Handle cross-signing keys missing locally and/or from secret storage (#31367)
* show correct toast when cross-signing keys missing If cross-signing keys are missing both locally and in 4S, show a new toast saying that identity needs resetting, rather than saying that the device needs to be verified. * refactor: make DeviceListener in charge of device state - move enum from SetupEncryptionToast to DeviceListener - DeviceListener has public method to get device state - DeviceListener emits events to update device state * reset key backup when needed in RecoveryPanelOutOfSync brings RecoveryPanelOutOfSync in line with SetupEncryptionToast behaviour * update strings to agree with designs from Figma * use DeviceListener to determine EncryptionUserSettingsTab display rather than using its own logic * prompt to reset identity in Encryption Settings when needed * fix type * calculate device state even if we aren't going to show a toast * update snapshot * make logs more accurate * add tests * make the bot use a different access token/device * only log in a new session when requested * Mark properties as read-only Co-authored-by: Skye Elliot <actuallyori@gmail.com> * remove some duplicate strings * make accessToken optional instead of using empty string * switch from enum to string union as per review * apply other changes from review * handle errors in accessSecretStorage * remove incorrect testid --------- Co-authored-by: Skye Elliot <actuallyori@gmail.com>
This commit is contained in:
Hubert Chathi
GitHub
@@ -14,7 +14,7 @@ import { type Interaction as InteractionEvent } from "@matrix-org/analytics-even
|
||||
|
||||
import Modal from "../Modal";
|
||||
import { _t } from "../languageHandler";
|
||||
import DeviceListener from "../DeviceListener";
|
||||
import DeviceListener, { type DeviceState } from "../DeviceListener";
|
||||
import SetupEncryptionDialog from "../components/views/dialogs/security/SetupEncryptionDialog";
|
||||
import { AccessCancelledError, accessSecretStorage } from "../SecurityManager";
|
||||
import ToastStore, { type IToast } from "../stores/ToastStore";
|
||||
@@ -33,114 +33,107 @@ import { PosthogAnalytics } from "../PosthogAnalytics";
|
||||
|
||||
const TOAST_KEY = "setupencryption";
|
||||
|
||||
const getTitle = (kind: Kind): string => {
|
||||
switch (kind) {
|
||||
case Kind.SET_UP_RECOVERY:
|
||||
/**
|
||||
* The device states that we show a toast for (everything except for "ok").
|
||||
*/
|
||||
type DeviceStateForToast = Exclude<DeviceState, "ok">;
|
||||
|
||||
const getTitle = (state: DeviceStateForToast): string => {
|
||||
switch (state) {
|
||||
case "set_up_recovery":
|
||||
return _t("encryption|set_up_recovery");
|
||||
case Kind.VERIFY_THIS_SESSION:
|
||||
case "verify_this_session":
|
||||
return _t("encryption|verify_toast_title");
|
||||
case Kind.KEY_STORAGE_OUT_OF_SYNC:
|
||||
case "key_storage_out_of_sync":
|
||||
case "identity_needs_reset":
|
||||
return _t("encryption|key_storage_out_of_sync");
|
||||
case Kind.TURN_ON_KEY_STORAGE:
|
||||
case "turn_on_key_storage":
|
||||
return _t("encryption|turn_on_key_storage");
|
||||
}
|
||||
};
|
||||
|
||||
const getIcon = (kind: Kind): IToast<any>["icon"] => {
|
||||
switch (kind) {
|
||||
case Kind.SET_UP_RECOVERY:
|
||||
const getIcon = (state: DeviceStateForToast): IToast<any>["icon"] => {
|
||||
switch (state) {
|
||||
case "set_up_recovery":
|
||||
return undefined;
|
||||
case Kind.VERIFY_THIS_SESSION:
|
||||
case Kind.KEY_STORAGE_OUT_OF_SYNC:
|
||||
case "verify_this_session":
|
||||
case "key_storage_out_of_sync":
|
||||
case "identity_needs_reset":
|
||||
return <ErrorSolidIcon color="var(--cpd-color-icon-critical-primary)" />;
|
||||
case Kind.TURN_ON_KEY_STORAGE:
|
||||
case "turn_on_key_storage":
|
||||
return <SettingsSolidIcon color="var(--cpd-color-text-primary)" />;
|
||||
}
|
||||
};
|
||||
|
||||
const getSetupCaption = (kind: Kind): string => {
|
||||
switch (kind) {
|
||||
case Kind.SET_UP_RECOVERY:
|
||||
const getSetupCaption = (state: DeviceStateForToast): string => {
|
||||
switch (state) {
|
||||
case "set_up_recovery":
|
||||
return _t("action|continue");
|
||||
case Kind.VERIFY_THIS_SESSION:
|
||||
case "verify_this_session":
|
||||
return _t("action|verify");
|
||||
case Kind.KEY_STORAGE_OUT_OF_SYNC:
|
||||
case "key_storage_out_of_sync":
|
||||
return _t("encryption|enter_recovery_key");
|
||||
case Kind.TURN_ON_KEY_STORAGE:
|
||||
case "turn_on_key_storage":
|
||||
return _t("action|continue");
|
||||
case "identity_needs_reset":
|
||||
return _t("encryption|continue_with_reset");
|
||||
}
|
||||
};
|
||||
|
||||
/**
|
||||
* Get the icon to show on the primary button.
