import QtQuick 2.5 import io.thp.pyotherside 1.4 // @disable-check M300 Python { id: py property int nDevices property bool hasDevice property string name property var version property string oathId property var connections: [] property var entries: [] property int nextRefresh: 0 property var enabled: [] property bool ready: false property var queue: [] property bool hasOTP: enabled.indexOf('OTP') !== -1 property bool hasCCID: enabled.indexOf('CCID') !== -1 property bool validated property bool slot1inUse property bool slot2inUse property int expiration: 0 signal wrongPassword signal credentialsRefreshed Component.onCompleted: { importModule('site', function () { call('site.addsitedir', [appDir + '/pymodules'], function () { addImportPath(urlPrefix + '/py') importModule('yubikey', function () { ready = true for (var i in queue) { do_call(queue[i][0], queue[i][1], queue[i][2]) } queue = [] }) }) }) } onHasDeviceChanged: { device.validated = false } function do_call(func, args, cb) { if (!ready) { queue.push([func, args, cb]) } else { call(func, args.map(JSON.stringify), function (json) { if (cb) { try { cb(json ? JSON.parse(json) : undefined) } catch(err) { console.log(err, json) } } }) } } function refresh(slotMode, refreshCredentialsOnMode) { do_call('yubikey.controller.count_devices', [], function (n) { nDevices = n if (nDevices == 1) { do_call('yubikey.controller.refresh', [slotMode], function (dev) { name = dev ? dev.name : '' version = dev ? dev.version : null enabled = dev ? dev.enabled : [] connections = dev ? dev.connections : [] hasDevice = dev !== undefined && dev !== null }) } else if (hasDevice) { // No longer has device hasDevice = false entries = null nextRefresh = 0 } refreshCredentialsOnMode() }) } function refreshCCIDCredentials(force) { var now = Math.floor(Date.now() / 1000) if (force || (validated && nextRefresh <= now)) { do_call('yubikey.controller.refresh_credentials', [now], updateAllCredentials) } } function refreshSlotCredentials(slots, digits, force) { var now = Math.floor(Date.now() / 1000) if (force || (nextRefresh <= now)) { do_call('yubikey.controller.refresh_slot_credentials', [slots, digits, now], updateAllCredentials) } } function validate(password, remember) { do_call('yubikey.controller.provide_password', [password, remember], function (res) { if (res) { validated = true } else { wrongPassword() } }) } function promptOrSkip(prompt) { do_call('yubikey.controller.needs_validation', [], function (res) { if (res === true) { prompt.open() } else { validated = true } }) } function setPassword(password, remember) { do_call('yubikey.controller.set_password', [password, remember], function () { validated = true }) } function updateAllCredentials(newEntries) { var result = [] var minExpiration = (Date.now() / 1000) + 60 for (var i = 0; i < newEntries.length; i++) { var entry = newEntries[i] // Update min expiration if (entry.code && entry.code.valid_to < minExpiration && entry.credential.period === 30) { minExpiration = entry.code.valid_to } // Touch credentials should only be replaced by user if (credentialExists(entry.credential.key) && entry.credential.touch) { result.push(getEntry(entry.credential.key)) continue } // HOTP credentials should only be replaced by user if (credentialExists(entry.credential.key) && entry.credential.oath_type === 'HOTP') { result.push(getEntry(entry.credential.key)) continue } // The selected credential should still be selected, // with an updated code. if (selected != null) { if (selected.credential.key === entry.credential.key) { selected = entry } } // TOTP credentials should be updated result.push(entry) } nextRefresh = minExpiration // Credentials is cleared so that // the view will refresh even if objects are the same entries = result entries.sort(function (a, b) { return getSortableName(a.credential).localeCompare(getSortableName(b.credential)) }) updateExpiration() credentialsRefreshed() } function getSortableName(credential) { return (credential.issuer || '') + (credential.name || '') + '/' + (credential.period || '') } function getEntry(key) { for (var i = 0; i < entries.length; i++) { if (entries[i].credential.key === key) { return entries[i] } } } function credentialExists(key) { if (entries != null) { for (var i = 0; i < entries.length; i++) { if (entries[i].credential.key === key) { return true } } } return false } function hasAnyCredentials() { return entries != null && entries.length > 0 } function updateExpiration() { var maxExpiration = 0 if (entries !== null) { for (var i = 0; i < entries.length; i++) { if (entries[i].credential.period === 30) { var exp = entries[i].code && entries[i].code.valid_to if (exp !== null && exp > maxExpiration) { maxExpiration = exp } } } expiration = maxExpiration } } function calculate(entry, copyAfterUpdate) { var now = Math.floor(Date.now() / 1000) var margin = entry.credential.touch ? 10 : 0; do_call('yubikey.controller.calculate', [entry.credential, now + margin], function (code) { updateSingleCredential(entry.credential, code, copyAfterUpdate) }) } function calculateSlotMode(slot, digits, copyAfterUpdate) { var now = Math.floor(Date.now() / 1000) var margin = entry.credential.touch ? 10 : 0; do_call('yubikey.controller.calculate_slot_mode', [slot, digits, now + margin], function (entry) { updateSingleCredential(entry.credential, entry.code, copyAfterUpdate) }) } /** Put a credential coming from the YubiKey in the right position in the credential list. */ function updateSingleCredential(cred, code, copyAfterUpdate) { var entry = null; for (var i = 0; i < entries.length; i++) { if (entries[i].credential.key === cred.key) { entry = entries[i] entry.code = code } } if (!cred.touch) { updateExpiration() } credentialsRefreshed() // Update the selected credential // after update, since the code now // might be available. selected = entry if (copyAfterUpdate) { copy() } } function addCredential(name, key, issuer, oathType, algo, digits, period, touch, cb) { do_call('yubikey.controller.add_credential', [name, key, issuer, oathType, algo, digits, period, touch], cb) } function addSlotCredential(slot, key, touch, cb) { do_call('yubikey.controller.add_slot_credential', [slot, key, touch], cb) } function deleteCredential(credential) { do_call('yubikey.controller.delete_credential', [credential]) } function deleteSlotCredential(slot) { do_call('yubikey.controller.delete_slot_credential', [slot]) } function parseQr(screenShots, cb) { do_call('yubikey.controller.parse_qr', [screenShots], cb) } function reset() { do_call('yubikey.controller.reset', []) } function getSlotStatus(cb) { do_call('yubikey.controller.slot_status', [], function (res) { slot1inUse = res[0] slot2inUse = res[1] cb() }) } }