wallet-core/src/wxBackend.ts

655 lines
19 KiB
TypeScript
Raw Normal View History

2016-01-05 14:20:13 +01:00
/*
This file is part of TALER
(C) 2016 GNUnet e.V.
TALER is free software; you can redistribute it and/or modify it under the
terms of the GNU General Public License as published by the Free Software
Foundation; either version 3, or (at your option) any later version.
TALER is distributed in the hope that it will be useful, but WITHOUT ANY
WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR
A PARTICULAR PURPOSE. See the GNU General Public License for more details.
You should have received a copy of the GNU General Public License along with
2016-07-07 17:59:29 +02:00
TALER; see the file COPYING. If not, see <http://www.gnu.org/licenses/>
2016-01-05 14:20:13 +01:00
*/
2016-09-06 14:39:45 +02:00
import {
Wallet,
2016-11-15 15:07:17 +01:00
OfferRecord,
2016-09-06 14:39:45 +02:00
Badge,
ConfirmReserveRequest,
CreateReserveRequest
} from "./wallet";
2016-10-12 02:55:53 +02:00
import { BrowserHttpLib } from "./http";
import { Checkable } from "./checkable";
import { AmountJson } from "./types";
2016-02-18 23:41:29 +01:00
import Port = chrome.runtime.Port;
2016-10-12 02:55:53 +02:00
import { Notifier } from "./types";
import { Contract } from "./types";
import MessageSender = chrome.runtime.MessageSender;
2016-10-12 02:55:53 +02:00
import { ChromeBadge } from "./chromeBadge";
2016-11-18 04:09:04 +01:00
import * as logging from "./logging";
2016-02-09 21:56:06 +01:00
"use strict";
2016-01-11 02:48:19 +01:00
2016-11-15 15:07:17 +01:00
const DB_NAME = "taler";
2016-11-16 23:54:22 +01:00
const DB_VERSION = 12;
2016-11-15 15:07:17 +01:00
import {Stores} from "./wallet";
import {Store, Index} from "./query";
2016-01-05 14:20:13 +01:00
/**
* Messaging for the WebExtensions wallet. Should contain
* parts that are specific for WebExtensions, but as little business
* logic as possible.
2016-02-09 21:56:06 +01:00
*
2016-01-05 14:20:13 +01:00
* @author Florian Dold
*/
2016-02-15 11:29:58 +01:00
type Handler = (detail: any, sender: MessageSender) => Promise<any>;
function makeHandlers(db: IDBDatabase,
2016-10-12 02:55:53 +02:00
wallet: Wallet): { [msg: string]: Handler } {
return {
2016-10-12 02:55:53 +02:00
["balances"]: function (detail, sender) {
return wallet.getBalances();
},
2016-10-12 02:55:53 +02:00
["dump-db"]: function (detail, sender) {
return exportDb(db);
},
2016-10-12 02:55:53 +02:00
["get-tab-cookie"]: function (detail, sender) {
2016-09-12 17:41:12 +02:00
if (!sender || !sender.tab || !sender.tab.id) {
return Promise.resolve();
}
let id: number = sender.tab.id;
let info: any = <any>paymentRequestCookies[id];
delete paymentRequestCookies[id];
2016-09-09 14:07:54 +02:00
return Promise.resolve(info);
},
2016-10-12 02:55:53 +02:00
["ping"]: function (detail, sender) {
2016-10-11 20:26:37 +02:00
return Promise.resolve();
},
2016-10-12 02:55:53 +02:00
["reset"]: function (detail, sender) {
2016-03-02 00:47:00 +01:00
if (db) {
2016-09-14 15:55:10 +02:00
let tx = db.transaction(Array.from(db.objectStoreNames), 'readwrite');
2016-03-02 00:47:00 +01:00
for (let i = 0; i < db.objectStoreNames.length; i++) {
tx.objectStore(db.objectStoreNames[i]).clear();
}
}
deleteDb();
2016-10-12 02:55:53 +02:00
chrome.browserAction.setBadgeText({ text: "" });
console.log("reset done");
// Response is synchronous
return Promise.resolve({});
},
2016-10-12 02:55:53 +02:00
["create-reserve"]: function (detail, sender) {
2016-02-09 21:56:06 +01:00
const d = {
2016-03-01 19:39:17 +01:00
exchange: detail.exchange,
2016-02-09 21:56:06 +01:00
amount: detail.amount,
};
const req = CreateReserveRequest.checked(d);
return wallet.createReserve(req);
2016-02-09 21:56:06 +01:00
},
2016-10-12 02:55:53 +02:00
