details UI in popup menus\n * Improved entry results in popup menus\n * What's New section on auto-unlock page\n * Improved login form detection\n\n## v2.2.0\n_2019-01-05_\n\n * ([#212](https://github.com/buttercup/buttercup-browser-extension/issues/212)) Poor search results performance\n * ([#202](https://github.com/buttercup/buttercup-browser-extension/issues/202)) Auto-unlock setting not working\n\n## v2.1.3\n_2018-12-16_\n\n * ([#190](https://github.com/buttercup/buttercup-browser-extension/issues/190)) Dropbox connection never completes loading procedure (UI spinner)\n\n## v2.1.2\n_2018-12-08_\n\n * ([#203](https://github.com/buttercup/buttercup-browser-extension/issues/203)) Failure saving Dropbox changes\n\n## v2.1.1\n_2018-11-27_\n\n * **Bugfix**: ownCloud / Nextcloud / WebDAV vaults could not be added (Chrome)\n\n## v2.1.0\n_2018-11-24_\n\n * ([#91](https://github.com/buttercup/buttercup-browser-extension/issues/91)) Connect through desktop application (local filesystem access)\n * New WebDAV client\n * New Dropbox client\n\n## v2.0.0\n_2018-10-29_\n\n * **Major UI overhaul**\n * ([#180](https://github.com/buttercup/buttercup-browser-extension/issues/180)) Option to disable \"save-new\" dialog\n * ([#160](https://github.com/buttercup/buttercup-browser-extension/issues/160)) Settings page\n * ([#173](https://github.com/buttercup/buttercup-browser-extension/issues/173)) Source type is empty - display glitches (final cleanup)\n * Dark/Light mode themes\n * Setting for showing the auto-unlock page (default on)\n * Vault/Account sync via Chrome/Firefox's account logins (sync storage)\n * Show/Copy entry properties in dialog/popup menus\n\n## v1.12.1\n_2018-10-18_\n\n * ([#173](https://github.com/buttercup/buttercup-browser-extension/issues/173)) Source type is empty - display glitches\n * ([#182](https://github.com/buttercup/buttercup-browser-extension/issues/182)) Add bundling process for Chrome/Firefox\n\n## v1.12.0\n_2018-10-07_\n\n * ([#110](https://github.com/buttercup/buttercup-browser-extension/issues/110)) Reload archives after some time\n * ([#174](https://github.com/buttercup/buttercup-browser-extension/issues/174)) Unable to access via WebDAV (Seafile)\n\n## v1.11.1\n_2018-08-27_\n\n * ([#164](https://github.com/buttercup/buttercup-browser-extension/issues/164)) `t is null` error when unlocking archives\n\n## v1.11.0\n_2018-08-24_\n\n * ([#136](https://github.com/buttercup/buttercup-browser-extension/issues/136)) Use last generated password form context menu\n * ([#153](https://github.com/buttercup/buttercup-browser-extension/issues/153)) **Bugfix**: Button layout issues\n * Upgraded login form targetting\n\n## v1.10.0\n_2018-07-11_\n\n * New popup menu design\n * Search and open items from the popup\n\n## v1.9.1\n_2018-07-08_\n\n * ([#152](https://github.com/buttercup/buttercup-browser-extension/issues/152)) **Bugfix**: Failure while adding WebDAV archives\n\n## v1.9.0\n_2018-06-29_\n\n * ([#131](https://github.com/buttercup/buttercup-browser-extension/issues/131)) Upgrade core to v2\n * New archive format (supporting future encryption standards)\n * ([#130](https://github.com/buttercup/buttercup-browser-extension/issues/130)) Auto unlock prompt shown when browser is opened\n * ([#147](https://github.com/buttercup/buttercup-browser-extension/issues/147)) Remove settings page link\n\n## v1.8.0\n_2018-06-22_\n\n * Upgrade core to 1.7.1\n * Future proofing for archive format\n\n## v1.7.0\n_2018-04-28_\n\n * ([#124](https://github.com/buttercup/buttercup-browser-extension/issues/124)) Simplify save-new login screen by removing password confirmation\n * ([#141](https://github.com/buttercup/buttercup-browser-extension/issues/141)) Buttercup launch button layout issues\n * Dependency updates\n\n## v1.6.2\n_2018-04-24_\n\n * ([#139](https://github.com/buttercup/buttercup-browser-extension/issues/139)) No \"Generate password\" option shown when right-clicking inputs (Firefox/Chrome)\n\n## v1.6.1\n_2018-04-01_\n\n * ([#137](https://github.com/buttercup/buttercup-browser-extension/issues/137)) Unable to close save-new dialog\n\n## v1.6.0\n_2018-04-01_\n\n * \"password\" type input support for Firefox and the password generator\n * ([#134](https://github.com/buttercup/buttercup-browser-extension/issues/134)) Password generator \"Use this\" button fails on Firefox\n * ([#133](https://github.com/buttercup/buttercup-browser-extension/issues/133)) Password generator bad padding issue\n\n## v1.5.0\n_2018-03-31_\n\n * Password generator\n * Right-click context menu\n\n## v1.4.0\n_2018-03-23_\n\n * ([#126](https://github.com/buttercup/buttercup-browser-extension/issues/126)) Add an attribute to allow inputs and forms to be ignored by Buttercup\n * Support new login forms\n * Update login form detection priorities\n\n## v1.3.1\n_2018-02-20_\n\n * ([#121](https://github.com/buttercup/buttercup-browser-extension/issues/121)) Unable to click \"Save\" for new logins\n\n## v1.3.0\n_2018-02-05_\n\n * Use `chrome.storage` for better data persistence\n\n## v1.2.1\n_2018-02-04_\n\n * Update code splitting configuration (Firefox submission fixes)\n\n## v1.1.1\n_2018-02-04_\n\n * Improve URL filtering for new credentials saving\n\n## v1.1.0\n_2018-02-04_\n\n * ([#112](https://github.com/buttercup/buttercup-browser-extension/issues/106)) Save newly-entered credentials\n\n## v1.0.7\n_2018-01-22_\n\n * Add data collection event listeners for form attachments\n\n## v1.0.6\n_2018-01-21_\n\n * Fix component communication in Firefox\n * Add storage permission\n\n## v1.0.5\n_2018-01-21_\n\n * ([#106](https://github.com/buttercup/buttercup-browser-extension/issues/106)) Fix Nextcloud archive searching\n\n## v1.0.4\n_2018-01-20_\n\n * First 1.* release for Firefox\n * Fix character encoding\n * Fix button icon not showing on some sites\n * Fix scrollbars in popup\n\n## v1.0.3\n_2018-01-19_\n\n * Fix GitHub login\n * Fix logins that have multiple detected inputs\n\n## v1.0.2\n_2018-01-18_\n\n * ([#97](https://github.com/buttercup/buttercup-browser-extension/issues/97)) Fixed Twitter login bug\n\n## **v1.0.1**\n_2018-01-18_\n\n * Full re-work of the entire extension\n * **Nextcloud** official support\n * ([#92](https://github.com/buttercup/buttercup-browser-extension/issues/92)) Fixed security vulnerability\n\n## v0.14.2\n_2017-07-15_\n\n * Bugfix: [ownCloud subfolder installations: Subfolder ignored](https://github.com/buttercup/buttercup-browser-extension/issues/80)\n\n## v0.14.1\n_2017-06-24_\n\n * Bugfix: [Unable to connect to certain WebDAV services](https://github.com/buttercup/buttercup-desktop/issues/303)\n\n## v0.14.0\n_2017-06-07_\n\n * Bugfix: [Malformed URL error](https://github.com/buttercup/buttercup-browser-extension/issues/71) - old WebDAV client caused issues with special characters in passwords\n * Add back old Buttercup-core-web classes for compatibility\n\n## v0.13.1\n_2017-05-27_\n\n * Bugfix: Archive creation in root level\n\n## v0.13.0\n_2017-04-23_\n\n * Added right-click context menu drilldown for choosing which entry to fill form with\n * Updated hotkey for auto-login (Command+Shift+L for Mac, Ctrl+Shift+L for Windows/Linux)\n * Fixed deprecation warnings during build and updated some packages\n\n## v0.12.1\n_2017-04-19_\n\n * Spring clean:\n * Reduced permissions requirements in manifest\n * Improved last submitted form security\n\n## v0.12.0\n_2017-04-15_\n\n * Bugfix: Popup formatting issues\n * Added hotkey for auto-login (Command+B (Mac) / Ctrl+B (Windows/Linux))\n\n## v0.11.0\n_2017-04-14_\n\n * Bugfix: Clicking \"No\" on save prompt would not cancel further popups\n * Bugfix: Form submission error when selecting credentials\n * Prefill title when saving new credentials\n\n## v0.10.0\n_2017-03-31_\n\n * Added right-click context menu on form inputs\n * Fixed overflow on remote filesystem explorer when adding archives\n * Finalised styling on unlock-archive form\n\n## v0.9.0\n_2017-03-29_\n\n * Improved UI for popup password list (archive + groups pathing)\n * Bugfix: Fixed wrong-password during unlock sequence breaking state\n\n## v0.8.0\n_2017-03-22_\n\n * Fuzzy searching for entries on login-forms\n * Login-form popup available on password fields\n\n## v0.7.0\n_2017-03-15_\n\n * **Support for Firefox**\n * Auto-submit when selecting credentials on a form\n * Styles normalisation\n\n## v0.6.0\n_2017-03-14_\n\n * Upgrade core\n * Use serialisation for archive properties\n\n## v0.5.0\n_2017-03-09_\n\n * Upgrade core\n * Drastically increase PBKDF2 rounds\n * Improve URI matching\n\n## v0.4.0\n_2017-02-11_\n\n * First alpha release\n\n## v0.3.0\n\n * Pre-release development build\n"
},
{
"path": "LICENSE",
"content": "The MIT License (MIT)\n\nCopyright (c) 2016 Perry Mitchell\n\nPermission is hereby granted, free of charge, to any person obtaining a copy\nof this software and associated documentation files (the \"Software\"), to deal\nin the Software without restriction, including without limitation the rights\nto use, copy, modify, merge, publish, distribute, sublicense, and/or sell\ncopies of the Software, and to permit persons to whom the Software is\nfurnished to do so, subject to the following conditions:\n\nThe above copyright notice and this permission notice shall be included in all\ncopies or substantial portions of the Software.\n\nTHE SOFTWARE IS PROVIDED \"AS IS\", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR\nIMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,\nFITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE\nAUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER\nLIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,\nOUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE\nSOFTWARE.\n\n"
},
{
"path": "PRIVACY_POLICY.md",
