2023-05-17 14:43:23 +00:00
|
|
|
// ignore_for_file: prefer_final_fields
|
|
|
|
|
2023-08-04 13:49:26 +00:00
|
|
|
import 'package:cake_wallet/entities/cake_2fa_preset_options.dart';
|
2023-05-17 14:43:23 +00:00
|
|
|
import 'package:cake_wallet/store/settings_store.dart';
|
|
|
|
import 'package:cake_wallet/utils/totp_utils.dart' as Utils;
|
|
|
|
import 'package:cake_wallet/view_model/auth_state.dart';
|
|
|
|
import 'package:flutter/widgets.dart';
|
|
|
|
import 'package:mobx/mobx.dart';
|
|
|
|
import 'package:shared_preferences/shared_preferences.dart';
|
|
|
|
|
|
|
|
import '../core/auth_service.dart';
|
|
|
|
import '../core/execution_state.dart';
|
|
|
|
import '../generated/i18n.dart';
|
|
|
|
|
|
|
|
part 'set_up_2fa_viewmodel.g.dart';
|
|
|
|
|
|
|
|
class Setup2FAViewModel = Setup2FAViewModelBase with _$Setup2FAViewModel;
|
|
|
|
|
|
|
|
abstract class Setup2FAViewModelBase with Store {
|
|
|
|
final SettingsStore _settingsStore;
|
|
|
|
final AuthService _authService;
|
|
|
|
final SharedPreferences _sharedPreferences;
|
|
|
|
|
|
|
|
Setup2FAViewModelBase(this._settingsStore, this._sharedPreferences, this._authService)
|
|
|
|
: _failureCounter = 0,
|
|
|
|
enteredOTPCode = '',
|
2023-08-04 13:49:26 +00:00
|
|
|
unhighlightTabs = false,
|
|
|
|
selected2FASettings = ObservableList<VerboseControlSettings>(),
|
2023-05-17 14:43:23 +00:00
|
|
|
state = InitialExecutionState() {
|
2023-08-04 13:49:26 +00:00
|
|
|
selectCakePreset(selectedCake2FAPreset);
|
2023-05-17 14:43:23 +00:00
|
|
|
reaction((_) => state, _saveLastAuthTime);
|
|
|
|
}
|
|
|
|
|
|
|
|
static const maxFailedTrials = 3;
|
|
|
|
static const banTimeout = 180; // 3 minutes
|
|
|
|
final banTimeoutKey = S.current.auth_store_ban_timeout;
|
|
|
|
|
|
|
|
String get deviceName => _settingsStore.deviceName;
|
2023-09-28 18:40:15 +00:00
|
|
|
|
|
|
|
@computed
|
|
|
|
String get totpSecretKey => _settingsStore.totpSecretKey;
|
|
|
|
|
|
|
|
String totpVersionOneLink = '';
|
2023-05-17 14:43:23 +00:00
|
|
|
|
|
|
|
@observable
|
|
|
|
ExecutionState state;
|
|
|
|
|
|
|
|
@observable
|
|
|
|
int _failureCounter;
|
|
|
|
|
|
|
|
@observable
|
|
|
|
String enteredOTPCode;
|
|
|
|
|
|
|
|
@computed
|
|
|
|
bool get useTOTP2FA => _settingsStore.useTOTP2FA;
|
|
|
|
|
2023-08-04 13:49:26 +00:00
|
|
|
@computed
|
|
|
|
bool get shouldRequireTOTP2FAForAccessingWallet =>
|
|
|
|
_settingsStore.shouldRequireTOTP2FAForAccessingWallet;
|
|
|
|
|
|
|
|
@computed
|
|
|
|
bool get shouldRequireTOTP2FAForSendsToContact =>
|
|
|
|
_settingsStore.shouldRequireTOTP2FAForSendsToContact;
|
|
|
|
|
|
|
|
@computed
|
|
|
|
bool get shouldRequireTOTP2FAForSendsToNonContact =>
|
|
|
|
_settingsStore.shouldRequireTOTP2FAForSendsToNonContact;
|
|
|
|
|
|
