chore: add incident blog post

feat: improve the UX for password protected documents (#780 )
fix: add symmetric encryption to document passwords
2024-01-17 21:41:00 +11:00 · 2024-01-17 19:32:42 +11:00 · 2024-01-17 17:28:28 +11:00 · 2024-01-17 17:17:08 +11:00 · 2024-01-17 11:10:28 +11:00 · 2024-01-12 20:54:59 +05:30
25 changed files with 376 additions and 235 deletions
--- a/apps/marketing/content/blog/email-provider-incident-2024-01-10.mdx
+++ b/apps/marketing/content/blog/email-provider-incident-2024-01-10.mdx
@@ -0,0 +1,28 @@
+---
+title: Jan 10th Email Provider Security Incident
+description: On January 10th, 2022, we were notified by our email provider that they had experienced a security incident.
+authorName: 'Lucas Smith'
+authorImage: '/blog/blog-author-lucas.png'
+authorRole: 'Co-Founder'
+date: 2024-01-17
+tags:
+  - Security
+---
+
+On January 10th, 2024 we were notified by our email provider that a security incident had occurred. This security incident which had started on January 7th led to a bad actor obtaining access to their database which contains ours and other customer’s data.
+
+We understand that during this security incident the following has been accessed:
+
+- Email addresses.
+- Metadata on emails sent excluding the email body.
+
+While the incident is unfortunate we are pleased with the remediation and the processes that our email provider has put in place to help avoid this kind of situation in the future. Since the incident, our provider has rectified the issue and has engaged a security company to conduct an exhaustive investigation and to help improve their security posture moving forward.
+
+We remain steadfast in our commitment to our current email provider, and will not be taking any further action with relation to changing providers.
+
+We are now working with our legal counsel to ensure that we provide the appropriate notice to all our customers in each jurisdiction. If you have any further questions on this incident please feel free to contact our support team at [support@documenso.com](mailto:support@documenso.com).
+
+We appreciate your ongoing support in this matter.
+
+You can read more on the incident on our providers blog post below:
+[https://resend.com/blog/incident-report-for-january-10-2024](https://resend.com/blog/incident-report-for-january-10-2024)
--- a/apps/marketing/src/components/(marketing)/widget.tsx
+++ b/apps/marketing/src/components/(marketing)/widget.tsx
@@ -1,7 +1,7 @@
 'use client';

-import { useMemo, useState } from 'react';
 import type { HTMLAttributes, KeyboardEvent } from 'react';
+import { useMemo, useState } from 'react';

 import { zodResolver } from '@hookform/resolvers/zod';
 import { AnimatePresence, motion } from 'framer-motion';
@@ -355,7 +355,6 @@ export const Widget = ({ className, children, ...props }: WidgetProps) => {
                <div
                  className="absolute inset-x-0 bottom-0 flex cursor-auto items-center justify-between px-4 pb-2"
                  onClick={(e) => e.stopPropagation()}
-                  onKeyDown={(e) => e.stopPropagation()}
                >
                  <Input
                    id="signatureText"
@@ -393,11 +392,10 @@ export const Widget = ({ className, children, ...props }: WidgetProps) => {
          </DialogHeader>

          <DialogDescription>
-            By signing you signal your support of Documenso's mission in a <br />
-            <strong>non-legally binding, but heartfelt way</strong>. <br />
-            <br />
-            You also unlock the option to purchase the early supporter plan including everything we
-            build this year for fixed price.
+            By signing you signal your support of Documenso's mission in a <br></br>
+            <strong>non-legally binding, but heartfelt way</strong>. <br></br>
+            <br></br>You also unlock the option to purchase the early supporter plan including
+            everything we build this year for fixed price.
          </DialogDescription>

          <SignaturePad
--- a/apps/web/next.config.js
+++ b/apps/web/next.config.js
@@ -17,10 +17,6 @@ const FONT_CAVEAT_BYTES = fs.readFileSync(
  path.join(__dirname, '../../packages/assets/fonts/caveat.ttf'),
 );

-const FONT_DANCING_SCRIPT_BYTES = fs.readFileSync(
-  path.join(__dirname, '../../packages/assets/fonts/dancing-script.ttf'),
-);
-
 /** @type {import('next').NextConfig} */
 const config = {
  output: process.env.DOCKER_OUTPUT ? 'standalone' : undefined,
@@ -44,7 +40,6 @@ const config = {
    APP_VERSION: version,
    NEXT_PUBLIC_PROJECT: 'web',
    FONT_CAVEAT_URI: `data:font/ttf;base64,${FONT_CAVEAT_BYTES.toString('base64')}`,
-    FONT_DANCING_SCRIPT_URI: `data:font/ttf;base64,${FONT_DANCING_SCRIPT_BYTES.toString('base64')}`,
  },
  modularizeImports: {
    'lucide-react': {
--- a/apps/web/src/app/(dashboard)/documents/[id]/edit-document.tsx
+++ b/apps/web/src/app/(dashboard)/documents/[id]/edit-document.tsx
@@ -4,7 +4,7 @@ import { useState } from 'react';

 import { useRouter } from 'next/navigation';

