cake_wallet/lib/view_model/set_up_2fa_viewmodel.dart

// ignore_for_file: prefer_final_fields

import 'package:cake_wallet/store/settings_store.dart';
import 'package:cake_wallet/utils/totp_utils.dart' as Utils;
import 'package:cake_wallet/view_model/auth_state.dart';
import 'package:flutter/widgets.dart';
import 'package:mobx/mobx.dart';
import 'package:shared_preferences/shared_preferences.dart';

import '../core/auth_service.dart';
import '../core/execution_state.dart';
import '../generated/i18n.dart';

part 'set_up_2fa_viewmodel.g.dart';

class Setup2FAViewModel = Setup2FAViewModelBase with _$Setup2FAViewModel;

abstract class Setup2FAViewModelBase with Store {
  final SettingsStore _settingsStore;
  final AuthService _authService;
  final SharedPreferences _sharedPreferences;

  Setup2FAViewModelBase(this._settingsStore, this._sharedPreferences, this._authService)
      : _failureCounter = 0,
        enteredOTPCode = '',
        state = InitialExecutionState() {
    _getRandomBase32SecretKey();
    reaction((_) => state, _saveLastAuthTime);
  }

  static const maxFailedTrials = 3;
  static const banTimeout = 180; // 3 minutes
  final banTimeoutKey = S.current.auth_store_ban_timeout;

  String get secretKey => _settingsStore.totpSecretKey;
  String get deviceName => _settingsStore.deviceName;
  String get totpVersionOneLink => _settingsStore.totpVersionOneLink;

  @observable
  ExecutionState state;

  @observable
  int _failureCounter;

  @observable
  String enteredOTPCode;

  @computed
  bool get useTOTP2FA => _settingsStore.useTOTP2FA;

  void _getRandomBase32SecretKey() {
    final randomBase32Key = Utils.generateRandomBase32SecretKey(16);
    _setBase32SecretKey(randomBase32Key);
  }

  @action
  void setUseTOTP2FA(bool value) {
    _settingsStore.useTOTP2FA = value;
  }

  @action
  void _setBase32SecretKey(String value) {
    if (_settingsStore.totpSecretKey == '') {
      _settingsStore.totpSecretKey = value;
    }
  }

  @action
  void clearBase32SecretKey() {
    _settingsStore.totpSecretKey = '';
  }

  Duration? banDuration() {
    final unbanTimestamp = _sharedPreferences.getInt(banTimeoutKey);

    if (unbanTimestamp == null) {
      return null;
    }

    final unbanTime = DateTime.fromMillisecondsSinceEpoch(unbanTimestamp);
    final now = DateTime.now();

    if (now.isAfter(unbanTime)) {
      return null;
    }

    return Duration(milliseconds: unbanTimestamp - now.millisecondsSinceEpoch);
  }

  Future<Duration> ban() async {
    final multiplier = _failureCounter - maxFailedTrials;
    final timeout = (multiplier * banTimeout) * 1000;
    final unbanTimestamp = DateTime.now().millisecondsSinceEpoch + timeout;
    await _sharedPreferences.setInt(banTimeoutKey, unbanTimestamp);

    return Duration(milliseconds: timeout);
  }

  @action
  Future<bool> totp2FAAuth(String otpText, bool isForSetup) async {
    state = InitialExecutionState();
    _failureCounter = _settingsStore.numberOfFailedTokenTrials;
    final _banDuration = banDuration();

    if (_banDuration != null) {
      state = AuthenticationBanned(
          error: S.current.auth_store_banned_for +
              '${_banDuration.inMinutes}' +
              S.current.auth_store_banned_minutes);
      return false;
    }

    final result = Utils.verify(
      secretKey: secretKey,
      otp: otpText,
    );

    isForSetup ? setUseTOTP2FA(result) : null;

    if (result) {
      return true;
    } else {
      final value = _settingsStore.numberOfFailedTokenTrials + 1;
      adjustTokenTrialNumber(value);
      print(value);
      if (_failureCounter >= maxFailedTrials) {
        final banDuration = await ban();
        state = AuthenticationBanned(
            error: S.current.auth_store_banned_for +
                '${banDuration.inMinutes}' +
                S.current.auth_store_banned_minutes);
        return false;
      }

      state = FailureState('Incorrect code');
      return false;
    }
  }

  @action
  void success() {
    WidgetsBinding.instance.addPostFrameCallback((timeStamp) {
      state = ExecutedSuccessfullyState();
      adjustTokenTrialNumber(0);
    });
  }

  @action
  void adjustTokenTrialNumber(int value) {
    _failureCounter = value;
    _settingsStore.numberOfFailedTokenTrials = value;
  }

  void _saveLastAuthTime(ExecutionState state) {
    if (state is ExecutedSuccessfullyState) {
      _authService.saveLastAuthTime();
    }
  }
}
Cw-263-TOTP-2FA-In-Security-Settings (#892) * CW-263-TOTP-2FA-in-security-settings WIP * Implement TOTP 2FA WIP * Implement TOTP 2FA Authentication * chore: Remove unneeded formatting * revert formatting * fixes * CW-263-TOTP-2FA-in-security-settings WIP * Setup TOTP Complete, left with Modify TOTF * CW-263-TOTP-2FA-in-security-settings * CW-263-TOTP-2FA-in-security-settings * CW-263-TOTP-2FA-in-security-settings * fix: Add copy-to-clipboard for qr secret key * fix: Translation * chore: Move strings into translation files * feat: End to end flow for TOTP * hotfix: Switch totp to use sha512 * Update strings; 8 digits and error explanation * fix: Totp 2fa implementation feedback * hotfix: same action for button and alert close * feat: App should show both normal and totp auths when totp is enabled * hotfix: prevent barrier from dismissing * fix: Changes requested during PR review * - Minor Enhancements - Minor UI fixes --------- Co-authored-by: Justin Ehrenhofer <justin.ehrenhofer@gmail.com> Co-authored-by: OmarHatem <omarh.ismail1@gmail.com> 2023-05-17 14:43:23 +00:00			`// ignore_for_file: prefer_final_fields`

