bitwarden-estensione-browser/src/services/vaultTimeout.service.ts

import { ConstantsService } from './constants.service';

import { CipherService } from '../abstractions/cipher.service';
import { CollectionService } from '../abstractions/collection.service';
import { CryptoService } from '../abstractions/crypto.service';
import { FolderService } from '../abstractions/folder.service';
import { MessagingService } from '../abstractions/messaging.service';
import { PlatformUtilsService } from '../abstractions/platformUtils.service';
import { SearchService } from '../abstractions/search.service';
import { StorageService } from '../abstractions/storage.service';
import { TokenService } from '../abstractions/token.service';
import { UserService } from '../abstractions/user.service';
import { VaultTimeoutService as VaultTimeoutServiceAbstraction } from '../abstractions/vaultTimeout.service';

import { CipherString } from '../models/domain/cipherString';

export class VaultTimeoutService implements VaultTimeoutServiceAbstraction {
    pinProtectedKey: CipherString = null;

    private inited = false;

    constructor(private cipherService: CipherService, private folderService: FolderService,
        private collectionService: CollectionService, private cryptoService: CryptoService,
        private platformUtilsService: PlatformUtilsService, private storageService: StorageService,
        private messagingService: MessagingService, private searchService: SearchService,
        private userService: UserService, private tokenService: TokenService,
        private lockedCallback: () => Promise<void> = null, private loggedOutCallback: () => Promise<void> = null) {
    }

    init(checkOnInterval: boolean) {
        if (this.inited) {
            return;
        }

        this.inited = true;
        if (checkOnInterval) {
            this.checkVaultTimeout();
            setInterval(() => this.checkVaultTimeout(), 10 * 1000); // check every 10 seconds
        }
    }

    // Keys aren't stored for a device that is locked or logged out.
    async isLocked(): Promise<boolean> {
        const hasKey = await this.cryptoService.hasKey();
        return !hasKey;
    }

    async checkVaultTimeout(): Promise<void> {
        if (await this.platformUtilsService.isViewOpen()) {
            // Do not lock
            return;
        }

        // "is logged out check" - similar to isLocked, below
        const authed = await this.userService.isAuthenticated();
        if (!authed) {
            return;
        }

        if (await this.isLocked()) {
            return;
        }

        // This has the potential to be removed. Evaluate after all platforms complete with auto-logout
        let vaultTimeout = this.platformUtilsService.lockTimeout();
        if (vaultTimeout == null) {
            vaultTimeout = await this.storageService.get<number>(ConstantsService.vaultTimeoutKey);
        }

        if (vaultTimeout == null || vaultTimeout < 0) {
            return;
        }

        const lastActive = await this.storageService.get<number>(ConstantsService.lastActiveKey);
        if (lastActive == null) {
            return;
        }

        const vaultTimeoutSeconds = vaultTimeout * 60;
        const diffSeconds = ((new Date()).getTime() - lastActive) / 1000;
        if (diffSeconds >= vaultTimeoutSeconds) {
            // Pivot based on the saved vault timeout action
            const timeoutAction = await this.storageService.get<string>(ConstantsService.vaultTimeoutActionKey);
            timeoutAction === 'lock' ? await this.lock(true) : await this.logOut();
        }
    }

    async lock(allowSoftLock = false): Promise<void> {
        const authed = await this.userService.isAuthenticated();
        if (!authed) {
            return;
        }

        await Promise.all([
            this.cryptoService.clearKey(),
            this.cryptoService.clearOrgKeys(true),
            this.cryptoService.clearKeyPair(true),
            this.cryptoService.clearEncKey(true),
        ]);

        this.folderService.clearCache();
        this.cipherService.clearCache();
        this.collectionService.clearCache();
        this.searchService.clearIndex();
        this.messagingService.send('locked');
        if (this.lockedCallback != null) {
            await this.lockedCallback();
        }
    }

    async logOut(): Promise<void> {
        if (this.loggedOutCallback != null) {
            await this.loggedOutCallback();
        }
    }

    async setVaultTimeoutOptions(timeout: number, action: string): Promise<void> {
        await this.storageService.save(ConstantsService.vaultTimeoutKey, timeout);
        await this.storageService.save(ConstantsService.vaultTimeoutActionKey, action);
        await this.cryptoService.toggleKey();
        await this.tokenService.toggleTokens();
    }

    async isPinLockSet(): Promise<[boolean, boolean]> {
        const protectedPin = await this.storageService.get<string>(ConstantsService.protectedPin);
        const pinProtectedKey = await this.storageService.get<string>(ConstantsService.pinProtectedKey);
        return [protectedPin != null, pinProtectedKey != null];
    }

    clear(): Promise<any> {
        this.pinProtectedKey = null;
        return this.storageService.remove(ConstantsService.protectedPin);
    }
}
move lock service ti jslib 2018-01-10 05:18:51 +01:00			`import { ConstantsService } from './constants.service';`

