taler/wallet-core
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Activity
3aad5e774d
wallet-core/packages/anastasis-webui/src/routes/home/index.tsx

1026 lines
28 KiB
TypeScript
Raw Blame History

import {
bytesToString,
canonicalJson,
decodeCrock,
encodeCrock,
stringToBytes,
} from "@gnu-taler/taler-util";
import {
FunctionalComponent,
ComponentChildren,
h,
createContext,
} from "preact";
import { useState, useContext, useRef, useLayoutEffect } from "preact/hooks";
import {
AnastasisReducerApi,
AuthMethod,
BackupStates,
ChallengeFeedback,
ChallengeInfo,
RecoveryStates,
ReducerStateBackup,
ReducerStateRecovery,
useAnastasisReducer,
} from "../../hooks/use-anastasis-reducer";
import style from "./style.css";
const WithReducer = createContext<AnastasisReducerApi | undefined>(undefined);
function isBackup(reducer: AnastasisReducerApi) {
return !!reducer.currentReducerState?.backup_state;
}
interface CommonReducerProps {
reducer: AnastasisReducerApi;
reducerState: ReducerStateBackup | ReducerStateRecovery;
}
function withProcessLabel(reducer: AnastasisReducerApi, text: string): string {
if (isBackup(reducer)) {
return "Backup: " + text;
}
return "Recovery: " + text;
}
function ContinentSelection(props: CommonReducerProps) {
const { reducer, reducerState } = props;
return (
<AnastasisClientFrame
hideNext
title={withProcessLabel(reducer, "Select Continent")}
>
{reducerState.continents.map((x: any) => {
const sel = (x: string) =>
reducer.transition("select_continent", { continent: x });
return (
<button onClick={() => sel(x.name)} key={x.name}>
{x.name}
</button>
);
})}
</AnastasisClientFrame>
);
}
function CountrySelection(props: CommonReducerProps) {
const { reducer, reducerState } = props;
return (
<AnastasisClientFrame
hideNext
title={withProcessLabel(reducer, "Select Country")}
>
{reducerState.countries.map((x: any) => {
const sel = (x: any) =>
reducer.transition("select_country", {
country_code: x.code,
currencies: [x.currency],
});
return (
<button onClick={() => sel(x)} key={x.name}>
{x.name} ({x.currency})
</button>
);
})}
</AnastasisClientFrame>
);
}
interface SolveEntryProps {
reducer: AnastasisReducerApi;
challenge: ChallengeInfo;
feedback?: ChallengeFeedback;
}
function SolveQuestionEntry(props: SolveEntryProps) {
const [answer, setAnswer] = useState("");
const { reducer, challenge, feedback } = props;
const next = () =>
reducer.transition("solve_challenge", {
answer,
});
return (
<AnastasisClientFrame
title="Recovery: Solve challenge"
onNext={() => next()}
>
<p>Feedback: {JSON.stringify(feedback)}</p>
<p>Question: {challenge.instructions}</p>
<label>
<input
value={answer}
onChange={(e) => setAnswer((e.target as HTMLInputElement).value)}
type="test"
/>
</label>
</AnastasisClientFrame>
);
}
function SecretEditor(props: BackupReducerProps) {
const { reducer } = props;
const [secretName, setSecretName] = useState("");
const [secretValue, setSecretValue] = useState("");
const secretNext = () => {
reducer.runTransaction(async (tx) => {
await tx.transition("enter_secret_name", {
name: secretName,
});
await tx.transition("enter_secret", {
secret: {
value: encodeCrock(stringToBytes(secretValue)),
mime: "text/plain",
},
expiration: {
t_ms: new Date().getTime() + 1000 * 60 * 60 * 24 * 365 * 5,
},
});
await tx.transition("next", {});
});
};
return (
<AnastasisClientFrame
title="Backup: Provide secret"
