├── CNAME
├── python
    ├── requirements.txt
    ├── README.md
    └── encrypt.py
├── favicon.ico
├── .gitignore
├── LICENSE-FAVICON.md
├── README.md
├── CONTRIBUTING.md
├── .github
    └── FUNDING.yml
├── LICENSE.md
├── PowerShell
    ├── README.md
    └── Encrypt-StaticHTML.ps1
├── legacy
    ├── demopage-unencrypted.html
    ├── github.svg
    ├── js
    │   ├── pbkdf2.js
    │   ├── FileSaver.js
    │   └── aes.js
    ├── index.html
    ├── decryptTemplate.html
    └── demopage
    │   └── index.html
├── demopage-unencrypted.html
├── github.svg
├── js
    └── FileSaver.js
├── demopage
    └── index.html
├── decryptTemplate.html
├── index.html
└── decryptTemplate-legacy.html


/CNAME:
--------------------------------------------------------------------------------
1 | pagecrypt.maxlaumeister.com


--------------------------------------------------------------------------------
/python/requirements.txt:
--------------------------------------------------------------------------------
1 | pycryptodome>3.10
2 | 


--------------------------------------------------------------------------------
/favicon.ico:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/MaxLaumeister/PageCrypt/HEAD/favicon.ico


--------------------------------------------------------------------------------
/.gitignore:
--------------------------------------------------------------------------------
 1 | output.html
 2 | 
 3 | ######################
 4 | # OS generated files #
 5 | ######################
 6 | 
 7 | .DS_Store
 8 | .DS_Store?
 9 | ._*
10 | .Spotlight-V100
11 | .Trashes
12 | ehthumbs.db
13 | Thumbs.db
14 | 


--------------------------------------------------------------------------------
/LICENSE-FAVICON.md:
--------------------------------------------------------------------------------
1 | License for favicon.ico:
2 | 
3 | This favicon was generated using the following graphics from Twitter Twemoji:
4 | 
5 | - Graphics Title: 1f512.svg
6 | - Graphics Author: Copyright 2020 Twitter, Inc and other contributors (https://github.com/twitter/twemoji)
7 | - Graphics Source: https://github.com/twitter/twemoji/blob/master/assets/svg/1f512.svg
8 | - Graphics License: CC-BY 4.0 (https://creativecommons.org/licenses/by/4.0/)
9 | 


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
 1 | ## PageCrypt - Password Protect HTML ##
 2 | 
 3 | ### Overview ###
 4 | 
 5 | This tool lets you securely password-protect an HTML file. Unlike other password-protection tools, this tool:
 6 | 
 7 | 1. Has no server-side components (this tool and its password-protected pages run entirely in javascript).
 8 | 
 9 | 2. Uses strong encryption, so the password-protection cannot be bypassed.
10 | 
11 | For details and to use the tool, please see the [Project Page](https://pagecrypt.maxlaumeister.com/).
12 | 


--------------------------------------------------------------------------------
/CONTRIBUTING.md:
--------------------------------------------------------------------------------
 1 | # Contributing to PageCrypt
 2 | 
 3 | Thank you for taking the time to contribute!
 4 | 
 5 | There are no specific guidelines for contributing to this project, but I want to make it clear that contributions are always welcome!
 6 | 
 7 | This project has already accepted the generous contributions of **Zoltán Gálli** and **Nial Francis**. For details, read [the PageCrypt FAQ](https://www.maxlaumeister.com/pagecrypt/). Hopefully, you're next!
 8 | 
 9 | If you have any questions, please don't hesitate to open a GitHub issue or [email me](https://www.maxlaumeister.com/contact/) directly.
10 | 


--------------------------------------------------------------------------------
/python/README.md:
--------------------------------------------------------------------------------
 1 | ## Command Line Interface with Python ##
 2 | This tool securely password-protects HTML files from the command line using Python3.
 3 | 
 4 | ### Usage ###
 5 | Run: `pip3 install -r requirements.txt` 
 6 | Run: `python3 encrypt.py filename [passphrase]`  
 7 | The first, mandatory parameter is the name of the file you want to encrypt.
 8 | It is also possible to give the passphrase as the second parameter. If there is
 9 | no passphrase provided at start, the script will ask for it while running.
10 | 
11 | ### Dependencies ###
12 | 1) Python3 and Pip3
13 | 2) [pycryptodome](https://pypi.org/project/pycryptodome/) for AES. (pycrypto is [deprecated](https://github.com/pycrypto/pycrypto/issues/275))
14 | 3) Python version of [pbkdf2](https://pypi.org/project/pbkdf2/): `pip3 install pbkdf2`
15 | 


--------------------------------------------------------------------------------
/.github/FUNDING.yml:
--------------------------------------------------------------------------------
 1 | # These are supported funding model platforms
 2 | 
 3 | github: # Replace with up to 4 GitHub Sponsors-enabled usernames e.g., [user1, user2]
 4 | patreon: # Replace with a single Patreon username
 5 | open_collective: # Replace with a single Open Collective username
 6 | ko_fi: # Replace with a single Ko-fi username
 7 | tidelift: # Replace with a single Tidelift platform-name/package-name e.g., npm/babel
 8 | community_bridge: # Replace with a single Community Bridge project-name e.g., cloud-foundry
 9 | liberapay: # Replace with a single Liberapay username
10 | issuehunt: # Replace with a single IssueHunt username
11 | otechie: # Replace with a single Otechie username
12 | custom: ['https://www.maxlaumeister.com/tip/'] # Replace with up to 4 custom sponsorship URLs e.g., ['link1', 'link2']
13 | 


--------------------------------------------------------------------------------
/LICENSE.md:
--------------------------------------------------------------------------------
1 | Copyright (c) 2021 Maximillian Laumeister  
2 | Copyright (c) 2021 Samuel Plumppu
3 | 
4 | Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:
5 | 
6 | The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.
7 | 
8 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
9 | 


--------------------------------------------------------------------------------
/PowerShell/README.md:
--------------------------------------------------------------------------------
 1 | ## Command Line Interface for PowerShell ##
 2 | 
 3 | This tool securely password-protects HTML files from the command line using PowerShell (written with v5 but will very likely work on lower versions and Core). It utilises .NET encryption libraries.
 4 | 
 5 | This implementation will also support a number of cypher changes (eg. key size and hash iterations) which the template currently does not.
 6 | 
 7 | ### Usage ###
 8 | 
 9 | Add this script and the `decryptTemplate-legacy.html` template into the same directory.
10 | 
11 | To encrypt a string of text:  
12 | `.\Encrypt-StaticHTML.ps1 -Text '--text to encrypt--' -Password '--encryption password--'`
13 | 
14 | To encrypt a file:  
15 | `.\Encrypt-StaticHTML.ps1 -File example.html -Password '--encryption password--'`
16 | 
17 | ### Parameters ###
18 | 
19 | **Mandatory:**
20 | `Password` = key password  
21 | `Text` = text to encrypt, or  
22 | `File` = file to encrypt
23 | 
24 | **Optional:**  
25 | `Template` = Custom template location  
26 | `OutFile` = Destination file  
27 | `KeySize` = AES key size (default 32 bytes)  
28 | `Iterations` = Hash iterations (default 100)
29 | 
30 | ### Dependencies ###
31 | 
32 | None on Windows.
33 | 


--------------------------------------------------------------------------------
/legacy/demopage-unencrypted.html:
--------------------------------------------------------------------------------
 1 | <!DOCTYPE html>
 2 | <html lang="en">
 3 |   <head>
 4 |     <meta charset="utf-8">
 5 |     <meta name="viewport" content="width=device-width, initial-scale=1">
 6 |     <meta name="robots" content="noindex, nofollow">
 7 |     <title>File Unlocked!</title>
 8 |     <style>
 9 |         html, body {
10 |             background-color: #EEE;
11 |         }
12 |         #cssSpan {
13 |             font-weight: bold;
14 |             color: lightgreen;
15 |         }
16 |         #container {
17 |             width: calc(100% - 40px);
18 |             max-width: 600px;
19 |             margin: 20px auto;
20 |             padding: 20px;
21 |             background-color: white;
22 |         }
23 |     </style>
24 |   </head>
25 |   <body>
26 |     <div id="container">
27 |         <h1>Page Unlocked!</h1>
28 |         <p>You're looking at a web page that has just been decrypted by your browser using the password you supplied. This works with any HTML page, including pages which use <span id="cssSpan">CSS</span>
29 |         <script>
30 |             document.write("and Javascript!");
31 |         </script>
32 |         </p>
33 |         <p><a href="..">Go back home</a></p>
34 |     </div>
35 |   </body>
36 | </html>
37 | 


--------------------------------------------------------------------------------
/demopage-unencrypted.html:
--------------------------------------------------------------------------------
 1 | <!DOCTYPE html>
 2 | <html lang="en">
 3 |   <head>
 4 |     <meta charset="utf-8">
 5 |     <meta name="viewport" content="width=device-width, initial-scale=1">
 6 |     <meta name="robots" content="noindex, nofollow">
 7 |     <title>File Unlocked!</title>
 8 |     <style>
 9 |         html, body {
10 |             background-color: #EEE;
11 |         }
12 |         #cssSpan {
13 |             font-weight: bold;
14 |             color: rgb(0, 163, 0);
15 |         }
16 |         #container {
17 |             width: calc(100% - 40px);
18 |             max-width: 600px;
19 |             margin: 20px auto;
20 |             padding: 20px;
21 |             background-color: white;
22 |         }
23 |     </style>
24 |   </head>
25 |   <body>
26 |     <div id="container">
27 |         <h1>Page Unlocked!</h1>
28 |         <p>You're looking at a web page that has just been decrypted by your browser using the password you supplied. This works with any HTML page, including pages which use Unicode ⚡, <span id="cssSpan">CSS</span>
29 |         <script>
30 |             document.write("and JavaScript!");
31 |         </script>
32 |         </p>
33 |         <p><a href="..">Go back home</a></p>
34 |     </div>
35 |   </body>
36 | </html>
37 | 


--------------------------------------------------------------------------------
/github.svg:
--------------------------------------------------------------------------------
1 | <svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 496 512"><path d="M165.9 397.4c0 2-2.3 3.6-5.2 3.6-3.3.3-5.6-1.3-5.6-3.6 0-2 2.3-3.6 5.2-3.6 3-.3 5.6 1.3 5.6 3.6zm-31.1-4.5c-.7 2 1.3 4.3 4.3 4.9 2.6 1 5.6 0 6.2-2s-1.3-4.3-4.3-5.2c-2.6-.7-5.5.3-6.2 2.3zm44.2-1.7c-2.9.7-4.9 2.6-4.6 4.9.3 2 2.9 3.3 5.9 2.6 2.9-.7 4.9-2.6 4.6-4.6-.3-1.9-3-3.2-5.9-2.9zM244.8 8C106.1 8 0 113.3 0 252c0 110.9 69.8 205.8 169.5 239.2 12.8 2.3 17.3-5.6 17.3-12.1 0-6.2-.3-40.4-.3-61.4 0 0-70 15-84.7-29.8 0 0-11.4-29.1-27.8-36.6 0 0-22.9-15.7 1.6-15.4 0 0 24.9 2 38.6 25.8 21.9 38.6 58.6 27.5 72.9 20.9 2.3-16 8.8-27.1 16-33.7-55.9-6.2-112.3-14.3-112.3-110.5 0-27.5 7.6-41.3 23.6-58.9-2.6-6.5-11.1-33.3 2.6-67.9 20.9-6.5 69 27 69 27 20-5.6 41.5-8.5 62.8-8.5s42.8 2.9 62.8 8.5c0 0 48.1-33.6 69-27 13.7 34.7 5.2 61.4 2.6 67.9 16 17.7 25.8 31.5 25.8 58.9 0 96.5-58.9 104.2-114.8 110.5 9.2 7.9 17 22.9 17 46.4 0 33.7-.3 75.4-.3 83.6 0 6.5 4.6 14.4 17.3 12.1C428.2 457.8 496 362.9 496 252 496 113.3 383.5 8 244.8 8zM97.2 352.9c-1.3 1-1 3.3.7 5.2 1.6 1.6 3.9 2.3 5.2 1 1.3-1 1-3.3-.7-5.2-1.6-1.6-3.9-2.3-5.2-1zm-10.8-8.1c-.7 1.3.3 2.9 2.3 3.9 1.6 1 3.6.7 4.3-.7.7-1.3-.3-2.9-2.3-3.9-2-.6-3.6-.3-4.3.7zm32.4 35.6c-1.6 1.3-1 4.3 1.3 6.2 2.3 2.3 5.2 2.6 6.5 1 1.3-1.3.7-4.3-1.3-6.2-2.2-2.3-5.2-2.6-6.5-1zm-11.4-14.7c-1.6 1-1.6 3.6 0 5.9 1.6 2.3 4.3 3.3 5.6 2.3 1.6-1.3 1.6-3.9 0-6.2-1.4-2.3-4-3.3-5.6-2z"/></svg>


--------------------------------------------------------------------------------
/legacy/github.svg:
--------------------------------------------------------------------------------
1 | <svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 496 512"><path d="M165.9 397.4c0 2-2.3 3.6-5.2 3.6-3.3.3-5.6-1.3-5.6-3.6 0-2 2.3-3.6 5.2-3.6 3-.3 5.6 1.3 5.6 3.6zm-31.1-4.5c-.7 2 1.3 4.3 4.3 4.9 2.6 1 5.6 0 6.2-2s-1.3-4.3-4.3-5.2c-2.6-.7-5.5.3-6.2 2.3zm44.2-1.7c-2.9.7-4.9 2.6-4.6 4.9.3 2 2.9 3.3 5.9 2.6 2.9-.7 4.9-2.6 4.6-4.6-.3-1.9-3-3.2-5.9-2.9zM244.8 8C106.1 8 0 113.3 0 252c0 110.9 69.8 205.8 169.5 239.2 12.8 2.3 17.3-5.6 17.3-12.1 0-6.2-.3-40.4-.3-61.4 0 0-70 15-84.7-29.8 0 0-11.4-29.1-27.8-36.6 0 0-22.9-15.7 1.6-15.4 0 0 24.9 2 38.6 25.8 21.9 38.6 58.6 27.5 72.9 20.9 2.3-16 8.8-27.1 16-33.7-55.9-6.2-112.3-14.3-112.3-110.5 0-27.5 7.6-41.3 23.6-58.9-2.6-6.5-11.1-33.3 2.6-67.9 20.9-6.5 69 27 69 27 20-5.6 41.5-8.5 62.8-8.5s42.8 2.9 62.8 8.5c0 0 48.1-33.6 69-27 13.7 34.7 5.2 61.4 2.6 67.9 16 17.7 25.8 31.5 25.8 58.9 0 96.5-58.9 104.2-114.8 110.5 9.2 7.9 17 22.9 17 46.4 0 33.7-.3 75.4-.3 83.6 0 6.5 4.6 14.4 17.3 12.1C428.2 457.8 496 362.9 496 252 496 113.3 383.5 8 244.8 8zM97.2 352.9c-1.3 1-1 3.3.7 5.2 1.6 1.6 3.9 2.3 5.2 1 1.3-1 1-3.3-.7-5.2-1.6-1.6-3.9-2.3-5.2-1zm-10.8-8.1c-.7 1.3.3 2.9 2.3 3.9 1.6 1 3.6.7 4.3-.7.7-1.3-.3-2.9-2.3-3.9-2-.6-3.6-.3-4.3.7zm32.4 35.6c-1.6 1.3-1 4.3 1.3 6.2 2.3 2.3 5.2 2.6 6.5 1 1.3-1.3.7-4.3-1.3-6.2-2.2-2.3-5.2-2.6-6.5-1zm-11.4-14.7c-1.6 1-1.6 3.6 0 5.9 1.6 2.3 4.3 3.3 5.6 2.3 1.6-1.3 1.6-3.9 0-6.2-1.4-2.3-4-3.3-5.6-2z"/></svg>


--------------------------------------------------------------------------------
/python/encrypt.py:
--------------------------------------------------------------------------------
 1 | #!/usr/bin/python3
 2 | 
 3 | try:
 4 | 	from Crypto import Random
 5 | 	from Crypto.Util.py3compat import bchr
 6 | 	from Crypto.Cipher import AES
 7 | 	from Crypto.Protocol.KDF import PBKDF2
 8 | 	from Crypto.Hash import SHA256	
 9 | except:
10 | 	print("install pycrypto: \"pip3 install pycrypto\"")
11 | 	exit(1)
12 | import os, sys
13 | from base64 import b64encode
14 | from getpass import getpass
15 | import codecs
16 | 
17 | 
18 | def main():
19 | 	# sanitize input
20 | 	if len(sys.argv) < 2:
21 | 		print("Usage:\n%s filename [passphrase]"%sys.argv[0])
22 | 		exit(0)
23 | 	inputfile = sys.argv[1]
24 | 	try:
25 | 		with open(inputfile, "rb") as f:
26 | 			data = f.read()
27 | 	except:
28 | 		print("Cannot open file: %s"%inputfile)
29 | 		exit(1)
30 | 
31 | 	if len(sys.argv) > 2:
32 | 		passphrase = sys.argv[2]
33 | 	else:
34 | 		while True:
35 | 			passphrase = getpass(prompt='Password: ')
36 | 			if passphrase == getpass(prompt='Confirm: '):
37 | 				break
38 | 			print("Passwords don\'t match, try again.")
39 | 
40 | 	salt = Random.new().read(32)
41 | 	key = PBKDF2(
42 | 		passphrase.encode('utf-8'), 
43 | 		salt, 
44 | 		count=100000,
45 | 		dkLen=32, 
46 | 		hmac_hash_module=SHA256
47 | 	)
48 | 	iv = Random.new().read(16)
49 | 
50 | 	cipher = AES.new(key, AES.MODE_GCM, nonce=iv)
51 | 	encrypted, tag = cipher.encrypt_and_digest(data)
52 | 
53 | 	projectFolder = os.path.dirname(os.path.dirname(os.path.abspath(__file__)))
54 | 	with open(os.path.join(projectFolder, "decryptTemplate.html")) as f:
55 | 		templateHTML = f.read()
56 | 
57 | 
58 | 	encryptedPl = f'"{b64encode(salt+iv+encrypted+tag).decode("utf-8")}"'
59 | 	encryptedDocument = templateHTML.replace("/*{{ENCRYPTED_PAYLOAD}}*/\"\"", encryptedPl)
60 | 
61 | 	filename, extension = os.path.splitext(inputfile)
62 | 	outputfile = filename + "-protected" + extension
63 | 	with codecs.open(outputfile, 'w','utf-8-sig') as f:
64 | 		f.write(encryptedDocument)
65 | 	print("File saved to %s"%outputfile)
66 | 
67 | if __name__ == "__main__":
68 | 	main()
69 | 


--------------------------------------------------------------------------------
/PowerShell/Encrypt-StaticHTML.ps1:
--------------------------------------------------------------------------------
 1 | #### PowerShell PageCrypt Encryptor
 2 | ## v1.0 - 26/11/2019
 3 | ## Nial Francis - https://nialfrancis.tech/
 4 | 
 5 | [cmdletbinding()]
 6 | Param(
 7 |  [string]$Text,
 8 |  [string]$File,
 9 |  [string]$Password,
10 |  [string]$Template,
11 |  [string]$OutFile,
12 |  [int]$KeySize = 32,
13 |  [int]$Iterations = 100
14 | )
15 | 
16 | #### FUNCTIONS
17 | 
18 | function Encrypt-StaticHTMLData ($sec,$data) {
19 | 	$ibytes = [System.Text.Encoding]::UTF8.GetBytes($data)
20 | 	Write-Verbose $ibytes.Length
21 | 	if ( $ibytes.Length % 16 -eq 0 ) { $ibytes = $ibytes + 0 }
22 | 	Write-Verbose ($sec | Out-String)
23 | 	
24 | 	$AES = New-Object Security.Cryptography.RijndaelManaged
25 | 	$AES.Padding = 'Zeros'
26 | 	
27 | 	$enc = $AES.CreateEncryptor($sec.key,$sec.iv)
28 | 	$encdata = $enc.TransformFinalBlock($ibytes, 0, $ibytes.Length)
29 | 	
30 | 	$AES.Dispose()
31 | 	Clear-Variable enc
32 | 	return $encdata
33 | }
34 | 
35 | function GenerateKey {
36 | 	$salt = new-object byte[] 32
37 | 	$iv = new-object byte[] 16
38 | 	(new-object Random).NextBytes($salt)
39 | 	(new-object Random).NextBytes($iv)
40 | 	
41 | 	$PBKDF2 = New-Object System.Security.Cryptography.Rfc2898DeriveBytes($Password, $salt)
42 | 	$PBKDF2.IterationCount = $Iterations
43 | 	
44 | 	$secrets = @{
45 | 		salt = $salt
46 | 		key = $PBKDF2.GetBytes($KeySize)
47 | 		iv = $iv
48 | 	}
49 | 	
50 | 	$PBKDF2.Dispose()
51 | 	return $secrets
52 | }
53 | 
54 | #### MAIN
55 | 
56 | if ($Template -eq '') { $Template = Join-Path $PSScriptRoot 'decryptTemplate-legacy.html' }
57 | if ($Password.Length -lt 8) { Write-Warning 'Password is very poor quality' }
58 | 
59 | if ($File) {
60 | 	$data = Get-Content -Raw -Encoding UTF8 $File
61 | 	if (!$OutFile) { $OutFile = $File + '.enc.html' }
62 | } elseif ($Text) {
63 | 	$data = $Text
64 | 	if (!$OutFile) { $OutFile = (Get-Date -Format 'ddMMyy-HHmmss') + '.enc.html' }
65 | } else {
66 | 	throw "Nothing to encrypt"
67 | }
68 | 
69 | $sec = GenerateKey
70 | $encbytes = Encrypt-StaticHTMLData $sec $data
71 | $json = @{
72 | 	data = [System.Convert]::ToBase64String($encbytes)
73 | 	iv = [System.Convert]::ToBase64String($sec.iv)
74 | 	salt = [System.Convert]::ToBase64String($sec.salt)
75 | } | ConvertTo-Json -Compress
76 | Clear-Variable sec
77 | 
78 | $Template = Get-Content -Raw $Template
79 | $newfile = $Template -replace '/\*{{ENCRYPTED_PAYLOAD}}\*/""',$json
80 | $newfile | Out-File -Encoding utf8 $OutFile
81 | 


--------------------------------------------------------------------------------
/legacy/js/pbkdf2.js:
--------------------------------------------------------------------------------
 1 | /*
 2 | CryptoJS v3.1.2
 3 | code.google.com/p/crypto-js
 4 | (c) 2009-2013 by Jeff Mott. All rights reserved.
 5 | code.google.com/p/crypto-js/wiki/License
 6 | */
 7 | var CryptoJS=CryptoJS||function(g,j){var e={},d=e.lib={},m=function(){},n=d.Base={extend:function(a){m.prototype=this;var c=new m;a&&c.mixIn(a);c.hasOwnProperty("init")||(c.init=function(){c.$super.init.apply(this,arguments)});c.init.prototype=c;c.$super=this;return c},create:function(){var a=this.extend();a.init.apply(a,arguments);return a},init:function(){},mixIn:function(a){for(var c in a)a.hasOwnProperty(c)&&(this[c]=a[c]);a.hasOwnProperty("toString")&&(this.toString=a.toString)},clone:function(){return this.init.prototype.extend(this)}},
 8 | q=d.WordArray=n.extend({init:function(a,c){a=this.words=a||[];this.sigBytes=c!=j?c:4*a.length},toString:function(a){return(a||l).stringify(this)},concat:function(a){var c=this.words,p=a.words,f=this.sigBytes;a=a.sigBytes;this.clamp();if(f%4)for(var b=0;b<a;b++)c[f+b>>>2]|=(p[b>>>2]>>>24-8*(b%4)&255)<<24-8*((f+b)%4);else if(65535<p.length)for(b=0;b<a;b+=4)c[f+b>>>2]=p[b>>>2];else c.push.apply(c,p);this.sigBytes+=a;return this},clamp:function(){var a=this.words,c=this.sigBytes;a[c>>>2]&=4294967295<<
 9 | 32-8*(c%4);a.length=g.ceil(c/4)},clone:function(){var a=n.clone.call(this);a.words=this.words.slice(0);return a},random:function(a){for(var c=[],b=0;b<a;b+=4)c.push(4294967296*g.random()|0);return new q.init(c,a)}}),b=e.enc={},l=b.Hex={stringify:function(a){var c=a.words;a=a.sigBytes;for(var b=[],f=0;f<a;f++){var d=c[f>>>2]>>>24-8*(f%4)&255;b.push((d>>>4).toString(16));b.push((d&15).toString(16))}return b.join("")},parse:function(a){for(var c=a.length,b=[],f=0;f<c;f+=2)b[f>>>3]|=parseInt(a.substr(f,
10 | 2),16)<<24-4*(f%8);return new q.init(b,c/2)}},k=b.Latin1={stringify:function(a){var c=a.words;a=a.sigBytes;for(var b=[],f=0;f<a;f++)b.push(String.fromCharCode(c[f>>>2]>>>24-8*(f%4)&255));return b.join("")},parse:function(a){for(var c=a.length,b=[],f=0;f<c;f++)b[f>>>2]|=(a.charCodeAt(f)&255)<<24-8*(f%4);return new q.init(b,c)}},h=b.Utf8={stringify:function(a){try{return decodeURIComponent(escape(k.stringify(a)))}catch(b){throw Error("Malformed UTF-8 data");}},parse:function(a){return k.parse(unescape(encodeURIComponent(a)))}},
11 | u=d.BufferedBlockAlgorithm=n.extend({reset:function(){this._data=new q.init;this._nDataBytes=0},_append:function(a){"string"==typeof a&&(a=h.parse(a));this._data.concat(a);this._nDataBytes+=a.sigBytes},_process:function(a){var b=this._data,d=b.words,f=b.sigBytes,l=this.blockSize,e=f/(4*l),e=a?g.ceil(e):g.max((e|0)-this._minBufferSize,0);a=e*l;f=g.min(4*a,f);if(a){for(var h=0;h<a;h+=l)this._doProcessBlock(d,h);h=d.splice(0,a);b.sigBytes-=f}return new q.init(h,f)},clone:function(){var a=n.clone.call(this);
12 | a._data=this._data.clone();return a},_minBufferSize:0});d.Hasher=u.extend({cfg:n.extend(),init:function(a){this.cfg=this.cfg.extend(a);this.reset()},reset:function(){u.reset.call(this);this._doReset()},update:function(a){this._append(a);this._process();return this},finalize:function(a){a&&this._append(a);return this._doFinalize()},blockSize:16,_createHelper:function(a){return function(b,d){return(new a.init(d)).finalize(b)}},_createHmacHelper:function(a){return function(b,d){return(new w.HMAC.init(a,
13 | d)).finalize(b)}}});var w=e.algo={};return e}(Math);
14 | (function(){var g=CryptoJS,j=g.lib,e=j.WordArray,d=j.Hasher,m=[],j=g.algo.SHA1=d.extend({_doReset:function(){this._hash=new e.init([1732584193,4023233417,2562383102,271733878,3285377520])},_doProcessBlock:function(d,e){for(var b=this._hash.words,l=b[0],k=b[1],h=b[2],g=b[3],j=b[4],a=0;80>a;a++){if(16>a)m[a]=d[e+a]|0;else{var c=m[a-3]^m[a-8]^m[a-14]^m[a-16];m[a]=c<<1|c>>>31}c=(l<<5|l>>>27)+j+m[a];c=20>a?c+((k&h|~k&g)+1518500249):40>a?c+((k^h^g)+1859775393):60>a?c+((k&h|k&g|h&g)-1894007588):c+((k^h^
15 | g)-899497514);j=g;g=h;h=k<<30|k>>>2;k=l;l=c}b[0]=b[0]+l|0;b[1]=b[1]+k|0;b[2]=b[2]+h|0;b[3]=b[3]+g|0;b[4]=b[4]+j|0},_doFinalize:function(){var d=this._data,e=d.words,b=8*this._nDataBytes,l=8*d.sigBytes;e[l>>>5]|=128<<24-l%32;e[(l+64>>>9<<4)+14]=Math.floor(b/4294967296);e[(l+64>>>9<<4)+15]=b;d.sigBytes=4*e.length;this._process();return this._hash},clone:function(){var e=d.clone.call(this);e._hash=this._hash.clone();return e}});g.SHA1=d._createHelper(j);g.HmacSHA1=d._createHmacHelper(j)})();
16 | (function(){var g=CryptoJS,j=g.enc.Utf8;g.algo.HMAC=g.lib.Base.extend({init:function(e,d){e=this._hasher=new e.init;"string"==typeof d&&(d=j.parse(d));var g=e.blockSize,n=4*g;d.sigBytes>n&&(d=e.finalize(d));d.clamp();for(var q=this._oKey=d.clone(),b=this._iKey=d.clone(),l=q.words,k=b.words,h=0;h<g;h++)l[h]^=1549556828,k[h]^=909522486;q.sigBytes=b.sigBytes=n;this.reset()},reset:function(){var e=this._hasher;e.reset();e.update(this._iKey)},update:function(e){this._hasher.update(e);return this},finalize:function(e){var d=
17 | this._hasher;e=d.finalize(e);d.reset();return d.finalize(this._oKey.clone().concat(e))}})})();
18 | (function(){var g=CryptoJS,j=g.lib,e=j.Base,d=j.WordArray,j=g.algo,m=j.HMAC,n=j.PBKDF2=e.extend({cfg:e.extend({keySize:4,hasher:j.SHA1,iterations:1}),init:function(d){this.cfg=this.cfg.extend(d)},compute:function(e,b){for(var g=this.cfg,k=m.create(g.hasher,e),h=d.create(),j=d.create([1]),n=h.words,a=j.words,c=g.keySize,g=g.iterations;n.length<c;){var p=k.update(b).finalize(j);k.reset();for(var f=p.words,v=f.length,s=p,t=1;t<g;t++){s=k.finalize(s);k.reset();for(var x=s.words,r=0;r<v;r++)f[r]^=x[r]}h.concat(p);
19 | a[0]++}h.sigBytes=4*c;return h}});g.PBKDF2=function(d,b,e){return n.create(e).compute(d,b)}})();
20 | 