Revert "reference barrels" This reverts commit 2d9f53fbed02b4b6e58f94e2532742a1cc718922. 2018-02-19 19:07:19 +01:00			`import { CipherService } from '../abstractions/cipher.service';`
			`import { CollectionService } from '../abstractions/collection.service';`
			`import { CryptoService } from '../abstractions/crypto.service';`
			`import { FolderService } from '../abstractions/folder.service';`
			`import { MessagingService } from '../abstractions/messaging.service';`
			`import { PlatformUtilsService } from '../abstractions/platformUtils.service';`
clear search index on lock 2018-08-13 20:09:10 +02:00			`import { SearchService } from '../abstractions/search.service';`
Revert "reference barrels" This reverts commit 2d9f53fbed02b4b6e58f94e2532742a1cc718922. 2018-02-19 19:07:19 +01:00			`import { StorageService } from '../abstractions/storage.service';`
[Auto-Logout] Update Token Service (#94) * Auto logout on restart * Updated setTokens function * Remove async deocrator from setTokens Co-authored-by: Vincent Salucci <vsalucci@bitwarden.com> 2020-04-06 18:06:32 +02:00			`import { TokenService } from '../abstractions/token.service';`
check if authed before trying to lock 2019-03-19 20:44:48 +01:00			`import { UserService } from '../abstractions/user.service';`
[Auto-Logout] Refactor LockService and Update Dependencies (#91) * initial commit for lockService name refactor * Reverted ConstantsService vault timeout key to legacy string value Co-authored-by: Vincent Salucci <vsalucci@bitwarden.com> 2020-03-27 15:03:27 +01:00			`import { VaultTimeoutService as VaultTimeoutServiceAbstraction } from '../abstractions/vaultTimeout.service';`
move lock service ti jslib 2018-01-10 05:18:51 +01:00
memory stored pinProtectedKey 2019-08-29 15:40:50 +02:00			`import { CipherString } from '../models/domain/cipherString';`

[Auto-Logout] Refactor LockService and Update Dependencies (#91) * initial commit for lockService name refactor * Reverted ConstantsService vault timeout key to legacy string value Co-authored-by: Vincent Salucci <vsalucci@bitwarden.com> 2020-03-27 15:03:27 +01:00			`export class VaultTimeoutService implements VaultTimeoutServiceAbstraction {`
memory stored pinProtectedKey 2019-08-29 15:40:50 +02:00			`pinProtectedKey: CipherString = null;`
soft locking with protected pin 2019-02-14 03:36:36 +01:00
move lock service interval to init 2018-05-16 16:18:05 +02:00			`private inited = false;`

move lock service ti jslib 2018-01-10 05:18:51 +01:00			`constructor(private cipherService: CipherService, private folderService: FolderService,`
			`private collectionService: CollectionService, private cryptoService: CryptoService,`
convert more service abstractions 2018-02-10 16:53:07 +01:00			`private platformUtilsService: PlatformUtilsService, private storageService: StorageService,`
clear search index on lock 2018-08-13 20:09:10 +02:00			`private messagingService: MessagingService, private searchService: SearchService,`
[Auto-Logout] Update Token Service (#94) * Auto logout on restart * Updated setTokens function * Remove async deocrator from setTokens Co-authored-by: Vincent Salucci <vsalucci@bitwarden.com> 2020-04-06 18:06:32 +02:00			`private userService: UserService, private tokenService: TokenService,`
			`private lockedCallback: () => Promise<void> = null, private loggedOutCallback: () => Promise<void> = null) {`
move lock service interval to init 2018-05-16 16:18:05 +02:00			`}`

			`init(checkOnInterval: boolean) {`
			`if (this.inited) {`
			`return;`
			`}`

			`this.inited = true;`
			`if (checkOnInterval) {`
[Auto-Logout] Refactor LockService and Update Dependencies (#91) * initial commit for lockService name refactor * Reverted ConstantsService vault timeout key to legacy string value Co-authored-by: Vincent Salucci <vsalucci@bitwarden.com> 2020-03-27 15:03:27 +01:00			`this.checkVaultTimeout();`
			`setInterval(() => this.checkVaultTimeout(), 10 * 1000); // check every 10 seconds`
move lock service interval to init 2018-05-16 16:18:05 +02:00			`}`
move lock service ti jslib 2018-01-10 05:18:51 +01:00			`}`

