package org.mian.gitnex.activities; import android.content.Intent; import android.os.Bundle; import android.view.View; import android.widget.ArrayAdapter; import android.widget.AutoCompleteTextView; import android.widget.Button; import android.widget.EditText; import android.widget.RadioGroup; import androidx.annotation.NonNull; import androidx.appcompat.app.AlertDialog; import org.gitnex.tea4j.v2.models.AccessToken; import org.gitnex.tea4j.v2.models.CreateAccessTokenOption; import org.gitnex.tea4j.v2.models.GeneralAPISettings; import org.gitnex.tea4j.v2.models.ServerVersion; import org.gitnex.tea4j.v2.models.User; import org.mian.gitnex.R; import org.mian.gitnex.clients.RetrofitClient; import org.mian.gitnex.database.api.BaseApi; import org.mian.gitnex.database.api.UserAccountsApi; import org.mian.gitnex.database.models.UserAccount; import org.mian.gitnex.databinding.ActivityLoginBinding; import org.mian.gitnex.helpers.AppUtil; import org.mian.gitnex.helpers.NetworkStatusObserver; import org.mian.gitnex.helpers.PathsHelper; import org.mian.gitnex.helpers.Toasty; import org.mian.gitnex.helpers.UrlHelper; import org.mian.gitnex.helpers.Version; import org.mian.gitnex.structs.Protocol; import java.net.URI; import java.nio.charset.StandardCharsets; import java.util.List; import java.util.UUID; import io.mikael.urlbuilder.UrlBuilder; import okhttp3.Credentials; import retrofit2.Call; import retrofit2.Callback; /** * @author M M Arif */ public class LoginActivity extends BaseActivity { private enum LoginType {BASIC, TOKEN} private Button loginButton; private EditText instanceUrlET, loginUidET, loginPassword, otpCode, loginTokenCode; private AutoCompleteTextView protocolSpinner; private RadioGroup loginMethod; private String device_id = "token"; private String selectedProtocol; private URI instanceUrl; private Version giteaVersion; private int maxResponseItems = 50; private int defaultPagingNumber = 25; @Override public void onCreate(Bundle savedInstanceState) { super.onCreate(savedInstanceState); ActivityLoginBinding activityLoginBinding = ActivityLoginBinding.inflate(getLayoutInflater()); setContentView(activityLoginBinding.getRoot()); NetworkStatusObserver networkStatusObserver = NetworkStatusObserver.getInstance(ctx); loginButton = activityLoginBinding.loginButton; instanceUrlET = activityLoginBinding.instanceUrl; loginUidET = activityLoginBinding.loginUid; loginPassword = activityLoginBinding.loginPasswd; otpCode = activityLoginBinding.otpCode; protocolSpinner = activityLoginBinding.httpsSpinner; loginMethod = activityLoginBinding.loginMethod; loginTokenCode = activityLoginBinding.loginTokenCode; activityLoginBinding.appVersion.setText(AppUtil.getAppVersion(appCtx)); ArrayAdapter adapterProtocols = new ArrayAdapter<>(LoginActivity.this, R.layout.list_spinner_items, Protocol.values()); instanceUrlET.setText(getIntent().getStringExtra("instanceUrl")); protocolSpinner.setAdapter(adapterProtocols); protocolSpinner.setSelection(0); protocolSpinner.setOnItemClickListener((parent, view, position, id) -> { selectedProtocol = String.valueOf(parent.getItemAtPosition(position)); if(selectedProtocol.equals(String.valueOf(Protocol.HTTP))) { Toasty.warning(ctx, getResources().getString(R.string.protocolError)); } }); if(R.id.loginToken == loginMethod.getCheckedRadioButtonId()) { AppUtil.setMultiVisibility(View.GONE, findViewById(R.id.login_uidLayout), findViewById(R.id.login_passwdLayout), findViewById(R.id.otpCodeLayout)); findViewById(R.id.loginTokenCodeLayout).setVisibility(View.VISIBLE); } else { AppUtil.setMultiVisibility(View.VISIBLE, findViewById(R.id.login_uidLayout), findViewById(R.id.login_passwdLayout), findViewById(R.id.otpCodeLayout)); findViewById(R.id.loginTokenCodeLayout).setVisibility(View.GONE); } loginMethod.setOnCheckedChangeListener((group, checkedId) -> { if(checkedId == R.id.loginToken) { AppUtil.setMultiVisibility(View.GONE, findViewById(R.id.login_uidLayout), findViewById(R.id.login_passwdLayout), findViewById(R.id.otpCodeLayout)); findViewById(R.id.loginTokenCodeLayout).setVisibility(View.VISIBLE); } else { AppUtil.setMultiVisibility(View.VISIBLE, findViewById(R.id.login_uidLayout), findViewById(R.id.login_passwdLayout), findViewById(R.id.otpCodeLayout)); findViewById(R.id.loginTokenCodeLayout).setVisibility(View.GONE); } }); networkStatusObserver.registerNetworkStatusListener(hasNetworkConnection -> runOnUiThread(() -> { if(hasNetworkConnection) { enableProcessButton(); } else { disableProcessButton(); loginButton.setText(getResources().getString(R.string.btnLogin)); Toasty.error(ctx, getResources().getString(R.string.checkNetConnection)); } })); loadDefaults(); loginButton.setOnClickListener(view -> { disableProcessButton(); login(); }); } private void login() { try { if(selectedProtocol == null) { Toasty.error(ctx, getResources().getString(R.string.protocolEmptyError)); enableProcessButton(); return; } String loginUid = loginUidET.getText().toString(); String loginPass = loginPassword.getText().toString(); String loginToken = loginTokenCode.getText().toString().trim(); LoginType loginType = (loginMethod.getCheckedRadioButtonId() == R.id.loginUsernamePassword) ? LoginType.BASIC : LoginType.TOKEN; URI rawInstanceUrl = UrlBuilder.fromString(UrlHelper.fixScheme(instanceUrlET.getText().toString(), "http")).toUri(); instanceUrl = UrlBuilder.fromUri(rawInstanceUrl).withScheme(selectedProtocol.toLowerCase()).withPath(PathsHelper.join(rawInstanceUrl.getPath(), "/api/v1/")) .toUri(); // cache values to make them available the next time the user wants to log in tinyDB.putString("loginType", loginType.name().toLowerCase()); tinyDB.putString("instanceUrlRaw", instanceUrlET.getText().toString()); if(instanceUrlET.getText().toString().equals("")) { Toasty.error(ctx, getResources().getString(R.string.emptyFieldURL)); enableProcessButton(); return; } if(loginType == LoginType.BASIC) { if(otpCode.length() != 0 && otpCode.length() != 6) { Toasty.warning(ctx, getResources().getString(R.string.loginOTPTypeError)); enableProcessButton(); return; } if(loginUid.equals("")) { Toasty.error(ctx, getResources().getString(R.string.emptyFieldUsername)); enableProcessButton(); return; } if(loginPass.equals("")) { Toasty.error(ctx, getResources().getString(R.string.emptyFieldPassword)); enableProcessButton(); return; } int loginOTP = (otpCode.length() > 0) ? Integer.parseInt(otpCode.getText().toString().trim()) : 0; versionCheck(loginUid, loginPass, loginOTP, loginToken, loginType); } else { if(loginToken.equals("")) { Toasty.error(ctx, getResources().getString(R.string.loginTokenError)); enableProcessButton(); return; } versionCheck(loginUid, loginPass, 123, loginToken, loginType); serverPageLimitSettings(); } } catch(Exception e) { Toasty.error(ctx, getResources().getString(R.string.malformedUrl)); enableProcessButton(); } } private void serverPageLimitSettings() { Call generalAPISettings = RetrofitClient.getApiInterface(ctx).getGeneralAPISettings(); generalAPISettings.enqueue(new Callback<>() { @Override public void onResponse(@NonNull final Call generalAPISettings, @NonNull retrofit2.Response response) { if(response.code() == 200 && response.body() != null) { if(response.body().getMaxResponseItems() != null) { maxResponseItems = Math.toIntExact(response.body().getMaxResponseItems()); } if(response.body().getDefaultPagingNum() != null) { defaultPagingNumber = Math.toIntExact(response.body().getDefaultPagingNum()); } } } @Override public void onFailure(@NonNull Call generalAPISettings, @NonNull Throwable t) { } }); } private void versionCheck(final String loginUid, final String loginPass, final int loginOTP, final String loginToken, final LoginType loginType) { Call callVersion; if(!loginToken.equals("")) { callVersion = RetrofitClient.getApiInterface(ctx, instanceUrl.toString(), "token " + loginToken, null).getVersion(); } else { String credential = Credentials.basic(loginUid, loginPass, StandardCharsets.UTF_8); if (loginOTP != 0) { callVersion = RetrofitClient.getApiInterface(ctx, instanceUrl.toString(), credential, null).getVersion(loginOTP); } else { callVersion = RetrofitClient.getApiInterface(ctx, instanceUrl.toString(), credential, null).getVersion(); } } callVersion.enqueue(new Callback<>() { @Override public void onResponse(@NonNull final Call callVersion, @NonNull retrofit2.Response responseVersion) { if(responseVersion.code() == 200) { ServerVersion version = responseVersion.body(); assert version != null; if(!Version.valid(version.getVersion())) { Toasty.error(ctx, getResources().getString(R.string.versionUnknown)); enableProcessButton(); return; } giteaVersion = new Version(version.getVersion()); if(giteaVersion.less(getString(R.string.versionLow))) { AlertDialog.Builder alertDialogBuilder = new AlertDialog.Builder(ctx).setTitle(getString(R.string.versionAlertDialogHeader)) .setMessage(getResources().getString(R.string.versionUnsupportedOld, version.getVersion())).setIcon(R.drawable.ic_warning) .setCancelable(true); alertDialogBuilder.setNeutralButton(getString(R.string.cancelButton), (dialog, which) -> { dialog.dismiss(); enableProcessButton(); }); alertDialogBuilder.setPositiveButton(getString(R.string.textContinue), (dialog, which) -> { dialog.dismiss(); login(loginType, loginUid, loginPass, loginOTP, loginToken); }); alertDialogBuilder.create().show(); } else if(giteaVersion.lessOrEqual(getString(R.string.versionHigh))) { login(loginType, loginUid, loginPass, loginOTP, loginToken); } else { Toasty.warning(ctx, getResources().getString(R.string.versionUnsupportedNew)); login(loginType, loginUid, loginPass, loginOTP, loginToken); } } else if(responseVersion.code() == 403) { login(loginType, loginUid, loginPass, loginOTP, loginToken); } } private void login(LoginType loginType, String loginUid, String loginPass, int loginOTP, String loginToken) { // ToDo: before store/create token: get UserInfo to check DB/AccountManager if there already exist a token // the setup methods then can better handle all different cases if(loginType == LoginType.BASIC) { setup(loginUid, loginPass, loginOTP); } else if(loginType == LoginType.TOKEN) { // Token setupUsingExistingToken(loginToken); } } @Override public void onFailure(@NonNull Call callVersion, @NonNull Throwable t) { Toasty.error(ctx, getResources().getString(R.string.genericServerResponseError)); enableProcessButton(); } }); } private void setupUsingExistingToken(final String loginToken) { Call call = RetrofitClient.getApiInterface(ctx, instanceUrl.toString(), "token " + loginToken, null).userGetCurrent(); call.enqueue(new Callback<>() { @Override public void onResponse(@NonNull Call call, @NonNull retrofit2.Response response) { User userDetails = response.body(); switch(response.code()) { case 200: assert userDetails != null; // insert new account to db if does not exist String accountName = userDetails.getLogin() + "@" + instanceUrl; UserAccountsApi