--------------------------------------------------------------------------------
/js/FileSaver.js:
--------------------------------------------------------------------------------
  1 | /* FileSaver.js
  2 |  * A saveAs() FileSaver implementation.
  3 |  * 2015-05-07.2
  4 |  *
  5 |  * By Eli Grey, http://eligrey.com
  6 |  * License: X11/MIT
  7 |  *   See https://github.com/eligrey/FileSaver.js/blob/master/LICENSE.md
  8 |  */
  9 | 
 10 | /*global self */
 11 | /*jslint bitwise: true, indent: 4, laxbreak: true, laxcomma: true, smarttabs: true, plusplus: true */
 12 | 
 13 | /*! @source http://purl.eligrey.com/github/FileSaver.js/blob/master/FileSaver.js */
 14 | 
 15 | var saveAs = saveAs || (function(view) {
 16 | 	"use strict";
 17 | 	// IE <10 is explicitly unsupported
 18 | 	if (typeof navigator !== "undefined" && /MSIE [1-9]\./.test(navigator.userAgent)) {
 19 | 		return;
 20 | 	}
 21 | 	var
 22 | 		  doc = view.document
 23 | 		  // only get URL when necessary in case Blob.js hasn't overridden it yet
 24 | 		, get_URL = function() {
 25 | 			return view.URL || view.webkitURL || view;
 26 | 		}
 27 | 		, save_link = doc.createElementNS("http://www.w3.org/1999/xhtml", "a")
 28 | 		, can_use_save_link = "download" in save_link
 29 | 		, click = function(node) {
 30 | 			var event = doc.createEvent("MouseEvents");
 31 | 			event.initMouseEvent(
 32 | 				"click", true, false, view, 0, 0, 0, 0, 0
 33 | 				, false, false, false, false, 0, null
 34 | 			);
 35 | 			node.dispatchEvent(event);
 36 | 		}
 37 | 		, webkit_req_fs = view.webkitRequestFileSystem
 38 | 		, req_fs = view.requestFileSystem || webkit_req_fs || view.mozRequestFileSystem
 39 | 		, throw_outside = function(ex) {
 40 | 			(view.setImmediate || view.setTimeout)(function() {
 41 | 				throw ex;
 42 | 			}, 0);
 43 | 		}
 44 | 		, force_saveable_type = "application/octet-stream"
 45 | 		, fs_min_size = 0
 46 | 		// See https://code.google.com/p/chromium/issues/detail?id=375297#c7 and
 47 | 		// https://github.com/eligrey/FileSaver.js/commit/485930a#commitcomment-8768047
 48 | 		// for the reasoning behind the timeout and revocation flow
 49 | 		, arbitrary_revoke_timeout = 500 // in ms
 50 | 		, revoke = function(file) {
 51 | 			var revoker = function() {
 52 | 				if (typeof file === "string") { // file is an object URL
 53 | 					get_URL().revokeObjectURL(file);
 54 | 				} else { // file is a File
 55 | 					file.remove();
 56 | 				}
 57 | 			};
 58 | 			if (view.chrome) {
 59 | 				revoker();
 60 | 			} else {
 61 | 				setTimeout(revoker, arbitrary_revoke_timeout);
 62 | 			}
 63 | 		}
 64 | 		, dispatch = function(filesaver, event_types, event) {
 65 | 			event_types = [].concat(event_types);
 66 | 			var i = event_types.length;
 67 | 			while (i--) {
 68 | 				var listener = filesaver["on" + event_types[i]];
 69 | 				if (typeof listener === "function") {
 70 | 					try {
 71 | 						listener.call(filesaver, event || filesaver);
 72 | 					} catch (ex) {
 73 | 						throw_outside(ex);
 74 | 					}
 75 | 				}
 76 | 			}
 77 | 		}
 78 | 		, auto_bom = function(blob) {
 79 | 			// prepend BOM for UTF-8 XML and text/* types (including HTML)
 80 | 			if (/^\s*(?:text\/\S*|application\/xml|\S*\/\S*\+xml)\s*;.*charset\s*=\s*utf-8/i.test(blob.type)) {
 81 | 				return new Blob(["\ufeff", blob], {type: blob.type});
 82 | 			}
 83 | 			return blob;
 84 | 		}
 85 | 		, FileSaver = function(blob, name) {
 86 | 			blob = auto_bom(blob);
 87 | 			// First try a.download, then web filesystem, then object URLs
 88 | 			var
 89 | 				  filesaver = this
 90 | 				, type = blob.type
 91 | 				, blob_changed = false
 92 | 				, object_url
 93 | 				, target_view
 94 | 				, dispatch_all = function() {
 95 | 					dispatch(filesaver, "writestart progress write writeend".split(" "));
 96 | 				}
 97 | 				// on any filesys errors revert to saving with object URLs
 98 | 				, fs_error = function() {
 99 | 					// don't create more object URLs than needed
100 | 					if (blob_changed || !object_url) {
101 | 						object_url = get_URL().createObjectURL(blob);
102 | 					}
103 | 					if (target_view) {
104 | 						target_view.location.href = object_url;
105 | 					} else {
106 | 						var new_tab = view.open(object_url, "_blank");
107 | 						if (new_tab == undefined && typeof safari !== "undefined") {
108 | 							//Apple do not allow window.open, see http://bit.ly/1kZffRI
109 | 							view.location.href = object_url
110 | 						}
111 | 					}
112 | 					filesaver.readyState = filesaver.DONE;
113 | 					dispatch_all();
114 | 					revoke(object_url);
115 | 				}
116 | 				, abortable = function(func) {
117 | 					return function() {
118 | 						if (filesaver.readyState !== filesaver.DONE) {
119 | 							return func.apply(this, arguments);
120 | 						}
121 | 					};
122 | 				}
123 | 				, create_if_not_found = {create: true, exclusive: false}
124 | 				, slice
125 | 			;
126 | 			filesaver.readyState = filesaver.INIT;
127 | 			if (!name) {
128 | 				name = "download";
129 | 			}
130 | 			if (can_use_save_link) {
131 | 				object_url = get_URL().createObjectURL(blob);
132 | 				save_link.href = object_url;
133 | 				save_link.download = name;
134 | 				click(save_link);
135 | 				filesaver.readyState = filesaver.DONE;
136 | 				dispatch_all();
137 | 				revoke(object_url);
138 | 				return;
139 | 			}
140 | 			// Object and web filesystem URLs have a problem saving in Google Chrome when
141 | 			// viewed in a tab, so I force save with application/octet-stream
142 | 			// http://code.google.com/p/chromium/issues/detail?id=91158
143 | 			// Update: Google errantly closed 91158, I submitted it again:
144 | 			// https://code.google.com/p/chromium/issues/detail?id=389642
145 | 			if (view.chrome && type && type !== force_saveable_type) {
146 | 				slice = blob.slice || blob.webkitSlice;
147 | 				blob = slice.call(blob, 0, blob.size, force_saveable_type);
148 | 				blob_changed = true;
149 | 			}
150 | 			// Since I can't be sure that the guessed media type will trigger a download
151 | 			// in WebKit, I append .download to the filename.
152 | 			// https://bugs.webkit.org/show_bug.cgi?id=65440
153 | 			if (webkit_req_fs && name !== "download") {
154 | 				name += ".download";
155 | 			}
156 | 			if (type === force_saveable_type || webkit_req_fs) {
157 | 				target_view = view;
158 | 			}
159 | 			if (!req_fs) {
160 | 				fs_error();
161 | 				return;
162 | 			}
163 | 			fs_min_size += blob.size;
164 | 			req_fs(view.TEMPORARY, fs_min_size, abortable(function(fs) {
165 | 				fs.root.getDirectory("saved", create_if_not_found, abortable(function(dir) {
166 | 					var save = function() {
167 | 						dir.getFile(name, create_if_not_found, abortable(function(file) {
168 | 							file.createWriter(abortable(function(writer) {
169 | 								writer.onwriteend = function(event) {
170 | 									target_view.location.href = file.toURL();
171 | 									filesaver.readyState = filesaver.DONE;
172 | 									dispatch(filesaver, "writeend", event);
173 | 									revoke(file);
174 | 								};
175 | 								writer.onerror = function() {
176 | 									var error = writer.error;
177 | 									if (error.code !== error.ABORT_ERR) {
178 | 										fs_error();
179 | 									}
180 | 								};
181 | 								"writestart progress write abort".split(" ").forEach(function(event) {
182 | 									writer["on" + event] = filesaver["on" + event];
183 | 								});
184 | 								writer.write(blob);
185 | 								filesaver.abort = function() {
186 | 									writer.abort();
187 | 									filesaver.readyState = filesaver.DONE;
188 | 								};
189 | 								filesaver.readyState = filesaver.WRITING;
190 | 							}), fs_error);
191 | 						}), fs_error);
192 | 					};
193 | 					dir.getFile(name, {create: false}, abortable(function(file) {
194 | 						// delete file if it already exists
195 | 						file.remove();
196 | 						save();
197 | 					}), abortable(function(ex) {
198 | 						if (ex.code === ex.NOT_FOUND_ERR) {
199 | 							save();
200 | 						} else {
201 | 							fs_error();
202 | 						}
203 | 					}));
204 | 				}), fs_error);
205 | 			}), fs_error);
206 | 		}
207 | 		, FS_proto = FileSaver.prototype
208 | 		, saveAs = function(blob, name) {
209 | 			return new FileSaver(blob, name);
210 | 		}
211 | 	;
212 | 	// IE 10+ (native saveAs)
213 | 	if (typeof navigator !== "undefined" && navigator.msSaveOrOpenBlob) {
214 | 		return function(blob, name) {
215 | 			return navigator.msSaveOrOpenBlob(auto_bom(blob), name);
216 | 		};
217 | 	}
218 | 
219 | 	FS_proto.abort = function() {
220 | 		var filesaver = this;
221 | 		filesaver.readyState = filesaver.DONE;
222 | 		dispatch(filesaver, "abort");
223 | 	};
224 | 	FS_proto.readyState = FS_proto.INIT = 0;
225 | 	FS_proto.WRITING = 1;
226 | 	FS_proto.DONE = 2;
227 | 
228 | 	FS_proto.error =
229 | 	FS_proto.onwritestart =
230 | 	FS_proto.onprogress =
231 | 	FS_proto.onwrite =
232 | 	FS_proto.onabort =
233 | 	FS_proto.onerror =
234 | 	FS_proto.onwriteend =
235 | 		null;
236 | 
237 | 	return saveAs;
238 | }(
239 | 	   typeof self !== "undefined" && self
240 | 	|| typeof window !== "undefined" && window
241 | 	|| this.content
242 | ));
243 | // `self` is undefined in Firefox for Android content script context
244 | // while `this` is nsIContentFrameMessageManager
245 | // with an attribute `content` that corresponds to the window
246 | 
247 | if (typeof module !== "undefined" && module.exports) {
248 |   module.exports.saveAs = saveAs;
249 | } else if ((typeof define !== "undefined" && define !== null) && (define.amd != null)) {
250 |   define([], function() {
251 |     return saveAs;
252 |   });
253 | }


--------------------------------------------------------------------------------
/legacy/js/FileSaver.js:
--------------------------------------------------------------------------------
  1 | /* FileSaver.js
  2 |  * A saveAs() FileSaver implementation.
  3 |  * 2015-05-07.2
  4 |  *
  5 |  * By Eli Grey, http://eligrey.com
  6 |  * License: X11/MIT
  7 |  *   See https://github.com/eligrey/FileSaver.js/blob/master/LICENSE.md
  8 |  */
  9 | 
 10 | /*global self */
 11 | /*jslint bitwise: true, indent: 4, laxbreak: true, laxcomma: true, smarttabs: true, plusplus: true */
 12 | 
 13 | /*! @source http://purl.eligrey.com/github/FileSaver.js/blob/master/FileSaver.js */
 14 | 
 15 | var saveAs = saveAs || (function(view) {
 16 | 	"use strict";
 17 | 	// IE <10 is explicitly unsupported
 18 | 	if (typeof navigator !== "undefined" && /MSIE [1-9]\./.test(navigator.userAgent)) {
 19 | 		return;
 20 | 	}
 21 | 	var
 22 | 		  doc = view.document
 23 | 		  // only get URL when necessary in case Blob.js hasn't overridden it yet
 24 | 		, get_URL = function() {
 25 | 			return view.URL || view.webkitURL || view;
 26 | 		}
 27 | 		, save_link = doc.createElementNS("http://www.w3.org/1999/xhtml", "a")
 28 | 		, can_use_save_link = "download" in save_link
 29 | 		, click = function(node) {
 30 | 			var event = doc.createEvent("MouseEvents");
 31 | 			event.initMouseEvent(
 32 | 				"click", true, false, view, 0, 0, 0, 0, 0
 33 | 				, false, false, false, false, 0, null
 34 | 			);
 35 | 			node.dispatchEvent(event);
 36 | 		}
 37 | 		, webkit_req_fs = view.webkitRequestFileSystem
 38 | 		, req_fs = view.requestFileSystem || webkit_req_fs || view.mozRequestFileSystem
 39 | 		, throw_outside = function(ex) {
 40 | 			(view.setImmediate || view.setTimeout)(function() {
 41 | 				throw ex;
 42 | 			}, 0);
 43 | 		}
 44 | 		, force_saveable_type = "application/octet-stream"
 45 | 		, fs_min_size = 0
 46 | 		// See https://code.google.com/p/chromium/issues/detail?id=375297#c7 and
 47 | 		// https://github.com/eligrey/FileSaver.js/commit/485930a#commitcomment-8768047
 48 | 		// for the reasoning behind the timeout and revocation flow
 49 | 		, arbitrary_revoke_timeout = 500 // in ms
 50 | 		, revoke = function(file) {
 51 | 			var revoker = function() {
 52 | 				if (typeof file === "string") { // file is an object URL
 53 | 					get_URL().revokeObjectURL(file);
 54 | 				} else { // file is a File
 55 | 					file.remove();
 56 | 				}
 57 | 			};
 58 | 			if (view.chrome) {
 59 | 				revoker();
 60 | 			} else {
 61 | 				setTimeout(revoker, arbitrary_revoke_timeout);
 62 | 			}
 63 | 		}
 64 | 		, dispatch = function(filesaver, event_types, event) {
 65 | 			event_types = [].concat(event_types);
 66 | 			var i = event_types.length;
 67 | 			while (i--) {
 68 | 				var listener = filesaver["on" + event_types[i]];
 69 | 				if (typeof listener === "function") {
 70 | 					try {
 71 | 						listener.call(filesaver, event || filesaver);
 72 | 					} catch (ex) {
 73 | 						throw_outside(ex);
 74 | 					}
 75 | 				}
 76 | 			}
 77 | 		}
 78 | 		, auto_bom = function(blob) {
 79 | 			// prepend BOM for UTF-8 XML and text/* types (including HTML)
 80 | 			if (/^\s*(?:text\/\S*|application\/xml|\S*\/\S*\+xml)\s*;.*charset\s*=\s*utf-8/i.test(blob.type)) {
 81 | 				return new Blob(["\ufeff", blob], {type: blob.type});
 82 | 			}
 83 | 			return blob;
 84 | 		}
 85 | 		, FileSaver = function(blob, name) {
 86 | 			blob = auto_bom(blob);
 87 | 			// First try a.download, then web filesystem, then object URLs
 88 | 			var
 89 | 				  filesaver = this
 90 | 				, type = blob.type
 91 | 				, blob_changed = false
 92 | 				, object_url
 93 | 				, target_view
 94 | 				, dispatch_all = function() {
 95 | 					dispatch(filesaver, "writestart progress write writeend".split(" "));
 96 | 				}
 97 | 				// on any filesys errors revert to saving with object URLs
 98 | 				, fs_error = function() {
 99 | 					// don't create more object URLs than needed
100 | 					if (blob_changed || !object_url) {
101 | 						object_url = get_URL().createObjectURL(blob);
102 | 					}
103 | 					if (target_view) {
104 | 						target_view.location.href = object_url;
105 | 					} else {
106 | 						var new_tab = view.open(object_url, "_blank");
107 | 						if (new_tab == undefined && typeof safari !== "undefined") {
108 | 							//Apple do not allow window.open, see http://bit.ly/1kZffRI
109 | 							view.location.href = object_url
110 | 						}
111 | 					}
112 | 					filesaver.readyState = filesaver.DONE;
113 | 					dispatch_all();
114 | 					revoke(object_url);
115 | 				}
116 | 				, abortable = function(func) {
117 | 					return function() {
118 | 						if (filesaver.readyState !== filesaver.DONE) {
119 | 							return func.apply(this, arguments);
120 | 						}
121 | 					};
122 | 				}
123 | 				, create_if_not_found = {create: true, exclusive: false}
124 | 				, slice
125 | 			;
126 | 			filesaver.readyState = filesaver.INIT;
127 | 			if (!name) {
128 | 				name = "download";
129 | 			}
130 | 			if (can_use_save_link) {
131 | 				object_url = get_URL().createObjectURL(blob);
132 | 				save_link.href = object_url;
133 | 				save_link.download = name;
134 | 				click(save_link);
135 | 				filesaver.readyState = filesaver.DONE;
136 | 				dispatch_all();
137 | 				revoke(object_url);
138 | 				return;
139 | 			}
140 | 			// Object and web filesystem URLs have a problem saving in Google Chrome when
141 | 			// viewed in a tab, so I force save with application/octet-stream
142 | 			// http://code.google.com/p/chromium/issues/detail?id=91158
143 | 			// Update: Google errantly closed 91158, I submitted it again:
144 | 			// https://code.google.com/p/chromium/issues/detail?id=389642
145 | 			if (view.chrome && type && type !== force_saveable_type) {
146 | 				slice = blob.slice || blob.webkitSlice;
147 | 				blob = slice.call(blob, 0, blob.size, force_saveable_type);
148 | 				blob_changed = true;
149 | 			}
150 | 			// Since I can't be sure that the guessed media type will trigger a download
151 | 			// in WebKit, I append .download to the filename.
152 | 			// https://bugs.webkit.org/show_bug.cgi?id=65440
153 | 			if (webkit_req_fs && name !== "download") {
154 | 				name += ".download";
155 | 			}
156 | 			if (type === force_saveable_type || webkit_req_fs) {
157 | 				target_view = view;
158 | 			}
159 | 			if (!req_fs) {
160 | 				fs_error();
161 | 				return;
162 | 			}
163 | 			fs_min_size += blob.size;
164 | 			req_fs(view.TEMPORARY, fs_min_size, abortable(function(fs) {
165 | 				fs.root.getDirectory("saved", create_if_not_found, abortable(function(dir) {
166 | 					var save = function() {
167 | 						dir.getFile(name, create_if_not_found, abortable(function(file) {
168 | 							file.createWriter(abortable(function(writer) {
169 | 								writer.onwriteend = function(event) {
170 | 									target_view.location.href = file.toURL();
171 | 									filesaver.readyState = filesaver.DONE;
172 | 									dispatch(filesaver, "writeend", event);
173 | 									revoke(file);
174 | 								};
175 | 								writer.onerror = function() {
176 | 									var error = writer.error;
177 | 									if (error.code !== error.ABORT_ERR) {
178 | 										fs_error();
179 | 									}
180 | 								};
181 | 								"writestart progress write abort".split(" ").forEach(function(event) {
182 | 									writer["on" + event] = filesaver["on" + event];
183 | 								});
184 | 								writer.write(blob);
185 | 								filesaver.abort = function() {
186 | 									writer.abort();
187 | 									filesaver.readyState = filesaver.DONE;
188 | 								};
189 | 								filesaver.readyState = filesaver.WRITING;
190 | 							}), fs_error);
191 | 						}), fs_error);
192 | 					};
193 | 					dir.getFile(name, {create: false}, abortable(function(file) {
194 | 						// delete file if it already exists
195 | 						file.remove();
196 | 						save();
197 | 					}), abortable(function(ex) {
198 | 						if (ex.code === ex.NOT_FOUND_ERR) {
199 | 							save();
200 | 						} else {
201 | 							fs_error();
202 | 						}
203 | 					}));
204 | 				}), fs_error);
205 | 			}), fs_error);
206 | 		}
207 | 		, FS_proto = FileSaver.prototype
208 | 		, saveAs = function(blob, name) {
209 | 			return new FileSaver(blob, name);
210 | 		}
211 | 	;
212 | 	// IE 10+ (native saveAs)
213 | 	if (typeof navigator !== "undefined" && navigator.msSaveOrOpenBlob) {
214 | 		return function(blob, name) {
215 | 			return navigator.msSaveOrOpenBlob(auto_bom(blob), name);
216 | 		};
217 | 	}
218 | 
219 | 	FS_proto.abort = function() {
220 | 		var filesaver = this;
221 | 		filesaver.readyState = filesaver.DONE;
222 | 		dispatch(filesaver, "abort");
223 | 	};
224 | 	FS_proto.readyState = FS_proto.INIT = 0;
225 | 	FS_proto.WRITING = 1;
226 | 	FS_proto.DONE = 2;
227 | 
228 | 	FS_proto.error =
229 | 	FS_proto.onwritestart =
230 | 	FS_proto.onprogress =
231 | 	FS_proto.onwrite =
232 | 	FS_proto.onabort =
233 | 	FS_proto.onerror =
234 | 	FS_proto.onwriteend =
235 | 		null;
236 | 
237 | 	return saveAs;
238 | }(
239 | 	   typeof self !== "undefined" && self
240 | 	|| typeof window !== "undefined" && window
241 | 	|| this.content
242 | ));
243 | // `self` is undefined in Firefox for Android content script context
244 | // while `this` is nsIContentFrameMessageManager
245 | // with an attribute `content` that corresponds to the window
246 | 
247 | if (typeof module !== "undefined" && module.exports) {
248 |   module.exports.saveAs = saveAs;
249 | } else if ((typeof define !== "undefined" && define !== null) && (define.amd != null)) {
250 |   define([], function() {
251 |     return saveAs;
252 |   });
253 | }


--------------------------------------------------------------------------------
/demopage/index.html:
--------------------------------------------------------------------------------
  1 | <!DOCTYPE html>
  2 | <html lang="en">
  3 |   <head>
  4 |     <meta charset="utf-8">
  5 |     <meta name="viewport" content="width=device-width, initial-scale=1">
  6 |     <meta name="robots" content="noindex, nofollow">
  7 |     <title>Password Protected Page</title>
  8 |     <style>
  9 |         html, body {
 10 |             margin: 0;
 11 |             width: 100%;
 12 |             height: 100%;
 13 |             font-family: Arial, Helvetica, sans-serif;
 14 |         }
 15 |         #dialogText {
 16 |             color: white;
 17 |             background-color: #333333;
 18 |         }
 19 |         
 20 |         #dialogWrap {
 21 |             position: absolute;
 22 |             top: 0;
 23 |             left: 0;
 24 |             width: 100%;
 25 |             height: 100%;
 26 |             display: table;
 27 |             background-color: #EEEEEE;
 28 |         }
 29 |         
 30 |         #dialogWrapCell {
 31 |             display: table-cell;
 32 |             text-align: center;
 33 |             vertical-align: middle;
 34 |         }
 35 |         
 36 |         #mainDialog {
 37 |             max-width: 400px;
 38 |             margin: 5px;
 39 |             border: solid #AAAAAA 1px;
 40 |             border-radius: 10px;
 41 |             box-shadow: 3px 3px 5px 3px #AAAAAA;
 42 |             margin-left: auto;
 43 |             margin-right: auto;
 44 |             background-color: #FFFFFF;
 45 |             overflow: hidden;
 46 |             text-align: left;
 47 |         }
 48 |         #mainDialog > * {
 49 |             padding: 10px 30px;
 50 |         }
 51 |         #passArea {
 52 |             padding: 20px 30px;
 53 |             background-color: white;
 54 |         }
 55 |         #passArea > * {
 56 |             margin: 5px auto;
 57 |         }
 58 |         #pass {
 59 |             width: 100%;
 60 |             height: 40px;
 61 |             font-size: 30px;
 62 |         }
 63 |         
 64 |         #messageWrapper {
 65 |             float: left;
 66 |             vertical-align: middle;
 67 |             line-height: 30px;
 68 |         }
 69 |         
 70 |         .notifyText {
 71 |             display: none;
 72 |         }
 73 |         
 74 |         #invalidPass {
 75 |             color: red;
 76 |         }
 77 |         
 78 |         #success {
 79 |             color: green;
 80 |         }
 81 |         
 82 |         #submitPass {
 83 |             font-size: 20px;
 84 |             border-radius: 5px;
 85 |             background-color: #E7E7E7;
 86 |             border: solid gray 1px;
 87 |             float: right;
 88 |             cursor: pointer;
 89 |         }
 90 |         #contentFrame {
 91 |             position: absolute;
 92 |             top: 0;
 93 |             left: 0;
 94 |             width: 100%;
 95 |             height: 100%;
 96 |         }
 97 |         #attribution {
 98 |             position: absolute;
 99 |             bottom: 0;
100 |             left: 0;
101 |             right: 0;
102 |             text-align: center;
103 |             padding: 10px;
104 |             font-weight: bold;
105 |             font-size: 0.8em;
106 |         }
107 |         #attribution, #attribution a {
108 |             color: #999;
109 |         }
110 |         .error {
111 |             display: none;
112 |             color: red;
113 |         }
114 |     </style>
115 |   </head>
116 |   <body>
117 |     <iframe id="contentFrame" frameBorder="0" allowfullscreen></iframe>
118 |     <div id="dialogWrap">
119 |         <div id="dialogWrapCell">
120 |             <div id="mainDialog">
121 |                 <div id="dialogText">This page is password protected.</div>
122 |                 <div id="passArea">
123 |                     <p id="passwordPrompt">Password</p>
124 |                     <input id="pass" type="password" name="pass" autofocus>
125 |                     <div>
126 |                         <span id="messageWrapper">
127 |                             <span id="invalidPass" class="error">Sorry, please try again.</span>
128 |                             <span id="trycatcherror" class="error">Sorry, something went wrong.</span>
129 |                             <span id="success" class="notifyText">Success!</span>
130 |                             &nbsp;
131 |                         </span>
132 |                         <button id="submitPass" type="button">Submit</button>
133 |                         <div style="clear: both;"></div>
134 |                     </div>
135 |                 </div>
136 |                 <div id="securecontext" class="error">
137 |                     <p>
138 |                         Sorry, but password protection only works over a secure connection. Please load this page via HTTPS.
139 |                     </p>
140 |                 </div>
141 |                 <div id="nocrypto" class="error">
142 |                     <p>
143 |                         Your web browser appears to be outdated. Please visit this page using a modern browser.
144 |                     </p>
145 |                 </div>
146 |             </div>
147 |         </div>
148 |     </div>
149 |     <div id="attribution">
150 |         Protected by <a href="https://www.maxlaumeister.com/pagecrypt/">PageCrypt</a>
151 |     </div>
152 |     <script>
153 |     (function() {
154 | 
155 |         var pl = "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";
156 |         
157 |         var submitPass = document.getElementById('submitPass');
158 |         var passEl = document.getElementById('pass');
159 |         var invalidPassEl = document.getElementById('invalidPass');
160 |         var trycatcherror = document.getElementById('trycatcherror');
161 |         var successEl = document.getElementById('success');
162 |         var contentFrame = document.getElementById('contentFrame');
163 |         
164 |         // Sanity checks
165 | 
166 |         if (pl === "") {
167 |             submitPass.disabled = true;
168 |             passEl.disabled = true;
169 |             alert("This page is meant to be used with the encryption tool. It doesn't work standalone.");
170 |             return;
171 |         }
172 | 
173 |         if (!isSecureContext) {
174 |             document.querySelector("#passArea").style.display = "none";
175 |             document.querySelector("#securecontext").style.display = "block";
176 |             return;
177 |         }
178 | 
179 |         if (!crypto.subtle) {
180 |             document.querySelector("#passArea").style.display = "none";
181 |             document.querySelector("#nocrypto").style.display = "block";
182 |             return;
183 |         }
184 |         
185 |         function str2ab(str) {
186 |             var ustr = atob(str);
187 |             var buf = new ArrayBuffer(ustr.length);
188 |             var bufView = new Uint8Array(buf);
189 |             for (var i=0, strLen=ustr.length; i < strLen; i++) {
190 |                 bufView[i] = ustr.charCodeAt(i);
191 |             }
192 |             return bufView;
193 |         }
194 | 
195 |         async function deriveKey(salt, password) {
196 |             const encoder = new TextEncoder()
197 |             const baseKey = await crypto.subtle.importKey(
198 |                 'raw',
199 |                 encoder.encode(password),
200 |                 'PBKDF2',
201 |                 false,
202 |                 ['deriveKey'],
203 |             )
204 |             return await crypto.subtle.deriveKey(
205 |                 { name: 'PBKDF2', salt, iterations: 100000, hash: 'SHA-256' },
206 |                 baseKey,
207 |                 { name: 'AES-GCM', length: 256 },
208 |                 true,
209 |                 ['decrypt'],
210 |             )
211 |         }
212 |         
213 |         async function doSubmit(evt) {
214 |             submitPass.disabled = true;
215 |             passEl.disabled = true;
216 | 
217 |             let iv, ciphertext, key;
218 |             
219 |             try {
220 |                 var unencodedPl = str2ab(pl);
221 | 
222 |                 const salt = unencodedPl.slice(0, 32)
223 |                 iv = unencodedPl.slice(32, 32 + 16)
224 |                 ciphertext = unencodedPl.slice(32 + 16)
225 | 
226 |                 key = await deriveKey(salt, passEl.value);
227 |             } catch (e) {
228 |                 trycatcherror.style.display = "inline";
229 |                 console.error(e);
230 |                 return;
231 |             }
232 | 
233 |             try {
234 |                 const decryptedArray = new Uint8Array(
235 |                     await crypto.subtle.decrypt({ name: 'AES-GCM', iv }, key, ciphertext)
236 |                 );
237 | 
238 |                 let decrypted = new TextDecoder().decode(decryptedArray);
239 | 
240 |                 if (decrypted === "") throw "No data returned";
241 |                 
242 |                 // Set default iframe link targets to _top so all links break out of the iframe
243 |                 decrypted = decrypted.replace("<head>", "<head><base href=\".\" target=\"_top\">");
244 |                 
245 |                 contentFrame.srcdoc = decrypted;
246 |                 
247 |                 successEl.style.display = "inline";
248 |                 setTimeout(function() {
249 |                     dialogWrap.style.display = "none";
250 |                 }, 1000);
251 |             } catch (e) {
252 |                 invalidPassEl.style.display = "inline";
253 |                 passEl.value = "";
254 |                 submitPass.disabled = false;
255 |                 passEl.disabled = false;
256 |                 console.error(e);
257 |                 return;
258 |             }
259 |         }
260 |         
261 |         submitPass.onclick = doSubmit;
262 |         passEl.onkeypress = function(e){
263 |             if (!e) e = window.event;
264 |             var keyCode = e.keyCode || e.which;
265 |             invalidPassEl.style.display = "none";
266 |             if (keyCode == '13'){
267 |               // Enter pressed
268 |               doSubmit();
269 |               return false;
270 |             }
271 |         }
272 |     })();
273 |     </script>
274 |   </body>
275 | </html>
276 | 


