chore: Add serverPassword param to endpoints (#2919) [skip e2e]

* chore: send server password param to delete account endpoint * chore: send server password param to disable mfa endpoint * chore: modify tests * chore: force challenge prompt for mfa disable * chore: fix eslint errors * chore: add server passsword to get recovery codes * chore: fix tests * chore: pass server password as header
2025-08-26 09:04:03 -03:00
parent cf4d2196de
commit 54af28aa04
29 changed files with 298 additions and 62 deletions
--- a/packages/snjs/lib/Domain/UseCase/GetRecoveryCodes/GetRecoveryCodes.spec.ts
+++ b/packages/snjs/lib/Domain/UseCase/GetRecoveryCodes/GetRecoveryCodes.spec.ts
@@ -1,4 +1,4 @@
-import { AuthClientInterface } from '@standardnotes/services'
+import { AuthClientInterface, EncryptionService } from '@standardnotes/services'
 import { SettingsClientInterface } from '@Lib/Services/Settings/SettingsClientInterface'

 import { GetRecoveryCodes } from './GetRecoveryCodes'
@@ -6,8 +6,9 @@ import { GetRecoveryCodes } from './GetRecoveryCodes'
 describe('GetRecoveryCodes', () => {
  let authClient: AuthClientInterface
  let settingsClient: SettingsClientInterface
+  let encryption: EncryptionService

-  const createUseCase = () => new GetRecoveryCodes(authClient, settingsClient)
+  const createUseCase = () => new GetRecoveryCodes(authClient, settingsClient, encryption)

  beforeEach(() => {
    authClient = {} as jest.Mocked<AuthClientInterface>
@@ -15,12 +16,16 @@ describe('GetRecoveryCodes', () => {

    settingsClient = {} as jest.Mocked<SettingsClientInterface>
    settingsClient.getSetting = jest.fn().mockResolvedValue('existing-recovery-codes')
+
+    encryption = {} as jest.Mocked<EncryptionService>
+    encryption.computeRootKey = jest.fn().mockResolvedValue({ serverPassword: 'test-server-password' })
+    encryption.getRootKeyParams = jest.fn().mockReturnValue({ algorithm: 'test-algorithm' })
  })

  it('should return existing recovery code if they exist', async () => {
    const useCase = createUseCase()

-    const result = await useCase.execute()
+    const result = await useCase.execute({ password: 'test-password' })

    expect(result.getValue()).toBe('existing-recovery-codes')
  })
@@ -30,7 +35,7 @@ describe('GetRecoveryCodes', () => {

    const useCase = createUseCase()

-    const result = await useCase.execute()
+    const result = await useCase.execute({ password: 'test-password' })

    expect(result.getValue()).toBe('recovery-codes')
  })
@@ -41,7 +46,7 @@ describe('GetRecoveryCodes', () => {

    const useCase = createUseCase()

-    const result = await useCase.execute()
+    const result = await useCase.execute({ password: 'test-password' })

    expect(result.isFailed()).toBe(true)
  })
--- a/packages/snjs/lib/Domain/UseCase/GetRecoveryCodes/GetRecoveryCodes.ts
+++ b/packages/snjs/lib/Domain/UseCase/GetRecoveryCodes/GetRecoveryCodes.ts
@@ -1,23 +1,40 @@
-import { AuthClientInterface } from '@standardnotes/services'
+import { AuthClientInterface, EncryptionService } from '@standardnotes/services'
 import { Result, SettingName, UseCaseInterface } from '@standardnotes/domain-core'

 import { SettingsClientInterface } from '@Lib/Services/Settings/SettingsClientInterface'
+import { GetRecoveryCodesDTO } from './GetRecoveryCodesDTO'
+import { SNRootKeyParams } from '@standardnotes/encryption'

 export class GetRecoveryCodes implements UseCaseInterface<string> {
  constructor(
    private authClient: AuthClientInterface,
    private settingsClient: SettingsClientInterface,
+    private encryption: EncryptionService,
  ) {}

-  async execute(): Promise<Result<string>> {
+  async execute(dto: GetRecoveryCodesDTO): Promise<Result<string>> {
+    if (!dto.password) {
+      return Result.fail('Password is required to get recovery code.')
+    }
+    const currentRootKey = await this.encryption.computeRootKey(
+      dto.password,
+      this.encryption.getRootKeyParams() as SNRootKeyParams,
+    )
+    const serverPassword = currentRootKey.serverPassword
+
+    if (!serverPassword) {
+      return Result.fail('Could not compute server password')
+    }
+
    const existingRecoveryCodes = await this.settingsClient.getSetting(
      SettingName.create(SettingName.NAMES.RecoveryCodes).getValue(),
+      serverPassword,
    )
    if (existingRecoveryCodes !== undefined) {
      return Result.ok(existingRecoveryCodes)
    }

-    const generatedRecoveryCodes = await this.authClient.generateRecoveryCodes()
+    const generatedRecoveryCodes = await this.authClient.generateRecoveryCodes({ serverPassword })
    if (generatedRecoveryCodes === false) {
      return Result.fail('Could not generate recovery code')
    }
--- a/packages/snjs/lib/Domain/UseCase/GetRecoveryCodes/GetRecoveryCodesDTO.ts
+++ b/packages/snjs/lib/Domain/UseCase/GetRecoveryCodes/GetRecoveryCodesDTO.ts
@@ -0,0 +1,3 @@
+export interface GetRecoveryCodesDTO {
+  password?: string
+}