{"id":"c0824","filename":"c0824_genesis_login_autofill.dok.json","weise3_id":"","tip":"feature","naziv":"Genesis Login AutoFill — Chrome Extension + Tauri Desktop + Flutter Android","kreator":"paralelna CC sesija (verificirano + dokumentirano od claude-opus-4-7)","datum":"2026-05-12T11:00:00Z","snippet":"","status":"","prev_weise3":"","bunker_l":"#00d4ff","full":{"korak":"c0824","tip":"feature","naziv":"Genesis Login AutoFill — Chrome Extension + Tauri Desktop + Flutter Android","datum":"2026-05-12T11:00:00Z","autor":"paralelna CC sesija (verificirano + dokumentirano od claude-opus-4-7)","sto_treba":"Implementirati 'sam se nudi' AutoFill iskustvo — kad korisnik dođe na BILO KOJU login stranicu (Google, Facebook, banka, naš sustav), Chrome Extension prepozna password formu i ponudi 'Prijavi se s Genesis' button. Klik → desktop app potpise challenge Ed25519 ključem iz Windows Credential Manager/Android Keystore → token injektira u stranicu. Korisnik ima JEDAN identitet za cijeli internet.","verifikacija_servera":["V4 endpoints PROVJERENI 2026-05-12 10:50 UTC:","  - GET /api/v1/genesis/auth/zdravlje → 200 {ok, modul, trust: 80}","  - POST /api/v1/genesis/auth/register → 200 (weise3_id + JWT ML-DSA-65)","  - POST /api/v1/genesis/auth/challenge — radi (TTL 300s)","  - POST /api/v1/genesis/auth/verify — radi (vraća JWT)","  - POST /api/v1/genesis/auth/recover → 422 (validation enforced)","End-to-end Ed25519 flow potvrđen u c0820 (PyNaCl signing)"],"implementacija_paralelna_sesija":{"Chrome_Extension":{"files":["manifest.json (MV3, port 27182 host_permissions, scripting+alarms)","login_detector.js — content script, DOM scan za password forms","service_worker.js — chrome.alarms heartbeat 24s (MV3 SW kill at 30s)","popup.html + popup.js — status indikator, manual trigger"],"kako_radi":"Skenira DOM za input[type=password] + title + path → injektira floating 'Prijavi se s Genesis' button → klik fetch('http://127.0.0.1:27182/genesis/authenticate') → desktop signira challenge → token injektira u page via chrome.scripting.executeScript","deploy":"chrome://extensions → Load unpacked → drag-drop folder"},"Tauri_Desktop_Windows_Mac_Linux":{"files":["src/main.rs — entry, system tray (☑/○ badge), IPC commands","src/keystore.rs — Windows Credential Manager wrap, load/store/delete keypair + session JWT","src/crypto.rs — Ed25519 generate/sign + WeisE3 hash (SHA3-256 sa FENIX prefiksom)","src/local_server.rs — axum HTTP server 127.0.0.1:27182, CORS, /authenticate endpoint","src-tauri/tauri.conf.json — bundling, tray, single-instance","index.html — register/login/status UI (webview)"],"windows_keystore":"Windows Credential Manager (DPAPI) — TPM binding kao layer za produkciju","ports":"27182 default, fallback 27183/27184/27185 (probaj sve, discovery via /genesis/status)"},"Flutter_Android":{"files":["lib/services/keystore_service.dart — AES-256-GCM wrap Ed25519 seed, ključ u Android TEE Keystore","lib/services/genesis_api_service.dart — HTTP klijent za V4 API","lib/screens/approve_screen.dart — deep link handler genesis://authenticate?challenge_id=..."],"tee_rješenje":"Android Keystore nema native Ed25519 → AES-GCM enkripcija Ed25519 seed-a; AES ključ u TEE (StrongBox/TrustZone)"}},"pet_cake_izazova_rješenja":{"1_Android_TEE_no_Ed25519":"AES-256-GCM wrap Ed25519 seed u Android Keystore — AES ključ u TEE-u","2_MV3_SW_kill_30s":"chrome.alarms heartbeat 24s — drži worker živ neograničeno","3_Port_27182_zauzet":"Probaj 27182→27185 redom; discovery preko GET /genesis/status JSON","4_Win_TPM_binding":"Windows DPAPI iznad Credential Managera (besplatno); TPM layer kao production hardening","5_Cross_origin_token_inject":"chrome.scripting.executeScript u page kontekstu (same-origin fetch), NE postMessage (cross-origin blokirano)"},"tok_korisnika":["1. Instaliraj Genesis Desktop (Tauri) + Chrome Extension (drag-drop)","2. Otvori desktop → klikni 'Register' → Ed25519 keypair generiran, spremljen u Win Credential Manager","3. Desktop pokreće local server 127.0.0.1:27182 (system tray ☑)","4. Otvori bilo koju stranicu sa loginom (npr. Gmail, Facebook, banka)","5. Extension prepozna password formu → floating button 'Prijavi se s Genesis'","6. Klik → fetch 127.0.0.1:27182/genesis/authenticate (challenge → sign → token)","7. Token injektiran u stranicu kao localStorage.setItem('genesis_session', token)","8. Korisnik je prijavljen — JEDAN identitet, BEZ lozinke, kvantno-siguran (ML-DSA-65)"],"fajlovi_dirnuti_paralelnom_sesijom":["Chrome Extension (lokalno na korisnikovom računalu — drag-drop deploy)","Tauri Desktop App (lokalno na korisnikovom računalu — installer)","Flutter Android (lokalno + Google Play / sideload)","Server SIDE: niti jedan novi endpoint potreban — koristi postojeće /api/v1/genesis/auth/{register,challenge,verify,recover}"],"dokumentacija_lokacije":["DokArh: c0824 (ovaj entry)","CLAUDE.md (EU): ZAKON 40 — Autonomna Genesis prijava preko TEE-a (TBD u sljedećem stepenu)","Skill: /var/www/genesis/.claude/skills/genesis-login-autofill (TBD)","Memory: reference_genesis_login_autofill.md (lokalno)"],"next_steps_buduce":["Distribucija .msi/.dmg/.deb Tauri installer-a (build pipeline)","Chrome Web Store publish (1-tjedan review process)","Flutter APK + Play Store publish","QR code za sync između desktop i mobile (cross-device identity)","ZAKON 40 napisan u CLAUDE.md — sve detalje TEE flow-a","Hardware token podrška (YubiKey, Nitrokey) za enterprise"],"razlika_od_postojećih_rješenja":{"1Password_LastPass":"Manager LOZINKI. Genesis = ZAMJENA lozinki s kvantnim potpisom.","Apple_Passkeys":"Vendor lock-in (Apple). Genesis = open standard, cross-platform.","Microsoft_Hello":"Per-Microsoft-account. Genesis = identitet vrijedan na BILO KOJOJ stranici.","WebAuthn":"Po-stranici registracija (svaki site novi key). Genesis = JEDAN keypair, sve stranice prepoznaju."},"zakon_status":{"Z1":"OK — koristi postojeće V4 endpointe, novo samo client-side","Z11":"OK — sudac middleware ne mijenja, lokalno TEE handling","Z27":"OK — triple fields kroz JWT claims","Z32":"ovaj entry je sam dokaz","Z37":"OK — TEE = quantum-safe wrap","Z38":"n/a — nije AI poziv","Z39":"DOPUNA — Login = identity carrier, viewer integration u sljedećoj iteraciji","Z40_DRAFT":"Genesis AutoFill — JEDAN identitet za internet, no-password, TEE-bound, post-quantum"},"tagovi":["chrome-extension","tauri-desktop","flutter-android","autofill","tee","ed25519","ml-dsa-65","no-password","z40-draft"]}}