			`import 'package:cake_wallet/store/settings_store.dart';`
			`import 'package:cake_wallet/utils/totp_utils.dart' as Utils;`
			`import 'package:cake_wallet/view_model/auth_state.dart';`
			`import 'package:flutter/widgets.dart';`
			`import 'package:mobx/mobx.dart';`
			`import 'package:shared_preferences/shared_preferences.dart';`

			`import '../core/auth_service.dart';`
			`import '../core/execution_state.dart';`
			`import '../generated/i18n.dart';`

			`part 'set_up_2fa_viewmodel.g.dart';`

			`class Setup2FAViewModel = Setup2FAViewModelBase with _$Setup2FAViewModel;`

			`abstract class Setup2FAViewModelBase with Store {`
			`final SettingsStore _settingsStore;`
			`final AuthService _authService;`
			`final SharedPreferences _sharedPreferences;`

			`Setup2FAViewModelBase(this._settingsStore, this._sharedPreferences, this._authService)`
			`: _failureCounter = 0,`
			`enteredOTPCode = '',`
			`state = InitialExecutionState() {`
			`_getRandomBase32SecretKey();`
			`reaction((_) => state, _saveLastAuthTime);`
			`}`

			`static const maxFailedTrials = 3;`
			`static const banTimeout = 180; // 3 minutes`
			`final banTimeoutKey = S.current.auth_store_ban_timeout;`

			`String get secretKey => _settingsStore.totpSecretKey;`
			`String get deviceName => _settingsStore.deviceName;`
			`String get totpVersionOneLink => _settingsStore.totpVersionOneLink;`

			`@observable`
			`ExecutionState state;`

			`@observable`
			`int _failureCounter;`

			`@observable`
			`String enteredOTPCode;`

			`@computed`
			`bool get useTOTP2FA => _settingsStore.useTOTP2FA;`

			`void _getRandomBase32SecretKey() {`
			`final randomBase32Key = Utils.generateRandomBase32SecretKey(16);`
			`_setBase32SecretKey(randomBase32Key);`
			`}`

			`@action`
			`void setUseTOTP2FA(bool value) {`
			`_settingsStore.useTOTP2FA = value;`
			`}`

			`@action`
			`void _setBase32SecretKey(String value) {`
			`if (_settingsStore.totpSecretKey == '') {`
			`_settingsStore.totpSecretKey = value;`
			`}`
			`}`

			`@action`
			`void clearBase32SecretKey() {`
			`_settingsStore.totpSecretKey = '';`
			`}`

			`Duration? banDuration() {`
			`final unbanTimestamp = _sharedPreferences.getInt(banTimeoutKey);`

			`if (unbanTimestamp == null) {`
			`return null;`
			`}`

			`final unbanTime = DateTime.fromMillisecondsSinceEpoch(unbanTimestamp);`
			`final now = DateTime.now();`

			`if (now.isAfter(unbanTime)) {`
			`return null;`
			`}`

			`return Duration(milliseconds: unbanTimestamp - now.millisecondsSinceEpoch);`
			`}`

			`Future<Duration> ban() async {`
			`final multiplier = _failureCounter - maxFailedTrials;`
			`final timeout = (multiplier * banTimeout) * 1000;`
			`final unbanTimestamp = DateTime.now().millisecondsSinceEpoch + timeout;`
			`await _sharedPreferences.setInt(banTimeoutKey, unbanTimestamp);`

			`return Duration(milliseconds: timeout);`
			`}`

			`@action`
			`Future<bool> totp2FAAuth(String otpText, bool isForSetup) async {`
			`state = InitialExecutionState();`
			`_failureCounter = _settingsStore.numberOfFailedTokenTrials;`
			`final _banDuration = banDuration();`

			`if (_banDuration != null) {`
			`state = AuthenticationBanned(`
			`error: S.current.auth_store_banned_for +`
			`'${_banDuration.inMinutes}' +`
			`S.current.auth_store_banned_minutes);`
			`return false;`
			`}`

			`final result = Utils.verify(`
			`secretKey: secretKey,`
			`otp: otpText,`
			`);`

			`isForSetup ? setUseTOTP2FA(result) : null;`

			`if (result) {`
			`return true;`
			`} else {`
			`final value = _settingsStore.numberOfFailedTokenTrials + 1;`
			`adjustTokenTrialNumber(value);`
			`print(value);`
			`if (_failureCounter >= maxFailedTrials) {`
			`final banDuration = await ban();`
			`state = AuthenticationBanned(`
			`error: S.current.auth_store_banned_for +`
			`'${banDuration.inMinutes}' +`
			`S.current.auth_store_banned_minutes);`
			`return false;`
			`}`

			`state = FailureState('Incorrect code');`
			`return false;`
			`}`
			`}`

			`@action`
			`void success() {`
			`WidgetsBinding.instance.addPostFrameCallback((timeStamp) {`
			`state = ExecutedSuccessfullyState();`
			`adjustTokenTrialNumber(0);`
			`});`
			`}`

			`@action`
			`void adjustTokenTrialNumber(int value) {`
			`_failureCounter = value;`
			`_settingsStore.numberOfFailedTokenTrials = value;`
			`}`

			`void _saveLastAuthTime(ExecutionState state) {`
			`if (state is ExecutedSuccessfullyState) {`
			`_authService.saveLastAuthTime();`
			`}`
			`}`
			`}`