Authenticate with secure storage service (#402)

* Split secure key into use case Allows us to push authentication for key access as late as possible. * Do not reload if biometric locked * Linter fixes * Fix key upgrade scenario * Fix boolean value message parsing * Handle systems which don't support biometrics * Do not fail key retrieval on secret upgrade * Ensure old key is removed regardless of upgrade success * Log errors
2026-01-05 18:13:26 +00:00 · 2021-06-09 15:53:54 -05:00
parent d7682cde3b
commit 5ba1416679
15 changed files with 188 additions and 73 deletions
--- a/common/src/services/system.service.ts
+++ b/common/src/services/system.service.ts
@@ -19,7 +19,9 @@ export class SystemService implements SystemServiceAbstraction {
    }

    startProcessReload(): void {
-        if (this.vaultTimeoutService.pinProtectedKey != null || this.reloadInterval != null) {
+        if (this.vaultTimeoutService.pinProtectedKey != null ||
+            this.vaultTimeoutService.biometricLocked ||
+            this.reloadInterval != null) {
            return;
        }
        this.cancelProcessReload();