Specify clearOn options for platform services (#8584)

* Use UserKeys in biometric state * Remove global clear todo. Answer is never * User UserKeys in crypto state * Clear userkey on both lock and logout via User Key Definitions * Use UserKeyDefinitions in environment service * Rely on userKeyDefinition to clear org keys * Rely on userKeyDefinition to clear provider keys * Rely on userKeyDefinition to clear user keys * Rely on userKeyDefinitions to clear user asym key pair
2025-12-19 01:33:33 +00:00 · 2024-04-09 10:17:00 -05:00
parent aefea43fff
commit c02723d6a6
15 changed files with 169 additions and 365 deletions
--- a/libs/common/src/platform/services/default-environment.service.ts
+++ b/libs/common/src/platform/services/default-environment.service.ts
@@ -18,6 +18,7 @@ import {
  GlobalState,
  KeyDefinition,
  StateProvider,
+  UserKeyDefinition,
 } from "../state";

 export class EnvironmentUrls {
@@ -40,7 +41,7 @@ class EnvironmentState {
  }
 }

-export const ENVIRONMENT_KEY = new KeyDefinition<EnvironmentState>(
+export const GLOBAL_ENVIRONMENT_KEY = new KeyDefinition<EnvironmentState>(
  ENVIRONMENT_DISK,
  "environment",
  {
@@ -48,9 +49,31 @@ export const ENVIRONMENT_KEY = new KeyDefinition<EnvironmentState>(
  },
 );

-export const CLOUD_REGION_KEY = new KeyDefinition<CloudRegion>(ENVIRONMENT_MEMORY, "cloudRegion", {
-  deserializer: (b) => b,
-});
+export const USER_ENVIRONMENT_KEY = new UserKeyDefinition<EnvironmentState>(
+  ENVIRONMENT_DISK,
+  "environment",
+  {
+    deserializer: EnvironmentState.fromJSON,
+    clearOn: ["logout"],
+  },
+);
+
+export const GLOBAL_CLOUD_REGION_KEY = new KeyDefinition<CloudRegion>(
+  ENVIRONMENT_MEMORY,
+  "cloudRegion",
+  {
+    deserializer: (b) => b,
+  },
+);
+
+export const USER_CLOUD_REGION_KEY = new UserKeyDefinition<CloudRegion>(
+  ENVIRONMENT_MEMORY,
+  "cloudRegion",
+  {
+    deserializer: (b) => b,
+    clearOn: ["logout"],
+  },
+);

 /**
 * The production regions available for selection.
@@ -114,8 +137,8 @@ export class DefaultEnvironmentService implements EnvironmentService {
    private stateProvider: StateProvider,
    private accountService: AccountService,
  ) {
-    this.globalState = this.stateProvider.getGlobal(ENVIRONMENT_KEY);
-    this.globalCloudRegionState = this.stateProvider.getGlobal(CLOUD_REGION_KEY);
+    this.globalState = this.stateProvider.getGlobal(GLOBAL_ENVIRONMENT_KEY);
+    this.globalCloudRegionState = this.stateProvider.getGlobal(GLOBAL_CLOUD_REGION_KEY);

    const account$ = this.activeAccountId$.pipe(
      // Use == here to not trigger on undefined -> null transition
@@ -125,8 +148,8 @@ export class DefaultEnvironmentService implements EnvironmentService {
    this.environment$ = account$.pipe(
      switchMap((userId) => {
        const t = userId
-          ? this.stateProvider.getUser(userId, ENVIRONMENT_KEY).state$
-          : this.stateProvider.getGlobal(ENVIRONMENT_KEY).state$;
+          ? this.stateProvider.getUser(userId, USER_ENVIRONMENT_KEY).state$
+          : this.stateProvider.getGlobal(GLOBAL_ENVIRONMENT_KEY).state$;
        return t;
      }),
      map((state) => {
@@ -136,8 +159,8 @@ export class DefaultEnvironmentService implements EnvironmentService {
    this.cloudWebVaultUrl$ = account$.pipe(
      switchMap((userId) => {
        const t = userId
-          ? this.stateProvider.getUser(userId, CLOUD_REGION_KEY).state$
-          : this.stateProvider.getGlobal(CLOUD_REGION_KEY).state$;
+          ? this.stateProvider.getUser(userId, USER_CLOUD_REGION_KEY).state$
+          : this.stateProvider.getGlobal(GLOBAL_CLOUD_REGION_KEY).state$;
        return t;
      }),
      map((region) => {
@@ -242,7 +265,7 @@ export class DefaultEnvironmentService implements EnvironmentService {
    if (userId == null) {
      await this.globalCloudRegionState.update(() => region);
    } else {
-      await this.stateProvider.getUser(userId, CLOUD_REGION_KEY).update(() => region);
+      await this.stateProvider.getUser(userId, USER_CLOUD_REGION_KEY).update(() => region);
    }
  }

@@ -261,13 +284,13 @@ export class DefaultEnvironmentService implements EnvironmentService {
    return activeUserId == null
      ? await firstValueFrom(this.globalState.state$)
      : await firstValueFrom(
-          this.stateProvider.getUser(userId ?? activeUserId, ENVIRONMENT_KEY).state$,
+          this.stateProvider.getUser(userId ?? activeUserId, USER_ENVIRONMENT_KEY).state$,
        );
  }

  async seedUserEnvironment(userId: UserId) {
    const global = await firstValueFrom(this.globalState.state$);
-    await this.stateProvider.getUser(userId, ENVIRONMENT_KEY).update(() => global);
+    await this.stateProvider.getUser(userId, USER_ENVIRONMENT_KEY).update(() => global);
  }
 }