|
||||
* @param kind
|
||||
* @param state
|
||||
*/
|
||||
const getPrimaryButtonIcon = (kind: Kind): ComponentType<React.SVGAttributes<SVGElement>> | undefined => {
|
||||
switch (kind) {
|
||||
case Kind.KEY_STORAGE_OUT_OF_SYNC:
|
||||
const getPrimaryButtonIcon = (
|
||||
state: DeviceStateForToast,
|
||||
): ComponentType<React.SVGAttributes<SVGElement>> | undefined => {
|
||||
switch (state) {
|
||||
case "key_storage_out_of_sync":
|
||||
return KeyIcon;
|
||||
default:
|
||||
return;
|
||||
}
|
||||
};
|
||||
|
||||
const getSecondaryButtonLabel = (kind: Kind): string => {
|
||||
switch (kind) {
|
||||
case Kind.SET_UP_RECOVERY:
|
||||
const getSecondaryButtonLabel = (state: DeviceStateForToast): string => {
|
||||
switch (state) {
|
||||
case "set_up_recovery":
|
||||
return _t("action|dismiss");
|
||||
case Kind.VERIFY_THIS_SESSION:
|
||||
case "verify_this_session":
|
||||
return _t("encryption|verification|unverified_sessions_toast_reject");
|
||||
case Kind.KEY_STORAGE_OUT_OF_SYNC:
|
||||
case "key_storage_out_of_sync":
|
||||
return _t("encryption|forgot_recovery_key");
|
||||
case Kind.TURN_ON_KEY_STORAGE:
|
||||
case "turn_on_key_storage":
|
||||
return _t("action|dismiss");
|
||||
case "identity_needs_reset":
|
||||
return "";
|
||||
}
|
||||
};
|
||||
|
||||
const getDescription = (kind: Kind): string => {
|
||||
switch (kind) {
|
||||
case Kind.SET_UP_RECOVERY:
|
||||
const getDescription = (state: DeviceStateForToast): string => {
|
||||
switch (state) {
|
||||
case "set_up_recovery":
|
||||
return _t("encryption|set_up_recovery_toast_description");
|
||||
case Kind.VERIFY_THIS_SESSION:
|
||||
case "verify_this_session":
|
||||
return _t("encryption|verify_toast_description");
|
||||
case Kind.KEY_STORAGE_OUT_OF_SYNC:
|
||||
case "key_storage_out_of_sync":
|
||||
return _t("encryption|key_storage_out_of_sync_description");
|
||||
case Kind.TURN_ON_KEY_STORAGE:
|
||||
case "turn_on_key_storage":
|
||||
return _t("encryption|turn_on_key_storage_description");
|
||||
case "identity_needs_reset":
|
||||
return _t("encryption|identity_needs_reset_description");
|
||||
}
|
||||
};
|
||||
|
||||
/**
|
||||
* The kind of toast to show.
|
||||
*/
|
||||
export enum Kind {
|
||||
/**
|
||||
* Prompt the user to set up a recovery key
|
||||
*/
|
||||
SET_UP_RECOVERY = "set_up_recovery",
|
||||
/**
|
||||
* Prompt the user to verify this session
|
||||
*/
|
||||
VERIFY_THIS_SESSION = "verify_this_session",
|
||||
/**
|
||||
* Prompt the user to enter their recovery key
|
||||
*/
|
||||
KEY_STORAGE_OUT_OF_SYNC = "key_storage_out_of_sync",
|
||||
/**
|
||||
* Prompt the user to turn on key storage
|
||||
*/
|
||||
TURN_ON_KEY_STORAGE = "turn_on_key_storage",
|
||||
}
|
||||
|
||||
/**
|
||||
* Show a toast prompting the user for some action related to setting up their encryption.