onNext={() => secretNext()}
>
<div>
<label>
Secret name:{" "}
<input
value={secretName}
onChange={(e) =>
setSecretName((e.target as HTMLInputElement).value)
}
type="text"
/>
</label>
</div>
<div>
<label>
Secret value:{" "}
<input
value={secretValue}
onChange={(e) =>
setSecretValue((e.target as HTMLInputElement).value)
}
type="text"
/>
</label>
</div>
or:
<div>
<label>
File Upload: <input type="file" />
</label>
</div>
</AnastasisClientFrame>
);
}
export interface BackupReducerProps {
reducer: AnastasisReducerApi;
backupState: ReducerStateBackup;
}
function ReviewPolicies(props: BackupReducerProps) {
const { reducer, backupState } = props;
const authMethods = backupState.authentication_methods!;
return (
<AnastasisClientFrame title="Backup: Review Recovery Policies">
{backupState.policies?.map((p, i) => {
const policyName = p.methods
.map((x) => authMethods[x.authentication_method].type)
.join(" + ");
return (
<div class={style.policy}>
<h3>
Policy #{i + 1}: {policyName}
</h3>
Required Authentications:
<ul>
{p.methods.map((x) => {
const m = authMethods[x.authentication_method];
return (
<li>
{m.type} ({m.instructions}) at provider {x.provider}
</li>
);
})}
</ul>
<div>
<button
onClick={() =>
reducer.transition("delete_policy", { policy_index: i })
}
>
Delete Policy
</button>
</div>
</div>
);
})}
</AnastasisClientFrame>
);
}
export interface RecoveryReducerProps {
reducer: AnastasisReducerApi;
recoveryState: ReducerStateRecovery;
}
function SecretSelection(props: RecoveryReducerProps) {
const { reducer, recoveryState } = props;
const [selectingVersion, setSelectingVersion] = useState<boolean>(false);
const [otherVersion, setOtherVersion] = useState<number>(
recoveryState.recovery_document?.version ?? 0,
);
const [otherProvider, setOtherProvider] = useState<string>("");
function selectVersion(p: string, n: number) {
reducer.runTransaction(async (tx) => {
await tx.transition("change_version", {
version: n,
provider_url: p,
});
setSelectingVersion(false);
});
}
if (selectingVersion) {
return (
<AnastasisClientFrame hideNav title="Recovery: Select secret">
<p>Select a different version of the secret</p>
<select onChange={(e) => setOtherProvider((e.target as any).value)}>
{Object.keys(recoveryState.authentication_providers ?? {}).map(
(x) => {
return <option value={x}>{x}</option>;
},
)}
</select>
<div>
<input
value={otherVersion}
onChange={(e) =>
setOtherVersion(Number((e.target as HTMLInputElement).value))
}
type="number"
/>
<button onClick={() => selectVersion(otherProvider, otherVersion)}>
Select
</button>
</div>
<div>
<button onClick={() => selectVersion(otherProvider, 0)}>
Use latest version
</button>
</div>
<div>
<button onClick={() => setSelectingVersion(false)}>Cancel</button>
</div>
</AnastasisClientFrame>
);
}
return (
<AnastasisClientFrame title="Recovery: Select secret">
<p>Provider: {recoveryState.recovery_document!.provider_url}</p>
<p>Secret version: {recoveryState.recovery_document!.version}</p>
<p>Secret name: {recoveryState.recovery_document!.version}</p>
<button onClick={() => setSelectingVersion(true)}>
Select different secret
</button>
</AnastasisClientFrame>
);
}
interface AnastasisClientFrameProps {
onNext?(): void;
title: string;
children: ComponentChildren;
/**
* Should back/next buttons be provided?
*/
hideNav?: boolean;
/**
* Hide only the "next" button.
