2022-10-04 13:12:54 +03:00
|
|
|
/*
|
|
|
|
* Copyright (C) 2022 Yubico.
|
|
|
|
*
|
|
|
|
* Licensed under the Apache License, Version 2.0 (the "License");
|
|
|
|
* you may not use this file except in compliance with the License.
|
|
|
|
* You may obtain a copy of the License at
|
|
|
|
*
|
|
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
*
|
|
|
|
* Unless required by applicable law or agreed to in writing, software
|
|
|
|
* distributed under the License is distributed on an "AS IS" BASIS,
|
|
|
|
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
|
|
* See the License for the specific language governing permissions and
|
|
|
|
* limitations under the License.
|
|
|
|
*/
|
|
|
|
|
2024-01-24 11:44:05 +03:00
|
|
|
import 'dart:convert';
|
|
|
|
import 'dart:io';
|
2022-01-31 13:02:34 +03:00
|
|
|
import 'dart:math';
|
|
|
|
|
2023-08-18 10:43:13 +03:00
|
|
|
import 'package:flutter/material.dart';
|
2023-08-16 13:38:29 +03:00
|
|
|
import 'package:flutter_gen/gen_l10n/app_localizations.dart';
|
2024-02-05 19:07:35 +03:00
|
|
|
import 'package:flutter_riverpod/flutter_riverpod.dart';
|
2023-08-16 13:38:29 +03:00
|
|
|
|
2024-02-05 19:07:35 +03:00
|
|
|
import '../../android/qr_scanner/qr_scanner_provider.dart';
|
2023-08-16 13:38:29 +03:00
|
|
|
import '../../app/message.dart';
|
|
|
|
import '../../app/models.dart';
|
2024-01-24 11:44:05 +03:00
|
|
|
import '../../app/state.dart';
|
2024-02-05 19:07:35 +03:00
|
|
|
import '../../core/state.dart';
|
2024-01-24 11:44:05 +03:00
|
|
|
import '../../desktop/models.dart';
|
2024-02-05 19:07:35 +03:00
|
|
|
import '../../exception/cancellation_exception.dart';
|
2022-07-06 16:22:15 +03:00
|
|
|
import '../../widgets/utf8_utils.dart';
|
2023-08-16 13:38:29 +03:00
|
|
|
import '../keys.dart';
|
2023-02-10 19:37:42 +03:00
|
|
|
import '../models.dart';
|
2024-02-05 19:07:35 +03:00
|
|
|
import 'add_account_dialog.dart';
|
2023-08-16 13:38:29 +03:00
|
|
|
import 'add_account_page.dart';
|
|
|
|
import 'add_multi_account_page.dart';
|
2022-01-31 13:02:34 +03:00
|
|
|
|
|
|
|
/// Calculates the available space for issuer and account name.
|
|
|
|
///
|
2023-05-22 12:20:30 +03:00
|
|
|
/// Returns a record of the space available for the issuer and account name,
|
2022-01-31 13:02:34 +03:00
|
|
|
/// respectively, based on the current state of the credential.
|
2023-05-22 12:20:30 +03:00
|
|
|
(int, int) getRemainingKeySpace(
|
2022-01-31 13:02:34 +03:00
|
|
|
{required OathType oathType,
|
|
|
|
required int period,
|
|
|
|
required String issuer,
|
|
|
|
required String name}) {
|
|
|
|
int remaining = 64; // The field is 64 bytes in total.
|
|
|
|
|
|
|
|
if (oathType == OathType.totp && period != defaultPeriod) {
|
|
|
|
// Non-standard TOTP periods are stored as part of this data, as a "D/"- prefix.
|
|
|
|
remaining -= '$period/'.length;
|
|
|
|
}
|
2022-07-06 16:22:15 +03:00
|
|
|
int issuerSpace = byteLength(issuer);
|
2022-01-31 13:02:34 +03:00
|
|
|
if (issuer.isNotEmpty) {
|
|
|
|
// Issuer is separated from name with a ":", if present.
|
|
|
|
issuerSpace += 1;
|
|
|
|
}
|
|
|
|
|
2023-05-22 12:20:30 +03:00
|
|
|
return (
|
2022-01-31 13:02:34 +03:00
|
|
|
// Always reserve at least one character for name
|
2022-07-06 16:22:15 +03:00
|
|
|
remaining - 1 - max(byteLength(name), 1),
|
2022-01-31 13:02:34 +03:00
|
|
|
remaining - issuerSpace,
|
|
|
|
);
|
|
|
|
}
|
2023-02-24 16:19:34 +03:00
|
|
|
|
|
|
|
/// Gets a textual name for the account, based on the issuer and name.