["confirm-reserve"]: function (detail, sender) {
// TODO: make it a checkable
2016-02-09 21:56:06 +01:00
const d = {
reservePub: detail.reservePub
};
2016-02-09 21:56:06 +01:00
const req = ConfirmReserveRequest.checked(d);
return wallet.confirmReserve(req);
},
2016-10-12 02:55:53 +02:00
["confirm-pay"]: function (detail, sender) {
2016-11-15 15:07:17 +01:00
let offer: OfferRecord;
try {
2016-11-15 15:07:17 +01:00
offer = OfferRecord.checked(detail.offer);
} catch (e) {
if (e instanceof Checkable.SchemaError) {
console.error("schema error:", e.message);
2016-02-18 22:50:17 +01:00
return Promise.resolve({
2016-10-12 02:55:53 +02:00
error: "invalid contract",
hint: e.message,
detail: detail
});
} else {
throw e;
}
}
return wallet.confirmPay(offer);
},
2016-10-12 02:55:53 +02:00
["check-pay"]: function (detail, sender) {
2016-11-15 15:07:17 +01:00
let offer: OfferRecord;
2016-04-27 06:03:04 +02:00
try {
2016-11-15 15:07:17 +01:00
offer = OfferRecord.checked(detail.offer);
2016-04-27 06:03:04 +02:00
} catch (e) {
if (e instanceof Checkable.SchemaError) {
console.error("schema error:", e.message);
return Promise.resolve({
2016-10-12 02:55:53 +02:00
error: "invalid contract",
hint: e.message,
detail: detail
});
2016-04-27 06:03:04 +02:00
} else {
throw e;
}
}
return wallet.checkPay(offer);
},
2016-10-12 02:55:53 +02:00
["execute-payment"]: function (detail: any, sender: MessageSender) {
2016-09-28 19:37:05 +02:00
if (sender.tab && sender.tab.id) {
rateLimitCache[sender.tab.id]++;
if (rateLimitCache[sender.tab.id] > 10) {
console.warn("rate limit for execute payment exceeded");
2016-10-12 02:55:53 +02:00
let msg = {
2016-09-28 19:37:05 +02:00
error: "rate limit exceeded for execute-payment",
rateLimitExceeded: true,
hint: "Check for redirect loops",
};
return Promise.resolve(msg);
}
}
return wallet.executePayment(detail.H_contract);
},
2016-10-12 02:55:53 +02:00
["exchange-info"]: function (detail) {
2016-02-18 22:50:17 +01:00
if (!detail.baseUrl) {
2016-10-12 02:55:53 +02:00
return Promise.resolve({ error: "bad url" });
2016-02-18 22:50:17 +01:00
}
2016-03-01 19:39:17 +01:00
return wallet.updateExchangeFromUrl(detail.baseUrl);
2016-02-18 22:50:17 +01:00
},
2016-10-12 02:55:53 +02:00
["hash-contract"]: function (detail) {
2016-09-28 23:41:34 +02:00
if (!detail.contract) {
2016-10-12 02:55:53 +02:00
return Promise.resolve({ error: "contract missing" });
2016-09-28 23:41:34 +02:00
}
return wallet.hashContract(detail.contract).then((hash) => {
2016-10-12 02:55:53 +02:00
return { hash };
2016-09-28 23:41:34 +02:00
});
},
2016-10-12 02:55:53 +02:00
["put-history-entry"]: function (detail: any) {
2016-09-28 23:41:34 +02:00
if (!detail.historyEntry) {
2016-10-12 02:55:53 +02:00
return Promise.resolve({ error: "historyEntry missing" });
2016-09-28 23:41:34 +02:00
}
return wallet.putHistory(detail.historyEntry);
},
2016-11-13 10:17:39 +01:00
["save-offer"]: function (detail: any) {
let offer = detail.offer;
if (!offer) {
return Promise.resolve({ error: "offer missing" });
}
console.log("handling safe-offer");
return wallet.saveOffer(offer);
},
2016-10-12 02:55:53 +02:00
["reserve-creation-info"]: function (detail, sender) {
2016-02-18 22:50:17 +01:00
if (!detail.baseUrl || typeof detail.baseUrl !== "string") {
2016-10-12 02:55:53 +02:00
return Promise.resolve({ error: "bad url" });
2016-02-18 22:50:17 +01:00
}
let amount = AmountJson.checked(detail.amount);
return wallet.getReserveCreationInfo(detail.baseUrl, amount);
},
2016-10-12 02:55:53 +02:00
["check-repurchase"]: function (detail, sender) {
2016-02-23 14:07:53 +01:00
let contract = Contract.checked(detail.contract);
return wallet.checkRepurchase(contract);
},
2016-10-12 02:55:53 +02:00
["get-history"]: function (detail, sender) {
