2022-08-31 06:33:37 +05:00
|
|
|
/*
|
|
|
|
|
This file is part of the Notesnook project (https://notesnook.com/)
|
|
|
|
|
|
|
|
|
|
Copyright (C) 2022 Streetwriters (Private) Limited
|
|
|
|
|
|
|
|
|
|
This program is free software: you can redistribute it and/or modify
|
|
|
|
|
it under the terms of the GNU General Public License as published by
|
|
|
|
|
the Free Software Foundation, either version 3 of the License, or
|
|
|
|
|
(at your option) any later version.
|
|
|
|
|
|
|
|
|
|
This program is distributed in the hope that it will be useful,
|
|
|
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
|
GNU General Public License for more details.
|
|
|
|
|
|
|
|
|
|
You should have received a copy of the GNU General Public License
|
|
|
|
|
along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
|
|
|
*/
|
2022-08-30 16:13:11 +05:00
|
|
|
|
2022-03-11 22:49:24 +05:00
|
|
|
import http from "../utils/http";
|
|
|
|
|
import constants from "../utils/constants";
|
|
|
|
|
import TokenManager from "./token-manager";
|
|
|
|
|
|
|
|
|
|
const ENDPOINTS = {
|
2022-03-21 10:23:35 +05:00
|
|
|
setup: "/mfa",
|
|
|
|
|
enable: "/mfa",
|
|
|
|
|
disable: "/mfa",
|
2022-03-15 15:31:11 +05:00
|
|
|
recoveryCodes: "/mfa/codes",
|
2022-08-31 06:33:37 +05:00
|
|
|
send: "/mfa/send"
|
2022-03-11 22:49:24 +05:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
class MFAManager {
|
|
|
|
|
/**
|
|
|
|
|
*
|
|
|
|
|
* @param {import("../database/storage").default} storage
|
|
|
|
|
* @param {import("../api/index").default} db
|
|
|
|
|
*/
|
|
|
|
|
constructor(storage, db) {
|
|
|
|
|
this._storage = storage;
|
|
|
|
|
this._db = db;
|
|
|
|
|
this.tokenManager = new TokenManager(storage);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
*
|
|
|
|
|
* @param {"app" | "sms" | "email"} type
|
|
|
|
|
* @param {string} phoneNumber
|
|
|
|
|
* @returns
|
|
|
|
|
*/
|
|
|
|
|
async setup(type, phoneNumber = undefined) {
|
|
|
|
|
const token = await this.tokenManager.getAccessToken();
|
|
|
|
|
if (!token) return;
|
|
|
|
|
return await http.post(
|
|
|
|
|
`${constants.AUTH_HOST}${ENDPOINTS.setup}`,
|
|
|
|
|
{
|
|
|
|
|
type,
|
2022-08-31 06:33:37 +05:00
|
|
|
phoneNumber
|
2022-03-11 22:49:24 +05:00
|
|
|
},
|
|
|
|
|
token
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
*
|
|
|
|
|
* @param {"app" | "sms" | "email"} type
|
|
|
|
|
* @param {string} code
|
|
|
|
|
* @returns
|
|
|
|
|
*/
|
|
|
|
|
async enable(type, code) {
|
2022-03-18 16:31:49 +05:00
|
|
|
return this._enable(type, code, false);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
*
|
|
|
|
|
* @param {"app" | "sms" | "email"} type
|
|
|
|
|
* @param {string} code
|
|
|
|
|
* @returns
|
|
|
|
|
*/
|
|
|
|
|
async enableFallback(type, code) {
|
2022-03-21 10:23:35 +05:00
|
|
|
return this._enable(type, code, true);
|
2022-03-18 16:31:49 +05:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
*
|
|
|
|
|
* @param {"app" | "sms" | "email"} type
|
|
|
|
|
* @param {string} code
|
|
|
|
|
* @param {boolean} isFallback
|
|
|
|
|
* @private
|
|
|
|
|
* @returns
|
|
|
|
|
*/
|
|
|
|
|
async _enable(type, code, isFallback) {
|
2022-03-11 22:49:24 +05:00
|
|
|
const token = await this.tokenManager.getAccessToken();
|
|
|
|
|
if (!token) return;
|
2022-03-21 10:23:35 +05:00
|
|
|
return await http.patch(
|
2022-03-11 22:49:24 +05:00
|
|
|
`${constants.AUTH_HOST}${ENDPOINTS.enable}`,
|
2022-03-18 16:31:49 +05:00
|
|
|
{ type, code, isFallback },
|
2022-03-11 22:49:24 +05:00
|
|
|
token
|
|
|
|
|
);
|
|
|
|
|
}
|
2022-03-15 15:31:11 +05:00
|
|
|
|
|
|
|
|
async disable() {
|
|
|
|
|
const token = await this.tokenManager.getAccessToken();
|
|
|
|
|
if (!token) return;
|
2022-03-21 10:23:35 +05:00
|
|
|
return await http.delete(
|
2022-03-15 15:31:11 +05:00
|
|
|
`${constants.AUTH_HOST}${ENDPOINTS.disable}`,
|
|
|
|
|
token
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
|
2022-03-16 00:22:08 +05:00
|
|
|
/**
|
|
|
|
|
* Generate new 2FA recovery codes or get count of valid recovery codes.
|
|
|
|
|
* @param {boolean} generate
|
|
|
|
|
* @returns
|
|
|
|
|
*/
|
2022-03-17 22:56:33 +05:00
|
|
|
async codes() {
|
2022-03-15 15:31:11 +05:00
|
|
|
const token = await this.tokenManager.getAccessToken();
|
|
|
|
|
if (!token) return;
|
|
|
|
|
return await http.get(
|
2022-03-17 22:56:33 +05:00
|
|
|
`${constants.AUTH_HOST}${ENDPOINTS.recoveryCodes}`,
|
2022-03-15 15:31:11 +05:00
|
|
|
token
|
|
|
|
|
);
|
|
|
|
|
}
|
2022-03-21 10:23:35 +05:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* @param {"sms" | "email"} method
|
|
|
|
|
* @param {string} phoneNumber
|
|
|
|
|
* @returns
|
|
|
|
|
*/
|
|
|
|
|
async sendCode(method, token) {
|
|
|
|
|
if (!token) throw new Error("Token is required to make this request.");
|
|
|
|
|
|
|
|
|
|
return await http.post(
|
|
|
|
|
`${constants.AUTH_HOST}${ENDPOINTS.send}`,
|
|
|
|
|
{
|
2022-08-31 06:33:37 +05:00
|
|
|
type: method
|
2022-03-21 10:23:35 +05:00
|
|
|
},
|
|
|
|
|
token
|
|
|
|
|
);
|
|
|
|
|
}
|
2022-03-11 22:49:24 +05:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
export default MFAManager;
|
