Page MenuHomePhabricator
Differential D4655

[web] Add a library for generating secure random strings
AbandonedPublic
Actions

Authored by inka on Jul 27 2022, 7:08 AM.
Tags
None
Referenced Files
Unknown Object (File)
Thu, Jun 13, 6:02 PM
Unknown Object (File)
Sat, Jun 8, 10:33 PM
Unknown Object (File)
Wed, Jun 5, 6:49 AM
Unknown Object (File)
Apr 29 2024, 2:07 AM
Unknown Object (File)
Apr 29 2024, 2:04 AM
Unknown Object (File)
Apr 29 2024, 1:34 AM
Unknown Object (File)
Mar 30 2024, 12:13 AM
Unknown Object (File)
Mar 28 2024, 9:43 AM
View All 48 Files
Subscribers
abosh
adrian
atul

Details

Reviewers
tomek
ashoat
Summary

Add a library for generating secure random strings on web, so we can use it for creating unique
device ID.
The library: https://www.npmjs.com/package/crypto-random-string / https://classic.yarnpkg.com/en/package/crypto-random-string
Linear issue: https://linear.app/comm/issue/ENG-1279/initialize-deviceid-on-clients

Test Plan

Check that everything still compiles.

Diff Detail

Repository
rCOMM Comm
Branch
inka/add_library
Lint
No Lint Coverage
Unit
No Test Coverage

Event Timeline

inka created this revision.Jul 27 2022, 7:08 AM
Herald added subscribers: abosh, atul, adrian. · View Herald TranscriptJul 27 2022, 7:08 AM
inka added 1 blocking reviewer(s): ashoat.Jul 27 2022, 7:09 AM
inka added a child revision: D4587: [web] Add function (and an 'enum') for creating unique device ID on web.
inka edited the summary of this revision. (Show Details)Jul 27 2022, 7:12 AM
Harbormaster completed remote builds in B10914: Diff 15014.Jul 27 2022, 7:21 AM
inka requested review of this revision.Jul 27 2022, 7:21 AM
ashoat requested changes to this revision.Jul 27 2022, 9:12 AM

Seems good!! Two quick questions:

  1. In the docs, crypto.randomBytes is mentioned, which is a function in the Node.js API that is not in the browser API. How does crypto-random-string get access to the crypto module on web? I'm wondering if it's being "polyfilled".
  2. Related to the above, what is the "bundle size" impact of crypto-random-string? You can run cd web && yarn prod before and after this change and see how much larger the resultant .cjs file is. The reason I ask is that I'm worried that if this library is "polyfilling" the whole crypto module from Node.js, it may have a large impact on the bundle size.
This revision now requires changes to proceed.Jul 27 2022, 9:12 AM
inka abandoned this revision.Aug 3 2022, 6:58 AM

Revision Contents
Changeset List

PathSize
web/
1 line
12 lines

Diff 15014

View Options

web/package.json

Loading...
View Options

yarn.lock

Loading...