ente/lib/services/user_service.dart

import 'package:dio/dio.dart';
import 'package:flutter/material.dart';
import 'package:flutter/widgets.dart';
import 'package:logging/logging.dart';
import 'package:photos/core/configuration.dart';
import 'package:photos/core/network.dart';
import 'package:photos/db/public_keys_db.dart';
import 'package:photos/models/key_attributes.dart';
import 'package:photos/models/key_gen_result.dart';
import 'package:photos/models/public_key.dart';
import 'package:photos/models/set_keys_request.dart';
import 'package:photos/models/set_recovery_key_request.dart';
import 'package:photos/ui/ott_verification_page.dart';
import 'package:photos/ui/password_entry_page.dart';
import 'package:photos/ui/password_reentry_page.dart';
import 'package:photos/utils/dialog_util.dart';
import 'package:photos/utils/toast_util.dart';

class UserService {
  final _dio = Network.instance.getDio();
  final _logger = Logger("UserAuthenticator");
  final _config = Configuration.instance;

  UserService._privateConstructor();

  static final UserService instance = UserService._privateConstructor();

  Future<void> getOtt(BuildContext context, String email) async {
    final dialog = createProgressDialog(context, "please wait...");
    await dialog.show();
    await _dio.get(
      _config.getHttpEndpoint() + "/users/ott",
      queryParameters: {
        "email": email,
      },
    ).catchError((e) async {
      _logger.severe(e);
    }).then((response) async {
      await dialog.hide();
      if (response != null) {
        if (response.statusCode == 200) {
          Navigator.of(context).push(
            MaterialPageRoute(
              builder: (BuildContext context) {
                return OTTVerificationPage();
              },
            ),
          );
        } else if (response.statusCode == 403) {
          showErrorDialog(
            context,
            "please wait...",
            "we are currently not accepting new registrations. you have been added to the waitlist and we will let you know once we are ready for you.",
          );
        }
      } else {
        showGenericErrorDialog(context);
      }
    });
  }

  Future<String> getPublicKey(String email) async {
    try {
      final response = await _dio.get(
        _config.getHttpEndpoint() + "/users/public-key",
        queryParameters: {"email": email},
        options: Options(
          headers: {
            "X-Auth-Token": _config.getToken(),
          },
        ),
      );
      final publicKey = response.data["publicKey"];
      await PublicKeysDB.instance.setKey(PublicKey(email, publicKey));
      return publicKey;
    } on DioError catch (e) {
      _logger.info(e);
      return null;
    }
  }

  Future<void> getCredentials(BuildContext context, String ott) async {
    final dialog = createProgressDialog(context, "please wait...");
    await dialog.show();
    try {
      final response = await _dio.get(
        _config.getHttpEndpoint() + "/users/credentials",
        queryParameters: {
          "email": _config.getEmail(),
          "ott": ott,
        },
      );
      await dialog.hide();
      if (response != null && response.statusCode == 200) {
        await _saveConfiguration(response);
        showToast("email verification successful!");
        var page;
        if (Configuration.instance.getKeyAttributes() != null) {
          page = PasswordReentryPage();
        } else {
          page = PasswordEntryPage();
        }
        Navigator.of(context).pushAndRemoveUntil(
          MaterialPageRoute(
            builder: (BuildContext context) {
              return page;
            },
          ),
          (route) => route.isFirst,
        );
      } else {
        showErrorDialog(
            context, "oops", "verification failed, please try again");
      }
    } catch (e) {
      await dialog.hide();
      _logger.severe(e);
      showErrorDialog(context, "oops", "verification failed, please try again");
    }
  }

  Future<void> setAttributes(KeyGenResult result) async {
    try {
      final name = _config.getName();
      await _dio.put(
        _config.getHttpEndpoint() + "/users/attributes",
        data: {
          "name": name,
          "keyAttributes": result.keyAttributes.toMap(),
        },
        options: Options(
          headers: {
            "X-Auth-Token": _config.getToken(),
          },
        ),
      );
      await _config.setKey(result.privateKeyAttributes.key);
      await _config.setSecretKey(result.privateKeyAttributes.secretKey);
      await _config.setKeyAttributes(result.keyAttributes);
    } catch (e) {
      _logger.severe(e);
      throw e;
    }
  }

