yubioath-flutter/lib/fido/views/pin_dialog.dart

353 lines
13 KiB
Dart
Raw Normal View History

2022-10-04 13:12:54 +03:00
/*
2024-01-04 19:09:59 +03:00
* Copyright (C) 2022-2024 Yubico.
2022-10-04 13:12:54 +03:00
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
2022-03-17 15:06:48 +03:00
import 'package:flutter/material.dart';
2022-09-12 16:46:43 +03:00
import 'package:flutter_gen/gen_l10n/app_localizations.dart';
2022-03-17 15:06:48 +03:00
import 'package:flutter_riverpod/flutter_riverpod.dart';
2022-06-13 17:45:26 +03:00
import 'package:logging/logging.dart';
2024-03-08 11:30:47 +03:00
import 'package:material_symbols_icons/symbols.dart';
2022-03-17 15:06:48 +03:00
2022-06-13 17:45:26 +03:00
import '../../app/logging.dart';
2022-03-25 17:43:32 +03:00
import '../../app/message.dart';
2022-03-17 15:06:48 +03:00
import '../../app/models.dart';
import '../../app/state.dart';
2022-06-13 17:45:26 +03:00
import '../../desktop/models.dart';
2024-01-03 17:35:22 +03:00
import '../../exception/cancellation_exception.dart';
import '../../management/models.dart';
import '../../widgets/app_input_decoration.dart';
2023-11-10 17:24:53 +03:00
import '../../widgets/app_text_form_field.dart';
import '../../widgets/responsive_dialog.dart';
2024-06-25 15:06:19 +03:00
import '../../widgets/utf8_utils.dart';
import '../keys.dart';
2022-03-17 15:06:48 +03:00
import '../models.dart';
import '../state.dart';
2022-06-13 17:45:26 +03:00
final _log = Logger('fido.views.pin_dialog');
2022-03-17 15:06:48 +03:00
class FidoPinDialog extends ConsumerStatefulWidget {
final DevicePath devicePath;
final FidoState state;
2024-01-05 10:41:54 +03:00
2022-05-12 10:56:55 +03:00
const FidoPinDialog(this.devicePath, this.state, {super.key});
2022-03-17 15:06:48 +03:00
@override
ConsumerState<ConsumerStatefulWidget> createState() => _FidoPinDialogState();
}
class _FidoPinDialogState extends ConsumerState<FidoPinDialog> {
final _currentPinController = TextEditingController();
final _currentPinFocus = FocusNode();
2024-03-26 16:07:23 +03:00
final _newPinController = TextEditingController();
final _newPinFocus = FocusNode();
2024-07-04 15:17:27 +03:00
final _confirmPinFocus = FocusNode();
2022-03-17 15:06:48 +03:00
String _confirmPin = '';
String? _currentPinError;
String? _newPinError;
bool _currentIsWrong = false;
bool _newIsWrong = false;
bool _isObscureCurrent = true;
bool _isObscureNew = true;
bool _isObscureConfirm = true;
bool _isBlocked = false;
@override
void dispose() {
_currentPinController.dispose();
_currentPinFocus.dispose();
2024-03-26 16:07:23 +03:00
_newPinController.dispose();
_newPinFocus.dispose();
2024-07-04 15:17:27 +03:00
_confirmPinFocus.dispose();
super.dispose();
}
2022-03-17 15:06:48 +03:00
@override
Widget build(BuildContext context) {
2023-02-28 21:05:46 +03:00
final l10n = AppLocalizations.of(context)!;
2022-03-17 15:06:48 +03:00
final hasPin = widget.state.hasPin;
final minPinLength = widget.state.minPinLength;
final currentMinPinLen = !hasPin
? 0
// N.B. current PIN may be shorter than minimum if set before the minimum was increased
: (widget.state.forcePinChange ? 4 : widget.state.minPinLength);
final currentPinLenOk =
_currentPinController.text.length >= currentMinPinLen;
2024-03-26 16:07:23 +03:00
final newPinLenOk = _newPinController.text.length >= minPinLength;
final isValid =
currentPinLenOk && newPinLenOk && _newPinController.text == _confirmPin;
2024-08-12 09:14:43 +03:00
final newPinEnabled = !_isBlocked && currentPinLenOk;
final confirmPinEnabled = !_isBlocked && currentPinLenOk && newPinLenOk;
final deviceData = ref.read(currentDeviceDataProvider).valueOrNull;
final hasPinComplexity = deviceData?.info.pinComplexity ?? false;
final pinRetries = ref.watch(fidoStateProvider(widget.devicePath)
.select((s) => s.whenOrNull(data: (state) => state.pinRetries)));
2022-03-17 15:06:48 +03:00
final isBio = widget.state.bioEnroll != null;
final enabled = deviceData
?.info.config.enabledCapabilities[deviceData.node.transport] ??
