Merge pull request #102 from MikeCoder/3.0

3.0 Alpha

.eslintrc.js

@@ -5,4 +5,7 @@ module.exports = {
     'es6': true
   },
   'extends': 'eslint:recommended',
+  'parserOptions': {
+    'ecmaVersion': 10,
+  },
 };

ReadMe.md

@@ -6,228 +6,107 @@
 
 [中文说明](./ReadMe.zh.md)
 
-## What is Hexo Blog Encrypt
+## What's this
 
-> Think about this, you write an article, but not want everyone to read. So you will add a passwrod on the blog, others need to answer the password to access the blog.
-> It is easy on wordpress or emlog or other blog system. However, when you on hexo, there is no such a plugin or function before.
-> Now let me introduce my plugin "hexo-blog-encrypt".
+- ~~First of all, the **BEST** post encryption plugin in the universe for hexo.(But what about the other plugins?)~~
 
-## Feature
+- It is for who wrote a post, but don't want everyone to read. Thus, password is required in certain pages to access these encrypted posts.
 
-+ Once you enter the correct password, you can get the access for 30 minutes.
+- It is simple on wordpress, emlog or other blog system, except hexo. :(
 
-## Live Demo
+- So it's "hexo-blog-encrypt"'s time.
 
-See [Demo Page](https://mhexo.github.io/example-site/2018/06/25/encrypt-test/), **all passwords are `123`**.
+## Features
 
-## Install
-
-+ `npm install --save hexo-blog-encrypt`
-
-+ or `yarn add hexo-blog-encrypt` (require [Yarn](https://yarnpkg.com/en/))
-
-## Quick Start
-
-+ First, make sure your post has content(not empty, or only has space).
-+ Then you should enable the plugin in your `_config.yml` like below:
-+ The password in post is the highest priority, and then in tags encryption setting. The password priority in the post with multi-tag encryption is ordered by the post tags.
-
-```yaml
-
-# Security
-encrypt: # hexo-blog-encrypt
-  enable: true
-  tags:  # encrypt posts by tags with the password separately
-    - {name: test, password: test}
-    - {name: diary, password: diary}
-
-```
-
-+ Add password and abstract and message to your blog source like below:
+- Once you enter the correct password, you can get the access to read encrypted posts, and the password is remembered at local. Press the button once, and the stored password will be erased. If there're scripts in the post, they will be executed once the post is decrypted.
 
-```markdown
+- Support preseted tag-specified password.
 
----
-title: Hello World
-date: 2016-03-30 21:18:02
-password: mikemessi
-abstract: Something was encrypted, please enter password to read.
-message: Welcome to my blog, please enter password to read.
----
+- All functions are provided by the native APIs. We use [Crypto](https://nodejs.org/dist/latest-v12.x/docs/api/crypto.html) in Node.js, and use [Web Crypto API](https://developer.mozilla.org/en-US/docs/Web/API/Web_Crypto_API) in Browsers.
 
-```
+- [PBKDF2](https://tools.ietf.org/html/rfc2898), [SHA256](https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf) is used to derive keys, We use [AES256-CBC](https://csrc.nist.gov/publications/detail/sp/800-38a/final) to encrypt and decrypt data, we also use [HMAC](https://csrc.nist.gov/csrc/media/publications/fips/198/1/final/documents/fips-198-1_final.pdf) to verify message authentication codes to make sure the posts are decrypted well and not modified.
 
-+ If you want to encrypt you TOC of the blog, you should add the following code to your article.ejs:
+- Promise is widely used to make sure our main procedures are asynchronous, so that the process have little chances to be block, and the experience will be more fluent.
 
-```ejs
+- Outdatad browsers may not work well. In such case, please upgrade your browser.
 
-<% if(post.toc == true){ %>
-  <div id="toc-div" class="toc-article" <% if (post.encrypt == true) { %>style="display:none" <% } %>>
-    <strong class="toc-title">Index</strong>
-      <% if (post.encrypt == true) { %>
-        <%- toc(post.origin) %>
-      <% } else { %>
-        <%- toc(post.content) %>
-      <% } %>
-  </div>
-<% } %>
-<%- post.content %>
+## Online demo
 
-```
+- See [Demo Page](https://mhexo.github.io/example-site/2018/06/25/encrypt-test/), **all passwords are `123`**.
 
-+ Then use `hexo clean && hexo g && hexo s` to see your blog.
+## Install
 
-## For Advanced Users
+- `npm install --save hexo-blog-encrypt`
 
-### First you should enable the plugin in your _config.yml like below
+- or `yarn add hexo-blog-encrypt` (require [Yarn](https://yarnpkg.com/en/))
 
-```yaml
+## Quick start
 
-# Security
-encrypt: # hexo-blog-encrypt
-  enable: true
-  tags:  # encrypt posts by tags with the password separately
-    - {name: test, password: test}
-    - {name: diary, password: diary}
-
-```
-
-### Then, add password to the blogs
+- Add the "password" value to your post's front matter like:
 
 ```markdown
 
 ---
 title: Hello World
 date: 2016-03-30 21:18:02
 password: mikemessi
-abstract: Something was encrypted, please enter password to read.
-message: Welcome to my blog, enter password to read.
 ---
 
 ```
 
-As we can see above, we add 'password, abstract, message' the new 3 items in the blog info block.
-
-+ password is the blog password.
-+ abstract is the content which will be showed in the blog list page.
-+ message is the content which will be showed in the blog detail page.
-
-### Encrypt TOC
+- Then use `hexo clean && hexo g && hexo s` to see your encrypted post at local.
 