  Future<void> updateKeyAttributes(KeyAttributes keyAttributes) async {
    try {
      final setKeyRequest = SetKeysRequest(
        kekSalt: keyAttributes.kekSalt,
        encryptedKey: keyAttributes.encryptedKey,
        keyDecryptionNonce: keyAttributes.keyDecryptionNonce,
        memLimit: keyAttributes.memLimit,
        opsLimit: keyAttributes.opsLimit,
      );
      await _dio.put(
        _config.getHttpEndpoint() + "/users/keys",
        data: setKeyRequest.toMap(),
        options: Options(
          headers: {
            "X-Auth-Token": _config.getToken(),
          },
        ),
      );
      await _config.setKeyAttributes(keyAttributes);
    } catch (e) {
      _logger.severe(e);
      throw e;
    }
  }

  Future<void> setRecoveryKey(KeyAttributes keyAttributes) async {
    try {
      final setRecoveryKeyRequest = SetRecoveryKeyRequest(
        keyAttributes.masterKeyEncryptedWithRecoveryKey,
        keyAttributes.masterKeyDecryptionNonce,
        keyAttributes.recoveryKeyEncryptedWithMasterKey,
        keyAttributes.recoveryKeyDecryptionNonce,
      );
      await _dio.put(
        _config.getHttpEndpoint() + "/users/recovery-key",
        data: setRecoveryKeyRequest.toMap(),
        options: Options(
          headers: {
            "X-Auth-Token": _config.getToken(),
          },
        ),
      );
      await _config.setKeyAttributes(keyAttributes);
    } catch (e) {
      _logger.severe(e);
      throw e;
    }
  }

