2019-12-05 18:05:28 +03:00
|
|
|
/*
|
|
|
|
|
Copyright 2018, 2019 New Vector Ltd
|
2020-01-22 13:44:02 +03:00
|
|
|
Copyright 2019, 2020 The Matrix.org Foundation C.I.C.
|
2019-12-05 18:05:28 +03:00
|
|
|
|
|
|
|
|
Licensed under the Apache License, Version 2.0 (the "License");
|
|
|
|
|
you may not use this file except in compliance with the License.
|
|
|
|
|
You may obtain a copy of the License at
|
|
|
|
|
|
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
|
|
|
|
|
|
Unless required by applicable law or agreed to in writing, software
|
|
|
|
|
distributed under the License is distributed on an "AS IS" BASIS,
|
|
|
|
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
|
|
|
See the License for the specific language governing permissions and
|
|
|
|
|
limitations under the License.
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
import React from 'react';
|
2020-01-24 22:11:57 +03:00
|
|
|
import PropTypes from 'prop-types';
|
2019-12-20 04:19:56 +03:00
|
|
|
import * as sdk from '../../../../index';
|
2019-12-21 00:13:46 +03:00
|
|
|
import {MatrixClientPeg} from '../../../../MatrixClientPeg';
|
2019-12-05 18:05:28 +03:00
|
|
|
import { scorePassword } from '../../../../utils/PasswordScorer';
|
|
|
|
|
import FileSaver from 'file-saver';
|
|
|
|
|
import { _t } from '../../../../languageHandler';
|
|
|
|
|
import Modal from '../../../../Modal';
|
|
|
|
|
|
2019-12-19 14:26:20 +03:00
|
|
|
const PHASE_LOADING = 0;
|
2020-01-09 23:49:37 +03:00
|
|
|
const PHASE_RESTORE_KEY_BACKUP = 1;
|
|
|
|
|
const PHASE_MIGRATE = 2;
|
|
|
|
|
const PHASE_PASSPHRASE = 3;
|
|
|
|
|
const PHASE_PASSPHRASE_CONFIRM = 4;
|
|
|
|
|
const PHASE_SHOWKEY = 5;
|
|
|
|
|
const PHASE_KEEPITSAFE = 6;
|
|
|
|
|
const PHASE_STORING = 7;
|
|
|
|
|
const PHASE_DONE = 8;
|
|
|
|
|
const PHASE_OPTOUT_CONFIRM = 9;
|
2019-12-05 18:05:28 +03:00
|
|
|
|
|
|
|
|
const PASSWORD_MIN_SCORE = 4; // So secure, many characters, much complex, wow, etc, etc.
|
|
|
|
|
const PASSPHRASE_FEEDBACK_DELAY = 500; // How long after keystroke to offer passphrase feedback, ms.
|
|
|
|
|
|
|
|
|
|
// XXX: copied from ShareDialog: factor out into utils
|
|
|
|
|
function selectText(target) {
|
|
|
|
|
const range = document.createRange();
|
|
|
|
|
range.selectNodeContents(target);
|
|
|
|
|
|
|
|
|
|
const selection = window.getSelection();
|
|
|
|
|
selection.removeAllRanges();
|
|
|
|
|
selection.addRange(range);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Walks the user through the process of creating a passphrase to guard Secure
|
|
|
|
|
* Secret Storage in account data.
|
|
|
|
|
*/
|
|
|
|
|
export default class CreateSecretStorageDialog extends React.PureComponent {
|
2020-01-24 22:11:57 +03:00
|
|
|
static propTypes = {
|
|
|
|
|
hasCancel: PropTypes.bool,
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
defaultProps = {
|
|
|
|
|
hasCancel: true,
|
|
|
|
|
};
|
|
|
|
|
|
2019-12-05 18:05:28 +03:00
|
|
|
constructor(props) {
|
|
|
|
|
super(props);
|
|
|
|
|
|
|
|
|
|
this._keyInfo = null;
|
|
|
|
|
this._encodedRecoveryKey = null;
|
|
|
|
|
this._recoveryKeyNode = null;
|
|
|
|
|
this._setZxcvbnResultTimeout = null;
|
|
|
|
|
|
|
|
|
|
this.state = {
|
2019-12-19 14:26:20 +03:00
|
|
|
phase: PHASE_LOADING,
|
2019-12-05 18:05:28 +03:00
|
|
|
passPhrase: '',
|
|
|
|
|
passPhraseConfirm: '',
|
|
|
|
|
copied: false,
|
|
|
|
|
downloaded: false,
|
|
|
|
|
zxcvbnResult: null,
|
|
|
|
|
setPassPhrase: false,
|
2020-01-09 23:49:37 +03:00
|
|
|
backupInfo: null,
|
|
|
|
|
backupSigStatus: null,
|
2020-01-22 13:44:02 +03:00
|
|
|
// does the server offer a UI auth flow with just m.login.password
|
|
|
|
|
// for /keys/device_signing/upload?
