martinstoeckli / SilentNotes

SilentNotes is a simple note taking app which respects your privacy.
https://www.martinstoeckli.ch/silentnotes
Mozilla Public License 2.0
238 stars 35 forks source link

Way to independently decrypt SilentNotes repository #228

Open custompyramidfellow opened 1 year ago

custompyramidfellow commented 1 year ago

Hi,

First of all thank your for your app, I really like it, and I would have already donated if there were a PayPal or wire transfer method to do so.

IMHO it would really make your software more trustworthy and sustainable if you could provide a way to independently decrypt SilentNotes repositories, in case one has only the SilentNotes repository file and the transfer code.

One example of such would be Standard Nodes who provide a offline browser-based decryptor for their encrypted files: https://github.com/standardnotes/decrypt

From what I understand both SilentNotes and Standard Notes use the same crypto algo (XChaCha20-Poly1305), so maybe the already existing Standard Notes decryptor can be adapted somehow? It's under AGPL3.

Thank you for your consideration.

martinstoeckli commented 1 year ago

It's an interesting idea and with SilentNotes becoming a WebAssembly (WASM) it would probably be doable with the original source code, just reading and writing to the locale device could be a problem. On the other side, the only advantage I see, is that one doesn't have to install SilentNotes to decrypt the repository. The laborious part of downloading the repository from the storage (e.g. OAuth2) would be left to the user.

If SilentNotes would hypothetically offer such a function to offline encrypt/decrypt a repository, would you still see an advantage in having an independable app? And how would you use such a repository, using it as a backup has its own challenges: https://github.com/martinstoeckli/SilentNotes/issues/225#issuecomment-1616807165