|
|
@computed
|
|
|
|
bool get shouldRequireTOTP2FAForSendsToInternalWallets =>
|
|
|
|
_settingsStore.shouldRequireTOTP2FAForSendsToInternalWallets;
|
|
|
|
|
|
|
|
@computed
|
|
|
|
bool get shouldRequireTOTP2FAForExchangesToInternalWallets =>
|
|
|
|
_settingsStore.shouldRequireTOTP2FAForExchangesToInternalWallets;
|
|
|
|
|
|
|
|
@computed
|
|
|
|
bool get shouldRequireTOTP2FAForAddingContacts =>
|
|
|
|
_settingsStore.shouldRequireTOTP2FAForAddingContacts;
|
|
|
|
|
|
|
|
@computed
|
|
|
|
bool get shouldRequireTOTP2FAForCreatingNewWallets =>
|
|
|
|
_settingsStore.shouldRequireTOTP2FAForCreatingNewWallets;
|
|
|
|
|
|
|
|
@computed
|
|
|
|
bool get shouldRequireTOTP2FAForAllSecurityAndBackupSettings =>
|
|
|
|
_settingsStore.shouldRequireTOTP2FAForAllSecurityAndBackupSettings;
|
|
|
|
|
2023-09-28 18:40:15 +00:00
|
|
|
@action
|
|
|
|
void generateSecretKey() {
|
|
|
|
final _totpSecretKey = Utils.generateRandomBase32SecretKey(16);
|
|
|
|
|
|
|
|
totpVersionOneLink =
|
|
|
|
'otpauth://totp/Cake%20Wallet:$deviceName?secret=$_totpSecretKey&issuer=Cake%20Wallet&algorithm=SHA512&digits=8&period=30';
|
|
|
|
|
|
|
|
setTOTPSecretKey(_totpSecretKey);
|
2023-05-17 14:43:23 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
@action
|
|
|
|
void setUseTOTP2FA(bool value) {
|
|
|
|
_settingsStore.useTOTP2FA = value;
|
|
|
|
}
|
|
|
|
|
|
|
|
@action
|
2023-09-28 18:40:15 +00:00
|
|
|
void setTOTPSecretKey(String value) {
|
2023-08-22 23:05:48 +00:00
|
|
|
_settingsStore.totpSecretKey = value;
|
2023-05-17 14:43:23 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
Duration? banDuration() {
|
|
|
|
final unbanTimestamp = _sharedPreferences.getInt(banTimeoutKey);
|
|
|
|
|
|
|
|
if (unbanTimestamp == null) {
|
|
|
|
return null;
|
|
|
|
}
|
|
|
|
|
|
|
|
final unbanTime = DateTime.fromMillisecondsSinceEpoch(unbanTimestamp);
|
|
|
|
final now = DateTime.now();
|
|
|
|
|
|
|
|
if (now.isAfter(unbanTime)) {
|
|
|
|
return null;
|
|
|
|
}
|
|
|
|
|
|
|
|
return Duration(milliseconds: unbanTimestamp - now.millisecondsSinceEpoch);
|
|
|
|
}
|
|
|
|
|
|
|
|
Future<Duration> ban() async {
|
|
|
|
final multiplier = _failureCounter - maxFailedTrials;
|
|
|
|
final timeout = (multiplier * banTimeout) * 1000;
|
|
|
|
final unbanTimestamp = DateTime.now().millisecondsSinceEpoch + timeout;
|
|
|
|
await _sharedPreferences.setInt(banTimeoutKey, unbanTimestamp);
|
|
|
|
|
|
|
|
return Duration(milliseconds: timeout);
|
|
|
|
}
|
|
|
|
|
|
|
|
@action
|
|
|
|
Future<bool> totp2FAAuth(String otpText, bool isForSetup) async {
|
|
|
|
state = InitialExecutionState();
|
|
|
|
_failureCounter = _settingsStore.numberOfFailedTokenTrials;
|
|
|
|
final _banDuration = banDuration();
|
|
|
|
|
|
|
|
if (_banDuration != null) {
|
|
|
|
state = AuthenticationBanned(
|
|
|
|
error: S.current.auth_store_banned_for +
|
|
|
|
'${_banDuration.inMinutes}' +
|
|
|
|
S.current.auth_store_banned_minutes);
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
final result = Utils.verify(
|
2023-09-28 18:40:15 +00:00
|
|
|
secretKey: totpSecretKey,
|
2023-05-17 14:43:23 +00:00
|
|
|
otp: otpText,
|
|
|
|
);
|
|
|
|
|
|
|
|
isForSetup ? setUseTOTP2FA(result) : null;
|
|
|
|
|
|
|
|
if (result) {
|
|
|
|
return true;
|
|
|
|
} else {
|
|
|
|
final value = _settingsStore.numberOfFailedTokenTrials + 1;
|
|
|
|
adjustTokenTrialNumber(value);
|
|
|
|
if (_failureCounter >= maxFailedTrials) {
|
|
|
|
final banDuration = await ban();
|
|
|
|
state = AuthenticationBanned(
|
|
|
|
error: S.current.auth_store_banned_for +
|
|
|
|
'${banDuration.inMinutes}' +
|
|
|
|
S.current.auth_store_banned_minutes);
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
state = FailureState('Incorrect code');
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
@action
|
|
|
|
void success() {
|
|
|
|
WidgetsBinding.instance.addPostFrameCallback((timeStamp) {
|
|
|
|
state = ExecutedSuccessfullyState();
|
|
|
|
adjustTokenTrialNumber(0);
|
|
|
|
});
|
|
|
|
}
|
|
|
|
|
|
|
|
@action
|
|
|
|
void adjustTokenTrialNumber(int value) {
|
|
|
|
_failureCounter = value;
|
|
|
|
_settingsStore.numberOfFailedTokenTrials = value;
|
|
|
|
}
|
|
|
|
|
|
|
|
void _saveLastAuthTime(ExecutionState state) {
|
|
|
|
if (state is ExecutedSuccessfullyState) {
|
|
|
|
_authService.saveLastAuthTime();
|
|
|
|
}
|
|
|
|
}
|
2023-08-04 13:49:26 +00:00
|
|
|
|
|
|
|
@computed
|
|
|
|
Cake2FAPresetsOptions get selectedCake2FAPreset => _settingsStore.selectedCake2FAPreset;
|
|
|
|
|
|
|
|
@observable
|
|
|
|
bool unhighlightTabs = false;
|
|
|
|
|
|
|
|
@observable
|
|
|
|
ObservableList<VerboseControlSettings> selected2FASettings;
|
|
|
|
|
|
|
|
//! The code here works, but can be improved
|
|
|
|
//! Still trying out various ways to improve it
|
|
|
|
@action
|
|
|
|
void selectCakePreset(Cake2FAPresetsOptions cake2FAPreset) {
|
|
|
|
// The tabs are ordered in the format [Narrow || Normal || Verbose]
|
|
|
|
// Where Narrow = 0, Normal = 1 and Verbose = 2
|
|
|
|
switch (cake2FAPreset) {
|
|
|
|
case Cake2FAPresetsOptions.narrow:
|
|
|
|
activateCake2FANarrowPreset();
|
|
|
|
break;
|
|
|
|
case Cake2FAPresetsOptions.normal:
|
|
|
|
activateCake2FANormalPreset();
|
|
|
|
break;
|
|
|
|
case Cake2FAPresetsOptions.aggressive:
|
|
|
|
activateCake2FAAggressivePreset();
|
|
|
|
break;
|
|
|
|
default:
|
|
|
|
activateCake2FANormalPreset();
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
@action
|
|
|
|
void checkIfTheCurrentSettingMatchesAnyOfThePresets() {
|
|
|
|
