mirror of
https://github.com/bitwarden/browser
synced 2025-12-18 17:23:37 +00:00
124 lines
4.3 KiB
TypeScript
124 lines
4.3 KiB
TypeScript
import { firstValueFrom, map } from "rxjs";
|
|
|
|
import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
|
|
import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
|
|
import { AuthenticationStatus } from "@bitwarden/common/auth/enums/authentication-status";
|
|
import {
|
|
Fido2UserInterfaceService as Fido2UserInterfaceServiceAbstraction,
|
|
Fido2UserInterfaceSession,
|
|
NewCredentialParams,
|
|
PickCredentialParams,
|
|
} from "@bitwarden/common/platform/abstractions/fido2/fido2-user-interface.service.abstraction";
|
|
import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
|
|
import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
|
|
import { CipherRepromptType, CipherType, SecureNoteType } from "@bitwarden/common/vault/enums";
|
|
import { CardView } from "@bitwarden/common/vault/models/view/card.view";
|
|
import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
|
|
import { IdentityView } from "@bitwarden/common/vault/models/view/identity.view";
|
|
import { LoginUriView } from "@bitwarden/common/vault/models/view/login-uri.view";
|
|
import { LoginView } from "@bitwarden/common/vault/models/view/login.view";
|
|
import { SecureNoteView } from "@bitwarden/common/vault/models/view/secure-note.view";
|
|
|
|
export class DesktopFido2UserInterfaceService
|
|
implements Fido2UserInterfaceServiceAbstraction<void>
|
|
{
|
|
constructor(
|
|
private authService: AuthService,
|
|
private cipherService: CipherService,
|
|
private accountService: AccountService,
|
|
private logService: LogService,
|
|
) {}
|
|
|
|
async newSession(
|
|
fallbackSupported: boolean,
|
|
_tab: void,
|
|
abortController?: AbortController,
|
|
): Promise<DesktopFido2UserInterfaceSession> {
|
|
this.logService.warning("newSession", fallbackSupported, abortController);
|
|
return new DesktopFido2UserInterfaceSession(
|
|
this.authService,
|
|
this.cipherService,
|
|
this.accountService,
|
|
this.logService,
|
|
);
|
|
}
|
|
}
|
|
|
|
export class DesktopFido2UserInterfaceSession implements Fido2UserInterfaceSession {
|
|
constructor(
|
|
private authService: AuthService,
|
|
private cipherService: CipherService,
|
|
private accountService: AccountService,
|
|
private logService: LogService,
|
|
) {}
|
|
|
|
async pickCredential({
|
|
cipherIds,
|
|
userVerification,
|
|
}: PickCredentialParams): Promise<{ cipherId: string; userVerified: boolean }> {
|
|
this.logService.warning("pickCredential", cipherIds, userVerification);
|
|
|
|
return { cipherId: cipherIds[0], userVerified: userVerification };
|
|
}
|
|
|
|
async confirmNewCredential({
|
|
credentialName,
|
|
userName,
|
|
userVerification,
|
|
rpId,
|
|
}: NewCredentialParams): Promise<{ cipherId: string; userVerified: boolean }> {
|
|
this.logService.warning(
|
|
"confirmNewCredential",
|
|
credentialName,
|
|
userName,
|
|
userVerification,
|
|
rpId,
|
|
);
|
|
|
|
// Store the passkey on a new cipher to avoid replacing something important
|
|
const cipher = new CipherView();
|
|
cipher.name = credentialName;
|
|
|
|
cipher.type = CipherType.Login;
|
|
cipher.login = new LoginView();
|
|
cipher.login.username = userName;
|
|
cipher.login.uris = [new LoginUriView()];
|
|
cipher.login.uris[0].uri = "https://" + rpId;
|
|
cipher.card = new CardView();
|
|
cipher.identity = new IdentityView();
|
|
cipher.secureNote = new SecureNoteView();
|
|
cipher.secureNote.type = SecureNoteType.Generic;
|
|
cipher.reprompt = CipherRepromptType.None;
|
|
|
|
const activeUserId = await firstValueFrom(
|
|
this.accountService.activeAccount$.pipe(map((a) => a?.id)),
|
|
);
|
|
|
|
const encCipher = await this.cipherService.encrypt(cipher, activeUserId);
|
|
const createdCipher = await this.cipherService.createWithServer(encCipher);
|
|
|
|
return { cipherId: createdCipher.id, userVerified: userVerification };
|
|
}
|
|
|
|
async informExcludedCredential(existingCipherIds: string[]): Promise<void> {
|
|
this.logService.warning("informExcludedCredential", existingCipherIds);
|
|
}
|
|
|
|
async ensureUnlockedVault(): Promise<void> {
|
|
this.logService.warning("ensureUnlockedVault");
|
|
|
|
const status = await firstValueFrom(this.authService.activeAccountStatus$);
|
|
if (status !== AuthenticationStatus.Unlocked) {
|
|
throw new Error("Vault is not unlocked");
|
|
}
|
|
}
|
|
|
|
async informCredentialNotFound(): Promise<void> {
|
|
this.logService.warning("informCredentialNotFound");
|
|
}
|
|
|
|
async close() {
|
|
this.logService.warning("close");
|
|
}
|
|
}
|