Include missing migration (#7840)

This migration missing from #7825 does not suggest missing data since no client has been released in the interim.
2025-12-17 16:53:34 +00:00 · 2024-02-14 14:25:08 -05:00
parent e5d4d4ad00
commit 7a6d7b3a68
3 changed files with 183 additions and 2 deletions
--- a/libs/common/src/state-migrations/migrations/19-migrate-require-password-on-start.spec.ts
+++ b/libs/common/src/state-migrations/migrations/19-migrate-require-password-on-start.spec.ts
@@ -0,0 +1,123 @@
+import { MockProxy, any } from "jest-mock-extended";
+
+import { MigrationHelper } from "../migration-helper";
+import { mockMigrationHelper } from "../migration-helper.spec";
+
+import {
+  REQUIRE_PASSWORD_ON_START,
+  RequirePasswordOnStartMigrator,
+} from "./19-migrate-require-password-on-start";
+
+function exampleJSON() {
+  return {
+    global: {
+      otherStuff: "otherStuff1",
+    },
+    authenticatedAccounts: ["user-1", "user-2", "user-3"],
+    "user-1": {
+      settings: {
+        requirePasswordOnStart: true,
+        otherStuff: "overStuff2",
+      },
+      otherStuff: "otherStuff3",
+    },
+    "user-2": {
+      keys: {
+        otherStuff: "otherStuff4",
+      },
+      otherStuff: "otherStuff5",
+    },
+  };
+}
+
+function rollbackJSON() {
+  return {
+    "user_user-1_biometricSettings_requirePasswordOnStart": true,
+    global: {
+      otherStuff: "otherStuff1",
+    },
+    authenticatedAccounts: ["user-1", "user-2", "user-3"],
+    "user-1": {
+      settings: {
+        otherStuff: "overStuff2",
+      },
+      otherStuff: "otherStuff3",
+    },
+    "user-2": {
+      keys: {
+        otherStuff: "otherStuff4",
+      },
+      otherStuff: "otherStuff5",
+    },
+  };
+}
+
+describe("DesktopBiometricState migrator", () => {
+  let helper: MockProxy<MigrationHelper>;
+  let sut: RequirePasswordOnStartMigrator;
+
+  describe("migrate", () => {
+    beforeEach(() => {
+      helper = mockMigrationHelper(exampleJSON(), 18);
+      sut = new RequirePasswordOnStartMigrator(18, 19);
+    });
+
+    it("should remove biometricEncryptionClientKeyHalf from all accounts", async () => {
+      await sut.migrate(helper);
+      expect(helper.set).toHaveBeenCalledTimes(1);
+      expect(helper.set).toHaveBeenCalledWith("user-1", {
+        settings: {
+          otherStuff: "overStuff2",
+        },
+        otherStuff: "otherStuff3",
+      });
+    });
+
+    it("should set biometricEncryptionClientKeyHalf value for account that have it", async () => {
+      await sut.migrate(helper);
+
+      expect(helper.setToUser).toHaveBeenCalledWith("user-1", REQUIRE_PASSWORD_ON_START, true);
+    });
+
+    it("should not call extra setToUser", async () => {
+      await sut.migrate(helper);
+
+      expect(helper.setToUser).toHaveBeenCalledTimes(1);
+    });
+  });
+
+  describe("rollback", () => {
+    beforeEach(() => {
+      helper = mockMigrationHelper(rollbackJSON(), 19);
+      sut = new RequirePasswordOnStartMigrator(18, 19);
+    });
+
+    it("should null out new values", async () => {
+      await sut.rollback(helper);
+
+      expect(helper.setToUser).toHaveBeenCalledWith("user-1", REQUIRE_PASSWORD_ON_START, null);
+    });
+
+    it("should add explicit value back to accounts", async () => {
+      await sut.rollback(helper);
+
+      expect(helper.set).toHaveBeenCalledTimes(1);
+      expect(helper.set).toHaveBeenCalledWith("user-1", {
+        settings: {
+          requirePasswordOnStart: true,
+          otherStuff: "overStuff2",
+        },
+        otherStuff: "otherStuff3",
+      });
+    });
+
+    it.each(["user-2", "user-3"])(
+      "should not try to restore values to missing accounts",
+      async (userId) => {
+        await sut.rollback(helper);
+
+        expect(helper.set).not.toHaveBeenCalledWith(userId, any());
+      },
+    );
+  });
+});
--- a/libs/common/src/state-migrations/migrations/19-migrate-require-password-on-start.ts
+++ b/libs/common/src/state-migrations/migrations/19-migrate-require-password-on-start.ts
@@ -0,0 +1,56 @@
+import { KeyDefinitionLike, MigrationHelper } from "../migration-helper";
+import { Migrator } from "../migrator";
+
+type ExpectedAccountType = {
+  settings?: {
+    requirePasswordOnStart?: boolean;
+  };
+};
+
+// Biometric text, no auto prompt text, fingerprint validated, and prompt cancelled are refreshed on every app start, so we don't need to migrate them
+export const REQUIRE_PASSWORD_ON_START: KeyDefinitionLike = {
+  key: "requirePasswordOnStart",
+  stateDefinition: { name: "biometricSettings" },
+};
+
+export class RequirePasswordOnStartMigrator extends Migrator<18, 19> {
+  async migrate(helper: MigrationHelper): Promise<void> {
+    const legacyAccounts = await helper.getAccounts<ExpectedAccountType>();
+
+    await Promise.all(
+      legacyAccounts.map(async ({ userId, account }) => {
+        // Move account data
+        if (account?.settings?.requirePasswordOnStart != null) {
+          await helper.setToUser(
+            userId,
+            REQUIRE_PASSWORD_ON_START,
+            account.settings.requirePasswordOnStart,
+          );
+
+          // Delete old account data
+          delete account.settings.requirePasswordOnStart;
+          await helper.set(userId, account);
+        }
+      }),
+    );
+  }
+
+  async rollback(helper: MigrationHelper): Promise<void> {
+    async function rollbackUser(userId: string, account: ExpectedAccountType) {
+      const requirePassword = await helper.getFromUser<boolean>(userId, REQUIRE_PASSWORD_ON_START);
+
+      if (requirePassword) {
+        account ??= {};
+        account.settings ??= {};
+
+        account.settings.requirePasswordOnStart = requirePassword;
+        await helper.setToUser(userId, REQUIRE_PASSWORD_ON_START, null);
+        await helper.set(userId, account);
+      }
+    }
+
+    const accounts = await helper.getAccounts<ExpectedAccountType>();
+
+    await Promise.all(accounts.map(({ userId, account }) => rollbackUser(userId, account)));
+  }
+}