--------------------------------------------------------------------------------
/decryptTemplate.html:
--------------------------------------------------------------------------------
  1 | <!DOCTYPE html>
  2 | <html lang="en">
  3 |   <head>
  4 |     <meta charset="utf-8">
  5 |     <meta name="viewport" content="width=device-width, initial-scale=1">
  6 |     <meta name="robots" content="noindex, nofollow">
  7 |     <title>Password Protected Page</title>
  8 |     <style>
  9 |         html, body {
 10 |             margin: 0;
 11 |             width: 100%;
 12 |             height: 100%;
 13 |             font-family: Arial, Helvetica, sans-serif;
 14 |         }
 15 |         #dialogText {
 16 |             color: white;
 17 |             background-color: #333333;
 18 |         }
 19 |         
 20 |         #dialogWrap {
 21 |             position: absolute;
 22 |             top: 0;
 23 |             left: 0;
 24 |             width: 100%;
 25 |             height: 100%;
 26 |             display: table;
 27 |             background-color: #EEEEEE;
 28 |         }
 29 |         
 30 |         #dialogWrapCell {
 31 |             display: table-cell;
 32 |             text-align: center;
 33 |             vertical-align: middle;
 34 |         }
 35 |         
 36 |         #mainDialog {
 37 |             max-width: 400px;
 38 |             margin: 5px;
 39 |             border: solid #AAAAAA 1px;
 40 |             border-radius: 10px;
 41 |             box-shadow: 3px 3px 5px 3px #AAAAAA;
 42 |             margin-left: auto;
 43 |             margin-right: auto;
 44 |             background-color: #FFFFFF;
 45 |             overflow: hidden;
 46 |             text-align: left;
 47 |         }
 48 |         #mainDialog > * {
 49 |             padding: 10px 30px;
 50 |         }
 51 |         #passArea {
 52 |             padding: 20px 30px;
 53 |             background-color: white;
 54 |         }
 55 |         #passArea > * {
 56 |             margin: 5px auto;
 57 |         }
 58 |         #pass {
 59 |             width: 100%;
 60 |             height: 40px;
 61 |             font-size: 30px;
 62 |         }
 63 |         
 64 |         #messageWrapper {
 65 |             float: left;
 66 |             vertical-align: middle;
 67 |             line-height: 30px;
 68 |         }
 69 |         
 70 |         .notifyText {
 71 |             display: none;
 72 |         }
 73 |         
 74 |         #invalidPass {
 75 |             color: red;
 76 |         }
 77 |         
 78 |         #success {
 79 |             color: green;
 80 |         }
 81 |         
 82 |         #submitPass {
 83 |             font-size: 20px;
 84 |             border-radius: 5px;
 85 |             background-color: #E7E7E7;
 86 |             border: solid gray 1px;
 87 |             float: right;
 88 |             cursor: pointer;
 89 |         }
 90 |         #contentFrame {
 91 |             position: absolute;
 92 |             top: 0;
 93 |             left: 0;
 94 |             width: 100%;
 95 |             height: 100%;
 96 |         }
 97 |         #attribution {
 98 |             position: absolute;
 99 |             bottom: 0;
100 |             left: 0;
101 |             right: 0;
102 |             text-align: center;
103 |             padding: 10px;
104 |             font-weight: bold;
105 |             font-size: 0.8em;
106 |         }
107 |         #attribution, #attribution a {
108 |             color: #999;
109 |         }
110 |         .error {
111 |             display: none;
112 |             color: red;
113 |         }
114 |     </style>
115 |   </head>
116 |   <body>
117 |     <iframe id="contentFrame" frameBorder="0" allowfullscreen></iframe>
118 |     <div id="dialogWrap">
119 |         <div id="dialogWrapCell">
120 |             <div id="mainDialog">
121 |                 <div id="dialogText">This page is password protected.</div>
122 |                 <div id="passArea">
123 |                     <p id="passwordPrompt">Password</p>
124 |                     <input id="pass" type="password" name="pass" autofocus>
125 |                     <div>
126 |                         <span id="messageWrapper">
127 |                             <span id="invalidPass" class="error">Sorry, please try again.</span>
128 |                             <span id="trycatcherror" class="error">Sorry, something went wrong.</span>
129 |                             <span id="success" class="notifyText">Success!</span>
130 |                             &nbsp;
131 |                         </span>
132 |                         <button id="submitPass" type="button">Submit</button>
133 |                         <div style="clear: both;"></div>
134 |                     </div>
135 |                 </div>
136 |                 <div id="securecontext" class="error">
137 |                     <p>
138 |                         Sorry, but password protection only works over a secure connection. Please load this page via HTTPS.
139 |                     </p>
140 |                 </div>
141 |                 <div id="nocrypto" class="error">
142 |                     <p>
143 |                         Your web browser appears to be outdated. Please visit this page using a modern browser.
144 |                     </p>
145 |                 </div>
146 |             </div>
147 |         </div>
148 |     </div>
149 |     <div id="attribution">
150 |         Protected by <a href="https://www.maxlaumeister.com/pagecrypt/">PageCrypt</a>
151 |     </div>
152 |     <script>
153 |     (function() {
154 | 
155 |         var pl = /*{{ENCRYPTED_PAYLOAD}}*/"";
156 |         
157 |         var submitPass = document.getElementById('submitPass');
158 |         var passEl = document.getElementById('pass');
159 |         var invalidPassEl = document.getElementById('invalidPass');
160 |         var trycatcherror = document.getElementById('trycatcherror');
161 |         var successEl = document.getElementById('success');
162 |         var contentFrame = document.getElementById('contentFrame');
163 |         
164 |         // Sanity checks
165 | 
166 |         if (pl === "") {
167 |             submitPass.disabled = true;
168 |             passEl.disabled = true;
169 |             alert("This page is meant to be used with the encryption tool. It doesn't work standalone.");
170 |             return;
171 |         }
172 | 
173 |         if (!isSecureContext) {
174 |             document.querySelector("#passArea").style.display = "none";
175 |             document.querySelector("#securecontext").style.display = "block";
176 |             return;
177 |         }
178 | 
179 |         if (!crypto.subtle) {
180 |             document.querySelector("#passArea").style.display = "none";
181 |             document.querySelector("#nocrypto").style.display = "block";
182 |             return;
183 |         }
184 |         
185 |         function str2ab(str) {
186 |             var ustr = atob(str);
187 |             var buf = new ArrayBuffer(ustr.length);
188 |             var bufView = new Uint8Array(buf);
189 |             for (var i=0, strLen=ustr.length; i < strLen; i++) {
190 |                 bufView[i] = ustr.charCodeAt(i);
191 |             }
192 |             return bufView;
193 |         }
194 | 
195 |         async function deriveKey(salt, password) {
196 |             const encoder = new TextEncoder()
197 |             const baseKey = await crypto.subtle.importKey(
198 |                 'raw',
199 |                 encoder.encode(password),
200 |                 'PBKDF2',
201 |                 false,
202 |                 ['deriveKey'],
203 |             )
204 |             return await crypto.subtle.deriveKey(
205 |                 { name: 'PBKDF2', salt, iterations: 100000, hash: 'SHA-256' },
206 |                 baseKey,
207 |                 { name: 'AES-GCM', length: 256 },
208 |                 true,
209 |                 ['decrypt'],
210 |             )
211 |         }
212 |         
213 |         async function doSubmit(evt) {
214 |             submitPass.disabled = true;
215 |             passEl.disabled = true;
216 | 
217 |             let iv, ciphertext, key;
218 |             
219 |             try {
220 |                 var unencodedPl = str2ab(pl);
221 | 
222 |                 const salt = unencodedPl.slice(0, 32)
223 |                 iv = unencodedPl.slice(32, 32 + 16)
224 |                 ciphertext = unencodedPl.slice(32 + 16)
225 | 
226 |                 key = await deriveKey(salt, passEl.value);
227 |             } catch (e) {
228 |                 trycatcherror.style.display = "inline";
229 |                 console.error(e);
230 |                 return;
231 |             }
232 | 
233 |             try {
234 |                 const decryptedArray = new Uint8Array(
235 |                     await crypto.subtle.decrypt({ name: 'AES-GCM', iv }, key, ciphertext)
236 |                 );
237 | 
238 |                 let decrypted = new TextDecoder().decode(decryptedArray);
239 | 
240 |                 if (decrypted === "") throw "No data returned";
241 | 
242 |                 const basestr = '<base href="." target="_top">';
243 |                 const anchorfixstr = `
244 |                     <script>
245 |                         Array.from(document.links).forEach((anchor) => {
246 |                             const href = anchor.getAttribute("href");
247 |                             if (href.startsWith("#")) {
248 |                                 anchor.addEventListener("click", function(e) {
249 |                                     e.preventDefault();
250 |                                     const targetId = this.getAttribute("href").substring(1);
251 |                                     const targetEl = document.getElementById(targetId);
252 |                                     targetEl.scrollIntoView();
253 |                                 });
254 |                             }
255 |                         });
256 |                     <\/script>
257 |                 `;
258 |                 
259 |                 // Set default iframe link targets to _top so all links break out of the iframe
260 |                 if (decrypted.includes("<head>")) decrypted = decrypted.replace("<head>", "<head>" + basestr);
261 |                 else if (decrypted.includes("<!DOCTYPE html>")) decrypted = decrypted.replace("<!DOCTYPE html>", "<!DOCTYPE html>" + basestr);
262 |                 else decrypted = basestr + decrypted;
263 | 
264 |                 // Fix fragment links
265 |                 if (decrypted.includes("</body>")) decrypted = decrypted.replace("</body>", anchorfixstr + '</body>');
266 |                 else if (decrypted.includes("</html>")) decrypted = decrypted.replace("</html>", anchorfixstr + '</html>');
267 |                 else decrypted = decrypted + anchorfixstr;
268 |                 
269 |                 contentFrame.srcdoc = decrypted;
270 |                 
271 |                 successEl.style.display = "inline";
272 |                 setTimeout(function() {
273 |                     dialogWrap.style.display = "none";
274 |                 }, 1000);
275 |             } catch (e) {
276 |                 invalidPassEl.style.display = "inline";
277 |                 passEl.value = "";
278 |                 submitPass.disabled = false;
279 |                 passEl.disabled = false;
280 |                 console.error(e);
281 |                 return;
282 |             }
283 |         }
284 |         
285 |         submitPass.onclick = doSubmit;
286 |         passEl.onkeypress = function(e){
287 |             if (!e) e = window.event;
288 |             var keyCode = e.keyCode || e.which;
289 |             invalidPassEl.style.display = "none";
290 |             if (keyCode == '13'){
291 |               // Enter pressed
292 |               doSubmit();
293 |               return false;
294 |             }
295 |         }
296 |     })();
297 |     </script>
298 |   </body>
299 | </html>
300 | 


--------------------------------------------------------------------------------
/legacy/index.html:
--------------------------------------------------------------------------------
  1 | <!DOCTYPE html>
  2 | <html lang="en">
  3 |   <head>
  4 |     <meta charset="utf-8">
  5 |     <meta name="viewport" content="width=device-width, initial-scale=1">
  6 |     <meta name="robots" content="noindex">
  7 |     <title>PageCrypt - LEGACY VERSION</title>
  8 |     <meta name="description" content="This tool lets you securely password-protect an HTML file without using .htaccess. It uses strong encryption, so the password-protection cannot be bypassed. Choose an HTML file and a password, and your page will be password-protected!">
  9 |     <script>
 10 |       // If there is no trailing slash after the path in the url, add it
 11 |       // Workaround for Netlify trailing-slash rewrite issue
 12 |       // https://community.netlify.com/t/bug-in-non-trailing-slash-rewrite/452/23
 13 |       if (!window.location.pathname.endsWith('/') && !window.location.pathname.split("/").pop().includes(".")) {
 14 |           var url = window.location.protocol + '//' +
 15 |                   window.location.host +
 16 |                   window.location.pathname + '/' +
 17 |                   window.location.search;
 18 |           window.history.replaceState(null, document.title, url);
 19 |       }
 20 |     </script>
 21 |     <style>
 22 |         html, body {
 23 |             margin: 0;
 24 |             font-family: Arial, Helvetica, sans-serif;
 25 |             line-height: 1.4;
 26 |         }
 27 |         h1 {
 28 |             display: inline-block;
 29 |         }
 30 |         .githubLink {
 31 |             display: inline-block;
 32 |             padding: 6px 15px;
 33 |             text-align: center;
 34 |             text-decoration: none;
 35 |             border-radius: 4px;
 36 |             border: 1px solid #bbb;
 37 |             margin-right: 10px;
 38 |             background-image:linear-gradient(180deg, #fafbfc, #eff3f6 90%);
 39 |         }
 40 |         .githubLink:hover {
 41 |             border: 1px solid #999;
 42 |             background-image:  linear-gradient(180deg, #f0f3f6, #e6ebf1 90%);
 43 |         }
 44 |         h1, .githubLink {
 45 |             vertical-align: middle;
 46 |         }
 47 |         .linkBack {
 48 |             margin: 1em 0;
 49 |         }
 50 |         #pageContainer {
 51 |             margin: 0 auto;
 52 |             padding: 10px;
 53 |             padding-top: 0;
 54 |             max-width: 1050px;
 55 |         }
 56 |         #mainContainer {
 57 |             padding: 0 25px 25px 25px;
 58 |             border: solid #CCC 1px;
 59 |         }
 60 |         #sectionTop {
 61 |             display: flex;
 62 |             flex-wrap: wrap;
 63 |             justify-content: space-between;
 64 |         }
 65 |         #projDescription {
 66 |             max-width: 700px;
 67 |         }
 68 |         .steps {
 69 |             color: green;
 70 |         }
 71 |         #fileselect {
 72 |             max-width: 240px;
 73 |         }
 74 |         #passMismatch {
 75 |             display: none;
 76 |             color: red;
 77 |         }
 78 |         .demoButton {
 79 |           display: inline-block;
 80 |           font: bold 20px Arial;
 81 |           text-decoration: none;
 82 |           background-color: #EEEEEE;
 83 |           color: #333333;
 84 |           padding: 2px 6px 2px 6px;
 85 |           border-top: 1px solid #CCCCCC;
 86 |           border-right: 1px solid #333333;
 87 |           border-bottom: 1px solid #333333;
 88 |           border-left: 1px solid #CCCCCC;
 89 |         }
 90 |         #doneProtecting {
 91 |             display: none;
 92 |             color: blue;
 93 |             font-weight: bold;
 94 |         }
 95 |         #disclaimer {
 96 |             color: gray;
 97 |             font-size: 0.75em;
 98 |             margin-top: 30px;
 99 |         }
100 |         .githubLogo {
101 |             position: relative;
102 |             height: 25px;
103 |             vertical-align: middle;
104 |         }
105 |         .githubLogo:hover {
106 |             opacity: 1;
107 |         }
108 |         .suggested {
109 |             max-width: 260px;
110 |         }
111 |         @media (min-width: 700px) {
112 |             #pageContainer {
113 |                 padding: 50px;
114 |                 padding-top: 0;
115 |             }
116 |         }
117 |     </style>
118 |     <script>
119 |       (function(i,s,o,g,r,a,m){i['GoogleAnalyticsObject']=r;i[r]=i[r]||function(){
120 |       (i[r].q=i[r].q||[]).push(arguments)},i[r].l=1*new Date();a=s.createElement(o),
121 |       m=s.getElementsByTagName(o)[0];a.async=1;a.src=g;m.parentNode.insertBefore(a,m)
122 |       })(window,document,'script','https://www.google-analytics.com/analytics.js','ga');
123 | 
124 |       ga('set', 'forceSSL', true);
125 |       ga('create', 'UA-24440376-11', 'auto');
126 |       ga('send', 'pageview');
127 |     </script>
128 |   </head>
129 |   <body>
130 |     <div id="pageContainer">
131 |         <div class="linkBack">
132 |             <a class="linkBack" href="..">&lt;- to the latest version</a>
133 |         </div>
134 |         <div id="mainContainer">
135 |             <div id="sectionTop">
136 |                 <div id="projDescription">
137 |                     <a class="githubLink" href="https://github.com/MaxLaumeister/pagecrypt"><img class="githubLogo" src="github.svg" alt="GitHub Logo"></a>
138 |                     <h1>PageCrypt - LEGACY VERSION</h1>
139 |                     <p>This is the LEGACY version of PageCrypt. It produces less strongly protected documents, but they work over insecure HTTP connections. For most use cases, <a href="..">use the latest version of PageCrypt</a>.</p>
140 |                     <p><a href="demopage/" class="demoButton">Live Demo</a>&nbsp;&nbsp;(pssst... the live demo password is "hunter2")</p>
141 |                 </div>
142 |                 <div id="widgetContainer">
143 |                     <h2>Instructions</h2>
144 |                     <p class="steps">Step 1. Choose HTML file</p><p><input type="file" id="fileselect" name="file" disabled/></p>
145 |                     <p><span class="steps">Step 2. Choose password</span>
146 |                     <div style="display: table;">
147 |                         <div style="display: table-row;">
148 |                             <div style="display: table-cell;">Password:</div><div style="display: table-cell;"><input id="pass" type="password" name="pass" disabled></div>
149 |                         </div>
150 |                         <div style="display: table-row;">
151 |                             <div style="display: table-cell;">Confirm:</div><div style="display: table-cell;"><input id="passconf" type="password" name="passconf" disabled></div>
152 |                         </div>
153 |                     </div>
154 |                     <p id="passMismatch">Passwords don't match, try again.</p>
155 |                     <p class="steps">Step 3. Protect!</p><p><button id="submitFile" type="button" disabled>Submit</button></p>
156 |                     <p id="doneProtecting">Done! Check your downloads!</p>
157 |                     <p class="steps">Step 4. Tip me?</p><p><a href="https://www.maxlaumeister.com/tip/" class="demoButton">Donate!</a></p>
158 |                     <p class="suggested">Suggested donation is <strong>$5</strong> for personal use, or <strong>$10-20</strong> for businesses. Honor system!</p>
159 |                 </div>
160 |             </div>
161 |             <div style="clear: both;"></div>
162 |         </div>
163 |         <div id="disclaimer">
164 |             <p>DISCLAIMER</p>
165 |             <p>THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.</p>
166 |         </div>
167 |     </div>
168 |     
169 |     <script src="js/aes.js"></script>
170 |     <script src="js/pbkdf2.js"></script>
171 |     <script src="js/FileSaver.js"></script>
172 |     <script>
173 |         var fileSelect = document.getElementById('fileselect');
174 |         var submitFile = document.getElementById('submitFile');
175 |         var passEl = document.getElementById('pass');
176 |         var passConfEl = document.getElementById('passconf');
177 |         var passMismatch = document.getElementById('passMismatch');
178 |         var doneProtecting = document.getElementById('doneProtecting');
179 |         
180 |         var templateHTML;
181 |         
182 |         function doSubmit(evt) {
183 |             if (!passwordsMatch()) {
184 |                 passMismatch.style.display = "block";
185 |                 return;
186 |             }
187 |             
188 |             var file = fileSelect.files[0];
189 |             var reader = new FileReader();
190 |             reader.onload = function(data) {
191 |                 var fileConts = data.target.result;
192 |                 
193 |                 var encryptedFile = encryptFile(fileConts, passEl.value);
194 |                 
195 |                 var salt = CryptoJS.enc.Base64.stringify(encryptedFile.salt);
196 |                 var iv = CryptoJS.enc.Base64.stringify(encryptedFile.iv);
197 |                 var cipherText = CryptoJS.enc.Base64.stringify(encryptedFile.data.ciphertext);
198 |                 var encryptedJSON = JSON.stringify({salt: salt, iv: iv, data: cipherText});
199 |                 
200 |                 // Wrap template around encrypted data
201 |                 
202 |                 var encryptedDocument = templateHTML.replace("/*{{ENCRYPTED_PAYLOAD}}*/\"\"", encryptedJSON);
203 |                 var fileBlob = new Blob([encryptedDocument], {type: "text/plain;charset=utf-8"});
204 |                 
205 |                 // Create filename
206 |                 var origPath = document.getElementById('fileselect').value;
207 |                 var pathSplit = origPath.split("\\");
208 |                 var origName = pathSplit[pathSplit.length - 1];
209 |                 var origNameSplit = origName.split(".");
210 |                 origNameSplit[origNameSplit.length - 2] += "-protected";
211 |                 var finalName = origNameSplit.join(".");
212 |                 
213 |                 saveAs(fileBlob, finalName);
214 |                 doneProtecting.style.display = "block";
215 |             };
216 |             reader.readAsText(file);
217 |         }
218 |         
219 |         submitFile.onclick = doSubmit;
220 |         
221 |         function encryptFile(contents, password) {
222 |             var salt = CryptoJS.lib.WordArray.random(256/8);
223 |             var iv = CryptoJS.lib.WordArray.random(128/8);
224 |             var key = CryptoJS.PBKDF2(password, salt, { keySize: 256/32, iterations: 100 });
225 |             var encrypted = CryptoJS.AES.encrypt(contents, key, {iv: iv});
226 |             return {salt: salt, iv: iv, data: encrypted};
227 |         }
228 |         
229 |         // Load template
230 |         
231 |         var xmlhttp = new XMLHttpRequest();
232 |                 
233 |         xmlhttp.onreadystatechange = function() {
234 |             if (xmlhttp.readyState == XMLHttpRequest.DONE ) {
235 |                if(xmlhttp.status == 200){
236 |                    templateHTML = xmlhttp.responseText;
237 |                    fileSelect.disabled = false;
238 |                }
239 |                else {
240 |                    console.log("Template not found.");
241 |                }
242 |             }
243 |         }
244 | 
245 |         xmlhttp.open("GET", "decryptTemplate.html", true);
246 |         xmlhttp.send();
247 |         
248 |         // Enable elements as they are filled out
249 |         
250 |         fileSelect.onchange = function () {
251 |             passEl.disabled = false;
252 |             passConfEl.disabled = false;
253 |             submitFile.disabled = false;
254 |             doneProtecting.style.display = "none";
255 |         }
256 |         
257 |         function passwordsMatch() {
258 |             if (passEl.value !== "" && passEl.value === passConfEl.value) {
259 |                 return true;
260 |             } else {
261 |                 return false;
262 |             }
263 |         }
264 |         
265 |         passEl.onkeyup = passConfEl.onkeyup = function () {
266 |             passMismatch.style.display = "none";
267 |         }
268 |         
269 |         if (window.location.protocol === "file:") alert("Please load this tool using a web server - it does not work when loaded directly from the index.html file. Thanks!");
270 |     </script>
271 |   </body>
272 | </html>
273 | 


