artur
/
paper-cred-demo
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
536 Commits
1 Branch
19 MiB
 
 
 
 
 
 
Branch: main
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'main'
${ noResults }
paper-cred-demo/index.v3.html

308 lines
16 KiB
Raw Permalink Blame History

<!doctype html>
<head>
<meta charset="UTF-8">
<link rel="stylesheet" href="css/style.v2.css">
<link rel="stylesheet" href="css/topnav.css">
<meta name="viewport" content="width=device-width, initial-scale=1">
<link rel="shortcut icon" href="https://www.pathcheck.org/hubfs/Favicon.png">
<title>Vaccine Distribution Certificates Generator</title>
<!-- Global site tag (gtag.js) - Google Analytics -->
<script async src="https://www.googletagmanager.com/gtag/js?id=G-DTDMHW3NV6"></script>
<script>
window.dataLayer = window.dataLayer || [];
function gtag(){dataLayer.push(arguments);}
gtag('js', new Date());
gtag('config', 'G-DTDMHW3NV6');
</script>
</head>
<body>
<div class="topnav">
<div class="topnavContainer">
<a href="index.html">Signers</a>
<a href="verify.html"><span class="xs-hidden">Universal </span>Verifier</a>
<a class="xs-hidden" href="debug.html">QR Debugger</a>
<a class="xs-hidden" href="https://github.com/Path-Check/paper-cred-demo">Source Code</a>
<a href="https://github.com/Path-Check/paper-cred"><span class="xs-hidden"> QR </span>Specs</a>
<a href="http://vaccine-docs.pathcheck.org"><span class="xs-hidden">Vaccine </span>Docs</a>
<a class="xs-hidden" href="http://pathcheck.org">About PathCheck</a>
</div>
</div>
<div class="center">
<h1>Vax Journey (El. Curve)</h1>
<div class="full-div">
<div class="quarter">
<h4>Coupon</h4>
<table>
<tr><td>ID</td><td><input id="qr-coupon-id" type="text" placeholder="2"/></td></tr>
<tr><td>Coupons</td><td><input id="qr-coupon-coupons" type="text" placeholder="5000"/></td></tr>
<tr><td>Phase</td><td><input id="qr-coupon-phase" type="text" placeholder="1A, 2A, ..."/></td></tr>
<tr><td>City</td><td><input id="qr-coupon-city" type="text" placeholder="Somerville, Cambridge, ..."/></td></tr>
<tr><td>Age</td><td><input id="qr-coupon-age" type="text" placeholder="Under 65, Over 65, ...>"/></td></tr>
<tr><td>Conditions</td><td><input id="qr-coupon-conditions" type="text" placeholder="Diabetes, ...."/></td></tr>
<tr><td>Job</td><td><input id="qr-coupon-job" type="text" placeholder="Teacher, Healthworker, ..."/></td></tr>
</table>
</div>
<div class="quarter">
<h4>PassKey</h4>
<table>
<tr><td>Name</td><td><input id="qr-passkey-name" type="text" placeholder="Patient Name"/></td></tr>
<tr><td>Phone</td><td><input id="qr-passkey-phone" type="text" placeholder="617 .."/></td></tr>
<tr><td>Birthdate</td><td><input id="qr-passkey-dob" type="text" placeholder="YYYY-MM-DD"/></td></tr>
<tr><td>Salt</td><td><input id="qr-passkey-salt" type="text" placeholder="2342342"/></td></tr>
</table>
</div>
<div class="quarter">
<h4>Badge</h4>
<table>
<tr><td>Date</td><td><input id="qr-badge-date" type="text" placeholder=""/></td></tr>
<tr><td>Manuf</td><td><input id="qr-badge-manuf" type="text" placeholder="Pfizer, Moderna, etc"/></td></tr>
<tr><td>Product</td><td><input id="qr-badge-product" type="text" placeholder="COVID-19"/></td></tr>
<tr><td>Lot#</td><td><input id="qr-badge-lot" type="text" placeholder="012L20A, ..."/></td></tr>
<tr><td>Route</td><td><input id="qr-badge-route" type="text" placeholder="Intramuscular, Intranasal, Subcut, Oral, ..."/></td></tr>
<tr><td>Site</td><td><input id="qr-badge-site" type="text" placeholder="Right Arm, Left Arm, ..."/></td></tr>
<tr><td>Dosage</td><td><input id="qr-badge-dose" type="text" placeholder="1.0ml, 0.5ml, ..."/></td></tr>
<tr><td>Doses</td><td><input id="qr-badge-required_doses" type="text" placeholder="1, 2, 3, ..."/></td></tr>
<tr><td>Next Dose</td><td><input id="qr-badge-next_dose_in_days" type="text" placeholder="21, 28, ..."/></td></tr>
