mastodon-app-ufficiale-ipho.../MastodonSDK/Sources/MastodonCore/AuthenticationServiceProvid...

// Copyright © 2023 Mastodon gGmbH. All rights reserved.

import Foundation
import Combine
import CoreDataStack
import MastodonSDK
import KeychainAccess
import MastodonCommon
import os.log

public class AuthenticationServiceProvider: ObservableObject {
    private let logger = Logger(subsystem: "AuthenticationServiceProvider", category: "Authentication")

    public static let shared = AuthenticationServiceProvider()
    private static let keychain = Keychain(service: "org.joinmastodon.app.authentications", accessGroup: AppName.groupID)
    private let userDefaults: UserDefaults = .shared

    private init() {}
    
    @Published public var authentications: [MastodonAuthentication] = [] {
        didSet {
            persist() // todo: Is this too heavy and too often here???
        }
    }
        
    func update(instance: Instance, where domain: String) {
        authentications = authentications.map { authentication in
            guard authentication.domain == domain else { return authentication }
            return authentication.updating(instance: instance)
        }
    }
    
    func delete(authentication: MastodonAuthentication) {
        authentications.removeAll(where: { $0 == authentication })
    }
    
    func activateAuthentication(in domain: String, for userID: String) {
        authentications = authentications.map { authentication in
            guard authentication.domain == domain, authentication.userID == userID else {
                return authentication
            }
            return authentication.updating(activatedAt: Date())
        }
    }
    
    func getAuthentication(in domain: String, for userID: String) -> MastodonAuthentication? {
        authentications.first(where: { $0.domain == domain && $0.userID == userID })
    }
}

// MARK: - Public
public extension AuthenticationServiceProvider {
    func getAuthentication(matching userAccessToken: String) -> MastodonAuthentication? {
        authentications.first(where: { $0.userAccessToken == userAccessToken })
    }
    
    func authenticationSortedByActivation() -> [MastodonAuthentication] { // fixme: why do we need this?
        return authentications.sorted(by: { $0.activedAt > $1.activedAt })
    }
        
    func restore() {
        authentications = Self.keychain.allKeys().compactMap {
            guard
                let encoded = Self.keychain[$0],
                    let data = Data(base64Encoded: encoded)
            else { return nil }
            return try? JSONDecoder().decode(MastodonAuthentication.self, from: data)
        }
    }
    
    func migrateLegacyAuthentications(in context: NSManagedObjectContext) {
        do {
            let legacyAuthentications = try context.fetch(MastodonAuthenticationLegacy.sortedFetchRequest)
            let migratedAuthentications = legacyAuthentications.compactMap { auth -> MastodonAuthentication? in
                return MastodonAuthentication(
                    identifier: auth.identifier,
                    domain: auth.domain,
                    username: auth.username,
                    appAccessToken: auth.appAccessToken,
                    userAccessToken: auth.userAccessToken,
                    clientID: auth.clientID,
                    clientSecret: auth.clientSecret,
                    createdAt: auth.createdAt,
                    updatedAt: auth.updatedAt,
                    activedAt: auth.activedAt,
                    userID: auth.userID
                )
            }

            if migratedAuthentications.count != legacyAuthentications.count {
                logger.log(level: .default, "Not all account authentications could be migrated.")
            }

            self.authentications = migratedAuthentications
            userDefaults.didMigrateAuthentications = true
        } catch {
            userDefaults.didMigrateAuthentications = false
            logger.log(level: .error, "Could not migrate legacy authentications")
        }
    }
    
    var authenticationMigrationRequired: Bool {
        userDefaults.didMigrateAuthentications == false
    }
}

// MARK: - Private
private extension AuthenticationServiceProvider {
    func persist() {
        for authentication in authentications {
            Self.keychain[authentication.persistenceIdentifier] = try? JSONEncoder().encode(authentication).base64EncodedString()
        }
    }
}
Replace MastodonAuthentication to not be backed by CoreData 2023-05-25 16:26:17 +02:00			`// Copyright © 2023 Mastodon gGmbH. All rights reserved.`

			`import Foundation`
			`import Combine`
			`import CoreDataStack`
			`import MastodonSDK`
Persist Authentication in Keychain 2023-05-26 11:36:08 +02:00			`import KeychainAccess`
			`import MastodonCommon`
Migrate legacy authentications 2023-06-05 14:02:44 +02:00			`import os.log`
Replace MastodonAuthentication to not be backed by CoreData 2023-05-25 16:26:17 +02:00
			`public class AuthenticationServiceProvider: ObservableObject {`
Migrate legacy authentications 2023-06-05 14:02:44 +02:00			`private let logger = Logger(subsystem: "AuthenticationServiceProvider", category: "Authentication")`

Replace MastodonAuthentication to not be backed by CoreData 2023-05-25 16:26:17 +02:00			`public static let shared = AuthenticationServiceProvider()`
Persist Authentication in Keychain 2023-05-26 11:36:08 +02:00			`private static let keychain = Keychain(service: "org.joinmastodon.app.authentications", accessGroup: AppName.groupID)`
Migrate legacy authentications 2023-06-05 14:02:44 +02:00			`private let userDefaults: UserDefaults = .shared`
Persist Authentication in Keychain 2023-05-26 11:36:08 +02:00
Replace MastodonAuthentication to not be backed by CoreData 2023-05-25 16:26:17 +02:00			`private init() {}`