"content": "# Privacy Policy\n\nThis privacy policy concerns the Browser Extension for Buttercup, its use and the data it makes use of.\n\n## About Buttercup\n\nButtercup is a software suite designed to provide a secure application with which to store highly-sensitive information (such as account credentials) in encrypted vault files. Great care is taken to ensure that all secure data remains protected, with as little information as possible being handled by the application and the Buttercup platform therein.\n\n### Terms\n\nThe following terms will appear throughout this document and their meaning is important to grasp for a proper understanding of this policy.\n\n| Term | Description |\n|-------------------|-------------------------------------------------------|\n| Archive | See \"vault\". |\n| Call-to-action | A button or link that indicates to the user that it performs some kind of action. A button with \"Login\" on it is a good example. |\n| Encryption | The process of transforming vault contents into a secure, un-readable format for storage that can only be _read_ by providing a master password. |\n| Master password | The highly secure secret password used to lock and unlock vaults, known only to the user. |\n| Vault | An encrypted password vault, stored as a file either locally or remotely (on some kind of service). |\n\n### Types of data\n\nVaults, in their locked state, contain **encrypted data** which represent secret information that Buttercup uses to function (passwords etc.). When unlocked, the data is **unencrypted** and resides in memory on the user's device.\n\nButtercup applications may store **unencrypted configuration information** on the device in a standard directory or location. Configuration data does not include any sensitive information. Configuration refers to settings that allow the application to function in a desired manner for the user.\n\nButtercup for Browsers does not collect any **analytics data**, but the hosting platforms (eg. Mozilla/Google) may collect anonymous analytics with regards to the extension itself (installations vs uninstallations, etc.).\n\nDue to the fact that Buttercup interacts with webpages, the **Document Object Model (DOM)** may be modified by its use.\n\n## Data storage and transfer with regards to 3rd Parties\n\n### Remote vault storage\n\nButtercup vault files, especially with regards to this browser extension, are stored remotely on hosting services. These services (eg. Dropbox, Nextcloud etc.) utilise their own privacy policies and standards, and are responsible for the files stored within their platform. Vaults transferred from the extension to these services are encrypted **before** they leave the application. No unencrypted data is stored on these remote services, besides the filename itself.\n\nIt should be noted that connection logs may be kept on various services. It is the responsibility of the user to take care as to what services they choose to use and connect to, if any.\n\n### DOM (Document Object Model)\n\nThe browser extention modifies the DOM of open webpages so that it can track several different items while the page is live:\n\n * Detected login forms\n * Detected inputs that can be used for login (username/email, password etc.)\n * Submit buttons\n * Potential submit buttons (tracking text that resembles login call-to-actions)\n\nThe extension may add attributes to existing elements, as well as adding entirely new elements (eg. buttons to open the Buttercup login menu). These modifications may indicate to the site, as well as to scripts running on the site, the fact that the current user has the Buttercup browser extension installed.\n\n### Analytics\n\nButtercup does not track any analytics directly. Platforms that Buttercup uses, such as Mozilla (for Firefox addons) or Google (for Chrome extensions), may track analytics that relate to the use of the extension in an anonymous manner. Buttercup makes use of this data for the purpose of analysing product health and potential market expansions.\n\n## Internal data storage and use\n\n### In-memory vaults\n\nWhen the vaults are decrypted using the user's master password, the contents of the vault are loaded into memory within the browser. The contents of the vaults are stored within the extension and are not accessible outside of the extension's context. Raw credentials may be transferred to webpages not owned by Buttercup at the request of the user when trying to log in to a website.\n\n## Your responsibility as a user\n\nBy using Buttercup's applications or services, you acknowledge that Buttercup stores highly-sensitive information for you using a **master password**. This password must not be shared with anyone, and should sufficiently strong to ensure that vault integrity is not broken if a bad actor gains access to it. Both the password and the encrypted vault file are the responsibility of the user, and both should be treated as highly sensitive.\n\n## Our responsibility to you, the user\n\nWe provide Buttercup as free-to-use software - we take every reasonable precaution to ensure that the vaults are encrypted in a manner that is secure by industry standards. We must ensure that only encrypted data leaves the user's device when storing vaults. We must ensure that only the bare minimum information is shared with 3rd party services to allow Buttercup to integrate with them.\n"
},
{
"path": "README.md",
"content": "
\n \n \n \n \n \n
\n\n# Buttercup Browser Extension\nButtercup credentials manager extension for the browser.\n\n
\n \n
\n\n[](https://buttercup.pw)  [](https://chrome.google.com/webstore/detail/buttercup/heflipieckodmcppbnembejjmabajjjj?hl=en-GB) [](https://chrome.google.com/webstore/detail/buttercup/heflipieckodmcppbnembejjmabajjjj?hl=en-GB) [](https://addons.mozilla.org/en-US/firefox/addon/buttercup-pw/) [](https://addons.mozilla.org/en-US/firefox/addon/buttercup-pw/) [](https://keybase.io/team/bcup)\n\n---\n\n⚠️ **Project Closure** ⚠️\n\nThe Buttercup project has come to an end, and these repositories are in transition to becoming public archives. No public-facing resources will be removed, wherever possible. Please do not create issues or PRs - they will unfortunately be ignored. Discussion can be found [here](https://github.com/buttercup/buttercup-desktop/discussions/1395), and explanation [here](https://gist.github.com/perry-mitchell/43ebfcec4d874b77a704be1d4f2262e6).\n\n---\n\n## About\nThis browser extension allows users to interface with password archives authored by the [Buttercup password manager](https://github.com/buttercup-pw/buttercup) (it _requires_ v2.26 and later of the desktop application to be installed to function).\n\nThe extension makes secured requests to the desktop application for information within its unlocked vaults, and makes those credentials available within the browser. It is also able to save new logins from the browser extension as they're recognised. Besides a username and password, the extension can also enter OTP codes when required.\n\n\n\n### Forms & Logins\n\nButtercup for Browsers auto-detects some login forms and login inputs, allowing the user to auto-fill them at their discretion. This extension uses [Locust](https://github.com/buttercup/locust) under the hood to **detect forms and inputs** (any issues with detecting forms and inputs should be opened there).\n\n### Supported browsers\n\n[Chrome](https://chrome.google.com/webstore/detail/buttercup/heflipieckodmcppbnembejjmabajjjj?hl=en-GB), [Firefox](https://addons.mozilla.org/en-US/firefox/addon/buttercup-pw/), [Edge](https://www.microsoft.com/en-us/edge) (version 79+) and [Brave](https://chrome.google.com/webstore/detail/buttercup/heflipieckodmcppbnembejjmabajjjj) are supported.\n\n_Some browsers, such as **Brave** for example, will be able to install Buttercup via the Google Chrome web store._\n\nOther browsers will be supported in order of request/popularity. Issues created for unsupported browsers, or for browsers not on the roadmap, may be closed without warning.\n\n**Opera** is not supported due to their incredibly slow and unreliable release process. We will not be adding support for Opera.\n\n### Integrated platforms\n\nThe extension allows for connections to several services, such as Dropbox and Google Drive. The extension supports whatever platforms the desktop application does, including local vaults.\n\n#### Supported platforms\n\nThe browsers listed above, running on Windows, Mac or Linux on a desktop platform. This extension is not supported on any mobile or tablet devices.\n\n### Usage\n\nThe browser extension can be controlled from the **popup menu**, which is launched by pressing the Buttercup button in the browser menu. This menu displays a list of archives as well as settings and other items.\n\nWhen viewing pages that contain login forms, Buttercup can assist logging in when you interact with the login buttons (displayed beside detected login inputs).\n\nButtercup can also remember new logins, which are detected as they occur.\n\nYou can **block** Buttercup from detecting forms and inputs by applying the attribute `data-bcupignore=true`:\n\n```html\n\n```\n\n### Development\n\nDevelopment of features and bugfixes is supported in the following environment:\n\n * NodeJS version 20 (latest minor version)\n * Linux / Mac\n * Tested in at least Chrome / Firefox\n \nTo set up your development environment:\n * Clone this repo\n * Ensure API keys are available (Google Drive)\n * Execute `npm install` inside the project directory\n * Run `npm run dev:chrome` or similar\n * Load the unpacked `dist` folder in your browser addons\n\n#### Chrome\n\nRun the following to develop the extension:\n\n 1. Execute `npm run dev:chrome` to build and watch the project (to build production code, execute `npm run build`)\n 2. Go to [chrome://extensions](chrome://extensions) and enable _\"Developer mode\"_\n 3. Select the new button _\"Load unpacked\"_, then select the `./dist` directory built on step 1\n\n#### Firefox\n\nRun the following to develop the extension:\n\n * Execute `npm run dev:firefox` to build and watch the project (to build production code, execute `npm run release`)\n\n#### Releasing\n\nTo build release-ready zip archives, run the command `npm run release` after having set up the development environment. The archives will be written to `release/(browser)` where `(browser)` is the browser type. Archives named `extension.zip` contain the built extension sourcecode and `source.zip` contains the raw source.\n\n### Adding to Chrome\n\nYou can load an **unpacked extension** in Chrome by navigating to [chrome://extensions/](chrome://extensions/). Simply locate the project's directory and use **dist/** as the extension directory.\n\n### Adding to Firefox\n\nYou can load an **unpacked extension** in Firefox by navigating to [about:debugging](about:debugging). Click \"Load Temporary Add-on\" and locate the project's directory, using **dist/** as the extension directory.\n"
},
{
"path": "package.json",