[Auto-Logout] Implement logout functionality in VaultTimeoutService (#92) * Initial commit for logic changes in VaultTimeoutService * Fixed lint error * Updated logOut spelling - as an action its two words * Hitting save to make sure all my changes are included * Made requested changes Co-authored-by: Vincent Salucci <vsalucci@bitwarden.com> 2020-03-29 17:38:16 +02:00			`// Keys aren't stored for a device that is locked or logged out.`
soft locking with protected pin 2019-02-14 03:36:36 +01:00			`async isLocked(): Promise<boolean> {`
cant be pin locked without key 2019-02-14 04:08:55 +01:00			`const hasKey = await this.cryptoService.hasKey();`
soft locking with protected pin 2019-02-14 03:36:36 +01:00			`return !hasKey;`
			`}`

[Auto-Logout] Refactor LockService and Update Dependencies (#91) * initial commit for lockService name refactor * Reverted ConstantsService vault timeout key to legacy string value Co-authored-by: Vincent Salucci <vsalucci@bitwarden.com> 2020-03-27 15:03:27 +01:00			`async checkVaultTimeout(): Promise<void> {`
isViewOpen returns promise 2019-08-20 19:47:15 +02:00			`if (await this.platformUtilsService.isViewOpen()) {`
move lock service ti jslib 2018-01-10 05:18:51 +01:00			`// Do not lock`
			`return;`
			`}`

[Auto-Logout] Refactor LockService and Update Dependencies (#91) * initial commit for lockService name refactor * Reverted ConstantsService vault timeout key to legacy string value Co-authored-by: Vincent Salucci <vsalucci@bitwarden.com> 2020-03-27 15:03:27 +01:00			`// "is logged out check" - similar to isLocked, below`
check if authed before trying to lock 2019-03-19 20:44:48 +01:00			`const authed = await this.userService.isAuthenticated();`
			`if (!authed) {`
			`return;`
			`}`

reload callback 2019-02-25 22:14:54 +01:00			`if (await this.isLocked()) {`
move lock service ti jslib 2018-01-10 05:18:51 +01:00			`return;`
			`}`

[Auto-Logout] Implement logout functionality in VaultTimeoutService (#92) * Initial commit for logic changes in VaultTimeoutService * Fixed lint error * Updated logOut spelling - as an action its two words * Hitting save to make sure all my changes are included * Made requested changes Co-authored-by: Vincent Salucci <vsalucci@bitwarden.com> 2020-03-29 17:38:16 +02:00			`// This has the potential to be removed. Evaluate after all platforms complete with auto-logout`
			`let vaultTimeout = this.platformUtilsService.lockTimeout();`
			`if (vaultTimeout == null) {`
			`vaultTimeout = await this.storageService.get<number>(ConstantsService.vaultTimeoutKey);`
allow static lock timeout definition 2018-06-09 20:50:18 +02:00			`}`
[Auto-Logout] Implement logout functionality in VaultTimeoutService (#92) * Initial commit for logic changes in VaultTimeoutService * Fixed lint error * Updated logOut spelling - as an action its two words * Hitting save to make sure all my changes are included * Made requested changes Co-authored-by: Vincent Salucci <vsalucci@bitwarden.com> 2020-03-29 17:38:16 +02:00
			`if (vaultTimeout == null \|\| vaultTimeout < 0) {`
move lock service ti jslib 2018-01-10 05:18:51 +01:00			`return;`
			`}`

			`const lastActive = await this.storageService.get<number>(ConstantsService.lastActiveKey);`
			`if (lastActive == null) {`
			`return;`
			`}`

[Auto-Logout] Implement logout functionality in VaultTimeoutService (#92) * Initial commit for logic changes in VaultTimeoutService * Fixed lint error * Updated logOut spelling - as an action its two words * Hitting save to make sure all my changes are included * Made requested changes Co-authored-by: Vincent Salucci <vsalucci@bitwarden.com> 2020-03-29 17:38:16 +02:00			`const vaultTimeoutSeconds = vaultTimeout * 60;`
move lock service ti jslib 2018-01-10 05:18:51 +01:00			`const diffSeconds = ((new Date()).getTime() - lastActive) / 1000;`
[Auto-Logout] Implement logout functionality in VaultTimeoutService (#92) * Initial commit for logic changes in VaultTimeoutService * Fixed lint error * Updated logOut spelling - as an action its two words * Hitting save to make sure all my changes are included * Made requested changes Co-authored-by: Vincent Salucci <vsalucci@bitwarden.com> 2020-03-29 17:38:16 +02:00			`if (diffSeconds >= vaultTimeoutSeconds) {`
			`// Pivot based on the saved vault timeout action`
			`const timeoutAction = await this.storageService.get<string>(ConstantsService.vaultTimeoutActionKey);`
			`timeoutAction === 'lock' ? await this.lock(true) : await this.logOut();`
move lock service ti jslib 2018-01-10 05:18:51 +01:00			`}`
			`}`