*/
hideNext?: boolean;
}
function AnastasisClientFrame(props: AnastasisClientFrameProps) {
return (
<WithReducer.Consumer>
{(reducer) => {
if (!reducer) {
return <p>Fatal: Reducer must be in context.</p>;
}
const next = () => {
if (props.onNext) {
props.onNext();
} else {
reducer.transition("next", {});
}
};
return (
<div class={style.home}>
<button onClick={() => reducer.reset()}>Reset session</button>
<h1>{props.title}</h1>
<ErrorBanner reducer={reducer} />
{props.children}
{!props.hideNav ? (
<div>
<button onClick={() => reducer.back()}>Back</button>
{!props.hideNext ? (
<button onClick={() => next()}>Next</button>
) : null}
</div>
) : null}
</div>
);
}}
</WithReducer.Consumer>
);
}
const AnastasisClient: FunctionalComponent = () => {
const reducer = useAnastasisReducer();
return (
<WithReducer.Provider value={reducer}>
<AnastasisClientImpl />
</WithReducer.Provider>
);
};
const AnastasisClientImpl: FunctionalComponent = () => {
const reducer = useContext(WithReducer)!;
const reducerState = reducer.currentReducerState;
if (!reducerState) {
return (
<AnastasisClientFrame hideNav title="Home">
<button autoFocus onClick={() => reducer.startBackup()}>
Backup
</button>
<button onClick={() => reducer.startRecover()}>Recover</button>
</AnastasisClientFrame>
);
}
console.log("state", reducer.currentReducerState);
if (
reducerState.backup_state === BackupStates.ContinentSelecting ||
reducerState.recovery_state === RecoveryStates.ContinentSelecting
) {
return <ContinentSelection reducer={reducer} reducerState={reducerState} />;
}
if (
reducerState.backup_state === BackupStates.CountrySelecting ||
reducerState.recovery_state === RecoveryStates.CountrySelecting
) {
return <CountrySelection reducer={reducer} reducerState={reducerState} />;
}
if (
reducerState.backup_state === BackupStates.UserAttributesCollecting ||
reducerState.recovery_state === RecoveryStates.UserAttributesCollecting
) {
return <AttributeEntry reducer={reducer} reducerState={reducerState} />;
}
if (reducerState.backup_state === BackupStates.AuthenticationsEditing) {
return (
<AuthenticationEditor backupState={reducerState} reducer={reducer} />
);
}
if (reducerState.backup_state === BackupStates.PoliciesReviewing) {
return <ReviewPolicies reducer={reducer} backupState={reducerState} />;
}
if (reducerState.backup_state === BackupStates.SecretEditing) {
return <SecretEditor reducer={reducer} backupState={reducerState} />;
}
if (reducerState.backup_state === BackupStates.BackupFinished) {
const backupState: ReducerStateBackup = reducerState;
return (
<AnastasisClientFrame hideNext title="Backup finished">
<p>
Your backup of secret "{backupState.secret_name ?? "??"}" was
successful.
</p>
<p>The backup is stored by the following providers:</p>
<ul>
{Object.keys(backupState.success_details).map((x, i) => {
const sd = backupState.success_details[x];
return (
<li>
{x} (Policy version {sd.policy_version})
</li>
);
})}
</ul>
<button onClick={() => reducer.reset()}>Back to start</button>
</AnastasisClientFrame>
);
}
if (reducerState.backup_state === BackupStates.TruthsPaying) {
const backupState: ReducerStateBackup = reducerState;
const payments = backupState.payments ?? [];
return (
<AnastasisClientFrame
hideNext
title="Backup: Authentication Storage Payments"
>
<p>
Some of the providers require a payment to store the encrypted
authentication information.
</p>
<ul>
{payments.map((x) => {
return <li>{x}</li>;
})}
</ul>
<button onClick={() => reducer.transition("pay", {})}>
Check payment status now
</button>
</AnastasisClientFrame>
);
}
if (reducerState.backup_state === BackupStates.PoliciesPaying) {
const backupState: ReducerStateBackup = reducerState;
const payments = backupState.policy_payment_requests ?? [];
return (
<AnastasisClientFrame hideNext title="Backup: Recovery Document Payments">
<p>
Some of the providers require a payment to store the encrypted
recovery document.
