Getting Started
PrivMX Web Endpoint
PrivMX Web Endpoint is a JavaScript library designed to work in browser environment. It is used by applications and devices which are the ends of secure PrivMX communication channels. It encrypts and decrypts data, manages network connections, and provides a functional API on top of a WebAssembly build made of the native PrivMX Endpoint library written in C++. This allows applications to build their E2EE communication channels based on a few universal, client-side encrypted tools: Threads, Stores, and Inboxes.
Initial Requirements
To start developing end-to-end encrypted applications using PrivMX Web Endpoint you need a PrivMX Bridge instance, you can find installation guide here.
To connect it to your environment you need:
Bridge URL- URL address of the instance of your PrivMX BridgeSolution ID- ID of the Solution provided by PrivMX Bridge during its initialization processUser Private Key- the private key from the user's public-private key pair
When you develop a project using PrivMX, you will most likely use some kind of application server – a server to manage users (and their keys), Contexts, etc. It can be new or existing, depending on the specific requirements.
Using Public and Private Keys
You need a private key to connect the Endpoint to your Bridge, but in fact that private key will never leave the Endpoint.
- PrivMX Endpoint uses the user's private key to decrypt and verify data on the client side only.
- PrivMX Bridge, on the other hand, stores only the public part, i.e. the user's public key and user's ID.
Setting up Web Server to Host JavaScript Assets
To properly integrate PrivMX Web Endpoint library, it's crucial to configure your server. This will ensure the library functions correctly and maintain security. You need to set up specific HTTP headers:
- set
Cross-Origin-Embedder-Policytorequire-corp; - set
Cross-Origin-Opener-Policytosame-origin.
These headers are essential to prevent potential cross-origin attacks and to maintain a secure execution environment.
For detailed instructions on how to configure these headers in different environments like Vite, Next.js, Express, and Nginx, refer to our Server Configuration page.
You can also take a look on our example projects to find the Webpack's dev server configuration samples.
Setting up Web Endpoint
warning
PrivMX Web Endpoint relies heavily on WebAssembly and browser Web Workers.
Because of that, Web Endpoint is not compatible with the Node.js environments used on the server side and is limited to browsers only.
We are actively working on the @simplito/privmx-endpoint-node NPM package to support this kind of usage in the future.
PrivMX Web Endpoint client is distributed as an NPM package (@simplito/privmx-webendpoint) that contains all the necessary assets and helpers to get started.
Follow these steps to get started:
- Download the NPM package for your target project by calling:
npm i @simplito/privmx-webendpoint. - Set up your Web Server to host JavaScript assets properly – see below.
- Copy the Endpoint's assets (all .js and .wasm files from
./node_modules/@simplito/privmx-webendpoint/assets) to your Web Server's public directory.
Finally, to complete the setup process, you have two ways to import the package to your project:
Using Typescript
// import base package parts
import { Endpoint, EventQueue, Types } from "@simplito/privmx-webendpoint";
...
Using Web Endpoint's Bundle
First you should copy the privmx-endpoint-web.js file (bundle) from the ./node_modules/@simplito/privmx-webendpoint/dist/bundle directory to your Web Server's public directory.
Next, in your index.html add script tag to import the bundle:
<!DOCTYPE html>
<html>
<head>
<script src="<public_dir>/privmx-endpoint-web.js"></script>
...
</head>
<body>
</body>
</html>
Then in your app.js file use one of the options below:
// CommonJS import
const Endpoint = require("privmx-webendpoint").Endpoint;
// AMD import
require(['privmx-webendpoint'], function (privmxWebEndpoint) {
// Do something with the library...
});
// this/window binding
const Endpoint = PrivmxWebEndpoint.Endpoint;
// or
const Endpoint = window.PrivmxWebEndpoint.Endpoint;
Web Endpoint's APIs
You need your Bridge's instance specific data, mentioned earlier, which you should get during the Bridge's setup process.
const userPrivKey = "<context_user_priv_key>";
const userPubKey = "<context_user_pub_key";
const bridgeUrl = "http://localhost:9111";
const solutionId = "<solution_id>";
To use the most of the library's APIs, you must first connect it to your PrivMX Bridge instance.
// Initialize the Endpoint and its WebAssembly dependencies
// (provide the Endpoint.setup() function with your Web Server's public directory URL/path
// where the Endpoint assets were copied)
await Endpoint.setup("<public_dir>");
// Create connection to the Bridge Server
const connection = await Endpoint.connect(userPrivKey, solutionId, bridgeUrl);
// Initialize the Threads API
const threadsApi = await Endpoint.createThreadApi(connection);
// call some API methods
const threads = await threadsApi.listThreads(...);
Setting up Web Server to Host JavaScript Assets
To properly integrate PrivMX Web Endpoint library, it's crucial to configure your server. This will ensure the library functions correctly and maintain security. You need to set up specific HTTP headers:
- set
Cross-Origin-Embedder-Policytorequire-corp; - set
Cross-Origin-Opener-Policytosame-origin.
These headers are essential to prevent potential cross-origin attacks and to maintain a secure execution environment.
For detailed instructions on how to configure these headers in different environments like Vite, Next.js, Express, and Nginx, refer to our Application Server page.
You can also take a look on our example projects to find the Webpack's dev server configuration samples.
Next Steps
With everything ready to go, now it's time to start using all the capabilities of Endpoint and Bridge.
Learn how to use: