bitwarden-estensione-browser/src/background/runtime.background.ts

484 lines
20 KiB
TypeScript
Raw Normal View History

2018-01-09 20:26:20 +01:00
import { CipherType } from 'jslib/enums';
2018-01-24 19:27:58 +01:00
import { CipherView } from 'jslib/models/view/cipherView';
import { LoginUriView } from 'jslib/models/view/loginUriView';
2018-01-24 19:27:58 +01:00
import { LoginView } from 'jslib/models/view/loginView';
import { CipherService } from 'jslib/abstractions/cipher.service';
import { EnvironmentService } from 'jslib/abstractions/environment.service';
2018-04-11 20:52:49 +02:00
import { I18nService } from 'jslib/abstractions/i18n.service';
import { MessagingService } from 'jslib/abstractions/messaging.service';
import { NotificationsService } from 'jslib/abstractions/notifications.service';
import { PolicyService } from 'jslib/abstractions/policy.service';
import { StorageService } from 'jslib/abstractions/storage.service';
2019-02-27 15:28:16 +01:00
import { SystemService } from 'jslib/abstractions/system.service';
import { UserService } from 'jslib/abstractions/user.service';
import { VaultTimeoutService } from 'jslib/abstractions/vaultTimeout.service';
2021-02-10 16:40:15 +01:00
import { ConstantsService } from 'jslib/services/constants.service';
import { AutofillService } from '../services/abstractions/autofill.service';
import BrowserPlatformUtilsService from '../services/browserPlatformUtils.service';
2017-12-07 21:36:24 +01:00
2018-01-12 17:09:30 +01:00
import { BrowserApi } from '../browser/browserApi';
2017-12-07 21:36:24 +01:00
import MainBackground from './main.background';
import { Analytics } from 'jslib/misc';
2018-04-23 19:04:11 +02:00
import { Utils } from 'jslib/misc/utils';
import { OrganizationUserStatusType } from 'jslib/enums/organizationUserStatusType';
import { PolicyType } from 'jslib/enums/policyType';
export default class RuntimeBackground {
private runtime: any;
2018-04-06 17:48:45 +02:00
private autofillTimeout: any;
2017-12-07 21:36:24 +01:00
private pageDetailsToAutoFill: any[] = [];
private onInstalledReason: string = null;
2017-12-07 21:36:24 +01:00
constructor(private main: MainBackground, private autofillService: AutofillService,
2018-04-10 20:20:03 +02:00
private cipherService: CipherService, private platformUtilsService: BrowserPlatformUtilsService,
2018-08-20 23:40:39 +02:00
private storageService: StorageService, private i18nService: I18nService,
2019-02-25 22:19:19 +01:00
private analytics: Analytics, private notificationsService: NotificationsService,
private systemService: SystemService, private vaultTimeoutService: VaultTimeoutService,
private environmentService: EnvironmentService, private policyService: PolicyService,
private userService: UserService, private messagingService: MessagingService) {
// onInstalled listener must be wired up before anything else, so we do it in the ctor
chrome.runtime.onInstalled.addListener((details: any) => {
this.onInstalledReason = details.reason;
});
}
async init() {
if (!chrome.runtime) {
2017-12-07 21:36:24 +01:00
return;
}
2018-01-16 06:03:17 +01:00
await this.checkOnInstalled();
BrowserApi.messageListener('runtime.background', async (msg: any, sender: any, sendResponse: any) => {
2018-01-12 21:20:19 +01:00
await this.processMessage(msg, sender, sendResponse);
});
}
2017-12-07 21:36:24 +01:00
2018-01-14 00:16:19 +01:00
async processMessage(msg: any, sender: any, sendResponse: any) {
2018-01-12 21:20:19 +01:00
switch (msg.command) {
case 'loggedIn':
case 'unlocked':
await this.main.setIcon();
2019-02-25 22:19:19 +01:00
await this.main.refreshBadgeAndMenu(false);
2018-08-23 15:26:07 +02:00
this.notificationsService.updateConnection(msg.command === 'unlocked');
2019-02-27 15:28:16 +01:00
this.systemService.cancelProcessReload();
2018-01-12 21:20:19 +01:00
break;
case 'logout':
await this.main.logout(msg.expired);
break;
case 'syncCompleted':
if (msg.successfully) {
setTimeout(async () => await this.main.refreshBadgeAndMenu(), 2000);
}
break;