0;
final maxPinLength =
2024-06-25 15:06:19 +03:00
isBio && (enabled & Capability.piv.value) != 0 ? 8 : 63;
2022-03-17 15:06:48 +03:00
return ResponsiveDialog(
title: Text(hasPin ? l10n.s_change_pin : l10n.s_set_pin),
2022-05-12 09:34:51 +03:00
actions: [
TextButton(
onPressed: isValid ? _submit : null,
key: saveButton,
child: Text(l10n.s_save),
2022-05-12 09:34:51 +03:00
),
],
child: Padding(
padding: const EdgeInsets.symmetric(horizontal: 18.0),
child: Column(
crossAxisAlignment: CrossAxisAlignment.start,
children: [
if (hasPin) ...[
2023-09-27 16:12:31 +03:00
Text(l10n.p_enter_current_pin_or_reset_no_puk),
2023-11-10 17:24:53 +03:00
AppTextFormField(
key: currentPin,
controller: _currentPinController,
focusNode: _currentPinFocus,
maxLength: maxPinLength,
2024-06-25 15:06:19 +03:00
inputFormatters: [limitBytesLength(maxPinLength)],
buildCounter: buildByteCounterFor(_currentPinController.text),
autofocus: true,
obscureText: _isObscureCurrent,
autofillHints: const [AutofillHints.password],
decoration: AppInputDecoration(
enabled: !_isBlocked,
border: const OutlineInputBorder(),
labelText: l10n.s_current_pin,
helperText: pinRetries != null && pinRetries <= 3
? l10n.l_attempts_remaining(pinRetries)
: '', // Prevents dialog resizing
errorText: _currentIsWrong ? _currentPinError : null,
errorMaxLines: 3,
2024-03-08 11:30:47 +03:00
prefixIcon: const Icon(Symbols.pin),
2024-08-12 09:14:43 +03:00
suffixIcon: IconButton(
icon: Icon(_isObscureCurrent
? Symbols.visibility
: Symbols.visibility_off),
onPressed: () {
setState(() {
_isObscureCurrent = !_isObscureCurrent;
});
},
tooltip:
_isObscureCurrent ? l10n.s_show_pin : l10n.s_hide_pin,
),
),
2024-07-04 15:17:27 +03:00
textInputAction: TextInputAction.next,
onChanged: (value) {
setState(() {
_currentIsWrong = false;
});
},
2024-07-04 15:17:27 +03:00
onFieldSubmitted: (_) {
if (_currentPinController.text.length < minPinLength) {
_currentPinFocus.requestFocus();
2024-08-12 09:14:43 +03:00
} else {
_newPinFocus.requestFocus();
2024-07-04 15:17:27 +03:00
}
},
).init(),
],
2024-03-26 16:07:23 +03:00
Text(hasPinComplexity
? l10n.p_enter_new_fido2_pin_complexity_active(
2024-06-25 15:06:19 +03:00
minPinLength, maxPinLength, 2, '123456')
: l10n.p_enter_new_fido2_pin(minPinLength, maxPinLength)),
2023-11-10 17:24:53 +03:00
AppTextFormField(
key: newPin,
2024-03-26 16:07:23 +03:00
controller: _newPinController,
focusNode: _newPinFocus,
maxLength: maxPinLength,
2024-06-25 15:06:19 +03:00
inputFormatters: [limitBytesLength(maxPinLength)],
buildCounter: buildByteCounterFor(_newPinController.text),
autofocus: !hasPin,
obscureText: _isObscureNew,
autofillHints: const [AutofillHints.password],
decoration: AppInputDecoration(
2022-03-17 15:06:48 +03:00
border: const OutlineInputBorder(),
labelText: l10n.s_new_pin,
2024-08-12 09:14:43 +03:00
enabled: newPinEnabled,
errorText: _newIsWrong ? _newPinError : null,
errorMaxLines: 3,
2024-03-08 11:30:47 +03:00
prefixIcon: const Icon(Symbols.pin),
2024-07-04 15:17:27 +03:00
suffixIcon: ExcludeFocusTraversal(
2024-08-12 09:14:43 +03:00
excluding: !newPinEnabled,
2024-07-04 15:17:27 +03:00
child: IconButton(
icon: Icon(_isObscureNew
? Symbols.visibility
: Symbols.visibility_off),
onPressed: () {
setState(() {
_isObscureNew = !_isObscureNew;
});
},
tooltip: _isObscureNew ? l10n.s_show_pin : l10n.s_hide_pin,
),
),
2022-03-17 15:06:48 +03:00
),
2024-07-04 15:17:27 +03:00
textInputAction: TextInputAction.next,
2022-03-17 15:06:48 +03:00
onChanged: (value) {
setState(() {
_newIsWrong = false;
2022-03-17 15:06:48 +03:00
});
},
2024-07-04 15:17:27 +03:00
onFieldSubmitted: (_) {
if (_newPinController.text.length < minPinLength) {
