api

command module

v0.0.0-...-cafed51 Latest Latest Go to latest Published: May 17, 2019 License: AGPL-3.0 Imports: 6 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/fluidkeys/api

Links

Open Source Insights

README ¶

Key directory

Get a public key

Get a verified OpenPGP public key for the email address:

GET /email/:email/key

Parameters

Name	Type	Description
email	string	Required. urlencoded email address

Response

Status: 200 Found
Content-Type: application/json

{
    "armoredPublicKey": "--- BEGIN PGP PUBLIC KEY ---"
}

Example

curl https://api.fluidkeys.com/v1/email/tina@example.com/key

Create or update a public key

POST /keys

Parameters

Name	Type	Description
`armoredPublicKey`	string	Required. The ASCII-armored public key to create or update
`armoredSignedJSON`	string	Required. An OpenPGP clearsigned JSON message.

Where armoredSignedJSON contains e.g.:

{
    "timestamp": "2018-06-15T16:35:00Z",
    "singleUseUuid": "b65e0b20-fd69-11e8-9239-d73f98832eb2",
    "publicKeySha256": "535a522b3c3e211375af9bdd50cdfc3983edafad65191a47571e286e8f1e8989"
}

timestamp must be within 24 hours of the server time.
singleUseUuid must only be used once.
publicKeySha256 is the SHA256 of the ASCII-armored public key provided in armoredPublicKey

Example

curl -v -X POST -H "Content-Type: application/json" https://api.fluidkeys.com/v1/keys --data @- << EOF
{
    "armoredPublicKey": "-----BEGIN PGP PUBLIC KEY BLOCK-----\n...",
    "armoredSignedJSON": "-----BEGIN PGP SIGNED MESSAGE-----\n..."
}
EOF

Response

Status: 200 OK
Content-Type: application/json

{
    "armoredEncryptedBasicAuthPassword": "-----BEGIN PGP MESSAGE-----\n..."
}

Where armoredEncryptedBasicAuthPassword decrypts to a secret token.

Secrets

Send a secret to a public key

POST /secrets

Parameters

Name	Type	Description
`recipientFingerprint`	string	Required. The fingerprint of the key to send the secret to, prepended with `OPENPGP4FPR:`
`armoredEncryptedSecret`	string	Required. ASCII-armored encrypted PGP secret data.

Example

curl -v -X POST -H "Content-Type: application/json" https://api.fluidkeys.com/v1/secrets --data @- << EOF
{
    "recipientFingerprint": "OPENPGP4FPR:AAAABBBBAAAABBBBAAAABBBBAAAABBBBAAAABBBB",
    "armoredEncryptedSecret": "---- BEGIN PGP MESSAGE --- ..."
}
EOF

Response

Status: 201 Created

List your secrets

List the stored encrypted secrets for the authenticated public key:

GET /secrets

Authentication

The call must be authenticated with a public key.

Example

curl -v -H "Authorization: tmpfingerprint: OPENPGP4FPR:AAAABBBBAAAABBBBAAAABBBBAAAABBBBAAAABBBB" https://api.fluidkeys.com/v1/secrets

---
200 Found
{
    "secrets": [{
        "encryptedMetadata": "<ASCII armored PGP message>"
        "encryptedContent": "<ASCII armored PGP message>",
    }],

}

encryptedMetadata is encrypted to the public key. Inside it contains e.g.:

{
    "secretUuid": "8ef46a96-f735-11e8-a220-7fd225378c68",
}

encryptedContent contains a base64 encoded PGP message containing the content of the secret.

Future versions may omit encryptedContent and specify a download URL.

Delete a secret

Delete a secret by its unique ID:

DELETE /secrets/:uuid

Authentication

The call must be authenticated as the key that is the recipient of the secret.

Parameters

Name	Type	Description
uuid	uuid	Required. The UUID of the secret to delete

Response

202 Accepted

Example

DELETE https://api.fluidkeys.com/v1/secrets/8ef46a96-f735-11e8-a220-7fd225378c68
Authorization: tmpfingerprint: OPENPGP4FPR:AAAABBBBAAAABBBBAAAABBBBAAAABBBBAAAABBBB
---
202 Accepted

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

main.go

Directories ¶

Path	Synopsis
cmd
datastore
email
server
v1structs

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL