import { CipherType } from 'jslib-common/enums'; import { CipherView } from 'jslib-common/models/view/cipherView'; import { LoginUriView } from 'jslib-common/models/view/loginUriView'; import { LoginView } from 'jslib-common/models/view/loginView'; import { CipherService } from 'jslib-common/abstractions/cipher.service'; import { EnvironmentService } from 'jslib-common/abstractions/environment.service'; import { I18nService } from 'jslib-common/abstractions/i18n.service'; import { MessagingService } from 'jslib-common/abstractions/messaging.service'; import { NotificationsService } from 'jslib-common/abstractions/notifications.service'; import { PolicyService } from 'jslib-common/abstractions/policy.service'; import { StorageService } from 'jslib-common/abstractions/storage.service'; import { SystemService } from 'jslib-common/abstractions/system.service'; import { UserService } from 'jslib-common/abstractions/user.service'; import { VaultTimeoutService } from 'jslib-common/abstractions/vaultTimeout.service'; import { ConstantsService } from 'jslib-common/services/constants.service'; import { AutofillService } from '../services/abstractions/autofill.service'; import BrowserPlatformUtilsService from '../services/browserPlatformUtils.service'; import { BrowserApi } from '../browser/browserApi'; import MainBackground from './main.background'; import { Utils } from 'jslib-common/misc/utils'; import { OrganizationUserStatusType } from 'jslib-common/enums/organizationUserStatusType'; import { PolicyType } from 'jslib-common/enums/policyType'; export default class RuntimeBackground { private runtime: any; private autofillTimeout: any; private pageDetailsToAutoFill: any[] = []; private onInstalledReason: string = null; constructor(private main: MainBackground, private autofillService: AutofillService, private cipherService: CipherService, private platformUtilsService: BrowserPlatformUtilsService, private storageService: StorageService, private i18nService: I18nService, private notificationsService: NotificationsService, private systemService: SystemService, private vaultTimeoutService: VaultTimeoutService, private environmentService: EnvironmentService, private policyService: PolicyService, private userService: UserService, private messagingService: MessagingService) { // onInstalled listener must be wired up before anything else, so we do it in the ctor chrome.runtime.onInstalled.addListener((details: any) => { this.onInstalledReason = details.reason; }); } async init() { if (!chrome.runtime) { return; } await this.checkOnInstalled(); BrowserApi.messageListener('runtime.background', async (msg: any, sender: any, sendResponse: any) => { await this.processMessage(msg, sender, sendResponse); }); } async processMessage(msg: any, sender: any, sendResponse: any) { switch (msg.command) { case 'loggedIn': case 'unlocked': await this.main.setIcon(); await this.main.refreshBadgeAndMenu(false); this.notificationsService.updateConnection(msg.command === 'unlocked'); this.systemService.cancelProcessReload(); break; case 'logout': await this.main.logout(msg.expired); break; case 'syncCompleted': if (msg.successfully) { setTimeout(async () => await this.main.refreshBadgeAndMenu(), 2000); } break; case 'openPopup': await this.main.openPopup(); break; case 'showDialogResolve': this.platformUtilsService.resolveDialogPromise(msg.dialogId, msg.confirmed); break; case 'bgGetDataForTab': await this.getDataForTab(sender.tab, msg.responseCommand); break; case 'bgOpenNotificationBar': await BrowserApi.tabSendMessageData(sender.tab, 'openNotificationBar', msg.data); break; case 'bgCloseNotificationBar': await BrowserApi.tabSendMessageData(sender.tab, 'closeNotificationBar'); break; case 'bgAdjustNotificationBar': await BrowserApi.tabSendMessageData(sender.tab, 'adjustNotificationBar', msg.data); break; case 'bgCollectPageDetails': await this.main.collectPageDetailsForContentScript(sender.tab, msg.sender, sender.frameId); break; case 'bgAddLogin': await this.addLogin(msg.login, sender.tab); break; case 'bgChangedPassword': await this.changedPassword(msg.data, sender.tab); break; case 'bgAddClose': case 'bgChangeClose': this.removeTabFromNotificationQueue(sender.tab); break; case 'bgAddSave': await this.saveAddLogin(sender.tab); break; case 'bgChangeSave': await this.saveChangePassword(sender.tab); break; case 'bgNeverSave': await this.saveNever(sender.tab); break; case 'bgUpdateContextMenu': case 'editedCipher': case 'addedCipher': case 'deletedCipher': await this.main.refreshBadgeAndMenu(); break; case 'bgReseedStorage': await this.main.reseedStorage(); break; case 'collectPageDetailsResponse': if (await this.vaultTimeoutService.isLocked()) { return; } switch (msg.sender) { case 'notificationBar': const forms = this.autofillService.getFormsWithPasswordFields(msg.details); await BrowserApi.tabSendMessageData(msg.tab, 'notificationBarPageDetails', { details: msg.details, forms: forms, }); break; case 'autofiller': case 'autofill_cmd': const totpCode = await this.autofillService.doAutoFillActiveTab([{ frameId: sender.frameId, tab: msg.tab, details: msg.details, }], msg.sender === 'autofill_cmd'); if (totpCode != null) { this.platformUtilsService.copyToClipboard(totpCode, { window: window }); } break; case 'contextMenu': clearTimeout(this.autofillTimeout); this.pageDetailsToAutoFill.push({ frameId: sender.frameId, tab: msg.tab, details: msg.details, }); this.autofillTimeout = setTimeout(async () => await this.autofillPage(), 300); break; default: break; } break; case 'authResult': let vaultUrl = this.environmentService.getWebVaultUrl(); if (vaultUrl == null) { vaultUrl = 'https://vault.bitwarden.com'; } if (msg.referrer == null || Utils.getHostname(vaultUrl) !== msg.referrer) { return; } try { BrowserApi.createNewTab('popup/index.html?uilocation=popout#/sso?code=' + msg.code + '&state=' + msg.state); } catch { } break; case 'webAuthnResult': let vaultUrl2 = this.environmentService.getWebVaultUrl(); if (vaultUrl2 == null) { vaultUrl2 = 'https://vault.bitwarden.com'; } if (msg.referrer == null || Utils.getHostname(vaultUrl2) !== msg.referrer) { return; } const params = `webAuthnResponse=${encodeURIComponent(msg.data)};remember=${msg.remember}`; BrowserApi.createNewTab(`popup/index.html?uilocation=popout#/2fa;${params}`, undefined, false); break; case 'reloadPopup': this.messagingService.send('reloadPopup'); break; case 'emailVerificationRequired': this.messagingService.send('showDialog', { dialogId: 'emailVerificationRequired', title: this.i18nService.t('emailVerificationRequired'), text: this.i18nService.t('emailVerificationRequiredDesc'), confirmText: this.i18nService.t('ok'), type: 'info', }); break; default: break; } } private async autofillPage() { const totpCode = await this.autofillService.doAutoFill({ cipher: this.main.loginToAutoFill, pageDetails: this.pageDetailsToAutoFill, fillNewPassword: true, }); if (totpCode != null) { this.platformUtilsService.copyToClipboard(totpCode, { window: window }); } // reset this.main.loginToAutoFill = null; this.pageDetailsToAutoFill = []; } private async saveAddLogin(tab: any) { if (await this.vaultTimeoutService.isLocked()) { return; } for (let i = this.main.notificationQueue.length - 1; i >= 0; i--) { const queueMessage = this.main.notificationQueue[i]; if (queueMessage.tabId !== tab.id || queueMessage.type !== 'addLogin') { continue; } const tabDomain = Utils.getDomain(tab.url); if (tabDomain != null && tabDomain !