/* * Copyright (C) 2022-2023 Yubico. * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ import 'package:flutter/material.dart'; import 'package:flutter_gen/gen_l10n/app_localizations.dart'; import 'package:flutter_riverpod/flutter_riverpod.dart'; import 'package:material_symbols_icons/symbols.dart'; import '../../app/message.dart'; import '../../app/models.dart'; import '../../widgets/app_input_decoration.dart'; import '../../widgets/app_text_field.dart'; import '../../widgets/responsive_dialog.dart'; import '../keys.dart' as keys; import '../models.dart'; import '../state.dart'; enum ManageTarget { pin, puk, unblock } class ManagePinPukDialog extends ConsumerStatefulWidget { final DevicePath path; final PivState pivState; final ManageTarget target; const ManagePinPukDialog(this.path, this.pivState, {super.key, this.target = ManageTarget.pin}); @override ConsumerState createState() => _ManagePinPukDialogState(); } class _ManagePinPukDialogState extends ConsumerState { final _currentPinController = TextEditingController(); final _currentPinFocus = FocusNode(); String _newPin = ''; String _confirmPin = ''; bool _pinIsBlocked = false; bool _currentIsWrong = false; int _attemptsRemaining = -1; bool _isObscureCurrent = true; bool _isObscureNew = true; bool _isObscureConfirm = true; late final bool _defaultPinUsed; late final bool _defaultPukUsed; late final int _minPinLen; @override void initState() { super.initState(); // Old YubiKeys allowed a 4 digit PIN _minPinLen = widget.pivState.version.isAtLeast(4, 3, 1) ? 6 : 4; _defaultPinUsed = widget.pivState.metadata?.pinMetadata.defaultValue ?? false; _defaultPukUsed = widget.pivState.metadata?.pukMetadata.defaultValue ?? false; if (widget.target == ManageTarget.pin && _defaultPinUsed) { _currentPinController.text = defaultPin; } if (widget.target != ManageTarget.pin && _defaultPukUsed) { _currentPinController.text = defaultPuk; } } @override void dispose() { _currentPinController.dispose(); _currentPinFocus.dispose(); super.dispose(); } _submit() async { final notifier = ref.read(pivStateProvider(widget.path).notifier); final result = await switch (widget.target) { ManageTarget.pin => notifier.changePin(_currentPinController.text, _newPin), ManageTarget.puk => notifier.changePuk(_currentPinController.text, _newPin), ManageTarget.unblock => notifier.unblockPin(_currentPinController.text, _newPin), }; result.when(success: () { if (!mounted) return; final l10n = AppLocalizations.of(context)!; Navigator.of(context).pop(); showMessage( context, switch (widget.target) { ManageTarget.puk => l10n.s_puk_set, _ => l10n.s_pin_set, }); }, failure: (attemptsRemaining) { _currentPinController.selection = TextSelection( baseOffset: 0, extentOffset: _currentPinController.text.length); _currentPinFocus.requestFocus(); setState(() { _attemptsRemaining = attemptsRemaining; _currentIsWrong = true; if (_attemptsRemaining == 0) { _pinIsBlocked = true; } }); }); } @override Widget build(BuildContext context) { final l10n = AppLocalizations.of(context)!; final currentPin = _currentPinController.text; final isValid = !_currentIsWrong && _newPin.isNotEmpty && _newPin == _confirmPin && currentPin.isNotEmpty; final titleText = switch (widget.target) { ManageTarget.pin => l10n.s_change_pin, ManageTarget.puk => l10n.s_change_puk, ManageTarget.unblock => l10n.s_unblock_pin, }; final showDefaultPinUsed = widget.target == ManageTarget.pin && _defaultPinUsed; final showDefaultPukUsed = widget.target != ManageTarget.pin && _defaultPukUsed; return ResponsiveDialog( title: Text(titleText), actions: [ TextButton( onPressed: isValid ? _submit : null, key: keys.saveButton, child: Text(l10n.s_save), ) ], child: Padding( padding: const EdgeInsets.symmetric(horizontal: 18.0), child: Column( crossAxisAlignment: CrossAxisAlignment.start, children: [ Text(widget.target == ManageTarget.pin ? l10n.p_enter_current_pin_or_reset : l10n.p_enter_current_puk_or_reset), AppTextField( autofocus: !