"content": "{\n \"name\": \"buttercup-browser-extension\",\n \"version\": \"3.2.0\",\n \"description\": \"Buttercup browser extension\",\n \"exports\": \"./dist/background/index.js\",\n \"type\": \"module\",\n \"types\": \"./dist/background/index.d.ts\",\n \"scripts\": {\n \"build\": \"run-s set-version build:production\",\n \"build:chrome\": \"BROWSER=chrome npm run build\",\n \"build:edge\": \"BROWSER=edge npm run build\",\n \"build:firefox\": \"BROWSER=firefox npm run build\",\n \"build:production\": \"webpack --mode production --progress --config webpack.config.js\",\n \"clean\": \"rimraf dist/* release/*\",\n \"dev\": \"npm run clean && npm run set-version && webpack --mode development -w --progress --config webpack.config.js\",\n \"dev:chrome\": \"BROWSER=chrome npm run dev\",\n \"dev:edge\": \"BROWSER=edge npm run dev\",\n \"dev:firefox\": \"concurrently -k \\\"BROWSER=firefox npm run dev\\\" \\\"cd dist && web-ext run\\\" --restart-tries 20 --restart-after 5000 --devtools --keep-profile-changes\",\n \"format\": \"prettier --write '{{source,test}/**/*.{ts,js},webpack.config.js}'\",\n \"release\": \"run-s clean release:chrome release:firefox release:edge\",\n \"release:chrome\": \"npm run build:chrome && mkdirp release/chrome && zip -r release/chrome/extension.zip ./dist\",\n \"release:edge\": \"npm run build:edge && mkdirp release/edge && zip -r release/edge/extension.zip ./dist\",\n \"release:firefox\": \"npm run build:firefox && mkdirp release/firefox && run-s release:firefox:extension release:firefox:source\",\n \"release:firefox:extension\": \"cd dist && web-ext build --overwrite-dest && cd .. && mv ./dist/web-ext-artifacts/*.zip ./release/firefox/\",\n \"release:firefox:source\": \"zip -r release/firefox/source.zip . --exclude=/.git* --exclude=/node_modules* --exclude=/.history* --exclude=/dist* --exclude=/release* --exclude=*.DS_Store*\",\n \"set-version\": \"node scripts/version.js\",\n \"test\": \"run-s test:format\",\n \"test:format\": \"prettier --check '{{source,test}/**/*.{ts,js},webpack.config.js}'\"\n },\n \"lint-staged\": {\n \"{{source,test}/**/*.{ts,js},webpack.config.js}\": [\n \"prettier --write\"\n ]\n },\n \"husky\": {\n \"hooks\": {\n \"pre-commit\": \"lint-staged\"\n }\n },\n \"repository\": {\n \"type\": \"git\",\n \"url\": \"git+https://github.com/buttercup/buttercup-browser-extension.git\"\n },\n \"keywords\": [\n \"buttercup\",\n \"password\",\n \"vault\",\n \"login\",\n \"secure\"\n ],\n \"author\": \"Perry Mitchell \",\n \"license\": \"MIT\",\n \"bugs\": {\n \"url\": \"https://github.com/buttercup/buttercup-browser-extension/issues\"\n },\n \"homepage\": \"https://github.com/buttercup/buttercup-browser-extension#readme\",\n \"devDependencies\": {\n \"@babel/core\": \"^7.23.3\",\n \"@babel/preset-env\": \"^7.23.3\",\n \"@babel/preset-react\": \"^7.23.3\",\n \"@blueprintjs/core\": \"^4.20.2\",\n \"@blueprintjs/icons\": \"^4.16.0\",\n \"@blueprintjs/popover2\": \"^1.14.11\",\n \"@blueprintjs/select\": \"^4.9.24\",\n \"@buttercup/channel-queue\": \"^1.4.0\",\n \"@buttercup/locust\": \"^2.3.1\",\n \"@buttercup/ui\": \"^6.2.2\",\n \"@types/chrome\": \"^0.0.251\",\n \"@types/ms\": \"^0.7.34\",\n \"@types/react\": \"^17.0.38\",\n \"@types/react-dom\": \"^17.0.11\",\n \"babel-loader\": \"^9.1.3\",\n \"buttercup\": \"^7.6.0\",\n \"classnames\": \"^2.2.6\",\n \"concurrently\": \"^8.2.2\",\n \"copy-webpack-plugin\": \"^11.0.0\",\n \"css-loader\": \"^6.8.1\",\n \"eventemitter3\": \"^5.0.1\",\n \"expiry-map\": \"^2.0.0\",\n \"file-loader\": \"^6.0.0\",\n \"gle\": \"^1.0.3\",\n \"husky\": \"^4.2.5\",\n \"i18next\": \"^23.7.6\",\n \"iocane\": \"^5.1.1\",\n \"layerr\": \"^2.0.0\",\n \"lint-staged\": \"^15.1.0\",\n \"mkdirp\": \"^3.0.1\",\n \"ms\": \"^2.1.3\",\n \"mucus\": \"^1.0.0\",\n \"npm-run-all\": \"^4.1.5\",\n \"obstate\": \"^0.1.4\",\n \"on-navigate\": \"^0.1.1\",\n \"otpauth\": \"^9.1.5\",\n \"parse-domain\": \"^8.0.2\",\n \"prettier\": \"^3.1.0\",\n \"pug-plugin\": \"^5.0.2\",\n \"react\": \"^17.0.2\",\n \"react-dom\": \"^17.0.2\",\n \"react-obstate\": \"^0.1.3\",\n \"react-router-dom\": \"^6.21.3\",\n \"redom\": \"^3.29.1\",\n \"resolve-typescript-plugin\": \"^2.0.1\",\n \"rimraf\": \"^5.0.5\",\n \"sass\": \"^1.69.5\",\n \"sass-loader\": \"^13.3.2\",\n \"style-loader\": \"^3.3.3\",\n \"styled-components\": \"^5.3.11\",\n \"ts-loader\": \"^9.5.0\",\n \"typescript\": \"^5.2.2\",\n \"ulidx\": \"^2.2.1\",\n \"url-join\": \"^5.0.0\",\n \"url-loader\": \"^4.1.1\",\n \"web-ext\": \"^7.8.0\",\n \"webpack\": \"^5.90.3\",\n \"webpack-cli\": \"^5.1.4\",\n \"webpack-merge\": \"^5.10.0\"\n }\n}\n"
},
{
"path": "resources/full.pug",
"content": "doctype html\nhtml\n head\n title Buttercup\n meta(charset=\"utf-8\")\n link(rel=\"icon\", type=\"image/png\", href=require(\"./buttercup-256.png\").default)\n link(rel=\"stylesheet\" href=\"full.css\")\n link(rel=\"stylesheet\" href=\"vendors.css\")\n script(defer, src=\"full.js\")\n script(defer, src=\"vendors.js\")\n body\n div#root\n"
},
{
"path": "resources/manifest.v2.json",
"content": "{\n \"manifest_version\": 2,\n\n \"name\": \"Buttercup\",\n \"description\": \"Browser extension for Buttercup, the secure and easy-to-use password manager.\",\n \"version\": \"0.0.0\",\n\n \"icons\": {\n \"256\": \"manifest-res/buttercup-256.png\",\n \"128\": \"manifest-res/buttercup-128.png\",\n \"48\": \"manifest-res/buttercup-48.png\",\n \"16\": \"manifest-res/buttercup-16.png\"\n },\n\n \"background\": {\n \"scripts\": [\n \"background.js\"\n ]\n },\n\n \"browser_action\": {\n \"default_icon\": \"manifest-res/buttercup-256.png\",\n \"default_popup\": \"popup.html#/\"\n },\n\n \"content_scripts\" : [\n {\n \"matches\": [\"http://*/*\", \"https://*/*\"],\n \"run_at\": \"document_end\",\n \"all_frames\": true,\n \"js\": [\"tab.js\"]\n }\n ],\n\n \"permissions\": [\n \"clipboardWrite\",\n \"http://*/*\",\n \"https://*/*\",\n \"storage\",\n \"tabs\",\n \"unlimitedStorage\"\n ],\n\n \"web_accessible_resources\": [\n \"*.png\",\n \"*.jpg\"\n ],\n\n \"applications\": {\n \"gecko\": {\n \"id\": \"{10e7d273-2e63-47c9-82af-76c45dc1b624}\"\n }\n }\n}\n"
},
{
"path": "resources/manifest.v3.json",
"content": "{\n \"manifest_version\": 3,\n\n \"name\": \"Buttercup\",\n \"description\": \"Browser extension for Buttercup, the secure and easy-to-use password manager.\",\n \"version\": \"0.0.0\",\n\n \"icons\": {\n \"256\": \"manifest-res/buttercup-256.png\",\n \"128\": \"manifest-res/buttercup-128.png\",\n \"48\": \"manifest-res/buttercup-48.png\",\n \"16\": \"manifest-res/buttercup-16.png\"\n },\n\n \"background\": {\n \"service_worker\": \"background.js\"\n },\n\n \"action\": {\n \"default_title\": \"Buttercup\",\n \"default_icon\": \"manifest-res/buttercup-256.png\",\n \"default_popup\": \"/popup.html#/\"\n },\n\n \"content_scripts\" : [\n {\n \"matches\": [\"http://*/*\", \"https://*/*\"],\n \"run_at\": \"document_end\",\n \"all_frames\": true,\n \"js\": [\"tab.js\"]\n }\n ],\n\n \"permissions\": [\n \"clipboardWrite\",\n \"storage\",\n \"tabs\",\n \"unlimitedStorage\"\n ],\n\n \"web_accessible_resources\": [\n {\n \"resources\": [\"*.png\", \"*.jpg\"],\n \"matches\": [\"http://*/*\", \"https://*/*\"]\n },\n {\n \"resources\": [\"popup.html\"],\n \"matches\": [\"http://*/*\", \"https://*/*\"]\n }\n ]\n}\n"
},
{
"path": "resources/popup.pug",
"content": "doctype html\nhtml\n head\n title Menu ⋅ Buttercup\n meta(charset=\"utf-8\")\n link(rel=\"icon\", type=\"image/png\", href=require(\"./buttercup-256.png\").default)\n link(rel=\"stylesheet\" href=\"popup.css\")\n link(rel=\"stylesheet\" href=\"vendors.css\")\n script(defer, src=\"popup.js\")\n script(defer, src=\"vendors.js\")\n body\n div#root\n"
},
{
"path": "scripts/version.js",
"content": "import { readFileSync, writeFileSync } from \"fs\";\nimport { resolve } from \"path\";\nimport { fileURLToPath } from \"url\";\n\nconst __dirname = fileURLToPath(new URL(\".\", import.meta.url));\n\nconst packageInfo = JSON.parse(readFileSync(\n resolve(__dirname, \"../package.json\"),\n \"utf8\"\n));\n\nconst buildDate = new Date();\nconst built = `${buildDate.getUTCFullYear()}-${String(buildDate.getUTCMonth() + 1).padStart(2, \"0\")}-${String(buildDate.getUTCDate()).padStart(2, \"0\")}`;\n\nconst output = `// Do not edit this file - it is generated automatically at build time\n\nexport const BUILD_DATE = \"${built}\";\nexport const VERSION = \"${packageInfo.version}\";\n`;\n\nwriteFileSync(\n resolve(__dirname, \"../source/shared/library/version.ts\"),\n output\n);\n"
},
{
"path": "source/background/index.ts",
"content": "import { initialise } from \"./services/init.js\";\nimport { log } from \"./services/log.js\";\n\ninitialise().catch((err) => {\n console.error(err);\n log(\"initialisation failed\");\n});\n"
},
{
"path": "source/background/library/domain.ts",
"content": "import { UsedCredentials } from \"../types.js\";\n\nexport function extractDomainFromCredentials(credentials: UsedCredentials): string | null {\n const match = /^https?:\\/\\/([^\\/]+)/.exec(credentials.url);\n return match ? match[1] : null;\n}\n"
},
{
"path": "source/background/services/autoLogin.ts",
"content": "import { SearchResult } from \"buttercup\";\nimport ExpiryMap from \"expiry-map\";\n\ninterface RegisteredItem {\n entry: SearchResult;\n tabID: number;\n}\n\nconst REGISTER_MAX_AGE = 30 * 1000; // 30 seconds\n\nlet __register: ExpiryMap | null = null;\n\nexport function getAutoLoginForTab(tabID: number): SearchResult | null {\n const register = getRegister();\n const key = `tab-${tabID}`;\n if (register.has(key)) {\n const item = (register.get(key) as RegisteredItem).entry;\n register.delete(key);\n return item;\n }\n return null;\n}\n\nfunction getRegister(): ExpiryMap {\n if (!__register) {\n __register = new ExpiryMap(REGISTER_MAX_AGE);\n }\n return __register;\n}\n\nexport function registerAutoLogin(entry: SearchResult, tabID: number): void {\n const register = getRegister();\n register.set(`tab-${tabID}`, { entry, tabID });\n}\n"
},
{
"path": "source/background/services/config.ts",