--------------------------------------------------------------------------------
/legacy/js/aes.js:
--------------------------------------------------------------------------------
 1 | /*
 2 | CryptoJS v3.1.2
 3 | code.google.com/p/crypto-js
 4 | (c) 2009-2013 by Jeff Mott. All rights reserved.
 5 | code.google.com/p/crypto-js/wiki/License
 6 | */
 7 | var CryptoJS=CryptoJS||function(u,p){var d={},l=d.lib={},s=function(){},t=l.Base={extend:function(a){s.prototype=this;var c=new s;a&&c.mixIn(a);c.hasOwnProperty("init")||(c.init=function(){c.$super.init.apply(this,arguments)});c.init.prototype=c;c.$super=this;return c},create:function(){var a=this.extend();a.init.apply(a,arguments);return a},init:function(){},mixIn:function(a){for(var c in a)a.hasOwnProperty(c)&&(this[c]=a[c]);a.hasOwnProperty("toString")&&(this.toString=a.toString)},clone:function(){return this.init.prototype.extend(this)}},
 8 | r=l.WordArray=t.extend({init:function(a,c){a=this.words=a||[];this.sigBytes=c!=p?c:4*a.length},toString:function(a){return(a||v).stringify(this)},concat:function(a){var c=this.words,e=a.words,j=this.sigBytes;a=a.sigBytes;this.clamp();if(j%4)for(var k=0;k<a;k++)c[j+k>>>2]|=(e[k>>>2]>>>24-8*(k%4)&255)<<24-8*((j+k)%4);else if(65535<e.length)for(k=0;k<a;k+=4)c[j+k>>>2]=e[k>>>2];else c.push.apply(c,e);this.sigBytes+=a;return this},clamp:function(){var a=this.words,c=this.sigBytes;a[c>>>2]&=4294967295<<
 9 | 32-8*(c%4);a.length=u.ceil(c/4)},clone:function(){var a=t.clone.call(this);a.words=this.words.slice(0);return a},random:function(a){for(var c=[],e=0;e<a;e+=4)c.push(4294967296*u.random()|0);return new r.init(c,a)}}),w=d.enc={},v=w.Hex={stringify:function(a){var c=a.words;a=a.sigBytes;for(var e=[],j=0;j<a;j++){var k=c[j>>>2]>>>24-8*(j%4)&255;e.push((k>>>4).toString(16));e.push((k&15).toString(16))}return e.join("")},parse:function(a){for(var c=a.length,e=[],j=0;j<c;j+=2)e[j>>>3]|=parseInt(a.substr(j,
10 | 2),16)<<24-4*(j%8);return new r.init(e,c/2)}},b=w.Latin1={stringify:function(a){var c=a.words;a=a.sigBytes;for(var e=[],j=0;j<a;j++)e.push(String.fromCharCode(c[j>>>2]>>>24-8*(j%4)&255));return e.join("")},parse:function(a){for(var c=a.length,e=[],j=0;j<c;j++)e[j>>>2]|=(a.charCodeAt(j)&255)<<24-8*(j%4);return new r.init(e,c)}},x=w.Utf8={stringify:function(a){try{return decodeURIComponent(escape(b.stringify(a)))}catch(c){throw Error("Malformed UTF-8 data");}},parse:function(a){return b.parse(unescape(encodeURIComponent(a)))}},
11 | q=l.BufferedBlockAlgorithm=t.extend({reset:function(){this._data=new r.init;this._nDataBytes=0},_append:function(a){"string"==typeof a&&(a=x.parse(a));this._data.concat(a);this._nDataBytes+=a.sigBytes},_process:function(a){var c=this._data,e=c.words,j=c.sigBytes,k=this.blockSize,b=j/(4*k),b=a?u.ceil(b):u.max((b|0)-this._minBufferSize,0);a=b*k;j=u.min(4*a,j);if(a){for(var q=0;q<a;q+=k)this._doProcessBlock(e,q);q=e.splice(0,a);c.sigBytes-=j}return new r.init(q,j)},clone:function(){var a=t.clone.call(this);
12 | a._data=this._data.clone();return a},_minBufferSize:0});l.Hasher=q.extend({cfg:t.extend(),init:function(a){this.cfg=this.cfg.extend(a);this.reset()},reset:function(){q.reset.call(this);this._doReset()},update:function(a){this._append(a);this._process();return this},finalize:function(a){a&&this._append(a);return this._doFinalize()},blockSize:16,_createHelper:function(a){return function(b,e){return(new a.init(e)).finalize(b)}},_createHmacHelper:function(a){return function(b,e){return(new n.HMAC.init(a,
13 | e)).finalize(b)}}});var n=d.algo={};return d}(Math);
14 | (function(){var u=CryptoJS,p=u.lib.WordArray;u.enc.Base64={stringify:function(d){var l=d.words,p=d.sigBytes,t=this._map;d.clamp();d=[];for(var r=0;r<p;r+=3)for(var w=(l[r>>>2]>>>24-8*(r%4)&255)<<16|(l[r+1>>>2]>>>24-8*((r+1)%4)&255)<<8|l[r+2>>>2]>>>24-8*((r+2)%4)&255,v=0;4>v&&r+0.75*v<p;v++)d.push(t.charAt(w>>>6*(3-v)&63));if(l=t.charAt(64))for(;d.length%4;)d.push(l);return d.join("")},parse:function(d){var l=d.length,s=this._map,t=s.charAt(64);t&&(t=d.indexOf(t),-1!=t&&(l=t));for(var t=[],r=0,w=0;w<
15 | l;w++)if(w%4){var v=s.indexOf(d.charAt(w-1))<<2*(w%4),b=s.indexOf(d.charAt(w))>>>6-2*(w%4);t[r>>>2]|=(v|b)<<24-8*(r%4);r++}return p.create(t,r)},_map:"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/="}})();
16 | (function(u){function p(b,n,a,c,e,j,k){b=b+(n&a|~n&c)+e+k;return(b<<j|b>>>32-j)+n}function d(b,n,a,c,e,j,k){b=b+(n&c|a&~c)+e+k;return(b<<j|b>>>32-j)+n}function l(b,n,a,c,e,j,k){b=b+(n^a^c)+e+k;return(b<<j|b>>>32-j)+n}function s(b,n,a,c,e,j,k){b=b+(a^(n|~c))+e+k;return(b<<j|b>>>32-j)+n}for(var t=CryptoJS,r=t.lib,w=r.WordArray,v=r.Hasher,r=t.algo,b=[],x=0;64>x;x++)b[x]=4294967296*u.abs(u.sin(x+1))|0;r=r.MD5=v.extend({_doReset:function(){this._hash=new w.init([1732584193,4023233417,2562383102,271733878])},
17 | _doProcessBlock:function(q,n){for(var a=0;16>a;a++){var c=n+a,e=q[c];q[c]=(e<<8|e>>>24)&16711935|(e<<24|e>>>8)&4278255360}var a=this._hash.words,c=q[n+0],e=q[n+1],j=q[n+2],k=q[n+3],z=q[n+4],r=q[n+5],t=q[n+6],w=q[n+7],v=q[n+8],A=q[n+9],B=q[n+10],C=q[n+11],u=q[n+12],D=q[n+13],E=q[n+14],x=q[n+15],f=a[0],m=a[1],g=a[2],h=a[3],f=p(f,m,g,h,c,7,b[0]),h=p(h,f,m,g,e,12,b[1]),g=p(g,h,f,m,j,17,b[2]),m=p(m,g,h,f,k,22,b[3]),f=p(f,m,g,h,z,7,b[4]),h=p(h,f,m,g,r,12,b[5]),g=p(g,h,f,m,t,17,b[6]),m=p(m,g,h,f,w,22,b[7]),
18 | f=p(f,m,g,h,v,7,b[8]),h=p(h,f,m,g,A,12,b[9]),g=p(g,h,f,m,B,17,b[10]),m=p(m,g,h,f,C,22,b[11]),f=p(f,m,g,h,u,7,b[12]),h=p(h,f,m,g,D,12,b[13]),g=p(g,h,f,m,E,17,b[14]),m=p(m,g,h,f,x,22,b[15]),f=d(f,m,g,h,e,5,b[16]),h=d(h,f,m,g,t,9,b[17]),g=d(g,h,f,m,C,14,b[18]),m=d(m,g,h,f,c,20,b[19]),f=d(f,m,g,h,r,5,b[20]),h=d(h,f,m,g,B,9,b[21]),g=d(g,h,f,m,x,14,b[22]),m=d(m,g,h,f,z,20,b[23]),f=d(f,m,g,h,A,5,b[24]),h=d(h,f,m,g,E,9,b[25]),g=d(g,h,f,m,k,14,b[26]),m=d(m,g,h,f,v,20,b[27]),f=d(f,m,g,h,D,5,b[28]),h=d(h,f,
19 | m,g,j,9,b[29]),g=d(g,h,f,m,w,14,b[30]),m=d(m,g,h,f,u,20,b[31]),f=l(f,m,g,h,r,4,b[32]),h=l(h,f,m,g,v,11,b[33]),g=l(g,h,f,m,C,16,b[34]),m=l(m,g,h,f,E,23,b[35]),f=l(f,m,g,h,e,4,b[36]),h=l(h,f,m,g,z,11,b[37]),g=l(g,h,f,m,w,16,b[38]),m=l(m,g,h,f,B,23,b[39]),f=l(f,m,g,h,D,4,b[40]),h=l(h,f,m,g,c,11,b[41]),g=l(g,h,f,m,k,16,b[42]),m=l(m,g,h,f,t,23,b[43]),f=l(f,m,g,h,A,4,b[44]),h=l(h,f,m,g,u,11,b[45]),g=l(g,h,f,m,x,16,b[46]),m=l(m,g,h,f,j,23,b[47]),f=s(f,m,g,h,c,6,b[48]),h=s(h,f,m,g,w,10,b[49]),g=s(g,h,f,m,
20 | E,15,b[50]),m=s(m,g,h,f,r,21,b[51]),f=s(f,m,g,h,u,6,b[52]),h=s(h,f,m,g,k,10,b[53]),g=s(g,h,f,m,B,15,b[54]),m=s(m,g,h,f,e,21,b[55]),f=s(f,m,g,h,v,6,b[56]),h=s(h,f,m,g,x,10,b[57]),g=s(g,h,f,m,t,15,b[58]),m=s(m,g,h,f,D,21,b[59]),f=s(f,m,g,h,z,6,b[60]),h=s(h,f,m,g,C,10,b[61]),g=s(g,h,f,m,j,15,b[62]),m=s(m,g,h,f,A,21,b[63]);a[0]=a[0]+f|0;a[1]=a[1]+m|0;a[2]=a[2]+g|0;a[3]=a[3]+h|0},_doFinalize:function(){var b=this._data,n=b.words,a=8*this._nDataBytes,c=8*b.sigBytes;n[c>>>5]|=128<<24-c%32;var e=u.floor(a/
21 | 4294967296);n[(c+64>>>9<<4)+15]=(e<<8|e>>>24)&16711935|(e<<24|e>>>8)&4278255360;n[(c+64>>>9<<4)+14]=(a<<8|a>>>24)&16711935|(a<<24|a>>>8)&4278255360;b.sigBytes=4*(n.length+1);this._process();b=this._hash;n=b.words;for(a=0;4>a;a++)c=n[a],n[a]=(c<<8|c>>>24)&16711935|(c<<24|c>>>8)&4278255360;return b},clone:function(){var b=v.clone.call(this);b._hash=this._hash.clone();return b}});t.MD5=v._createHelper(r);t.HmacMD5=v._createHmacHelper(r)})(Math);
22 | (function(){var u=CryptoJS,p=u.lib,d=p.Base,l=p.WordArray,p=u.algo,s=p.EvpKDF=d.extend({cfg:d.extend({keySize:4,hasher:p.MD5,iterations:1}),init:function(d){this.cfg=this.cfg.extend(d)},compute:function(d,r){for(var p=this.cfg,s=p.hasher.create(),b=l.create(),u=b.words,q=p.keySize,p=p.iterations;u.length<q;){n&&s.update(n);var n=s.update(d).finalize(r);s.reset();for(var a=1;a<p;a++)n=s.finalize(n),s.reset();b.concat(n)}b.sigBytes=4*q;return b}});u.EvpKDF=function(d,l,p){return s.create(p).compute(d,
23 | l)}})();
24 | CryptoJS.lib.Cipher||function(u){var p=CryptoJS,d=p.lib,l=d.Base,s=d.WordArray,t=d.BufferedBlockAlgorithm,r=p.enc.Base64,w=p.algo.EvpKDF,v=d.Cipher=t.extend({cfg:l.extend(),createEncryptor:function(e,a){return this.create(this._ENC_XFORM_MODE,e,a)},createDecryptor:function(e,a){return this.create(this._DEC_XFORM_MODE,e,a)},init:function(e,a,b){this.cfg=this.cfg.extend(b);this._xformMode=e;this._key=a;this.reset()},reset:function(){t.reset.call(this);this._doReset()},process:function(e){this._append(e);return this._process()},
25 | finalize:function(e){e&&this._append(e);return this._doFinalize()},keySize:4,ivSize:4,_ENC_XFORM_MODE:1,_DEC_XFORM_MODE:2,_createHelper:function(e){return{encrypt:function(b,k,d){return("string"==typeof k?c:a).encrypt(e,b,k,d)},decrypt:function(b,k,d){return("string"==typeof k?c:a).decrypt(e,b,k,d)}}}});d.StreamCipher=v.extend({_doFinalize:function(){return this._process(!0)},blockSize:1});var b=p.mode={},x=function(e,a,b){var c=this._iv;c?this._iv=u:c=this._prevBlock;for(var d=0;d<b;d++)e[a+d]^=
26 | c[d]},q=(d.BlockCipherMode=l.extend({createEncryptor:function(e,a){return this.Encryptor.create(e,a)},createDecryptor:function(e,a){return this.Decryptor.create(e,a)},init:function(e,a){this._cipher=e;this._iv=a}})).extend();q.Encryptor=q.extend({processBlock:function(e,a){var b=this._cipher,c=b.blockSize;x.call(this,e,a,c);b.encryptBlock(e,a);this._prevBlock=e.slice(a,a+c)}});q.Decryptor=q.extend({processBlock:function(e,a){var b=this._cipher,c=b.blockSize,d=e.slice(a,a+c);b.decryptBlock(e,a);x.call(this,
27 | e,a,c);this._prevBlock=d}});b=b.CBC=q;q=(p.pad={}).Pkcs7={pad:function(a,b){for(var c=4*b,c=c-a.sigBytes%c,d=c<<24|c<<16|c<<8|c,l=[],n=0;n<c;n+=4)l.push(d);c=s.create(l,c);a.concat(c)},unpad:function(a){a.sigBytes-=a.words[a.sigBytes-1>>>2]&255}};d.BlockCipher=v.extend({cfg:v.cfg.extend({mode:b,padding:q}),reset:function(){v.reset.call(this);var a=this.cfg,b=a.iv,a=a.mode;if(this._xformMode==this._ENC_XFORM_MODE)var c=a.createEncryptor;else c=a.createDecryptor,this._minBufferSize=1;this._mode=c.call(a,
28 | this,b&&b.words)},_doProcessBlock:function(a,b){this._mode.processBlock(a,b)},_doFinalize:function(){var a=this.cfg.padding;if(this._xformMode==this._ENC_XFORM_MODE){a.pad(this._data,this.blockSize);var b=this._process(!0)}else b=this._process(!0),a.unpad(b);return b},blockSize:4});var n=d.CipherParams=l.extend({init:function(a){this.mixIn(a)},toString:function(a){return(a||this.formatter).stringify(this)}}),b=(p.format={}).OpenSSL={stringify:function(a){var b=a.ciphertext;a=a.salt;return(a?s.create([1398893684,
29 | 1701076831]).concat(a).concat(b):b).toString(r)},parse:function(a){a=r.parse(a);var b=a.words;if(1398893684==b[0]&&1701076831==b[1]){var c=s.create(b.slice(2,4));b.splice(0,4);a.sigBytes-=16}return n.create({ciphertext:a,salt:c})}},a=d.SerializableCipher=l.extend({cfg:l.extend({format:b}),encrypt:function(a,b,c,d){d=this.cfg.extend(d);var l=a.createEncryptor(c,d);b=l.finalize(b);l=l.cfg;return n.create({ciphertext:b,key:c,iv:l.iv,algorithm:a,mode:l.mode,padding:l.padding,blockSize:a.blockSize,formatter:d.format})},
30 | decrypt:function(a,b,c,d){d=this.cfg.extend(d);b=this._parse(b,d.format);return a.createDecryptor(c,d).finalize(b.ciphertext)},_parse:function(a,b){return"string"==typeof a?b.parse(a,this):a}}),p=(p.kdf={}).OpenSSL={execute:function(a,b,c,d){d||(d=s.random(8));a=w.create({keySize:b+c}).compute(a,d);c=s.create(a.words.slice(b),4*c);a.sigBytes=4*b;return n.create({key:a,iv:c,salt:d})}},c=d.PasswordBasedCipher=a.extend({cfg:a.cfg.extend({kdf:p}),encrypt:function(b,c,d,l){l=this.cfg.extend(l);d=l.kdf.execute(d,
31 | b.keySize,b.ivSize);l.iv=d.iv;b=a.encrypt.call(this,b,c,d.key,l);b.mixIn(d);return b},decrypt:function(b,c,d,l){l=this.cfg.extend(l);c=this._parse(c,l.format);d=l.kdf.execute(d,b.keySize,b.ivSize,c.salt);l.iv=d.iv;return a.decrypt.call(this,b,c,d.key,l)}})}();
32 | (function(){for(var u=CryptoJS,p=u.lib.BlockCipher,d=u.algo,l=[],s=[],t=[],r=[],w=[],v=[],b=[],x=[],q=[],n=[],a=[],c=0;256>c;c++)a[c]=128>c?c<<1:c<<1^283;for(var e=0,j=0,c=0;256>c;c++){var k=j^j<<1^j<<2^j<<3^j<<4,k=k>>>8^k&255^99;l[e]=k;s[k]=e;var z=a[e],F=a[z],G=a[F],y=257*a[k]^16843008*k;t[e]=y<<24|y>>>8;r[e]=y<<16|y>>>16;w[e]=y<<8|y>>>24;v[e]=y;y=16843009*G^65537*F^257*z^16843008*e;b[k]=y<<24|y>>>8;x[k]=y<<16|y>>>16;q[k]=y<<8|y>>>24;n[k]=y;e?(e=z^a[a[a[G^z]]],j^=a[a[j]]):e=j=1}var H=[0,1,2,4,8,
33 | 16,32,64,128,27,54],d=d.AES=p.extend({_doReset:function(){for(var a=this._key,c=a.words,d=a.sigBytes/4,a=4*((this._nRounds=d+6)+1),e=this._keySchedule=[],j=0;j<a;j++)if(j<d)e[j]=c[j];else{var k=e[j-1];j%d?6<d&&4==j%d&&(k=l[k>>>24]<<24|l[k>>>16&255]<<16|l[k>>>8&255]<<8|l[k&255]):(k=k<<8|k>>>24,k=l[k>>>24]<<24|l[k>>>16&255]<<16|l[k>>>8&255]<<8|l[k&255],k^=H[j/d|0]<<24);e[j]=e[j-d]^k}c=this._invKeySchedule=[];for(d=0;d<a;d++)j=a-d,k=d%4?e[j]:e[j-4],c[d]=4>d||4>=j?k:b[l[k>>>24]]^x[l[k>>>16&255]]^q[l[k>>>
34 | 8&255]]^n[l[k&255]]},encryptBlock:function(a,b){this._doCryptBlock(a,b,this._keySchedule,t,r,w,v,l)},decryptBlock:function(a,c){var d=a[c+1];a[c+1]=a[c+3];a[c+3]=d;this._doCryptBlock(a,c,this._invKeySchedule,b,x,q,n,s);d=a[c+1];a[c+1]=a[c+3];a[c+3]=d},_doCryptBlock:function(a,b,c,d,e,j,l,f){for(var m=this._nRounds,g=a[b]^c[0],h=a[b+1]^c[1],k=a[b+2]^c[2],n=a[b+3]^c[3],p=4,r=1;r<m;r++)var q=d[g>>>24]^e[h>>>16&255]^j[k>>>8&255]^l[n&255]^c[p++],s=d[h>>>24]^e[k>>>16&255]^j[n>>>8&255]^l[g&255]^c[p++],t=
35 | d[k>>>24]^e[n>>>16&255]^j[g>>>8&255]^l[h&255]^c[p++],n=d[n>>>24]^e[g>>>16&255]^j[h>>>8&255]^l[k&255]^c[p++],g=q,h=s,k=t;q=(f[g>>>24]<<24|f[h>>>16&255]<<16|f[k>>>8&255]<<8|f[n&255])^c[p++];s=(f[h>>>24]<<24|f[k>>>16&255]<<16|f[n>>>8&255]<<8|f[g&255])^c[p++];t=(f[k>>>24]<<24|f[n>>>16&255]<<16|f[g>>>8&255]<<8|f[h&255])^c[p++];n=(f[n>>>24]<<24|f[g>>>16&255]<<16|f[h>>>8&255]<<8|f[k&255])^c[p++];a[b]=q;a[b+1]=s;a[b+2]=t;a[b+3]=n},keySize:8});u.AES=p._createHelper(d)})();
36 | 


--------------------------------------------------------------------------------
/index.html:
--------------------------------------------------------------------------------
  1 | <!DOCTYPE html>
  2 | <html lang="en">
  3 |   <head>
  4 |     <meta charset="utf-8">
  5 |     <meta name="viewport" content="width=device-width, initial-scale=1">
  6 |     <link rel="canonical" href="https://pagecrypt.maxlaumeister.com/" />
  7 |     <title>PageCrypt - Password Protect HTML</title>
  8 |     <meta name="description" content="This tool lets you securely password-protect an HTML file without using .htaccess. It uses strong encryption, so the password-protection cannot be bypassed. Choose an HTML file and a password, and your page will be password-protected!">
  9 |     <style>
 10 |         html, body {
 11 |             margin: 0;
 12 |             font-family: Arial, Helvetica, sans-serif;
 13 |             line-height: 1.4;
 14 |         }
 15 |         h1 {
 16 |             display: inline-block;
 17 |         }
 18 |         .githubLink {
 19 |             display: inline-block;
 20 |             padding: 6px 15px;
 21 |             text-align: center;
 22 |             text-decoration: none;
 23 |             border-radius: 4px;
 24 |             border: 1px solid #bbb;
 25 |             margin-right: 10px;
 26 |             background-image:linear-gradient(180deg, #fafbfc, #eff3f6 90%);
 27 |         }
 28 |         .githubLink:hover {
 29 |             border: 1px solid #999;
 30 |             background-image:  linear-gradient(180deg, #f0f3f6, #e6ebf1 90%);
 31 |         }
 32 |         h1, .githubLink {
 33 |             vertical-align: middle;
 34 |         }
 35 |         .linkBack {
 36 |             margin: 1em 0;
 37 |         }
 38 |         #pageContainer {
 39 |             margin: 0 auto;
 40 |             padding: 10px;
 41 |             padding-top: 0;
 42 |             max-width: 1050px;
 43 |         }
 44 |         #mainContainer {
 45 |             padding: 0 25px 25px 25px;
 46 |             border: solid #CCC 1px;
 47 |         }
 48 |         #sectionTop {
 49 |             display: flex;
 50 |             flex-wrap: wrap;
 51 |             justify-content: space-between;
 52 |         }
 53 |         #projDescription {
 54 |             max-width: 700px;
 55 |         }
 56 |         .steps {
 57 |             color: green;
 58 |         }
 59 |         #fileselect {
 60 |             max-width: 240px;
 61 |         }
 62 |         #passMismatch {
 63 |             display: none;
 64 |             color: red;
 65 |         }
 66 |         .demoButton {
 67 |           display: inline-block;
 68 |           font: bold 20px Arial;
 69 |           text-decoration: none;
 70 |           background-color: #EEEEEE;
 71 |           color: #333333;
 72 |           padding: 2px 6px 2px 6px;
 73 |           border-top: 1px solid #CCCCCC;
 74 |           border-right: 1px solid #333333;
 75 |           border-bottom: 1px solid #333333;
 76 |           border-left: 1px solid #CCCCCC;
 77 |         }
 78 |         #doneProtecting {
 79 |             display: none;
 80 |             color: blue;
 81 |             font-weight: bold;
 82 |         }
 83 |         #disclaimer {
 84 |             color: gray;
 85 |             font-size: 0.75em;
 86 |             margin-top: 30px;
 87 |         }
 88 |         .githubLogo {
 89 |             position: relative;
 90 |             height: 25px;
 91 |             vertical-align: middle;
 92 |         }
 93 |         .githubLogo:hover {
 94 |             opacity: 1;
 95 |         }
 96 |         .suggested {
 97 |             max-width: 260px;
 98 |         }
 99 |         @media (min-width: 700px) {
100 |             #pageContainer {
101 |                 padding: 50px;
102 |                 padding-top: 0;
103 |             }
104 |         }
105 |     </style>
106 |     <script>
107 |       (function(i,s,o,g,r,a,m){i['GoogleAnalyticsObject']=r;i[r]=i[r]||function(){
108 |       (i[r].q=i[r].q||[]).push(arguments)},i[r].l=1*new Date();a=s.createElement(o),
109 |       m=s.getElementsByTagName(o)[0];a.async=1;a.src=g;m.parentNode.insertBefore(a,m)
110 |       })(window,document,'script','https://www.google-analytics.com/analytics.js','ga');
111 | 
112 |       ga('set', 'forceSSL', true);
113 |       ga('create', 'UA-24440376-11', 'auto');
114 |       ga('send', 'pageview');
115 |     </script>
116 |   </head>
117 |   <body>
118 |     <div id="pageContainer">
119 |         <div class="linkBack">
120 |             <a class="linkBack" href="https://www.maxlaumeister.com/">&lt;- home</a>
121 |         </div>
122 |         <div id="mainContainer">
123 |             <div id="sectionTop">
124 |                 <div id="projDescription">
125 |                     <a class="githubLink" href="https://github.com/MaxLaumeister/pagecrypt"><img class="githubLogo" src="github.svg" alt="GitHub Logo"></a>
126 |                     <h1>PageCrypt - Password Protect HTML</h1>
127 |                     <p>This tool lets you securely password-protect an HTML file. Unlike other password-protection tools, this tool:</p>
128 |                     <ol>
129 |                         <li>Has no server-side components (this tool and its password-protected pages run entirely in javascript).</li>
130 |                         <li>Uses strong encryption, so the password-protection cannot be bypassed.</li>
131 |                     </ol>
132 |                     <p>All you need to do is choose an HTML file and a password, and your page will be password-protected.</p>
133 |                     <p><a href="demopage/" class="demoButton">Live Demo</a>&nbsp;&nbsp;(pssst... the live demo password is "hunter2")</p>
134 |                 </div>
135 |                 <div id="widgetContainer">
136 |                     <h2>Instructions</h2>
137 |                     <p class="steps">Step 1. Choose HTML file</p><p><input type="file" id="fileselect" name="file" disabled/></p>
138 |                     <p><span class="steps">Step 2. Choose password</span>
139 |                     <div style="display: table;">
140 |                         <div style="display: table-row;">
141 |                             <div style="display: table-cell;">Password:</div><div style="display: table-cell;"><input id="pass" type="password" name="pass" disabled></div>
142 |                         </div>
143 |                         <div style="display: table-row;">
144 |                             <div style="display: table-cell;">Confirm:</div><div style="display: table-cell;"><input id="passconf" type="password" name="passconf" disabled></div>
145 |                         </div>
146 |                     </div>
147 |                     <p id="passMismatch">Passwords don't match, try again.</p>
148 |                     <p class="steps">Step 3. Protect!</p><p><button id="submitFile" type="button" disabled>Submit</button></p>
149 |                     <p id="doneProtecting">Done! Check your downloads!</p>
150 |                     <p class="steps">Step 4. Tip me?</p><p><a href="https://www.maxlaumeister.com/tip/" class="demoButton">Donate!</a></p>
151 |                     <p class="suggested">Suggested donation is <strong>$5</strong> for personal use, or <strong>$10-20</strong> for businesses. Honor system!</p>
152 |                 </div>
153 |             </div>
154 |             <div style="clear: both;"></div>
155 |             <hr>
156 |             <div id="faq">
157 |                 <h2>FAQ</h2>
158 |                 <h3>Why do the resulting password-protected HTML documents only work when served via HTTPS?</h3>
159 |                 <p>Due to browser limitations, PageCrypt protected pages only work if served over a secure HTTPS connection (or if the .html file is opened directly from disk). This is because of some technical stuff involving <a href="https://developer.mozilla.org/en-US/docs/Web/API/SubtleCrypto">SubtleCrypto</a> and <a href="https://developer.mozilla.org/en-US/docs/Web/Security/Secure_Contexts">Secure Contexts</a>. To produce html files that work over insecure HTTP connections, please use <a href="legacy/">the legacy version of PageCrypt</a>, which produces larger, less strongly protected documents.</p>
160 |                 <h3>How can this be secure if it's client-side? Can't people just bypass the password?</h3>
161 |                 <p>The HTML gets encrypted using the password, so it is unreadable without the password. An attacker could extract the encrypted document, but it would be an unusable mess until they decrypt it, which can only be done with the original password.</p>
162 |                 <h3>How do I know you're not keeping track of passwords I enter into this tool?</h3>
163 |                 <p>View the source code for this tool (in your browser and/or <a href="https://github.com/MaxLaumeister/pagecrypt">on GitHub</a>) and you can see for yourself that the password never leaves your computer!</p>
164 |                 <h3>Why would I want to use this instead of a .htaccess user/password prompt?</h3>
165 |                 <p>Standard user/password prompts require you have some sort of privileged access to the server. With Apache for instance, you need to be able to add a .htaccess file to the directory you want to protect. Since this tool produces a standard HTML file, you can host it literally anywhere, even places that don't give you access to the server configuration.</p>
166 |                 <p>This means you can use this tool to password-protect files without using .htaccess!</p>
167 |                 <h3>Does PageCrypt encrypt all the CSS/Javascript/Images or only the HTML itself?</h3>
168 |                 <p>This tool only encrypts the HTML document itself. If you inline your CSS/JS, or if you <a href="http://www.abeautifulsite.net/convert-an-image-to-a-data-uri-with-your-browser/" target="_blank">convert your images to data uris</a>, then they will be encrypted too. Otherwise they will just be linked. Since the HTML itself is encrypted though, a visitor without the password will not be able see the URLs of any of the linked resources.</p>
169 |                 <h3>Can PageCrypt protect .pdf, .zip, or any other types of files?</h3>
170 |                 <p>PageCrypt is designed specifically to encrypt HTML. To encrypt other file types, I recommend <a href="https://michaeldnahas.com/EasyEncryptionEverywhere.html">Easy Encryption Everywhere</a> by Michael D. Nahas.</p>
171 |                 <h3>What sort of crypto do you use?</h3>
172 |                 <p>This tool uses the <a href="https://developer.mozilla.org/en-US/docs/Web/API/SubtleCrypto">SubtleCrypto</a> JavaScript API for its encryption. First, an encryption key is derived from the password using PBKDF2 and a random salt with 100,000 rounds. Then the HTML is encrypted using AES256.</p>
173 |                 <h3>Is there a way to automate this or use it as a software library?</h3>
174 |                 <p>See <a href="https://github.com/Greenheart/pagecrypt">Samuel Plumppu's rewrite of PageCrypt</a>, which includes CLI and NPM automation, and NodeJS API support.</p>
175 |                 <p>In addition, thanks to <a href="https://zoltan.xyz/">Zoltán Gálli</a> for <a href="https://github.com/MaxLaumeister/pagecrypt/tree/master/python">this tool's <strong>Python</strong> CLI</a>, and thanks to <a href="https://nialfrancis.tech/">Nial Francis</a> for <a href="https://github.com/MaxLaumeister/pagecrypt/tree/master/PowerShell">this tool's <strong>PowerShell</strong> CLI</a>. <a href="https://github.com/MaxLaumeister/pagecrypt/tree/master/CONTRIBUTING.md">Contributions welcome!</a></p>
176 |                 <p>Finally, see <a href="https://github.com/brentscott93/pagecryptr">Brent Scott's <strong>R-wrapper</strong> for PageCrypt</a>. From the project page: "It is very common for R users to knit Rmarkdown documents to HTML docs. This provides an easy way to PageCrypt those documents without leaving R."</p>
177 |             </div>
178 |             <hr>
179 |             <div id="moreInfo">
180 |                 <h2>More Info</h2>
181 |                 <p>Project by <a href="https://www.maxlaumeister.com/">Maximillian Laumeister</a>. The source code and license are available <a href="https://github.com/MaxLaumeister/pagecrypt">on GitHub</a>.
182 |             </div>
183 |         </div>
184 |         <div id="disclaimer">
185 |             <p>DISCLAIMER</p>
186 |             <p>THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.</p>
187 |         </div>
188 |     </div>
189 |     
190 |     <script src="js/FileSaver.js"></script>
191 |     <script>
192 |         /**
193 |         * Encrypt a string and turn it into an encrypted payload.
194 |         *
195 |         * @param {string} content The data to encrypt
196 |         * @param {string} password The password which will be used to encrypt + decrypt the content.
197 |         * @returns an encrypted payload
198 |         */
199 |         async function getEncryptedPayload(content, password) {
200 |             const encoder = new TextEncoder()
201 |             const salt = crypto.getRandomValues(new Uint8Array(32))
202 |             const baseKey = await crypto.subtle.importKey(
203 |                 'raw',
204 |                 encoder.encode(password),
205 |                 'PBKDF2',
206 |                 false,
207 |                 ['deriveKey'],
208 |             )
209 |             const key = await crypto.subtle.deriveKey(
210 |                 { name: 'PBKDF2', salt, iterations: 100000, hash: 'SHA-256' },
211 |                 baseKey,
212 |                 { name: 'AES-GCM', length: 256 },
213 |                 false,
214 |                 ['encrypt'],
215 |             )
216 | 
217 |             const iv = crypto.getRandomValues(new Uint8Array(16))
218 |             const ciphertext = new Uint8Array(
219 |                 await crypto.subtle.encrypt(
220 |                     { name: 'AES-GCM', iv },
221 |                     key,
222 |                     encoder.encode(content),
223 |                 ),
224 |             )
225 |             const totalLength = salt.length + iv.length + ciphertext.length
226 |             const mergedData = new Uint8Array(totalLength)
227 |             mergedData.set(salt)
228 |             mergedData.set(iv, salt.length)
229 |             mergedData.set(ciphertext, salt.length + iv.length)
230 | 
231 |             return mergedData;
232 |         }
233 | 
234 |         function ab2str(buf) {
235 |             const arrayBuf = new Uint16Array(buf);
236 |             let out = "";
237 |             for (let i = 0; i < arrayBuf.length; i++) {
238 |                 out += String.fromCharCode(arrayBuf[i]);
239 |             }
240 |             return btoa(out);
241 |         }
242 |         
243 |         var fileSelect = document.getElementById('fileselect');
244 |         var submitFile = document.getElementById('submitFile');
245 |         var passEl = document.getElementById('pass');
246 |         var passConfEl = document.getElementById('passconf');
247 |         var passMismatch = document.getElementById('passMismatch');
248 |         var doneProtecting = document.getElementById('doneProtecting');
249 |         
250 |         var templateHTML;
251 |         
252 |         function doSubmit(evt) {
253 |             if (!passwordsMatch()) {
254 |                 passMismatch.style.display = "block";
255 |                 return;
256 |             }
257 |             
258 |             var file = fileSelect.files[0];
259 |             var reader = new FileReader();
260 |             reader.onload = function(data) {
261 |                 var fileConts = data.target.result;
262 |                 var encryptedFilePr = getEncryptedPayload(fileConts, passEl.value);
263 |                 submitFile.disabled = true;
264 |                 encryptedFilePr.then((encryptedFile) => {
265 |                     submitFile.disabled = false;
266 | 
267 |                     // Wrap template around encrypted data
268 |                     var encryptedEncodedFile = ab2str(encryptedFile);
269 |                     var encryptedDocument = templateHTML.replace("/*{{ENCRYPTED_PAYLOAD}}*/\"\"", "\"" + encryptedEncodedFile + "\"");
270 |                     var fileBlob = new Blob([encryptedDocument], {type: "text/plain;charset=utf-8"});
271 |                     
272 |                     // Create filename
273 |                     var origPath = document.getElementById('fileselect').value;
274 |                     var pathSplit = origPath.split("\\");
275 |                     var origName = pathSplit[pathSplit.length - 1];
276 |                     var origNameSplit = origName.split(".");
277 |                     origNameSplit[origNameSplit.length - 2] += "-protected";
278 |                     var finalName = origNameSplit.join(".");
279 |                     
280 |                     saveAs(fileBlob, finalName);
281 |                     doneProtecting.style.display = "block";
282 |                 });
283 |             };
284 |             reader.readAsText(file);
285 |         }
286 |         
287 |         submitFile.onclick = doSubmit;
288 |         
289 |         // Load template
290 |         
291 |         var xmlhttp = new XMLHttpRequest();
292 |                 
293 |         xmlhttp.onreadystatechange = function() {
294 |             if (xmlhttp.readyState == XMLHttpRequest.DONE ) {
295 |                if(xmlhttp.status == 200){
296 |                    templateHTML = xmlhttp.responseText;
297 |                    fileSelect.disabled = false;
298 |                }
299 |                else {
300 |                    console.log("Template not found.");
301 |                }
302 |             }
303 |         }
304 | 
305 |         xmlhttp.open("GET", "decryptTemplate.html", true);
306 |         xmlhttp.send();
307 |         
308 |         // Enable elements as they are filled out
309 |         
310 |         fileSelect.onchange = function () {
311 |             passEl.disabled = false;
312 |             passConfEl.disabled = false;
313 |             submitFile.disabled = false;
314 |             doneProtecting.style.display = "none";
315 |         }
316 |         
317 |         function passwordsMatch() {
318 |             if (passEl.value !== "" && passEl.value === passConfEl.value) {
319 |                 return true;
320 |             } else {
321 |                 return false;
322 |             }
323 |         }
324 |         
325 |         passEl.onkeyup = passConfEl.onkeyup = function () {
326 |             passMismatch.style.display = "none";
327 |         }
328 |         
329 |         if (window.location.protocol === "file:") alert("Please load this tool using a web server - it does not work when loaded directly from the index.html file. Thanks!");
330 |     </script>
331 |   </body>
332 | </html>
333 | 