-import type { DocumentData, Field, Recipient, User } from '@documenso/prisma/client';
+import type { DocumentData, DocumentMeta, Field, Recipient, User } from '@documenso/prisma/client';
 import { DocumentStatus } from '@documenso/prisma/client';
 import type { DocumentWithData } from '@documenso/prisma/types/document-with-data';
 import { trpc } from '@documenso/trpc/react';
@@ -29,6 +29,7 @@ export type EditDocumentFormProps = {
  user: User;
  document: DocumentWithData;
  recipients: Recipient[];
+  documentMeta: DocumentMeta | null;
  fields: Field[];
  documentData: DocumentData;
 };
@@ -41,6 +42,7 @@ export const EditDocumentForm = ({
  document,
  recipients,
  fields,
+  documentMeta,
  user: _user,
  documentData,
 }: EditDocumentFormProps) => {
@@ -56,6 +58,8 @@ export const EditDocumentForm = ({
  const { mutateAsync: addFields } = trpc.field.addFields.useMutation();
  const { mutateAsync: addSigners } = trpc.recipient.addSigners.useMutation();
  const { mutateAsync: sendDocument } = trpc.document.sendDocument.useMutation();
+  const { mutateAsync: setPasswordForDocument } =
+    trpc.document.setPasswordForDocument.useMutation();

  const documentFlow: Record<EditDocumentStep, DocumentFlowStep> = {
    title: {
@@ -176,6 +180,13 @@ export const EditDocumentForm = ({
    }
  };

+  const onPasswordSubmit = async (password: string) => {
+    await setPasswordForDocument({
+      documentId: document.id,
+      password,
+    });
+  };
+
  const currentDocumentFlow = documentFlow[step];

  return (
@@ -185,7 +196,13 @@ export const EditDocumentForm = ({
        gradient
      >
        <CardContent className="p-2">
-          <LazyPDFViewer key={documentData.id} documentData={documentData} />
+          <LazyPDFViewer
+            key={documentData.id}
+            documentData={documentData}
+            document={document}
+            password={documentMeta?.password}
+            onPasswordSubmit={onPasswordSubmit}
+          />
        </CardContent>
      </Card>

--- a/apps/web/src/app/(dashboard)/documents/[id]/page.tsx
+++ b/apps/web/src/app/(dashboard)/documents/[id]/page.tsx
@@ -3,10 +3,12 @@ import { redirect } from 'next/navigation';

 import { ChevronLeft, Users2 } from 'lucide-react';

+import { DOCUMENSO_ENCRYPTION_KEY } from '@documenso/lib/constants/crypto';
 import { getRequiredServerComponentSession } from '@documenso/lib/next-auth/get-server-component-session';
 import { getDocumentById } from '@documenso/lib/server-only/document/get-document-by-id';
 import { getFieldsForDocument } from '@documenso/lib/server-only/field/get-fields-for-document';
 import { getRecipientsForDocument } from '@documenso/lib/server-only/recipient/get-recipients-for-document';
+import { symmetricDecrypt } from '@documenso/lib/universal/crypto';
 import { DocumentStatus as InternalDocumentStatus } from '@documenso/prisma/client';
 import { LazyPDFViewer } from '@documenso/ui/primitives/lazy-pdf-viewer';

@@ -40,7 +42,24 @@ export default async function DocumentPage({ params }: DocumentPageProps) {
    redirect('/documents');
  }

-  const { documentData } = document;
+  const { documentData, documentMeta } = document;
+
+  if (documentMeta?.password) {
+    const key = DOCUMENSO_ENCRYPTION_KEY;
+
+    if (!key) {
+      throw new Error('Missing DOCUMENSO_ENCRYPTION_KEY');
+    }
+
+    const securePassword = Buffer.from(
+      symmetricDecrypt({
+        key,
+        data: documentMeta.password,
+      }),
+    ).toString('utf-8');
+
+    documentMeta.password = securePassword;
+  }

  const [recipients, fields] = await Promise.all([
    getRecipientsForDocument({
@@ -83,6 +102,7 @@ export default async function DocumentPage({ params }: DocumentPageProps) {
          className="mt-8"
          document={document}
          user={user}
+          documentMeta={documentMeta}
          recipients={recipients}
          fields={fields}
          documentData={documentData}
@@ -91,7 +111,12 @@ export default async function DocumentPage({ params }: DocumentPageProps) {

      {document.status === InternalDocumentStatus.COMPLETED && (
        <div className="mx-auto mt-12 max-w-2xl">
-          <LazyPDFViewer key={documentData.id} documentData={documentData} />
+          <LazyPDFViewer
+            document={document}
+            key={documentData.id}
+            documentMeta={documentMeta}
+            documentData={documentData}
+          />
        </div>
      )}
    </div>
--- a/apps/web/src/app/(dashboard)/documents/page.tsx
+++ b/apps/web/src/app/(dashboard)/documents/page.tsx
@@ -88,7 +88,7 @@ export default async function DocumentsPage({ searchParams = {} }: DocumentsPage
                    <DocumentStatus status={value} />

                    {value !== ExtendedDocumentStatus.ALL && (
-                      <span className="ml-1 hidden opacity-50 md:inline-block">
+                      <span className="ml-1 inline-block opacity-50">
                        {Math.min(stats[value], 99)}
                        {stats[value] > 99 && '+'}
                      </span>
--- a/apps/web/src/app/(signing)/sign/[token]/form.tsx
+++ b/apps/web/src/app/(signing)/sign/[token]/form.tsx
@@ -4,18 +4,10 @@ import { useMemo, useState } from 'react';

 import { useRouter } from 'next/navigation';

-import { zodResolver } from '@hookform/resolvers/zod';
 import { useSession } from 'next-auth/react';
 import { useForm } from 'react-hook-form';
-import { z } from 'zod';

 import { useAnalytics } from '@documenso/lib/client-only/hooks/use-analytics';
-import { useElementScaleSize } from '@documenso/lib/client-only/hooks/use-element-scale-size';
-import { useFieldPageCoords } from '@documenso/lib/client-only/hooks/use-field-page-coords';
-import {
-  DEFAULT_HANDWRITING_FONT_SIZE,
-  MIN_HANDWRITING_FONT_SIZE,
-} from '@documenso/lib/constants/pdf';
 import { sortFieldsByPosition, validateFieldsInserted } from '@documenso/lib/utils/fields';
 import type { Document, Field, Recipient } from '@documenso/prisma/client';
 import { trpc } from '@documenso/trpc/react';
@@ -36,27 +28,7 @@ export type SigningFormProps = {
  fields: Field[];
 };