|
||||
*
|
||||
* @param kind The kind of toast to show
|
||||
* @param state The state of the device
|
||||
*/
|
||||
export const showToast = (kind: Kind): void => {
|
||||
export const showToast = (state: DeviceStateForToast): void => {
|
||||
if (
|
||||
ModuleRunner.instance.extensions.cryptoSetup.setupEncryptionNeeded({
|
||||
kind: kind as any,
|
||||
kind: state as any,
|
||||
storeProvider: { getInstance: () => SetupEncryptionStore.sharedInstance() },
|
||||
})
|
||||
) {
|
||||
@@ -148,13 +141,13 @@ export const showToast = (kind: Kind): void => {
|
||||
}
|
||||
|
||||
const onPrimaryClick = async (): Promise<void> => {
|
||||
switch (kind) {
|
||||
case Kind.SET_UP_RECOVERY:
|
||||
case Kind.TURN_ON_KEY_STORAGE: {
|
||||
switch (state) {
|
||||
case "set_up_recovery":
|
||||
case "turn_on_key_storage": {
|
||||
PosthogAnalytics.instance.trackEvent<InteractionEvent>({
|
||||
eventName: "Interaction",
|
||||
interactionType: "Pointer",
|
||||
name: kind === Kind.SET_UP_RECOVERY ? "ToastSetUpRecoveryClick" : "ToastTurnOnKeyStorageClick",
|
||||
name: state === "set_up_recovery" ? "ToastSetUpRecoveryClick" : "ToastTurnOnKeyStorageClick",
|
||||
});
|
||||
// Open the user settings dialog to the encryption tab
|
||||
const payload: OpenToTabPayload = {
|
||||
@@ -164,10 +157,10 @@ export const showToast = (kind: Kind): void => {
|
||||
defaultDispatcher.dispatch(payload);
|
||||
break;
|
||||
}
|
||||
case Kind.VERIFY_THIS_SESSION:
|
||||
case "verify_this_session":
|
||||
Modal.createDialog(SetupEncryptionDialog, {}, undefined, /* priority = */ false, /* static = */ true);
|
||||
break;
|
||||
case Kind.KEY_STORAGE_OUT_OF_SYNC: {
|
||||
case "key_storage_out_of_sync": {
|
||||
const modal = Modal.createDialog(
|
||||
Spinner,
|
||||
undefined,
|
||||
@@ -208,12 +201,24 @@ export const showToast = (kind: Kind): void => {
|
||||
}
|
||||
break;
|
||||
}
|
||||
case "identity_needs_reset": {
|
||||
// Open the user settings dialog to reset identity
|
||||
const payload: OpenToTabPayload = {
|
||||
action: Action.ViewUserSettings,
|
||||
initialTabId: UserTab.Encryption,
|
||||
props: {
|
||||
initialEncryptionState: "reset_identity_cant_recover",
|
||||
},
|
||||
};
|
||||
defaultDispatcher.dispatch(payload);
|
||||
break;
|
||||
}
|
||||
}
|
||||
};
|
||||
|
||||
const onSecondaryClick = async (): Promise<void> => {
|
||||
switch (kind) {
|
||||
case Kind.SET_UP_RECOVERY: {
|
||||
switch (state) {
|
||||
case "set_up_recovery": {
|
||||
PosthogAnalytics.instance.trackEvent<InteractionEvent>({
|
||||
eventName: "Interaction",
|
||||
interactionType: "Pointer",
|
||||
@@ -225,7 +230,7 @@ export const showToast = (kind: Kind): void => {
|
||||
deviceListener.dismissEncryptionSetup();
|
||||
break;
|
||||
}
|
||||
case Kind.KEY_STORAGE_OUT_OF_SYNC: {
|
||||
case "key_storage_out_of_sync": {
|
||||
// Open the user settings dialog to the encryption tab and start the flow to reset encryption or change the recovery key
|
||||
const deviceListener = DeviceListener.sharedInstance();
|
||||
const needsCrossSigningReset = await deviceListener.keyStorageOutOfSyncNeedsCrossSigningReset(true);
|
||||
@@ -241,7 +246,7 @@ export const showToast = (kind: Kind): void => {
|
||||
defaultDispatcher.dispatch(payload);
|
||||
break;
|
||||
}
|
||||
case Kind.TURN_ON_KEY_STORAGE: {
|
||||
case "turn_on_key_storage": {
|
||||
PosthogAnalytics.instance.trackEvent<InteractionEvent>({
|
||||
eventName: "Interaction",
|
||||
interactionType: "Pointer",
|
||||
@@ -296,19 +301,19 @@ export const showToast = (kind: Kind): void => {
|
||||
|
||||
ToastStore.sharedInstance().addOrReplaceToast({
|
||||
key: TOAST_KEY,
|
||||
title: getTitle(kind),
|
||||
icon: getIcon(kind),
|
||||
title: getTitle(state),
|
||||
icon: getIcon(state),
|
||||
props: {
|
||||
description: getDescription(kind),
|
||||
primaryLabel: getSetupCaption(kind),
|
||||
PrimaryIcon: getPrimaryButtonIcon(kind),
|
||||
description: getDescription(state),
|
||||
primaryLabel: getSetupCaption(state),
|
||||
PrimaryIcon: getPrimaryButtonIcon(state),
|
||||
onPrimaryClick,
|
||||
secondaryLabel: getSecondaryButtonLabel(kind),
|
||||
secondaryLabel: getSecondaryButtonLabel(state),
|
||||
onSecondaryClick,
|
||||
overrideWidth: kind === Kind.KEY_STORAGE_OUT_OF_SYNC ? "366px" : undefined,
|
||||
overrideWidth: state === "key_storage_out_of_sync" ? "366px" : undefined,
|
||||
},
|
||||
component: GenericToast,
|
||||
priority: kind === Kind.VERIFY_THIS_SESSION ? 95 : 40,
|
||||
priority: state === "verify_this_session" ? 95 : 40,
|
||||
});
|
||||
};
|
||||
|
||||
|
||||
Reference in New Issue
Block a user