--------------------------------------------------------------------------------
/decryptTemplate-legacy.html:
--------------------------------------------------------------------------------
  1 | <!DOCTYPE html>
  2 | <html lang="en">
  3 |   <head>
  4 |     <meta charset="utf-8">
  5 |     <meta name="viewport" content="width=device-width, initial-scale=1">
  6 |     <meta name="robots" content="noindex, nofollow">
  7 |     <title>Password Protected Page</title>
  8 |     <style>
  9 |         html, body {
 10 |             margin: 0;
 11 |             width: 100%;
 12 |             height: 100%;
 13 |             font-family: Arial, Helvetica, sans-serif;
 14 |         }
 15 |         #dialogText {
 16 |             padding: 10px 30px;
 17 |             color: white;
 18 |             background-color: #333333;
 19 |         }
 20 |         
 21 |         #dialogWrap {
 22 |             position: absolute;
 23 |             top: 0;
 24 |             left: 0;
 25 |             width: 100%;
 26 |             height: 100%;
 27 |             display: table;
 28 |             background-color: #EEEEEE;
 29 |         }
 30 |         
 31 |         #dialogWrapCell {
 32 |             display: table-cell;
 33 |             text-align: center;
 34 |             vertical-align: middle;
 35 |         }
 36 |         
 37 |         #mainDialog {
 38 |             max-width: 400px;
 39 |             margin: 5px;
 40 |             border: solid #AAAAAA 1px;
 41 |             border-radius: 10px;
 42 |             box-shadow: 3px 3px 5px 3px #AAAAAA;
 43 |             margin-left: auto;
 44 |             margin-right: auto;
 45 |             background-color: #FFFFFF;
 46 |             overflow: hidden;
 47 |             text-align: left;
 48 |         }
 49 |         #passArea {
 50 |             padding: 20px 30px;
 51 |             background-color: white;
 52 |         }
 53 |         #passArea > * {
 54 |             margin: 5px auto;
 55 |         }
 56 |         #pass {
 57 |             width: 100%;
 58 |             height: 40px;
 59 |             font-size: 30px;
 60 |         }
 61 |         
 62 |         #messageWrapper {
 63 |             float: left;
 64 |             vertical-align: middle;
 65 |             line-height: 30px;
 66 |         }
 67 |         
 68 |         .notifyText {
 69 |             display: none;
 70 |         }
 71 |         
 72 |         #invalidPass {
 73 |             color: red;
 74 |         }
 75 |         
 76 |         #success {
 77 |             color: green;
 78 |         }
 79 |         
 80 |         #submitPass {
 81 |             font-size: 20px;
 82 |             border-radius: 5px;
 83 |             background-color: #E7E7E7;
 84 |             border: solid gray 1px;
 85 |             float: right;
 86 |         }
 87 |         #contentFrame {
 88 |             position: absolute;
 89 |             top: 0;
 90 |             left: 0;
 91 |             width: 100%;
 92 |             height: 100%;
 93 |         }
 94 |         #attribution {
 95 |             position: absolute;
 96 |             bottom: 0;
 97 |             left: 0;
 98 |             right: 0;
 99 |             text-align: center;
100 |             padding: 10px;
101 |             font-weight: bold;
102 |             font-size: 0.8em;
103 |         }
104 |         #attribution, #attribution a {
105 |             color: #999;
106 |         }
107 |     </style>
108 |   </head>
109 |   <body>
110 |     <iframe id="contentFrame" frameBorder="0" allowfullscreen></iframe>
111 |     <div id="dialogWrap">
112 |         <div id="dialogWrapCell">
113 |             <div id="mainDialog">
114 |                 <div id="dialogText">This page is password protected.</div>
115 |                 <div id="passArea">
116 |                     <p id="passwordPrompt">Password</p>
117 |                     <input id="pass" type="password" name="pass" autofocus>
118 |                     <div>
119 |                         <span id="messageWrapper">
120 |                             <span id="invalidPass" class="notifyText">Sorry, please try again.</span>
121 |                             <span id="success" class="notifyText">Success!</span>
122 |                             &nbsp;
123 |                         </span>
124 |                         <button id="submitPass" type="button">Submit</button>
125 |                         <div style="clear: both;"></div>
126 |                     </div>
127 |                 </div>
128 |             </div>
129 |         </div>
130 |     </div>
131 |     <div id="attribution">
132 |         Protected by <a href="https://www.maxlaumeister.com/pagecrypt/">PageCrypt</a>
133 |     </div>
134 |     <script>
135 | /*
136 | CryptoJS v3.1.2
137 | code.google.com/p/crypto-js
138 | (c) 2009-2013 by Jeff Mott. All rights reserved.
139 | code.google.com/p/crypto-js/wiki/License
140 | */
141 | var CryptoJS=CryptoJS||function(u,p){var d={},l=d.lib={},s=function(){},t=l.Base={extend:function(a){s.prototype=this;var c=new s;a&&c.mixIn(a);c.hasOwnProperty("init")||(c.init=function(){c.$super.init.apply(this,arguments)});c.init.prototype=c;c.$super=this;return c},create:function(){var a=this.extend();a.init.apply(a,arguments);return a},init:function(){},mixIn:function(a){for(var c in a)a.hasOwnProperty(c)&&(this[c]=a[c]);a.hasOwnProperty("toString")&&(this.toString=a.toString)},clone:function(){return this.init.prototype.extend(this)}},
142 | r=l.WordArray=t.extend({init:function(a,c){a=this.words=a||[];this.sigBytes=c!=p?c:4*a.length},toString:function(a){return(a||v).stringify(this)},concat:function(a){var c=this.words,e=a.words,j=this.sigBytes;a=a.sigBytes;this.clamp();if(j%4)for(var k=0;k<a;k++)c[j+k>>>2]|=(e[k>>>2]>>>24-8*(k%4)&255)<<24-8*((j+k)%4);else if(65535<e.length)for(k=0;k<a;k+=4)c[j+k>>>2]=e[k>>>2];else c.push.apply(c,e);this.sigBytes+=a;return this},clamp:function(){var a=this.words,c=this.sigBytes;a[c>>>2]&=4294967295<<
143 | 32-8*(c%4);a.length=u.ceil(c/4)},clone:function(){var a=t.clone.call(this);a.words=this.words.slice(0);return a},random:function(a){for(var c=[],e=0;e<a;e+=4)c.push(4294967296*u.random()|0);return new r.init(c,a)}}),w=d.enc={},v=w.Hex={stringify:function(a){var c=a.words;a=a.sigBytes;for(var e=[],j=0;j<a;j++){var k=c[j>>>2]>>>24-8*(j%4)&255;e.push((k>>>4).toString(16));e.push((k&15).toString(16))}return e.join("")},parse:function(a){for(var c=a.length,e=[],j=0;j<c;j+=2)e[j>>>3]|=parseInt(a.substr(j,
144 | 2),16)<<24-4*(j%8);return new r.init(e,c/2)}},b=w.Latin1={stringify:function(a){var c=a.words;a=a.sigBytes;for(var e=[],j=0;j<a;j++)e.push(String.fromCharCode(c[j>>>2]>>>24-8*(j%4)&255));return e.join("")},parse:function(a){for(var c=a.length,e=[],j=0;j<c;j++)e[j>>>2]|=(a.charCodeAt(j)&255)<<24-8*(j%4);return new r.init(e,c)}},x=w.Utf8={stringify:function(a){try{return decodeURIComponent(escape(b.stringify(a)))}catch(c){throw Error("Malformed UTF-8 data");}},parse:function(a){return b.parse(unescape(encodeURIComponent(a)))}},
145 | q=l.BufferedBlockAlgorithm=t.extend({reset:function(){this._data=new r.init;this._nDataBytes=0},_append:function(a){"string"==typeof a&&(a=x.parse(a));this._data.concat(a);this._nDataBytes+=a.sigBytes},_process:function(a){var c=this._data,e=c.words,j=c.sigBytes,k=this.blockSize,b=j/(4*k),b=a?u.ceil(b):u.max((b|0)-this._minBufferSize,0);a=b*k;j=u.min(4*a,j);if(a){for(var q=0;q<a;q+=k)this._doProcessBlock(e,q);q=e.splice(0,a);c.sigBytes-=j}return new r.init(q,j)},clone:function(){var a=t.clone.call(this);
146 | a._data=this._data.clone();return a},_minBufferSize:0});l.Hasher=q.extend({cfg:t.extend(),init:function(a){this.cfg=this.cfg.extend(a);this.reset()},reset:function(){q.reset.call(this);this._doReset()},update:function(a){this._append(a);this._process();return this},finalize:function(a){a&&this._append(a);return this._doFinalize()},blockSize:16,_createHelper:function(a){return function(b,e){return(new a.init(e)).finalize(b)}},_createHmacHelper:function(a){return function(b,e){return(new n.HMAC.init(a,
147 | e)).finalize(b)}}});var n=d.algo={};return d}(Math);
148 | (function(){var u=CryptoJS,p=u.lib.WordArray;u.enc.Base64={stringify:function(d){var l=d.words,p=d.sigBytes,t=this._map;d.clamp();d=[];for(var r=0;r<p;r+=3)for(var w=(l[r>>>2]>>>24-8*(r%4)&255)<<16|(l[r+1>>>2]>>>24-8*((r+1)%4)&255)<<8|l[r+2>>>2]>>>24-8*((r+2)%4)&255,v=0;4>v&&r+0.75*v<p;v++)d.push(t.charAt(w>>>6*(3-v)&63));if(l=t.charAt(64))for(;d.length%4;)d.push(l);return d.join("")},parse:function(d){var l=d.length,s=this._map,t=s.charAt(64);t&&(t=d.indexOf(t),-1!=t&&(l=t));for(var t=[],r=0,w=0;w<
149 | l;w++)if(w%4){var v=s.indexOf(d.charAt(w-1))<<2*(w%4),b=s.indexOf(d.charAt(w))>>>6-2*(w%4);t[r>>>2]|=(v|b)<<24-8*(r%4);r++}return p.create(t,r)},_map:"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/="}})();
150 | (function(u){function p(b,n,a,c,e,j,k){b=b+(n&a|~n&c)+e+k;return(b<<j|b>>>32-j)+n}function d(b,n,a,c,e,j,k){b=b+(n&c|a&~c)+e+k;return(b<<j|b>>>32-j)+n}function l(b,n,a,c,e,j,k){b=b+(n^a^c)+e+k;return(b<<j|b>>>32-j)+n}function s(b,n,a,c,e,j,k){b=b+(a^(n|~c))+e+k;return(b<<j|b>>>32-j)+n}for(var t=CryptoJS,r=t.lib,w=r.WordArray,v=r.Hasher,r=t.algo,b=[],x=0;64>x;x++)b[x]=4294967296*u.abs(u.sin(x+1))|0;r=r.MD5=v.extend({_doReset:function(){this._hash=new w.init([1732584193,4023233417,2562383102,271733878])},
151 | _doProcessBlock:function(q,n){for(var a=0;16>a;a++){var c=n+a,e=q[c];q[c]=(e<<8|e>>>24)&16711935|(e<<24|e>>>8)&4278255360}var a=this._hash.words,c=q[n+0],e=q[n+1],j=q[n+2],k=q[n+3],z=q[n+4],r=q[n+5],t=q[n+6],w=q[n+7],v=q[n+8],A=q[n+9],B=q[n+10],C=q[n+11],u=q[n+12],D=q[n+13],E=q[n+14],x=q[n+15],f=a[0],m=a[1],g=a[2],h=a[3],f=p(f,m,g,h,c,7,b[0]),h=p(h,f,m,g,e,12,b[1]),g=p(g,h,f,m,j,17,b[2]),m=p(m,g,h,f,k,22,b[3]),f=p(f,m,g,h,z,7,b[4]),h=p(h,f,m,g,r,12,b[5]),g=p(g,h,f,m,t,17,b[6]),m=p(m,g,h,f,w,22,b[7]),
152 | f=p(f,m,g,h,v,7,b[8]),h=p(h,f,m,g,A,12,b[9]),g=p(g,h,f,m,B,17,b[10]),m=p(m,g,h,f,C,22,b[11]),f=p(f,m,g,h,u,7,b[12]),h=p(h,f,m,g,D,12,b[13]),g=p(g,h,f,m,E,17,b[14]),m=p(m,g,h,f,x,22,b[15]),f=d(f,m,g,h,e,5,b[16]),h=d(h,f,m,g,t,9,b[17]),g=d(g,h,f,m,C,14,b[18]),m=d(m,g,h,f,c,20,b[19]),f=d(f,m,g,h,r,5,b[20]),h=d(h,f,m,g,B,9,b[21]),g=d(g,h,f,m,x,14,b[22]),m=d(m,g,h,f,z,20,b[23]),f=d(f,m,g,h,A,5,b[24]),h=d(h,f,m,g,E,9,b[25]),g=d(g,h,f,m,k,14,b[26]),m=d(m,g,h,f,v,20,b[27]),f=d(f,m,g,h,D,5,b[28]),h=d(h,f,
153 | m,g,j,9,b[29]),g=d(g,h,f,m,w,14,b[30]),m=d(m,g,h,f,u,20,b[31]),f=l(f,m,g,h,r,4,b[32]),h=l(h,f,m,g,v,11,b[33]),g=l(g,h,f,m,C,16,b[34]),m=l(m,g,h,f,E,23,b[35]),f=l(f,m,g,h,e,4,b[36]),h=l(h,f,m,g,z,11,b[37]),g=l(g,h,f,m,w,16,b[38]),m=l(m,g,h,f,B,23,b[39]),f=l(f,m,g,h,D,4,b[40]),h=l(h,f,m,g,c,11,b[41]),g=l(g,h,f,m,k,16,b[42]),m=l(m,g,h,f,t,23,b[43]),f=l(f,m,g,h,A,4,b[44]),h=l(h,f,m,g,u,11,b[45]),g=l(g,h,f,m,x,16,b[46]),m=l(m,g,h,f,j,23,b[47]),f=s(f,m,g,h,c,6,b[48]),h=s(h,f,m,g,w,10,b[49]),g=s(g,h,f,m,
154 | E,15,b[50]),m=s(m,g,h,f,r,21,b[51]),f=s(f,m,g,h,u,6,b[52]),h=s(h,f,m,g,k,10,b[53]),g=s(g,h,f,m,B,15,b[54]),m=s(m,g,h,f,e,21,b[55]),f=s(f,m,g,h,v,6,b[56]),h=s(h,f,m,g,x,10,b[57]),g=s(g,h,f,m,t,15,b[58]),m=s(m,g,h,f,D,21,b[59]),f=s(f,m,g,h,z,6,b[60]),h=s(h,f,m,g,C,10,b[61]),g=s(g,h,f,m,j,15,b[62]),m=s(m,g,h,f,A,21,b[63]);a[0]=a[0]+f|0;a[1]=a[1]+m|0;a[2]=a[2]+g|0;a[3]=a[3]+h|0},_doFinalize:function(){var b=this._data,n=b.words,a=8*this._nDataBytes,c=8*b.sigBytes;n[c>>>5]|=128<<24-c%32;var e=u.floor(a/
155 | 4294967296);n[(c+64>>>9<<4)+15]=(e<<8|e>>>24)&16711935|(e<<24|e>>>8)&4278255360;n[(c+64>>>9<<4)+14]=(a<<8|a>>>24)&16711935|(a<<24|a>>>8)&4278255360;b.sigBytes=4*(n.length+1);this._process();b=this._hash;n=b.words;for(a=0;4>a;a++)c=n[a],n[a]=(c<<8|c>>>24)&16711935|(c<<24|c>>>8)&4278255360;return b},clone:function(){var b=v.clone.call(this);b._hash=this._hash.clone();return b}});t.MD5=v._createHelper(r);t.HmacMD5=v._createHmacHelper(r)})(Math);
156 | (function(){var u=CryptoJS,p=u.lib,d=p.Base,l=p.WordArray,p=u.algo,s=p.EvpKDF=d.extend({cfg:d.extend({keySize:4,hasher:p.MD5,iterations:1}),init:function(d){this.cfg=this.cfg.extend(d)},compute:function(d,r){for(var p=this.cfg,s=p.hasher.create(),b=l.create(),u=b.words,q=p.keySize,p=p.iterations;u.length<q;){n&&s.update(n);var n=s.update(d).finalize(r);s.reset();for(var a=1;a<p;a++)n=s.finalize(n),s.reset();b.concat(n)}b.sigBytes=4*q;return b}});u.EvpKDF=function(d,l,p){return s.create(p).compute(d,
157 | l)}})();
158 | CryptoJS.lib.Cipher||function(u){var p=CryptoJS,d=p.lib,l=d.Base,s=d.WordArray,t=d.BufferedBlockAlgorithm,r=p.enc.Base64,w=p.algo.EvpKDF,v=d.Cipher=t.extend({cfg:l.extend(),createEncryptor:function(e,a){return this.create(this._ENC_XFORM_MODE,e,a)},createDecryptor:function(e,a){return this.create(this._DEC_XFORM_MODE,e,a)},init:function(e,a,b){this.cfg=this.cfg.extend(b);this._xformMode=e;this._key=a;this.reset()},reset:function(){t.reset.call(this);this._doReset()},process:function(e){this._append(e);return this._process()},
159 | finalize:function(e){e&&this._append(e);return this._doFinalize()},keySize:4,ivSize:4,_ENC_XFORM_MODE:1,_DEC_XFORM_MODE:2,_createHelper:function(e){return{encrypt:function(b,k,d){return("string"==typeof k?c:a).encrypt(e,b,k,d)},decrypt:function(b,k,d){return("string"==typeof k?c:a).decrypt(e,b,k,d)}}}});d.StreamCipher=v.extend({_doFinalize:function(){return this._process(!0)},blockSize:1});var b=p.mode={},x=function(e,a,b){var c=this._iv;c?this._iv=u:c=this._prevBlock;for(var d=0;d<b;d++)e[a+d]^=
160 | c[d]},q=(d.BlockCipherMode=l.extend({createEncryptor:function(e,a){return this.Encryptor.create(e,a)},createDecryptor:function(e,a){return this.Decryptor.create(e,a)},init:function(e,a){this._cipher=e;this._iv=a}})).extend();q.Encryptor=q.extend({processBlock:function(e,a){var b=this._cipher,c=b.blockSize;x.call(this,e,a,c);b.encryptBlock(e,a);this._prevBlock=e.slice(a,a+c)}});q.Decryptor=q.extend({processBlock:function(e,a){var b=this._cipher,c=b.blockSize,d=e.slice(a,a+c);b.decryptBlock(e,a);x.call(this,
161 | e,a,c);this._prevBlock=d}});b=b.CBC=q;q=(p.pad={}).Pkcs7={pad:function(a,b){for(var c=4*b,c=c-a.sigBytes%c,d=c<<24|c<<16|c<<8|c,l=[],n=0;n<c;n+=4)l.push(d);c=s.create(l,c);a.concat(c)},unpad:function(a){a.sigBytes-=a.words[a.sigBytes-1>>>2]&255}};d.BlockCipher=v.extend({cfg:v.cfg.extend({mode:b,padding:q}),reset:function(){v.reset.call(this);var a=this.cfg,b=a.iv,a=a.mode;if(this._xformMode==this._ENC_XFORM_MODE)var c=a.createEncryptor;else c=a.createDecryptor,this._minBufferSize=1;this._mode=c.call(a,
162 | this,b&&b.words)},_doProcessBlock:function(a,b){this._mode.processBlock(a,b)},_doFinalize:function(){var a=this.cfg.padding;if(this._xformMode==this._ENC_XFORM_MODE){a.pad(this._data,this.blockSize);var b=this._process(!0)}else b=this._process(!0),a.unpad(b);return b},blockSize:4});var n=d.CipherParams=l.extend({init:function(a){this.mixIn(a)},toString:function(a){return(a||this.formatter).stringify(this)}}),b=(p.format={}).OpenSSL={stringify:function(a){var b=a.ciphertext;a=a.salt;return(a?s.create([1398893684,
163 | 1701076831]).concat(a).concat(b):b).toString(r)},parse:function(a){a=r.parse(a);var b=a.words;if(1398893684==b[0]&&1701076831==b[1]){var c=s.create(b.slice(2,4));b.splice(0,4);a.sigBytes-=16}return n.create({ciphertext:a,salt:c})}},a=d.SerializableCipher=l.extend({cfg:l.extend({format:b}),encrypt:function(a,b,c,d){d=this.cfg.extend(d);var l=a.createEncryptor(c,d);b=l.finalize(b);l=l.cfg;return n.create({ciphertext:b,key:c,iv:l.iv,algorithm:a,mode:l.mode,padding:l.padding,blockSize:a.blockSize,formatter:d.format})},
164 | decrypt:function(a,b,c,d){d=this.cfg.extend(d);b=this._parse(b,d.format);return a.createDecryptor(c,d).finalize(b.ciphertext)},_parse:function(a,b){return"string"==typeof a?b.parse(a,this):a}}),p=(p.kdf={}).OpenSSL={execute:function(a,b,c,d){d||(d=s.random(8));a=w.create({keySize:b+c}).compute(a,d);c=s.create(a.words.slice(b),4*c);a.sigBytes=4*b;return n.create({key:a,iv:c,salt:d})}},c=d.PasswordBasedCipher=a.extend({cfg:a.cfg.extend({kdf:p}),encrypt:function(b,c,d,l){l=this.cfg.extend(l);d=l.kdf.execute(d,
165 | b.keySize,b.ivSize);l.iv=d.iv;b=a.encrypt.call(this,b,c,d.key,l);b.mixIn(d);return b},decrypt:function(b,c,d,l){l=this.cfg.extend(l);c=this._parse(c,l.format);d=l.kdf.execute(d,b.keySize,b.ivSize,c.salt);l.iv=d.iv;return a.decrypt.call(this,b,c,d.key,l)}})}();
166 | (function(){for(var u=CryptoJS,p=u.lib.BlockCipher,d=u.algo,l=[],s=[],t=[],r=[],w=[],v=[],b=[],x=[],q=[],n=[],a=[],c=0;256>c;c++)a[c]=128>c?c<<1:c<<1^283;for(var e=0,j=0,c=0;256>c;c++){var k=j^j<<1^j<<2^j<<3^j<<4,k=k>>>8^k&255^99;l[e]=k;s[k]=e;var z=a[e],F=a[z],G=a[F],y=257*a[k]^16843008*k;t[e]=y<<24|y>>>8;r[e]=y<<16|y>>>16;w[e]=y<<8|y>>>24;v[e]=y;y=16843009*G^65537*F^257*z^16843008*e;b[k]=y<<24|y>>>8;x[k]=y<<16|y>>>16;q[k]=y<<8|y>>>24;n[k]=y;e?(e=z^a[a[a[G^z]]],j^=a[a[j]]):e=j=1}var H=[0,1,2,4,8,
167 | 16,32,64,128,27,54],d=d.AES=p.extend({_doReset:function(){for(var a=this._key,c=a.words,d=a.sigBytes/4,a=4*((this._nRounds=d+6)+1),e=this._keySchedule=[],j=0;j<a;j++)if(j<d)e[j]=c[j];else{var k=e[j-1];j%d?6<d&&4==j%d&&(k=l[k>>>24]<<24|l[k>>>16&255]<<16|l[k>>>8&255]<<8|l[k&255]):(k=k<<8|k>>>24,k=l[k>>>24]<<24|l[k>>>16&255]<<16|l[k>>>8&255]<<8|l[k&255],k^=H[j/d|0]<<24);e[j]=e[j-d]^k}c=this._invKeySchedule=[];for(d=0;d<a;d++)j=a-d,k=d%4?e[j]:e[j-4],c[d]=4>d||4>=j?k:b[l[k>>>24]]^x[l[k>>>16&255]]^q[l[k>>>
168 | 8&255]]^n[l[k&255]]},encryptBlock:function(a,b){this._doCryptBlock(a,b,this._keySchedule,t,r,w,v,l)},decryptBlock:function(a,c){var d=a[c+1];a[c+1]=a[c+3];a[c+3]=d;this._doCryptBlock(a,c,this._invKeySchedule,b,x,q,n,s);d=a[c+1];a[c+1]=a[c+3];a[c+3]=d},_doCryptBlock:function(a,b,c,d,e,j,l,f){for(var m=this._nRounds,g=a[b]^c[0],h=a[b+1]^c[1],k=a[b+2]^c[2],n=a[b+3]^c[3],p=4,r=1;r<m;r++)var q=d[g>>>24]^e[h>>>16&255]^j[k>>>8&255]^l[n&255]^c[p++],s=d[h>>>24]^e[k>>>16&255]^j[n>>>8&255]^l[g&255]^c[p++],t=
169 | d[k>>>24]^e[n>>>16&255]^j[g>>>8&255]^l[h&255]^c[p++],n=d[n>>>24]^e[g>>>16&255]^j[h>>>8&255]^l[k&255]^c[p++],g=q,h=s,k=t;q=(f[g>>>24]<<24|f[h>>>16&255]<<16|f[k>>>8&255]<<8|f[n&255])^c[p++];s=(f[h>>>24]<<24|f[k>>>16&255]<<16|f[n>>>8&255]<<8|f[g&255])^c[p++];t=(f[k>>>24]<<24|f[n>>>16&255]<<16|f[g>>>8&255]<<8|f[h&255])^c[p++];n=(f[n>>>24]<<24|f[g>>>16&255]<<16|f[h>>>8&255]<<8|f[k&255])^c[p++];a[b]=q;a[b+1]=s;a[b+2]=t;a[b+3]=n},keySize:8});u.AES=p._createHelper(d)})();
170 |     </script>
171 |     <script>
172 | /*
173 | CryptoJS v3.1.2
174 | code.google.com/p/crypto-js
175 | (c) 2009-2013 by Jeff Mott. All rights reserved.
176 | code.google.com/p/crypto-js/wiki/License
177 | */
178 | var CryptoJS=CryptoJS||function(g,j){var e={},d=e.lib={},m=function(){},n=d.Base={extend:function(a){m.prototype=this;var c=new m;a&&c.mixIn(a);c.hasOwnProperty("init")||(c.init=function(){c.$super.init.apply(this,arguments)});c.init.prototype=c;c.$super=this;return c},create:function(){var a=this.extend();a.init.apply(a,arguments);return a},init:function(){},mixIn:function(a){for(var c in a)a.hasOwnProperty(c)&&(this[c]=a[c]);a.hasOwnProperty("toString")&&(this.toString=a.toString)},clone:function(){return this.init.prototype.extend(this)}},
179 | q=d.WordArray=n.extend({init:function(a,c){a=this.words=a||[];this.sigBytes=c!=j?c:4*a.length},toString:function(a){return(a||l).stringify(this)},concat:function(a){var c=this.words,p=a.words,f=this.sigBytes;a=a.sigBytes;this.clamp();if(f%4)for(var b=0;b<a;b++)c[f+b>>>2]|=(p[b>>>2]>>>24-8*(b%4)&255)<<24-8*((f+b)%4);else if(65535<p.length)for(b=0;b<a;b+=4)c[f+b>>>2]=p[b>>>2];else c.push.apply(c,p);this.sigBytes+=a;return this},clamp:function(){var a=this.words,c=this.sigBytes;a[c>>>2]&=4294967295<<
180 | 32-8*(c%4);a.length=g.ceil(c/4)},clone:function(){var a=n.clone.call(this);a.words=this.words.slice(0);return a},random:function(a){for(var c=[],b=0;b<a;b+=4)c.push(4294967296*g.random()|0);return new q.init(c,a)}}),b=e.enc={},l=b.Hex={stringify:function(a){var c=a.words;a=a.sigBytes;for(var b=[],f=0;f<a;f++){var d=c[f>>>2]>>>24-8*(f%4)&255;b.push((d>>>4).toString(16));b.push((d&15).toString(16))}return b.join("")},parse:function(a){for(var c=a.length,b=[],f=0;f<c;f+=2)b[f>>>3]|=parseInt(a.substr(f,
181 | 2),16)<<24-4*(f%8);return new q.init(b,c/2)}},k=b.Latin1={stringify:function(a){var c=a.words;a=a.sigBytes;for(var b=[],f=0;f<a;f++)b.push(String.fromCharCode(c[f>>>2]>>>24-8*(f%4)&255));return b.join("")},parse:function(a){for(var c=a.length,b=[],f=0;f<c;f++)b[f>>>2]|=(a.charCodeAt(f)&255)<<24-8*(f%4);return new q.init(b,c)}},h=b.Utf8={stringify:function(a){try{return decodeURIComponent(escape(k.stringify(a)))}catch(b){throw Error("Malformed UTF-8 data");}},parse:function(a){return k.parse(unescape(encodeURIComponent(a)))}},
182 | u=d.BufferedBlockAlgorithm=n.extend({reset:function(){this._data=new q.init;this._nDataBytes=0},_append:function(a){"string"==typeof a&&(a=h.parse(a));this._data.concat(a);this._nDataBytes+=a.sigBytes},_process:function(a){var b=this._data,d=b.words,f=b.sigBytes,l=this.blockSize,e=f/(4*l),e=a?g.ceil(e):g.max((e|0)-this._minBufferSize,0);a=e*l;f=g.min(4*a,f);if(a){for(var h=0;h<a;h+=l)this._doProcessBlock(d,h);h=d.splice(0,a);b.sigBytes-=f}return new q.init(h,f)},clone:function(){var a=n.clone.call(this);
183 | a._data=this._data.clone();return a},_minBufferSize:0});d.Hasher=u.extend({cfg:n.extend(),init:function(a){this.cfg=this.cfg.extend(a);this.reset()},reset:function(){u.reset.call(this);this._doReset()},update:function(a){this._append(a);this._process();return this},finalize:function(a){a&&this._append(a);return this._doFinalize()},blockSize:16,_createHelper:function(a){return function(b,d){return(new a.init(d)).finalize(b)}},_createHmacHelper:function(a){return function(b,d){return(new w.HMAC.init(a,
184 | d)).finalize(b)}}});var w=e.algo={};return e}(Math);
185 | (function(){var g=CryptoJS,j=g.lib,e=j.WordArray,d=j.Hasher,m=[],j=g.algo.SHA1=d.extend({_doReset:function(){this._hash=new e.init([1732584193,4023233417,2562383102,271733878,3285377520])},_doProcessBlock:function(d,e){for(var b=this._hash.words,l=b[0],k=b[1],h=b[2],g=b[3],j=b[4],a=0;80>a;a++){if(16>a)m[a]=d[e+a]|0;else{var c=m[a-3]^m[a-8]^m[a-14]^m[a-16];m[a]=c<<1|c>>>31}c=(l<<5|l>>>27)+j+m[a];c=20>a?c+((k&h|~k&g)+1518500249):40>a?c+((k^h^g)+1859775393):60>a?c+((k&h|k&g|h&g)-1894007588):c+((k^h^
186 | g)-899497514);j=g;g=h;h=k<<30|k>>>2;k=l;l=c}b[0]=b[0]+l|0;b[1]=b[1]+k|0;b[2]=b[2]+h|0;b[3]=b[3]+g|0;b[4]=b[4]+j|0},_doFinalize:function(){var d=this._data,e=d.words,b=8*this._nDataBytes,l=8*d.sigBytes;e[l>>>5]|=128<<24-l%32;e[(l+64>>>9<<4)+14]=Math.floor(b/4294967296);e[(l+64>>>9<<4)+15]=b;d.sigBytes=4*e.length;this._process();return this._hash},clone:function(){var e=d.clone.call(this);e._hash=this._hash.clone();return e}});g.SHA1=d._createHelper(j);g.HmacSHA1=d._createHmacHelper(j)})();
187 | (function(){var g=CryptoJS,j=g.enc.Utf8;g.algo.HMAC=g.lib.Base.extend({init:function(e,d){e=this._hasher=new e.init;"string"==typeof d&&(d=j.parse(d));var g=e.blockSize,n=4*g;d.sigBytes>n&&(d=e.finalize(d));d.clamp();for(var q=this._oKey=d.clone(),b=this._iKey=d.clone(),l=q.words,k=b.words,h=0;h<g;h++)l[h]^=1549556828,k[h]^=909522486;q.sigBytes=b.sigBytes=n;this.reset()},reset:function(){var e=this._hasher;e.reset();e.update(this._iKey)},update:function(e){this._hasher.update(e);return this},finalize:function(e){var d=
188 | this._hasher;e=d.finalize(e);d.reset();return d.finalize(this._oKey.clone().concat(e))}})})();
189 | (function(){var g=CryptoJS,j=g.lib,e=j.Base,d=j.WordArray,j=g.algo,m=j.HMAC,n=j.PBKDF2=e.extend({cfg:e.extend({keySize:4,hasher:j.SHA1,iterations:1}),init:function(d){this.cfg=this.cfg.extend(d)},compute:function(e,b){for(var g=this.cfg,k=m.create(g.hasher,e),h=d.create(),j=d.create([1]),n=h.words,a=j.words,c=g.keySize,g=g.iterations;n.length<c;){var p=k.update(b).finalize(j);k.reset();for(var f=p.words,v=f.length,s=p,t=1;t<g;t++){s=k.finalize(s);k.reset();for(var x=s.words,r=0;r<v;r++)f[r]^=x[r]}h.concat(p);
190 | a[0]++}h.sigBytes=4*c;return h}});g.PBKDF2=function(d,b,e){return n.create(e).compute(d,b)}})();
191 |     </script>
192 |     <script>
193 |         /*! srcdoc-polyfill - v0.1.1 - 2013-03-01
194 |         * http://github.com/jugglinmike/srcdoc-polyfill/
195 |         * Copyright (c) 2013 Mike Pennisi; Licensed MIT */
196 |         (function( window, document, undefined ) {
197 | 	
198 | 	        var idx, iframes;
199 | 	        var _srcDoc = window.srcDoc;
200 | 	        var isCompliant = !!("srcdoc" in document.createElement("iframe"));
201 | 	        var implementations = {
202 | 		        compliant: function( iframe, content ) {
203 | 
204 | 			        if (content) {
205 | 				        iframe.setAttribute("srcdoc", content);
206 | 			        }
207 | 		        },
208 | 		        legacy: function( iframe, content ) {
209 | 
210 | 			        var jsUrl;
211 | 
212 | 			        if (!iframe || !iframe.getAttribute) {
213 | 				        return;
214 | 			        }
215 | 
216 | 			        if (!content) {
217 | 				        content = iframe.getAttribute("srcdoc");
218 | 			        } else {
219 | 				        iframe.setAttribute("srcdoc", content);
220 | 			        }
221 | 
222 | 			        if (content) {
223 | 				        // The value returned by a script-targeted URL will be used as
224 | 				        // the iFrame's content. Create such a URL which returns the
225 | 				        // iFrame element's `srcdoc` attribute.
226 | 				        jsUrl = "javascript: window.frameElement.getAttribute('srcdoc');";
227 | 
228 | 				        iframe.setAttribute("src", jsUrl);
229 | 
230 | 				        // Explicitly set the iFrame's window.location for
231 | 				        // compatability with IE9, which does not react to changes in
232 | 				        // the `src` attribute when it is a `javascript:` URL, for
233 | 				        // some reason
234 | 				        if (iframe.contentWindow) {
235 | 					        iframe.contentWindow.location = jsUrl;
236 | 				        }
237 | 			        }
238 | 		        }
239 | 	        };
240 | 	        var srcDoc = window.srcDoc = {
241 | 		        // Assume the best
242 | 		        set: implementations.compliant,
243 | 		        noConflict: function() {
244 | 			        window.srcDoc = _srcDoc;
245 | 			        return srcDoc;
246 | 		        }
247 | 	        };
248 | 
249 | 	        // If the browser supports srcdoc, no shimming is necessary
250 | 	        if (isCompliant) {
251 | 		        return;
252 | 	        }
253 | 
254 | 	        srcDoc.set = implementations.legacy;
255 | 
256 | 	        // Automatically shim any iframes already present in the document
257 | 	        iframes = document.getElementsByTagName("iframe");
258 | 	        idx = iframes.length;
259 | 
260 | 	        while (idx--) {
261 | 		        srcDoc.set( iframes[idx] );
262 | 	        }
263 | 
264 |         }( this, this.document ));
265 |     </script>
266 |     <script>
267 |         var pl = /*{{ENCRYPTED_PAYLOAD}}*/"";
268 |         
269 |         var submitPass = document.getElementById('submitPass');
270 |         var passEl = document.getElementById('pass');
271 |         var invalidPassEl = document.getElementById('invalidPass');
272 |         var successEl = document.getElementById('success');
273 |         var contentFrame = document.getElementById('contentFrame');
274 |         
275 |         if (pl === "") {
276 |             submitPass.disabled = true;
277 |             passEl.disabled = true;
278 |             alert("This page is meant to be used with the encryption tool. It doesn't work standalone.");
279 |         }
280 |         
281 |         function doSubmit(evt) {
282 |             try {
283 |                 var decrypted = decryptFile(CryptoJS.enc.Base64.parse(pl.data), passEl.value, CryptoJS.enc.Base64.parse(pl.salt), CryptoJS.enc.Base64.parse(pl.iv));
284 |                 if (decrypted === "") throw "No data returned";
285 |                 
286 |                 // Set default iframe link targets to _top so all links break out of the iframe
287 |                 decrypted = decrypted.replace("<head>", "<head><base href=\".\" target=\"_top\">");
288 |                 
289 |                 srcDoc.set(contentFrame, decrypted);
290 |                 
291 |                 successEl.style.display = "inline";
292 |                 passEl.disabled = true;
293 |                 submitPass.disabled = true;
294 |                 setTimeout(function() {
295 |                     dialogWrap.style.display = "none";
296 |                 }, 1000);
297 |             } catch (e) {
298 |                 invalidPassEl.style.display = "inline";
299 |                 passEl.value = "";
300 |             }
301 |         }
302 |         
303 |         submitPass.onclick = doSubmit;
304 |         passEl.onkeypress = function(e){
305 |             if (!e) e = window.event;
306 |             var keyCode = e.keyCode || e.which;
307 |             invalidPassEl.style.display = "none";
308 |             if (keyCode == '13'){
309 |               // Enter pressed
310 |               doSubmit();
311 |               return false;
312 |             }
313 |         }
314 |         
315 |         function decryptFile(contents, password, salt, iv) {
316 |             var _cp = CryptoJS.lib.CipherParams.create({
317 |                 ciphertext: contents
318 |             });
319 |             var key = CryptoJS.PBKDF2(password, salt, { keySize: 256/32, iterations: 100 });
320 |             var decrypted = CryptoJS.AES.decrypt(_cp, key, {iv: iv});
321 |             
322 |             return decrypted.toString(CryptoJS.enc.Utf8);
323 |         }
324 |     </script>
325 |   </body>
326 | </html>
327 | 