-const ZSigningpadSchema = z.union([
-  z.object({
-    signatureDataUrl: z.string().min(1),
-    signatureText: z.null().or(z.string().max(0)),
-  }),
-  z.object({
-    signatureDataUrl: z.null().or(z.string().max(0)),
-    signatureText: z.string().trim().min(1),
-  }),
-]);
-
-export type TSigningpadSchema = z.infer<typeof ZSigningpadSchema>;
-
-export const SigningForm = ({ document: _document, recipient, fields }: SigningFormProps) => {
-  const fontVariable = '--font-signature';
-  const minFontSize = MIN_HANDWRITING_FONT_SIZE;
-  const maxFontSize = DEFAULT_HANDWRITING_FONT_SIZE;
-  const fontVariableValue = getComputedStyle(document.documentElement).getPropertyValue(
-    fontVariable,
-  );
-
+export const SigningForm = ({ document, recipient, fields }: SigningFormProps) => {
  const router = useRouter();
  const analytics = useAnalytics();
  const { data: session } = useSession();
@@ -69,24 +41,9 @@ export const SigningForm = ({ document: _document, recipient, fields }: SigningF
    trpc.recipient.completeDocumentWithToken.useMutation();

  const {
-    register,
    handleSubmit,
-    setValue,
-    watch,
    formState: { isSubmitting },
-  } = useForm<TSigningpadSchema>({
-    mode: 'onChange',
-    defaultValues: {
-      signatureDataUrl: signature || null,
-      signatureText: '',
-    },
-    resolver: zodResolver(ZSigningpadSchema),
-  });
-
-  const { height, width } = useFieldPageCoords(fields.find((field) => field.type === 'SIGNATURE')!);
-
-  const signatureDataUrl = watch('signatureDataUrl');
-  const signatureText = watch('signatureText');
+  } = useForm();

  const uninsertedFields = useMemo(() => {
    return sortFieldsByPosition(fields.filter((field) => !field.inserted));
@@ -108,30 +65,18 @@ export const SigningForm = ({ document: _document, recipient, fields }: SigningF

    await completeDocumentWithToken({
      token: recipient.token,
-      documentId: _document.id,
+      documentId: document.id,
    });

    analytics.capture('App: Recipient has completed signing', {
      signerId: recipient.id,
-      documentId: _document.id,
+      documentId: document.id,
      timestamp: new Date().toISOString(),
    });

    router.push(`/sign/${recipient.token}/complete`);
  };

-  const scalingFactor = useElementScaleSize(
-    {
-      height,
-      width,
-    },
-    signatureText || '',
-    maxFontSize,
-    fontVariableValue,
-  );
-
-  const fontSize = maxFontSize * scalingFactor;
-
  return (
    <form
      className={cn(
@@ -183,79 +128,15 @@ export const SigningForm = ({ document: _document, recipient, fields }: SigningF
              <div>
                <Label htmlFor="Signature">Signature</Label>

-                <Card id="signature" className="mt-4" degrees={-120} gradient>
-                  <CardContent role="button" className="relative cursor-pointer pt-6">
-                    <div className="flex h-44 max-w-[18rem] items-center justify-center pb-6">
-                      {!signatureText && (
-                        <SignaturePad
-                          className="h-44"
-                          defaultValue={signature ?? undefined}
-                          clearSignatureClassName="absolute -bottom-6 -right-2 z-10 cursor-pointer"
-                          undoSignatureClassName="absolute -top-32 -left-4 z-10 cursor-pointer"
-                          onChange={(value) => {
-                            setSignature(value);
-                          }}
-                        />
-                      )}
-
-                      {signatureText && (
-                        <p
-                          style={{
-                            fontSize: `clamp(${minFontSize}px, ${fontSize}px, ${maxFontSize}px)`,
-                            fontFamily: `var(${fontVariable})`,
-                          }}
-                          className={cn(
-                            'text-foreground font-signature max-w-[18rem] text-4xl font-semibold',
-                          )}
-                        >
-                          {signatureText}
-                        </p>
-                      )}
-                    </div>
-
-                    <div
-                      className="absolute inset-x-0 bottom-0 flex cursor-auto items-end justify-between px-4 pb-1 pt-2"
-                      onClick={(e) => e.stopPropagation()}
-                      onKeyDown={(e) => e.stopPropagation()}
-                    >
-                      <Input
-                        id="signatureText"
-                        className="text-foreground placeholder:text-muted-foreground max-w-[15rem] border-0 border-none bg-transparent p-0 text-sm focus-visible:ring-transparent"
-                        placeholder="Draw or type your name here"
-                        disabled={isSubmitting || signature?.startsWith('data:')}
-                        {...register('signatureText', {
-                          onChange: (e) => {
-                            if (e.target.value !== '') {
-                              setValue('signatureDataUrl', null);
-                            }
-
-                            setValue('signatureText', e.target.value);
-                          },
-
-                          onBlur: (e) => {
-                            if (e.target.value === '') {
-                              return setValue('signatureText', '');
-                            }
-
-                            setSignature(e.target.value.trimStart());
-                          },
-                        })}
-                      />
-                      {signatureText && (
-                        <div className="absolute bottom-3 right-4 z-10 cursor-pointer">
-                          <button
-                            type="button"
-                            className="focus-visible:ring-ring ring-offset-background text-muted-foreground rounded-full p-0 text-xs focus-visible:outline-none focus-visible:ring-2"
-                            onClick={() => {
-                              setValue('signatureText', '');
-                              setValue('signatureDataUrl', null);
-                            }}
-                          >
-                            Clear Signature
-                          </button>
-                        </div>
-                      )}
-                    </div>
+                <Card className="mt-2" gradient degrees={-120}>
+                  <CardContent className="p-0">
+                    <SignaturePad
+                      className="h-44 w-full"
+                      defaultValue={signature ?? undefined}
+                      onChange={(value) => {
+                        setSignature(value);
+                      }}
+                    />
                  </CardContent>
                </Card>
              </div>
@@ -276,7 +157,7 @@ export const SigningForm = ({ document: _document, recipient, fields }: SigningF
              <SignDialog
                isSubmitting={isSubmitting}
                onSignatureComplete={handleSubmit(onFormSubmit)}
-                document={_document}
+                document={document}
                fields={fields}
                fieldsValidated={fieldsValidated}
              />
--- a/apps/web/src/app/(signing)/sign/[token]/page.tsx
+++ b/apps/web/src/app/(signing)/sign/[token]/page.tsx
@@ -2,6 +2,7 @@ import { notFound, redirect } from 'next/navigation';

