Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/wiringbits/safer.chat

safer.chat is a web application that allows you to have groupal chats using end-to-end encryption, no addons, or applications needs to be installed
https://github.com/wiringbits/safer.chat

angular chat cryptocat end-to-end-encryption hacktoberfest play-framework public-key-cryptography scala security webcryptoapi

Last synced: about 1 month ago
JSON representation

safer.chat is a web application that allows you to have groupal chats using end-to-end encryption, no addons, or applications needs to be installed

Host: GitHub
URL: https://github.com/wiringbits/safer.chat
Owner: wiringbits
License: mit
Created: 2019-05-24T16:46:32.000Z (over 5 years ago)
Default Branch: master
Last Pushed: 2023-02-27T22:43:05.000Z (almost 2 years ago)
Last Synced: 2023-11-07T17:36:43.630Z (about 1 year ago)
Topics: angular, chat, cryptocat, end-to-end-encryption, hacktoberfest, play-framework, public-key-cryptography, scala, security, webcryptoapi
Language: TypeScript
Homepage: https://safer.chat
Size: 4.18 MB
Stars: 110
Watchers: 6
Forks: 14
Open Issues: 21
Metadata Files:
- Readme: README.md
- Contributing: CONTRIBUTING.md
- License: LICENSE

Awesome Lists containing this project

README

        # safer.chat

https://safer.chat is an end-to-end encrypted webchat that allows users to create rooms with up to 4 participants. The idea is to have what crypto cat used to be, without the need to install browser extensions or applications. In 2019 we have the [Web Crypto API](https://www.w3.org/TR/WebCryptoAPI/) which allows us to do all operations.

We do not store any tracking information or history, and the server logs don't include any keys or encrypted messages. In fact, all of the server's data lives in-memory.

To start a conversation, you need to choose a room and a password, then, only people knowing these details can log into that room, this password isn't transferred in plain text.

We hope you enjoy it.

## Technical details

There are two components, the `web` and the `server`. The `web` component is the frontend app that you see at https://safer.chat, it uses the `server` to exchange the keys and the messages between room participants.

- While joining a room, the app generates an RSA 2048 key-pair and shares the public key with the server (see [Public-key cryptography](https://en.wikipedia.org/wiki/Public-key_cryptography)).

- When a participant joins a room, it gets the participants and their public keys from the server.

- Each time a message is sent, it is encrypted using each participant's public key and sent to the server, which knows how to reach the participants.

As you can see by reading the technical details, all messages sent to the server are encrypted, any WebSocket debugger can be used to verify that the server doesn't alter any encrypted message or keys.

## Development

The project is a mono repository involving the following components:

- The [web](/web) project is the frontend app, what you see at https://safer.chat is what the [web](/web) has, it is built using Angular, communicates to the [server](/server) project using a web socket.

- The [server](/server) project is what connects the peers, it allows them to exchange their keys and messages, as well as handling the room reservation, it is built with Scala.

- The [infra](/infra) project has the deployment scripts, it uses Ansible.