Implement key management on the frontend

Author: MaddyGuthridge

src/routes/admin/+page.server.ts

@@ -2,10 +2,18 @@ import { getPortfolioGlobals } from '$lib/server';
 import { redirectOnInvalidToken } from '$lib/server/auth/tokens';
 import { dataDirUsesGit } from '$lib/server/data/dataDir';
 import { getRepoStatus } from '$lib/server/git';
+import { getPrivateKeyPath, getPublicKey } from '$lib/server/keys.js';
 
 export async function load(req: import('./$types.js').RequestEvent) {
   const globals = await getPortfolioGlobals();
   await redirectOnInvalidToken(req, '/admin/login');
   const repo = await dataDirUsesGit() ? await getRepoStatus() : null;
-  return { globals, repo };
+  return {
+    globals,
+    repo,
+    keys: {
+      publicKey: await getPublicKey(),
+      keyPath: await getPrivateKeyPath(),
+    }
+  };
 }

src/routes/admin/+page.svelte

@@ -6,7 +6,8 @@
   import GitSettings from './GitSettings.svelte';
   import ChangePassword from './ChangePassword.svelte';
   import ReloadData from './ReloadData.svelte';
-    import LogOutAll from './LogOutAll.svelte';
+  import LogOutAll from './LogOutAll.svelte';
+  import KeySettings from './KeySettings.svelte';
 
   export let data: import('./$types').PageData;
 </script>
@@ -32,6 +33,10 @@
     <Paper>
       <div id="contents">
         <GitSettings {data} />
+        <KeySettings
+          publicKey={data.keys.publicKey}
+          privateKeyPath={data.keys.keyPath}
+        />
         <ChangePassword username={'admin'} />
         <LogOutAll />
         <ReloadData />

src/routes/admin/KeySettings.svelte

@@ -0,0 +1,90 @@
+<!-- Settings panel for managing the server's public key. -->
+<script lang="ts">
+  import CopyButton from '$components/CopyButton.svelte';
+  import api from '$endpoints';
+  import { APP_NAME } from '$lib/consts';
+
+  /** Public key currently being used by the server */
+  export let publicKey: string | null;
+  /** Path to the server's private key */
+  export let privateKeyPath: string | null;
+
+  /** Setting key path */
+  let newKeyPath = '';
+
+  /** Use the SSH key at the given path */
+  async function useKeyAtPath() {
+    const newKey = await api().admin.keys.setKeyPath(newKeyPath);
+    publicKey = newKey.publicKey;
+    privateKeyPath = newKey.keyPath;
+    newKeyPath = '';
+  }
+
+  /** Generate a new SSH key */
+  async function generateNewKey() {
+    const newKey = await api().admin.keys.generate();
+    publicKey = newKey.publicKey;
+    privateKeyPath = newKey.keyPath;
+  }
+
+  /** Use system SSH keys */
+  async function useSystemSsh() {
+    await api().admin.keys.disable();
+    publicKey = null;
+    privateKeyPath = null;
+  }
+</script>
+
+<div>
+  <h2>SSH key settings</h2>
+  {#if privateKeyPath === null}
+    <p>
+      {APP_NAME} is using your system's default SSH configuration. Note that in Docker,
+      this may be unset, unless you are forwarding your host's SSH agent.
+    </p>
+    <form on:submit|preventDefault={useKeyAtPath}>
+      <p>Use the given SSH key-pair</p>
+      <p>
+        <input
+          type="text"
+          bind:value={newKeyPath}
+          placeholder="/path/to/private/key"
+        />
+      </p>
+      <p><input type="submit" value="Set SSH key path" /></p>
+    </form>
+    <form on:submit|preventDefault={generateNewKey}>
+      <p>Generate a new SSH key-pair</p>
+      <p><input type="submit" value="Generate SSH key" /></p>
+    </form>
+  {:else}
+    <p>{APP_NAME} is using an SSH key at the path <em>{privateKeyPath}</em>.</p>
+
+    <p>Public key is:</p>
+    <pre>{publicKey}</pre>
+    <CopyButton text={publicKey ?? ''}>Copy to clipboard</CopyButton>
+    <form on:submit|preventDefault={useKeyAtPath}>
+      <p>Use the given SSH key-pair</p>
+      <p>
+        <input
+          type="text"
+          bind:value={newKeyPath}
+          placeholder="/path/to/private/key"
+        />
+      </p>
+      <p><input type="submit" value="Set SSH key path" /></p>
+    </form>
+    <form on:submit|preventDefault={generateNewKey}>
+      <p>Generate a new SSH key-pair</p>
+      <p><input type="submit" value="Generate SSH key" /></p>
+    </form>
+    <form on:submit|preventDefault={useSystemSsh}>
+      <p>Use the system's SSH configuration</p>
+      <p><input type="submit" value="Use system SSH" /></p>
+    </form>
+  {/if}
+</div>
+
+<style>
+  
+</style>

