Extension: attempt to load token from clipboard.

Author: sebadoom

src/editor/index.js

@@ -1,5 +1,4 @@
 import { 
-  copyTextToClipboard,
   deferToNextLoop,
   safeLocalStorageSetItem,
   copyTokenLink 
@@ -204,6 +203,7 @@ function saveAsLastToken() {
 
 function loadToken() {
   const lastToken = localStorage.getItem('lastToken');
+
   if(lastToken) {
     setTokenEditorValue(lastToken);
 

src/editor/jwt.js

@@ -48,17 +48,26 @@ export function verify(jwt, secretOrPublicKeyString, base64Secret = false) {
 }
 
 export function decode(jwt) {
-  const split = jwt.split('.');
-  
   const result = {
+    header: {},
+    payload: {},
     errors: false
   };
+
+  if(!jwt) {
+    result.errors = true;
+    return result;
+  }
+  
+  const split = jwt.split('.');
+  
   try {
     result.header = JSON.parse(b64utoutf8(split[0]));
   } catch(e) {
     result.header = {};
     result.errors = true;
   }
+
   try {
     result.payload = JSON.parse(b64utoutf8(split[1]));
   } catch(e) {
@@ -68,3 +77,8 @@ export function decode(jwt) {
 
   return result;
 }
+
+export function isToken(jwt) {
+  const decoded = decode(jwt);
+  return !decoded.errors && decoded.header.typ === 'JWT';
+}

src/extension/index.js

@@ -1,6 +1,12 @@
-import { setupTokenEditor, getTokenEditorValue } from '../editor';
+import { 
+  setupTokenEditor,
+  setTokenEditorValue,
+  getTokenEditorValue
+} from '../editor';
+import { setupTokenPageInspector } from './page-inspector.js';
 import { shareJwtLink, shareJwtTextElement } from './dom-elements.js';
 import { copyTokenLink } from '../utils.js';
+import { getTokenFromClipboardIfPossible } from './utils.js';
 import strings from '../strings.js';
 
 function setupShareJwtButton() {
@@ -22,6 +28,15 @@ function setupShareJwtButton() {
   });
 }
 
+function loadFromClipboardIfPossible() {
+  const token = getTokenFromClipboardIfPossible();
+  if(token) {
+    setTokenEditorValue(token);
+  }
+}
+
 // Initialization
 setupTokenEditor();
+loadFromClipboardIfPossible();
+setupTokenPageInspector();
 setupShareJwtButton();

src/extension/page-inspector.js

@@ -0,0 +1,100 @@
+function loadFromStorageAndCookies() {
+  // Populate cookies/LocalStorage combobox
+  function checkLoadJwtFromLength() {
+      var optGroups = [
+          $('optgroup[label="Cookies"]'),
+          $('optgroup[label="Web Storage"]')
+      ];
+
+      optGroups.forEach(function(optGroup) {
+          var hasJWTs =
+            optGroup.children(':not(.load-from-no-jwts)').length > 0;
+          if(hasJWTs) {
+              optGroup.children('.load-from-no-jwts').remove();
+          } else {
+              optGroup.empty();
+              optGroup.append($('<option/>', {
+                  'class': 'load-from-no-jwts',
+                  'text': 'No JWTs found',
+                  'disabled': true
+              }));
+          }
+      });
+  }
+
+  function jwtMessage(message) {
+      if(message.type !== 'cookies' && message.type !== 'storage') {
+          return;
+      }
+
+      var elements = [];
+
+      message.tokens.forEach(function(token) {
+          if(!isToken(token.value)) {
+              if(message.type === 'storage') {
+                  try {
+                      // Try again after parsing it first, some people do
+                      //localStorage.setItem('jwt', JSON.stringify(token))
+                      token.value = JSON.parse(token.value);
+                      if(!isToken(token.value)) {
+                          return;
+                      }
+                  } catch(e) {
+                      return;
+                  }
+              } else {
+                  return;
+              }
+          }
+
+          var e = $('<option/>').text(token.name)
+                                .val(token.value)
+                                .data('type', token.type)
+          if(token.cookie) {
+              e.data('cookie', token.cookie);
+          }
+          elements.push(e);
+      });
+
+      if(message.type === 'cookies') {
+          $('optgroup[label="Cookies"]').append(elements);
+      } else {
+          $('optgroup[label="Web Storage"]').append(elements);
+      }
+
+      checkLoadJwtFromLength();
+  }
+
+  chrome.runtime.onMessage.addListener(jwtMessage);
+
+  chrome.tabs.executeScript({
+      file: 'js/webstorage.js',
+      runAt: "document_idle"
+  });
+
+  chrome.tabs.query({ active: true, currentWindow: true }, function(tabs) {
+      chrome.cookies.getAll({
+          url: tabs[0].url,
+      }, function(cookies) {
+          var result = cookies.map(function(cookie) {
+              return {
+                  name: cookie.name,
+                  value: cookie.value,
+                  type: 'cookie',
+                  cookie: cookie
+              }
+          });
+
+          jwtMessage({
+              type: 'cookies',
+              tokens: result
+          });
+      });
+  });
+
+  checkLoadJwtFromLength();
+}
+
+export function setupTokenPageInspector() {
+
+}

src/extension/utils.js

@@ -0,0 +1,17 @@
+import { isToken } from '../editor/jwt.js';
+
+// This only works on extensions
+export function getTokenFromClipboardIfPossible() {
+  const input = document.createElement('textarea');
+  
+  document.body.appendChild(input);
+  input.focus();
+  input.select();
+  document.execCommand('Paste');
+
+  const token = input.value;
+  
+  input.remove();
+
+  return isToken(token) ? token : null;
+}