|
|
|
|
|
canUploadKeysWithPasswordOnly: null,
|
|
|
|
|
accountPassword: '',
|
|
|
|
|
accountPasswordCorrect: null,
|
2020-01-23 13:18:08 +03:00
|
|
|
// set if we are 'upgrading' encryption (making an SSSS store from
|
|
|
|
|
// an existing key backup secret).
|
|
|
|
|
doingUpgrade: null,
|
2019-12-05 18:05:28 +03:00
|
|
|
};
|
2019-12-19 14:26:20 +03:00
|
|
|
|
|
|
|
|
this._fetchBackupInfo();
|
2020-01-22 13:44:02 +03:00
|
|
|
this._queryKeyUploadAuth();
|
2020-01-24 22:11:57 +03:00
|
|
|
|
|
|
|
|
MatrixClientPeg.get().on('crypto.keyBackupStatus', this._onKeyBackupStatusChange);
|
2019-12-05 18:05:28 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
componentWillUnmount() {
|
2020-01-24 22:11:57 +03:00
|
|
|
MatrixClientPeg.get().removeListener('crypto.keyBackupStatus', this._onKeyBackupStatusChange);
|
2019-12-05 18:05:28 +03:00
|
|
|
if (this._setZxcvbnResultTimeout !== null) {
|
|
|
|
|
clearTimeout(this._setZxcvbnResultTimeout);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2019-12-19 14:26:20 +03:00
|
|
|
async _fetchBackupInfo() {
|
|
|
|
|
const backupInfo = await MatrixClientPeg.get().getKeyBackupVersion();
|
2020-01-24 22:11:57 +03:00
|
|
|
const backupSigStatus = (
|
|
|
|
|
// we may not have started crypto yet, in which case we definitely don't trust the backup
|
|
|
|
|
MatrixClientPeg.get().isCryptoEnabled() && await MatrixClientPeg.get().isKeyBackupTrusted(backupInfo)
|
|
|
|
|
);
|
2020-01-09 23:49:37 +03:00
|
|
|
|
|
|
|
|
const phase = backupInfo ?
|
|
|
|
|
(backupSigStatus.usable ? PHASE_MIGRATE : PHASE_RESTORE_KEY_BACKUP) :
|
|
|
|
|
PHASE_PASSPHRASE;
|
2019-12-19 14:26:20 +03:00
|
|
|
|
|
|
|
|
this.setState({
|
2020-01-09 23:49:37 +03:00
|
|
|
phase,
|
2019-12-19 14:26:20 +03:00
|
|
|
backupInfo,
|
2020-01-09 23:49:37 +03:00
|
|
|
backupSigStatus,
|
2020-01-23 13:18:08 +03:00
|
|
|
// remember this after this phase so we can use appropriate copy
|
|
|
|
|
doingUpgrade: phase === PHASE_MIGRATE,
|
2019-12-19 14:26:20 +03:00
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
|
2020-01-22 13:44:02 +03:00
|
|
|
async _queryKeyUploadAuth() {
|
|
|
|
|
try {
|
|
|
|
|
await MatrixClientPeg.get().uploadDeviceSigningKeys(null, {});
|
|
|
|
|
// We should never get here: the server should always require
|
|
|
|
|
// UI auth to upload device signing keys. If we do, we upload
|
|
|
|
|
// no keys which would be a no-op.
