bitwarden-estensione-browser/angular/src/components/set-password.component.ts

import { Directive } from '@angular/core';
import {
    ActivatedRoute,
    Router
} from '@angular/router';

import { ApiService } from 'jslib-common/abstractions/api.service';
import { CryptoService } from 'jslib-common/abstractions/crypto.service';
import { I18nService } from 'jslib-common/abstractions/i18n.service';
import { MessagingService } from 'jslib-common/abstractions/messaging.service';
import { PasswordGenerationService } from 'jslib-common/abstractions/passwordGeneration.service';
import { PlatformUtilsService } from 'jslib-common/abstractions/platformUtils.service';
import { PolicyService } from 'jslib-common/abstractions/policy.service';
import { SyncService } from 'jslib-common/abstractions/sync.service';
import { UserService } from 'jslib-common/abstractions/user.service';

import { EncString } from 'jslib-common/models/domain/encString';
import { SymmetricCryptoKey } from 'jslib-common/models/domain/symmetricCryptoKey';

import { KeysRequest } from 'jslib-common/models/request/keysRequest';
import { OrganizationUserResetPasswordEnrollmentRequest } from 'jslib-common/models/request/organizationUserResetPasswordEnrollmentRequest';
import { SetPasswordRequest } from 'jslib-common/models/request/setPasswordRequest';

import { ChangePasswordComponent as BaseChangePasswordComponent } from './change-password.component';

import { HashPurpose } from 'jslib-common/enums/hashPurpose';
import { KdfType } from 'jslib-common/enums/kdfType';
import { PolicyType } from 'jslib-common/enums/policyType';

import { Utils } from 'jslib-common/misc/utils';

@Directive()
export class SetPasswordComponent extends BaseChangePasswordComponent {
    syncLoading: boolean = true;
    showPassword: boolean = false;
    hint: string = '';
    identifier: string = null;
    orgId: string;
    resetPasswordAutoEnroll = false;

    onSuccessfulChangePassword: () => Promise<any>;
    successRoute = 'vault';

    constructor(i18nService: I18nService, cryptoService: CryptoService, messagingService: MessagingService,
        userService: UserService, passwordGenerationService: PasswordGenerationService,
        platformUtilsService: PlatformUtilsService, policyService: PolicyService, protected router: Router,
        private apiService: ApiService, private syncService: SyncService, private route: ActivatedRoute) {
        super(i18nService, cryptoService, messagingService, userService, passwordGenerationService,
            platformUtilsService, policyService);
    }

    async ngOnInit() {
        await this.syncService.fullSync(true);
        this.syncLoading = false;

        const queryParamsSub = this.route.queryParams.subscribe(async qParams => {
            if (qParams.identifier != null) {
                this.identifier = qParams.identifier;
            }

            if (queryParamsSub != null) {
                queryParamsSub.unsubscribe();
            }
        });

        // Automatic Enrollment Detection
        if (this.identifier != null) {
            try {
                const response = await this.apiService.getOrganizationAutoEnrollStatus(this.identifier);
                this.orgId = response.id;
                this.resetPasswordAutoEnroll = response.resetPasswordEnabled;
            } catch {
                this.platformUtilsService.showToast('error', null, this.i18nService.t('errorOccurred'));
            }
        }

        super.ngOnInit();
    }

    async setupSubmitActions() {
        this.kdf = KdfType.PBKDF2_SHA256;
        const useLowerKdf = this.platformUtilsService.isIE();
        this.kdfIterations = useLowerKdf ? 10000 : 100000;
        return true;
    }

    async performSubmitActions(masterPasswordHash: string, key: SymmetricCryptoKey,
        encKey: [SymmetricCryptoKey, EncString]) {
        const keys = await this.cryptoService.makeKeyPair(encKey[0]);
        const request = new SetPasswordRequest(
            masterPasswordHash,
            encKey[1].encryptedString,
            this.hint,
            this.kdf,
            this.kdfIterations,
            this.identifier,
            new KeysRequest(keys[0], keys[1].encryptedString)
        );
        try {
            if (this.resetPasswordAutoEnroll) {
                this.formPromise = this.apiService.setPassword(request).then(async () => {
                    await this.onSetPasswordSuccess(key, encKey, keys);
                    return this.apiService.getOrganizationKeys(this.orgId);
                }).then(async response => {
                    if (response == null) {
                        throw new Error(this.i18nService.t('resetPasswordOrgKeysError'));
                    }
                    const userId = await this.userService.getUserId();
                    const publicKey = Utils.fromB64ToArray(response.publicKey);