|
|
|
|
String getTextName(OathCredential credential) {
|
|
|
|
return credential.issuer != null
|
|
|
|
? '${credential.issuer} (${credential.name})'
|
|
|
|
: credential.name;
|
|
|
|
}
|
2023-08-16 13:38:29 +03:00
|
|
|
|
2023-08-18 10:43:13 +03:00
|
|
|
Future<void> handleUri(
|
|
|
|
BuildContext context,
|
|
|
|
List<OathCredential>? credentials,
|
2023-08-18 12:34:15 +03:00
|
|
|
String qrData,
|
2023-08-16 13:38:29 +03:00
|
|
|
DevicePath? devicePath,
|
|
|
|
OathState? state,
|
|
|
|
AppLocalizations l10n,
|
|
|
|
) async {
|
2023-08-30 11:20:05 +03:00
|
|
|
List<CredentialData> creds;
|
|
|
|
try {
|
|
|
|
creds = CredentialData.fromUri(Uri.parse(qrData));
|
|
|
|
} catch (_) {
|
|
|
|
showMessage(context, l10n.l_invalid_qr);
|
|
|
|
return;
|
|
|
|
}
|
2023-08-18 10:43:13 +03:00
|
|
|
if (creds.isEmpty) {
|
|
|
|
showMessage(context, l10n.l_qr_not_found);
|
|
|
|
} else if (creds.length == 1) {
|
|
|
|
await showBlurDialog(
|
|
|
|
context: context,
|
|
|
|
builder: (context) => OathAddAccountPage(
|
|
|
|
devicePath,
|
|
|
|
state,
|
|
|
|
credentials: credentials,
|
|
|
|
credentialData: creds[0],
|
|
|
|
),
|
|
|
|
);
|
|
|
|
} else {
|
|
|
|
await showBlurDialog(
|
|
|
|
context: context,
|
|
|
|
builder: (context) => OathAddMultiAccountPage(devicePath, state, creds,
|
|
|
|
key: migrateAccountAction),
|
|
|
|
);
|
|
|
|
}
|
2023-08-16 13:38:29 +03:00
|
|
|
}
|
2024-01-24 11:44:05 +03:00
|
|
|
|
|
|
|
const maxQrFileSize = 5 * 1024 * 1024;
|
|
|
|
|
|
|
|
Future<String?> handleQrFile(File file, BuildContext context,
|
|
|
|
WithContext withContext, QrScanner qrScanner) async {
|
|
|
|
final l10n = AppLocalizations.of(context)!;
|
|
|
|
if (await file.length() > maxQrFileSize) {
|
|
|
|
await withContext((context) async {
|
|
|
|
showMessage(
|
|
|
|
context,
|
|
|
|
l10n.l_qr_not_read(
|
|
|
|
l10n.l_qr_file_too_large('${maxQrFileSize / (1024 * 1024)} MB')));
|
|
|
|
});
|
|
|
|
return null;
|
|
|
|
}
|
|
|
|
|
|
|
|
final fileData = await file.readAsBytes();
|
|
|
|
final b64Image = base64Encode(fileData);
|
|
|
|
|
|
|
|
try {
|
|
|
|
final qrData = await qrScanner.scanQr(b64Image);
|
|
|
|
if (qrData == null) {
|
|
|
|
await withContext((context) async {
|
|
|
|
showMessage(context, l10n.l_qr_not_found);
|
|
|
|
});
|
|
|
|
return null;
|
|
|
|
}
|
|
|
|
return qrData;
|
|
|
|
} catch (e) {
|
|
|
|
final String errorMessage;
|
|
|
|
if (e is RpcError) {
|
|
|
|
if (e.status == 'invalid-image') {
|
|
|
|
errorMessage = l10n.l_qr_invalid_image_file;
|
|
|
|
} else {
|
|
|
|
errorMessage = e.message;
|
|
|
|
}
|
|
|
|
} else {
|
|
|
|
errorMessage = e.toString();
|
|
|
|
}
|
|
|
|
await withContext((context) async {
|
|
|
|
showMessage(context, l10n.l_qr_not_read(errorMessage));
|
|
|
|
});
|
|
|
|
return null;
|
|
|
|
}
|
|
|
|
}
|
2024-02-05 19:07:35 +03:00
|
|
|
|
|
|
|
Future<void> addOathAccount(BuildContext context, WidgetRef ref,
|
|
|
|
[DevicePath? devicePath, OathState? oathState]) async {
|
|
|
|
if (isAndroid) {
|
|
|
|
final l10n = AppLocalizations.of(context)!;
|
|
|
|
final withContext = ref.read(withContextProvider);
|
|
|
|
final qrScanner = ref.read(qrScannerProvider);
|
|
|
|
if (qrScanner != null) {
|
|
|
|
try {
|
|
|
|
final qrData = await qrScanner.scanQr();
|
|
|
|
await AndroidQrScanner.handleScannedData(
|
|
|
|
qrData, withContext, qrScanner, l10n);
|
|
|
|
} on CancellationException catch (_) {
|
|
|
|
//ignored - user cancelled
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
} else {
|
|
|
|
// no QR scanner - enter data manually
|
|
|
|
await AndroidQrScanner.showAccountManualEntryDialog(withContext, l10n);
|
|
|
|
}
|
|
|
|
} else {
|
|
|
|
await showBlurDialog(
|
|
|
|
context: context,
|
|
|
|
builder: (context) => AddAccountDialog(devicePath, oathState),
|
|
|
|
);
|
|
|
|
}
|
|
|
|
}
|