</p>
<ul>
{payments.map((x) => {
return (
<li>
{x.provider}: {x.payto}
</li>
);
})}
</ul>
<button onClick={() => reducer.transition("pay", {})}>
Check payment status now
</button>
</AnastasisClientFrame>
);
}
if (reducerState.recovery_state === RecoveryStates.SecretSelecting) {
return <SecretSelection reducer={reducer} recoveryState={reducerState} />;
}
if (reducerState.recovery_state === RecoveryStates.ChallengeSelecting) {
const policies = reducerState.recovery_information!.policies;
const chArr = reducerState.recovery_information!.challenges;
const challenges: {
[uuid: string]: {
type: string;
instructions: string;
cost: string;
};
} = {};
for (const ch of chArr) {
challenges[ch.uuid] = {
type: ch.type,
cost: ch.cost,
instructions: ch.instructions,
};
}
return (
<AnastasisClientFrame title="Recovery: Solve challenges">
<h2>Policies</h2>
{policies.map((x, i) => {
return (
<div>
<h3>Policy #{i + 1}</h3>
{x.map((x) => {
const ch = challenges[x.uuid];
return (
<div>
{ch.type} ({ch.instructions})
<button
onClick={() =>
reducer.transition("select_challenge", {
uuid: x.uuid,
})
}
>
Solve
</button>
</div>
);
})}
</div>
);
})}
</AnastasisClientFrame>
);
}
if (reducerState.recovery_state === RecoveryStates.ChallengeSolving) {
const chArr = reducerState.recovery_information!.challenges;
const challengeFeedback = reducerState.challenge_feedback ?? {};
const selectedUuid = reducerState.selected_challenge_uuid!;
const challenges: {
[uuid: string]: ChallengeInfo;
} = {};
for (const ch of chArr) {
challenges[ch.uuid] = ch;
}
const selectedChallenge = challenges[selectedUuid];
if (selectedChallenge.type === "question") {
return (
<SolveQuestionEntry
challenge={selectedChallenge}
reducer={reducer}
feedback={challengeFeedback[selectedUuid]}
/>
);
} else {
return (
<AnastasisClientFrame hideNext title="Recovery: Solve challenge">
<p>{JSON.stringify(selectedChallenge)}</p>
<p>Challenge not supported.</p>
</AnastasisClientFrame>
);
}
}
if (reducerState.recovery_state === RecoveryStates.RecoveryFinished) {
return (
<AnastasisClientFrame title="Recovery Finished" hideNext>
<h1>Recovery Finished</h1>
<p>
Secret: {bytesToString(decodeCrock(reducerState.core_secret?.value!))}
</p>
</AnastasisClientFrame>
);
}
console.log("unknown state", reducer.currentReducerState);
return (
<AnastasisClientFrame hideNav title="Bug">
<p>Bug: Unknown state.</p>
<button onClick={() => reducer.reset()}>Reset</button>
</AnastasisClientFrame>
);
};
interface AuthMethodSetupProps {
method: string;
addAuthMethod: (x: any) => void;
cancel: () => void;
}
function AuthMethodSmsSetup(props: AuthMethodSetupProps) {
const [mobileNumber, setMobileNumber] = useState("");
const addSmsAuth = () => {
props.addAuthMethod({
authentication_method: {
type: "sms",
instructions: `SMS to ${mobileNumber}`,
challenge: encodeCrock(stringToBytes(mobileNumber)),
},
});
};
//const inputRef = useRef<HTMLInputElement>(null);
// useLayoutEffect(() => {
// inputRef.current?.focus();
// }, []);
return (
<AnastasisClientFrame hideNav title="Add SMS authentication">
<div>
<p>
For SMS authentication, you need to provide a mobile number. When
recovering your secret, you will be asked to enter the code you
receive via SMS.
</p>
<label>
Mobile number:{" "}
<input
value={mobileNumber}
//ref={inputRef}
style={{ display: "block" }}
autoFocus
onChange={(e) => setMobileNumber((e.target as any).value)}
type="text"
/>
</label>
<div>
<button onClick={() => props.cancel()}>Cancel</button>
<button onClick={() => addSmsAuth()}>Add</button>
</div>
</div>
</AnastasisClientFrame>
);
}
function AuthMethodQuestionSetup(props: AuthMethodSetupProps) {
const [questionText, setQuestionText] = useState("");
const [answerText, setAnswerText] = useState("");
return (
<AnastasisClientFrame hideNav title="Add Security Question">
<div>
<p>
For security question authentication, you need to provide a question
and its answer. When recovering your secret, you will be shown the
question and you will need to type the answer exactly as you typed it
here.
