feat: add snjs package

2022-07-06 14:04:18 +02:00
parent 321a055bae
commit 0e40469e2f
296 changed files with 46109 additions and 187 deletions
--- a/packages/snjs/lib/Services/Challenge/ChallengeService.ts
+++ b/packages/snjs/lib/Services/Challenge/ChallengeService.ts
@@ -0,0 +1,300 @@
+import { RootKeyInterface } from '@standardnotes/models'
+import { EncryptionService } from '@standardnotes/encryption'
+import { DiskStorageService } from '../Storage/DiskStorageService'
+import { removeFromArray } from '@standardnotes/utils'
+import { isValidProtectionSessionLength } from '../Protection/ProtectionService'
+import {
+  AbstractService,
+  ChallengeServiceInterface,
+  InternalEventBusInterface,
+  ChallengeArtifacts,
+  ChallengeReason,
+  ChallengeValidation,
+  ChallengeValue,
+  ChallengeInterface,
+  ChallengePromptInterface,
+  ChallengePrompt,
+} from '@standardnotes/services'
+import { ChallengeResponse } from './ChallengeResponse'
+import { ChallengeOperation } from './ChallengeOperation'
+import { Challenge } from './Challenge'
+
+type ChallengeValidationResponse = {
+  valid: boolean
+  artifacts?: ChallengeArtifacts
+}
+
+export type ValueCallback = (value: ChallengeValue) => void
+
+export type ChallengeObserver = {
+  onValidValue?: ValueCallback
+  onInvalidValue?: ValueCallback
+  onNonvalidatedSubmit?: (response: ChallengeResponse) => void
+  onComplete?: (response: ChallengeResponse) => void
+  onCancel?: () => void
+}
+
+const clearChallengeObserver = (observer: ChallengeObserver) => {
+  observer.onCancel = undefined
+  observer.onComplete = undefined
+  observer.onValidValue = undefined
+  observer.onInvalidValue = undefined
+  observer.onNonvalidatedSubmit = undefined
+}
+
+/**
+ * The challenge service creates, updates and keeps track of running challenge operations.
+ */
+export class ChallengeService extends AbstractService implements ChallengeServiceInterface {
+  private challengeOperations: Record<string, ChallengeOperation> = {}
+  public sendChallenge!: (challenge: Challenge) => void
+  private challengeObservers: Record<string, ChallengeObserver[]> = {}
+
+  constructor(
+    private storageService: DiskStorageService,
+    private protocolService: EncryptionService,
+    protected override internalEventBus: InternalEventBusInterface,
+  ) {
+    super(internalEventBus)
+  }
+
+  public override deinit() {
+    ;(this.storageService as unknown) = undefined
+    ;(this.protocolService as unknown) = undefined
+    ;(this.sendChallenge as unknown) = undefined
+    ;(this.challengeOperations as unknown) = undefined
+    ;(this.challengeObservers as unknown) = undefined
+    super.deinit()
+  }
+
+  public promptForChallengeResponse(challenge: Challenge): Promise<ChallengeResponse | undefined> {
+    return new Promise<ChallengeResponse | undefined>((resolve) => {
+      this.createOrGetChallengeOperation(challenge, resolve)
+      this.sendChallenge(challenge)
+    })
+  }
+
+  public createChallenge(
+    prompts: ChallengePromptInterface[],
+    reason: ChallengeReason,
+    cancelable: boolean,
+    heading?: string,
+    subheading?: string,
+  ): ChallengeInterface {
+    return new Challenge(prompts, reason, cancelable, heading, subheading)
+  }
+
+  public async validateChallengeValue(value: ChallengeValue): Promise<ChallengeValidationResponse> {
+    switch (value.prompt.validation) {
+      case ChallengeValidation.LocalPasscode:
+        return this.protocolService.validatePasscode(value.value as string)
+      case ChallengeValidation.AccountPassword:
+        return this.protocolService.validateAccountPassword(value.value as string)
+      case ChallengeValidation.Biometric:
+        return { valid: value.value === true }
+      case ChallengeValidation.ProtectionSessionDuration:
+        return { valid: isValidProtectionSessionLength(value.value) }
+      default:
+        throw Error(`Unhandled validation mode ${value.prompt.validation}`)
+    }
+  }
+
+  public async promptForCorrectPasscode(reason: ChallengeReason): Promise<string | undefined> {
+    const challenge = new Challenge([new ChallengePrompt(ChallengeValidation.LocalPasscode)], reason, true)
+    const response = await this.promptForChallengeResponse(challenge)
+    if (!response) {
+      return undefined
+    }
+    const value = response.getValueForType(ChallengeValidation.LocalPasscode)
+    return value.value as string
+  }
+
+  /**
+   * Returns the wrapping key for operations that require resaving the root key
+   * (changing the account password, signing in, registering, or upgrading protocol)
+   * Returns empty object if no passcode is configured.
+   * Otherwise returns {cancled: true} if the operation is canceled, or
+   * {wrappingKey} with the result.
+   * @param passcode - If the consumer already has access to the passcode,
+   * they can pass it here so that the user is not prompted again.