final hasNormalPreset = checkIfTheNormalPresetIsPresent();
|
|
|
|
final hasNarrowPreset = checkIfTheNarrowPresetIsPresent();
|
|
|
|
final hasVerbosePreset = checkIfTheVerbosePresetIsPresent();
|
|
|
|
|
|
|
|
if (hasNormalPreset || hasNarrowPreset || hasVerbosePreset) {
|
|
|
|
unhighlightTabs = false;
|
|
|
|
} else {
|
|
|
|
unhighlightTabs = true;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
@action
|
|
|
|
bool checkIfTheNormalPresetIsPresent() {
|
|
|
|
final hasContacts = selected2FASettings.contains(VerboseControlSettings.sendsToContacts);
|
|
|
|
final hasNonContacts = selected2FASettings.contains(VerboseControlSettings.sendsToNonContacts);
|
|
|
|
final hasSecurityAndBackup =
|
|
|
|
selected2FASettings.contains(VerboseControlSettings.securityAndBackupSettings);
|
|
|
|
|
|
|
|
final hasSendToInternalWallet =
|
|
|
|
selected2FASettings.contains(VerboseControlSettings.sendsToInternalWallets);
|
|
|
|
|
|
|
|
final hasExchangesToInternalWallet =
|
|
|
|
selected2FASettings.contains(VerboseControlSettings.exchangesToInternalWallets);
|
|
|
|
|
|
|
|
bool isOnlyNormalPresetControlsPresent = selected2FASettings.length == 5;
|
|
|
|
|
|
|
|
return (hasContacts &&
|
|
|
|
hasNonContacts &&
|
|
|
|
hasSecurityAndBackup &&
|
|
|
|
hasSendToInternalWallet &&
|
|
|
|
hasExchangesToInternalWallet &&
|
|
|
|
isOnlyNormalPresetControlsPresent);
|
|
|
|
}
|
|
|
|
|
|
|
|
@action
|
|
|
|
bool checkIfTheVerbosePresetIsPresent() {
|
|
|
|
final hasAccessWallets = selected2FASettings.contains(VerboseControlSettings.accessWallet);
|
|
|
|
final hasSecurityAndBackup =
|
|
|
|
selected2FASettings.contains(VerboseControlSettings.securityAndBackupSettings);
|
|
|
|
|
|
|
|
bool isOnlyVerbosePresetControlsPresent = selected2FASettings.length == 2;
|
|
|
|
|
|
|
|
return (hasAccessWallets && hasSecurityAndBackup && isOnlyVerbosePresetControlsPresent);
|
|
|
|
}
|
|
|
|
|
|
|
|
@action
|
|
|
|
bool checkIfTheNarrowPresetIsPresent() {
|
|
|
|
final hasNonContacts = selected2FASettings.contains(VerboseControlSettings.sendsToNonContacts);
|
|
|
|
final hasAddContacts = selected2FASettings.contains(VerboseControlSettings.addingContacts);
|
|
|
|
final hasCreateNewWallet =
|
|
|
|
selected2FASettings.contains(VerboseControlSettings.creatingNewWallets);
|
|
|
|
final hasSecurityAndBackup =
|
|
|
|
selected2FASettings.contains(VerboseControlSettings.securityAndBackupSettings);
|
|
|
|
|
|
|
|
bool isOnlyNarrowPresetControlsPresent = selected2FASettings.length == 4;
|
|
|
|
|
|
|
|
return (hasNonContacts &&
|
|
|
|
hasAddContacts &&
|
|
|
|
hasCreateNewWallet &&
|
|
|
|
hasSecurityAndBackup &&
|
|
|
|
isOnlyNarrowPresetControlsPresent);
|
|
|
|
}
|
|
|
|
|
|
|
|
@action
|
|
|
|
void activateCake2FANormalPreset() {
|
|
|