// TODO: limit history length
return wallet.getHistory();
2016-01-26 17:21:17 +01:00
},
2016-11-13 10:17:39 +01:00
["get-offer"]: function (detail, sender) {
return wallet.getOffer(detail.offerId);
},
2016-10-12 02:55:53 +02:00
["get-exchanges"]: function (detail, sender) {
return wallet.getExchanges();
},
["get-reserves"]: function (detail, sender) {
if (typeof detail.exchangeBaseUrl !== "string") {
return Promise.reject(Error("exchangeBaseUrl missing"));
}
return wallet.getReserves(detail.exchangeBaseUrl);
},
["get-coins"]: function (detail, sender) {
if (typeof detail.exchangeBaseUrl !== "string") {
return Promise.reject(Error("exchangBaseUrl missing"));
}
return wallet.getCoins(detail.exchangeBaseUrl);
},
["get-precoins"]: function (detail, sender) {
if (typeof detail.exchangeBaseUrl !== "string") {
return Promise.reject(Error("exchangBaseUrl missing"));
}
return wallet.getPreCoins(detail.exchangeBaseUrl);
},
["get-denoms"]: function (detail, sender) {
if (typeof detail.exchangeBaseUrl !== "string") {
return Promise.reject(Error("exchangBaseUrl missing"));
}
return wallet.getDenoms(detail.exchangeBaseUrl);
},
2016-10-13 02:36:33 +02:00
["refresh-coin"]: function (detail, sender) {
if (typeof detail.coinPub !== "string") {
return Promise.reject(Error("coinPub missing"));
}
return wallet.refresh(detail.coinPub);
},
2016-10-12 02:55:53 +02:00
["payment-failed"]: function (detail, sender) {
2016-05-24 17:30:27 +02:00
// For now we just update exchanges (maybe the exchange did something
// wrong and the keys were messed up).
// FIXME: in the future we should look at what actually went wrong.
2016-05-24 17:52:30 +02:00
console.error("payment reported as failed");
2016-05-24 17:30:27 +02:00
wallet.updateExchanges();
return Promise.resolve();
},
2016-10-17 15:58:36 +02:00
["payment-succeeded"]: function (detail, sender) {
let contractHash = detail.contractHash;
if (!contractHash) {
return Promise.reject(Error("contractHash missing"));
}
return wallet.paymentSucceeded(contractHash);
},
};
}
2016-01-05 14:20:13 +01:00
2016-02-09 21:56:06 +01:00
2016-09-12 17:41:12 +02:00
function dispatch(handlers: any, req: any, sender: any, sendResponse: any) {
if (req.type in handlers) {
Promise
.resolve()
.then(() => {
const p = handlers[req.type](req.detail, sender);
2016-09-12 17:41:12 +02:00
return p.then((r: any) => {
try {
sendResponse(r);
} catch (e) {
// might fail if tab disconnected
}
})
})
.catch((e) => {
2016-02-19 13:03:45 +01:00
console.log(`exception during wallet handler for '${req.type}'`);
console.log("request", req);
2016-02-19 04:23:00 +01:00
console.error(e);
try {
sendResponse({
2016-10-12 02:55:53 +02:00
error: "exception",
hint: e.message,
stack: e.stack.toString()
});
} catch (e) {
// might fail if tab disconnected
}
});
// The sendResponse call is async
return true;
} else {
console.error(`Request type ${JSON.stringify(req)} unknown, req ${req.type}`);
try {
2016-10-12 02:55:53 +02:00
sendResponse({ error: "request unknown" });
} catch (e) {
// might fail if tab disconnected
}
// The sendResponse call is sync
return false;
}
}
2016-02-18 23:41:29 +01:00
class ChromeNotifier implements Notifier {
ports: Port[] = [];
constructor() {
chrome.runtime.onConnect.addListener((port) => {
console.log("got connect!");
this.ports.push(port);
port.onDisconnect.addListener(() => {
let i = this.ports.indexOf(port);
if (i >= 0) {
this.ports.splice(i, 1);
} else {
console.error("port already removed");
}
});
});
}
notify() {
for (let p of this.ports) {
2016-10-12 02:55:53 +02:00
p.postMessage({ notify: true });
2016-02-18 23:41:29 +01:00
}
}
}
2016-09-06 13:31:30 +02:00
2016-09-08 17:26:31 +02:00
/**
* Mapping from tab ID to payment information (if any).