  Future<void> _saveConfiguration(Response response) async {
    await Configuration.instance.setUserID(response.data["id"]);
    await Configuration.instance.setToken(response.data["token"]);
    final keyAttributes = response.data["keyAttributes"];
    if (keyAttributes != null) {
      await Configuration.instance
          .setKeyAttributes(KeyAttributes.fromMap(keyAttributes));
    }
  }
}
Add endpoint discovery mechanism 2020-04-30 15:09:41 +00:00			`import 'package:dio/dio.dart';`
Update UI for the OTT sign in flow 2020-08-25 06:00:19 +00:00			`import 'package:flutter/material.dart';`
			`import 'package:flutter/widgets.dart';`
Add logging to file 2020-05-02 16:28:54 +00:00			`import 'package:logging/logging.dart';`
Bring in consistency to package imports 2020-05-04 20:08:20 +00:00			`import 'package:photos/core/configuration.dart';`
Log all network requests 2020-11-19 18:22:30 +00:00			`import 'package:photos/core/network.dart';`
Persist user keys after fetch 2020-10-17 18:16:30 +00:00			`import 'package:photos/db/public_keys_db.dart';`
Verify the correctness of the passphrase entered 2020-09-05 08:53:23 +00:00			`import 'package:photos/models/key_attributes.dart';`
Add a dialog to save recovery key 2021-03-29 15:09:12 +00:00			`import 'package:photos/models/key_gen_result.dart';`
Use a model to encapsulate public keys 2020-10-18 21:39:55 +00:00			`import 'package:photos/models/public_key.dart';`
Update set key request contract 2021-03-28 12:43:44 +00:00			`import 'package:photos/models/set_keys_request.dart';`
Generate new recovery keys for users who don't have any right now 2021-04-01 17:33:15 +00:00			`import 'package:photos/models/set_recovery_key_request.dart';`
Update UI for the OTT sign in flow 2020-08-25 06:00:19 +00:00			`import 'package:photos/ui/ott_verification_page.dart';`
Rename passphrase to password 2021-01-05 14:27:02 +00:00			`import 'package:photos/ui/password_entry_page.dart';`
			`import 'package:photos/ui/password_reentry_page.dart';`
Update UI for the OTT sign in flow 2020-08-25 06:00:19 +00:00			`import 'package:photos/utils/dialog_util.dart';`
Add screen to let a returning user enter her existing passphrase 2020-08-26 02:34:13 +00:00			`import 'package:photos/utils/toast_util.dart';`
Add endpoint discovery mechanism 2020-04-30 15:09:41 +00:00
Move services to a separate package 2020-10-03 17:56:18 +00:00			`class UserService {`
Log all network requests 2020-11-19 18:22:30 +00:00			`final _dio = Network.instance.getDio();`
Add logging to file 2020-05-02 16:28:54 +00:00			`final _logger = Logger("UserAuthenticator");`
Persist the generated keys only after successful authentication 2020-10-21 21:29:16 +00:00			`final _config = Configuration.instance;`
Add endpoint discovery mechanism 2020-04-30 15:09:41 +00:00
Move services to a separate package 2020-10-03 17:56:18 +00:00			`UserService._privateConstructor();`
Add endpoint discovery mechanism 2020-04-30 15:09:41 +00:00
Move services to a separate package 2020-10-03 17:56:18 +00:00			`static final UserService instance = UserService._privateConstructor();`
Add endpoint discovery mechanism 2020-04-30 15:09:41 +00:00
Update UI for the OTT sign in flow 2020-08-25 06:00:19 +00:00			`Future<void> getOtt(BuildContext context, String email) async {`
Use unthreatening lower case 2021-01-08 17:02:41 +00:00			`final dialog = createProgressDialog(context, "please wait...");`
Update UI for the OTT sign in flow 2020-08-25 06:00:19 +00:00			`await dialog.show();`
Use existing dio instance 2020-08-28 23:50:18 +00:00			`await _dio.get(`
Persist the generated keys only after successful authentication 2020-10-21 21:29:16 +00:00			`_config.getHttpEndpoint() + "/users/ott",`
Update UI for the OTT sign in flow 2020-08-25 06:00:19 +00:00			`queryParameters: {`
			`"email": email,`
			`},`
			`).catchError((e) async {`
			`_logger.severe(e);`
			`}).then((response) async {`
			`await dialog.hide();`
Show error dialog on registration blocked error 2020-11-17 06:18:46 +00:00			`if (response != null) {`
			`if (response.statusCode == 200) {`
			`Navigator.of(context).push(`
			`MaterialPageRoute(`
			`builder: (BuildContext context) {`
			`return OTTVerificationPage();`
			`},`
			`),`
			`);`
			`} else if (response.statusCode == 403) {`
			`showErrorDialog(`
			`context,`
Convert error dialogs to lowercase 2021-01-08 17:06:52 +00:00			`"please wait...",`
			`"we are currently not accepting new registrations. you have been added to the waitlist and we will let you know once we are ready for you.",`
Show error dialog on registration blocked error 2020-11-17 06:18:46 +00:00			`);`
			`}`
Update UI for the OTT sign in flow 2020-08-25 06:00:19 +00:00			`} else {`
			`showGenericErrorDialog(context);`
			`}`
			`});`
			`}`

Remove unnecessary param for fetching public key 2020-10-17 18:04:41 +00:00			`Future<String> getPublicKey(String email) async {`
Integrate API to fetch public key of a user 2020-10-09 21:45:19 +00:00			`try {`
			`final response = await _dio.get(`
Persist the generated keys only after successful authentication 2020-10-21 21:29:16 +00:00			`_config.getHttpEndpoint() + "/users/public-key",`
Remove unnecessary param for fetching public key 2020-10-17 18:04:41 +00:00			`queryParameters: {"email": email},`
Integrate API to fetch public key of a user 2020-10-09 21:45:19 +00:00			`options: Options(`
			`headers: {`
Persist the generated keys only after successful authentication 2020-10-21 21:29:16 +00:00			`"X-Auth-Token": _config.getToken(),`
Integrate API to fetch public key of a user 2020-10-09 21:45:19 +00:00			`},`
			`),`
			`);`
Use a model to encapsulate public keys 2020-10-18 21:39:55 +00:00			`final publicKey = response.data["publicKey"];`
			`await PublicKeysDB.instance.setKey(PublicKey(email, publicKey));`
Persist user keys after fetch 2020-10-17 18:16:30 +00:00			`return publicKey;`
Integrate API to fetch public key of a user 2020-10-09 21:45:19 +00:00			`} on DioError catch (e) {`
			`_logger.info(e);`
			`return null;`
			`}`
			`}`