                    // RSA Encrypt user's encKey.key with organization public key
                    const userEncKey = await this.cryptoService.getEncKey();
                    const encryptedKey = await this.cryptoService.rsaEncrypt(userEncKey.key, publicKey.buffer);

                    const resetRequest = new OrganizationUserResetPasswordEnrollmentRequest();
                    resetRequest.resetPasswordKey = encryptedKey.encryptedString;

                    return this.apiService.putOrganizationUserResetPasswordEnrollment(this.orgId, userId, resetRequest);
                });
            } else {
                this.formPromise = this.apiService.setPassword(request).then(async () => {
                    await this.onSetPasswordSuccess(key, encKey, keys);
                });
            }

            await this.formPromise;

            if (this.onSuccessfulChangePassword != null) {
                this.onSuccessfulChangePassword();
            } else {
                this.router.navigate([this.successRoute]);
            }
        } catch {
            this.platformUtilsService.showToast('error', null, this.i18nService.t('errorOccurred'));
        }
    }

    togglePassword(confirmField: boolean) {
        this.showPassword = !this.showPassword;
        document.getElementById(confirmField ? 'masterPasswordRetype' : 'masterPassword').focus();
    }

    private async onSetPasswordSuccess(key: SymmetricCryptoKey, encKey: [SymmetricCryptoKey, EncString], keys: [string, EncString]) {
        await this.userService.setInformation(await this.userService.getUserId(), await this.userService.getEmail(),
            this.kdf, this.kdfIterations);
        await this.cryptoService.setKey(key);
        await this.cryptoService.setEncKey(encKey[1].encryptedString);
        await this.cryptoService.setEncPrivateKey(keys[1].encryptedString);

        const localKeyHash = await this.cryptoService.hashPassword(this.masterPassword, key,
            HashPurpose.LocalAuthorization);
        await this.cryptoService.setKeyHash(localKeyHash);
    }
}
Bump dependencies (#350) * Bump dependencies 2021-04-22 21:17:14 +02:00			`import { Directive } from '@angular/core';`
[SSO] New user provision flow (#173) * Initial commit of new user sso flow * Adjusted stateSplit conditional per review 2020-10-13 22:21:03 +02:00			`import {`
			`ActivatedRoute,`
			`Router`
			`} from '@angular/router';`
abstract set password component to jslib (#153) 2020-08-19 16:57:35 +02:00
Split jslib into multiple modules (#363) * Split jslib into multiple modules 2021-06-03 18:58:57 +02:00			`import { ApiService } from 'jslib-common/abstractions/api.service';`
			`import { CryptoService } from 'jslib-common/abstractions/crypto.service';`
			`import { I18nService } from 'jslib-common/abstractions/i18n.service';`
			`import { MessagingService } from 'jslib-common/abstractions/messaging.service';`
			`import { PasswordGenerationService } from 'jslib-common/abstractions/passwordGeneration.service';`
			`import { PlatformUtilsService } from 'jslib-common/abstractions/platformUtils.service';`
			`import { PolicyService } from 'jslib-common/abstractions/policy.service';`
			`import { SyncService } from 'jslib-common/abstractions/sync.service';`
			`import { UserService } from 'jslib-common/abstractions/user.service';`
abstract set password component to jslib (#153) 2020-08-19 16:57:35 +02:00
Split jslib into multiple modules (#363) * Split jslib into multiple modules 2021-06-03 18:58:57 +02:00			`import { EncString } from 'jslib-common/models/domain/encString';`
			`import { SymmetricCryptoKey } from 'jslib-common/models/domain/symmetricCryptoKey';`
abstract set password component to jslib (#153) 2020-08-19 16:57:35 +02:00
Split jslib into multiple modules (#363) * Split jslib into multiple modules 2021-06-03 18:58:57 +02:00			`import { KeysRequest } from 'jslib-common/models/request/keysRequest';`
[SSO] Set password auto enroll update (#472) * [SSO/Auto Enroll] Set Password enrolls new user * Fixed typo * Linter updates * Cleanup // Constructor for SetPasswordRequest 2021-09-03 21:49:03 +02:00			`import { OrganizationUserResetPasswordEnrollmentRequest } from 'jslib-common/models/request/organizationUserResetPasswordEnrollmentRequest';`
Split jslib into multiple modules (#363) * Split jslib into multiple modules 2021-06-03 18:58:57 +02:00			`import { SetPasswordRequest } from 'jslib-common/models/request/setPasswordRequest';`
abstract set password component to jslib (#153) 2020-08-19 16:57:35 +02:00
			`import { ChangePasswordComponent as BaseChangePasswordComponent } from './change-password.component';`