</p>
<div>
<label>
Security question:{" "}
<input
value={questionText}
style={{ display: "block" }}
autoFocus
onChange={(e) => setQuestionText((e.target as any).value)}
type="text"
/>
</label>
</div>
<div>
<label>
Answer:{" "}
<input
value={answerText}
style={{ display: "block" }}
autoFocus
onChange={(e) => setAnswerText((e.target as any).value)}
type="text"
/>
</label>
</div>
<div>
<button onClick={() => props.cancel()}>Cancel</button>
<button
onClick={() =>
props.addAuthMethod({
authentication_method: {
type: "question",
instructions: questionText,
challenge: encodeCrock(stringToBytes(answerText)),
},
})
}
>
Add
</button>
</div>
</div>
</AnastasisClientFrame>
);
}
function AuthMethodEmailSetup(props: AuthMethodSetupProps) {
const [email, setEmail] = useState("");
return (
<AnastasisClientFrame hideNav title="Add email authentication">
<p>
For email authentication, you need to provide an email address. When
recovering your secret, you will need to enter the code you receive by
email.
</p>
<div>
<label>
Email address:{" "}
<input
style={{ display: "block" }}
value={email}
autoFocus
onChange={(e) => setEmail((e.target as any).value)}
type="text"
/>
</label>
</div>
<div>
<button onClick={() => props.cancel()}>Cancel</button>
<button
onClick={() =>
props.addAuthMethod({
authentication_method: {
type: "email",
instructions: `Email to ${email}`,
challenge: encodeCrock(stringToBytes(email)),
},
})
}
>
Add
</button>
</div>
</AnastasisClientFrame>
);
}
function AuthMethodPostSetup(props: AuthMethodSetupProps) {
const [fullName, setFullName] = useState("");
const [street, setStreet] = useState("");
const [city, setCity] = useState("");
const [postcode, setPostcode] = useState("");
const [country, setCountry] = useState("");
const addPostAuth = () => {
() =>
props.addAuthMethod({
authentication_method: {
type: "email",
instructions: `Letter to address in postal code ${postcode}`,
challenge: encodeCrock(
stringToBytes(
canonicalJson({
full_name: fullName,
street,
city,
postcode,
country,
}),
),
),
},
});
};
return (
<div class={style.home}>
<h1>Add {props.method} authentication</h1>
<div>
<p>
For postal letter authentication, you need to provide a postal
address. When recovering your secret, you will be asked to enter a
code that you will receive in a letter to that address.
</p>
<div>
<label>
Full Name
<input
value={fullName}
autoFocus
onChange={(e) => setFullName((e.target as any).value)}
type="text"
/>
</label>
</div>
<div>
<label>
Street
<input
value={street}
autoFocus
onChange={(e) => setStreet((e.target as any).value)}
type="text"
/>
</label>
</div>
<div>
<label>
City
<input
value={city}
autoFocus
onChange={(e) => setCity((e.target as any).value)}
type="text"
/>
</label>
</div>
<div>
<label>
Postal Code
<input
value={postcode}
autoFocus
onChange={(e) => setPostcode((e.target as any).value)}
type="text"
/>
</label>
</div>
<div>
<label>
Country
<input
value={country}
autoFocus
onChange={(e) => setCountry((e.target as any).value)}
type="text"
/>
</label>
</div>
<div>
<button onClick={() => props.cancel()}>Cancel</button>
<button onClick={() => addPostAuth()}>Add</button>
</div>
</div>
</div>
);
}
function AuthMethodNotImplemented(props: AuthMethodSetupProps) {
return (
<AnastasisClientFrame hideNav title={`Add ${props.method} authentication`}>
<p>This auth method is not implemented yet, please choose another one.</p>
<button onClick={() => props.cancel()}>Cancel</button>
</AnastasisClientFrame>
);
}
export interface AuthenticationEditorProps {
reducer: AnastasisReducerApi;
backupState: ReducerStateBackup;
}
function AuthenticationEditor(props: AuthenticationEditorProps) {
const [selectedMethod, setSelectedMethod] = useState<string | undefined>(
undefined,
);
const { reducer, backupState } = props;
const providers = backupState.authentication_providers;