 import { match } from 'ts-pattern';

+import { DOCUMENSO_ENCRYPTION_KEY } from '@documenso/lib/constants/crypto';
 import { DEFAULT_DOCUMENT_DATE_FORMAT } from '@documenso/lib/constants/date-formats';
 import { PDF_VIEWER_PAGE_SELECTOR } from '@documenso/lib/constants/pdf-viewer';
 import { DEFAULT_DOCUMENT_TIME_ZONE } from '@documenso/lib/constants/time-zones';
@@ -12,6 +13,7 @@ import { viewedDocument } from '@documenso/lib/server-only/document/viewed-docum
 import { getFieldsForToken } from '@documenso/lib/server-only/field/get-fields-for-token';
 import { getRecipientByToken } from '@documenso/lib/server-only/recipient/get-recipient-by-token';
 import { getRecipientSignatures } from '@documenso/lib/server-only/recipient/get-recipient-signatures';
+import { symmetricDecrypt } from '@documenso/lib/universal/crypto';
 import { DocumentStatus, FieldType, SigningStatus } from '@documenso/prisma/client';
 import { Card, CardContent } from '@documenso/ui/primitives/card';
 import { ElementVisible } from '@documenso/ui/primitives/element-visible';
@@ -66,6 +68,23 @@ export default async function SigningPage({ params: { token } }: SigningPageProp
    redirect(`/sign/${token}/complete`);
  }

+  if (documentMeta?.password) {
+    const key = DOCUMENSO_ENCRYPTION_KEY;
+
+    if (!key) {
+      throw new Error('Missing DOCUMENSO_ENCRYPTION_KEY');
+    }
+
+    const securePassword = Buffer.from(
+      symmetricDecrypt({
+        key,
+        data: documentMeta.password,
+      }),
+    ).toString('utf-8');
+
+    documentMeta.password = securePassword;
+  }
+
  const [recipientSignature] = await getRecipientSignatures({ recipientId: recipient.id });

  if (document.deletedAt) {
@@ -101,7 +120,12 @@ export default async function SigningPage({ params: { token } }: SigningPageProp
            gradient
          >
            <CardContent className="p-2">
-              <LazyPDFViewer key={documentData.id} documentData={documentData} />
+              <LazyPDFViewer
+                key={documentData.id}
+                documentData={documentData}
+                document={document}
+                password={documentMeta?.password}
+              />
            </CardContent>
          </Card>

--- a/apps/web/src/app/(signing)/sign/[token]/signature-field.tsx
+++ b/apps/web/src/app/(signing)/sign/[token]/signature-field.tsx
@@ -86,7 +86,7 @@ export const SignatureField = ({ field, recipient }: SignatureFieldProps) => {
        token: recipient.token,
        fieldId: field.id,
        value,
-        isBase64: typeof value === 'string' && value.startsWith('data:image/png;base64,'),
+        isBase64: true,
      });

      if (source === 'local' && !providedSignature) {
--- a/package-lock.json
+++ b/package-lock.json
@@ -19869,7 +19869,8 @@
        "react-rnd": "^10.4.1",
        "tailwind-merge": "^1.12.0",
        "tailwindcss-animate": "^1.0.5",
-        "ts-pattern": "^5.0.5"
+        "ts-pattern": "^5.0.5",
+        "zod": "^3.22.4"
      },
      "devDependencies": {
        "@documenso/tailwind-config": "*",
--- a/packages/assets/fonts/dancing-script.ttf
+++ b/packages/assets/fonts/dancing-script.ttf
--- a/packages/lib/constants/pdf.ts
+++ b/packages/lib/constants/pdf.ts
@@ -1,7 +1,7 @@
 import { APP_BASE_URL } from './app';

 export const DEFAULT_STANDARD_FONT_SIZE = 15;
-export const DEFAULT_HANDWRITING_FONT_SIZE = 30;
+export const DEFAULT_HANDWRITING_FONT_SIZE = 50;

 export const MIN_STANDARD_FONT_SIZE = 8;
 export const MIN_HANDWRITING_FONT_SIZE = 20;
--- a/packages/lib/server-only/document-meta/upsert-document-meta.ts
+++ b/packages/lib/server-only/document-meta/upsert-document-meta.ts
@@ -4,10 +4,11 @@ import { prisma } from '@documenso/prisma';

 export type CreateDocumentMetaOptions = {
  documentId: number;
-  subject: string;
-  message: string;
-  timezone: string;
-  dateFormat: string;
+  subject?: string;
+  message?: string;
+  timezone?: string;
+  password?: string;
+  dateFormat?: string;
  userId: number;
 };