Use 2 iterations for local password hashing (#404) * Use 2 iterations for local password hashing * fix typo 2021-06-09 23:24:31 +02:00			`import { HashPurpose } from 'jslib-common/enums/hashPurpose';`
Split jslib into multiple modules (#363) * Split jslib into multiple modules 2021-06-03 18:58:57 +02:00			`import { KdfType } from 'jslib-common/enums/kdfType';`
[SSO] Set password auto enroll update (#472) * [SSO/Auto Enroll] Set Password enrolls new user * Fixed typo * Linter updates * Cleanup // Constructor for SetPasswordRequest 2021-09-03 21:49:03 +02:00			`import { PolicyType } from 'jslib-common/enums/policyType';`

			`import { Utils } from 'jslib-common/misc/utils';`
abstract set password component to jslib (#153) 2020-08-19 16:57:35 +02:00
Bump dependencies (#350) * Bump dependencies 2021-04-22 21:17:14 +02:00			`@Directive()`
abstract set password component to jslib (#153) 2020-08-19 16:57:35 +02:00			`export class SetPasswordComponent extends BaseChangePasswordComponent {`
[SSO] Set Password flow sync (#159) * Added sync service to set-password // Added error for CLI in set-password flow * Updated error string // added sync tracking boolean * VS code failed to saved latest change - resaving false loading 2020-08-27 20:24:38 +02:00			`syncLoading: boolean = true;`
abstract set password component to jslib (#153) 2020-08-19 16:57:35 +02:00			`showPassword: boolean = false;`
			`hint: string = '';`
[SSO] New user provision flow (#173) * Initial commit of new user sso flow * Adjusted stateSplit conditional per review 2020-10-13 22:21:03 +02:00			`identifier: string = null;`
[SSO] Set password auto enroll update (#472) * [SSO/Auto Enroll] Set Password enrolls new user * Fixed typo * Linter updates * Cleanup // Constructor for SetPasswordRequest 2021-09-03 21:49:03 +02:00			`orgId: string;`
			`resetPasswordAutoEnroll = false;`
abstract set password component to jslib (#153) 2020-08-19 16:57:35 +02:00
			`onSuccessfulChangePassword: () => Promise<any>;`
			`successRoute = 'vault';`

Updated depdency chain -> end result to allieviate issues in directory connector (#155) 2020-08-21 19:25:33 +02:00			`constructor(i18nService: I18nService, cryptoService: CryptoService, messagingService: MessagingService,`
abstract set password component to jslib (#153) 2020-08-19 16:57:35 +02:00			`userService: UserService, passwordGenerationService: PasswordGenerationService,`
[Reset Password v1] Update Temp Password (#446) * [Reset Password v1] Update Temp Password * Updating router to protected for child classes to access 2021-08-10 14:02:53 +02:00			`platformUtilsService: PlatformUtilsService, policyService: PolicyService, protected router: Router,`
[SSO] New user provision flow (#173) * Initial commit of new user sso flow * Adjusted stateSplit conditional per review 2020-10-13 22:21:03 +02:00			`private apiService: ApiService, private syncService: SyncService, private route: ActivatedRoute) {`
Updated depdency chain -> end result to allieviate issues in directory connector (#155) 2020-08-21 19:25:33 +02:00			`super(i18nService, cryptoService, messagingService, userService, passwordGenerationService,`
			`platformUtilsService, policyService);`
abstract set password component to jslib (#153) 2020-08-19 16:57:35 +02:00			`}`

