Session watch OS client website

Used to sign in with mnemonic into the app. Mnemonic is encrypted with a key that is not sent to server.

Usage

Make GET request to /api/start-login-flow, it will respond with JSON like {"ok": true,"flowID": "URlf0dTn8"}
Generate AES-256 key for encryption and store it in a local variable, it will be used later for decryption. Encode it in base64 as iv+key where iv is 16 bytes length and key is 32 bytes length
Grab that flowID and open /login/[flowID]#[encryptionKey] page. For example /login/URlf0dTn8#123456789
User will input their mnemonic, and it will be stored in Redis database encrypted with this key. Encryption is done clientside in browser, server only receives encrypted mnemonic and never receives key.
Periodically check /api/login-flow-result/[flowID], it will respond with JSON like {"ok": true,"result": null} meaning user has not yet inputted their mnemonic. Once result is string, decrypt it with the key and you've got what user inputted. As soon as server responded with resulted encrypted string, this flow will be deleted and you won't be able to request results for the same flow again

Name		Name	Last commit message	Last commit date
Latest commit History 5 Commits
.vscode		.vscode
docs		docs
public		public
src		src
.eslintrc.cjs		.eslintrc.cjs
.gitignore		.gitignore
README.md		README.md
next.config.mjs		next.config.mjs
package.json		package.json
pnpm-lock.yaml		pnpm-lock.yaml
postcss.config.js		postcss.config.js
tailwind.config.ts		tailwind.config.ts
tsconfig.json		tsconfig.json