@@ -18,6 +19,7 @@ export const upsertDocumentMeta = async ({
  dateFormat,
  documentId,
  userId,
+  password,
 }: CreateDocumentMetaOptions) => {
  await prisma.document.findFirstOrThrow({
    where: {
@@ -35,12 +37,14 @@ export const upsertDocumentMeta = async ({
      message,
      dateFormat,
      timezone,
+      password,
      documentId,
    },
    update: {
      subject,
      message,
      dateFormat,
+      password,
      timezone,
    },
  });
--- a/packages/lib/server-only/document/duplicate-document-by-id.ts
+++ b/packages/lib/server-only/document/duplicate-document-by-id.ts
@@ -26,6 +26,7 @@ export const duplicateDocumentById = async ({ id, userId }: DuplicateDocumentByI
          message: true,
          subject: true,
          dateFormat: true,
+          password: true,
          timezone: true,
        },
      },
--- a/packages/lib/server-only/pdf/insert-field-in-pdf.ts
+++ b/packages/lib/server-only/pdf/insert-field-in-pdf.ts
@@ -12,7 +12,7 @@ import { isSignatureFieldType } from '@documenso/prisma/guards/is-signature-fiel
 import type { FieldWithSignature } from '@documenso/prisma/types/field-with-signature';

 export const insertFieldInPDF = async (pdf: PDFDocument, field: FieldWithSignature) => {
-  const fontDancingScript = await fetch(process.env.FONT_DANCING_SCRIPT_URI).then(async (res) =>
+  const fontCaveat = await fetch(process.env.FONT_CAVEAT_URI).then(async (res) =>
    res.arrayBuffer(),
  );

@@ -40,28 +40,14 @@ export const insertFieldInPDF = async (pdf: PDFDocument, field: FieldWithSignatu
  const fieldX = pageWidth * (Number(field.positionX) / 100);
  const fieldY = pageHeight * (Number(field.positionY) / 100);

-  const font = await pdf.embedFont(isSignatureField ? fontDancingScript : StandardFonts.Helvetica, {
-    subset: true,
-    features: {
-      liga: false,
-    },
-  });
+  const font = await pdf.embedFont(isSignatureField ? fontCaveat : StandardFonts.Helvetica);

  if (field.type === FieldType.SIGNATURE || field.type === FieldType.FREE_SIGNATURE) {
-    await pdf.embedFont(fontDancingScript, {
-      subset: true,
-      features: {
-        liga: false,
-      },
-    });
+    await pdf.embedFont(fontCaveat);
  }

-  const CUSTOM_TEXT = field.customText || field.Signature?.typedSignature || '';
-
  const isInsertingImage =
-    isSignatureField &&
-    typeof field.Signature?.signatureImageAsBase64 === 'string' &&
-    field.Signature?.signatureImageAsBase64.startsWith('data:image/png;base64,');
+    isSignatureField && typeof field.Signature?.signatureImageAsBase64 === 'string';

  if (isSignatureField && isInsertingImage) {
    const image = await pdf.embedPng(field.Signature?.signatureImageAsBase64 ?? '');
@@ -87,13 +73,13 @@ export const insertFieldInPDF = async (pdf: PDFDocument, field: FieldWithSignatu
      height: imageHeight,
    });
  } else {
-    let textWidth = font.widthOfTextAtSize(CUSTOM_TEXT, fontSize);
+    let textWidth = font.widthOfTextAtSize(field.customText, fontSize);
    const textHeight = font.heightAtSize(fontSize);

    const scalingFactor = Math.min(fieldWidth / textWidth, fieldHeight / textHeight, 1);

    fontSize = Math.max(Math.min(fontSize * scalingFactor, maxFontSize), minFontSize);
-    textWidth = font.widthOfTextAtSize(CUSTOM_TEXT, fontSize);
+    textWidth = font.widthOfTextAtSize(field.customText, fontSize);

    const textX = fieldX + (fieldWidth - textWidth) / 2;
    let textY = fieldY + (fieldHeight - textHeight) / 2;
@@ -101,7 +87,7 @@ export const insertFieldInPDF = async (pdf: PDFDocument, field: FieldWithSignatu
    // Invert the Y axis since PDFs use a bottom-left coordinate system
    textY = pageHeight - textY - textHeight;

-    page.drawText(CUSTOM_TEXT, {
+    page.drawText(field.customText, {
      x: textX,
      y: textY,
      size: fontSize,
--- a/packages/prisma/migrations/20240115031508_add_password_to_document_meta/migration.sql
+++ b/packages/prisma/migrations/20240115031508_add_password_to_document_meta/migration.sql
@@ -0,0 +1,2 @@
+-- AlterTable
+ALTER TABLE "DocumentMeta" ADD COLUMN     "password" TEXT;
--- a/packages/prisma/schema.prisma
+++ b/packages/prisma/schema.prisma
@@ -162,6 +162,7 @@ model DocumentMeta {
  subject    String?
  message    String?
  timezone   String?  @db.Text @default("Etc/UTC")
+  password String?
  dateFormat String?  @db.Text @default("yyyy-MM-dd hh:mm a")
  documentId Int      @unique
  document   Document @relation(fields: [documentId], references: [id], onDelete: Cascade)
--- a/packages/trpc/server/document-router/router.ts
+++ b/packages/trpc/server/document-router/router.ts
@@ -1,6 +1,7 @@
 import { TRPCError } from '@trpc/server';

 import { getServerLimits } from '@documenso/ee/server-only/limits/server';
+import { DOCUMENSO_ENCRYPTION_KEY } from '@documenso/lib/constants/crypto';
 import { upsertDocumentMeta } from '@documenso/lib/server-only/document-meta/upsert-document-meta';
 import { createDocument } from '@documenso/lib/server-only/document/create-document';
 import { deleteDocument } from '@documenso/lib/server-only/document/delete-document';
@@ -13,6 +14,7 @@ import { sendDocument } from '@documenso/lib/server-only/document/send-document'
 import { updateTitle } from '@documenso/lib/server-only/document/update-title';
 import { setFieldsForDocument } from '@documenso/lib/server-only/field/set-fields-for-document';
 import { setRecipientsForDocument } from '@documenso/lib/server-only/recipient/set-recipients-for-document';
+import { symmetricEncrypt } from '@documenso/lib/universal/crypto';

 import { authenticatedProcedure, procedure, router } from '../trpc';
 import {
@@ -24,6 +26,7 @@ import {
  ZSearchDocumentsMutationSchema,
  ZSendDocumentMutationSchema,
  ZSetFieldsForDocumentMutationSchema,
+  ZSetPasswordForDocumentMutationSchema,
  ZSetRecipientsForDocumentMutationSchema,
  ZSetTitleForDocumentMutationSchema,
 } from './schema';
@@ -175,6 +178,38 @@ export const documentRouter = router({
      }
    }),