src/routes/admin/firstrun/data/+page.svelte

@@ -9,9 +9,9 @@
   import Navbar from '$components/navbar';
   import blankConfig from '$lib/blankConfig';
   import consts from '$lib/consts';
+  import KeySettings from '../../KeySettings.svelte';
 
-  // TODO: Show info about the public key
-  // export let data;
+  export let data;
 
   // Default values are auto-filled in dev mode
   let repoUrl = dev ? 'git@github.com:MaddyGuthridge/portfolio-data.git' : '';
@@ -87,49 +87,53 @@
         {/if}
       </div>
 
-      <form on:submit={onSubmit}>
-        <h3>Data repository URL</h3>
-        <p>
-          It's a good idea to set up a repository to back up your portfolio
-          data.
-          <a
-            href="https://docs.github.com/en/repositories/creating-and-managing-repositories/creating-a-new-repository"
-            target="_blank">Create an empty git repository</a
-          >
-          and enter the clone URL here. If you want to import existing data, enter
-          your existing repository URL here.
-        </p>
-        <input
-          type="text"
-          id="repo-url"
-          bind:value={repoUrl}
-          placeholder="git@github.com:MaddyGuthridge/portfolio-data.git"
-        />
-
-        <h3>Repository branch</h3>
-        <p>If you want to use a specific branch, you can enter it here.</p>
-        <input
-          type="text"
-          id="repo-branch"
-          bind:value={repoBranch}
-          placeholder="main"
-        />
-
-        <h3>Ready to get started?</h3>
-        <input type="submit" id="submit-main" value="Let's go!" />
-
-        <h3>Don't want to use a git repo?</h3>
-        <p>
-          Using a git repo is a great idea if you want your data to be safely
-          backed up. But if you're just testing {consts.APP_NAME}, it's much
-          quicker to get started without a git repo.
-        </p>
-        <input
-          type="submit"
-          id="submit-no-git"
-          value="I don't want to use git"
-        />
-      </form>
+      <div class="main-content">
+        <KeySettings publicKey={data.publicKey} privateKeyPath={data.keyPath} />
+
+        <form on:submit={onSubmit}>
+          <h3>Data repository URL</h3>
+          <p>
+            It's a good idea to set up a repository to back up your portfolio
+            data.
+            <a
+              href="https://docs.github.com/en/repositories/creating-and-managing-repositories/creating-a-new-repository"
+              target="_blank">Create an empty git repository</a
+            >
+            and enter the clone URL here. If you want to import existing data, enter
+            your existing repository URL here.
+          </p>
+          <input
+            type="text"
+            id="repo-url"
+            bind:value={repoUrl}
+            placeholder="git@github.com:MaddyGuthridge/portfolio-data.git"
+          />
+
+          <h3>Repository branch</h3>
+          <p>If you want to use a specific branch, you can enter it here.</p>
+          <input
+            type="text"
+            id="repo-branch"
+            bind:value={repoBranch}
+            placeholder="main"
+          />
+
+          <h3>Ready to get started?</h3>
+          <input type="submit" id="submit-main" value="Let's go!" />
+
+          <h3>Don't want to use a git repo?</h3>
+          <p>
+            Using a git repo is a great idea if you want your data to be safely
+            backed up. But if you're just testing {consts.APP_NAME}, it's much
+            quicker to get started without a git repo.
+          </p>
+          <input
+            type="submit"
+            id="submit-no-git"
+            value="I don't want to use git"
+          />
+        </form>
+      </div>
     </main>
   </Paper>
 </div>
@@ -162,7 +166,7 @@
     margin: 20px;
   }
 
-  form {
+  .main-content {
     margin: 0 10%;
   }