== queueMessage.domain) { continue; } this.main.notificationQueue.splice(i, 1); BrowserApi.tabSendMessageData(tab, 'closeNotificationBar'); const loginModel = new LoginView(); const loginUri = new LoginUriView(); loginUri.uri = queueMessage.uri; loginModel.uris = [loginUri]; loginModel.username = queueMessage.username; loginModel.password = queueMessage.password; const model = new CipherView(); model.name = Utils.getHostname(queueMessage.uri) || queueMessage.domain; model.name = model.name.replace(/^www\./, ''); model.type = CipherType.Login; model.login = loginModel; const cipher = await this.cipherService.encrypt(model); await this.cipherService.saveWithServer(cipher); } } private async saveChangePassword(tab: any) { if (await this.vaultTimeoutService.isLocked()) { return; } for (let i = this.main.notificationQueue.length - 1; i >= 0; i--) { const queueMessage = this.main.notificationQueue[i]; if (queueMessage.tabId !== tab.id || queueMessage.type !== 'changePassword') { continue; } const tabDomain = Utils.getDomain(tab.url); if (tabDomain != null && tabDomain !== queueMessage.domain) { continue; } this.main.notificationQueue.splice(i, 1); BrowserApi.tabSendMessageData(tab, 'closeNotificationBar'); const cipher = await this.cipherService.get(queueMessage.cipherId); if (cipher != null && cipher.type === CipherType.Login) { const model = await cipher.decrypt(); model.login.password = queueMessage.newPassword; const newCipher = await this.cipherService.encrypt(model); await this.cipherService.saveWithServer(newCipher); } } } private async saveNever(tab: any) { for (let i = this.main.notificationQueue.length - 1; i >= 0; i--) { const queueMessage = this.main.notificationQueue[i]; if (queueMessage.tabId !== tab.id || queueMessage.type !== 'addLogin') { continue; } const tabDomain = Utils.getDomain(tab.url); if (tabDomain != null && tabDomain !== queueMessage.domain) { continue; } this.main.notificationQueue.splice(i, 1); BrowserApi.tabSendMessageData(tab, 'closeNotificationBar'); const hostname = Utils.getHostname(tab.url); await this.cipherService.saveNeverDomain(hostname); } } private async addLogin(loginInfo: any, tab: any) { if (await this.vaultTimeoutService.isLocked()) { return; } const loginDomain = Utils.getDomain(loginInfo.url); if (loginDomain == null) { return; } let normalizedUsername = loginInfo.username; if (normalizedUsername != null) { normalizedUsername = normalizedUsername.toLowerCase(); } const ciphers = await this.cipherService.getAllDecryptedForUrl(loginInfo.url); const usernameMatches = ciphers.filter(c => c.login.username != null && c.login.username.toLowerCase() === normalizedUsername); if (usernameMatches.length === 0) { const disabledAddLogin = await this.storageService.get( ConstantsService.disableAddLoginNotificationKey); if (disabledAddLogin) { return; } if (!(await this.allowPersonalOwnership())) { return; } // remove any old messages for this tab this.removeTabFromNotificationQueue(tab); this.main.notificationQueue.push({ type: 'addLogin', username: loginInfo.username, password: loginInfo.password, domain: loginDomain, uri: loginInfo.url, tabId: tab.id, expires: new Date((new Date()).getTime() + 30 * 60000), // 30 minutes }); await this.main.checkNotificationQueue(tab); } else if (usernameMatches.length === 1 && usernameMatches[0].login.password !== loginInfo.password) { const disabledChangePassword = await this.storageService.get( ConstantsService.disableChangedPasswordNotificationKey); if (disabledChangePassword) { return; } this.addChangedPasswordToQueue(usernameMatches[0].id, loginDomain, loginInfo.password, tab); } } private async changedPassword(changeData: any, tab: any) { if (await this.vaultTimeoutService.isLocked()) { return; } const loginDomain = Utils.getDomain(changeData.url); if (loginDomain == null) { return; } let id: string = null; const ciphers = await this.cipherService.getAllDecryptedForUrl(changeData.url); if (changeData.currentPassword != null) { const passwordMatches = ciphers.filter(c => c.login.password === changeData.currentPassword); if (passwordMatches.length === 1) { id = passwordMatches[0].id; } } else if (ciphers.length === 1) { id = ciphers[0].id; } if (id != null) { this.addChangedPasswordToQueue(id, loginDomain, changeData.newPassword, tab); } } private async addChangedPasswordToQueue(cipherId: string, loginDomain: string, newPassword: string, tab: any) { // remove any old messages for this tab this.removeTabFromNotificationQueue(tab); this.main.notificationQueue.push({ type: 'changePassword', cipherId: cipherId, newPassword: newPassword, domain: loginDomain, tabId: tab.id, expires: new Date((new Date()).getTime() + 30 * 60000), // 30 minutes }); await this.main.checkNotificationQueue(tab); } private removeTabFromNotificationQueue(tab: any) { for (let i = this.main.notificationQueue.length - 1; i >= 0; i--) { if (this.main.notificationQueue[i].tabId === tab.id) { this.main.notificationQueue.splice(i, 1); } } } private async checkOnInstalled() { setTimeout(async () => { if (this.onInstalledReason != null) { if (this.onInstalledReason === 'install') { BrowserApi.createNewTab('https://bitwarden.com/browser-start/'); await this.setDefaultSettings(); } this.onInstalledReason = null; } }, 100); } private async setDefaultSettings() { // Default timeout option to "on restart". const currentVaultTimeout = await this.storageService.get(ConstantsService.vaultTimeoutKey); if (currentVaultTimeout == null) { await this.storageService.save(ConstantsService.vaultTimeoutKey, -1); } // Default action to "lock". const currentVaultTimeoutAction = await this.storageService.get(ConstantsService.vaultTimeoutActionKey); if (currentVaultTimeoutAction == null) { await this.storageService.save(ConstantsService.vaultTimeoutActionKey, 'lock'); } } private async getDataForTab(tab: any, responseCommand: string) { const responseData: any = {}; if (responseCommand === 'notificationBarDataResponse') { responseData.neverDomains = await this.storageService.get(ConstantsService.neverDomainsKey); const disableAddLoginFromOptions = await this.storageService.get( ConstantsService.disableAddLoginNotificationKey); responseData.disabledAddLoginNotification = disableAddLoginFromOptions || !(await this.allowPersonalOwnership()); responseData.disabledChangedPasswordNotification = await this.storageService.get( ConstantsService.disableChangedPasswordNotificationKey); } else if (responseCommand === 'autofillerAutofillOnPageLoadEnabledResponse') { responseData.autofillEnabled = await this.storageService.get( ConstantsService.enableAutoFillOnPageLoadKey); } else if (responseCommand === 'notificationBarFrameDataResponse') { responseData.i18n = { appName: this.i18nService.t('appName'), close: this.i18nService.t('close'), yes: this.i18nService.t('yes'), never: this.i18nService.t('never'), notificationAddSave: this.i18nService.t('notificationAddSave'), notificationNeverSave: this.i18nService.t('notificationNeverSave'), notificationAddDesc: this.i18nService.t('notificationAddDesc'), notificationChangeSave: this.i18nService.t('notificationChangeSave'), notificationChangeDesc: this.i18nService.t('notificationChangeDesc'), }; } await BrowserApi.tabSendMessageData(tab, responseCommand, responseData); } private async allowPersonalOwnership(): Promise { const personalOwnershipPolicies = await this.policyService.getAll(PolicyType.PersonalOwnership); if (personalOwnershipPolicies != null) { for (const policy of personalOwnershipPolicies) { if (policy.enabled) { const org = await this.userService.getOrganization(policy.organizationId); if (org != null && org.enabled && org.usePolicies && !org.canManagePolicies && org.status === OrganizationUserStatusType.Confirmed) { return false; } } } } return true; } }