"content": "import { getSyncValue, setSyncValue } from \"./storage.js\";\nimport { Configuration, InputButtonType, SyncStorageItem } from \"../types.js\";\nimport { naiveClone } from \"../../shared/library/clone.js\";\n\nconst DEFAULTS: Configuration = {\n entryIcons: true,\n inputButtonDefault: InputButtonType.LargeButton,\n saveNewLogins: true,\n theme: \"light\",\n useSystemTheme: true\n};\n\nlet __lastConfig: Configuration | null = null;\n\nexport function getConfig(): Configuration {\n if (!__lastConfig) {\n throw new Error(\"No configuration available\");\n }\n return __lastConfig;\n}\n\nexport async function initialise() {\n __lastConfig = await updateConfigWithDefaults();\n}\n\nexport async function updateConfigValue(key: T, value: Configuration[T]): Promise {\n const configRaw = await getSyncValue(SyncStorageItem.Configuration);\n const config = configRaw ? JSON.parse(configRaw) : naiveClone(DEFAULTS);\n config[key] = value;\n __lastConfig = config;\n await setSyncValue(SyncStorageItem.Configuration, JSON.stringify(config));\n}\n\nasync function updateConfigWithDefaults(): Promise {\n let configRaw = await getSyncValue(SyncStorageItem.Configuration);\n const config = configRaw ? JSON.parse(configRaw) : { ...DEFAULTS };\n for (const key in DEFAULTS) {\n if (typeof config[key] === \"undefined\") {\n config[key] = DEFAULTS[key];\n }\n }\n await setSyncValue(SyncStorageItem.Configuration, JSON.stringify(config));\n return config;\n}\n"
},
{
"path": "source/background/services/crypto.ts",
"content": "import { EncryptionAlgorithm, createAdapter } from \"iocane\";\nimport { deriveSecretKey, importECDHKey } from \"./cryptoKeys.js\";\n\nexport async function decryptPayload(\n payload: string,\n sourcePublicKey: string,\n targetPrivateKey: string\n): Promise {\n const privateKey = await importECDHKey(targetPrivateKey);\n const publicKey = await importECDHKey(sourcePublicKey);\n const secret = await deriveSecretKey(privateKey, publicKey);\n return createAdapter().decrypt(payload, secret) as Promise;\n}\n\nexport async function encryptPayload(\n payload: string,\n sourcePrivateKey: string,\n targetPublicKey: string\n): Promise {\n const privateKey = await importECDHKey(sourcePrivateKey);\n const publicKey = await importECDHKey(targetPublicKey);\n const secret = await deriveSecretKey(privateKey, publicKey);\n return createAdapter()\n .setAlgorithm(EncryptionAlgorithm.GCM)\n .setDerivationRounds(100000)\n .encrypt(payload, secret) as Promise;\n}\n"
},
{
"path": "source/background/services/cryptoKeys.ts",
"content": "import { ulid } from \"ulidx\";\nimport { log } from \"./log.js\";\nimport { getLocalValue, setLocalValue } from \"./storage.js\";\nimport { arrayBufferToHex } from \"../../shared/library/buffer.js\";\nimport { API_KEY_ALGO, API_KEY_CURVE } from \"../../shared/symbols.js\";\nimport { LocalStorageItem } from \"../types.js\";\nimport { Layerr } from \"layerr\";\n\nasync function createKeys(): Promise<{\n privateKey: string;\n publicKey: string;\n}> {\n const { privateKey, publicKey } = await window.crypto.subtle.generateKey(\n {\n name: API_KEY_ALGO,\n namedCurve: API_KEY_CURVE\n },\n true,\n [\"deriveKey\"]\n );\n log(\"generating public and private key pair for browser auth\");\n const privateKeyStr = await exportECDHKey(privateKey);\n const publicKeyStr = await exportECDHKey(publicKey);\n log(\"generated new browser auth keys\");\n return {\n privateKey: privateKeyStr,\n publicKey: publicKeyStr\n };\n}\n\nexport async function deriveSecretKey(privateKey: CryptoKey, publicKey: CryptoKey): Promise {\n let cryptoKey: CryptoKey;\n try {\n cryptoKey = await window.crypto.subtle.deriveKey(\n {\n name: API_KEY_ALGO,\n public: publicKey\n },\n privateKey,\n {\n name: \"AES-GCM\",\n length: 256\n },\n true,\n [\"encrypt\", \"decrypt\"]\n );\n } catch (err) {\n throw new Layerr(err, \"Failed deriving secret key\");\n }\n const exported = await window.crypto.subtle.exportKey(\"raw\", cryptoKey);\n return arrayBufferToHex(exported);\n}\n\nasync function exportECDHKey(key: CryptoKey): Promise {\n try {\n const exported = await window.crypto.subtle.exportKey(\"jwk\", key);\n return JSON.stringify(exported);\n } catch (err) {\n throw new Layerr(err, \"Failed exporting ECDH key\");\n }\n}\n\nexport async function generateKeys(): Promise {\n let [apiPrivate, apiPublic, clientID] = await Promise.all([\n getLocalValue(LocalStorageItem.APIPrivateKey),\n getLocalValue(LocalStorageItem.APIPublicKey),\n getLocalValue(LocalStorageItem.APIClientID)\n ]);\n if (apiPrivate && apiPublic && clientID) return;\n // Regenerate\n log(\"api keys missing: will generate\");\n const { privateKey, publicKey } = await createKeys();\n clientID = ulid();\n await setLocalValue(LocalStorageItem.APIPrivateKey, privateKey);\n await setLocalValue(LocalStorageItem.APIPublicKey, publicKey);\n await setLocalValue(LocalStorageItem.APIClientID, clientID);\n}\n\nexport async function importECDHKey(key: string): Promise {\n let jwk: JsonWebKey;\n try {\n jwk = JSON.parse(key) as JsonWebKey;\n } catch (err) {\n throw new Layerr(err, \"Failed importing ECDH key\");\n }\n const usages: Array = jwk.key_ops && jwk.key_ops.includes(\"deriveKey\") ? [\"deriveKey\"] : [];\n return window.crypto.subtle.importKey(\n \"jwk\",\n jwk,\n {\n name: API_KEY_ALGO,\n namedCurve: API_KEY_CURVE\n },\n true,\n usages\n );\n}\n"
},
{
"path": "source/background/services/desktop/actions.ts",
"content": "import { Layerr } from \"layerr\";\nimport { EntryID, EntryType, GroupID, SearchResult, VaultFacade, VaultSourceID } from \"buttercup\";\nimport { getLocalValue } from \"../storage.js\";\nimport { sendDesktopRequest } from \"./request.js\";\nimport { generateAuthHeader } from \"./header.js\";\nimport { LocalStorageItem, OTP, VaultSourceDescription, VaultsTree } from \"../../types.js\";\n\nexport async function authenticateBrowserAccess(code: string): Promise {\n const localPublicKey = await getLocalValue(LocalStorageItem.APIPublicKey);\n const clientID = await getLocalValue(LocalStorageItem.APIClientID);\n if (!localPublicKey) {\n throw new Error(\"No local public key available\");\n }\n if (!clientID) {\n throw new Error(\"No API client ID set\");\n }\n const { publicKey } = (await sendDesktopRequest({\n method: \"POST\",\n route: \"/v1/auth/response\",\n payload: {\n code,\n id: clientID,\n publicKey: localPublicKey\n }\n })) as { publicKey: string };\n if (!publicKey) {\n throw new Layerr(\"No server public key received from browser authentication\");\n }\n return publicKey;\n}\n\nexport async function getEntrySearchResults(\n entries: Array<{ entryID: EntryID; sourceID: VaultSourceID }>\n): Promise> {\n const authHeader = await generateAuthHeader();\n const { results } = (await sendDesktopRequest({\n method: \"POST\",\n route: \"/v1/entries/specific\",\n auth: authHeader,\n payload: {\n entries\n }\n })) as {\n results: Array;\n };\n return results;\n}\n\nexport async function getOTPs(): Promise> {\n const authHeader = await generateAuthHeader();\n const { otps } = (await sendDesktopRequest({\n method: \"GET\",\n route: \"/v1/otps\",\n auth: authHeader\n })) as {\n otps: Array;\n };\n return otps;\n}\n\nexport async function getVaultSources(): Promise> {\n const authHeader = await generateAuthHeader();\n const { sources } = (await sendDesktopRequest({\n method: \"GET\",\n route: \"/v1/vaults\",\n auth: authHeader\n })) as {\n sources: Array;\n };\n return sources;\n}\n\nexport async function getVaultsTree(): Promise {\n const authHeader = await generateAuthHeader();\n const { names, tree } = (await sendDesktopRequest({\n method: \"GET\",\n route: \"/v1/vaults-tree\",\n auth: authHeader\n })) as {\n names?: Record;\n tree: Record;\n };\n return Object.keys(tree).reduce((output, sourceID) => {\n return {\n ...output,\n [sourceID]: {\n ...tree[sourceID],\n name: names?.[sourceID] ?? \"Untitled vault\"\n }\n };\n }, {});\n}\n\nexport async function hasConnection(): Promise {\n const serverPublicKey = await getLocalValue(LocalStorageItem.APIServerPublicKey);\n return !!serverPublicKey;\n}\n\nexport async function initiateConnection(): Promise {\n await sendDesktopRequest({\n method: \"POST\",\n route: \"/v1/auth/request\",\n payload: {\n client: \"browser\",\n purpose: \"vaults-access\",\n rev: 1\n }\n });\n}\n\nexport async function promptSourceLock(sourceID: VaultSourceID): Promise {\n const authHeader = await generateAuthHeader();\n const status = await sendDesktopRequest({\n method: \"POST\",\n route: `/v1/vaults/${sourceID}/lock`,\n auth: authHeader,\n output: \"status\"\n });\n return status === 200;\n}\n\nexport async function promptSourceUnlock(sourceID: VaultSourceID): Promise {\n const authHeader = await generateAuthHeader();\n await sendDesktopRequest({\n method: \"POST\",\n route: `/v1/vaults/${sourceID}/unlock`,\n auth: authHeader\n });\n}\n\nexport async function saveExistingEntry(\n sourceID: VaultSourceID,\n groupID: GroupID,\n entryID: EntryID,\n properties: Record\n): Promise {\n const authHeader = await generateAuthHeader();\n await sendDesktopRequest({\n method: \"PATCH\",\n route: `/v1/vaults/${sourceID}/group/${groupID}/entry/${entryID}`,\n auth: authHeader,\n payload: {\n properties\n }\n });\n}\n\nexport async function saveNewEntry(\n sourceID: VaultSourceID,\n groupID: GroupID,\n entryType: EntryType,\n properties: Record\n): Promise {\n const authHeader = await generateAuthHeader();\n const { entryID } = (await sendDesktopRequest({\n method: \"POST\",\n route: `/v1/vaults/${sourceID}/group/${groupID}/entry`,\n auth: authHeader,\n payload: {\n properties,\n type: entryType\n }\n })) as {\n entryID: EntryID;\n };\n return entryID;\n}\n\nexport async function searchEntriesByURL(url: string): Promise> {\n const authHeader = await generateAuthHeader();\n const { results } = (await sendDesktopRequest({\n method: \"GET\",\n route: \"/v1/entries\",\n payload: {\n type: \"url\",\n url\n },\n auth: authHeader\n })) as {\n results: Array;\n };\n return results;\n}\n\nexport async function searchEntriesByTerm(term: string): Promise> {\n const authHeader = await generateAuthHeader();\n const { results } = (await sendDesktopRequest({\n method: \"GET\",\n route: \"/v1/entries\",\n payload: {\n type: \"term\",\n term\n },\n auth: authHeader\n })) as {\n results: Array;\n };\n return results;\n}\n\nexport async function testAuth(): Promise {\n const authHeader = await generateAuthHeader();\n try {\n await sendDesktopRequest({\n method: \"POST\",\n route: \"/v1/auth/test\",\n payload: {\n client: \"browser\",\n purpose: \"vaults-access\",\n rev: 1\n },\n auth: authHeader\n });\n } catch (err) {\n console.error(err);\n throw new Layerr(err, \"Desktop connection failed\");\n }\n}\n"
},
{
"path": "source/background/services/desktop/header.ts",