userAccountsApi = BaseApi.getInstance(ctx, UserAccountsApi.class); assert userAccountsApi != null; boolean userAccountExists = userAccountsApi.userAccountExists(accountName); UserAccount account; if(!userAccountExists) { long accountId = userAccountsApi.createNewAccount(accountName, instanceUrl.toString(), userDetails.getLogin(), loginToken, giteaVersion.toString(), maxResponseItems, defaultPagingNumber); account = userAccountsApi.getAccountById((int) accountId); } else { userAccountsApi.updateTokenByAccountName(accountName, loginToken); userAccountsApi.login(userAccountsApi.getAccountByName(accountName).getAccountId()); account = userAccountsApi.getAccountByName(accountName); } AppUtil.switchToAccount(LoginActivity.this, account); enableProcessButton(); startActivity(new Intent(LoginActivity.this, MainActivity.class)); finish(); break; case 401: Toasty.error(ctx, getResources().getString(R.string.unauthorizedApiError)); enableProcessButton(); break; default: Toasty.error(ctx, getResources().getString(R.string.genericApiError, response.code())); enableProcessButton(); } } @Override public void onFailure(@NonNull Call call, @NonNull Throwable t) { Toasty.error(ctx, ctx.getString(R.string.genericServerResponseError)); enableProcessButton(); } }); } private void setup(final String loginUid, final String loginPass, final int loginOTP) { final String credential = Credentials.basic(loginUid, loginPass, StandardCharsets.UTF_8); final String tokenName = "gitnex-app-" + device_id; Call> call; if(loginOTP != 0) { call = RetrofitClient.getApiInterface(ctx, instanceUrl.toString(), credential, null).userGetTokens(loginOTP, loginUid, null, null); } else { call = RetrofitClient.getApiInterface(ctx, instanceUrl.toString(), credential, null).userGetTokens(loginUid, null, null); } call.enqueue(new Callback<>() { @Override public void onResponse(@NonNull Call> call, @NonNull retrofit2.Response> response) { List userTokens = response.body(); if(response.code() == 200) { assert userTokens != null; for(AccessToken t : userTokens) { if(t.getName().equals(tokenName)) { // this app had created an token on this instance before // -> since it looks like GitNex forgot the secret we have to delete it first Call delToken; if(loginOTP != 0) { delToken = RetrofitClient.getApiInterface(ctx, instanceUrl.toString(), credential, null) .userDeleteAccessToken(loginOTP, loginUid, String.valueOf(t.getId())); } else { delToken = RetrofitClient.getApiInterface(ctx, instanceUrl.toString(), credential, null).userDeleteAccessToken(loginUid, String.valueOf(t.getId())); } delToken.enqueue(new Callback<>() { @Override public void onResponse(@NonNull Call delToken, @NonNull retrofit2.Response response) { if(response.code() == 204) { setupToken(loginUid, loginPass, loginOTP, tokenName); } else { Toasty.error(ctx, getResources().getString(R.string.genericApiError, response.code())); enableProcessButton(); } } @Override public void onFailure(@NonNull Call delToken, @NonNull Throwable t) { Toasty.error(ctx, getResources().getString(R.string.malformedJson)); enableProcessButton(); } }); return; } } setupToken(loginUid, loginPass, loginOTP, tokenName); } else { Toasty.error(ctx, getResources().getString(R.string.genericApiError, response.code())); enableProcessButton(); } } @Override public void onFailure(@NonNull Call> call, @NonNull Throwable t) { Toasty.error(ctx, getResources().getString(R.string.malformedJson)); enableProcessButton(); } }); } private void setupToken(final String loginUid, final String loginPass, final int loginOTP, final String tokenName) { final String credential = Credentials.basic(loginUid, loginPass, StandardCharsets.UTF_8); CreateAccessTokenOption createUserToken = new CreateAccessTokenOption().name(tokenName); Call callCreateToken; if(loginOTP != 0) { callCreateToken = RetrofitClient.getApiInterface(ctx, instanceUrl.toString(), credential, null) .userCreateToken(loginOTP, loginUid, createUserToken); } else { callCreateToken = RetrofitClient.getApiInterface(ctx, instanceUrl.toString(), credential, null) .userCreateToken(loginUid, createUserToken); } callCreateToken.enqueue(new Callback<>() { @Override public void onResponse(@NonNull Call callCreateToken, @NonNull retrofit2.Response responseCreate) { if(responseCreate.code() == 201) { AccessToken newToken = responseCreate.body(); assert newToken != null; if(!newToken.getSha1().equals("")) { Call call = RetrofitClient.getApiInterface(ctx, instanceUrl.toString(), "token " + newToken.getSha1(), null).userGetCurrent(); call.enqueue(new Callback<>() { @Override public void onResponse(@NonNull Call call, @NonNull retrofit2.Response response) { User userDetails = response.body(); switch(response.code()) { case 200: assert userDetails != null; // insert new account to db if does not exist String accountName = userDetails.getLogin() + "@" + instanceUrl; UserAccountsApi userAccountsApi = BaseApi.getInstance(ctx, UserAccountsApi.class); assert userAccountsApi != null; boolean userAccountExists = userAccountsApi.userAccountExists(accountName); UserAccount account; if(!userAccountExists) { long accountId = userAccountsApi .createNewAccount(accountName, instanceUrl.toString(), userDetails.getLogin(), newToken.getSha1(), giteaVersion.toString(), maxResponseItems, defaultPagingNumber); account = userAccountsApi.getAccountById((int) accountId); } else { userAccountsApi.updateTokenByAccountName(accountName, newToken.getSha1()); account = userAccountsApi.getAccountByName(accountName); } AppUtil.switchToAccount(LoginActivity.this, account); startActivity(new Intent(LoginActivity.this, MainActivity.class)); finish(); break; case 401: Toasty.error(ctx, getResources().getString(R.string.unauthorizedApiError)); enableProcessButton(); break; default: Toasty.error(ctx, getResources().getString(R.string.genericApiError, response.code())); enableProcessButton(); } } @Override public void onFailure(@NonNull Call call, @NonNull Throwable t) { Toasty.error(ctx, getResources().getString(R.string.genericError)); enableProcessButton(); } }); } } else if(responseCreate.code() == 500) { Toasty.error(ctx, getResources().getString(R.string.genericApiError, responseCreate.code())); enableProcessButton(); } } @Override public void onFailure(@NonNull Call createUserToken, @NonNull Throwable t) { Toasty.error(ctx, ctx.getString(R.string.genericServerResponseError)); } }); } private void loadDefaults() { if(tinyDB.getString("loginType").equals(LoginType.BASIC.name().toLowerCase())) { loginMethod.check(R.id.loginUsernamePassword); } else { loginMethod.check(R.id.loginToken); } if(!tinyDB.getString("instanceUrlRaw").equals("")) { instanceUrlET.setText(tinyDB.getString("instanceUrlRaw")); } if(getAccount() != null && getAccount().getAccount() != null) { loginUidET.setText(getAccount().getAccount().getUserName()); } if(!tinyDB.getString("uniqueAppId").isEmpty()) { device_id = tinyDB.getString("uniqueAppId"); } else { device_id = UUID.randomUUID().toString(); tinyDB.putString("uniqueAppId", device_id); } } private void disableProcessButton() { loginButton.setText(R.string.processingText); loginButton.setEnabled(false); } private void enableProcessButton() { loginButton.setText(R.string.btnLogin); loginButton.setEnabled(true); } }