--------------------------------------------------------------------------------
/legacy/decryptTemplate.html:
--------------------------------------------------------------------------------
  1 | <!DOCTYPE html>
  2 | <html lang="en">
  3 |   <head>
  4 |     <meta charset="utf-8">
  5 |     <meta name="viewport" content="width=device-width, initial-scale=1">
  6 |     <meta name="robots" content="noindex, nofollow">
  7 |     <title>Password Protected Page</title>
  8 |     <style>
  9 |         html, body {
 10 |             margin: 0;
 11 |             width: 100%;
 12 |             height: 100%;
 13 |             font-family: Arial, Helvetica, sans-serif;
 14 |         }
 15 |         #dialogText {
 16 |             padding: 10px 30px;
 17 |             color: white;
 18 |             background-color: #333333;
 19 |         }
 20 |         
 21 |         #dialogWrap {
 22 |             position: absolute;
 23 |             top: 0;
 24 |             left: 0;
 25 |             width: 100%;
 26 |             height: 100%;
 27 |             display: table;
 28 |             background-color: #EEEEEE;
 29 |         }
 30 |         
 31 |         #dialogWrapCell {
 32 |             display: table-cell;
 33 |             text-align: center;
 34 |             vertical-align: middle;
 35 |         }
 36 |         
 37 |         #mainDialog {
 38 |             max-width: 400px;
 39 |             margin: 5px;
 40 |             border: solid #AAAAAA 1px;
 41 |             border-radius: 10px;
 42 |             box-shadow: 3px 3px 5px 3px #AAAAAA;
 43 |             margin-left: auto;
 44 |             margin-right: auto;
 45 |             background-color: #FFFFFF;
 46 |             overflow: hidden;
 47 |             text-align: left;
 48 |         }
 49 |         #passArea {
 50 |             padding: 20px 30px;
 51 |             background-color: white;
 52 |         }
 53 |         #passArea > * {
 54 |             margin: 5px auto;
 55 |         }
 56 |         #pass {
 57 |             width: 100%;
 58 |             height: 40px;
 59 |             font-size: 30px;
 60 |         }
 61 |         
 62 |         #messageWrapper {
 63 |             float: left;
 64 |             vertical-align: middle;
 65 |             line-height: 30px;
 66 |         }
 67 |         
 68 |         .notifyText {
 69 |             display: none;
 70 |         }
 71 |         
 72 |         #invalidPass {
 73 |             color: red;
 74 |         }
 75 |         
 76 |         #success {
 77 |             color: green;
 78 |         }
 79 |         
 80 |         #submitPass {
 81 |             font-size: 20px;
 82 |             border-radius: 5px;
 83 |             background-color: #E7E7E7;
 84 |             border: solid gray 1px;
 85 |             float: right;
 86 |         }
 87 |         #contentFrame {
 88 |             position: absolute;
 89 |             top: 0;
 90 |             left: 0;
 91 |             width: 100%;
 92 |             height: 100%;
 93 |         }
 94 |         #attribution {
 95 |             position: absolute;
 96 |             bottom: 0;
 97 |             left: 0;
 98 |             right: 0;
 99 |             text-align: center;
100 |             padding: 10px;
101 |             font-weight: bold;
102 |             font-size: 0.8em;
103 |         }
104 |         #attribution, #attribution a {
105 |             color: #999;
106 |         }
107 |     </style>
108 |   </head>
109 |   <body>
110 |     <iframe id="contentFrame" frameBorder="0" allowfullscreen></iframe>
111 |     <div id="dialogWrap">
112 |         <div id="dialogWrapCell">
113 |             <div id="mainDialog">
114 |                 <div id="dialogText">This page is password protected.</div>
115 |                 <div id="passArea">
116 |                     <p id="passwordPrompt">Password</p>
117 |                     <input id="pass" type="password" name="pass" autofocus>
118 |                     <div>
119 |                         <span id="messageWrapper">
120 |                             <span id="invalidPass" class="notifyText">Sorry, please try again.</span>
121 |                             <span id="success" class="notifyText">Success!</span>
122 |                             &nbsp;
123 |                         </span>
124 |                         <button id="submitPass" type="button">Submit</button>
125 |                         <div style="clear: both;"></div>
126 |                     </div>
127 |                 </div>
128 |             </div>
129 |         </div>
130 |     </div>
131 |     <div id="attribution">
132 |         Protected by <a href="https://www.maxlaumeister.com/pagecrypt/">PageCrypt</a>
133 |     </div>
134 |     <script>
135 | /*
136 | CryptoJS v3.1.2
137 | code.google.com/p/crypto-js
138 | (c) 2009-2013 by Jeff Mott. All rights reserved.
139 | code.google.com/p/crypto-js/wiki/License
140 | */
141 | var CryptoJS=CryptoJS||function(u,p){var d={},l=d.lib={},s=function(){},t=l.Base={extend:function(a){s.prototype=this;var c=new s;a&&c.mixIn(a);c.hasOwnProperty("init")||(c.init=function(){c.$super.init.apply(this,arguments)});c.init.prototype=c;c.$super=this;return c},create:function(){var a=this.extend();a.init.apply(a,arguments);return a},init:function(){},mixIn:function(a){for(var c in a)a.hasOwnProperty(c)&&(this[c]=a[c]);a.hasOwnProperty("toString")&&(this.toString=a.toString)},clone:function(){return this.init.prototype.extend(this)}},
142 | r=l.WordArray=t.extend({init:function(a,c){a=this.words=a||[];this.sigBytes=c!=p?c:4*a.length},toString:function(a){return(a||v).stringify(this)},concat:function(a){var c=this.words,e=a.words,j=this.sigBytes;a=a.sigBytes;this.clamp();if(j%4)for(var k=0;k<a;k++)c[j+k>>>2]|=(e[k>>>2]>>>24-8*(k%4)&255)<<24-8*((j+k)%4);else if(65535<e.length)for(k=0;k<a;k+=4)c[j+k>>>2]=e[k>>>2];else c.push.apply(c,e);this.sigBytes+=a;return this},clamp:function(){var a=this.words,c=this.sigBytes;a[c>>>2]&=4294967295<<
143 | 32-8*(c%4);a.length=u.ceil(c/4)},clone:function(){var a=t.clone.call(this);a.words=this.words.slice(0);return a},random:function(a){for(var c=[],e=0;e<a;e+=4)c.push(4294967296*u.random()|0);return new r.init(c,a)}}),w=d.enc={},v=w.Hex={stringify:function(a){var c=a.words;a=a.sigBytes;for(var e=[],j=0;j<a;j++){var k=c[j>>>2]>>>24-8*(j%4)&255;e.push((k>>>4).toString(16));e.push((k&15).toString(16))}return e.join("")},parse:function(a){for(var c=a.length,e=[],j=0;j<c;j+=2)e[j>>>3]|=parseInt(a.substr(j,
144 | 2),16)<<24-4*(j%8);return new r.init(e,c/2)}},b=w.Latin1={stringify:function(a){var c=a.words;a=a.sigBytes;for(var e=[],j=0;j<a;j++)e.push(String.fromCharCode(c[j>>>2]>>>24-8*(j%4)&255));return e.join("")},parse:function(a){for(var c=a.length,e=[],j=0;j<c;j++)e[j>>>2]|=(a.charCodeAt(j)&255)<<24-8*(j%4);return new r.init(e,c)}},x=w.Utf8={stringify:function(a){try{return decodeURIComponent(escape(b.stringify(a)))}catch(c){throw Error("Malformed UTF-8 data");}},parse:function(a){return b.parse(unescape(encodeURIComponent(a)))}},
145 | q=l.BufferedBlockAlgorithm=t.extend({reset:function(){this._data=new r.init;this._nDataBytes=0},_append:function(a){"string"==typeof a&&(a=x.parse(a));this._data.concat(a);this._nDataBytes+=a.sigBytes},_process:function(a){var c=this._data,e=c.words,j=c.sigBytes,k=this.blockSize,b=j/(4*k),b=a?u.ceil(b):u.max((b|0)-this._minBufferSize,0);a=b*k;j=u.min(4*a,j);if(a){for(var q=0;q<a;q+=k)this._doProcessBlock(e,q);q=e.splice(0,a);c.sigBytes-=j}return new r.init(q,j)},clone:function(){var a=t.clone.call(this);
146 | a._data=this._data.clone();return a},_minBufferSize:0});l.Hasher=q.extend({cfg:t.extend(),init:function(a){this.cfg=this.cfg.extend(a);this.reset()},reset:function(){q.reset.call(this);this._doReset()},update:function(a){this._append(a);this._process();return this},finalize:function(a){a&&this._append(a);return this._doFinalize()},blockSize:16,_createHelper:function(a){return function(b,e){return(new a.init(e)).finalize(b)}},_createHmacHelper:function(a){return function(b,e){return(new n.HMAC.init(a,
147 | e)).finalize(b)}}});var n=d.algo={};return d}(Math);
148 | (function(){var u=CryptoJS,p=u.lib.WordArray;u.enc.Base64={stringify:function(d){var l=d.words,p=d.sigBytes,t=this._map;d.clamp();d=[];for(var r=0;r<p;r+=3)for(var w=(l[r>>>2]>>>24-8*(r%4)&255)<<16|(l[r+1>>>2]>>>24-8*((r+1)%4)&255)<<8|l[r+2>>>2]>>>24-8*((r+2)%4)&255,v=0;4>v&&r+0.75*v<p;v++)d.push(t.charAt(w>>>6*(3-v)&63));if(l=t.charAt(64))for(;d.length%4;)d.push(l);return d.join("")},parse:function(d){var l=d.length,s=this._map,t=s.charAt(64);t&&(t=d.indexOf(t),-1!=t&&(l=t));for(var t=[],r=0,w=0;w<
149 | l;w++)if(w%4){var v=s.indexOf(d.charAt(w-1))<<2*(w%4),b=s.indexOf(d.charAt(w))>>>6-2*(w%4);t[r>>>2]|=(v|b)<<24-8*(r%4);r++}return p.create(t,r)},_map:"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/="}})();
150 | (function(u){function p(b,n,a,c,e,j,k){b=b+(n&a|~n&c)+e+k;return(b<<j|b>>>32-j)+n}function d(b,n,a,c,e,j,k){b=b+(n&c|a&~c)+e+k;return(b<<j|b>>>32-j)+n}function l(b,n,a,c,e,j,k){b=b+(n^a^c)+e+k;return(b<<j|b>>>32-j)+n}function s(b,n,a,c,e,j,k){b=b+(a^(n|~c))+e+k;return(b<<j|b>>>32-j)+n}for(var t=CryptoJS,r=t.lib,w=r.WordArray,v=r.Hasher,r=t.algo,b=[],x=0;64>x;x++)b[x]=4294967296*u.abs(u.sin(x+1))|0;r=r.MD5=v.extend({_doReset:function(){this._hash=new w.init([1732584193,4023233417,2562383102,271733878])},
151 | _doProcessBlock:function(q,n){for(var a=0;16>a;a++){var c=n+a,e=q[c];q[c]=(e<<8|e>>>24)&16711935|(e<<24|e>>>8)&4278255360}var a=this._hash.words,c=q[n+0],e=q[n+1],j=q[n+2],k=q[n+3],z=q[n+4],r=q[n+5],t=q[n+6],w=q[n+7],v=q[n+8],A=q[n+9],B=q[n+10],C=q[n+11],u=q[n+12],D=q[n+13],E=q[n+14],x=q[n+15],f=a[0],m=a[1],g=a[2],h=a[3],f=p(f,m,g,h,c,7,b[0]),h=p(h,f,m,g,e,12,b[1]),g=p(g,h,f,m,j,17,b[2]),m=p(m,g,h,f,k,22,b[3]),f=p(f,m,g,h,z,7,b[4]),h=p(h,f,m,g,r,12,b[5]),g=p(g,h,f,m,t,17,b[6]),m=p(m,g,h,f,w,22,b[7]),
152 | f=p(f,m,g,h,v,7,b[8]),h=p(h,f,m,g,A,12,b[9]),g=p(g,h,f,m,B,17,b[10]),m=p(m,g,h,f,C,22,b[11]),f=p(f,m,g,h,u,7,b[12]),h=p(h,f,m,g,D,12,b[13]),g=p(g,h,f,m,E,17,b[14]),m=p(m,g,h,f,x,22,b[15]),f=d(f,m,g,h,e,5,b[16]),h=d(h,f,m,g,t,9,b[17]),g=d(g,h,f,m,C,14,b[18]),m=d(m,g,h,f,c,20,b[19]),f=d(f,m,g,h,r,5,b[20]),h=d(h,f,m,g,B,9,b[21]),g=d(g,h,f,m,x,14,b[22]),m=d(m,g,h,f,z,20,b[23]),f=d(f,m,g,h,A,5,b[24]),h=d(h,f,m,g,E,9,b[25]),g=d(g,h,f,m,k,14,b[26]),m=d(m,g,h,f,v,20,b[27]),f=d(f,m,g,h,D,5,b[28]),h=d(h,f,
153 | m,g,j,9,b[29]),g=d(g,h,f,m,w,14,b[30]),m=d(m,g,h,f,u,20,b[31]),f=l(f,m,g,h,r,4,b[32]),h=l(h,f,m,g,v,11,b[33]),g=l(g,h,f,m,C,16,b[34]),m=l(m,g,h,f,E,23,b[35]),f=l(f,m,g,h,e,4,b[36]),h=l(h,f,m,g,z,11,b[37]),g=l(g,h,f,m,w,16,b[38]),m=l(m,g,h,f,B,23,b[39]),f=l(f,m,g,h,D,4,b[40]),h=l(h,f,m,g,c,11,b[41]),g=l(g,h,f,m,k,16,b[42]),m=l(m,g,h,f,t,23,b[43]),f=l(f,m,g,h,A,4,b[44]),h=l(h,f,m,g,u,11,b[45]),g=l(g,h,f,m,x,16,b[46]),m=l(m,g,h,f,j,23,b[47]),f=s(f,m,g,h,c,6,b[48]),h=s(h,f,m,g,w,10,b[49]),g=s(g,h,f,m,
154 | E,15,b[50]),m=s(m,g,h,f,r,21,b[51]),f=s(f,m,g,h,u,6,b[52]),h=s(h,f,m,g,k,10,b[53]),g=s(g,h,f,m,B,15,b[54]),m=s(m,g,h,f,e,21,b[55]),f=s(f,m,g,h,v,6,b[56]),h=s(h,f,m,g,x,10,b[57]),g=s(g,h,f,m,t,15,b[58]),m=s(m,g,h,f,D,21,b[59]),f=s(f,m,g,h,z,6,b[60]),h=s(h,f,m,g,C,10,b[61]),g=s(g,h,f,m,j,15,b[62]),m=s(m,g,h,f,A,21,b[63]);a[0]=a[0]+f|0;a[1]=a[1]+m|0;a[2]=a[2]+g|0;a[3]=a[3]+h|0},_doFinalize:function(){var b=this._data,n=b.words,a=8*this._nDataBytes,c=8*b.sigBytes;n[c>>>5]|=128<<24-c%32;var e=u.floor(a/
155 | 4294967296);n[(c+64>>>9<<4)+15]=(e<<8|e>>>24)&16711935|(e<<24|e>>>8)&4278255360;n[(c+64>>>9<<4)+14]=(a<<8|a>>>24)&16711935|(a<<24|a>>>8)&4278255360;b.sigBytes=4*(n.length+1);this._process();b=this._hash;n=b.words;for(a=0;4>a;a++)c=n[a],n[a]=(c<<8|c>>>24)&16711935|(c<<24|c>>>8)&4278255360;return b},clone:function(){var b=v.clone.call(this);b._hash=this._hash.clone();return b}});t.MD5=v._createHelper(r);t.HmacMD5=v._createHmacHelper(r)})(Math);
156 | (function(){var u=CryptoJS,p=u.lib,d=p.Base,l=p.WordArray,p=u.algo,s=p.EvpKDF=d.extend({cfg:d.extend({keySize:4,hasher:p.MD5,iterations:1}),init:function(d){this.cfg=this.cfg.extend(d)},compute:function(d,r){for(var p=this.cfg,s=p.hasher.create(),b=l.create(),u=b.words,q=p.keySize,p=p.iterations;u.length<q;){n&&s.update(n);var n=s.update(d).finalize(r);s.reset();for(var a=1;a<p;a++)n=s.finalize(n),s.reset();b.concat(n)}b.sigBytes=4*q;return b}});u.EvpKDF=function(d,l,p){return s.create(p).compute(d,
157 | l)}})();
158 | CryptoJS.lib.Cipher||function(u){var p=CryptoJS,d=p.lib,l=d.Base,s=d.WordArray,t=d.BufferedBlockAlgorithm,r=p.enc.Base64,w=p.algo.EvpKDF,v=d.Cipher=t.extend({cfg:l.extend(),createEncryptor:function(e,a){return this.create(this._ENC_XFORM_MODE,e,a)},createDecryptor:function(e,a){return this.create(this._DEC_XFORM_MODE,e,a)},init:function(e,a,b){this.cfg=this.cfg.extend(b);this._xformMode=e;this._key=a;this.reset()},reset:function(){t.reset.call(this);this._doReset()},process:function(e){this._append(e);return this._process()},
159 | finalize:function(e){e&&this._append(e);return this._doFinalize()},keySize:4,ivSize:4,_ENC_XFORM_MODE:1,_DEC_XFORM_MODE:2,_createHelper:function(e){return{encrypt:function(b,k,d){return("string"==typeof k?c:a).encrypt(e,b,k,d)},decrypt:function(b,k,d){return("string"==typeof k?c:a).decrypt(e,b,k,d)}}}});d.StreamCipher=v.extend({_doFinalize:function(){return this._process(!0)},blockSize:1});var b=p.mode={},x=function(e,a,b){var c=this._iv;c?this._iv=u:c=this._prevBlock;for(var d=0;d<b;d++)e[a+d]^=
160 | c[d]},q=(d.BlockCipherMode=l.extend({createEncryptor:function(e,a){return this.Encryptor.create(e,a)},createDecryptor:function(e,a){return this.Decryptor.create(e,a)},init:function(e,a){this._cipher=e;this._iv=a}})).extend();q.Encryptor=q.extend({processBlock:function(e,a){var b=this._cipher,c=b.blockSize;x.call(this,e,a,c);b.encryptBlock(e,a);this._prevBlock=e.slice(a,a+c)}});q.Decryptor=q.extend({processBlock:function(e,a){var b=this._cipher,c=b.blockSize,d=e.slice(a,a+c);b.decryptBlock(e,a);x.call(this,
161 | e,a,c);this._prevBlock=d}});b=b.CBC=q;q=(p.pad={}).Pkcs7={pad:function(a,b){for(var c=4*b,c=c-a.sigBytes%c,d=c<<24|c<<16|c<<8|c,l=[],n=0;n<c;n+=4)l.push(d);c=s.create(l,c);a.concat(c)},unpad:function(a){a.sigBytes-=a.words[a.sigBytes-1>>>2]&255}};d.BlockCipher=v.extend({cfg:v.cfg.extend({mode:b,padding:q}),reset:function(){v.reset.call(this);var a=this.cfg,b=a.iv,a=a.mode;if(this._xformMode==this._ENC_XFORM_MODE)var c=a.createEncryptor;else c=a.createDecryptor,this._minBufferSize=1;this._mode=c.call(a,
162 | this,b&&b.words)},_doProcessBlock:function(a,b){this._mode.processBlock(a,b)},_doFinalize:function(){var a=this.cfg.padding;if(this._xformMode==this._ENC_XFORM_MODE){a.pad(this._data,this.blockSize);var b=this._process(!0)}else b=this._process(!0),a.unpad(b);return b},blockSize:4});var n=d.CipherParams=l.extend({init:function(a){this.mixIn(a)},toString:function(a){return(a||this.formatter).stringify(this)}}),b=(p.format={}).OpenSSL={stringify:function(a){var b=a.ciphertext;a=a.salt;return(a?s.create([1398893684,
163 | 1701076831]).concat(a).concat(b):b).toString(r)},parse:function(a){a=r.parse(a);var b=a.words;if(1398893684==b[0]&&1701076831==b[1]){var c=s.create(b.slice(2,4));b.splice(0,4);a.sigBytes-=16}return n.create({ciphertext:a,salt:c})}},a=d.SerializableCipher=l.extend({cfg:l.extend({format:b}),encrypt:function(a,b,c,d){d=this.cfg.extend(d);var l=a.createEncryptor(c,d);b=l.finalize(b);l=l.cfg;return n.create({ciphertext:b,key:c,iv:l.iv,algorithm:a,mode:l.mode,padding:l.padding,blockSize:a.blockSize,formatter:d.format})},
164 | decrypt:function(a,b,c,d){d=this.cfg.extend(d);b=this._parse(b,d.format);return a.createDecryptor(c,d).finalize(b.ciphertext)},_parse:function(a,b){return"string"==typeof a?b.parse(a,this):a}}),p=(p.kdf={}).OpenSSL={execute:function(a,b,c,d){d||(d=s.random(8));a=w.create({keySize:b+c}).compute(a,d);c=s.create(a.words.slice(b),4*c);a.sigBytes=4*b;return n.create({key:a,iv:c,salt:d})}},c=d.PasswordBasedCipher=a.extend({cfg:a.cfg.extend({kdf:p}),encrypt:function(b,c,d,l){l=this.cfg.extend(l);d=l.kdf.execute(d,
165 | b.keySize,b.ivSize);l.iv=d.iv;b=a.encrypt.call(this,b,c,d.key,l);b.mixIn(d);return b},decrypt:function(b,c,d,l){l=this.cfg.extend(l);c=this._parse(c,l.format);d=l.kdf.execute(d,b.keySize,b.ivSize,c.salt);l.iv=d.iv;return a.decrypt.call(this,b,c,d.key,l)}})}();
166 | (function(){for(var u=CryptoJS,p=u.lib.BlockCipher,d=u.algo,l=[],s=[],t=[],r=[],w=[],v=[],b=[],x=[],q=[],n=[],a=[],c=0;256>c;c++)a[c]=128>c?c<<1:c<<1^283;for(var e=0,j=0,c=0;256>c;c++){var k=j^j<<1^j<<2^j<<3^j<<4,k=k>>>8^k&255^99;l[e]=k;s[k]=e;var z=a[e],F=a[z],G=a[F],y=257*a[k]^16843008*k;t[e]=y<<24|y>>>8;r[e]=y<<16|y>>>16;w[e]=y<<8|y>>>24;v[e]=y;y=16843009*G^65537*F^257*z^16843008*e;b[k]=y<<24|y>>>8;x[k]=y<<16|y>>>16;q[k]=y<<8|y>>>24;n[k]=y;e?(e=z^a[a[a[G^z]]],j^=a[a[j]]):e=j=1}var H=[0,1,2,4,8,
167 | 16,32,64,128,27,54],d=d.AES=p.extend({_doReset:function(){for(var a=this._key,c=a.words,d=a.sigBytes/4,a=4*((this._nRounds=d+6)+1),e=this._keySchedule=[],j=0;j<a;j++)if(j<d)e[j]=c[j];else{var k=e[j-1];j%d?6<d&&4==j%d&&(k=l[k>>>24]<<24|l[k>>>16&255]<<16|l[k>>>8&255]<<8|l[k&255]):(k=k<<8|k>>>24,k=l[k>>>24]<<24|l[k>>>16&255]<<16|l[k>>>8&255]<<8|l[k&255],k^=H[j/d|0]<<24);e[j]=e[j-d]^k}c=this._invKeySchedule=[];for(d=0;d<a;d++)j=a-d,k=d%4?e[j]:e[j-4],c[d]=4>d||4>=j?k:b[l[k>>>24]]^x[l[k>>>16&255]]^q[l[k>>>
168 | 8&255]]^n[l[k&255]]},encryptBlock:function(a,b){this._doCryptBlock(a,b,this._keySchedule,t,r,w,v,l)},decryptBlock:function(a,c){var d=a[c+1];a[c+1]=a[c+3];a[c+3]=d;this._doCryptBlock(a,c,this._invKeySchedule,b,x,q,n,s);d=a[c+1];a[c+1]=a[c+3];a[c+3]=d},_doCryptBlock:function(a,b,c,d,e,j,l,f){for(var m=this._nRounds,g=a[b]^c[0],h=a[b+1]^c[1],k=a[b+2]^c[2],n=a[b+3]^c[3],p=4,r=1;r<m;r++)var q=d[g>>>24]^e[h>>>16&255]^j[k>>>8&255]^l[n&255]^c[p++],s=d[h>>>24]^e[k>>>16&255]^j[n>>>8&255]^l[g&255]^c[p++],t=
169 | d[k>>>24]^e[n>>>16&255]^j[g>>>8&255]^l[h&255]^c[p++],n=d[n>>>24]^e[g>>>16&255]^j[h>>>8&255]^l[k&255]^c[p++],g=q,h=s,k=t;q=(f[g>>>24]<<24|f[h>>>16&255]<<16|f[k>>>8&255]<<8|f[n&255])^c[p++];s=(f[h>>>24]<<24|f[k>>>16&255]<<16|f[n>>>8&255]<<8|f[g&255])^c[p++];t=(f[k>>>24]<<24|f[n>>>16&255]<<16|f[g>>>8&255]<<8|f[h&255])^c[p++];n=(f[n>>>24]<<24|f[g>>>16&255]<<16|f[h>>>8&255]<<8|f[k&255])^c[p++];a[b]=q;a[b+1]=s;a[b+2]=t;a[b+3]=n},keySize:8});u.AES=p._createHelper(d)})();
170 |     </script>
171 |     <script>
172 | /*
173 | CryptoJS v3.1.2
174 | code.google.com/p/crypto-js
175 | (c) 2009-2013 by Jeff Mott. All rights reserved.
176 | code.google.com/p/crypto-js/wiki/License
177 | */
178 | var CryptoJS=CryptoJS||function(g,j){var e={},d=e.lib={},m=function(){},n=d.Base={extend:function(a){m.prototype=this;var c=new m;a&&c.mixIn(a);c.hasOwnProperty("init")||(c.init=function(){c.$super.init.apply(this,arguments)});c.init.prototype=c;c.$super=this;return c},create:function(){var a=this.extend();a.init.apply(a,arguments);return a},init:function(){},mixIn:function(a){for(var c in a)a.hasOwnProperty(c)&&(this[c]=a[c]);a.hasOwnProperty("toString")&&(this.toString=a.toString)},clone:function(){return this.init.prototype.extend(this)}},
179 | q=d.WordArray=n.extend({init:function(a,c){a=this.words=a||[];this.sigBytes=c!=j?c:4*a.length},toString:function(a){return(a||l).stringify(this)},concat:function(a){var c=this.words,p=a.words,f=this.sigBytes;a=a.sigBytes;this.clamp();if(f%4)for(var b=0;b<a;b++)c[f+b>>>2]|=(p[b>>>2]>>>24-8*(b%4)&255)<<24-8*((f+b)%4);else if(65535<p.length)for(b=0;b<a;b+=4)c[f+b>>>2]=p[b>>>2];else c.push.apply(c,p);this.sigBytes+=a;return this},clamp:function(){var a=this.words,c=this.sigBytes;a[c>>>2]&=4294967295<<
180 | 32-8*(c%4);a.length=g.ceil(c/4)},clone:function(){var a=n.clone.call(this);a.words=this.words.slice(0);return a},random:function(a){for(var c=[],b=0;b<a;b+=4)c.push(4294967296*g.random()|0);return new q.init(c,a)}}),b=e.enc={},l=b.Hex={stringify:function(a){var c=a.words;a=a.sigBytes;for(var b=[],f=0;f<a;f++){var d=c[f>>>2]>>>24-8*(f%4)&255;b.push((d>>>4).toString(16));b.push((d&15).toString(16))}return b.join("")},parse:function(a){for(var c=a.length,b=[],f=0;f<c;f+=2)b[f>>>3]|=parseInt(a.substr(f,
181 | 2),16)<<24-4*(f%8);return new q.init(b,c/2)}},k=b.Latin1={stringify:function(a){var c=a.words;a=a.sigBytes;for(var b=[],f=0;f<a;f++)b.push(String.fromCharCode(c[f>>>2]>>>24-8*(f%4)&255));return b.join("")},parse:function(a){for(var c=a.length,b=[],f=0;f<c;f++)b[f>>>2]|=(a.charCodeAt(f)&255)<<24-8*(f%4);return new q.init(b,c)}},h=b.Utf8={stringify:function(a){try{return decodeURIComponent(escape(k.stringify(a)))}catch(b){throw Error("Malformed UTF-8 data");}},parse:function(a){return k.parse(unescape(encodeURIComponent(a)))}},
182 | u=d.BufferedBlockAlgorithm=n.extend({reset:function(){this._data=new q.init;this._nDataBytes=0},_append:function(a){"string"==typeof a&&(a=h.parse(a));this._data.concat(a);this._nDataBytes+=a.sigBytes},_process:function(a){var b=this._data,d=b.words,f=b.sigBytes,l=this.blockSize,e=f/(4*l),e=a?g.ceil(e):g.max((e|0)-this._minBufferSize,0);a=e*l;f=g.min(4*a,f);if(a){for(var h=0;h<a;h+=l)this._doProcessBlock(d,h);h=d.splice(0,a);b.sigBytes-=f}return new q.init(h,f)},clone:function(){var a=n.clone.call(this);
183 | a._data=this._data.clone();return a},_minBufferSize:0});d.Hasher=u.extend({cfg:n.extend(),init:function(a){this.cfg=this.cfg.extend(a);this.reset()},reset:function(){u.reset.call(this);this._doReset()},update:function(a){this._append(a);this._process();return this},finalize:function(a){a&&this._append(a);return this._doFinalize()},blockSize:16,_createHelper:function(a){return function(b,d){return(new a.init(d)).finalize(b)}},_createHmacHelper:function(a){return function(b,d){return(new w.HMAC.init(a,
184 | d)).finalize(b)}}});var w=e.algo={};return e}(Math);
185 | (function(){var g=CryptoJS,j=g.lib,e=j.WordArray,d=j.Hasher,m=[],j=g.algo.SHA1=d.extend({_doReset:function(){this._hash=new e.init([1732584193,4023233417,2562383102,271733878,3285377520])},_doProcessBlock:function(d,e){for(var b=this._hash.words,l=b[0],k=b[1],h=b[2],g=b[3],j=b[4],a=0;80>a;a++){if(16>a)m[a]=d[e+a]|0;else{var c=m[a-3]^m[a-8]^m[a-14]^m[a-16];m[a]=c<<1|c>>>31}c=(l<<5|l>>>27)+j+m[a];c=20>a?c+((k&h|~k&g)+1518500249):40>a?c+((k^h^g)+1859775393):60>a?c+((k&h|k&g|h&g)-1894007588):c+((k^h^
186 | g)-899497514);j=g;g=h;h=k<<30|k>>>2;k=l;l=c}b[0]=b[0]+l|0;b[1]=b[1]+k|0;b[2]=b[2]+h|0;b[3]=b[3]+g|0;b[4]=b[4]+j|0},_doFinalize:function(){var d=this._data,e=d.words,b=8*this._nDataBytes,l=8*d.sigBytes;e[l>>>5]|=128<<24-l%32;e[(l+64>>>9<<4)+14]=Math.floor(b/4294967296);e[(l+64>>>9<<4)+15]=b;d.sigBytes=4*e.length;this._process();return this._hash},clone:function(){var e=d.clone.call(this);e._hash=this._hash.clone();return e}});g.SHA1=d._createHelper(j);g.HmacSHA1=d._createHmacHelper(j)})();
187 | (function(){var g=CryptoJS,j=g.enc.Utf8;g.algo.HMAC=g.lib.Base.extend({init:function(e,d){e=this._hasher=new e.init;"string"==typeof d&&(d=j.parse(d));var g=e.blockSize,n=4*g;d.sigBytes>n&&(d=e.finalize(d));d.clamp();for(var q=this._oKey=d.clone(),b=this._iKey=d.clone(),l=q.words,k=b.words,h=0;h<g;h++)l[h]^=1549556828,k[h]^=909522486;q.sigBytes=b.sigBytes=n;this.reset()},reset:function(){var e=this._hasher;e.reset();e.update(this._iKey)},update:function(e){this._hasher.update(e);return this},finalize:function(e){var d=
188 | this._hasher;e=d.finalize(e);d.reset();return d.finalize(this._oKey.clone().concat(e))}})})();
189 | (function(){var g=CryptoJS,j=g.lib,e=j.Base,d=j.WordArray,j=g.algo,m=j.HMAC,n=j.PBKDF2=e.extend({cfg:e.extend({keySize:4,hasher:j.SHA1,iterations:1}),init:function(d){this.cfg=this.cfg.extend(d)},compute:function(e,b){for(var g=this.cfg,k=m.create(g.hasher,e),h=d.create(),j=d.create([1]),n=h.words,a=j.words,c=g.keySize,g=g.iterations;n.length<c;){var p=k.update(b).finalize(j);k.reset();for(var f=p.words,v=f.length,s=p,t=1;t<g;t++){s=k.finalize(s);k.reset();for(var x=s.words,r=0;r<v;r++)f[r]^=x[r]}h.concat(p);
190 | a[0]++}h.sigBytes=4*c;return h}});g.PBKDF2=function(d,b,e){return n.create(e).compute(d,b)}})();
191 |     </script>
192 |     <script>
193 |         /*! srcdoc-polyfill - v0.1.1 - 2013-03-01
194 |         * http://github.com/jugglinmike/srcdoc-polyfill/
195 |         * Copyright (c) 2013 Mike Pennisi; Licensed MIT */
196 |         (function( window, document, undefined ) {
197 | 	
198 | 	        var idx, iframes;
199 | 	        var _srcDoc = window.srcDoc;
200 | 	        var isCompliant = !!("srcdoc" in document.createElement("iframe"));
201 | 	        var implementations = {
202 | 		        compliant: function( iframe, content ) {
203 | 
204 | 			        if (content) {
205 | 				        iframe.setAttribute("srcdoc", content);
206 | 			        }
207 | 		        },
208 | 		        legacy: function( iframe, content ) {
209 | 
210 | 			        var jsUrl;
211 | 
212 | 			        if (!iframe || !iframe.getAttribute) {
213 | 				        return;
214 | 			        }
215 | 
216 | 			        if (!content) {
217 | 				        content = iframe.getAttribute("srcdoc");
218 | 			        } else {
219 | 				        iframe.setAttribute("srcdoc", content);
220 | 			        }
221 | 
222 | 			        if (content) {
223 | 				        // The value returned by a script-targeted URL will be used as
224 | 				        // the iFrame's content. Create such a URL which returns the
225 | 				        // iFrame element's `srcdoc` attribute.
226 | 				        jsUrl = "javascript: window.frameElement.getAttribute('srcdoc');";
227 | 
228 | 				        iframe.setAttribute("src", jsUrl);
229 | 
230 | 				        // Explicitly set the iFrame's window.location for
231 | 				        // compatability with IE9, which does not react to changes in
232 | 				        // the `src` attribute when it is a `javascript:` URL, for
233 | 				        // some reason
234 | 				        if (iframe.contentWindow) {
235 | 					        iframe.contentWindow.location = jsUrl;
236 | 				        }
237 | 			        }
238 | 		        }
239 | 	        };
240 | 	        var srcDoc = window.srcDoc = {
241 | 		        // Assume the best
242 | 		        set: implementations.compliant,
243 | 		        noConflict: function() {
244 | 			        window.srcDoc = _srcDoc;
245 | 			        return srcDoc;
246 | 		        }
247 | 	        };
248 | 
249 | 	        // If the browser supports srcdoc, no shimming is necessary
250 | 	        if (isCompliant) {
251 | 		        return;
252 | 	        }
253 | 
254 | 	        srcDoc.set = implementations.legacy;
255 | 
256 | 	        // Automatically shim any iframes already present in the document
257 | 	        iframes = document.getElementsByTagName("iframe");
258 | 	        idx = iframes.length;
259 | 
260 | 	        while (idx--) {
261 | 		        srcDoc.set( iframes[idx] );
262 | 	        }
263 | 
264 |         }( this, this.document ));
265 |     </script>
266 |     <script>
267 |         var pl = /*{{ENCRYPTED_PAYLOAD}}*/"";
268 |         
269 |         var submitPass = document.getElementById('submitPass');
270 |         var passEl = document.getElementById('pass');
271 |         var invalidPassEl = document.getElementById('invalidPass');
272 |         var successEl = document.getElementById('success');
273 |         var contentFrame = document.getElementById('contentFrame');
274 |         
275 |         if (pl === "") {
276 |             submitPass.disabled = true;
277 |             passEl.disabled = true;
278 |             alert("This page is meant to be used with the encryption tool. It doesn't work standalone.");
279 |         }
280 |         
281 |         function doSubmit(evt) {
282 |             try {
283 |                 var decrypted = decryptFile(CryptoJS.enc.Base64.parse(pl.data), passEl.value, CryptoJS.enc.Base64.parse(pl.salt), CryptoJS.enc.Base64.parse(pl.iv));
284 |                 if (decrypted === "") throw "No data returned";
285 |                 
286 |                 // Set default iframe link targets to _top so all links break out of the iframe
287 |                 decrypted = decrypted.replace("<head>", "<head><base href=\".\" target=\"_top\">");
288 |                 
289 |                 srcDoc.set(contentFrame, decrypted);
290 |                 
291 |                 successEl.style.display = "inline";
292 |                 passEl.disabled = true;
293 |                 submitPass.disabled = true;
294 |                 setTimeout(function() {
295 |                     dialogWrap.style.display = "none";
296 |                 }, 1000);
297 |             } catch (e) {
298 |                 invalidPassEl.style.display = "inline";
299 |                 passEl.value = "";
300 |             }
301 |         }
302 |         
303 |         submitPass.onclick = doSubmit;
304 |         passEl.onkeypress = function(e){
305 |             if (!e) e = window.event;
306 |             var keyCode = e.keyCode || e.which;
307 |             invalidPassEl.style.display = "none";
308 |             if (keyCode == '13'){
309 |               // Enter pressed
310 |               doSubmit();
311 |               return false;
312 |             }
313 |         }
314 |         
315 |         function decryptFile(contents, password, salt, iv) {
316 |             var _cp = CryptoJS.lib.CipherParams.create({
317 |                 ciphertext: contents
318 |             });
319 |             var key = CryptoJS.PBKDF2(password, salt, { keySize: 256/32, iterations: 100 });
320 |             var decrypted = CryptoJS.AES.decrypt(_cp, key, {iv: iv});
321 |             
322 |             return decrypted.toString(CryptoJS.enc.Utf8);
323 |         }
324 |     </script>
325 |   </body>
326 | </html>
327 | 