*/
2016-10-12 02:55:53 +02:00
let paymentRequestCookies: { [n: number]: any } = {};
2016-09-08 17:26:31 +02:00
2016-09-06 14:39:45 +02:00
function handleHttpPayment(headerList: chrome.webRequest.HttpHeader[],
2016-10-12 02:55:53 +02:00
url: string, tabId: number): any {
const headers: { [s: string]: string } = {};
2016-09-06 13:31:30 +02:00
for (let kv of headerList) {
2016-09-12 17:41:12 +02:00
if (kv.value) {
headers[kv.name.toLowerCase()] = kv.value;
}
2016-09-06 13:31:30 +02:00
}
const contractUrl = headers["x-taler-contract-url"];
if (contractUrl !== undefined) {
2016-10-12 02:55:53 +02:00
paymentRequestCookies[tabId] = { type: "fetch", contractUrl };
2016-09-08 17:26:31 +02:00
return;
2016-09-06 13:31:30 +02:00
}
const contractHash = headers["x-taler-contract-hash"];
if (contractHash !== undefined) {
const payUrl = headers["x-taler-pay-url"];
if (payUrl === undefined) {
console.log("malformed 402, X-Taler-Pay-Url missing");
return;
}
// Offer URL is optional
const offerUrl = headers["x-taler-offer-url"];
2016-09-09 14:07:54 +02:00
paymentRequestCookies[tabId] = {
2016-09-08 17:26:31 +02:00
type: "execute",
offerUrl,
payUrl,
contractHash
};
return;
2016-09-06 13:31:30 +02:00
}
// looks like it's not a taler request, it might be
// for a different payment system (or the shop is buggy)
console.log("ignoring non-taler 402 response");
}
2016-11-17 21:21:05 +01:00
function handleBankRequest(wallet: Wallet, headerList: chrome.webRequest.HttpHeader[],
url: string, tabId: number): any {
const headers: { [s: string]: string } = {};
for (let kv of headerList) {
if (kv.value) {
headers[kv.name.toLowerCase()] = kv.value;
}
}
const reservePub = headers["x-taler-reserve-pub"];
if (reservePub !== undefined) {
console.log(`confirming reserve ${reservePub} via 201`);
wallet.confirmReserve({reservePub});
return;
}
const amount = headers["x-taler-amount"];
if (amount) {
let callbackUrl = headers["x-taler-callback-url"];
if (!callbackUrl) {
2016-11-18 17:15:12 +01:00
console.log("202 not understood (X-Taler-Callback-Url missing)");
2016-11-17 21:21:05 +01:00
return;
}
2016-11-19 17:37:39 +01:00
let amountParsed;
try {
amountParsed = JSON.parse(amount);
} catch (e) {
let uri = URI(chrome.extension.getURL("/src/pages/error.html"));
let p = {
message: `Can't parse amount ("${amount}"): ${e.message}`,
};
let redirectUrl = uri.query(p).href();
return {redirectUrl};
}
2016-11-17 21:21:05 +01:00
let wtTypes = headers["x-taler-wt-types"];
if (!wtTypes) {
2016-11-18 17:15:12 +01:00
console.log("202 not understood (X-Taler-Wt-Types missing)");
2016-11-17 21:21:05 +01:00
return;
}
let params = {
amount: amount,
callback_url: URI(callbackUrl)
.absoluteTo(url),
bank_url: url,
wt_types: wtTypes,
};
let uri = URI(chrome.extension.getURL("/src/pages/confirm-create-reserve.html"));
let redirectUrl = uri.query(params).href();
return {redirectUrl};
}
2016-11-19 17:37:39 +01:00
// no known headers found, not a taler request ...