Simplify EmailEntryPage 2020-08-25 23:02:43 +00:00			`Future<void> getCredentials(BuildContext context, String ott) async {`
Use unthreatening lower case 2021-01-08 17:02:41 +00:00			`final dialog = createProgressDialog(context, "please wait...");`
Update UI for the OTT sign in flow 2020-08-25 06:00:19 +00:00			`await dialog.show();`
Perform credential fetch within await block 2021-03-21 12:04:57 +00:00			`try {`
			`final response = await _dio.get(`
			`_config.getHttpEndpoint() + "/users/credentials",`
			`queryParameters: {`
			`"email": _config.getEmail(),`
			`"ott": ott,`
			`},`
			`);`
Update UI for the OTT sign in flow 2020-08-25 06:00:19 +00:00			`await dialog.hide();`
Move the logic of deeplink initialization to the home widget 2020-08-26 00:26:07 +00:00			`if (response != null && response.statusCode == 200) {`
Wait for the configuration to be persisted 2020-09-06 06:30:44 +00:00			`await _saveConfiguration(response);`
Move more content to lowercase 2021-01-08 17:11:32 +00:00			`showToast("email verification successful!");`
Add screen to let a returning user enter her existing passphrase 2020-08-26 02:34:13 +00:00			`var page;`
Generate and store public private keypairs on the server 2020-10-02 21:45:26 +00:00			`if (Configuration.instance.getKeyAttributes() != null) {`
Rename passphrase to password 2021-01-05 14:27:02 +00:00			`page = PasswordReentryPage();`
Let users set their passphrase on sign up 2020-08-26 01:43:10 +00:00			`} else {`
Rename passphrase to password 2021-01-05 14:27:02 +00:00			`page = PasswordEntryPage();`
Let users set their passphrase on sign up 2020-08-26 01:43:10 +00:00			`}`
Add screen to let a returning user enter her existing passphrase 2020-08-26 02:34:13 +00:00			`Navigator.of(context).pushAndRemoveUntil(`
			`MaterialPageRoute(`
			`builder: (BuildContext context) {`
			`return page;`
			`},`
			`),`
			`(route) => route.isFirst,`
			`);`
Update UI for the OTT sign in flow 2020-08-25 06:00:19 +00:00			`} else {`
			`showErrorDialog(`
Convert error dialogs to lowercase 2021-01-08 17:06:52 +00:00			`context, "oops", "verification failed, please try again");`
Update UI for the OTT sign in flow 2020-08-25 06:00:19 +00:00			`}`
Perform credential fetch within await block 2021-03-21 12:04:57 +00:00			`} catch (e) {`
			`await dialog.hide();`
			`_logger.severe(e);`
			`showErrorDialog(context, "oops", "verification failed, please try again");`
			`}`
Update UI for the OTT sign in flow 2020-08-25 06:00:19 +00:00			`}`

Add ability to recover data 2021-04-01 14:26:08 +00:00			`Future<void> setAttributes(KeyGenResult result) async {`
Add option to change password 2021-03-26 16:13:32 +00:00			`try {`
			`final name = _config.getName();`
Fix flow for key generation 2021-03-29 18:35:46 +00:00			`await _dio.put(`
Add option to change password 2021-03-26 16:13:32 +00:00			`_config.getHttpEndpoint() + "/users/attributes",`
			`data: {`
			`"name": name,`
			`"keyAttributes": result.keyAttributes.toMap(),`
Let users set their passphrase on sign up 2020-08-26 01:43:10 +00:00			`},`
Add option to change password 2021-03-26 16:13:32 +00:00			`options: Options(`
			`headers: {`
			`"X-Auth-Token": _config.getToken(),`
			`},`
			`),`
			`);`
Fix flow for key generation 2021-03-29 18:35:46 +00:00			`await _config.setKey(result.privateKeyAttributes.key);`
			`await _config.setSecretKey(result.privateKeyAttributes.secretKey);`
			`await _config.setKeyAttributes(result.keyAttributes);`
Add option to change password 2021-03-26 16:13:32 +00:00			`} catch (e) {`
			`_logger.severe(e);`
Fix flow for key generation 2021-03-29 18:35:46 +00:00			`throw e;`
Add option to change password 2021-03-26 16:13:32 +00:00			`}`
			`}`