+  setPasswordForDocument: authenticatedProcedure
+    .input(ZSetPasswordForDocumentMutationSchema)
+    .mutation(async ({ input, ctx }) => {
+      try {
+        const { documentId, password } = input;
+
+        const key = DOCUMENSO_ENCRYPTION_KEY;
+
+        if (!key) {
+          throw new Error('Missing encryption key');
+        }
+
+        const securePassword = symmetricEncrypt({
+          data: password,
+          key,
+        });
+
+        await upsertDocumentMeta({
+          documentId,
+          password: securePassword,
+          userId: ctx.user.id,
+        });
+      } catch (err) {
+        console.error(err);
+
+        throw new TRPCError({
+          code: 'BAD_REQUEST',
+          message: 'We were unable to set the password for this document. Please try again later.',
+        });
+      }
+    }),
+
  sendDocument: authenticatedProcedure
    .input(ZSendDocumentMutationSchema)
    .mutation(async ({ input, ctx }) => {
@@ -238,6 +273,7 @@ export const documentRouter = router({
          userId: ctx.user.id,
        });
      } catch (err) {
+        console.log(err);
        throw new TRPCError({
          code: 'BAD_REQUEST',
          message: 'We are unable to duplicate this document. Please try again later.',
--- a/packages/trpc/server/document-router/schema.ts
+++ b/packages/trpc/server/document-router/schema.ts
@@ -73,6 +73,15 @@ export const ZSendDocumentMutationSchema = z.object({
  }),
 });

+export const ZSetPasswordForDocumentMutationSchema = z.object({
+  documentId: z.number(),
+  password: z.string(),
+});
+
+export type TSetPasswordForDocumentMutationSchema = z.infer<
+  typeof ZSetPasswordForDocumentMutationSchema
+>;
+
 export const ZResendDocumentMutationSchema = z.object({
  documentId: z.number(),
  recipients: z.array(z.number()).min(1),
--- a/packages/tsconfig/process-env.d.ts
+++ b/packages/tsconfig/process-env.d.ts
@@ -64,7 +64,6 @@ declare namespace NodeJS {

    DEPLOYMENT_TARGET?: 'webapp' | 'marketing';
    FONT_CAVEAT_URI: string;
-    FONT_DANCING_SCRIPT_URI: string;

    POSTGRES_URL?: string;
    DATABASE_URL?: string;
--- a/packages/ui/package.json
+++ b/packages/ui/package.json
@@ -70,6 +70,7 @@
    "react-rnd": "^10.4.1",
    "tailwind-merge": "^1.12.0",
    "tailwindcss-animate": "^1.0.5",
-    "ts-pattern": "^5.0.5"
+    "ts-pattern": "^5.0.5",
+    "zod": "^3.22.4"
  }
 }
--- a/packages/ui/primitives/document-password-dialog.tsx
+++ b/packages/ui/primitives/document-password-dialog.tsx
@@ -0,0 +1,96 @@
+import { useEffect } from 'react';
+
+import { zodResolver } from '@hookform/resolvers/zod';
+import { useForm } from 'react-hook-form';
+import { z } from 'zod';
+
+import { Button } from './button';
+import { Dialog, DialogContent, DialogDescription, DialogHeader, DialogTitle } from './dialog';
+import { Form, FormControl, FormField, FormItem, FormMessage } from './form/form';
+import { Input } from './input';
+
+const ZPasswordDialogFormSchema = z.object({
+  password: z.string(),
+});
+
+type TPasswordDialogFormSchema = z.infer<typeof ZPasswordDialogFormSchema>;
+
+type PasswordDialogProps = {
+  open: boolean;
+  onOpenChange: (_open: boolean) => void;
+  defaultPassword?: string;
+  onPasswordSubmit?: (password: string) => void;
+  isError?: boolean;
+};
+
+export const PasswordDialog = ({
+  open,
+  onOpenChange,
+  defaultPassword,
+  onPasswordSubmit,
+  isError,
+}: PasswordDialogProps) => {
+  const form = useForm<TPasswordDialogFormSchema>({
+    defaultValues: {
+      password: defaultPassword ?? '',
+    },
+    resolver: zodResolver(ZPasswordDialogFormSchema),
+  });
+
+  const onFormSubmit = ({ password }: TPasswordDialogFormSchema) => {
+    onPasswordSubmit?.(password);
+  };
+
+  useEffect(() => {
+    if (isError) {
+      form.setError('password', {
+        type: 'manual',
+        message: 'The password you have entered is incorrect. Please try again.',
+      });
+    }
+  }, [form, isError]);
+
+  return (
+    <Dialog open={open}>
+      <DialogContent className="w-full max-w-md">
+        <DialogHeader>
+          <DialogTitle>Password Required</DialogTitle>
+
+          <DialogDescription className="text-muted-foreground">
+            This document is password protected. Please enter the password to view the document.
+          </DialogDescription>
+        </DialogHeader>
+
+        <Form {...form}>
+          <form onSubmit={form.handleSubmit(onFormSubmit)}>
+            <fieldset className="flex flex-wrap items-start justify-between gap-4">
+              <FormField
+                name="password"
+                control={form.control}
+                render={({ field }) => (
+                  <FormItem className="relative flex-1">
+                    <FormControl>
+                      <Input
+                        type="password"
+                        className="bg-background"
+                        placeholder="Enter password"
+                        autoComplete="off"
+                        {...field}
+                      />
+                    </FormControl>
+
+                    <FormMessage />
+                  </FormItem>
+                )}
+              />
+
+              <div>
+                <Button>Submit</Button>
+              </div>
+            </fieldset>
+          </form>
+        </Form>
+      </DialogContent>
+    </Dialog>
+  );
+};
--- a/packages/ui/primitives/pdf-viewer.tsx
+++ b/packages/ui/primitives/pdf-viewer.tsx
@@ -3,16 +3,19 @@
 import React, { useEffect, useMemo, useRef, useState } from 'react';