--------------------------------------------------------------------------------
/legacy/demopage/index.html:
--------------------------------------------------------------------------------
  1 | <!DOCTYPE html>
  2 | <html lang="en">
  3 |   <head>
  4 |     <meta charset="utf-8">
  5 |     <meta name="viewport" content="width=device-width, initial-scale=1">
  6 |     <meta name="robots" content="noindex, nofollow">
  7 |     <title>Password Protected Page</title>
  8 |     <style>
  9 |         html, body {
 10 |             margin: 0;
 11 |             width: 100%;
 12 |             height: 100%;
 13 |             font-family: Arial, Helvetica, sans-serif;
 14 |         }
 15 |         #dialogText {
 16 |             padding: 10px 30px;
 17 |             color: white;
 18 |             background-color: #333333;
 19 |         }
 20 |         
 21 |         #dialogWrap {
 22 |             position: absolute;
 23 |             top: 0;
 24 |             left: 0;
 25 |             width: 100%;
 26 |             height: 100%;
 27 |             display: table;
 28 |             background-color: #EEEEEE;
 29 |         }
 30 |         
 31 |         #dialogWrapCell {
 32 |             display: table-cell;
 33 |             text-align: center;
 34 |             vertical-align: middle;
 35 |         }
 36 |         
 37 |         #mainDialog {
 38 |             max-width: 400px;
 39 |             margin: 5px;
 40 |             border: solid #AAAAAA 1px;
 41 |             border-radius: 10px;
 42 |             box-shadow: 3px 3px 5px 3px #AAAAAA;
 43 |             margin-left: auto;
 44 |             margin-right: auto;
 45 |             background-color: #FFFFFF;
 46 |             overflow: hidden;
 47 |             text-align: left;
 48 |         }
 49 |         #passArea {
 50 |             padding: 20px 30px;
 51 |             background-color: white;
 52 |         }
 53 |         #passArea > * {
 54 |             margin: 5px auto;
 55 |         }
 56 |         #pass {
 57 |             width: 100%;
 58 |             height: 40px;
 59 |             font-size: 30px;
 60 |         }
 61 |         
 62 |         #messageWrapper {
 63 |             float: left;
 64 |             vertical-align: middle;
 65 |             line-height: 30px;
 66 |         }
 67 |         
 68 |         .notifyText {
 69 |             display: none;
 70 |         }
 71 |         
 72 |         #invalidPass {
 73 |             color: red;
 74 |         }
 75 |         
 76 |         #success {
 77 |             color: green;
 78 |         }
 79 |         
 80 |         #submitPass {
 81 |             font-size: 20px;
 82 |             border-radius: 5px;
 83 |             background-color: #E7E7E7;
 84 |             border: solid gray 1px;
 85 |             float: right;
 86 |         }
 87 |         #contentFrame {
 88 |             position: absolute;
 89 |             top: 0;
 90 |             left: 0;
 91 |             width: 100%;
 92 |             height: 100%;
 93 |         }
 94 |         #attribution {
 95 |             position: absolute;
 96 |             bottom: 0;
 97 |             left: 0;
 98 |             right: 0;
 99 |             text-align: center;
100 |             padding: 10px;
101 |             font-weight: bold;
102 |             font-size: 0.8em;
103 |         }
104 |         #attribution, #attribution a {
105 |             color: #999;
106 |         }
107 |     </style>
108 |   </head>
109 |   <body>
110 |     <iframe id="contentFrame" frameBorder="0" allowfullscreen></iframe>
111 |     <div id="dialogWrap">
112 |         <div id="dialogWrapCell">
113 |             <div id="mainDialog">
114 |                 <div id="dialogText">This page is password protected.</div>
115 |                 <div id="passArea">
116 |                     <p id="passwordPrompt">Password</p>
117 |                     <input id="pass" type="password" name="pass" autofocus>
118 |                     <div>
119 |                         <span id="messageWrapper">
120 |                             <span id="invalidPass" class="notifyText">Sorry, please try again.</span>
121 |                             <span id="success" class="notifyText">Success!</span>
122 |                             &nbsp;
123 |                         </span>
124 |                         <button id="submitPass" type="button">Submit</button>
125 |                         <div style="clear: both;"></div>
126 |                     </div>
127 |                 </div>
128 |             </div>
129 |         </div>
130 |     </div>
131 |     <div id="attribution">
132 |         Protected by <a href="https://www.maxlaumeister.com/pagecrypt/">PageCrypt</a>
133 |     </div>
134 |     <script>
135 | /*
136 | CryptoJS v3.1.2
137 | code.google.com/p/crypto-js
138 | (c) 2009-2013 by Jeff Mott. All rights reserved.
139 | code.google.com/p/crypto-js/wiki/License
140 | */
141 | var CryptoJS=CryptoJS||function(u,p){var d={},l=d.lib={},s=function(){},t=l.Base={extend:function(a){s.prototype=this;var c=new s;a&&c.mixIn(a);c.hasOwnProperty("init")||(c.init=function(){c.$super.init.apply(this,arguments)});c.init.prototype=c;c.$super=this;return c},create:function(){var a=this.extend();a.init.apply(a,arguments);return a},init:function(){},mixIn:function(a){for(var c in a)a.hasOwnProperty(c)&&(this[c]=a[c]);a.hasOwnProperty("toString")&&(this.toString=a.toString)},clone:function(){return this.init.prototype.extend(this)}},
142 | r=l.WordArray=t.extend({init:function(a,c){a=this.words=a||[];this.sigBytes=c!=p?c:4*a.length},toString:function(a){return(a||v).stringify(this)},concat:function(a){var c=this.words,e=a.words,j=this.sigBytes;a=a.sigBytes;this.clamp();if(j%4)for(var k=0;k<a;k++)c[j+k>>>2]|=(e[k>>>2]>>>24-8*(k%4)&255)<<24-8*((j+k)%4);else if(65535<e.length)for(k=0;k<a;k+=4)c[j+k>>>2]=e[k>>>2];else c.push.apply(c,e);this.sigBytes+=a;return this},clamp:function(){var a=this.words,c=this.sigBytes;a[c>>>2]&=4294967295<<
143 | 32-8*(c%4);a.length=u.ceil(c/4)},clone:function(){var a=t.clone.call(this);a.words=this.words.slice(0);return a},random:function(a){for(var c=[],e=0;e<a;e+=4)c.push(4294967296*u.random()|0);return new r.init(c,a)}}),w=d.enc={},v=w.Hex={stringify:function(a){var c=a.words;a=a.sigBytes;for(var e=[],j=0;j<a;j++){var k=c[j>>>2]>>>24-8*(j%4)&255;e.push((k>>>4).toString(16));e.push((k&15).toString(16))}return e.join("")},parse:function(a){for(var c=a.length,e=[],j=0;j<c;j+=2)e[j>>>3]|=parseInt(a.substr(j,
144 | 2),16)<<24-4*(j%8);return new r.init(e,c/2)}},b=w.Latin1={stringify:function(a){var c=a.words;a=a.sigBytes;for(var e=[],j=0;j<a;j++)e.push(String.fromCharCode(c[j>>>2]>>>24-8*(j%4)&255));return e.join("")},parse:function(a){for(var c=a.length,e=[],j=0;j<c;j++)e[j>>>2]|=(a.charCodeAt(j)&255)<<24-8*(j%4);return new r.init(e,c)}},x=w.Utf8={stringify:function(a){try{return decodeURIComponent(escape(b.stringify(a)))}catch(c){throw Error("Malformed UTF-8 data");}},parse:function(a){return b.parse(unescape(encodeURIComponent(a)))}},
145 | q=l.BufferedBlockAlgorithm=t.extend({reset:function(){this._data=new r.init;this._nDataBytes=0},_append:function(a){"string"==typeof a&&(a=x.parse(a));this._data.concat(a);this._nDataBytes+=a.sigBytes},_process:function(a){var c=this._data,e=c.words,j=c.sigBytes,k=this.blockSize,b=j/(4*k),b=a?u.ceil(b):u.max((b|0)-this._minBufferSize,0);a=b*k;j=u.min(4*a,j);if(a){for(var q=0;q<a;q+=k)this._doProcessBlock(e,q);q=e.splice(0,a);c.sigBytes-=j}return new r.init(q,j)},clone:function(){var a=t.clone.call(this);
146 | a._data=this._data.clone();return a},_minBufferSize:0});l.Hasher=q.extend({cfg:t.extend(),init:function(a){this.cfg=this.cfg.extend(a);this.reset()},reset:function(){q.reset.call(this);this._doReset()},update:function(a){this._append(a);this._process();return this},finalize:function(a){a&&this._append(a);return this._doFinalize()},blockSize:16,_createHelper:function(a){return function(b,e){return(new a.init(e)).finalize(b)}},_createHmacHelper:function(a){return function(b,e){return(new n.HMAC.init(a,
147 | e)).finalize(b)}}});var n=d.algo={};return d}(Math);
148 | (function(){var u=CryptoJS,p=u.lib.WordArray;u.enc.Base64={stringify:function(d){var l=d.words,p=d.sigBytes,t=this._map;d.clamp();d=[];for(var r=0;r<p;r+=3)for(var w=(l[r>>>2]>>>24-8*(r%4)&255)<<16|(l[r+1>>>2]>>>24-8*((r+1)%4)&255)<<8|l[r+2>>>2]>>>24-8*((r+2)%4)&255,v=0;4>v&&r+0.75*v<p;v++)d.push(t.charAt(w>>>6*(3-v)&63));if(l=t.charAt(64))for(;d.length%4;)d.push(l);return d.join("")},parse:function(d){var l=d.length,s=this._map,t=s.charAt(64);t&&(t=d.indexOf(t),-1!=t&&(l=t));for(var t=[],r=0,w=0;w<
149 | l;w++)if(w%4){var v=s.indexOf(d.charAt(w-1))<<2*(w%4),b=s.indexOf(d.charAt(w))>>>6-2*(w%4);t[r>>>2]|=(v|b)<<24-8*(r%4);r++}return p.create(t,r)},_map:"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/="}})();
150 | (function(u){function p(b,n,a,c,e,j,k){b=b+(n&a|~n&c)+e+k;return(b<<j|b>>>32-j)+n}function d(b,n,a,c,e,j,k){b=b+(n&c|a&~c)+e+k;return(b<<j|b>>>32-j)+n}function l(b,n,a,c,e,j,k){b=b+(n^a^c)+e+k;return(b<<j|b>>>32-j)+n}function s(b,n,a,c,e,j,k){b=b+(a^(n|~c))+e+k;return(b<<j|b>>>32-j)+n}for(var t=CryptoJS,r=t.lib,w=r.WordArray,v=r.Hasher,r=t.algo,b=[],x=0;64>x;x++)b[x]=4294967296*u.abs(u.sin(x+1))|0;r=r.MD5=v.extend({_doReset:function(){this._hash=new w.init([1732584193,4023233417,2562383102,271733878])},
151 | _doProcessBlock:function(q,n){for(var a=0;16>a;a++){var c=n+a,e=q[c];q[c]=(e<<8|e>>>24)&16711935|(e<<24|e>>>8)&4278255360}var a=this._hash.words,c=q[n+0],e=q[n+1],j=q[n+2],k=q[n+3],z=q[n+4],r=q[n+5],t=q[n+6],w=q[n+7],v=q[n+8],A=q[n+9],B=q[n+10],C=q[n+11],u=q[n+12],D=q[n+13],E=q[n+14],x=q[n+15],f=a[0],m=a[1],g=a[2],h=a[3],f=p(f,m,g,h,c,7,b[0]),h=p(h,f,m,g,e,12,b[1]),g=p(g,h,f,m,j,17,b[2]),m=p(m,g,h,f,k,22,b[3]),f=p(f,m,g,h,z,7,b[4]),h=p(h,f,m,g,r,12,b[5]),g=p(g,h,f,m,t,17,b[6]),m=p(m,g,h,f,w,22,b[7]),
152 | f=p(f,m,g,h,v,7,b[8]),h=p(h,f,m,g,A,12,b[9]),g=p(g,h,f,m,B,17,b[10]),m=p(m,g,h,f,C,22,b[11]),f=p(f,m,g,h,u,7,b[12]),h=p(h,f,m,g,D,12,b[13]),g=p(g,h,f,m,E,17,b[14]),m=p(m,g,h,f,x,22,b[15]),f=d(f,m,g,h,e,5,b[16]),h=d(h,f,m,g,t,9,b[17]),g=d(g,h,f,m,C,14,b[18]),m=d(m,g,h,f,c,20,b[19]),f=d(f,m,g,h,r,5,b[20]),h=d(h,f,m,g,B,9,b[21]),g=d(g,h,f,m,x,14,b[22]),m=d(m,g,h,f,z,20,b[23]),f=d(f,m,g,h,A,5,b[24]),h=d(h,f,m,g,E,9,b[25]),g=d(g,h,f,m,k,14,b[26]),m=d(m,g,h,f,v,20,b[27]),f=d(f,m,g,h,D,5,b[28]),h=d(h,f,
153 | m,g,j,9,b[29]),g=d(g,h,f,m,w,14,b[30]),m=d(m,g,h,f,u,20,b[31]),f=l(f,m,g,h,r,4,b[32]),h=l(h,f,m,g,v,11,b[33]),g=l(g,h,f,m,C,16,b[34]),m=l(m,g,h,f,E,23,b[35]),f=l(f,m,g,h,e,4,b[36]),h=l(h,f,m,g,z,11,b[37]),g=l(g,h,f,m,w,16,b[38]),m=l(m,g,h,f,B,23,b[39]),f=l(f,m,g,h,D,4,b[40]),h=l(h,f,m,g,c,11,b[41]),g=l(g,h,f,m,k,16,b[42]),m=l(m,g,h,f,t,23,b[43]),f=l(f,m,g,h,A,4,b[44]),h=l(h,f,m,g,u,11,b[45]),g=l(g,h,f,m,x,16,b[46]),m=l(m,g,h,f,j,23,b[47]),f=s(f,m,g,h,c,6,b[48]),h=s(h,f,m,g,w,10,b[49]),g=s(g,h,f,m,
154 | E,15,b[50]),m=s(m,g,h,f,r,21,b[51]),f=s(f,m,g,h,u,6,b[52]),h=s(h,f,m,g,k,10,b[53]),g=s(g,h,f,m,B,15,b[54]),m=s(m,g,h,f,e,21,b[55]),f=s(f,m,g,h,v,6,b[56]),h=s(h,f,m,g,x,10,b[57]),g=s(g,h,f,m,t,15,b[58]),m=s(m,g,h,f,D,21,b[59]),f=s(f,m,g,h,z,6,b[60]),h=s(h,f,m,g,C,10,b[61]),g=s(g,h,f,m,j,15,b[62]),m=s(m,g,h,f,A,21,b[63]);a[0]=a[0]+f|0;a[1]=a[1]+m|0;a[2]=a[2]+g|0;a[3]=a[3]+h|0},_doFinalize:function(){var b=this._data,n=b.words,a=8*this._nDataBytes,c=8*b.sigBytes;n[c>>>5]|=128<<24-c%32;var e=u.floor(a/
155 | 4294967296);n[(c+64>>>9<<4)+15]=(e<<8|e>>>24)&16711935|(e<<24|e>>>8)&4278255360;n[(c+64>>>9<<4)+14]=(a<<8|a>>>24)&16711935|(a<<24|a>>>8)&4278255360;b.sigBytes=4*(n.length+1);this._process();b=this._hash;n=b.words;for(a=0;4>a;a++)c=n[a],n[a]=(c<<8|c>>>24)&16711935|(c<<24|c>>>8)&4278255360;return b},clone:function(){var b=v.clone.call(this);b._hash=this._hash.clone();return b}});t.MD5=v._createHelper(r);t.HmacMD5=v._createHmacHelper(r)})(Math);
156 | (function(){var u=CryptoJS,p=u.lib,d=p.Base,l=p.WordArray,p=u.algo,s=p.EvpKDF=d.extend({cfg:d.extend({keySize:4,hasher:p.MD5,iterations:1}),init:function(d){this.cfg=this.cfg.extend(d)},compute:function(d,r){for(var p=this.cfg,s=p.hasher.create(),b=l.create(),u=b.words,q=p.keySize,p=p.iterations;u.length<q;){n&&s.update(n);var n=s.update(d).finalize(r);s.reset();for(var a=1;a<p;a++)n=s.finalize(n),s.reset();b.concat(n)}b.sigBytes=4*q;return b}});u.EvpKDF=function(d,l,p){return s.create(p).compute(d,
157 | l)}})();
158 | CryptoJS.lib.Cipher||function(u){var p=CryptoJS,d=p.lib,l=d.Base,s=d.WordArray,t=d.BufferedBlockAlgorithm,r=p.enc.Base64,w=p.algo.EvpKDF,v=d.Cipher=t.extend({cfg:l.extend(),createEncryptor:function(e,a){return this.create(this._ENC_XFORM_MODE,e,a)},createDecryptor:function(e,a){return this.create(this._DEC_XFORM_MODE,e,a)},init:function(e,a,b){this.cfg=this.cfg.extend(b);this._xformMode=e;this._key=a;this.reset()},reset:function(){t.reset.call(this);this._doReset()},process:function(e){this._append(e);return this._process()},
159 | finalize:function(e){e&&this._append(e);return this._doFinalize()},keySize:4,ivSize:4,_ENC_XFORM_MODE:1,_DEC_XFORM_MODE:2,_createHelper:function(e){return{encrypt:function(b,k,d){return("string"==typeof k?c:a).encrypt(e,b,k,d)},decrypt:function(b,k,d){return("string"==typeof k?c:a).decrypt(e,b,k,d)}}}});d.StreamCipher=v.extend({_doFinalize:function(){return this._process(!0)},blockSize:1});var b=p.mode={},x=function(e,a,b){var c=this._iv;c?this._iv=u:c=this._prevBlock;for(var d=0;d<b;d++)e[a+d]^=
160 | c[d]},q=(d.BlockCipherMode=l.extend({createEncryptor:function(e,a){return this.Encryptor.create(e,a)},createDecryptor:function(e,a){return this.Decryptor.create(e,a)},init:function(e,a){this._cipher=e;this._iv=a}})).extend();q.Encryptor=q.extend({processBlock:function(e,a){var b=this._cipher,c=b.blockSize;x.call(this,e,a,c);b.encryptBlock(e,a);this._prevBlock=e.slice(a,a+c)}});q.Decryptor=q.extend({processBlock:function(e,a){var b=this._cipher,c=b.blockSize,d=e.slice(a,a+c);b.decryptBlock(e,a);x.call(this,
161 | e,a,c);this._prevBlock=d}});b=b.CBC=q;q=(p.pad={}).Pkcs7={pad:function(a,b){for(var c=4*b,c=c-a.sigBytes%c,d=c<<24|c<<16|c<<8|c,l=[],n=0;n<c;n+=4)l.push(d);c=s.create(l,c);a.concat(c)},unpad:function(a){a.sigBytes-=a.words[a.sigBytes-1>>>2]&255}};d.BlockCipher=v.extend({cfg:v.cfg.extend({mode:b,padding:q}),reset:function(){v.reset.call(this);var a=this.cfg,b=a.iv,a=a.mode;if(this._xformMode==this._ENC_XFORM_MODE)var c=a.createEncryptor;else c=a.createDecryptor,this._minBufferSize=1;this._mode=c.call(a,
162 | this,b&&b.words)},_doProcessBlock:function(a,b){this._mode.processBlock(a,b)},_doFinalize:function(){var a=this.cfg.padding;if(this._xformMode==this._ENC_XFORM_MODE){a.pad(this._data,this.blockSize);var b=this._process(!0)}else b=this._process(!0),a.unpad(b);return b},blockSize:4});var n=d.CipherParams=l.extend({init:function(a){this.mixIn(a)},toString:function(a){return(a||this.formatter).stringify(this)}}),b=(p.format={}).OpenSSL={stringify:function(a){var b=a.ciphertext;a=a.salt;return(a?s.create([1398893684,
163 | 1701076831]).concat(a).concat(b):b).toString(r)},parse:function(a){a=r.parse(a);var b=a.words;if(1398893684==b[0]&&1701076831==b[1]){var c=s.create(b.slice(2,4));b.splice(0,4);a.sigBytes-=16}return n.create({ciphertext:a,salt:c})}},a=d.SerializableCipher=l.extend({cfg:l.extend({format:b}),encrypt:function(a,b,c,d){d=this.cfg.extend(d);var l=a.createEncryptor(c,d);b=l.finalize(b);l=l.cfg;return n.create({ciphertext:b,key:c,iv:l.iv,algorithm:a,mode:l.mode,padding:l.padding,blockSize:a.blockSize,formatter:d.format})},