"content": "import { Layerr } from \"layerr\";\nimport { LocalStorageItem } from \"../../types.js\";\nimport { getLocalValue } from \"../storage.js\";\n\nexport async function generateAuthHeader(): Promise {\n const clientID = await getLocalValue(LocalStorageItem.APIClientID);\n if (!clientID) {\n throw new Layerr(\n {\n info: {\n i18n: \"error.code.desktop-connection-not-authorised\"\n }\n },\n \"No API client ID set\"\n );\n }\n return `Client ${clientID}`;\n}\n"
},
{
"path": "source/background/services/desktop/request.ts",
"content": "import { Layerr } from \"layerr\";\nimport joinURL from \"url-join\";\nimport { DESKTOP_API_PORT } from \"../../../shared/symbols.js\";\nimport { decryptPayload, encryptPayload } from \"../crypto.js\";\nimport { getLocalValue } from \"../storage.js\";\nimport { LocalStorageItem } from \"../../types.js\";\n\ntype OutputType = \"body\" | \"status\" | undefined;\n\ninterface DesktopRequestConfig {\n auth?: string | null;\n method: string;\n output?: O;\n payload?: Record | null;\n route: string;\n}\n\nconst DESKTOP_URL_BASE = `http://localhost:${DESKTOP_API_PORT}`;\n\nexport async function sendDesktopRequest(\n config: DesktopRequestConfig\n): Promise>;\nexport async function sendDesktopRequest(config: DesktopRequestConfig): Promise;\nexport async function sendDesktopRequest(\n config: DesktopRequestConfig\n): Promise>;\nexport async function sendDesktopRequest(\n config: DesktopRequestConfig\n): Promise | number> {\n const { auth = null, method, output = \"body\", payload = null, route } = config;\n // Prepare un-encrypted configuration first\n let url = joinURL(DESKTOP_URL_BASE, route);\n const requestConfig: RequestInit = {\n method,\n headers: {}\n };\n if (payload !== null) {\n if (/^get$/i.test(method)) {\n const newURL = new URL(url);\n for (const prop in payload) {\n if (payload.hasOwnProperty(prop)) {\n newURL.searchParams.set(prop, payload[prop]);\n }\n }\n url = newURL.toString();\n } else {\n requestConfig.body = JSON.stringify(payload);\n Object.assign(requestConfig.headers as HeadersInit, {\n \"Content-Type\": \"application/json\"\n });\n }\n }\n if (auth !== null) {\n requestConfig.headers = requestConfig.headers || {};\n // Request requires encryption, perform setup now\n requestConfig.headers[\"Authorization\"] = auth;\n if (typeof requestConfig.body === \"string\") {\n requestConfig.headers[\"X-Content-Type\"] = requestConfig.headers[\"Content-Type\"];\n requestConfig.headers[\"Content-Type\"] = \"text/plain\";\n // Encrypt\n const privateKey = await getLocalValue(LocalStorageItem.APIPrivateKey);\n const publicKey = await getLocalValue(LocalStorageItem.APIServerPublicKey);\n if (!privateKey) {\n throw new Error(\"Authenticated request failed: No private key available\");\n }\n if (!publicKey) {\n throw new Error(\"Authenticated request failed: No public key available\");\n }\n requestConfig.body = await encryptPayload(requestConfig.body, privateKey, publicKey);\n }\n }\n // Make request\n const resp = await fetch(url, requestConfig);\n if (!resp.ok) {\n throw new Layerr(\n {\n info: {\n code: \"desktop-request-failed\",\n status: resp.status,\n statusText: resp.statusText\n }\n },\n `Desktop request failed: ${resp.status} ${resp.statusText}`\n );\n }\n if (output === \"status\") {\n return resp.status;\n }\n // Handle encrypted response\n if (resp.headers.get(\"X-Bcup-API\")) {\n const components = resp.headers.get(\"X-Bcup-API\")?.split(\",\") ?? [];\n if (components.includes(\"enc\")) {\n const content = await resp.text();\n const contentType = resp.headers.get(\"X-Content-Type\") || resp.headers.get(\"Content-Type\") || \"text/plain\";\n // Decrypt\n const privateKey = await getLocalValue(LocalStorageItem.APIPrivateKey);\n const publicKey = await getLocalValue(LocalStorageItem.APIServerPublicKey);\n if (!privateKey) {\n throw new Error(\"Decrypting response failed: No private key available\");\n }\n if (!publicKey) {\n throw new Error(\"Decrypting response failed: No public key available\");\n }\n const rawDecrypted = await decryptPayload(content, publicKey, privateKey);\n return /application\\/json/.test(contentType) ? JSON.parse(rawDecrypted) : rawDecrypted;\n }\n }\n // Standard, unencrypted response\n if (/application\\/json/.test(resp.headers.get(\"Content-Type\") ?? \"\")) {\n return resp.json();\n }\n return resp.text();\n}\n"
},
{
"path": "source/background/services/disabledDomains.ts",
"content": "import { getSyncValue, setSyncValue } from \"./storage.js\";\nimport { SyncStorageItem } from \"../types.js\";\n\nexport async function disableLoginsOnDomain(domain: string): Promise {\n const currentDomains = new Set(await getDisabledDomains());\n currentDomains.add(domain);\n await setSyncValue(SyncStorageItem.DisabledDomains, JSON.stringify([...currentDomains]));\n}\n\nexport async function getDisabledDomains(): Promise> {\n const currentDomainsRaw = await getSyncValue(SyncStorageItem.DisabledDomains);\n return currentDomainsRaw ? JSON.parse(currentDomainsRaw) : [];\n}\n\nexport async function removeDisabledFlagForDomain(domain: string): Promise {\n const currentDomains = new Set(await getDisabledDomains());\n currentDomains.delete(domain);\n await setSyncValue(SyncStorageItem.DisabledDomains, JSON.stringify([...currentDomains]));\n}\n"
},
{
"path": "source/background/services/entry.ts",
"content": "import { SearchResult } from \"buttercup\";\nimport { createNewTab } from \"../../shared/library/extension.js\";\nimport { formatURL } from \"../../shared/library/url.js\";\n\nexport async function openEntryPageInNewTab(_: SearchResult, url: string): Promise {\n const tab = await createNewTab(formatURL(url));\n if (typeof tab?.id !== \"number\") {\n throw new Error(\"No tab ID for created tab\");\n }\n return tab.id;\n}\n"
},
{
"path": "source/background/services/init.ts",
"content": "import { EventEmitter } from \"eventemitter3\";\nimport { log } from \"./log.js\";\nimport { initialise as initialiseMessaging } from \"./messaging.js\";\nimport { initialise as initialiseStorage } from \"./storage.js\";\nimport { initialise as initialiseConfig } from \"./config.js\";\nimport { generateKeys } from \"./cryptoKeys.js\";\nimport { initialise as initialiseI18n } from \"../../shared/i18n/trans.js\";\nimport { getLanguage } from \"../../shared/library/i18n.js\";\nimport { showPendingNotifications } from \"./notifications.js\";\n\nenum Initialisation {\n Complete = \"complete\",\n Idle = \"idle\",\n Running = \"running\"\n}\n\nconst __initEE = new EventEmitter();\nlet __initialisation: Initialisation = Initialisation.Idle;\n\nexport async function initialise(): Promise {\n if (__initialisation !== Initialisation.Idle) return;\n __initialisation = Initialisation.Running;\n log(\"initialising\");\n initialiseMessaging();\n await initialiseStorage();\n await initialiseConfig();\n await initialiseI18n(getLanguage());\n await generateKeys();\n log(\"initialisation complete\");\n __initialisation = Initialisation.Complete;\n __initEE.emit(\"initialised\");\n await showPendingNotifications();\n}\n\nexport async function resetInitialisation(): Promise {\n log(\"resetting initialisation\");\n __initialisation = Initialisation.Idle;\n await initialise();\n}\n\nexport async function waitForInitialisation(): Promise {\n return new Promise((resolve) => {\n if (__initialisation === Initialisation.Complete) return resolve();\n __initEE.once(\"initialised\", resolve);\n });\n}\n"
},
{
"path": "source/background/services/log.ts",
"content": "import { createLog } from \"../../shared/library/log.js\";\n\nconst LOG_NAME = \"buttercup:browser:background\";\n\nlet __logger: ReturnType;\n\nexport function log(...args: Array): void {\n if (!__logger) {\n __logger = createLog(LOG_NAME, true);\n }\n return __logger(...args);\n}\n"
},
{
"path": "source/background/services/loginMemory.ts",
"content": "import ExpiryMap from \"expiry-map\";\nimport { searchEntriesByTerm } from \"./desktop/actions.js\";\nimport { domainsReferToSameParent, extractDomain } from \"../../shared/library/domain.js\";\nimport { UsedCredentials } from \"../types.js\";\n\ninterface LoginMemoryItem {\n credentials: UsedCredentials;\n tabID: number;\n}\n\nconst LOGIN_MAX_AGE = 15 * 60 * 1000; // 15 min\n\nlet __loginMemory: ExpiryMap | null = null;\n\nexport function clearCredentials(id: string): void {\n const memory = getLoginMemory();\n if (memory.has(id)) {\n memory.delete(id);\n }\n if (memory.has(\"last\")) {\n const last = memory.get(\"last\");\n if (last?.credentials.id === id) {\n memory.delete(\"last\");\n }\n }\n}\n\nexport async function credentialsAlreadyStored(credentials: UsedCredentials): Promise {\n const results = await searchEntriesByTerm(credentials.username);\n const usedDomain = extractDomain(credentials.url);\n return results.some((result) => {\n // Check username\n if (credentials.username !== result.properties.username) return false;\n // Skip if search result has no URLs\n if (result.urls.length <= 0) return false;\n // Check if any of the domains match this one\n const resultDomains = result.urls.map((url) => extractDomain(url));\n if (!resultDomains.some((resDomain) => domainsReferToSameParent(resDomain, usedDomain))) {\n // No matches\n return false;\n }\n // Check if props match\n return (\n result.properties.username === credentials.username && result.properties.password === credentials.password\n );\n });\n}\n\nexport function getAllCredentials(): Array {\n const memory = getLoginMemory();\n const credentials: Array = [];\n for (const [key, item] of memory.entries()) {\n if (key === \"last\") continue;\n credentials.push(item.credentials);\n }\n return credentials;\n}\n\nexport function getCredentialsForID(id: string): UsedCredentials | null {\n const memory = getLoginMemory();\n return memory.has(id) ? (memory.get(id) as LoginMemoryItem).credentials : null;\n}\n\nexport function getLastCredentials(tabID: number): UsedCredentials | null {\n const memory = getLoginMemory();\n const last = memory.has(\"last\") ? memory.get(\"last\") : null;\n if (!last) return null;\n return last.tabID === tabID ? last.credentials : null;\n}\n\nfunction getLoginMemory(): ExpiryMap {\n if (!__loginMemory) {\n __loginMemory = new ExpiryMap(LOGIN_MAX_AGE);\n }\n return __loginMemory;\n}\n\nexport function stopPromptForID(id: string): void {\n const memory = getLoginMemory();\n if (memory.has(id)) {\n const existing = memory.get(id) as LoginMemoryItem;\n memory.set(id, {\n ...existing,\n credentials: {\n ...existing.credentials,\n promptSave: false\n }\n });\n }\n const last = memory.has(\"last\") ? memory.get(\"last\") : null;\n if (last?.credentials.id === id) {\n memory.set(\"last\", {\n ...last,\n credentials: {\n ...last.credentials,\n promptSave: false\n }\n });\n }\n}\n\nexport function updateUsedCredentials(credentials: UsedCredentials, tabID: number): void {\n const memory = getLoginMemory();\n const payload: LoginMemoryItem = {\n credentials,\n tabID\n };\n memory.set(credentials.id, payload);\n memory.set(\"last\", payload);\n}\n"