2018-01-18 22:17:58 +01:00
case 'openPopup':
await this.main.openPopup();
break;
2018-04-10 20:20:03 +02:00
case 'showDialogResolve':
this.platformUtilsService.resolveDialogPromise(msg.dialogId, msg.confirmed);
break;
2018-01-13 16:13:31 +01:00
case 'bgGetDataForTab':
await this.getDataForTab(sender.tab, msg.responseCommand);
break;
2018-01-12 21:20:19 +01:00
case 'bgOpenNotificationBar':
await BrowserApi.tabSendMessageData(sender.tab, 'openNotificationBar', msg.data);
break;
case 'bgCloseNotificationBar':
await BrowserApi.tabSendMessageData(sender.tab, 'closeNotificationBar');
break;
case 'bgAdjustNotificationBar':
await BrowserApi.tabSendMessageData(sender.tab, 'adjustNotificationBar', msg.data);
break;
case 'bgCollectPageDetails':
await this.main.collectPageDetailsForContentScript(sender.tab, msg.sender, sender.frameId);
2018-01-12 21:20:19 +01:00
break;
case 'bgAddLogin':
await this.addLogin(msg.login, sender.tab);
break;
2018-08-01 05:24:11 +02:00
case 'bgChangedPassword':
await this.changedPassword(msg.data, sender.tab);
break;
2018-01-12 21:20:19 +01:00
case 'bgAddClose':
2018-08-01 05:24:11 +02:00
case 'bgChangeClose':
this.removeTabFromNotificationQueue(sender.tab);
2018-01-12 21:20:19 +01:00
break;
case 'bgAddSave':
await this.saveAddLogin(sender.tab);
break;
2018-08-01 05:24:11 +02:00
case 'bgChangeSave':
await this.saveChangePassword(sender.tab);
break;
2018-01-12 21:20:19 +01:00
case 'bgNeverSave':
await this.saveNever(sender.tab);
break;
case 'bgUpdateContextMenu':
case 'editedCipher':
case 'addedCipher':
case 'deletedCipher':
2018-01-12 21:20:19 +01:00
await this.main.refreshBadgeAndMenu();
break;
case 'bgReseedStorage':
2019-02-13 17:34:42 +01:00
await this.main.reseedStorage();
break;
2018-01-12 21:20:19 +01:00
case 'collectPageDetailsResponse':
if (await this.vaultTimeoutService.isLocked()) {
return;
}
2018-01-12 21:20:19 +01:00
switch (msg.sender) {
case 'notificationBar':
const forms = this.autofillService.getFormsWithPasswordFields(msg.details);
await BrowserApi.tabSendMessageData(msg.tab, 'notificationBarPageDetails', {
details: msg.details,
forms: forms,
});
break;
case 'autofiller':
case 'autofill_cmd':
const totpCode = await this.autofillService.doAutoFillActiveTab([{
2018-01-12 21:20:19 +01:00
frameId: sender.frameId,
tab: msg.tab,
details: msg.details,
}], msg.sender === 'autofill_cmd');
2018-08-31 03:47:49 +02:00
if (totpCode != null) {
this.platformUtilsService.copyToClipboard(totpCode, { window: window });
}
2018-01-12 21:20:19 +01:00
break;
case 'contextMenu':
clearTimeout(this.autofillTimeout);
this.pageDetailsToAutoFill.push({
frameId: sender.frameId,
tab: msg.tab,
details: msg.details,
});
this.autofillTimeout = setTimeout(async () => await this.autofillPage(), 300);
break;
default:
break;
}
break;
2020-08-14 22:20:16 +02:00
case 'authResult':
let vaultUrl = this.environmentService.getWebVaultUrl();
if (vaultUrl == null) {
vaultUrl = 'https://vault.bitwarden.com';
}
2020-08-14 22:20:16 +02:00
if (msg.referrer == null || Utils.getHostname(vaultUrl) !== msg.referrer) {
return;
}
try {
2020-09-18 22:03:08 +02:00
BrowserApi.createNewTab('popup/index.html?uilocation=popout#/sso?code=' +
msg.code + '&state=' + msg.state);
}
catch { }
2020-08-14 22:20:16 +02:00
break;
case 'webAuthnResult':
let vaultUrl2 = this.environmentService.getWebVaultUrl();
if (vaultUrl2 == null) {
vaultUrl2 = 'https://vault.bitwarden.com';
}
if (msg.referrer == null || Utils.getHostname(vaultUrl2) !== msg.referrer) {
return;
}
const params = `webAuthnResponse=${encodeURIComponent(msg.data)};remember=${msg.remember}`;
BrowserApi.createNewTab(`popup/index.html?uilocation=popout#/2fa;${params}`, undefined, false);
break;
case 'reloadPopup':
this.messagingService.send('reloadPopup');
break;
2018-01-12 21:20:19 +01:00
default:
break;
}
}
2017-12-07 21:36:24 +01:00
private async autofillPage() {
const totpCode = await this.autofillService.doAutoFill({
2017-12-07 21:36:24 +01:00
cipher: this.main.loginToAutoFill,
pageDetails: this.pageDetailsToAutoFill,
2021-02-10 16:40:15 +01:00
fillNewPassword: true,
2017-12-07 21:36:24 +01:00
});
2018-08-31 03:47:49 +02:00
if (totpCode != null) {
this.platformUtilsService.copyToClipboard(totpCode, { window: window });
}
2017-12-07 21:36:24 +01:00
// reset
this.main.loginToAutoFill = null;
this.pageDetailsToAutoFill = [];
}
private async saveAddLogin(tab: any) {
if (await this.vaultTimeoutService.isLocked()) {
return;
}
2018-08-01 05:24:11 +02:00
for (let i = this.main.notificationQueue.length - 1; i >= 0; i--) {
const queueMessage = this.main.notificationQueue[i];
if (queueMessage.tabId !== tab.id || queueMessage.type !== 'addLogin') {
2017-12-07 21:36:24 +01:00
continue;
}
2018-10-14 04:52:49 +02:00
const tabDomain = Utils.getDomain(tab.url);
2018-08-01 05:24:11 +02:00
if (tabDomain != null && tabDomain !== queueMessage.domain) {
2017-12-07 21:36:24 +01:00
continue;
}
2018-08-01 05:24:11 +02:00
this.main.notificationQueue.splice(i, 1);
BrowserApi.tabSendMessageData(tab, 'closeNotificationBar');
2017-12-07 21:36:24 +01:00
2018-01-24 19:27:58 +01:00
const loginModel = new LoginView();
const loginUri = new LoginUriView();
2018-08-01 05:24:11 +02:00
loginUri.uri = queueMessage.uri;
loginModel.uris = [loginUri];
2018-08-01 05:24:11 +02:00
loginModel.username = queueMessage.username;
loginModel.password = queueMessage.password;
2018-01-24 19:27:58 +01:00
const model = new CipherView();
2018-11-12 12:58:53 +01:00
model.name = Utils.getHostname(queueMessage.uri) || queueMessage.domain;
model.name = model.name.replace(/^www\./, '');
2018-01-24 19:27:58 +01:00
model.type = CipherType.Login;
model.login = loginModel;
2017-12-07 21:36:24 +01:00
2018-01-24 19:27:58 +01:00
const cipher = await this.cipherService.encrypt(model);
2017-12-07 21:36:24 +01:00
await this.cipherService.saveWithServer(cipher);
2018-01-19 22:19:24 +01:00
this.analytics.ga('send', {
2017-12-07 21:36:24 +01:00
hitType: 'event',
eventAction: 'Added Login from Notification Bar',
});
}
}
2018-08-01 05:24:11 +02:00
private async saveChangePassword(tab: any) {
if (await this.vaultTimeoutService.isLocked()) {
return;
}
2018-08-01 05:24:11 +02:00
for (let i = this.main.notificationQueue.length - 1; i >= 0; i--) {
const queueMessage = this.main.notificationQueue[i];
if (queueMessage.tabId !== tab.id || queueMessage.type !== 'changePassword') {
continue;
}
2018-10-14 04:52:49 +02:00
const tabDomain = Utils.getDomain(tab.url);
2018-08-01 05:24:11 +02:00
if (tabDomain != null && tabDomain !== queueMessage.domain) {
continue;
}
this.main.notificationQueue.splice(i, 1);
BrowserApi.tabSendMessageData(tab, 'closeNotificationBar');
2018-08-01 05:24:11 +02:00
const cipher = await this.cipherService.get(queueMessage.cipherId);
if (cipher != null && cipher.type === CipherType.Login) {
const model = await cipher.decrypt();
model.login.password = queueMessage.newPassword;
const newCipher = await this.cipherService.encrypt(model);
await this.cipherService.saveWithServer(newCipher);
this.analytics.ga('send', {
hitType: 'event',
eventAction: 'Changed Password from Notification Bar',
});
}
}
}
2017-12-07 21:36:24 +01:00
private async saveNever(tab: any) {
2018-08-01 05:24:11 +02:00
for (let i = this.main.notificationQueue.length - 1; i >= 0; i--) {
const queueMessage = this.main.notificationQueue[i];
if (queueMessage.tabId !== tab.id || queueMessage.type !== 'addLogin') {
2017-12-07 21:36:24 +01:00
continue;
}
2018-10-14 04:52:49 +02:00
const tabDomain = Utils.getDomain(tab.url);
2018-08-01 05:24:11 +02:00
if (tabDomain != null && tabDomain !== queueMessage.domain) {
2017-12-07 21:36:24 +01:00
continue;
}
2018-08-01 05:24:11 +02:00
this.main.notificationQueue.splice(i, 1);
BrowserApi.tabSendMessageData(tab, 'closeNotificationBar');
2018-04-23 19:04:11 +02:00
const hostname = Utils.getHostname(tab.url);
2017-12-07 21:36:24 +01:00
await this.cipherService.saveNeverDomain(hostname);
}
}
private async addLogin(loginInfo: any, tab: any) {
if (await this.vaultTimeoutService.isLocked()) {
return;
}
2018-10-14 04:52:49 +02:00
const loginDomain = Utils.getDomain(loginInfo.url);
2017-12-07 21:36:24 +01:00
if (loginDomain == null) {
return;
}
let normalizedUsername = loginInfo.username;
if (normalizedUsername != null) {
normalizedUsername = normalizedUsername.toLowerCase();
2019-12-26 13:51:16 +01:00
}
const ciphers = await this.cipherService.getAllDecryptedForUrl(loginInfo.url);
2021-02-10 16:40:15 +01:00
const usernameMatches = ciphers.filter(c =>
c.login.username != null && c.login.username.toLowerCase() === normalizedUsername);
2018-08-06 19:37:29 +02:00
if (usernameMatches.length === 0) {
2018-08-07 15:22:06 +02:00
const disabledAddLogin = await this.storageService.get<boolean>(
ConstantsService.disableAddLoginNotificationKey);
if (disabledAddLogin) {
return;
}
if (!(await this.allowPersonalOwnership())) {
return;
}
2018-08-01 05:24:11 +02:00
// remove any old messages for this tab
this.removeTabFromNotificationQueue(tab);
this.main.notificationQueue.push({
type: 'addLogin',
2017-12-07 21:36:24 +01:00
username: loginInfo.username,
password: loginInfo.password,
domain: loginDomain,
uri: loginInfo.url,
tabId: tab.id,
expires: new Date((new Date()).getTime() + 30 * 60000), // 30 minutes
});
2018-08-01 05:24:11 +02:00
await this.main.checkNotificationQueue(tab);
2018-08-06 19:37:29 +02:00
} else if (usernameMatches.length === 1 && usernameMatches[0].login.password !== loginInfo.password) {
2018-08-07 15:22:06 +02:00
const disabledChangePassword = await this.storageService.get<boolean>(
ConstantsService.disableChangedPasswordNotificationKey);
if (disabledChangePassword) {
return;
}
2018-08-06 19:37:29 +02:00
this.addChangedPasswordToQueue(usernameMatches[0].id, loginDomain, loginInfo.password, tab);
2018-08-01 05:24:11 +02:00
}
}
2017-12-07 21:36:24 +01:00
2018-08-01 05:24:11 +02:00
private async changedPassword(changeData: any, tab: any) {
if (await this.vaultTimeoutService.isLocked()) {
return;
}
2018-10-14 04:52:49 +02:00
const loginDomain = Utils.getDomain(changeData.url);
2018-08-01 05:24:11 +02:00
if (loginDomain == null) {
return;
}
let id: string = null;
2018-08-01 05:24:11 +02:00
const ciphers = await this.cipherService.getAllDecryptedForUrl(changeData.url);
if (changeData.currentPassword != null) {
2021-02-10 16:40:15 +01:00
const passwordMatches = ciphers.filter(c => c.login.password === changeData.currentPassword);
if (passwordMatches.length === 1) {
id = passwordMatches[0].id;
}
} else if (ciphers.length === 1) {
id = ciphers[0].id;
}
if (id != null) {
this.addChangedPasswordToQueue(id, loginDomain, changeData.newPassword, tab);
2017-12-07 21:36:24 +01:00
}
}
2018-08-06 19:37:29 +02:00
private async addChangedPasswordToQueue(cipherId: string, loginDomain: string, newPassword: string, tab: any) {
// remove any old messages for this tab
this.removeTabFromNotificationQueue(tab);
this.main.notificationQueue.push({
type: 'changePassword',
cipherId: cipherId,
newPassword: newPassword,
domain: loginDomain,
tabId: tab.id,
expires: new Date((new Date()).getTime() + 30 * 60000), // 30 minutes
});
await this.main.checkNotificationQueue(tab);
}
2018-08-01 05:24:11 +02:00
private removeTabFromNotificationQueue(tab: any) {
for (let i = this.main.notificationQueue.length - 1; i >= 0; i--) {
if (this.main.notificationQueue[i].tabId === tab.id) {
this.main.notificationQueue.splice(i, 1);
2017-12-07 21:36:24 +01:00
}
}
}
2018-01-16 06:03:17 +01:00
private async checkOnInstalled() {
setTimeout(async () => {
if (this.onInstalledReason != null) {
if (this.onInstalledReason === 'install') {
BrowserApi.createNewTab('https://bitwarden.com/browser-start/');
2018-01-18 04:42:31 +01:00
await this.setDefaultSettings();
2018-01-16 06:03:17 +01:00
}
2018-01-19 22:19:24 +01:00
this.analytics.ga('send', {
2018-01-19 17:42:35 +01:00
hitType: 'event',
eventAction: 'onInstalled ' + this.onInstalledReason,
});
this.onInstalledReason = null;
}
2018-01-19 17:42:35 +01:00
}, 100);
}
2018-01-18 04:42:31 +01:00
private async setDefaultSettings() {
// Default timeout option to "on restart".
const currentVaultTimeout = await this.storageService.get<number>(ConstantsService.vaultTimeoutKey);
if (currentVaultTimeout == null) {
await this.storageService.save(ConstantsService.vaultTimeoutKey, -1);
}
// Default action to "lock".
const currentVaultTimeoutAction = await this.storageService.get<string>(ConstantsService.vaultTimeoutActionKey);
if (currentVaultTimeoutAction == null) {
await this.storageService.save(ConstantsService.vaultTimeoutActionKey, 'lock');
2018-01-18 04:42:31 +01:00
}
}
2018-01-13 16:13:31 +01:00
private async getDataForTab(tab: any, responseCommand: string) {
2018-01-13 21:09:05 +01:00
const responseData: any = {};
2018-01-13 16:13:31 +01:00
if (responseCommand === 'notificationBarDataResponse') {
2018-01-13 21:09:05 +01:00
responseData.neverDomains = await this.storageService.get<any>(ConstantsService.neverDomainsKey);
const disableAddLoginFromOptions = await this.storageService.get<boolean>(
2018-01-13 16:13:31 +01:00
ConstantsService.disableAddLoginNotificationKey);
responseData.disabledAddLoginNotification = disableAddLoginFromOptions || !(await this.allowPersonalOwnership());
responseData.disabledChangedPasswordNotification = await this.storageService.get<boolean>(
ConstantsService.disableChangedPasswordNotificationKey);
2018-01-13 16:13:31 +01:00
} else if (responseCommand === 'autofillerAutofillOnPageLoadEnabledResponse') {
2018-01-13 21:09:05 +01:00
responseData.autofillEnabled = await this.storageService.get<boolean>(
2018-01-13 16:13:31 +01:00
ConstantsService.enableAutoFillOnPageLoadKey);
2018-01-13 21:09:05 +01:00
} else if (responseCommand === 'notificationBarFrameDataResponse') {
responseData.i18n = {
2018-04-11 20:52:49 +02:00
appName: this.i18nService.t('appName'),
close: this.i18nService.t('close'),
yes: this.i18nService.t('yes'),
never: this.i18nService.t('never'),
notificationAddSave: this.i18nService.t('notificationAddSave'),
notificationNeverSave: this.i18nService.t('notificationNeverSave'),
notificationAddDesc: this.i18nService.t('notificationAddDesc'),
2018-08-01 05:24:11 +02:00
notificationChangeSave: this.i18nService.t('notificationChangeSave'),
notificationChangeDesc: this.i18nService.t('notificationChangeDesc'),
2018-01-13 21:09:05 +01:00
};
2018-01-13 16:13:31 +01:00
}
2018-01-13 21:09:05 +01:00
await BrowserApi.tabSendMessageData(tab, responseCommand, responseData);
2018-01-13 16:13:31 +01:00
}
private async allowPersonalOwnership(): Promise<boolean> {
const personalOwnershipPolicies = await this.policyService.getAll(PolicyType.PersonalOwnership);
if (personalOwnershipPolicies != null) {
for (const policy of personalOwnershipPolicies) {
if (policy.enabled) {
const org = await this.userService.getOrganization(policy.organizationId);
if (org != null && org.enabled && org.usePolicies && !org.canManagePolicies
&& org.status === OrganizationUserStatusType.Confirmed) {
return false;
}
}
}
}
return true;
}
}