|
_settingsStore.selectedCake2FAPreset = Cake2FAPresetsOptions.normal;
|
|
|
|
setAllControlsToFalse();
|
|
|
|
switchShouldRequireTOTP2FAForSendsToNonContact(true);
|
|
|
|
switchShouldRequireTOTP2FAForSendsToContact(true);
|
|
|
|
switchShouldRequireTOTP2FAForSendsToInternalWallets(true);
|
|
|
|
switchShouldRequireTOTP2FAForExchangesToInternalWallets(true);
|
|
|
|
switchShouldRequireTOTP2FAForAllSecurityAndBackupSettings(true);
|
|
|
|
}
|
|
|
|
|
|
|
|
@action
|
|
|
|
void activateCake2FANarrowPreset() {
|
|
|
|
_settingsStore.selectedCake2FAPreset = Cake2FAPresetsOptions.narrow;
|
|
|
|
setAllControlsToFalse();
|
|
|
|
switchShouldRequireTOTP2FAForSendsToNonContact(true);
|
|
|
|
switchShouldRequireTOTP2FAForAddingContacts(true);
|
|
|
|
switchShouldRequireTOTP2FAForCreatingNewWallet(true);
|
|
|
|
switchShouldRequireTOTP2FAForAllSecurityAndBackupSettings(true);
|
|
|
|
}
|
|
|
|
|
|
|
|
@action
|
|
|
|
void activateCake2FAAggressivePreset() {
|
|
|
|
_settingsStore.selectedCake2FAPreset = Cake2FAPresetsOptions.aggressive;
|
|
|
|
setAllControlsToFalse();
|
|
|
|
switchShouldRequireTOTP2FAForAccessingWallet(true);
|
|
|
|
switchShouldRequireTOTP2FAForAllSecurityAndBackupSettings(true);
|
|
|
|
}
|
|
|
|
|
|
|
|
@action
|
|
|
|
void setAllControlsToFalse() {
|
|
|
|
switchShouldRequireTOTP2FAForAccessingWallet(false);
|
|
|
|
switchShouldRequireTOTP2FAForSendsToContact(false);
|
|
|
|
switchShouldRequireTOTP2FAForSendsToNonContact(false);
|
|
|
|
switchShouldRequireTOTP2FAForAddingContacts(false);
|
|
|
|
switchShouldRequireTOTP2FAForCreatingNewWallet(false);
|
|
|
|
switchShouldRequireTOTP2FAForExchangesToInternalWallets(false);
|
|
|
|
switchShouldRequireTOTP2FAForSendsToInternalWallets(false);
|
|
|
|
switchShouldRequireTOTP2FAForAllSecurityAndBackupSettings(false);
|
|
|
|
selected2FASettings.clear();
|
|
|
|
unhighlightTabs = false;
|
|
|
|
}
|
|
|
|
|
|
|
|
@action
|
|
|
|
void switchShouldRequireTOTP2FAForAccessingWallet(bool value) {
|
|
|
|
_settingsStore.shouldRequireTOTP2FAForAccessingWallet = value;
|
|
|
|
if (value) {
|
|
|
|
selected2FASettings.add(VerboseControlSettings.accessWallet);
|
|
|
|
} else {
|
|
|
|
selected2FASettings.remove(VerboseControlSettings.accessWallet);
|
|
|
|
}
|
|
|
|
checkIfTheCurrentSettingMatchesAnyOfThePresets();
|
|
|
|
}
|
|
|
|
|
|
|
|
@action
|
|
|
|
void switchShouldRequireTOTP2FAForSendsToContact(bool value) {
|
|
|
|
_settingsStore.shouldRequireTOTP2FAForSendsToContact = value;
|
|
|
|
if (value) {
|
|
|
|
selected2FASettings.add(VerboseControlSettings.sendsToContacts);
|
|
|
|
} else {
|
|
|
|
selected2FASettings.remove(VerboseControlSettings.sendsToContacts);
|
|
|
|
}
|
|
|
|
checkIfTheCurrentSettingMatchesAnyOfThePresets();
|
|
|
|
}
|
|
|
|