},
{
"path": "source/background/services/messaging.ts",
"content": "import { Layerr } from \"layerr\";\nimport { EntryType, EntryURLType, VaultSourceID, VaultSourceStatus, getEntryURLs } from \"buttercup\";\nimport { getExtensionAPI } from \"../../shared/extension.js\";\nimport {\n authenticateBrowserAccess,\n getEntrySearchResults,\n getOTPs,\n getVaultSources,\n getVaultsTree,\n hasConnection,\n initiateConnection,\n promptSourceLock,\n promptSourceUnlock,\n saveExistingEntry,\n saveNewEntry,\n searchEntriesByTerm,\n searchEntriesByURL,\n testAuth\n} from \"./desktop/actions.js\";\nimport { clearLocalStorage, removeLocalValue, setLocalValue } from \"./storage.js\";\nimport { errorToString } from \"../../shared/library/error.js\";\nimport {\n clearCredentials,\n credentialsAlreadyStored,\n getAllCredentials,\n getCredentialsForID,\n getLastCredentials,\n stopPromptForID,\n updateUsedCredentials\n} from \"./loginMemory.js\";\nimport { getConfig, updateConfigValue } from \"./config.js\";\nimport { disableLoginsOnDomain, getDisabledDomains, removeDisabledFlagForDomain } from \"./disabledDomains.js\";\nimport { log } from \"./log.js\";\nimport { resetInitialisation } from \"./init.js\";\nimport { getRecents, trackRecentUsage } from \"./recents.js\";\nimport { openEntryPageInNewTab } from \"./entry.js\";\nimport { getAutoLoginForTab, registerAutoLogin } from \"./autoLogin.js\";\nimport { extractDomainFromCredentials } from \"../library/domain.js\";\nimport {\n BackgroundMessage,\n BackgroundMessageType,\n BackgroundResponse,\n LocalStorageItem,\n TabEventType\n} from \"../types.js\";\nimport { markNotificationRead } from \"./notifications.js\";\nimport { createNewTab, getExtensionURL } from \"../../shared/library/extension.js\";\nimport { sendTabsMessage } from \"./tabs.js\";\n\nasync function handleMessage(\n msg: BackgroundMessage,\n sender: chrome.runtime.MessageSender,\n sendResponse: (resp: BackgroundResponse) => void\n) {\n switch (msg.type) {\n case BackgroundMessageType.AuthenticateDesktopConnection: {\n const { code } = msg;\n if (!code) {\n throw new Error(\"No auth code provided\");\n }\n log(\"complete desktop authentication\");\n const publicKey = await authenticateBrowserAccess(code);\n await setLocalValue(LocalStorageItem.APIServerPublicKey, publicKey);\n sendResponse({});\n break;\n }\n case BackgroundMessageType.CheckDesktopConnection: {\n const available = await hasConnection();\n if (available) {\n await testAuth();\n }\n sendResponse({\n available\n });\n break;\n }\n case BackgroundMessageType.ClearDesktopAuthentication: {\n log(\"clear desktop authentication\");\n await removeLocalValue(LocalStorageItem.APIClientID);\n await removeLocalValue(LocalStorageItem.APIServerPublicKey);\n sendResponse({});\n break;\n }\n case BackgroundMessageType.ClearSavedCredentials: {\n const { credentialsID } = msg;\n if (!credentialsID) {\n throw new Error(\"No credentials ID provided\");\n }\n log(`clear saved credentials: ${credentialsID}`);\n clearCredentials(credentialsID);\n sendResponse({});\n break;\n }\n case BackgroundMessageType.ClearSavedCredentialsPrompt: {\n const { credentialsID } = msg;\n if (!credentialsID) {\n throw new Error(\"No credentials ID provided\");\n }\n log(`clear saved credentials prompt: ${credentialsID}`);\n stopPromptForID(credentialsID);\n await sendTabsMessage({\n type: TabEventType.CloseSaveDialog\n });\n sendResponse({});\n break;\n }\n case BackgroundMessageType.DeleteDisabledDomains: {\n const { domains } = msg;\n if (!domains) {\n throw new Error(\"No domains list provided\");\n }\n log(`remove disabled domains: ${domains.join(\", \")}`);\n for (const domain of domains) {\n await removeDisabledFlagForDomain(domain);\n }\n sendResponse({});\n break;\n }\n case BackgroundMessageType.DisableSavePromptForCredentials: {\n const { credentialsID } = msg;\n if (!credentialsID) {\n throw new Error(\"No credentials ID provided\");\n }\n log(`disable save prompt for credentials: ${credentialsID}`);\n try {\n const credentials = getCredentialsForID(credentialsID);\n const domain = credentials ? extractDomainFromCredentials(credentials) : null;\n if (domain) {\n log(`disable save prompt for domain: ${domain}`);\n await disableLoginsOnDomain(domain);\n }\n } catch (err) {\n throw new Layerr(err, \"Failed disabling save prompt for domain\");\n }\n await sendTabsMessage({\n type: TabEventType.CloseSaveDialog\n });\n sendResponse({});\n break;\n }\n case BackgroundMessageType.GetAutoLoginForTab: {\n const tabID = sender.tab?.id;\n if (!tabID) {\n sendResponse({ autoLogin: null });\n break;\n }\n const entry = getAutoLoginForTab(tabID);\n sendResponse({ autoLogin: entry });\n break;\n }\n case BackgroundMessageType.GetConfiguration: {\n const config = getConfig();\n sendResponse({\n config\n });\n break;\n }\n case BackgroundMessageType.GetDesktopVaultSources: {\n const sources = await getVaultSources();\n sendResponse({\n vaultSources: sources\n });\n break;\n }\n case BackgroundMessageType.GetDesktopVaultsTree: {\n const tree = await getVaultsTree();\n sendResponse({\n vaultsTree: tree\n });\n break;\n }\n case BackgroundMessageType.GetDisabledDomains: {\n const domains = await getDisabledDomains();\n sendResponse({\n domains\n });\n break;\n }\n case BackgroundMessageType.GetLastSavedCredentials: {\n const { excludeSaved = false } = msg;\n const tabID = sender.tab?.id;\n if (!tabID) {\n sendResponse({ credentials: [null] });\n break;\n }\n let credentials = getLastCredentials(tabID);\n if (credentials && excludeSaved && (await credentialsAlreadyStored(credentials))) {\n credentials = null;\n }\n sendResponse({\n credentials: [credentials]\n });\n break;\n }\n case BackgroundMessageType.GetOTPs: {\n const otps = await getOTPs();\n sendResponse({\n otps\n });\n break;\n }\n case BackgroundMessageType.GetRecentEntries: {\n const { count = 10 } = msg;\n const sources = await getVaultSources();\n const unlockedIDs: Array = sources.reduce((output, source) => {\n if (source.state === VaultSourceStatus.Unlocked) {\n return [...output, source.id];\n }\n return output;\n }, []);\n const recentItems = await getRecents(unlockedIDs);\n recentItems.splice(count, Infinity);\n const searchResults = await getEntrySearchResults(\n recentItems.map((item) => ({\n entryID: item.entryID,\n sourceID: item.sourceID\n }))\n );\n sendResponse({\n searchResults\n });\n break;\n }\n case BackgroundMessageType.GetSavedCredentials: {\n const credentials = getAllCredentials();\n sendResponse({\n credentials\n });\n break;\n }\n case BackgroundMessageType.GetSavedCredentialsForID: {\n const { credentialsID, excludeSaved = false } = msg;\n if (!credentialsID) {\n throw new Error(\"No credentials ID provided\");\n }\n let credentials = getCredentialsForID(credentialsID);\n if (credentials && excludeSaved && (await credentialsAlreadyStored(credentials))) {\n credentials = null;\n }\n sendResponse({\n credentials: [credentials]\n });\n break;\n }\n case BackgroundMessageType.InitiateDesktopConnection: {\n log(\"start desktop authentication\");\n await initiateConnection();\n await createNewTab(getExtensionURL(\"full.html#/connect\"));\n sendResponse({});\n break;\n }\n case BackgroundMessageType.MarkNotificationRead: {\n const { notification } = msg;\n if (!notification) {\n throw new Error(\"No notification provided\");\n }\n log(`mark notification read: ${notification}`);\n await markNotificationRead(notification);\n sendResponse({});\n break;\n }\n case BackgroundMessageType.OpenEntryPage: {\n const { autoLogin, entry } = msg;\n if (!entry) {\n throw new Error(\"No entry provided\");\n }\n const [url = null] = getEntryURLs(entry.properties, EntryURLType.Login);\n if (!url) {\n sendResponse({ opened: false });\n return;\n }\n log(`open entry page by url: ${entry.id} (${url})`);\n const tabID = await openEntryPageInNewTab(entry, url);\n if (autoLogin) {\n registerAutoLogin(entry, tabID);\n }\n sendResponse({ opened: true });\n break;\n }\n case BackgroundMessageType.OpenSaveCredentialsPage: {\n await createNewTab(getExtensionURL(\"full.html#/save-credentials\"));\n await sendTabsMessage({\n type: TabEventType.CloseSaveDialog\n });\n sendResponse({});\n break;\n }\n case BackgroundMessageType.PromptLockSource: {\n const { sourceID } = msg;\n if (!sourceID) {\n throw new Error(\"No source ID provided\");\n }\n log(`request lock source: ${sourceID}`);\n const locked = await promptSourceLock(sourceID);\n sendResponse({\n locked\n });\n break;\n }\n case BackgroundMessageType.PromptUnlockSource: {\n const { sourceID } = msg;\n if (!sourceID) {\n throw new Error(\"No source ID provided\");\n }\n log(`request unlock source: ${sourceID}`);\n await promptSourceUnlock(sourceID);\n sendResponse({});\n break;\n }\n case BackgroundMessageType.ResetSettings: {\n log(`reset settings`);\n await clearLocalStorage();\n await resetInitialisation();\n sendResponse({});\n break;\n }\n case BackgroundMessageType.SaveCredentialsToVault: {\n const { sourceID, groupID, entryID = null, entryProperties, entryType = EntryType.Website } = msg;\n if (!sourceID) {\n throw new Error(\"No source ID provided\");\n }\n if (!groupID) {\n throw new Error(\"No group ID provided\");\n }\n if (!entryProperties) {\n throw new Error(\"No entry properties provided\");\n }\n if (entryID) {\n log(`save credentials to existing entry: ${entryID} (source=${sourceID})`);\n await saveExistingEntry(sourceID, groupID, entryID, entryProperties);\n sendResponse({\n entryID: null\n });\n } else {\n log(`save credentials to new entry (source=${sourceID})`);\n const entryID = await saveNewEntry(sourceID, groupID, entryType, entryProperties);\n sendResponse({\n entryID\n });\n }\n break;\n }\n case BackgroundMessageType.SaveUsedCredentials: {\n const { credentials } = msg;\n if (!credentials) {\n throw new Error(\"No source ID provided\");\n }\n if (!sender.tab?.id) {\n throw new Error(\"No tab ID available for background message\");\n }\n updateUsedCredentials(credentials, sender.tab.id);\n sendResponse({});\n break;\n }\n case BackgroundMessageType.SearchEntriesByTerm: {\n const { searchTerm } = msg;\n if (!searchTerm) {\n throw new Error(\"No search term provided\");\n }\n const searchResults = await searchEntriesByTerm(searchTerm);\n sendResponse({\n searchResults\n });\n break;\n }\n case BackgroundMessageType.SearchEntriesByURL: {\n const { url } = msg;\n if (!url) {\n throw new Error(\"No URL provided\");\n }\n const searchResults = await searchEntriesByURL(url);\n sendResponse({\n searchResults\n });\n break;\n }\n case BackgroundMessageType.SetConfigurationValue: {\n const { configKey, configValue } = msg;\n if (!configKey || typeof configValue === \"undefined\") {\n throw new Error(\"Invalid configuration proivided provided\");\n }\n await updateConfigValue(configKey, configValue);\n sendResponse({});\n break;\n }\n case BackgroundMessageType.TrackRecentEntry: {\n const { entry } = msg;\n if (!entry) {\n throw new Error(\"No entry provided\");\n }\n if (!entry.sourceID) {\n throw new Error(`No source ID in entry result: ${entry.id}`);\n }\n await trackRecentUsage(entry.sourceID, entry.id);\n sendResponse({});\n break;\n }\n default:\n throw new Layerr(`Unrecognised message type: ${(msg as any).type}`);\n }\n}\n\nexport function initialise() {\n getExtensionAPI().runtime.onMessage.addListener((request, sender, sendResponse) => {\n handleMessage(request, sender, sendResponse).catch((err) => {\n console.error(err);\n sendResponse({\n error: errorToString(new Layerr(err, \"Background task failed\"))\n });\n });\n return true;\n });\n}\n"