Add ability to recover data 2021-04-01 14:26:08 +00:00			`Future<void> updateKeyAttributes(KeyAttributes keyAttributes) async {`
Add option to change password 2021-03-26 16:13:32 +00:00			`try {`
Update set key request contract 2021-03-28 12:43:44 +00:00			`final setKeyRequest = SetKeysRequest(`
			`kekSalt: keyAttributes.kekSalt,`
			`encryptedKey: keyAttributes.encryptedKey,`
			`keyDecryptionNonce: keyAttributes.keyDecryptionNonce,`
			`memLimit: keyAttributes.memLimit,`
			`opsLimit: keyAttributes.opsLimit,`
			`);`
Add ability to recover data 2021-04-01 14:26:08 +00:00			`await _dio.put(`
Update set key request contract 2021-03-28 12:43:44 +00:00			`_config.getHttpEndpoint() + "/users/keys",`
			`data: setKeyRequest.toMap(),`
Add option to change password 2021-03-26 16:13:32 +00:00			`options: Options(`
			`headers: {`
			`"X-Auth-Token": _config.getToken(),`
			`},`
			`),`
			`);`
Add ability to recover data 2021-04-01 14:26:08 +00:00			`await _config.setKeyAttributes(keyAttributes);`
Add option to change password 2021-03-26 16:13:32 +00:00			`} catch (e) {`
			`_logger.severe(e);`
Add ability to recover data 2021-04-01 14:26:08 +00:00			`throw e;`
Add option to change password 2021-03-26 16:13:32 +00:00			`}`
Let users set their passphrase on sign up 2020-08-26 01:43:10 +00:00			`}`

Generate new recovery keys for users who don't have any right now 2021-04-01 17:33:15 +00:00			`Future<void> setRecoveryKey(KeyAttributes keyAttributes) async {`
			`try {`
			`final setRecoveryKeyRequest = SetRecoveryKeyRequest(`
			`keyAttributes.masterKeyEncryptedWithRecoveryKey,`
			`keyAttributes.masterKeyDecryptionNonce,`
			`keyAttributes.recoveryKeyEncryptedWithMasterKey,`
			`keyAttributes.recoveryKeyDecryptionNonce,`
			`);`
			`await _dio.put(`
			`_config.getHttpEndpoint() + "/users/recovery-key",`
			`data: setRecoveryKeyRequest.toMap(),`
			`options: Options(`
			`headers: {`
			`"X-Auth-Token": _config.getToken(),`
			`},`
			`),`
			`);`
			`await _config.setKeyAttributes(keyAttributes);`
			`} catch (e) {`
			`_logger.severe(e);`
			`throw e;`
			`}`
			`}`

Wait for the configuration to be persisted 2020-09-06 06:30:44 +00:00			`Future<void> _saveConfiguration(Response response) async {`
			`await Configuration.instance.setUserID(response.data["id"]);`
			`await Configuration.instance.setToken(response.data["token"]);`
Set the key attributes on server post login 2020-09-05 09:38:03 +00:00			`final keyAttributes = response.data["keyAttributes"];`
Verify the correctness of the passphrase entered 2020-09-05 08:53:23 +00:00			`if (keyAttributes != null) {`
Wait for the configuration to be persisted 2020-09-06 06:30:44 +00:00			`await Configuration.instance`
Verify the correctness of the passphrase entered 2020-09-05 08:53:23 +00:00			`.setKeyAttributes(KeyAttributes.fromMap(keyAttributes));`
Pull the key from server on sign in 2020-08-15 01:22:14 +00:00			`}`
Ensure that the userID is saved after both login and signup events 2020-07-31 22:58:30 +00:00			`}`
Add endpoint discovery mechanism 2020-04-30 15:09:41 +00:00			`}`