add decrypt to illustrate

decrypt.py

@@ -0,0 +1,27 @@
+#! /usr/bin/python3
+
+import sys
+from base58 import b58decode
+from base64 import b64decode
+from libnacl import crypto_sign_ed25519_sk_to_curve25519 as private_sign2crypt
+from libnacl import crypto_sign_ed25519_pk_to_curve25519 as public_sign2crypt
+from libnacl.sign import Signer, Verifier
+from libnacl.public import SecretKey, PublicKey, Box
+
+sender_pub = sys.argv[1]
+recip_seed = sys.argv[2]
+nonce = sys.argv[3]
+title = sys.argv[4]
+content = sys.argv[5]
+
+signer = Signer(b58decode(recip_seed))
+sk = SecretKey(private_sign2crypt(signer.sk))
+
+verifier = Verifier(b58decode(sender_pub).hex())
+pk = PublicKey(public_sign2crypt(verifier.vk))
+
+box = Box(sk.sk, pk.pk)
+
+print("Objet: " + box.decrypt(b64decode(nonce) + b64decode(title)).decode('utf-8'))
+print("\n" + box.decrypt(b64decode(nonce) + b64decode(content)).decode('utf-8'))
+

readmsg.sh

@@ -0,0 +1,82 @@
+#!/bin/bash
+
+# ###
+# Lecture des messages Cesium+
+# ###
+
+[[ -z $(which jq) || -z $(which curl) ]] && echo "Installation de jq et curl ..." && sudo apt update && sudo apt install jq curl -y
+
+[[ ! -f .env ]] && cp .env.template .env
+source .env
+
+# Help display
+helpOpt() {
+    echo -e "This is a simple tester for Cesium+ messages sending
+    \r$0
+    Default, ask title, content and recipient in interactive mode.
+
+    \rOptions:
+    -r,--recipient <pubkey>\tUses <pubkey> as recipient of the messages.
+    -k,--key <key>\t\tPath <key> to the pubsec keychain file of the issuer."
+}
+
+REGEX_PUBKEYS="[a-zA-Z0-9]{42,44}"
+
+recipient=$issuer
+
+# Parse options
+declare -a args=($@)
+for ((i=0; i<${#args[*]}; ++i))
+do
+    case ${args[$i]} in
+        -r|--recipient) recipient="${args[$i+1]}"
+            [[ -z $recipient ]] && echo "Veuillez préciser un destinataire." && exit 1;;
+        -k|--key) dunikey="${args[$i+1]}"
+            [[ -z $dunikey ]] && echo "Veuillez préciser un fichier de trousseau." && exit 1;;
+        -o|--outbox) type=outbox;;
+        -n|--numbers) nbrRaw="${args[$i+1]}";;
+        -n*) nbrRaw="${args[$i]:2}";;
+        -h|--help) helpOpt && exit 0;;
+        *) [[ "${args[$i]}" == "-"* ]] && echo "Option inconnue." && exit 1;;
+    esac
+done
+
+if [[ -z $recipient ]]; then
+    read -p "Clé publique de l'utilisateur: " recipient
+fi
+if [[ -z $dunikey ]]; then
+    read -p "Fichier de trousseau: " dunikey
+fi
+[[ -z $type ]] && type="inbox"
+[[ -z $nbrRaw ]] && nbrRaw=5000
+
+[[ -z $(grep -Eo $REGEX_PUBKEYS <<<$recipient) ]] && echo "Le format de la clé publique du destinataire est invalide." && exit 1
+
+times=$(date -u +'%s')
+nonce=$(cat /dev/urandom | tr -dc 'a-zA-Z0-9' | fold -w 32 | head -n 1)
+
+document="{\"sort\":{\"time\":\"desc\"},\"from\":0,\"size\":$nbrRaw,\"_source\":[\"issuer\",\"recipient\",\"title\",\"content\",\"time\",\"nonce\",\"read_signature\"],\"query\":{\"bool\":{\"filter\":{\"term\":{\"recipient\":\"$recipient\"}}}}}"
+
+# Envoi du document
+msgContent=$(curl -s -X POST "https://g1.data.duniter.fr/message/$type/_search" -d "$document" | jq .hits.hits[]._source -c)
+
+#Traitement des données
+n=0
+for i in $msgContent; do
+    echo -e "=== $n ===\n"
+    #totalMsg='{'$(jq -r .total <<<"$i")'}'
+    dataObj=($(jq -r '.issuer,.recipient,.nonce,.title,.content,.time' <<<"$i"))
+    issuer="${dataObj[0]}"
+    recipient="${dataObj[1]}"
+    nonce=$(echo "${dataObj[2]}" | base58 -d | base64 -w 0)
+    title="${dataObj[3]}"
+    content="${dataObj[4]}"
+    time="${dataObj[5]}"
+
+    # python3 decrypt.py "$issuer" "$duniSeed" "$nonce" "$title" "$content"
+    titleClear=$(./natools.py box-decrypt -p "$issuer" -n "$nonce" -f pubsec -k "$dunikey" <<<"$title")
+    echo "$titleClear"
+    echo "========="
+    ((n++))
+done
+