+   */
+  async getWrappingKeyIfApplicable(passcode?: string): Promise<
+    | {
+        canceled?: undefined
+        wrappingKey?: undefined
+      }
+    | {
+        canceled: boolean
+        wrappingKey?: undefined
+      }
+    | {
+        wrappingKey: RootKeyInterface
+        canceled?: undefined
+      }
+  > {
+    if (!this.protocolService.hasPasscode()) {
+      return {}
+    }
+
+    if (!passcode) {
+      passcode = await this.promptForCorrectPasscode(ChallengeReason.ResaveRootKey)
+      if (!passcode) {
+        return { canceled: true }
+      }
+    }
+
+    const wrappingKey = await this.protocolService.computeWrappingKey(passcode)
+    return { wrappingKey }
+  }
+
+  public isPasscodeLocked() {
+    return this.protocolService.isPasscodeLocked()
+  }
+
+  public addChallengeObserver(challenge: Challenge, observer: ChallengeObserver) {
+    const observers = this.challengeObservers[challenge.id] || []
+
+    observers.push(observer)
+
+    this.challengeObservers[challenge.id] = observers
+
+    return () => {
+      clearChallengeObserver(observer)
+
+      removeFromArray(observers, observer)
+    }
+  }
+
+  private createOrGetChallengeOperation(
+    challenge: Challenge,
+    resolve: (response: ChallengeResponse | undefined) => void,
+  ): ChallengeOperation {
+    let operation = this.getChallengeOperation(challenge)
+
+    if (!operation) {
+      operation = new ChallengeOperation(
+        challenge,
+        (value: ChallengeValue) => {
+          this.onChallengeValidValue(challenge, value)
+        },
+        (value: ChallengeValue) => {
+          this.onChallengeInvalidValue(challenge, value)
+        },
+        (response: ChallengeResponse) => {
+          this.onChallengeNonvalidatedSubmit(challenge, response)
+          resolve(response)
+        },
+        (response: ChallengeResponse) => {
+          this.onChallengeComplete(challenge, response)
+          resolve(response)
+        },
+        () => {
+          this.onChallengeCancel(challenge)
+          resolve(undefined)
+        },
+      )
+
+      this.challengeOperations[challenge.id] = operation
+    }
+    return operation
+  }
+
+  private performOnObservers(challenge: Challenge, perform: (observer: ChallengeObserver) => void) {
+    const observers = this.challengeObservers[challenge.id] || []
+
+    for (const observer of observers) {
+      perform(observer)
+    }
+  }
+
+  private onChallengeValidValue(challenge: Challenge, value: ChallengeValue) {
+    this.performOnObservers(challenge, (observer) => {
+      observer.onValidValue?.(value)
+    })
+  }
+
+  private onChallengeInvalidValue(challenge: Challenge, value: ChallengeValue) {
+    this.performOnObservers(challenge, (observer) => {
+      observer.onInvalidValue?.(value)
+    })
+  }
+
+  private onChallengeNonvalidatedSubmit(challenge: Challenge, response: ChallengeResponse) {
+    this.performOnObservers(challenge, (observer) => {
+      observer.onNonvalidatedSubmit?.(response)
+    })
+  }
+
+  private onChallengeComplete(challenge: Challenge, response: ChallengeResponse) {
+    this.performOnObservers(challenge, (observer) => {
+      observer.onComplete?.(response)
+    })
+  }
+
+  private onChallengeCancel(challenge: Challenge) {
+    this.performOnObservers(challenge, (observer) => {
+      observer.onCancel?.()
+    })
+  }
+
+  private getChallengeOperation(challenge: Challenge) {
+    return this.challengeOperations[challenge.id]
+  }
+
+  private deleteChallengeOperation(operation: ChallengeOperation) {
+    const challenge = operation.challenge
+    operation.deinit()
+
+    delete this.challengeOperations[challenge.id]
+  }
+
+  public cancelChallenge(challenge: Challenge) {
+    const operation = this.challengeOperations[challenge.id]
+    operation.cancel()
+
+    this.deleteChallengeOperation(operation)
+  }
+
+  public completeChallenge(challenge: Challenge): void {
+    const operation = this.challengeOperations[challenge.id]
+    operation.complete()
+
+    this.deleteChallengeOperation(operation)
+  }
+
+  public async submitValuesForChallenge(challenge: Challenge, values: ChallengeValue[]) {
+    if (values.length === 0) {
+      throw Error('Attempting to submit 0 values for challenge')
+    }
+
+    for (const value of values) {
+      if (!value.prompt.validates) {
+        const operation = this.getChallengeOperation(challenge)
+        operation.addNonvalidatedValue(value)
+      } else {
+        const { valid, artifacts } = await this.validateChallengeValue(value)
+        this.setValidationStatusForChallenge(challenge, value, valid, artifacts)
+      }
+    }
+  }
+
+  public setValidationStatusForChallenge(
+    challenge: Challenge,
+    value: ChallengeValue,
+    valid: boolean,
+    artifacts?: ChallengeArtifacts,
+  ) {
+    const operation = this.getChallengeOperation(challenge)
+    operation.setValueStatus(value, valid, artifacts)
+
+    if (operation.isFinished()) {
+      this.deleteChallengeOperation(operation)
+
+      const observers = this.challengeObservers[challenge.id]
+      observers.forEach(clearChallengeObserver)
+      observers.length = 0
+
+      delete this.challengeObservers[challenge.id]
+    }
+  }
+}