2016-11-17 21:21:05 +01:00
}
2016-09-23 21:57:07 +02:00
// Useful for debugging ...
2016-10-12 02:55:53 +02:00
export let wallet: Wallet | undefined = undefined;
export let badge: ChromeBadge | undefined = undefined;
2016-11-18 04:09:04 +01:00
export let log = logging.log;
2016-09-28 19:37:05 +02:00
// Rate limit cache for executePayment operations, to break redirect loops
2016-10-12 02:55:53 +02:00
let rateLimitCache: { [n: number]: number } = {};
2016-09-28 19:37:05 +02:00
function clearRateLimitCache() {
rateLimitCache = {};
}
export function wxMain() {
2016-11-18 04:09:04 +01:00
window.onerror = (m, source, lineno, colno, error) => {
2016-11-19 16:33:29 +01:00
logging.record("error", m + error, undefined, source || "(unknown)", lineno || 0, colno || 0);
2016-11-18 04:09:04 +01:00
}
2016-10-12 02:55:53 +02:00
chrome.browserAction.setBadgeText({ text: "" });
2016-09-24 02:25:24 +02:00
badge = new ChromeBadge();
2016-01-05 14:20:13 +01:00
2016-10-12 02:55:53 +02:00
chrome.tabs.query({}, function (tabs) {
2016-03-02 15:33:23 +01:00
for (let tab of tabs) {
2016-09-12 17:41:12 +02:00
if (!tab.url || !tab.id) {
2016-03-02 15:33:23 +01:00
return;
}
let uri = URI(tab.url);
if (uri.protocol() == "http" || uri.protocol() == "https") {
console.log("injecting into existing tab", tab.id);
2016-11-13 23:30:18 +01:00
chrome.tabs.executeScript(tab.id, { file: "/src/vendor/URI.js" });
chrome.tabs.executeScript(tab.id, { file: "/src/taler-wallet-lib.js" });
chrome.tabs.executeScript(tab.id, { file: "/src/content_scripts/notify.js" });
let code = `
2016-11-20 04:18:13 +01:00
if (("taler" in window) || document.documentElement.getAttribute("data-taler-nojs")) {
document.dispatchEvent(new Event("taler-probe-result"));
}
`;
chrome.tabs.executeScript(tab.id, { code, runAt: "document_idle" });
2016-03-02 15:33:23 +01:00
}
}
});
const tabTimers: {[n: number]: number[]} = {};
chrome.tabs.onRemoved.addListener((tabId, changeInfo) => {
let tt = tabTimers[tabId] || [];
for (let t of tt) {
chrome.extension.getBackgroundPage().clearTimeout(t);
}
});
chrome.tabs.onUpdated.addListener((tabId, changeInfo) => {
if (changeInfo.status != 'complete') {
return;
}
const timers: number[] = [];
const addRun = (dt: number) => {
const id = chrome.extension.getBackgroundPage().setTimeout(run, dt);
timers.push(id);
}
const run = () => {
timers.shift();
chrome.tabs.get(tabId, (tab) => {
if (chrome.runtime.lastError) {
return;
}
if (!tab.url || !tab.id) {
return;
}
let uri = URI(tab.url);
if (!(uri.protocol() == "http" || uri.protocol() == "https")) {
return;
}
let code = `
if (("taler" in window) || document.documentElement.getAttribute("data-taler-nojs")) {
document.dispatchEvent(new Event("taler-probe-result"));
}
`;
2016-11-20 04:18:13 +01:00
chrome.tabs.executeScript(tab.id!, { code, runAt: "document_start" });
});
};
addRun(0);
addRun(50);
addRun(300);
addRun(1000);
addRun(2000);
addRun(4000);
addRun(8000);
addRun(16000);
tabTimers[tabId] = timers;
});
2016-09-28 19:37:05 +02:00
chrome.extension.getBackgroundPage().setInterval(clearRateLimitCache, 5000);
Promise.resolve()
2016-10-12 02:55:53 +02:00
.then(() => {
return openTalerDb();
})
.catch((e) => {
console.error("could not open database");