[SSO] Set Password flow sync (#159) * Added sync service to set-password // Added error for CLI in set-password flow * Updated error string // added sync tracking boolean * VS code failed to saved latest change - resaving false loading 2020-08-27 20:24:38 +02:00			`async ngOnInit() {`
			`await this.syncService.fullSync(true);`
			`this.syncLoading = false;`
[SSO] New user provision flow (#173) * Initial commit of new user sso flow * Adjusted stateSplit conditional per review 2020-10-13 22:21:03 +02:00
Fix glob processing in npm. Ban single param parens (#257) 2021-02-04 16:49:23 +01:00			`const queryParamsSub = this.route.queryParams.subscribe(async qParams => {`
[SSO] New user provision flow (#173) * Initial commit of new user sso flow * Adjusted stateSplit conditional per review 2020-10-13 22:21:03 +02:00			`if (qParams.identifier != null) {`
			`this.identifier = qParams.identifier;`
			`}`

			`if (queryParamsSub != null) {`
			`queryParamsSub.unsubscribe();`
			`}`
			`});`

[SSO] Set password auto enroll update (#472) * [SSO/Auto Enroll] Set Password enrolls new user * Fixed typo * Linter updates * Cleanup // Constructor for SetPasswordRequest 2021-09-03 21:49:03 +02:00			`// Automatic Enrollment Detection`
			`if (this.identifier != null) {`
[SSO Auto Enroll] Auto Enroll status retrieval (#486) * [SSO Auto Enroll] Auto Enroll status retrieval * Fixed import order * Updated object property 2021-09-15 19:54:44 +02:00			`try {`
			`const response = await this.apiService.getOrganizationAutoEnrollStatus(this.identifier);`
			`this.orgId = response.id;`
			`this.resetPasswordAutoEnroll = response.resetPasswordEnabled;`
			`} catch {`
			`this.platformUtilsService.showToast('error', null, this.i18nService.t('errorOccurred'));`
			`}`
[SSO] Set password auto enroll update (#472) * [SSO/Auto Enroll] Set Password enrolls new user * Fixed typo * Linter updates * Cleanup // Constructor for SetPasswordRequest 2021-09-03 21:49:03 +02:00			`}`

[SSO] Set Password flow sync (#159) * Added sync service to set-password // Added error for CLI in set-password flow * Updated error string // added sync tracking boolean * VS code failed to saved latest change - resaving false loading 2020-08-27 20:24:38 +02:00			`super.ngOnInit();`
			`}`

abstract set password component to jslib (#153) 2020-08-19 16:57:35 +02:00			`async setupSubmitActions() {`
			`this.kdf = KdfType.PBKDF2_SHA256;`
remove old Edge browser hacks (#168) * remove old Edge browser hacks * Remove final edge hacks * Update constructor parameters * Update search-ciphers.pipe.ts Co-authored-by: Kyle Spearrin <kspearrin@users.noreply.github.com> 2020-09-15 16:23:21 +02:00			`const useLowerKdf = this.platformUtilsService.isIE();`
abstract set password component to jslib (#153) 2020-08-19 16:57:35 +02:00			`this.kdfIterations = useLowerKdf ? 10000 : 100000;`
			`return true;`
			`}`