-If you has a post with TOC, you should change the code of template. Use the default theme 'landscape' as an example:
+## Password Priority
 
-+ You should find the *article.ejs* file which is located in *hexo/themes/landscape/layout/_partial/article.ejs*.
-+ Find the code like <% post.content %>, which is usually at line 30.
-+ Replace the <% post.content %> with the following code block:
+post's front matter > encrypt tags
 
-```ejs
-
-<% if(post.toc == true){ %>
-  <div id="toc-div" class="toc-article" <% if (post.encrypt == true) { %>style="display:none" <% } %>>
-    <strong class="toc-title">Index</strong>
-      <% if (post.encrypt == true) { %>
-        <%- toc(post.origin, {list_number: true}) %>
-      <% } else { %>
-        <%- toc(post.content, {list_number: true}) %>
-      <% } %>
-  </div>
-<% } %>
-<%- post.content %>
-
-```
+## Advanced settings
 
-### Change Template
-
-If you are not satisfied with the default template, you can just change it to your favorite one. Just follow the following steps.
-
-```yaml
-
-# Security
-encrypt: # hexo-blog-encrypt
-  enable: true
-    default_abstract: Something was encrypted, please enter password to read.</br>
-    default_message: Welcome to my blog, enter password to read.
-    default_template: |-
-        <div id="hbe-security">
-          <div class="hbe-input-container">
-          <input type="password" class="hbe-form-control" id="pass" placeholder="{{message}}" />
-            <label for="pass">{{message}}</label>
-            <div class="bottom-line"></div>
-          </div>
-        </div>
-        <div id="decryptionError" style="display:none;">{{decryptionError}}</div>
-        <div id="noContentError" style="display:none;">{{noContentError}}</div>
-        <div id="encrypt-blog" style="display:none">
-        {{content}}
-        </div>
-
-```
-
-+ You can see **default_abstract** and **default_template** and **default_message** here.
-  + default_abstract: means the default description which will be shown on the blogs list page.
-  + default_message: means the default message will show above the password input area.
-  + default_template : means the default detail page which will be shown on the detial page.
-    + the decryption div's id **must** be 'hbe-security'
-    + the content div's id **must** be 'encrypt-blog'
-    + there must be a input's id **must** be pass, which will let reader to input their password
-    + there must be trigger which calls the 'decryptAES' function
-
-If you want to make the blog special, You can add abstract and template to your blog files, like these:
+### in post's front matter
 
 ```markdown
 
 ---
-title: hello world
-date: 2016-03-30 21:18:02
-password: Mike
-abstract: Welcome to my blog, enter password to read.
-message: Welcome to my blog, enter password to read.
-template:
-        <div id="hbe-security">
-          <div class="hbe-input-container">
-          <input type="password" class="hbe-form-control" id="pass" placeholder="{{message}}" />
-            <label for="pass">{{message}}</label>
-            <div class="bottom-line"></div>
-          </div>
-        </div>
-        <div id="decryptionError" style="display:none;">{{decryptionError}}</div>
-        <div id="noContentError" style="display:none;">{{noContentError}}</div>
-        <div id="encrypt-blog" style="display:none">
-        {{content}}
-        </div>
+title: Hello World
+tags:
+- encryptAsDiary
+date: 2016-03-30 21:12:21
+password: mikemessi
+abstract: Here's something encrypted, password is required to continue reading.
+prompt: Hey, password is required here.
+wrong_pass_message: Oh, this is an invalid password. Check and try again, please.
+wrong_hash_message: Oh, these decrypted content cannot be verified, but you can still have a look.
 ---
 
 ```
 
-The plugin will use the template content instead of the default one.
-
-## callback
+### In `_config.yml`
 
-In case that you would like to invoke some code after blog content is decrypted, you can add one config as below demo:
+#### Example
 
 ```yaml
 
-encrypt:
-  enable: true
-  callback: |-
-    initLightGallery()
-    initImageResize()
-    initTocBot()
+# Security
+encrypt: # hexo-blog-encrypt
+  abstract: Here's something encrypted, password is required to continue reading.
+  prompt: Hey, password is required here.
+  tags: 
+  - {name: encryptAsDiary, password: passwordA}
+  - {name: encryptAsTips, password: passwordB}
+  template: <div id="hexo-blog-encrypt" data-wpm="{{hbeWrongPassMessage}}" data-whm="{{hbeWrongHashMessage}}"><div class="hbe-input-container"><input type="password" id="hbePass" placeholder="{{hbePrompt}}" /><label>{{hbePrompt}}</label><div class="bottom-line"></div></div><script id="hbeData" type="hbeData" data-hmacdigest="{{hbeHmacDigest}}">{{hbeEncryptedData}}</script></div>
+  wrong_pass_message: Oh, this is an invalid password. Check and try again, please.
+  wrong_hash_message: Oh, these decrypted content cannot be verified, but you can still have a look.
 
 ```
 
-> the symbol `|-` after `callback` means multi-line value.
-
-You should write your own js code here, some functions if you defined it elsewhere, do not just copy the code like `initXXXX()`
-
-## TODO
+### Config priority
 
-See [TODO](./TODO.md) file.
+post's front matter > `_config.yml` (in the root directory) > default
 
 ## License
 
 See [LICENSE](./LICENSE) file.
 
 ## Thanks
 
-Collaborator - [xiazeyu](https://github.com/xiazeyu)
+Collaborator - [xiazeyu](https://github.com/xiazeyu)