},
{
"path": "source/background/services/notifications.ts",
"content": "import { getSyncValue, setSyncValue } from \"./storage.js\";\nimport { SyncStorageItem } from \"../types.js\";\nimport { NOTIFICATION_NAMES } from \"../../shared/notifications/index.js\";\nimport { createNewTab, getExtensionURL } from \"../../shared/library/extension.js\";\n\nasync function getPendingNotifications(): Promise> {\n const existingNotificationsRaw = await getSyncValue(SyncStorageItem.Notifications);\n const existingNotifications = existingNotificationsRaw ? existingNotificationsRaw.split(\",\") : [];\n return NOTIFICATION_NAMES.filter((name) => !existingNotifications.includes(name));\n}\n\nexport async function markNotificationRead(name: string): Promise {\n const existingNotificationsRaw = await getSyncValue(SyncStorageItem.Notifications);\n const notifications = existingNotificationsRaw ? existingNotificationsRaw.split(\",\") : [];\n if (!notifications.includes(name)) {\n notifications.push(name);\n }\n await setSyncValue(SyncStorageItem.Notifications, notifications.join(\",\"));\n}\n\nexport async function showPendingNotifications(): Promise {\n const notifications = await getPendingNotifications();\n if (notifications.length <= 0) return;\n await createNewTab(getExtensionURL(`full.html#/notifications?notifications=${notifications.join(\",\")}`));\n}\n"
},
{
"path": "source/background/services/recents.ts",
"content": "import { EntryID, VaultSourceID } from \"buttercup\";\nimport { ChannelQueue, TaskPriority } from \"@buttercup/channel-queue\";\nimport ms from \"ms\";\nimport { getSyncValue, setSyncValue } from \"./storage.js\";\nimport { SyncStorageItem } from \"../types.js\";\n\nexport interface RecentItem {\n entryID: EntryID;\n sourceID: VaultSourceID;\n uses: Array;\n}\n\nconst MAX_USE_AGE = ms(\"30d\");\n\nlet __queue: ChannelQueue | null = null;\n\nfunction getQueue(): ChannelQueue {\n if (!__queue) {\n __queue = new ChannelQueue();\n }\n return __queue;\n}\n\nexport async function getRecents(sourceIDs: Array): Promise> {\n const currentRecentsRaw = await getSyncValue(SyncStorageItem.RecentItems);\n if (!currentRecentsRaw) return [];\n const currentRecents = JSON.parse(currentRecentsRaw) as Array;\n return currentRecents.filter((recent) => sourceIDs.includes(recent.sourceID));\n}\n\nfunction sortUses(itemA: RecentItem, itemB: RecentItem): number {\n if (itemA.uses.length > itemB.uses.length) return -1;\n if (itemB.uses.length > itemA.uses.length) return 1;\n return 0;\n}\n\nfunction stripOldUses(items: Array): Array {\n const earliestTs = Date.now() - MAX_USE_AGE;\n return items.reduce((output: Array, item: RecentItem) => {\n const hasRecentUse = item.uses.some((ts) => ts >= earliestTs);\n if (!hasRecentUse) return output;\n return [\n ...output,\n {\n ...item,\n uses: item.uses.filter((ts) => ts >= earliestTs)\n }\n ];\n }, []);\n}\n\nexport async function trackRecentUsage(sourceID: VaultSourceID, entryID: EntryID): Promise {\n const channel = getQueue().channel(\"write\");\n await channel.enqueue(\n async () => {\n const currentRecentsRaw = await getSyncValue(SyncStorageItem.RecentItems);\n let currentRecents = currentRecentsRaw ? (JSON.parse(currentRecentsRaw) as Array) : [];\n let existingResult = currentRecents.find(\n (recent) => recent.sourceID === sourceID && recent.entryID === entryID\n );\n if (existingResult) {\n existingResult.uses.unshift(Date.now());\n } else {\n existingResult = {\n entryID,\n sourceID,\n uses: [Date.now()]\n };\n currentRecents.push(existingResult);\n }\n currentRecents = stripOldUses(currentRecents);\n currentRecents.sort(sortUses);\n await setSyncValue(SyncStorageItem.RecentItems, JSON.stringify(currentRecents));\n },\n TaskPriority.Normal,\n `${sourceID}-${entryID}`\n );\n}\n"
},
{
"path": "source/background/services/storage/BrowserStorageInterface.ts",
"content": "import { StorageInterface } from \"buttercup\";\nimport { getExtensionAPI } from \"../../../shared/extension.js\";\n\nexport function getSyncStorage() {\n return getExtensionAPI().storage.sync;\n}\n\nexport function getNonSyncStorage() {\n return getExtensionAPI().storage.local;\n}\n\nexport class BrowserStorageInterface extends StorageInterface {\n protected _storage: chrome.storage.StorageArea;\n\n constructor(storage: chrome.storage.StorageArea = getSyncStorage()) {\n super();\n this._storage = storage;\n }\n\n get storage() {\n return this._storage;\n }\n\n async getAllKeys() {\n return new Promise>((resolve) => {\n this.storage.get(null, (allItems) => {\n resolve(Object.keys(allItems));\n });\n });\n }\n\n async getValue(name: string) {\n return new Promise((resolve) => {\n this.storage.get(name, (items) => {\n resolve(items[name]);\n });\n });\n }\n\n async removeKey(name: string) {\n return new Promise((resolve) => {\n this.storage.remove(name, () => resolve());\n });\n }\n\n async setValue(name: string, value: any) {\n return new Promise((resolve) => {\n this.storage.set({ [name]: value }, () => resolve());\n });\n }\n}\n"
},
{
"path": "source/background/services/storage.ts",
"content": "import { log } from \"./log.js\";\nimport { BrowserStorageInterface, getNonSyncStorage, getSyncStorage } from \"./storage/BrowserStorageInterface.js\";\nimport { LocalStorageItem, SyncStorageItem } from \"../types.js\";\n\nconst VALID_LOCAL_KEYS = Object.values(LocalStorageItem);\nconst VALID_SYNC_KEYS = Object.values(SyncStorageItem);\n\nexport async function clearLocalStorage(): Promise {\n const localStorage = getLocalStorage();\n const syncStorage = getSynchronisedStorage();\n const keys = await localStorage.getAllKeys();\n for (const key of keys) {\n log(`clearing local storage key: ${key}`);\n await localStorage.removeKey(key);\n }\n await syncStorage.removeKey(SyncStorageItem.Notifications);\n}\n\nfunction getLocalStorage(): BrowserStorageInterface {\n return new BrowserStorageInterface(getNonSyncStorage());\n}\n\nexport async function getLocalValue(key: LocalStorageItem): Promise {\n return getLocalStorage().getValue(key) ?? null;\n}\n\nexport async function getSyncValue(key: SyncStorageItem): Promise {\n return getSynchronisedStorage().getValue(key) ?? null;\n}\n\nfunction getSynchronisedStorage(): BrowserStorageInterface {\n return new BrowserStorageInterface(getSyncStorage());\n}\n\nexport async function initialise() {\n const localStorage = getLocalStorage();\n {\n const keys = await localStorage.getAllKeys();\n for (const key of keys) {\n const valid = VALID_LOCAL_KEYS.find((local) => key === local || key.indexOf(local) === 0);\n if (!valid) {\n log(`remove unrecognised local storage key: ${key}`);\n await localStorage.removeKey(key);\n }\n }\n }\n const syncStorage = getSynchronisedStorage();\n {\n const keys = await syncStorage.getAllKeys();\n for (const key of keys) {\n const valid = VALID_SYNC_KEYS.find((local) => key === local || key.indexOf(local) === 0);\n if (!valid) {\n log(`remove unrecognised sync storage key: ${key}`);\n await syncStorage.removeKey(key);\n }\n }\n }\n}\n\nexport async function removeLocalValue(key: LocalStorageItem): Promise {\n await getLocalStorage().removeKey(key);\n}\n\nexport async function removeSyncValue(key: SyncStorageItem): Promise {\n await getSynchronisedStorage().removeKey(key);\n}\n\nexport async function setLocalValue(key: LocalStorageItem, value: string): Promise {\n return getLocalStorage().setValue(key, value);\n}\n\nexport async function setSyncValue(key: SyncStorageItem, value: string): Promise {\n return getSynchronisedStorage().setValue(key, value);\n}\n"
},
{
"path": "source/background/services/tabs.ts",
"content": "import { getExtensionAPI } from \"../../shared/extension.js\";\nimport { TabEvent } from \"../types.js\";\n\nexport async function sendTabsMessage(payload: TabEvent, tabIDs: Array | null = null): Promise {\n const browser = getExtensionAPI();\n const targetTabIDs = Array.isArray(tabIDs)\n ? tabIDs\n : (\n await browser.tabs.query({\n status: \"complete\"\n })\n ).reduce((output: Array, tab) => {\n if (!tab.id) return output;\n return [...output, tab.id];\n }, []);\n await Promise.all(\n targetTabIDs.map(async (tabID) => {\n browser.tabs.sendMessage(tabID, payload);\n })\n );\n}\n"
},
{
"path": "source/background/types.ts",
"content": "export * from \"../shared/types.js\";\n\nexport enum LocalStorageItem {\n APIClientID = \"bcup:api:clientID\",\n APIPrivateKey = \"bcup:api:privateKey\",\n APIPublicKey = \"bcup:api:publicKey\",\n APIServerPublicKey = \"bcup:api:serverPublicKey\"\n}\n\nexport enum SyncStorageItem {\n Configuration = \"bcup:configuration\",\n DisabledDomains = \"bcup:disabledDomains\",\n Notifications = \"bcup:notifications\",\n RecentItems = \"bcup:recents\"\n}\n"
},
{
"path": "source/full/applications/full.tsx",