_newPinFocus.requestFocus();
2024-08-12 09:14:43 +03:00
} else {
_confirmPinFocus.requestFocus();
2024-07-04 15:17:27 +03:00
}
},
).init(),
2023-11-10 17:24:53 +03:00
AppTextFormField(
key: confirmPin,
initialValue: _confirmPin,
2024-07-04 15:17:27 +03:00
focusNode: _confirmPinFocus,
maxLength: maxPinLength,
2024-06-25 15:06:19 +03:00
inputFormatters: [limitBytesLength(maxPinLength)],
buildCounter: buildByteCounterFor(_confirmPin),
obscureText: _isObscureConfirm,
autofillHints: const [AutofillHints.password],
decoration: AppInputDecoration(
border: const OutlineInputBorder(),
labelText: l10n.s_confirm_pin,
2024-03-08 11:30:47 +03:00
prefixIcon: const Icon(Symbols.pin),
2024-08-12 09:14:43 +03:00
suffixIcon: ExcludeFocusTraversal(
excluding: !confirmPinEnabled,
child: IconButton(
icon: Icon(_isObscureConfirm
? Symbols.visibility
: Symbols.visibility_off),
onPressed: () {
setState(() {
_isObscureConfirm = !_isObscureConfirm;
});
},
tooltip:
_isObscureConfirm ? l10n.s_show_pin : l10n.s_hide_pin,
),
),
2024-08-12 09:14:43 +03:00
enabled: confirmPinEnabled,
2024-03-26 16:07:23 +03:00
errorText:
_newPinController.text.length == _confirmPin.length &&
_newPinController.text != _confirmPin
? l10n.l_pin_mismatch
: null,
helperText: '', // Prevents resizing when errorText shown
),
2024-07-04 15:17:27 +03:00
textInputAction: TextInputAction.done,
onChanged: (value) {
setState(() {
_confirmPin = value;
});
},
onFieldSubmitted: (_) {
if (isValid) {
_submit();
2024-07-04 15:17:27 +03:00
} else {
_confirmPinFocus.requestFocus();
}
},
).init(),
]
.map((e) => Padding(
padding: const EdgeInsets.symmetric(vertical: 8.0),
child: e,
))
.toList(),
),
2022-03-17 15:06:48 +03:00
),
);
}
void _submit() async {
2023-02-28 21:05:46 +03:00
final l10n = AppLocalizations.of(context)!;
final oldPin = _currentPinController.text.isNotEmpty
? _currentPinController.text
: null;
2024-03-26 16:07:23 +03:00
final newPin = _newPinController.text;
2022-06-13 17:45:26 +03:00
try {
final result = await ref
.read(fidoStateProvider(widget.devicePath).notifier)
2024-03-26 16:07:23 +03:00
.setPin(newPin, oldPin: oldPin);
result.whenOrNull(
success: () {
Navigator.of(context).pop(true);
showMessage(context, l10n.s_pin_set);
},
failed: (reason) {
reason.when(
invalidPin: (retries, authBlocked) {
_currentPinController.selection = TextSelection(
baseOffset: 0,
extentOffset: _currentPinController.text.length);
_currentPinFocus.requestFocus();
setState(() {
if (authBlocked || retries == 0) {
_currentPinError = retries == 0
? l10n.l_pin_blocked_reset
: l10n.l_pin_soft_locked;
2024-03-26 16:07:23 +03:00
_currentIsWrong = true;
_isBlocked = true;
} else {
_currentPinError =
l10n.l_wrong_pin_attempts_remaining(retries);
_currentIsWrong = true;
}
});
},
weakPin: () {
_newPinController.selection = TextSelection(
baseOffset: 0, extentOffset: _newPinController.text.length);
_newPinFocus.requestFocus();
setState(() {
2024-03-26 16:38:22 +03:00
_newPinError = l10n.p_pin_puk_complexity_failure(l10n.s_pin);
2024-03-26 16:07:23 +03:00
_newIsWrong = true;
});
},
);
},
);
2024-01-05 10:41:54 +03:00
} on CancellationException catch (_) {
2024-01-03 17:35:22 +03:00
// ignored
2022-06-13 17:45:26 +03:00
} catch (e) {
_log.error('Failed to set PIN', e);
final String errorMessage;
// TODO: Make this cleaner than importing desktop specific RpcError.
if (e is RpcError) {
errorMessage = e.message;
} else {
errorMessage = e.toString();
}
await ref.read(withContextProvider)(
(context) async {
showMessage(
context,
l10n.l_set_pin_failed(errorMessage),
duration: const Duration(seconds: 4),
);
},
2022-06-13 17:45:26 +03:00
);
}
}
2022-03-17 15:06:48 +03:00
}