zio/bsky-app
2
0
Fork 0
Code Pull requests Releases Packages Activity

Polyfills for native crypto

Browse source
This commit is contained in:
Paul Frazee 2022-06-15 17:40:18 -05:00
parent b2dd8d4f44
commit 77b938845a
15 changed files with 243 additions and 81 deletions
Download patch file Download diff file Expand all files Collapse all files

3
src/App.native.tsx
View file

@ -1,4 +1,5 @@
import React, {useState, useEffect} from 'react'
import {whenWebCrypto} from './platform/polyfills.native'
import {RootStore, setupState, RootStoreProvider} from './state'
import * as Routes from './routes'
@ -7,7 +8,7 @@ function App() {
// init
useEffect(() => {
setupState().then(setRootStore)
whenWebCrypto.then(() => setupState()).then(setRootStore)
}, [])
// show nothing prior to init

68
src/api/auth.ts
View file

@ -1,68 +0,0 @@
import {Linking} from 'react-native'
import * as auth from '@adxp/auth'
import {InAppBrowser} from 'react-native-inappbrowser-reborn'
import {isWeb} from '../platform/detection'
import {makeAppUrl} from '../platform/urls'
import * as env from '../env'
const SCOPE = auth.writeCap(
'did:key:z6MkfRiFMLzCxxnw6VMrHK8pPFt4QAHS3jX3XM87y9rta6kP',
'did:example:microblog',
)
export async function isAuthed(authStore: auth.BrowserStore) {
return await authStore.hasUcan(SCOPE)
}
export async function logout(authStore: auth.BrowserStore) {
await authStore.reset()
}
export async function parseUrlForUcan() {
// @ts-ignore window is defined -prf
const fragment = window.location.hash
if (fragment.length < 1) {
return undefined
}
try {
const ucan = await auth.parseLobbyResponseHashFragment(fragment)
// @ts-ignore window is defined -prf
window.location.hash = ''
return ucan
} catch (err) {
return undefined
}
}
export async function requestAppUcan(authStore: auth.BrowserStore) {
const did = await authStore.getDid()
const returnUrl = makeAppUrl()
const fragment = auth.requestAppUcanHashFragment(did, SCOPE, returnUrl)
const url = `${env.AUTH_LOBBY}#${fragment}`
if (isWeb) {
// @ts-ignore window is defined -prf
window.location.href = url
return false
}
if (await InAppBrowser.isAvailable()) {
const res = await InAppBrowser.openAuth(url, returnUrl, {
// iOS Properties
ephemeralWebSession: false,
// Android Properties
showTitle: false,
enableUrlBarHiding: true,
enableDefaultShare: false,
})
if (res.type === 'success' && res.url) {
Linking.openURL(res.url)
} else {
console.error('Bad response', res)
return false
}
} else {
Linking.openURL(url)
}
return true
}

6
src/env.ts
View file

@ -1,5 +1,7 @@
if (typeof process.env.REACT_APP_AUTH_LOBBY !== 'string') {
import {REACT_APP_AUTH_LOBBY} from '@env'
if (typeof REACT_APP_AUTH_LOBBY !== 'string') {
throw new Error('ENV: No auth lobby provided')
}
export const AUTH_LOBBY = process.env.REACT_APP_AUTH_LOBBY
export const AUTH_LOBBY = REACT_APP_AUTH_LOBBY

21
src/platform/polyfills.native.ts Normal file
View file

@ -0,0 +1,21 @@
import {generateSecureRandom} from 'react-native-securerandom'
import crypto from 'msrcrypto'
import '@zxing/text-encoding' // TextEncoder / TextDecoder
export const whenWebCrypto = new Promise(async (resolve, reject) => {
try {
const bytes = await generateSecureRandom(48)
crypto.initPrng(Array.from(bytes))
// @ts-ignore global.window exists -prf
if (!global.window.crypto) {
// @ts-ignore global.window exists -prf
global.window.crypto = crypto
}
resolve(true)
} catch (e: any) {
reject(e)
}
})
export const webcrypto = crypto