<tr><td>Vaccinator</td><td><input id="qr-badge-vacinator" type="text" placeholder="Pharmacy Name, City, ..."/></td></tr>
<tr><td>PassKey</td><td><input id="qr-badge-vaccinee" type="text" placeholder="User Hash" readonly/></td></tr>
</table>
</div>
<div class="quarter">
<h4>Status</h4>
<table>
<tr><td>Doses</td><td><input id="qr-status-vaccinated" type="text" placeholder="0,1,2"/></td></tr>
<tr><td>PassKey</td><td><input id="qr-status-vaccinee" type="text" placeholder="User Hash" readonly/></td></tr>
</table>
</div>
<div class="quarter">
<h4>Credentials</h4>
<label for="privkey">Private Key</label><br/>
<textarea id="privkey" rows="10" cols="30">-----BEGIN EC PARAMETERS-----
BgUrgQQACg==
-----END EC PARAMETERS-----
-----BEGIN EC PRIVATE KEY-----
MHQCAQEEIPWKbSezZMY1gCpvN42yaVv76Lo47FvSsVZpQl0a5lWRoAcGBSuBBAAK
oUQDQgAE6DeIun4EgMBLUmbtjQw7DilMJ82YIvOR2jz/IK0R/F7/zXY1z+gqvFXf
DcJqR5clbAYlO9lHmvb4lsPLZHjugQ==
-----END EC PRIVATE KEY-----</textarea>
<br><br>
<label for="pubkey">Link to Public Key</label><br/>
<textarea id="qr-link" rows="3" cols="30">github.pathcheck.org/keys/ecdsa_pub_key</textarea>
<br><br>
<label for="privkey">QR Code Format</label><br/>
<pre><span class='protocol'>Protocol</span>:<span class='crypto-algo'>HashAlgo</span>\<span class='signature'>Signature</span>@<span class='pub-key'>PubKey</span>?<span class='message'>Message</span></pre>
</div>
</div>
<br>
<div class="four-quarter">
<button class="qr-btn" onclick="generateQRCodes()">Create Certificates</button>
</div>
<div class="full-div">
<div class="quarter">
<h4>Coupon</h4>
<canvas id="qr-coupon-code"></canvas><br/>
<pre id="qr-coupon-result"></pre>
<p id="qr-coupon-verified"></p>
</div>
<div class="quarter">
<h4>Passkey</h4>
<canvas id="qr-passkey-code"></canvas><br/>
<pre id="qr-passkey-result"></pre>
<p id="qr-passkey-verified"></p>
</div>
<div class="quarter">
<h4>Badge</h4>
<canvas id="qr-badge-code"></canvas><br/>
<pre id="qr-badge-result"></pre>
<p id="qr-badge-verified"></p>
</div>
<div class="quarter">
<h4>Status</h4>
<canvas id="qr-status-code"></canvas><br/>
<pre id="qr-status-result"></pre>
<p id="qr-status-verified"></p>
</div>
<div class="quarter">
</div>
</div>
</div>
<script src="js/qrious.min.js"></script>
<script src="js/elliptic.min.js"></script>
<script src="js/sha256.js"></script>
<script src="js/asn1.min.js"></script>
<script>
var EC = elliptic.ec;
var ANS1 = asn1;
var ECPublicKey = ANS1.define("PublicKey", function() {
this.seq().obj(
this.key("algorithm").seq().obj(
this.key("id").objid(),
this.key("curve").objid()
),
this.key("pub").bitstr()
);
});
var ECPrivateKey = ANS1.define("ECPrivateKey", function() {
this.seq().obj(
this.key('version').int().def(1),
this.key('privateKey').octstr(),
this.key('parameters').explicit(0).objid().optional(),
this.key('publicKey').explicit(1).bitstr().optional()
);
});
function e(elem) { return document.getElementById(elem); }
function addIfExists(prefix, elemId) {
let value = encodeURIComponent(e(elemId).value);
return value ? prefix+value : "";
}
function verify(pubkey, message, signature, feedback_elem_id) {
// Download pubkey to verify
var client = new XMLHttpRequest();
client.open('GET', "https://" + pubkey);
client.addEventListener("load",
function() {
// Verify with the public key...
var ec = new EC('secp256k1');
var ec_pubk = ECPublicKey.decode(this.response, 'pem', {label: 'PUBLIC KEY'});
var key = ec.keyFromPublic(ec_pubk.pub.data, 'der');
var verified = key.verify(message, signature);
e(feedback_elem_id).innerHTML = "Verified: " + verified;
}
);
client.send();
}
function signAndDisplayQR(elemPref, protocol, crypto, prikey, pubkey, message) {
var ec = new EC(crypto);
var ec_pk = ECPrivateKey.decode(prikey, 'pem', {label: 'EC PRIVATE KEY'});
var key = ec.keyFromPrivate(ec_pk.privateKey, 'der');
var signature = key.sign(message).toDER('hex');
var uri = protocol+":"+crypto+"\\"+signature+"@"+pubkey+"?"+message;