			`async performSubmitActions(masterPasswordHash: string, key: SymmetricCryptoKey,`
Rename CipherString and CipherArrayBuffer to Enc (#352) 2021-04-21 02:16:19 +02:00			`encKey: [SymmetricCryptoKey, EncString]) {`
abstract set password component to jslib (#153) 2020-08-19 16:57:35 +02:00			`const keys = await this.cryptoService.makeKeyPair(encKey[0]);`
[SSO] Set password auto enroll update (#472) * [SSO/Auto Enroll] Set Password enrolls new user * Fixed typo * Linter updates * Cleanup // Constructor for SetPasswordRequest 2021-09-03 21:49:03 +02:00			`const request = new SetPasswordRequest(`
			`masterPasswordHash,`
			`encKey[1].encryptedString,`
			`this.hint,`
			`this.kdf,`
			`this.kdfIterations,`
			`this.identifier,`
			`new KeysRequest(keys[0], keys[1].encryptedString)`
			`);`
abstract set password component to jslib (#153) 2020-08-19 16:57:35 +02:00			`try {`
[SSO] Set password auto enroll update (#472) * [SSO/Auto Enroll] Set Password enrolls new user * Fixed typo * Linter updates * Cleanup // Constructor for SetPasswordRequest 2021-09-03 21:49:03 +02:00			`if (this.resetPasswordAutoEnroll) {`
			`this.formPromise = this.apiService.setPassword(request).then(async () => {`
			`await this.onSetPasswordSuccess(key, encKey, keys);`
			`return this.apiService.getOrganizationKeys(this.orgId);`
			`}).then(async response => {`
			`if (response == null) {`
			`throw new Error(this.i18nService.t('resetPasswordOrgKeysError'));`
			`}`
			`const userId = await this.userService.getUserId();`
			`const publicKey = Utils.fromB64ToArray(response.publicKey);`

			`// RSA Encrypt user's encKey.key with organization public key`
			`const userEncKey = await this.cryptoService.getEncKey();`
			`const encryptedKey = await this.cryptoService.rsaEncrypt(userEncKey.key, publicKey.buffer);`

			`const resetRequest = new OrganizationUserResetPasswordEnrollmentRequest();`
			`resetRequest.resetPasswordKey = encryptedKey.encryptedString;`

			`return this.apiService.putOrganizationUserResetPasswordEnrollment(this.orgId, userId, resetRequest);`
			`});`
			`} else {`
			`this.formPromise = this.apiService.setPassword(request).then(async () => {`
			`await this.onSetPasswordSuccess(key, encKey, keys);`
			`});`
			`}`
abstract set password component to jslib (#153) 2020-08-19 16:57:35 +02:00
[SSO] Set password auto enroll update (#472) * [SSO/Auto Enroll] Set Password enrolls new user * Fixed typo * Linter updates * Cleanup // Constructor for SetPasswordRequest 2021-09-03 21:49:03 +02:00			`await this.formPromise;`
Use 2 iterations for local password hashing (#404) * Use 2 iterations for local password hashing * fix typo 2021-06-09 23:24:31 +02:00
abstract set password component to jslib (#153) 2020-08-19 16:57:35 +02:00			`if (this.onSuccessfulChangePassword != null) {`
			`this.onSuccessfulChangePassword();`
			`} else {`
			`this.router.navigate([this.successRoute]);`
			`}`
			`} catch {`
			`this.platformUtilsService.showToast('error', null, this.i18nService.t('errorOccurred'));`
			`}`
			`}`

			`togglePassword(confirmField: boolean) {`
			`this.showPassword = !this.showPassword;`
			`document.getElementById(confirmField ? 'masterPasswordRetype' : 'masterPassword').focus();`
			`}`
[SSO] Set password auto enroll update (#472) * [SSO/Auto Enroll] Set Password enrolls new user * Fixed typo * Linter updates * Cleanup // Constructor for SetPasswordRequest 2021-09-03 21:49:03 +02:00
			`private async onSetPasswordSuccess(key: SymmetricCryptoKey, encKey: [SymmetricCryptoKey, EncString], keys: [string, EncString]) {`
			`await this.userService.setInformation(await this.userService.getUserId(), await this.userService.getEmail(),`
			`this.kdf, this.kdfIterations);`
			`await this.cryptoService.setKey(key);`
			`await this.cryptoService.setEncKey(encKey[1].encryptedString);`
			`await this.cryptoService.setEncPrivateKey(keys[1].encryptedString);`

			`const localKeyHash = await this.cryptoService.hashPassword(this.masterPassword, key,`
			`HashPurpose.LocalAuthorization);`
			`await this.cryptoService.setKeyHash(localKeyHash);`
			`}`
abstract set password component to jslib (#153) 2020-08-19 16:57:35 +02:00			`}`