 import { Loader } from 'lucide-react';
-import type { PDFDocumentProxy } from 'pdfjs-dist';
+import { type PDFDocumentProxy, PasswordResponses } from 'pdfjs-dist';
 import { Document as PDFDocument, Page as PDFPage, pdfjs } from 'react-pdf';
 import 'react-pdf/dist/esm/Page/AnnotationLayer.css';
 import 'react-pdf/dist/esm/Page/TextLayer.css';
+import { match } from 'ts-pattern';

 import { PDF_VIEWER_PAGE_SELECTOR } from '@documenso/lib/constants/pdf-viewer';
 import { getFile } from '@documenso/lib/universal/upload/get-file';
 import type { DocumentData } from '@documenso/prisma/client';
+import type { DocumentWithData } from '@documenso/prisma/types/document-with-data';

 import { cn } from '../lib/utils';
+import { PasswordDialog } from './document-password-dialog';
 import { useToast } from './use-toast';

 export type LoadedPDFDocument = PDFDocumentProxy;
@@ -43,6 +46,9 @@ const PDFLoader = () => (
 export type PDFViewerProps = {
  className?: string;
  documentData: DocumentData;
+  document?: DocumentWithData;
+  password?: string | null;
+  onPasswordSubmit?: (password: string) => void | Promise<void>;
  onDocumentLoad?: (_doc: LoadedPDFDocument) => void;
  onPageClick?: OnPDFViewerPageClick;
  [key: string]: unknown;
@@ -51,6 +57,8 @@ export type PDFViewerProps = {
 export const PDFViewer = ({
  className,
  documentData,
+  password: defaultPassword,
+  onPasswordSubmit,
  onDocumentLoad,
  onPageClick,
  ...props
@@ -59,7 +67,11 @@ export const PDFViewer = ({

  const $el = useRef<HTMLDivElement>(null);

+  const passwordCallbackRef = useRef<((password: string | null) => void) | null>(null);
+
  const [isDocumentBytesLoading, setIsDocumentBytesLoading] = useState(false);
+  const [isPasswordModalOpen, setIsPasswordModalOpen] = useState(false);
+  const [isPasswordError, setIsPasswordError] = useState(false);
  const [documentBytes, setDocumentBytes] = useState<Uint8Array | null>(null);