164 | decrypt:function(a,b,c,d){d=this.cfg.extend(d);b=this._parse(b,d.format);return a.createDecryptor(c,d).finalize(b.ciphertext)},_parse:function(a,b){return"string"==typeof a?b.parse(a,this):a}}),p=(p.kdf={}).OpenSSL={execute:function(a,b,c,d){d||(d=s.random(8));a=w.create({keySize:b+c}).compute(a,d);c=s.create(a.words.slice(b),4*c);a.sigBytes=4*b;return n.create({key:a,iv:c,salt:d})}},c=d.PasswordBasedCipher=a.extend({cfg:a.cfg.extend({kdf:p}),encrypt:function(b,c,d,l){l=this.cfg.extend(l);d=l.kdf.execute(d,
165 | b.keySize,b.ivSize);l.iv=d.iv;b=a.encrypt.call(this,b,c,d.key,l);b.mixIn(d);return b},decrypt:function(b,c,d,l){l=this.cfg.extend(l);c=this._parse(c,l.format);d=l.kdf.execute(d,b.keySize,b.ivSize,c.salt);l.iv=d.iv;return a.decrypt.call(this,b,c,d.key,l)}})}();
166 | (function(){for(var u=CryptoJS,p=u.lib.BlockCipher,d=u.algo,l=[],s=[],t=[],r=[],w=[],v=[],b=[],x=[],q=[],n=[],a=[],c=0;256>c;c++)a[c]=128>c?c<<1:c<<1^283;for(var e=0,j=0,c=0;256>c;c++){var k=j^j<<1^j<<2^j<<3^j<<4,k=k>>>8^k&255^99;l[e]=k;s[k]=e;var z=a[e],F=a[z],G=a[F],y=257*a[k]^16843008*k;t[e]=y<<24|y>>>8;r[e]=y<<16|y>>>16;w[e]=y<<8|y>>>24;v[e]=y;y=16843009*G^65537*F^257*z^16843008*e;b[k]=y<<24|y>>>8;x[k]=y<<16|y>>>16;q[k]=y<<8|y>>>24;n[k]=y;e?(e=z^a[a[a[G^z]]],j^=a[a[j]]):e=j=1}var H=[0,1,2,4,8,
167 | 16,32,64,128,27,54],d=d.AES=p.extend({_doReset:function(){for(var a=this._key,c=a.words,d=a.sigBytes/4,a=4*((this._nRounds=d+6)+1),e=this._keySchedule=[],j=0;j<a;j++)if(j<d)e[j]=c[j];else{var k=e[j-1];j%d?6<d&&4==j%d&&(k=l[k>>>24]<<24|l[k>>>16&255]<<16|l[k>>>8&255]<<8|l[k&255]):(k=k<<8|k>>>24,k=l[k>>>24]<<24|l[k>>>16&255]<<16|l[k>>>8&255]<<8|l[k&255],k^=H[j/d|0]<<24);e[j]=e[j-d]^k}c=this._invKeySchedule=[];for(d=0;d<a;d++)j=a-d,k=d%4?e[j]:e[j-4],c[d]=4>d||4>=j?k:b[l[k>>>24]]^x[l[k>>>16&255]]^q[l[k>>>
168 | 8&255]]^n[l[k&255]]},encryptBlock:function(a,b){this._doCryptBlock(a,b,this._keySchedule,t,r,w,v,l)},decryptBlock:function(a,c){var d=a[c+1];a[c+1]=a[c+3];a[c+3]=d;this._doCryptBlock(a,c,this._invKeySchedule,b,x,q,n,s);d=a[c+1];a[c+1]=a[c+3];a[c+3]=d},_doCryptBlock:function(a,b,c,d,e,j,l,f){for(var m=this._nRounds,g=a[b]^c[0],h=a[b+1]^c[1],k=a[b+2]^c[2],n=a[b+3]^c[3],p=4,r=1;r<m;r++)var q=d[g>>>24]^e[h>>>16&255]^j[k>>>8&255]^l[n&255]^c[p++],s=d[h>>>24]^e[k>>>16&255]^j[n>>>8&255]^l[g&255]^c[p++],t=
169 | d[k>>>24]^e[n>>>16&255]^j[g>>>8&255]^l[h&255]^c[p++],n=d[n>>>24]^e[g>>>16&255]^j[h>>>8&255]^l[k&255]^c[p++],g=q,h=s,k=t;q=(f[g>>>24]<<24|f[h>>>16&255]<<16|f[k>>>8&255]<<8|f[n&255])^c[p++];s=(f[h>>>24]<<24|f[k>>>16&255]<<16|f[n>>>8&255]<<8|f[g&255])^c[p++];t=(f[k>>>24]<<24|f[n>>>16&255]<<16|f[g>>>8&255]<<8|f[h&255])^c[p++];n=(f[n>>>24]<<24|f[g>>>16&255]<<16|f[h>>>8&255]<<8|f[k&255])^c[p++];a[b]=q;a[b+1]=s;a[b+2]=t;a[b+3]=n},keySize:8});u.AES=p._createHelper(d)})();
170 |     </script>
171 |     <script>
172 | /*
173 | CryptoJS v3.1.2
174 | code.google.com/p/crypto-js
175 | (c) 2009-2013 by Jeff Mott. All rights reserved.
176 | code.google.com/p/crypto-js/wiki/License
177 | */
178 | var CryptoJS=CryptoJS||function(g,j){var e={},d=e.lib={},m=function(){},n=d.Base={extend:function(a){m.prototype=this;var c=new m;a&&c.mixIn(a);c.hasOwnProperty("init")||(c.init=function(){c.$super.init.apply(this,arguments)});c.init.prototype=c;c.$super=this;return c},create:function(){var a=this.extend();a.init.apply(a,arguments);return a},init:function(){},mixIn:function(a){for(var c in a)a.hasOwnProperty(c)&&(this[c]=a[c]);a.hasOwnProperty("toString")&&(this.toString=a.toString)},clone:function(){return this.init.prototype.extend(this)}},
179 | q=d.WordArray=n.extend({init:function(a,c){a=this.words=a||[];this.sigBytes=c!=j?c:4*a.length},toString:function(a){return(a||l).stringify(this)},concat:function(a){var c=this.words,p=a.words,f=this.sigBytes;a=a.sigBytes;this.clamp();if(f%4)for(var b=0;b<a;b++)c[f+b>>>2]|=(p[b>>>2]>>>24-8*(b%4)&255)<<24-8*((f+b)%4);else if(65535<p.length)for(b=0;b<a;b+=4)c[f+b>>>2]=p[b>>>2];else c.push.apply(c,p);this.sigBytes+=a;return this},clamp:function(){var a=this.words,c=this.sigBytes;a[c>>>2]&=4294967295<<
180 | 32-8*(c%4);a.length=g.ceil(c/4)},clone:function(){var a=n.clone.call(this);a.words=this.words.slice(0);return a},random:function(a){for(var c=[],b=0;b<a;b+=4)c.push(4294967296*g.random()|0);return new q.init(c,a)}}),b=e.enc={},l=b.Hex={stringify:function(a){var c=a.words;a=a.sigBytes;for(var b=[],f=0;f<a;f++){var d=c[f>>>2]>>>24-8*(f%4)&255;b.push((d>>>4).toString(16));b.push((d&15).toString(16))}return b.join("")},parse:function(a){for(var c=a.length,b=[],f=0;f<c;f+=2)b[f>>>3]|=parseInt(a.substr(f,
181 | 2),16)<<24-4*(f%8);return new q.init(b,c/2)}},k=b.Latin1={stringify:function(a){var c=a.words;a=a.sigBytes;for(var b=[],f=0;f<a;f++)b.push(String.fromCharCode(c[f>>>2]>>>24-8*(f%4)&255));return b.join("")},parse:function(a){for(var c=a.length,b=[],f=0;f<c;f++)b[f>>>2]|=(a.charCodeAt(f)&255)<<24-8*(f%4);return new q.init(b,c)}},h=b.Utf8={stringify:function(a){try{return decodeURIComponent(escape(k.stringify(a)))}catch(b){throw Error("Malformed UTF-8 data");}},parse:function(a){return k.parse(unescape(encodeURIComponent(a)))}},
182 | u=d.BufferedBlockAlgorithm=n.extend({reset:function(){this._data=new q.init;this._nDataBytes=0},_append:function(a){"string"==typeof a&&(a=h.parse(a));this._data.concat(a);this._nDataBytes+=a.sigBytes},_process:function(a){var b=this._data,d=b.words,f=b.sigBytes,l=this.blockSize,e=f/(4*l),e=a?g.ceil(e):g.max((e|0)-this._minBufferSize,0);a=e*l;f=g.min(4*a,f);if(a){for(var h=0;h<a;h+=l)this._doProcessBlock(d,h);h=d.splice(0,a);b.sigBytes-=f}return new q.init(h,f)},clone:function(){var a=n.clone.call(this);
183 | a._data=this._data.clone();return a},_minBufferSize:0});d.Hasher=u.extend({cfg:n.extend(),init:function(a){this.cfg=this.cfg.extend(a);this.reset()},reset:function(){u.reset.call(this);this._doReset()},update:function(a){this._append(a);this._process();return this},finalize:function(a){a&&this._append(a);return this._doFinalize()},blockSize:16,_createHelper:function(a){return function(b,d){return(new a.init(d)).finalize(b)}},_createHmacHelper:function(a){return function(b,d){return(new w.HMAC.init(a,
184 | d)).finalize(b)}}});var w=e.algo={};return e}(Math);
185 | (function(){var g=CryptoJS,j=g.lib,e=j.WordArray,d=j.Hasher,m=[],j=g.algo.SHA1=d.extend({_doReset:function(){this._hash=new e.init([1732584193,4023233417,2562383102,271733878,3285377520])},_doProcessBlock:function(d,e){for(var b=this._hash.words,l=b[0],k=b[1],h=b[2],g=b[3],j=b[4],a=0;80>a;a++){if(16>a)m[a]=d[e+a]|0;else{var c=m[a-3]^m[a-8]^m[a-14]^m[a-16];m[a]=c<<1|c>>>31}c=(l<<5|l>>>27)+j+m[a];c=20>a?c+((k&h|~k&g)+1518500249):40>a?c+((k^h^g)+1859775393):60>a?c+((k&h|k&g|h&g)-1894007588):c+((k^h^
186 | g)-899497514);j=g;g=h;h=k<<30|k>>>2;k=l;l=c}b[0]=b[0]+l|0;b[1]=b[1]+k|0;b[2]=b[2]+h|0;b[3]=b[3]+g|0;b[4]=b[4]+j|0},_doFinalize:function(){var d=this._data,e=d.words,b=8*this._nDataBytes,l=8*d.sigBytes;e[l>>>5]|=128<<24-l%32;e[(l+64>>>9<<4)+14]=Math.floor(b/4294967296);e[(l+64>>>9<<4)+15]=b;d.sigBytes=4*e.length;this._process();return this._hash},clone:function(){var e=d.clone.call(this);e._hash=this._hash.clone();return e}});g.SHA1=d._createHelper(j);g.HmacSHA1=d._createHmacHelper(j)})();
187 | (function(){var g=CryptoJS,j=g.enc.Utf8;g.algo.HMAC=g.lib.Base.extend({init:function(e,d){e=this._hasher=new e.init;"string"==typeof d&&(d=j.parse(d));var g=e.blockSize,n=4*g;d.sigBytes>n&&(d=e.finalize(d));d.clamp();for(var q=this._oKey=d.clone(),b=this._iKey=d.clone(),l=q.words,k=b.words,h=0;h<g;h++)l[h]^=1549556828,k[h]^=909522486;q.sigBytes=b.sigBytes=n;this.reset()},reset:function(){var e=this._hasher;e.reset();e.update(this._iKey)},update:function(e){this._hasher.update(e);return this},finalize:function(e){var d=
188 | this._hasher;e=d.finalize(e);d.reset();return d.finalize(this._oKey.clone().concat(e))}})})();
189 | (function(){var g=CryptoJS,j=g.lib,e=j.Base,d=j.WordArray,j=g.algo,m=j.HMAC,n=j.PBKDF2=e.extend({cfg:e.extend({keySize:4,hasher:j.SHA1,iterations:1}),init:function(d){this.cfg=this.cfg.extend(d)},compute:function(e,b){for(var g=this.cfg,k=m.create(g.hasher,e),h=d.create(),j=d.create([1]),n=h.words,a=j.words,c=g.keySize,g=g.iterations;n.length<c;){var p=k.update(b).finalize(j);k.reset();for(var f=p.words,v=f.length,s=p,t=1;t<g;t++){s=k.finalize(s);k.reset();for(var x=s.words,r=0;r<v;r++)f[r]^=x[r]}h.concat(p);
190 | a[0]++}h.sigBytes=4*c;return h}});g.PBKDF2=function(d,b,e){return n.create(e).compute(d,b)}})();
191 |     </script>
192 |     <script>
193 |         /*! srcdoc-polyfill - v0.1.1 - 2013-03-01
194 |         * http://github.com/jugglinmike/srcdoc-polyfill/
195 |         * Copyright (c) 2013 Mike Pennisi; Licensed MIT */
196 |         (function( window, document, undefined ) {
197 | 	
198 | 	        var idx, iframes;
199 | 	        var _srcDoc = window.srcDoc;
200 | 	        var isCompliant = !!("srcdoc" in document.createElement("iframe"));
201 | 	        var implementations = {
202 | 		        compliant: function( iframe, content ) {
203 | 
204 | 			        if (content) {
205 | 				        iframe.setAttribute("srcdoc", content);
206 | 			        }
207 | 		        },
208 | 		        legacy: function( iframe, content ) {
209 | 
210 | 			        var jsUrl;
211 | 
212 | 			        if (!iframe || !iframe.getAttribute) {
213 | 				        return;
214 | 			        }
215 | 
216 | 			        if (!content) {
217 | 				        content = iframe.getAttribute("srcdoc");
218 | 			        } else {
219 | 				        iframe.setAttribute("srcdoc", content);
220 | 			        }
221 | 
222 | 			        if (content) {
223 | 				        // The value returned by a script-targeted URL will be used as
224 | 				        // the iFrame's content. Create such a URL which returns the
225 | 				        // iFrame element's `srcdoc` attribute.
226 | 				        jsUrl = "javascript: window.frameElement.getAttribute('srcdoc');";
227 | 
228 | 				        iframe.setAttribute("src", jsUrl);
229 | 
230 | 				        // Explicitly set the iFrame's window.location for
231 | 				        // compatability with IE9, which does not react to changes in
232 | 				        // the `src` attribute when it is a `javascript:` URL, for
233 | 				        // some reason
234 | 				        if (iframe.contentWindow) {
235 | 					        iframe.contentWindow.location = jsUrl;
236 | 				        }
237 | 			        }
238 | 		        }
239 | 	        };
240 | 	        var srcDoc = window.srcDoc = {
241 | 		        // Assume the best
242 | 		        set: implementations.compliant,
243 | 		        noConflict: function() {
244 | 			        window.srcDoc = _srcDoc;
245 | 			        return srcDoc;
246 | 		        }
247 | 	        };
248 | 
249 | 	        // If the browser supports srcdoc, no shimming is necessary
250 | 	        if (isCompliant) {
251 | 		        return;
252 | 	        }
253 | 
254 | 	        srcDoc.set = implementations.legacy;
255 | 
256 | 	        // Automatically shim any iframes already present in the document
257 | 	        iframes = document.getElementsByTagName("iframe");
258 | 	        idx = iframes.length;
259 | 
260 | 	        while (idx--) {
261 | 		        srcDoc.set( iframes[idx] );
262 | 	        }
263 | 
264 |         }( this, this.document ));
265 |     </script>
266 |     <script>
267 |         var pl = {"salt":"zDc366ngdRDTgJ8Yn/L7lv6SJfaWfXKhje9DR8dfL0s=","iv":"Fb9p8XD3pbiBcqyELkc/SQ==","data":"jJFbGm266gmg8FV5sxJ5HNZQcp16cD4nzyxKocboo/FKnHu/YKGDxIB6uY5Zi6iy5On/tFhIuxus6tQUGvt4W27ZPitXMS1ZhDHzbKD81PcfGLND+WXdGzZsUrrEz0ttJZ+WL86ImvrR3oR2k/6Pkwq4O1H7Ia3E6pHGsswS8MKSL/K0Fuqqpbb0upqAZbM6e66tiEMghBA6SsydDmn50ZnMjEUyBjdzj9ncLwHmBr19O96Di/VdvYkEtivsamYCL/PR90uVIqPhuiz+um1xRLfLqRyauj4Hj6mbLbvXuFGrLW2jIfj0JlN21cUmCGOC+lE2WcFnZQocraSYzrfYUTyCpbk6w7Pq4qXi2Dd6KvkZJ2bvdU695O/3bQhdObO7GXuFqlygZ8CKPAs5dadYy6HFR5QHbdzkauxHQQspqbV3qgSdVEd4jXgL8YhNKUvfXV6/ZzidIGsCw91bI8Scd1d2EBTqSlqjZiPZQ1ARicJcW8QKyHHU7cQsDhRaRp5/iEG+QfpcIrYirY6l0GEovrDqrDqC5Q7DfqtjZfWol2yzq1ObLiZjsvzPj8WTT44Lb3VVCtDirslDCM/iMgu/JumVRcWUVW7pkY/efGJibJPHp3vem2WNAXTw7aNwU7L1ecMaldjd9fDh5TxReVCz2JrkpQfwD1BcywBdzExr06SOurkcPAs2/WFGQ73rNKo6bXZhifhR90H48uxtMj4GGicln6K7DHhV5HxTISfZ/GeC08Qo1JJ1U7v92zS39FK50OoUJftQzGKVoYnXREoBEUg3iaR7o9kQRx8+dwlDuRb2Fe2XdGSELsVp7gUcioU6kcW79AAQy7tV70wp/fLNCsp7okH/EQ1Oz9It4paBcWL5ndrjgIBU8A1m1kpaUumbxw/tC3mUvHg6b3musJJUdHrdw3xRfNF8L6C8yRRawSBMog1oq4YHZY1KQNrTQH8aI/74dGqIeEBXtKStGLilnU4A27jJwyly1kmCBMLgTBdRC2eYk6YUZWNPhguc8O8cLbZP2UnI8mohlBlUCm1ZkpnIPaw3LT0Uug3+QuuhH3H/N+pvJM5emPx8l/7L7ELGN/HLB0Ubg9Qk9tRGt/ZVZnJ8T+poj6ns++SPtCI/wS77oLAOEOQPwNVAyI9Vslzzg53K6dpbDhGQ6GyJkiRB3uYPZGuVCztCRvIXScZgPCF154CagTOq5df7hfh1f+E/I4peX2FRC7AaDdEvxgMEtq4TyFI12fpAIPucigovMaV2rW54HLRQm6Lt5nApMBO1x6H3xNWji9wKJzcOSKUQuEHsRxlRGOmWUSIP9hgdoMLr/EVbjHE8yP4UBCORLYvLL0qze8/ZGrt79voi1cSLwZrZTdwZfJBLtV9T6kvKhYaksmGvEvFt+pD4ehhzj7fIb8kAfQU4Tl+AXhdzq0xQuany2VxLczFNi8A/Zq5uVypwgINuaaiPoTCEfeah9x5Z"};
268 |         
269 |         var submitPass = document.getElementById('submitPass');
270 |         var passEl = document.getElementById('pass');
271 |         var invalidPassEl = document.getElementById('invalidPass');
272 |         var successEl = document.getElementById('success');
273 |         var contentFrame = document.getElementById('contentFrame');
274 |         
275 |         if (pl === "") {
276 |             submitPass.disabled = true;
277 |             passEl.disabled = true;
278 |             alert("This page is meant to be used with the encryption tool. It doesn't work standalone.");
279 |         }
280 |         
281 |         function doSubmit(evt) {
282 |             try {
283 |                 var decrypted = decryptFile(CryptoJS.enc.Base64.parse(pl.data), passEl.value, CryptoJS.enc.Base64.parse(pl.salt), CryptoJS.enc.Base64.parse(pl.iv));
284 |                 if (decrypted === "") throw "No data returned";
285 |                 
286 |                 // Set default iframe link targets to _top so all links break out of the iframe
287 |                 decrypted = decrypted.replace("<head>", "<head><base href=\".\" target=\"_top\">");
288 |                 
289 |                 srcDoc.set(contentFrame, decrypted);
290 |                 
291 |                 successEl.style.display = "inline";
292 |                 passEl.disabled = true;
293 |                 submitPass.disabled = true;
294 |                 setTimeout(function() {
295 |                     dialogWrap.style.display = "none";
296 |                 }, 1000);
297 |             } catch (e) {
298 |                 invalidPassEl.style.display = "inline";
299 |                 passEl.value = "";
300 |             }
301 |         }
302 |         
303 |         submitPass.onclick = doSubmit;
304 |         passEl.onkeypress = function(e){
305 |             if (!e) e = window.event;
306 |             var keyCode = e.keyCode || e.which;
307 |             invalidPassEl.style.display = "none";
308 |             if (keyCode == '13'){
309 |               // Enter pressed
310 |               doSubmit();
311 |               return false;
312 |             }
313 |         }
314 |         
315 |         function decryptFile(contents, password, salt, iv) {
316 |             var _cp = CryptoJS.lib.CipherParams.create({
317 |                 ciphertext: contents
318 |             });
319 |             var key = CryptoJS.PBKDF2(password, salt, { keySize: 256/32, iterations: 100 });
320 |             var decrypted = CryptoJS.AES.decrypt(_cp, key, {iv: iv});
321 |             
322 |             return decrypted.toString(CryptoJS.enc.Utf8);
323 |         }
324 |     </script>
325 |   </body>
326 | </html>
327 | 


--------------------------------------------------------------------------------