Some basic docs to get started with

googlearchive · Feb 24, 2016 · e751603 · e751603
1 parent d170a6e
commit e751603
Showing 1 changed file with 76 additions and 0 deletions.
diff --git a/README.md b/README.md
@@ -5,6 +5,82 @@ This library provides the functions necessary to encrypt a payload for sending
 with the Web Push protocol. It also includes a helper function for actually
 send the message to the Web Push endpoint.
 
+What is this for?
+-----------------
+
+The [Push API](http://w3c.github.io/push-api/) allow users to subscribe for
+notifications from a web site, which can be delivered to them even if the
+browser has been closed. This was first shipped as part of Chrome 42, but the
+push message could not contain any payload data.
+
+As of Chrome 50 and Firefox 44 (desktop-only) payloads are supported, but the
+server must encrypt the payload or the receiving browser will reject it.
+
+This library implements the necessary encryption as a Node module.
+
+Overview
+--------
+
+Install the module using npm:
+
+`npm install web-push-encryption`
+
+Require the module:
+
+`const webpush = require('web-push-encryption');`
+
+Send a message:
+
+`webpush.sendWebPush('Yay! Web Push!', subscription);`
+
+API
+---
+
+**sendWebPush**
+`webpush.sendWebPush(message, subscription);`
+
+Encrypts a message and sends it the the subscribed client using the Web Push
+protocol. The subscription parameter is the serialised PushSubscription object
+obtained from the client when susbscribing. One way to get this object in the
+correct format is by calling `JSON.stringify(subscription)` and then
+transmitting the resulting string to the server.
+
+The message is a String, and will be the value of the `data` property of the
+PushEvent that the client receives.
+
+**addAuthToken**
+`.addAuthToken(pattern, token)`
+
+Some push providers (notably Google Cloud Messaging (GCM), used by Chrome's push
+implementation) require an `Authentication:` token to be sent with push
+requests. You can specify which tokens to send for which push providers. Both
+`pattern` and `token` are Strings. When sending the message to the endpoint, the
+endpoint is matched against each pattern that has been set. If any pattern is a
+substring of the endpoint then the associated token will be sent in the request.
+
+For example, to set the token for GCM you could use a pattern of
+`https://android.googleapis.com/gcm`.
+
+**encrypt**
+`.encrypt(message, subscription)`
+
+This method performs the neccessary encryption but does not actually send the
+Web Push request. This allows you to use an alternative implementation of the
+Web Push protocol. The output is an Object:
+
+```javascript
+{
+  ciphertext: Buffer,
+  salt: Buffer,
+  serverPublicKey: Buffer
+}
+```
+
+These are the raw values needed to construct the body (`ciphertext`),
+`Encryption` header (`salt`) and `Crypto-Key` header (`serverPublicKey`). For
+more details of the Web Push protocol, see
+https://webpush-wg.github.io/webpush-encryption/
+
 Support
 -------