mirror of
https://github.com/bitwarden/mobile
synced 2026-01-01 16:13:15 +00:00
181 lines
6.4 KiB
C#
181 lines
6.4 KiB
C#
using Bit.Core.Abstractions;
|
|
using Bit.Core.Models.Domain;
|
|
using System;
|
|
using System.Threading.Tasks;
|
|
|
|
namespace Bit.Core.Services
|
|
{
|
|
public class VaultTimeoutService : IVaultTimeoutService
|
|
{
|
|
private readonly ICryptoService _cryptoService;
|
|
private readonly IUserService _userService;
|
|
private readonly IPlatformUtilsService _platformUtilsService;
|
|
private readonly IStorageService _storageService;
|
|
private readonly IFolderService _folderService;
|
|
private readonly ICipherService _cipherService;
|
|
private readonly ICollectionService _collectionService;
|
|
private readonly ISearchService _searchService;
|
|
private readonly IMessagingService _messagingService;
|
|
private readonly ITokenService _tokenService;
|
|
private readonly Action<bool> _lockedCallback;
|
|
private readonly Func<bool, Task> _loggedOutCallback;
|
|
|
|
public VaultTimeoutService(
|
|
ICryptoService cryptoService,
|
|
IUserService userService,
|
|
IPlatformUtilsService platformUtilsService,
|
|
IStorageService storageService,
|
|
IFolderService folderService,
|
|
ICipherService cipherService,
|
|
ICollectionService collectionService,
|
|
ISearchService searchService,
|
|
IMessagingService messagingService,
|
|
ITokenService tokenService,
|
|
Action<bool> lockedCallback,
|
|
Func<bool, Task> loggedOutCallback)
|
|
{
|
|
_cryptoService = cryptoService;
|
|
_userService = userService;
|
|
_platformUtilsService = platformUtilsService;
|
|
_storageService = storageService;
|
|
_folderService = folderService;
|
|
_cipherService = cipherService;
|
|
_collectionService = collectionService;
|
|
_searchService = searchService;
|
|
_messagingService = messagingService;
|
|
_tokenService = tokenService;
|
|
_lockedCallback = lockedCallback;
|
|
_loggedOutCallback = loggedOutCallback;
|
|
}
|
|
|
|
public CipherString PinProtectedKey { get; set; } = null;
|
|
public bool BiometricLocked { get; set; } = true;
|
|
|
|
public async Task<bool> IsLockedAsync()
|
|
{
|
|
var hasKey = await _cryptoService.HasKeyAsync();
|
|
if (hasKey)
|
|
{
|
|
var biometricSet = await IsBiometricLockSetAsync();
|
|
if (biometricSet && BiometricLocked)
|
|
{
|
|
return true;
|
|
}
|
|
}
|
|
return !hasKey;
|
|
}
|
|
|
|
public async Task CheckVaultTimeoutAsync()
|
|
{
|
|
if (_platformUtilsService.IsViewOpen())
|
|
{
|
|
return;
|
|
}
|
|
var authed = await _userService.IsAuthenticatedAsync();
|
|
if (!authed)
|
|
{
|
|
return;
|
|
}
|
|
if (await IsLockedAsync())
|
|
{
|
|
return;
|
|
}
|
|
// This only returns null
|
|
var vaultTimeout = _platformUtilsService.LockTimeout();
|
|
if (vaultTimeout == null)
|
|
{
|
|
vaultTimeout = await _storageService.GetAsync<int?>(Constants.VaultTimeoutKey);
|
|
}
|
|
if (vaultTimeout.GetValueOrDefault(-1) < 0)
|
|
{
|
|
return;
|
|
}
|
|
var lastActive = await _storageService.GetAsync<DateTime?>(Constants.LastActiveKey);
|
|
if (lastActive == null)
|
|
{
|
|
return;
|
|
}
|
|
var diff = DateTime.UtcNow - lastActive.Value;
|
|
if (diff.TotalSeconds >= vaultTimeout.Value)
|
|
{
|
|
// Pivot based on saved action
|
|
var action = await _storageService.GetAsync<string>(Constants.VaultTimeoutActionKey);
|
|
if (action == "logOut")
|
|
{
|
|
await LogOutAsync();
|
|
}
|
|
else
|
|
{
|
|
await LockAsync(true);
|
|
}
|
|
}
|
|
}
|
|
|
|
public async Task LockAsync(bool allowSoftLock = false, bool userInitiated = false)
|
|
{
|
|
var authed = await _userService.IsAuthenticatedAsync();
|
|
if (!authed)
|
|
{
|
|
return;
|
|
}
|
|
if (allowSoftLock)
|
|
{
|
|
BiometricLocked = await IsBiometricLockSetAsync();
|
|
if (BiometricLocked)
|
|
{
|
|
_messagingService.Send("locked", userInitiated);
|
|
_lockedCallback?.Invoke(userInitiated);
|
|
return;
|
|
}
|
|
}
|
|
await Task.WhenAll(
|
|
_cryptoService.ClearKeyAsync(),
|
|
_cryptoService.ClearOrgKeysAsync(true),
|
|
_cryptoService.ClearKeyPairAsync(true),
|
|
_cryptoService.ClearEncKeyAsync(true));
|
|
|
|
_folderService.ClearCache();
|
|
_cipherService.ClearCache();
|
|
_collectionService.ClearCache();
|
|
_searchService.ClearIndex();
|
|
_messagingService.Send("locked", userInitiated);
|
|
_lockedCallback?.Invoke(userInitiated);
|
|
}
|
|
|
|
public async Task LogOutAsync()
|
|
{
|
|
if(_loggedOutCallback != null)
|
|
{
|
|
await _loggedOutCallback.Invoke(false);
|
|
}
|
|
}
|
|
|
|
public async Task SetVaultTimeoutOptionsAsync(int? timeout, string action)
|
|
{
|
|
await _storageService.SaveAsync(Constants.VaultTimeoutKey, timeout);
|
|
await _storageService.SaveAsync(Constants.VaultTimeoutActionKey, action);
|
|
await _cryptoService.ToggleKeyAsync();
|
|
await _tokenService.ToggleTokensAsync();
|
|
}
|
|
|
|
public async Task<Tuple<bool, bool>> IsPinLockSetAsync()
|
|
{
|
|
var protectedPin = await _storageService.GetAsync<string>(Constants.ProtectedPin);
|
|
var pinProtectedKey = await _storageService.GetAsync<string>(Constants.PinProtectedKey);
|
|
return new Tuple<bool, bool>(protectedPin != null, pinProtectedKey != null);
|
|
}
|
|
|
|
public async Task<bool> IsBiometricLockSetAsync()
|
|
{
|
|
var biometricLock = await _storageService.GetAsync<bool?>(Constants.BiometricUnlockKey);
|
|
return biometricLock.GetValueOrDefault();
|
|
}
|
|
|
|
public async Task ClearAsync()
|
|
{
|
|
PinProtectedKey = null;
|
|
await _storageService.RemoveAsync(Constants.ProtectedPin);
|
|
}
|
|
}
|
|
}
|