-
-
Notifications
You must be signed in to change notification settings - Fork 1.5k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Showing
15 changed files
with
562 additions
and
16 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -137,6 +137,7 @@ Files: share/icons/badges/2_Expired.svg | |
share/icons/database/C46_Help.svg | ||
share/icons/database/C53_Apply.svg | ||
share/icons/database/C61_Services.svg | ||
share/icons/application/scalable/actions/proton.svg | ||
Copyright: 2022 KeePassXC Team <[email protected]> | ||
License: MIT | ||
|
||
|
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,221 @@ | ||
/* | ||
* Copyright (C) 2024 KeePassXC Team <[email protected]> | ||
* | ||
* This program is free software: you can redistribute it and/or modify | ||
* it under the terms of the GNU General Public License as published by | ||
* the Free Software Foundation, either version 2 or (at your option) | ||
* version 3 of the License. | ||
* | ||
* This program is distributed in the hope that it will be useful, | ||
* but WITHOUT ANY WARRANTY; without even the implied warranty of | ||
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the | ||
* GNU General Public License for more details. | ||
* | ||
* You should have received a copy of the GNU General Public License | ||
* along with this program. If not, see <http://www.gnu.org/licenses/>. | ||
*/ | ||
|
||
#include "ProtonPassReader.h" | ||
|
||
#include "core/Database.h" | ||
#include "core/Entry.h" | ||
#include "core/Group.h" | ||
#include "core/Metadata.h" | ||
#include "core/Tools.h" | ||
#include "core/Totp.h" | ||
#include "crypto/CryptoHash.h" | ||
|
||
#include <QFileInfo> | ||
#include <QJsonArray> | ||
#include <QJsonDocument> | ||
#include <QJsonObject> | ||
#include <QJsonParseError> | ||
#include <QMap> | ||
#include <QScopedPointer> | ||
#include <QUrl> | ||
|
||
namespace | ||
{ | ||
Entry* readItem(const QJsonObject& item) | ||
{ | ||
const auto itemMap = item.toVariantMap(); | ||
const auto dataMap = itemMap.value("data").toMap(); | ||
const auto metadataMap = dataMap.value("metadata").toMap(); | ||
|
||
// Create entry and assign basic values | ||
QScopedPointer<Entry> entry(new Entry()); | ||
entry->setUuid(QUuid::createUuid()); | ||
entry->setTitle(metadataMap.value("name").toString()); | ||
entry->setNotes(metadataMap.value("note").toString()); | ||
|
||
if (itemMap.value("pinned").toBool()) { | ||
entry->addTag(QObject::tr("Favorite", "Tag for favorite entries")); | ||
} | ||
|
||
// Handle specific item types | ||
auto type = dataMap.value("type").toString(); | ||
|
||
// Login | ||
if (type.compare("login", Qt::CaseInsensitive) == 0) { | ||
const auto loginMap = dataMap.value("content").toMap(); | ||
entry->setUsername(loginMap.value("itemUsername").toString()); | ||
entry->setPassword(loginMap.value("password").toString()); | ||
if (loginMap.contains("totpUri")) { | ||
auto totp = loginMap.value("totpUri").toString(); | ||
if (!totp.startsWith("otpauth://")) { | ||
QUrl url(QString("otpauth://totp/%1:%2?secret=%3") | ||
.arg(QString(QUrl::toPercentEncoding(entry->title())), | ||
QString(QUrl::toPercentEncoding(entry->username())), | ||
QString(QUrl::toPercentEncoding(totp)))); | ||
totp = url.toString(QUrl::FullyEncoded); | ||
} | ||
entry->setTotp(Totp::parseSettings(totp)); | ||
} | ||
|
||
if (loginMap.contains("itemEmail")) { | ||
entry->attributes()->set("login_email", loginMap.value("itemEmail").toString()); | ||
} | ||
|
||
// Set the entry url(s) | ||
int i = 1; | ||
for (const auto& urlObj : loginMap.value("urls").toList()) { | ||
const auto url = urlObj.toString(); | ||
if (entry->url().isEmpty()) { | ||
// First url encountered is set as the primary url | ||
entry->setUrl(url); | ||
} else { | ||
// Subsequent urls | ||
entry->attributes()->set( | ||
QString("%1_%2").arg(EntryAttributes::AdditionalUrlAttribute, QString::number(i)), url); | ||
++i; | ||
} | ||
} | ||
} | ||
// Credit Card | ||
else if (type.compare("creditCard", Qt::CaseInsensitive) == 0) { | ||
const auto cardMap = dataMap.value("content").toMap(); | ||
entry->setUsername(cardMap.value("number").toString()); | ||
entry->setPassword(cardMap.value("verificationNumber").toString()); | ||
const QStringList attrs({"cardholderName", "pin", "expirationDate"}); | ||
const QStringList sensitive({"pin"}); | ||
for (const auto& attr : attrs) { | ||
auto value = cardMap.value(attr).toString(); | ||
if (!value.isEmpty()) { | ||
entry->attributes()->set("card_" + attr, value, sensitive.contains(attr)); | ||
} | ||
} | ||
} | ||
|
||
// Parse extra fields | ||
for (const auto& field : dataMap.value("extraFields").toList()) { | ||
// Derive a prefix for attribute names using the title or uuid if missing | ||
const auto fieldMap = field.toMap(); | ||
auto name = fieldMap.value("fieldName").toString(); | ||
if (entry->attributes()->hasKey(name)) { | ||
name = QString("%1_%2").arg(name, QUuid::createUuid().toString().mid(1, 5)); | ||