soft locking with protected pin 2019-02-14 03:36:36 +01:00			`async lock(allowSoftLock = false): Promise<void> {`
check if authed before trying to lock 2019-03-19 20:44:48 +01:00			`const authed = await this.userService.isAuthenticated();`
			`if (!authed) {`
			`return;`
			`}`

move lock service ti jslib 2018-01-10 05:18:51 +01:00			`await Promise.all([`
			`this.cryptoService.clearKey(),`
			`this.cryptoService.clearOrgKeys(true),`
generate keypair on registration 2018-07-03 17:41:55 +02:00			`this.cryptoService.clearKeyPair(true),`
move lock service ti jslib 2018-01-10 05:18:51 +01:00			`this.cryptoService.clearEncKey(true),`
			`]);`

			`this.folderService.clearCache();`
			`this.cipherService.clearCache();`
			`this.collectionService.clearCache();`
clear search index on lock 2018-08-13 20:09:10 +02:00			`this.searchService.clearIndex();`
convert more service abstractions 2018-02-10 16:53:07 +01:00			`this.messagingService.send('locked');`
move lock service interval to init 2018-05-16 16:18:05 +02:00			`if (this.lockedCallback != null) {`
			`await this.lockedCallback();`
			`}`
move lock service ti jslib 2018-01-10 05:18:51 +01:00			`}`
setLockOption 2018-02-11 06:38:17 +01:00
[Auto-Logout] Implement logout functionality in VaultTimeoutService (#92) * Initial commit for logic changes in VaultTimeoutService * Fixed lint error * Updated logOut spelling - as an action its two words * Hitting save to make sure all my changes are included * Made requested changes Co-authored-by: Vincent Salucci <vsalucci@bitwarden.com> 2020-03-29 17:38:16 +02:00			`async logOut(): Promise<void> {`
			`if (this.loggedOutCallback != null) {`
			`await this.loggedOutCallback();`
			`}`
[Auto-Logout] Refactor LockService and Update Dependencies (#91) * initial commit for lockService name refactor * Reverted ConstantsService vault timeout key to legacy string value Co-authored-by: Vincent Salucci <vsalucci@bitwarden.com> 2020-03-27 15:03:27 +01:00			`}`

[Auto-Logout] Implement logout functionality in VaultTimeoutService (#92) * Initial commit for logic changes in VaultTimeoutService * Fixed lint error * Updated logOut spelling - as an action its two words * Hitting save to make sure all my changes are included * Made requested changes Co-authored-by: Vincent Salucci <vsalucci@bitwarden.com> 2020-03-29 17:38:16 +02:00			`async setVaultTimeoutOptions(timeout: number, action: string): Promise<void> {`
			`await this.storageService.save(ConstantsService.vaultTimeoutKey, timeout);`
			`await this.storageService.save(ConstantsService.vaultTimeoutActionKey, action);`
setLockOption 2018-02-11 06:38:17 +01:00			`await this.cryptoService.toggleKey();`
[Auto-Logout] Update Token Service (#94) * Auto logout on restart * Updated setTokens function * Remove async deocrator from setTokens Co-authored-by: Vincent Salucci <vsalucci@bitwarden.com> 2020-04-06 18:06:32 +02:00			`await this.tokenService.toggleTokens();`
setLockOption 2018-02-11 06:38:17 +01:00			`}`
support for unlocking with PIN code 2019-02-13 05:52:50 +01:00
soft locking with protected pin 2019-02-14 03:36:36 +01:00			`async isPinLockSet(): Promise<[boolean, boolean]> {`
			`const protectedPin = await this.storageService.get<string>(ConstantsService.protectedPin);`
support for unlocking with PIN code 2019-02-13 05:52:50 +01:00			`const pinProtectedKey = await this.storageService.get<string>(ConstantsService.pinProtectedKey);`
soft locking with protected pin 2019-02-14 03:36:36 +01:00			`return [protectedPin != null, pinProtectedKey != null];`
			`}`

			`clear(): Promise<any> {`
memory stored pinProtectedKey 2019-08-29 15:40:50 +02:00			`this.pinProtectedKey = null;`
soft locking with protected pin 2019-02-14 03:36:36 +01:00			`return this.storageService.remove(ConstantsService.protectedPin);`
			`}`
move lock service ti jslib 2018-01-10 05:18:51 +01:00			`}`