const authAvailableSet = new Set<string>();
for (const provKey of Object.keys(providers)) {
const p = providers[provKey];
if (p.methods) {
for (const meth of p.methods) {
authAvailableSet.add(meth.type);
}
}
}
if (selectedMethod) {
const cancel = () => setSelectedMethod(undefined);
const addMethod = (args: any) => {
reducer.transition("add_authentication", args);
setSelectedMethod(undefined);
};
switch (selectedMethod) {
case "sms":
return (
<AuthMethodSmsSetup
cancel={cancel}
addAuthMethod={addMethod}
method="sms"
/>
);
case "question":
return (
<AuthMethodQuestionSetup
cancel={cancel}
addAuthMethod={addMethod}
method="question"
/>
);
case "email":
return (
<AuthMethodEmailSetup
cancel={cancel}
addAuthMethod={addMethod}
method="email"
/>
);
case "post":
return (
<AuthMethodPostSetup
cancel={cancel}
addAuthMethod={addMethod}
method="post"
/>
);
default:
return (
<AuthMethodNotImplemented
cancel={cancel}
addAuthMethod={addMethod}
method={selectedMethod}
/>
);
}
}
function MethodButton(props: { method: string; label: String }) {
return (
<button
disabled={!authAvailableSet.has(props.method)}
onClick={() => {
setSelectedMethod(props.method);
reducer.dismissError();
}}
>
{props.label}
</button>
);
}
const configuredAuthMethods: AuthMethod[] =
backupState.authentication_methods ?? [];
const haveMethodsConfigured = configuredAuthMethods.length;
return (
<AnastasisClientFrame title="Backup: Configure Authentication Methods">
<div>
<MethodButton method="sms" label="SMS" />
<MethodButton method="email" label="Email" />
<MethodButton method="question" label="Question" />
<MethodButton method="post" label="Physical Mail" />
<MethodButton method="totp" label="TOTP" />
<MethodButton method="iban" label="IBAN" />
</div>
<h2>Configured authentication methods</h2>
{haveMethodsConfigured ? (
configuredAuthMethods.map((x, i) => {
return (
<p>
{x.type} ({x.instructions}){" "}
<button
onClick={() =>
reducer.transition("delete_authentication", {
authentication_method: i,
})
}
>
Delete
</button>
</p>
);
})
) : (
<p>No authentication methods configured yet.</p>
)}
</AnastasisClientFrame>
);
}
export interface AttributeEntryProps {
reducer: AnastasisReducerApi;
reducerState: ReducerStateRecovery | ReducerStateBackup;
}
function AttributeEntry(props: AttributeEntryProps) {
const { reducer, reducerState: backupState } = props;
const [attrs, setAttrs] = useState<Record<string, string>>(
props.reducerState.identity_attributes ?? {},
);
return (
<AnastasisClientFrame
title={withProcessLabel(reducer, "Select Country")}
onNext={() =>
reducer.transition("enter_user_attributes", {
identity_attributes: attrs,
})
}
>
{backupState.required_attributes.map((x: any, i: number) => {
return (
<AttributeEntryField
isFirst={i == 0}
setValue={(v: string) => setAttrs({ ...attrs, [x.name]: v })}
spec={x}
value={attrs[x.name]}
/>
);
})}
</AnastasisClientFrame>
);
}
export interface AttributeEntryFieldProps {
isFirst: boolean;
value: string;
setValue: (newValue: string) => void;
spec: any;
}
function AttributeEntryField(props: AttributeEntryFieldProps) {
return (
<div>
<label>{props.spec.label}:</label>
<input
style={{ display: "block" }}
autoFocus={props.isFirst}
type="text"
value={props.value}
onChange={(e) => props.setValue((e as any).target.value)}
/>
</div>
);
}
interface ErrorBannerProps {
reducer: AnastasisReducerApi;
}
/**
* Show a dismissable error banner if there is a current error.
*/
function ErrorBanner(props: ErrorBannerProps) {
const currentError = props.reducer.currentError;
if (currentError) {
return (
<div id={style.error}>
<p>Error: {JSON.stringify(currentError)}</p>
<button onClick={() => props.reducer.dismissError()}>
Dismiss Error
</button>
</div>
);
}
return null;
}
export default AnastasisClient;
Reference in New Issue View Git Blame Copy Permalink