"content": "import React from \"react\";\nimport ReactDOM from \"react-dom\";\nimport { App } from \"../components/App.js\";\nimport { initialise } from \"../services/init.js\";\n\ninitialise()\n .then(() => {\n ReactDOM.render(\n ,\n document.getElementById(\"root\"),\n );\n })\n .catch(err => {\n console.error(err);\n });\n"
},
{
"path": "source/full/components/App.tsx",
"content": "import React from \"react\";\nimport {\n createHashRouter,\n RouterProvider\n} from \"react-router-dom\";\nimport { ThemeProvider } from \"../../shared/components/ThemeProvider.jsx\";\nimport { ConnectPage } from \"./pages/connect/index.jsx\";\nimport { AttributionsPage } from \"./pages/AttributionsPage.jsx\";\nimport { SaveCredentialsPage } from \"./pages/saveCredentials/index.js\";\nimport { useBodyThemeClass, useTheme } from \"../../shared/hooks/theme.js\";\nimport { RouteError } from \"../../shared/components/RouteError.js\";\nimport { DisabledDomainsPage } from \"./pages/DisabledDomainsPage.js\";\nimport { NotificationsPage } from \"./pages/NotificationsPage.js\";\n\nconst ROUTER = createHashRouter([\n {\n path: \"/connect\",\n element: ,\n errorElement: \n },\n {\n path: \"/attributions\",\n element: ,\n errorElement: \n },\n {\n path: \"/disabled-domains\",\n element: ,\n errorElement: \n },\n {\n path: \"/notifications\",\n element: ,\n errorElement: ,\n loader: ({ request }) => {\n const url = new URL(request.url);\n const notifications = url.searchParams.get(\"notifications\");\n return { notifications };\n }\n },\n {\n path: \"/save-credentials\",\n element: ,\n errorElement: \n }\n]);\n\nexport function App() {\n const theme = useTheme();\n useBodyThemeClass(theme);\n return (\n \n \n \n );\n}\n"
},
{
"path": "source/full/components/Layout.tsx",
"content": "import React from \"react\";\nimport styled from \"styled-components\";\nimport { Divider } from \"@blueprintjs/core\";\nimport { ChildElements } from \"../types.js\";\n\nimport BUTTERCUP_LOGO from \"../../../resources/buttercup-128.png\";\n\ninterface LayoutProps {\n children: ChildElements;\n title: string;\n}\n\nconst ContentContainer = styled.div`\n padding: 1rem;\n`;\nconst Header = styled.div`\n margin: 0.5rem 1rem 0;\n padding: 0.3rem 0;\n display: flex;\n justify-content: flex-start;\n align-items: center;\n`;\nconst MainContent = styled.div`\n width: 100vw;\n min-height: 100vh;\n padding: 3rem 0;\n`;\nconst Title = styled.h1`\n margin: 0px 0px 4px 0px;\n padding: 0;\n font-size: 18px;\n flex: 1;\n`;\nconst TitleImage = styled.img`\n width: 28px;\n height: 28px;\n margin-bottom: 3px;\n margin-right: 6px;\n`;\nconst Wrapper = styled.div`\n width: 680px;\n margin: 0 auto;\n display: flex;\n flex-direction: column;\n @media screen and (max-width: 700px) {\n width: 100%;\n }\n`;\n\nexport function Layout({ children, title }: LayoutProps) {\n return (\n \n \n \n \n {title}\n \n \n {children}\n \n \n );\n}\n"
},
{
"path": "source/full/components/pages/AttributionsPage.tsx",
"content": "import React from \"react\";\nimport styled from \"styled-components\";\nimport { Layout } from \"../Layout.js\";\nimport { t } from \"../../../shared/i18n/trans.js\";\nimport { useTitle } from \"../../hooks/document.js\";\nimport COMPUTER_ICON from \"../../../../resources/providers/local-256.png\";\n\nconst AttributionLI = styled.li`\n display: flex;\n flex-direction: row;\n align-items: center;\n`;\nconst ImageIcon = styled.img`\n width: auto;\n height: 32px;\n margin-right: 12px;\n`;\n\nexport function AttributionsPage() {\n useTitle(t(\"attributions-page.title\"));\n return (\n \n
Buttercup is Open Source Software and makes use of many free and openly available libraries and resources.
\n
Below are a list of resource attributions that this browser extension makes use of.
![\"Buttercup](\"https://cdn.rawgit.com/buttercup-pw/buttercup-assets/4bbfd317/badge/browsers.svg\"){kind=icon}
\n ![](\"https://raw.githubusercontent.com/buttercup/buttercup-browser-extension/master/chrome-extension.jpg\")
\n![](\"https://raw.githubusercontent.com/buttercup/buttercup-browser-extension/master/chrome-extension-2.jpg\")
\n\n### Forms & Logins\n\nButtercup for Browsers auto-detects some login forms and login inputs, allowing the user to auto-fill them at their discretion. This extension uses [Locust](https://github.com/buttercup/locust) under the hood to **detect forms and inputs** (any issues with detecting forms and inputs should be opened there).\n\n### Supported browsers\n\n[Chrome](https://chrome.google.com/webstore/detail/buttercup/heflipieckodmcppbnembejjmabajjjj?hl=en-GB), [Firefox](https://addons.mozilla.org/en-US/firefox/addon/buttercup-pw/), [Edge](https://www.microsoft.com/en-us/edge) (version 79+) and [Brave](https://chrome.google.com/webstore/detail/buttercup/heflipieckodmcppbnembejjmabajjjj) are supported.\n\n_Some browsers, such as **Brave** for example, will be able to install Buttercup via the Google Chrome web store._\n\nOther browsers will be supported in order of request/popularity. Issues created for unsupported browsers, or for browsers not on the roadmap, may be closed without warning.\n\n**Opera** is not supported due to their incredibly slow and unreliable release process. We will not be adding support for Opera.\n\n### Integrated platforms\n\nThe extension allows for connections to several services, such as Dropbox and Google Drive. The extension supports whatever platforms the desktop application does, including local vaults.\n\n#### Supported platforms\n\nThe browsers listed above, running on Windows, Mac or Linux on a desktop platform. This extension is not supported on any mobile or tablet devices.\n\n### Usage\n\nThe browser extension can be controlled from the **popup menu**, which is launched by pressing the Buttercup button in the browser menu. This menu displays a list of archives as well as settings and other items.\n\nWhen viewing pages that contain login forms, Buttercup can assist logging in when you interact with the login buttons (displayed beside detected login inputs).\n\nButtercup can also remember new logins, which are detected as they occur.\n\nYou can **block** Buttercup from detecting forms and inputs by applying the attribute `data-bcupignore=true`:\n\n```html\n\n```\n\n### Development\n\nDevelopment of features and bugfixes is supported in the following environment:\n\n * NodeJS version 20 (latest minor version)\n * Linux / Mac\n * Tested in at least Chrome / Firefox\n \nTo set up your development environment:\n * Clone this repo\n * Ensure API keys are available (Google Drive)\n * Execute `npm install` inside the project directory\n * Run `npm run dev:chrome` or similar\n * Load the unpacked `dist` folder in your browser addons\n\n#### Chrome\n\nRun the following to develop the extension:\n\n 1. Execute `npm run dev:chrome` to build and watch the project (to build production code, execute `npm run build`)\n 2. Go to [chrome://extensions](chrome://extensions) and enable _\"Developer mode\"_\n 3. Select the new button _\"Load unpacked\"_, then select the `./dist` directory built on step 1\n\n#### Firefox\n\nRun the following to develop the extension:\n\n * Execute `npm run dev:firefox` to build and watch the project (to build production code, execute `npm run release`)\n\n#### Releasing\n\nTo build release-ready zip archives, run the command `npm run release` after having set up the development environment. The archives will be written to `release/(browser)` where `(browser)` is the browser type. Archives named `extension.zip` contain the built extension sourcecode and `source.zip` contains the raw source.\n\n### Adding to Chrome\n\nYou can load an **unpacked extension** in Chrome by navigating to [chrome://extensions/](chrome://extensions/). Simply locate the project's directory and use **dist/** as the extension directory.\n\n### Adding to Firefox\n\nYou can load an **unpacked extension** in Firefox by navigating to [about:debugging](about:debugging). Click \"Load Temporary Add-on\" and locate the project's directory, using **dist/** as the extension directory.\n"
},
{
"path": "package.json",
"content": "{\n \"name\": \"buttercup-browser-extension\",\n \"version\": \"3.2.0\",\n \"description\": \"Buttercup browser extension\",\n \"exports\": \"./dist/background/index.js\",\n \"type\": \"module\",\n \"types\": \"./dist/background/index.d.ts\",\n \"scripts\": {\n \"build\": \"run-s set-version build:production\",\n \"build:chrome\": \"BROWSER=chrome npm run build\",\n \"build:edge\": \"BROWSER=edge npm run build\",\n \"build:firefox\": \"BROWSER=firefox npm run build\",\n \"build:production\": \"webpack --mode production --progress --config webpack.config.js\",\n \"clean\": \"rimraf dist/* release/*\",\n \"dev\": \"npm run clean && npm run set-version && webpack --mode development -w --progress --config webpack.config.js\",\n \"dev:chrome\": \"BROWSER=chrome npm run dev\",\n \"dev:edge\": \"BROWSER=edge npm run dev\",\n \"dev:firefox\": \"concurrently -k \\\"BROWSER=firefox npm run dev\\\" \\\"cd dist && web-ext run\\\" --restart-tries 20 --restart-after 5000 --devtools --keep-profile-changes\",\n \"format\": \"prettier --write '{{source,test}/**/*.{ts,js},webpack.config.js}'\",\n \"release\": \"run-s clean release:chrome release:firefox release:edge\",\n \"release:chrome\": \"npm run build:chrome && mkdirp release/chrome && zip -r release/chrome/extension.zip ./dist\",\n \"release:edge\": \"npm run build:edge && mkdirp release/edge && zip -r release/edge/extension.zip ./dist\",\n \"release:firefox\": \"npm run build:firefox && mkdirp release/firefox && run-s release:firefox:extension release:firefox:source\",\n \"release:firefox:extension\": \"cd dist && web-ext build --overwrite-dest && cd .. && mv ./dist/web-ext-artifacts/*.zip ./release/firefox/\",\n \"release:firefox:source\": \"zip -r release/firefox/source.zip . --exclude=/.git* --exclude=/node_modules* --exclude=/.history* --exclude=/dist* --exclude=/release* --exclude=*.DS_Store*\",\n \"set-version\": \"node scripts/version.js\",\n \"test\": \"run-s test:format\",\n \"test:format\": \"prettier --check '{{source,test}/**/*.{ts,js},webpack.config.js}'\"\n },\n \"lint-staged\": {\n \"{{source,test}/**/*.{ts,js},webpack.config.js}\": [\n \"prettier --write\"\n ]\n },\n \"husky\": {\n \"hooks\": {\n \"pre-commit\": \"lint-staged\"\n }\n },\n \"repository\": {\n \"type\": \"git\",\n \"url\": \"git+https://github.com/buttercup/buttercup-browser-extension.git\"\n },\n \"keywords\": [\n \"buttercup\",\n \"password\",\n \"vault\",\n \"login\",\n \"secure\"\n ],\n \"author\": \"Perry Mitchell