console.error(e);
})
.then((db: IDBDatabase) => {
let http = new BrowserHttpLib();
let notifier = new ChromeNotifier();
console.log("setting wallet");
wallet = new Wallet(db, http, badge!, notifier);
// Handlers for messages coming directly from the content
// script on the page
let handlers = makeHandlers(db, wallet!);
chrome.runtime.onMessage.addListener((req, sender, sendResponse) => {
try {
return dispatch(handlers, req, sender, sendResponse)
} catch (e) {
console.log(`exception during wallet handler (dispatch)`);
console.log("request", req);
console.error(e);
sendResponse({
error: "exception",
hint: e.message,
stack: e.stack.toString()
});
return false;
}
});
// Handlers for catching HTTP requests
chrome.webRequest.onHeadersReceived.addListener((details) => {
2016-11-17 21:21:05 +01:00
if (details.statusCode == 402) {
console.log(`got 402 from ${details.url}`);
return handleHttpPayment(details.responseHeaders || [],
details.url,
details.tabId);
} else if (details.statusCode == 202) {
return handleBankRequest(wallet!, details.responseHeaders || [],
details.url,
details.tabId);
2016-10-12 02:55:53 +02:00
}
}, { urls: ["<all_urls>"] }, ["responseHeaders", "blocking"]);
})
.catch((e) => {
console.error("could not initialize wallet messaging");
console.error(e);
});
2016-10-11 20:26:37 +02:00
}
2016-11-15 15:07:17 +01:00
/**
* Return a promise that resolves
* to the taler wallet db.
*/
function openTalerDb(): Promise<IDBDatabase> {
return new Promise((resolve, reject) => {
const req = indexedDB.open(DB_NAME, DB_VERSION);
req.onerror = (e) => {
reject(e);
};
req.onsuccess = (e) => {
resolve(req.result);
};
req.onupgradeneeded = (e) => {
const db = req.result;
console.log("DB: upgrade needed: oldVersion = " + e.oldVersion);
switch (e.oldVersion) {
case 0: // DB does not exist yet
for (let n in Stores) {
if ((Stores as any)[n] instanceof Store) {
let si: Store<any> = (Stores as any)[n];
const s = db.createObjectStore(si.name, si.storeParams);
for (let indexName in (si as any)) {
if ((si as any)[indexName] instanceof Index) {
let ii: Index<any,any> = (si as any)[indexName];
s.createIndex(ii.indexName, ii.keyPath);
}
}
}
}
break;
default:
if (e.oldVersion != DB_VERSION) {
window.alert("Incompatible wallet dababase version, please reset" +
" db.");
chrome.browserAction.setBadgeText({text: "err"});
chrome.browserAction.setBadgeBackgroundColor({color: "#F00"});
throw Error("incompatible DB");
}
break;
}
};
});
}
function exportDb(db: IDBDatabase): Promise<any> {
let dump = {
name: db.name,
version: db.version,
stores: {} as {[s: string]: any},
};
return new Promise((resolve, reject) => {
let tx = db.transaction(Array.from(db.objectStoreNames));
tx.addEventListener("complete", () => {
resolve(dump);
});
for (let i = 0; i < db.objectStoreNames.length; i++) {
let name = db.objectStoreNames[i];
let storeDump = {} as {[s: string]: any};
dump.stores[name] = storeDump;
let store = tx.objectStore(name)
.openCursor()
.addEventListener("success", (e: Event) => {
let cursor = (e.target as any).result;
if (cursor) {
storeDump[cursor.key] = cursor.value;
cursor.continue();
}
});
}
});
}
function deleteDb() {
indexedDB.deleteDatabase(DB_NAME);
}