Persist Authentication in Keychain 2023-05-26 11:36:08 +02:00			`@Published public var authentications: [MastodonAuthentication] = [] {`
			`didSet {`
			`persist() // todo: Is this too heavy and too often here???`
			`}`
			`}`
Replace MastodonAuthentication to not be backed by CoreData 2023-05-25 16:26:17 +02:00
			`func update(instance: Instance, where domain: String) {`
			`authentications = authentications.map { authentication in`
			`guard authentication.domain == domain else { return authentication }`
			`return authentication.updating(instance: instance)`
			`}`
			`}`

			`func delete(authentication: MastodonAuthentication) {`
			`authentications.removeAll(where: { $0 == authentication })`
			`}`

			`func activateAuthentication(in domain: String, for userID: String) {`
			`authentications = authentications.map { authentication in`
			`guard authentication.domain == domain, authentication.userID == userID else {`
			`return authentication`
			`}`
			`return authentication.updating(activatedAt: Date())`
			`}`
			`}`

			`func getAuthentication(in domain: String, for userID: String) -> MastodonAuthentication? {`
			`authentications.first(where: { $0.domain == domain && $0.userID == userID })`
			`}`
			`}`

			`// MARK: - Public`
			`public extension AuthenticationServiceProvider {`
			`func getAuthentication(matching userAccessToken: String) -> MastodonAuthentication? {`
			`authentications.first(where: { $0.userAccessToken == userAccessToken })`
			`}`

Make account switching work again 2023-06-02 11:10:29 +02:00			`func authenticationSortedByActivation() -> [MastodonAuthentication] { // fixme: why do we need this?`
			`return authentications.sorted(by: { $0.activedAt > $1.activedAt })`
Replace MastodonAuthentication to not be backed by CoreData 2023-05-25 16:26:17 +02:00			`}`
Persist Authentication in Keychain 2023-05-26 11:36:08 +02:00
			`func restore() {`
			`authentications = Self.keychain.allKeys().compactMap {`
			`guard`
			`let encoded = Self.keychain[$0],`
			`let data = Data(base64Encoded: encoded)`
			`else { return nil }`
			`return try? JSONDecoder().decode(MastodonAuthentication.self, from: data)`
			`}`
			`}`
Migrate legacy authentications 2023-06-05 14:02:44 +02:00
Mark migration as succesful only in case of success 2023-06-13 13:05:05 +02:00			`func migrateLegacyAuthentications(in context: NSManagedObjectContext) {`
Migrate legacy authentications 2023-06-05 14:02:44 +02:00			`do {`
Slightly refactor authentication migration 2023-06-13 14:01:32 +02:00			`let legacyAuthentications = try context.fetch(MastodonAuthenticationLegacy.sortedFetchRequest)`
			`let migratedAuthentications = legacyAuthentications.compactMap { auth -> MastodonAuthentication? in`
Try migrating old auth to keychain 2023-06-05 15:53:27 +02:00			`return MastodonAuthentication(`
Slightly refactor authentication migration 2023-06-13 14:01:32 +02:00			`identifier: auth.identifier,`
			`domain: auth.domain,`
			`username: auth.username,`
			`appAccessToken: auth.appAccessToken,`
			`userAccessToken: auth.userAccessToken,`
			`clientID: auth.clientID,`
			`clientSecret: auth.clientSecret,`
			`createdAt: auth.createdAt,`
			`updatedAt: auth.updatedAt,`
			`activedAt: auth.activedAt,`
			`userID: auth.userID`
Migrate legacy authentications 2023-06-05 14:02:44 +02:00			`)`
			`}`
Mark migration as succesful only in case of success 2023-06-13 13:05:05 +02:00
			`if migratedAuthentications.count != legacyAuthentications.count {`
Improve log statement :facepalm: Co-authored-by: Marcus Kida <marcus.kida@bearologics.com> 2023-06-13 14:33:45 +02:00			`logger.log(level: .default, "Not all account authentications could be migrated.")`
Mark migration as succesful only in case of success 2023-06-13 13:05:05 +02:00			`}`

			`self.authentications = migratedAuthentications`
			`userDefaults.didMigrateAuthentications = true`
Migrate legacy authentications 2023-06-05 14:02:44 +02:00			`} catch {`
Mark migration as succesful only in case of success 2023-06-13 13:05:05 +02:00			`userDefaults.didMigrateAuthentications = false`
Migrate legacy authentications 2023-06-05 14:02:44 +02:00			`logger.log(level: .error, "Could not migrate legacy authentications")`
			`}`
			`}`
Fix migration issues with duplicate persistent store 2023-06-05 17:21:32 +02:00
			`var authenticationMigrationRequired: Bool {`
Mark migration as succesful only in case of success 2023-06-13 13:05:05 +02:00			`userDefaults.didMigrateAuthentications == false`
Fix migration issues with duplicate persistent store 2023-06-05 17:21:32 +02:00			`}`
Persist Authentication in Keychain 2023-05-26 11:36:08 +02:00			`}`

			`// MARK: - Private`
			`private extension AuthenticationServiceProvider {`
			`func persist() {`
			`for authentication in authentications {`
			`Self.keychain[authentication.persistenceIdentifier] = try? JSONEncoder().encode(authentication).base64EncodedString()`
			`}`
			`}`
Replace MastodonAuthentication to not be backed by CoreData 2023-05-25 16:26:17 +02:00			`}`