move extension launchSsoBrowserWindow() to extension service

2025-12-17 08:43:33 +00:00 · 2024-09-13 17:21:15 -07:00
parent b7996183bf
commit e076e94c08
6 changed files with 88 additions and 54 deletions
--- a/apps/browser/src/auth/popup/login/extension-login.service.ts
+++ b/apps/browser/src/auth/popup/login/extension-login.service.ts
@@ -1,9 +1,73 @@
+import { inject } from "@angular/core";
+import { firstValueFrom } from "rxjs";
+
 import { DefaultLoginService, LoginService } from "@bitwarden/auth/angular";
+import { SsoLoginServiceAbstraction } from "@bitwarden/common/auth/abstractions/sso-login.service.abstraction";
+import { CryptoFunctionService } from "@bitwarden/common/platform/abstractions/crypto-function.service";
+import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
+import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
+import { Utils } from "@bitwarden/common/platform/misc/utils";
+import { PasswordGenerationServiceAbstraction } from "@bitwarden/generator-legacy";

 import { flagEnabled } from "../../../platform/flags"; // TODO-rr-bw: do I need a client specific `flagEnabled()` fn?

 export class ExtensionLoginService extends DefaultLoginService implements LoginService {
+  ssoLoginService = inject(SsoLoginServiceAbstraction);
+  passwordGenerationService = inject(PasswordGenerationServiceAbstraction);
+  cryptoFunctionService = inject(CryptoFunctionService);
+  environmentService = inject(EnvironmentService);
+  platformUtilsService = inject(PlatformUtilsService);
+
  getShowPasswordlessFlag(): boolean {
    return flagEnabled("showPasswordless");
  }
+
+  async launchSsoBrowserWindow(email: string): Promise<void | null> {
+    // Save off email for SSO
+    await this.ssoLoginService.setSsoEmail(email);
+
+    // Generate necessary sso params
+    const passwordOptions: any = {
+      type: "password",
+      length: 64,
+      uppercase: true,
+      lowercase: true,
+      numbers: true,
+      special: false,
+    };
+
+    const state =
+      (await this.passwordGenerationService.generatePassword(passwordOptions)) +
+      ":clientId=browser";
+    const codeVerifier = await this.passwordGenerationService.generatePassword(passwordOptions);
+    const codeVerifierHash = await this.cryptoFunctionService.hash(codeVerifier, "sha256");
+    const codeChallenge = Utils.fromBufferToUrlB64(codeVerifierHash);
+
+    await this.ssoLoginService.setCodeVerifier(codeVerifier);
+    await this.ssoLoginService.setSsoState(state);
+
+    const env = await firstValueFrom(this.environmentService.environment$);
+
+    let url = env.getWebVaultUrl();
+
+    if (url == null) {
+      url = "https://vault.bitwarden.com";
+    }
+
+    const redirectUri = url + "/sso-connector.html";
+
+    // Launch browser
+    this.platformUtilsService.launchUri(
+      url +
+        "/#/sso?clientId=browser" +
+        "&redirectUri=" +
+        encodeURIComponent(redirectUri) +
+        "&state=" +
+        state +
+        "&codeChallenge=" +
+        codeChallenge +
+        "&email=" +
+        encodeURIComponent(email),
+    );
+  }
 }
--- a/apps/browser/src/popup/services/services.module.ts
+++ b/apps/browser/src/popup/services/services.module.ts
@@ -16,7 +16,7 @@ import {
  CLIENT_TYPE,
 } from "@bitwarden/angular/services/injection-tokens";
 import { JslibServicesModule } from "@bitwarden/angular/services/jslib-services.module";
-import { AnonLayoutWrapperDataService } from "@bitwarden/auth/angular";
+import { AnonLayoutWrapperDataService, LoginService } from "@bitwarden/auth/angular";
 import { PinServiceAbstraction } from "@bitwarden/auth/common";
 import { EventCollectionService as EventCollectionServiceAbstraction } from "@bitwarden/common/abstractions/event/event-collection.service";
 import { NotificationsService } from "@bitwarden/common/abstractions/notifications.service";
@@ -92,6 +92,7 @@ import { DialogService, ToastService } from "@bitwarden/components";
 import { PasswordRepromptService } from "@bitwarden/vault";

 import { ExtensionAnonLayoutWrapperDataService } from "../../auth/popup/extension-anon-layout-wrapper/extension-anon-layout-wrapper-data.service";
+import { ExtensionLoginService } from "../../auth/popup/login/extension-login.service";
 import { AutofillService as AutofillServiceAbstraction } from "../../autofill/services/abstractions/autofill.service";
 import AutofillService from "../../autofill/services/autofill.service";
 import MainBackground from "../../background/main.background";
@@ -560,6 +561,11 @@ const safeProviders: SafeProvider[] = [
    useClass: ExtensionAnonLayoutWrapperDataService,
    deps: [],
  }),
+  safeProvider({
+    provide: LoginService,
+    useClass: ExtensionLoginService,
+    deps: [I18nServiceAbstraction, ToastService],
+  }),
 ];

@NgModule({