  const [width, setWidth] = useState(0);
@@ -169,57 +181,87 @@ export const PDFViewer = ({
          <PDFLoader />
        </div>
      ) : (
-        <PDFDocument
-          file={documentBytes.buffer}
-          className={cn('w-full overflow-hidden rounded', {
-            'h-[80vh] max-h-[60rem]': numPages === 0,
-          })}
-          onLoadSuccess={(d) => onDocumentLoaded(d)}
-          // Uploading a invalid document causes an error which doesn't appear to be handled by the `error` prop.
-          // Therefore we add some additional custom error handling.
-          onSourceError={() => {
-            setPdfError(true);
-          }}
-          externalLinkTarget="_blank"
-          loading={
-            <div className="dark:bg-background flex h-[80vh] max-h-[60rem] flex-col items-center justify-center bg-white/50">
-              {pdfError ? (
+        <>
+          <PDFDocument
+            file={documentBytes.buffer}
+            className={cn('w-full overflow-hidden rounded', {
+              'h-[80vh] max-h-[60rem]': numPages === 0,
+            })}
+            onPassword={(callback, reason) => {
+              // If the document already has a password, we don't need to ask for it again.
+              if (defaultPassword && reason !== PasswordResponses.INCORRECT_PASSWORD) {
+                callback(defaultPassword);
+                return;
+              }
+
+              setIsPasswordModalOpen(true);
+
+              passwordCallbackRef.current = callback;
+
+              match(reason)
+                .with(PasswordResponses.NEED_PASSWORD, () => setIsPasswordError(false))
+                .with(PasswordResponses.INCORRECT_PASSWORD, () => setIsPasswordError(true));
+            }}
+            onLoadSuccess={(d) => onDocumentLoaded(d)}
+            // Uploading a invalid document causes an error which doesn't appear to be handled by the `error` prop.
+            // Therefore we add some additional custom error handling.
+            onSourceError={() => {
+              setPdfError(true);
+            }}
+            externalLinkTarget="_blank"
+            loading={
+              <div className="dark:bg-background flex h-[80vh] max-h-[60rem] flex-col items-center justify-center bg-white/50">
+                {pdfError ? (
+                  <div className="text-muted-foreground text-center">
+                    <p>Something went wrong while loading the document.</p>
+                    <p className="mt-1 text-sm">Please try again or contact our support.</p>
+                  </div>
+                ) : (
+                  <PDFLoader />
+                )}
+              </div>
+            }
+            error={
+              <div className="dark:bg-background flex h-[80vh] max-h-[60rem] flex-col items-center justify-center bg-white/50">
                <div className="text-muted-foreground text-center">
                  <p>Something went wrong while loading the document.</p>
                  <p className="mt-1 text-sm">Please try again or contact our support.</p>
                </div>
-              ) : (
-                <PDFLoader />
-              )}
-            </div>
-          }
-          error={
-            <div className="dark:bg-background flex h-[80vh] max-h-[60rem] flex-col items-center justify-center bg-white/50">
-              <div className="text-muted-foreground text-center">
-                <p>Something went wrong while loading the document.</p>
-                <p className="mt-1 text-sm">Please try again or contact our support.</p>
              </div>
-            </div>
-          }
-        >
-          {Array(numPages)
-            .fill(null)
-            .map((_, i) => (
-              <div
-                key={i}
-                className="border-border my-8 overflow-hidden rounded border will-change-transform first:mt-0 last:mb-0"
-              >
-                <PDFPage
-                  pageNumber={i + 1}
-                  width={width}
-                  renderAnnotationLayer={false}
-                  renderTextLayer={false}
-                  loading={() => ''}
-                  onClick={(e) => onDocumentPageClick(e, i + 1)}
-                />
-              </div>
-            ))}
-        </PDFDocument>
+            }
+          >
+            {Array(numPages)
+              .fill(null)
+              .map((_, i) => (
+                <div
+                  key={i}
+                  className="border-border my-8 overflow-hidden rounded border will-change-transform first:mt-0 last:mb-0"
+                >
+                  <PDFPage
+                    pageNumber={i + 1}
+                    width={width}
+                    renderAnnotationLayer={false}
+                    renderTextLayer={false}
+                    loading={() => ''}
+                    onClick={(e) => onDocumentPageClick(e, i + 1)}
+                  />
+                </div>
+              ))}
+          </PDFDocument>
+
+          <PasswordDialog
+            open={isPasswordModalOpen}
+            onOpenChange={setIsPasswordModalOpen}
+            onPasswordSubmit={(password) => {
+              passwordCallbackRef.current?.(password);
+
+              setIsPasswordModalOpen(false);
+
+              void onPasswordSubmit?.(password);
+            }}
+            isError={isPasswordError}
+          />
+        </>
      )}
    </div>
  );
--- a/packages/ui/primitives/signature-pad/signature-pad.tsx
+++ b/packages/ui/primitives/signature-pad/signature-pad.tsx
@@ -16,16 +16,12 @@ const DPI = 2;
 export type SignaturePadProps = Omit<HTMLAttributes<HTMLCanvasElement>, 'onChange'> & {
  onChange?: (_signatureDataUrl: string | null) => void;
  containerClassName?: string;
-  clearSignatureClassName?: string;
-  undoSignatureClassName?: string;
 };

 export const SignaturePad = ({
  className,
  containerClassName,
  defaultValue,
-  clearSignatureClassName,
-  undoSignatureClassName,
  onChange,
  ...props
 }: SignaturePadProps) => {
@@ -231,7 +227,7 @@ export const SignaturePad = ({
        {...props}
      />

-      <div className={cn('absolute bottom-4 right-4', clearSignatureClassName)}>
+      <div className="absolute bottom-4 right-4 flex gap-2">
        <button
          type="button"
          className="focus-visible:ring-ring ring-offset-background text-muted-foreground/60 hover:text-muted-foreground rounded-full p-0 text-xs focus-visible:outline-none focus-visible:ring-2"
@@ -242,7 +238,7 @@ export const SignaturePad = ({
      </div>

      {lines.length > 0 && (
-        <div className={cn('absolute bottom-4 left-4 flex gap-2', undoSignatureClassName)}>
+        <div className="absolute bottom-4 left-4 flex gap-2">
          <button
            type="button"
            title="undo"
--- a/turbo.json
+++ b/turbo.json
@@ -86,7 +86,6 @@
    "VERCEL_URL",
    "DEPLOYMENT_TARGET",
    "FONT_CAVEAT_URI",
-    "FONT_DANCING_SCRIPT_URI",
    "POSTGRES_URL",
    "DATABASE_URL",
    "POSTGRES_PRISMA_URL",
Author	SHA1	Message	Date
Mythie	9ff44f10a6	chore: add incident blog post	2024-01-17 21:41:00 +11:00
Lucas Smith	16d97783f2	feat: improve the UX for password protected documents (#780 )	2024-01-17 19:32:42 +11:00
Mythie	91dd10ec9b	fix: add symmetric encryption to document passwords	2024-01-17 17:28:28 +11:00
Mythie	a94b829ee0	fix: tidy code	2024-01-17 17:17:08 +11:00
Fatuma Abdullahi	1bc885478d	fix: display the number of documents in mobile view (#837 ) This PR fixes #782. It now displays the document count on mobile view.	2024-01-17 11:10:28 +11:00
harkiratsm	68953d1253	feat add documentPassword to documenet meta and improve the ux Signed-off-by: harkiratsm <multaniharry714@gmail.com>	2024-01-12 20:54:59 +05:30
Harkirat Singh	eeb6a072aa	Merge branch 'main' into harkirat/Protect	2024-01-10 10:45:19 +05:30
Adithya Krishna	d8cbe1d5ba	Merge branch 'main' into harkirat/Protect	2024-01-03 11:34:42 +05:30
harkiratsm	53c570151f	fix lint, description of dialog Signed-off-by: harkiratsm <multaniharry714@gmail.com>	2023-12-29 22:11:44 +05:30
harkiratsm	72a7dc6c05	fix the console error Signed-off-by: harkiratsm <multaniharry714@gmail.com>	2023-12-29 17:26:33 +05:30
harkiratsm	2ae9e29903	feat: improve the ux for password protected documents Signed-off-by: harkiratsm <multaniharry714@gmail.com>	2023-12-22 17:24:05 +05:30