diff options
Diffstat (limited to 'src/state/auth.ts')
| -rw-r--r-- | src/state/auth.ts | 142 |
1 files changed, 142 insertions, 0 deletions
diff --git a/src/state/auth.ts b/src/state/auth.ts new file mode 100644 index 000000000..b49a11d90 --- /dev/null +++ b/src/state/auth.ts @@ -0,0 +1,142 @@ +import {Linking} from 'react-native' +import * as auth from '@adxp/auth' +import * as ucan from 'ucans' +import {InAppBrowser} from 'react-native-inappbrowser-reborn' +import {isWeb} from '../platform/detection' +import {makeAppUrl} from '../platform/urls' +import * as storage from './storage' +import * as env from '../env' + +const SCOPE = auth.writeCap( + 'did:key:z6MkfRiFMLzCxxnw6VMrHK8pPFt4QAHS3jX3XM87y9rta6kP', + 'did:example:microblog', +) + +export async function isAuthed(authStore: ReactNativeStore) { + return await authStore.hasUcan(SCOPE) +} + +export async function logout(authStore: ReactNativeStore) { + await authStore.reset() +} + +export async function parseUrlForUcan() { + if (isWeb) { + // @ts-ignore window is defined -prf + const fragment = window.location.hash + if (fragment.length < 1) { + return undefined + } + try { + const ucan = await auth.parseLobbyResponseHashFragment(fragment) + // @ts-ignore window is defined -prf + window.location.hash = '' + return ucan + } catch (err) { + return undefined + } + } else { + // TODO + } +} + +export async function requestAppUcan(authStore: ReactNativeStore) { + const did = await authStore.getDid() + const returnUrl = makeAppUrl() + const fragment = auth.requestAppUcanHashFragment(did, SCOPE, returnUrl) + const url = `${env.AUTH_LOBBY}#${fragment}` + + if (isWeb) { + // @ts-ignore window is defined -prf + window.location.href = url + return false + } + + if (await InAppBrowser.isAvailable()) { + const res = await InAppBrowser.openAuth(url, returnUrl, { + // iOS Properties + ephemeralWebSession: false, + // Android Properties + showTitle: false, + enableUrlBarHiding: true, + enableDefaultShare: false, + }) + if (res.type === 'success' && res.url) { + Linking.openURL(res.url) + } else { + console.error('Bad response', res) + return false + } + } else { + Linking.openURL(url) + } + return true +} + +export class ReactNativeStore extends auth.AuthStore { + private keypair: ucan.EdKeypair + private ucanStore: ucan.Store + + constructor(keypair: ucan.EdKeypair, ucanStore: ucan.Store) { + super() + this.keypair = keypair + this.ucanStore = ucanStore + } + + static async load(): Promise<ReactNativeStore> { + const keypair = await ReactNativeStore.loadOrCreateKeypair() + + const storedUcans = await ReactNativeStore.getStoredUcanStrs() + const ucanStore = await ucan.Store.fromTokens(storedUcans) + + return new ReactNativeStore(keypair, ucanStore) + } + + static async loadOrCreateKeypair(): Promise<ucan.EdKeypair> { + const storedKey = await storage.loadString('adxKey') + if (storedKey) { + return ucan.EdKeypair.fromSecretKey(storedKey) + } else { + // @TODO: again just stand in since no actual root keys + const keypair = await ucan.EdKeypair.create({exportable: true}) + storage.saveString('adxKey', await keypair.export()) + return keypair + } + } + + static async getStoredUcanStrs(): Promise<string[]> { + const storedStr = await storage.loadString('adxUcans') + if (!storedStr) { + return [] + } + return storedStr.split(',') + } + + static setStoredUcanStrs(ucans: string[]): void { + storage.saveString('adxUcans', ucans.join(',')) + } + + protected async getKeypair(): Promise<ucan.EdKeypair> { + return this.keypair + } + + async addUcan(token: ucan.Chained): Promise<void> { + this.ucanStore.add(token) + const storedUcans = await ReactNativeStore.getStoredUcanStrs() + ReactNativeStore.setStoredUcanStrs([...storedUcans, token.encoded()]) + } + + async getUcanStore(): Promise<ucan.Store> { + return this.ucanStore + } + + async clear(): Promise<void> { + storage.clear() + } + + async reset(): Promise<void> { + this.clear() + this.keypair = await ReactNativeStore.loadOrCreateKeypair() + this.ucanStore = await ucan.Store.fromTokens([]) + } +} |