} | ||
|
||
QString value; | ||
const auto fieldType = fieldMap.value("type").toString(); | ||
if (fieldType.compare("totp", Qt::CaseInsensitive) == 0) { | ||
value = fieldMap.value("data").toJsonObject().value("totpUri").toString(); | ||
} else { | ||
value = fieldMap.value("data").toJsonObject().value("content").toString(); | ||
} | ||
|
||
entry->attributes()->set(name, value, fieldType.compare("hidden", Qt::CaseInsensitive) == 0); | ||
} | ||
|
||
// Checked expired/deleted state | ||
if (itemMap.value("state").toInt() == 2) { | ||
entry->setExpires(true); | ||
entry->setExpiryTime(QDateTime::currentDateTimeUtc()); | ||
} | ||
|
||
// Collapse any accumulated history | ||
entry->removeHistoryItems(entry->historyItems()); | ||
|
||
// Adjust the created and modified times | ||
auto timeInfo = entry->timeInfo(); | ||
const auto createdTime = QDateTime::fromSecsSinceEpoch(itemMap.value("createTime").toULongLong(), Qt::UTC); | ||
const auto modifiedTime = QDateTime::fromSecsSinceEpoch(itemMap.value("modifyTime").toULongLong(), Qt::UTC); | ||
timeInfo.setCreationTime(createdTime); | ||
timeInfo.setLastModificationTime(modifiedTime); | ||
timeInfo.setLastAccessTime(modifiedTime); | ||
entry->setTimeInfo(timeInfo); | ||
|
||
return entry.take(); | ||
} | ||
|
||
void writeVaultToDatabase(const QJsonObject& vault, QSharedPointer<Database> db) | ||
{ | ||
// Create groups from vaults and store a temporary map of id -> uuid | ||
const auto vaults = vault.value("vaults").toObject().toVariantMap(); | ||
for (const auto& vaultId : vaults.keys()) { | ||
auto vaultObj = vaults.value(vaultId).toJsonObject(); | ||
auto group = new Group(); | ||
group->setUuid(QUuid::createUuid()); | ||
group->setName(vaultObj.value("name").toString()); | ||
group->setNotes(vaultObj.value("description").toString()); | ||
group->setParent(db->rootGroup()); | ||
|
||
const auto items = vaultObj.value("items").toArray(); | ||
for (const auto& item : items) { | ||
auto entry = readItem(item.toObject()); | ||
if (entry) { | ||
entry->setGroup(group, false); | ||
} | ||
} | ||
} | ||
} | ||
} // namespace | ||
|
||
bool ProtonPassReader::hasError() | ||
{ | ||
return !m_error.isEmpty(); | ||
} | ||
|
||
QString ProtonPassReader::errorString() | ||
{ | ||
return m_error; | ||
} | ||
|
||
QSharedPointer<Database> ProtonPassReader::convert(const QString& path) | ||
{ | ||
m_error.clear(); | ||
|
||
QFileInfo fileinfo(path); | ||
if (!fileinfo.exists()) { | ||
m_error = QObject::tr("File does not exist.").arg(path); | ||
return {}; | ||
} | ||
|
||
// Bitwarden uses a json file format | ||
QFile file(fileinfo.absoluteFilePath()); | ||
if (!file.open(QFile::ReadOnly)) { | ||
m_error = QObject::tr("Cannot open file: %1").arg(file.errorString()); | ||
return {}; | ||
} | ||
|
||
QJsonParseError error; | ||
auto json = QJsonDocument::fromJson(file.readAll(), &error).object(); | ||
if (error.error != QJsonParseError::NoError) { | ||
m_error = | ||
QObject::tr("Cannot parse file: %1 at position %2").arg(error.errorString(), QString::number(error.offset)); | ||
return {}; | ||
} | ||
|
||
file.close(); | ||
|
||
if (json.value("encrypted").toBool()) { | ||
m_error = QObject::tr("Encrypted files are not supported."); | ||
return {}; | ||
} | ||
|
||
auto db = QSharedPointer<Database>::create(); | ||
db->rootGroup()->setName(QObject::tr("Proton Pass Import")); | ||
|
||
writeVaultToDatabase(json, db); | ||
|
||
return db; | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,43 @@ | ||
/* | ||
* Copyright (C) 2024 KeePassXC Team <[email protected]> | ||
* | ||
* This program is free software: you can redistribute it and/or modify | ||
* it under the terms of the GNU General Public License as published by | ||
* the Free Software Foundation, either version 2 or (at your option) | ||
* version 3 of the License. | ||
* | ||
* This program is distributed in the hope that it will be useful, | ||
* but WITHOUT ANY WARRANTY; without even the implied warranty of | ||
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the | ||
* GNU General Public License for more details. | ||
* | ||
* You should have received a copy of the GNU General Public License | ||
* along with this program. If not, see <http://www.gnu.org/licenses/>. | ||
*/ | ||
|
||
#ifndef PROTONPASS_READER_H | ||
#define PROTONPASS_READER_H | ||
|
||
#include <QSharedPointer> | ||
|
||
class Database; | ||
|
||
/*! | ||
* Imports a Proton Pass vault in JSON format: https://proton.me/support/pass-export | ||
*/ | ||
class ProtonPassReader | ||
{ | ||
public: | ||
explicit ProtonPassReader() = default; | ||
~ProtonPassReader() = default; | ||
|
||
QSharedPointer<Database> convert(const QString& path); | ||
|
||
bool hasError(); | ||
QString errorString(); | ||
|
||
private: | ||
QString m_error; | ||
}; | ||
|
||
#endif // PROTONPASS_READER_H |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.