var qr = new QRious({ element: e(elemPref+'-code') });
qr.set({
foreground: '#3654DD',
size: e(elemPref+'-code').scrollWidth,
level: 'M',
value: uri
});
e(elemPref+"-result").innerHTML= "<span class='protocol'>"+protocol+"</span>:" +
"<span class='crypto-algo'>"+crypto+"</span>\\" +
"<span class='signature'>" + signature + "</span>" + "@" +
"<span class='pub-key'>" + pubkey + "</span>" + "?" +
"<span class='message'>" + message + "</span>";
e(elemPref+"-verified").innerHTML = "Verified: false";
verify(pubkey, message, signature, elemPref + "-verified");
}
function generateQRCodes() {
gtag('event', 'generateQR');
var pubkey = e("qr-link").value.trim().replace("http://","");
var prikey = e('privkey').value;
var messageCoupon = "type=coupon";
messageCoupon += addIfExists("&id=", "qr-coupon-id");
messageCoupon += addIfExists("&coupons=", "qr-coupon-coupons");
messageCoupon += addIfExists("&phase=", "qr-coupon-phase");
messageCoupon += addIfExists("&city=", "qr-coupon-city");
messageCoupon += addIfExists("&age=", "qr-coupon-age");
messageCoupon += addIfExists("&conditions=", "qr-coupon-conditions");
messageCoupon += addIfExists("&job=", "qr-coupon-job");
signAndDisplayQR("qr-coupon", "healthpass", 'secp256k1', prikey, pubkey, messageCoupon);
// PassKey
var messagePassKey = "type=passkey";
messagePassKey += addIfExists("&name=", "qr-passkey-name");
messagePassKey += addIfExists("&phone=", "qr-passkey-phone");
messagePassKey += addIfExists("&dob=", "qr-passkey-dob");
messagePassKey += addIfExists("&salt=", "qr-passkey-salt");
signAndDisplayQR("qr-passkey", "healthpass", 'secp256k1', prikey, pubkey, messagePassKey);
var hashPassKey = CryptoJS.SHA256(messagePassKey);
e("qr-status-vaccinee").value = hashPassKey;
e("qr-badge-vaccinee").value = hashPassKey;
// Badge
var messageBadge = "type=badge";
messageBadge += "&date="+e("qr-badge-date").value;
messageBadge += addIfExists("&vaccinee=", "qr-badge-vaccinee");
messageBadge += addIfExists("&vaccinator=", "qr-badge-vacinator");
messageBadge += addIfExists("&manuf=", "qr-badge-manuf");
messageBadge += addIfExists("&name=", "qr-badge-product");
messageBadge += addIfExists("&lot=", "qr-badge-lot");
messageBadge += addIfExists("&route=", "qr-badge-route");
messageBadge += addIfExists("&site=", "qr-badge-site");
messageBadge += addIfExists("&dose=", "qr-badge-dose");
messageBadge += addIfExists("&required_doses=", "qr-badge-required_doses");
messageBadge += addIfExists("&next_dose_in_days=", "qr-badge-next_dose_in_days");
signAndDisplayQR("qr-badge", "healthpass", 'secp256k1', prikey, pubkey, messageBadge);
// Status
var messageStatus = "type=status";
messageStatus += addIfExists("&vaccinated=", "qr-status-vaccinated");
messageStatus += addIfExists("&vaccinee=", "qr-status-vaccinee");
signAndDisplayQR("qr-status", "healthpass", 'secp256k1', prikey, pubkey, messageStatus);
}
</script>
<script>
// Defaults
e("qr-badge-date").value = new Date().toJSON().slice(0, 16);
// Salt
e("qr-passkey-salt").value = Math.random().toString(36).substring(3);
function loadDemo() {
e("qr-coupon-id").value = "US MA 0001";
e("qr-coupon-coupons").value = 5000;
e("qr-coupon-phase").value = "1A";
e("qr-coupon-city").value = "Somerville";
e("qr-coupon-age").value = "<65";
e("qr-coupon-conditions").value = "Chronic";
e("qr-coupon-job").value = "HealthWorkers, Teachers";
e("qr-passkey-name").value = "John Doe";
e("qr-passkey-phone").value = "+1 617 333 2345";
e("qr-passkey-dob").value = "1950-04-22";
e("qr-badge-vacinator").value = "CVS Minute Clinic";
e("qr-badge-manuf").value = "Moderna";
e("qr-badge-product").value = "COVID-19";
e("qr-badge-lot").value = "012L20A";
e("qr-badge-route").value = "IM";
e("qr-badge-site").value = "RA";
e("qr-badge-dose").value = ".5ml";
e("qr-badge-required_doses").value = "2";
e("qr-badge-next_dose_in_days").value = "28";
e("qr-status-vaccinated").value = "1";
}
loadDemo();
</script>
</body>
</html>