|
|
|
|
@action
|
|
|
|
void switchShouldRequireTOTP2FAForSendsToNonContact(bool value) {
|
|
|
|
_settingsStore.shouldRequireTOTP2FAForSendsToNonContact = value;
|
|
|
|
if (value) {
|
|
|
|
selected2FASettings.add(VerboseControlSettings.sendsToNonContacts);
|
|
|
|
} else {
|
|
|
|
selected2FASettings.remove(VerboseControlSettings.sendsToNonContacts);
|
|
|
|
}
|
|
|
|
checkIfTheCurrentSettingMatchesAnyOfThePresets();
|
|
|
|
}
|
|
|
|
|
|
|
|
@action
|
|
|
|
void switchShouldRequireTOTP2FAForSendsToInternalWallets(bool value) {
|
|
|
|
_settingsStore.shouldRequireTOTP2FAForSendsToInternalWallets = value;
|
|
|
|
if (value) {
|
|
|
|
selected2FASettings.add(VerboseControlSettings.sendsToInternalWallets);
|
|
|
|
} else {
|
|
|
|
selected2FASettings.remove(VerboseControlSettings.sendsToInternalWallets);
|
|
|
|
}
|
|
|
|
checkIfTheCurrentSettingMatchesAnyOfThePresets();
|
|
|
|
}
|
|
|
|
|
|
|
|
@action
|
|
|
|
void switchShouldRequireTOTP2FAForExchangesToInternalWallets(bool value) {
|
|
|
|
_settingsStore.shouldRequireTOTP2FAForExchangesToInternalWallets = value;
|
|
|
|
if (value) {
|
|
|
|
selected2FASettings.add(VerboseControlSettings.exchangesToInternalWallets);
|
|
|
|
} else {
|
|
|
|
selected2FASettings.remove(VerboseControlSettings.exchangesToInternalWallets);
|
|
|
|
}
|
|
|
|
checkIfTheCurrentSettingMatchesAnyOfThePresets();
|
|
|
|
}
|
|
|
|
|
|
|
|
@action
|
|
|
|
void switchShouldRequireTOTP2FAForAddingContacts(bool value) {
|
|
|
|
_settingsStore.shouldRequireTOTP2FAForAddingContacts = value;
|
|
|
|
if (value)
|
|
|
|
selected2FASettings.add(VerboseControlSettings.addingContacts);
|
|
|
|
else {
|
|
|
|
selected2FASettings.remove(VerboseControlSettings.addingContacts);
|
|
|
|
}
|
|
|
|
checkIfTheCurrentSettingMatchesAnyOfThePresets();
|
|
|
|
}
|
|
|
|
|
|
|
|
@action
|
|
|
|
void switchShouldRequireTOTP2FAForCreatingNewWallet(bool value) {
|
|
|
|
_settingsStore.shouldRequireTOTP2FAForCreatingNewWallets = value;
|
|
|
|
if (value) {
|
|
|
|
selected2FASettings.add(VerboseControlSettings.creatingNewWallets);
|
|
|
|
} else {
|
|
|
|
selected2FASettings.remove(VerboseControlSettings.creatingNewWallets);
|
|
|
|
}
|
|
|
|
checkIfTheCurrentSettingMatchesAnyOfThePresets();
|
|
|
|
}
|
|
|
|
|
|
|
|
@action
|
|
|
|
void switchShouldRequireTOTP2FAForAllSecurityAndBackupSettings(bool value) {
|
|
|
|
_settingsStore.shouldRequireTOTP2FAForAllSecurityAndBackupSettings = value;
|
|
|
|
if (value)
|
|
|
|
selected2FASettings.add(VerboseControlSettings.securityAndBackupSettings);
|
|
|
|
else {
|
|
|
|
selected2FASettings.remove(VerboseControlSettings.securityAndBackupSettings);
|
|
|
|
}
|
|
|
|
checkIfTheCurrentSettingMatchesAnyOfThePresets();
|
|
|
|
}
|
2023-05-17 14:43:23 +00:00
|
|
|
}
|