1
src/platform/polyfills.web.ts Normal file
View file

@ -0,0 +1 @@
// do nothing

142
src/state/auth.ts Normal file
View file

@ -0,0 +1,142 @@
import {Linking} from 'react-native'
import * as auth from '@adxp/auth'
import * as ucan from 'ucans'
import {InAppBrowser} from 'react-native-inappbrowser-reborn'
import {isWeb} from '../platform/detection'
import {makeAppUrl} from '../platform/urls'
import * as storage from './storage'
import * as env from '../env'
const SCOPE = auth.writeCap(
'did:key:z6MkfRiFMLzCxxnw6VMrHK8pPFt4QAHS3jX3XM87y9rta6kP',
'did:example:microblog',
)
export async function isAuthed(authStore: ReactNativeStore) {
return await authStore.hasUcan(SCOPE)
}
export async function logout(authStore: ReactNativeStore) {
await authStore.reset()
}
export async function parseUrlForUcan() {
if (isWeb) {
// @ts-ignore window is defined -prf
const fragment = window.location.hash
if (fragment.length < 1) {
return undefined
}
try {
const ucan = await auth.parseLobbyResponseHashFragment(fragment)
// @ts-ignore window is defined -prf
window.location.hash = ''
return ucan
} catch (err) {
return undefined
}
} else {
// TODO
}
}
export async function requestAppUcan(authStore: ReactNativeStore) {
const did = await authStore.getDid()
const returnUrl = makeAppUrl()
const fragment = auth.requestAppUcanHashFragment(did, SCOPE, returnUrl)
const url = `${env.AUTH_LOBBY}#${fragment}`
if (isWeb) {
// @ts-ignore window is defined -prf
window.location.href = url
return false
}
if (await InAppBrowser.isAvailable()) {
const res = await InAppBrowser.openAuth(url, returnUrl, {
// iOS Properties
ephemeralWebSession: false,
// Android Properties
showTitle: false,
enableUrlBarHiding: true,
enableDefaultShare: false,
})
if (res.type === 'success' && res.url) {
Linking.openURL(res.url)
} else {
console.error('Bad response', res)
return false
}
} else {
Linking.openURL(url)
}
return true
}
export class ReactNativeStore extends auth.AuthStore {
private keypair: ucan.EdKeypair
private ucanStore: ucan.Store
constructor(keypair: ucan.EdKeypair, ucanStore: ucan.Store) {
super()
this.keypair = keypair
this.ucanStore = ucanStore
}
static async load(): Promise<ReactNativeStore> {
const keypair = await ReactNativeStore.loadOrCreateKeypair()
const storedUcans = await ReactNativeStore.getStoredUcanStrs()
const ucanStore = await ucan.Store.fromTokens(storedUcans)
return new ReactNativeStore(keypair, ucanStore)
}
static async loadOrCreateKeypair(): Promise<ucan.EdKeypair> {
const storedKey = await storage.loadString('adxKey')
if (storedKey) {
return ucan.EdKeypair.fromSecretKey(storedKey)
} else {
// @TODO: again just stand in since no actual root keys
const keypair = await ucan.EdKeypair.create({exportable: true})
storage.saveString('adxKey', await keypair.export())
return keypair
}
}
static async getStoredUcanStrs(): Promise<string[]> {
const storedStr = await storage.loadString('adxUcans')
if (!storedStr) {
return []
}
return storedStr.split(',')
}
static setStoredUcanStrs(ucans: string[]): void {
storage.saveString('adxUcans', ucans.join(','))
}
protected async getKeypair(): Promise<ucan.EdKeypair> {
return this.keypair
}
async addUcan(token: ucan.Chained): Promise<void> {
this.ucanStore.add(token)
const storedUcans = await ReactNativeStore.getStoredUcanStrs()
ReactNativeStore.setStoredUcanStrs([...storedUcans, token.encoded()])
}
async getUcanStore(): Promise<ucan.Store> {
return this.ucanStore
}
async clear(): Promise<void> {
storage.clear()
}
async reset(): Promise<void> {
this.clear()
this.keypair = await ReactNativeStore.loadOrCreateKeypair()
this.ucanStore = await ucan.Store.fromTokens([])
}
}

6
src/state/env.ts
View file

@ -4,17 +4,17 @@
*/
import {getEnv, IStateTreeNode} from 'mobx-state-tree'
import * as auth from '@adxp/auth'
import {ReactNativeStore} from './auth'
import {API} from '../api'
export class Environment {
api = new API()
authStore?: auth.BrowserStore
authStore?: ReactNativeStore
constructor() {}
async setup() {
this.authStore = await auth.BrowserStore.load()
this.authStore = await ReactNativeStore.load()
}
}

2
src/state/index.ts
View file

@ -6,7 +6,7 @@ import {
} from './models/root-store'
import {Environment} from './env'
import * as storage from './storage'
import * as auth from '../api/auth'
import * as auth from './auth'
const ROOT_STATE_STORAGE_KEY = 'root'

2
src/state/models/session.ts
View file

@ -1,6 +1,6 @@
import {Instance, SnapshotOut, types, flow} from 'mobx-state-tree'
// import {UserConfig} from '../../api'
import * as auth from '../../api/auth'
import * as auth from '../auth'
import {withEnvironment} from '../env'
export const SessionModel = types