(showDefaultPinUsed || showDefaultPukUsed), obscureText: _isObscureCurrent, maxLength: 8, autofillHints: const [AutofillHints.password], key: keys.pinPukField, readOnly: showDefaultPinUsed || showDefaultPukUsed, controller: _currentPinController, focusNode: _currentPinFocus, enabled: !_pinIsBlocked, decoration: AppInputDecoration( border: const OutlineInputBorder(), helperText: showDefaultPinUsed ? l10n.l_default_pin_used : showDefaultPukUsed ? l10n.l_default_puk_used : null, labelText: widget.target == ManageTarget.pin ? l10n.s_current_pin : l10n.s_current_puk, errorText: _pinIsBlocked ? (widget.target == ManageTarget.pin ? l10n.l_piv_pin_blocked : l10n.l_piv_pin_puk_blocked) : (_currentIsWrong ? (widget.target == ManageTarget.pin ? l10n.l_wrong_pin_attempts_remaining( _attemptsRemaining) : l10n.l_wrong_puk_attempts_remaining( _attemptsRemaining)) : null), errorMaxLines: 3, prefixIcon: const Icon(Symbols.password), suffixIcon: IconButton( icon: Icon(_isObscureCurrent ? Symbols.visibility : Symbols.visibility_off), onPressed: () { setState(() { _isObscureCurrent = !_isObscureCurrent; }); }, tooltip: widget.target == ManageTarget.pin ? (_isObscureCurrent ? l10n.s_show_pin : l10n.s_hide_pin) : (_isObscureCurrent ? l10n.s_show_puk : l10n.s_hide_puk), ), ), textInputAction: TextInputAction.next, onChanged: (value) { setState(() { _currentIsWrong = false; }); }, ).init(), Text(l10n.p_enter_new_piv_pin_puk( widget.target == ManageTarget.puk ? l10n.s_puk : l10n.s_pin)), AppTextField( key: keys.newPinPukField, autofocus: showDefaultPinUsed || showDefaultPukUsed, obscureText: _isObscureNew, maxLength: 8, autofillHints: const [AutofillHints.newPassword], decoration: AppInputDecoration( border: const OutlineInputBorder(), labelText: widget.target == ManageTarget.puk ? l10n.s_new_puk : l10n.s_new_pin, prefixIcon: const Icon(Symbols.password), suffixIcon: IconButton( icon: Icon(_isObscureNew ? Symbols.visibility : Symbols.visibility_off), onPressed: () { setState(() { _isObscureNew = !_isObscureNew; }); }, tooltip: widget.target == ManageTarget.pin ? (_isObscureNew ? l10n.s_show_pin : l10n.s_hide_pin) : (_isObscureNew ? l10n.s_show_puk : l10n.s_hide_puk), ), enabled: currentPin.length >= _minPinLen, ), textInputAction: TextInputAction.next, onChanged: (value) { setState(() { _newPin = value; }); }, onSubmitted: (_) { if (isValid) { _submit(); } }, ).init(), AppTextField( key: keys.confirmPinPukField, obscureText: _isObscureConfirm, maxLength: 8, autofillHints: const [AutofillHints.newPassword], decoration: AppInputDecoration( border: const OutlineInputBorder(), labelText: widget.target == ManageTarget.puk ? l10n.s_confirm_puk : l10n.s_confirm_pin, prefixIcon: const Icon(Symbols.password), suffixIcon: IconButton( icon: Icon(_isObscureConfirm ? Symbols.visibility : Symbols.visibility_off), onPressed: () { setState(() { _isObscureConfirm = !_isObscureConfirm; }); }, tooltip: widget.target == ManageTarget.pin ? (_isObscureConfirm ? l10n.s_show_pin : l10n.s_hide_pin) : (_isObscureConfirm ? l10n.s_show_puk : l10n.s_hide_puk), ), enabled: currentPin.length >= _minPinLen && _newPin.length >= 6, errorText: _newPin.length == _confirmPin.length && _newPin != _confirmPin ? (widget.target == ManageTarget.pin ? l10n.l_pin_mismatch : l10n.l_puk_mismatch) : null, helperText: '', // Prevents resizing when errorText shown ), textInputAction: TextInputAction.done, onChanged: (value) { setState(() { _confirmPin = value; }); }, onSubmitted: (_) { if (isValid) { _submit(); } }, ).init(), ] .map((e) => Padding( padding: const EdgeInsets.symmetric(vertical: 8.0), child: e, )) .toList(), ), ), ); } }