|
|
|
|
|
console.log("uploadDeviceSigningKeys unexpectedly succeeded without UI auth!");
|
|
|
|
|
} catch (error) {
|
|
|
|
|
if (!error.data.flows) {
|
|
|
|
|
console.log("uploadDeviceSigningKeys advertised no flows!");
|
|
|
|
|
}
|
|
|
|
|
const canUploadKeysWithPasswordOnly = error.data.flows.some(f => {
|
|
|
|
|
return f.stages.length === 1 && f.stages[0] === 'm.login.password';
|
|
|
|
|
});
|
|
|
|
|
this.setState({
|
|
|
|
|
canUploadKeysWithPasswordOnly,
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2020-01-24 22:11:57 +03:00
|
|
|
_onKeyBackupStatusChange = () => {
|
|
|
|
|
this._fetchBackupInfo();
|
|
|
|
|
}
|
|
|
|
|
|
2019-12-05 18:05:28 +03:00
|
|
|
_collectRecoveryKeyNode = (n) => {
|
|
|
|
|
this._recoveryKeyNode = n;
|
|
|
|
|
}
|
|
|
|
|
|
2020-01-22 13:44:02 +03:00
|
|
|
_onMigrateFormSubmit = (e) => {
|
|
|
|
|
e.preventDefault();
|
2019-12-19 14:26:20 +03:00
|
|
|
this._bootstrapSecretStorage();
|
|
|
|
|
}
|
|
|
|
|
|
2019-12-05 18:05:28 +03:00
|
|
|
_onCopyClick = () => {
|
|
|
|
|
selectText(this._recoveryKeyNode);
|
|
|
|
|
const successful = document.execCommand('copy');
|
|
|
|
|
if (successful) {
|
|
|
|
|
this.setState({
|
|
|
|
|
copied: true,
|
|
|
|
|
phase: PHASE_KEEPITSAFE,
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
_onDownloadClick = () => {
|
|
|
|
|
const blob = new Blob([this._encodedRecoveryKey], {
|
|
|
|
|
type: 'text/plain;charset=us-ascii',
|
|
|
|
|
});
|
|
|
|
|
FileSaver.saveAs(blob, 'recovery-key.txt');
|
|
|
|
|
|
|
|
|
|
this.setState({
|
|
|
|
|
downloaded: true,
|
|
|
|
|
phase: PHASE_KEEPITSAFE,
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
|
2020-01-22 13:44:02 +03:00
|
|
|
_doBootstrapUIAuth = async (makeRequest) => {
|
2020-01-22 14:44:47 +03:00
|
|
|
if (this.state.canUploadKeysWithPasswordOnly && this.state.accountPassword) {
|
2020-01-22 13:44:02 +03:00
|
|
|
await makeRequest({
|
|
|
|
|
type: 'm.login.password',
|
|
|
|
|
identifier: {
|
|
|
|
|
type: 'm.id.user',
|
|
|
|
|
user: MatrixClientPeg.get().getUserId(),
|
|
|
|
|
},
|
|
|
|
|
// https://github.com/matrix-org/synapse/issues/5665
|
|
|
|
|
user: MatrixClientPeg.get().getUserId(),
|
|
|
|
|
password: this.state.accountPassword,
|
|
|
|
|
});
|
|
|
|
|
} else {
|
|
|
|
|
const InteractiveAuthDialog = sdk.getComponent("dialogs.InteractiveAuthDialog");
|
|
|
|
|
const { finished } = Modal.createTrackedDialog(
|
|
|
|
|
'Cross-signing keys dialog', '', InteractiveAuthDialog,
|
|
|
|
|
{
|
|
|
|
|
title: _t("Send cross-signing keys to homeserver"),
|
|
|
|
|
matrixClient: MatrixClientPeg.get(),
|
|
|
|
|
makeRequest,
|
|
|
|
|
},
|
|
|
|
|
);
|
|
|
|
|
const [confirmed] = await finished;
|
|
|
|
|
if (!confirmed) {
|
|
|
|
|
throw new Error("Cross-signing key upload auth canceled");
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2019-12-05 18:05:28 +03:00
|
|
|
_bootstrapSecretStorage = async () => {
|
|
|
|
|
this.setState({
|
|
|
|
|
phase: PHASE_STORING,
|
|
|
|
|
error: null,
|
|
|
|
|
});
|
2020-01-22 13:44:02 +03:00
|
|
|
|
2019-12-05 18:05:28 +03:00
|
|
|
const cli = MatrixClientPeg.get();
|
2020-01-22 13:44:02 +03:00
|
|
|
|
2019-12-05 18:05:28 +03:00
|
|
|
try {
|
|
|
|
|
await cli.bootstrapSecretStorage({
|
2020-01-22 13:44:02 +03:00
|
|
|
authUploadDeviceSigningKeys: this._doBootstrapUIAuth,
|
2019-12-05 18:05:28 +03:00
|
|
|
createSecretStorageKey: async () => this._keyInfo,
|
2019-12-19 20:28:32 +03:00
|
|
|
keyBackupInfo: this.state.backupInfo,
|
2019-12-05 18:05:28 +03:00
|
|
|
});
|
|
|
|
|
this.setState({
|
|
|
|
|
phase: PHASE_DONE,
|
|
|
|
|
});
|
|
|
|
|
} catch (e) {
|
2020-01-22 13:44:02 +03:00
|
|
|
if (this.state.canUploadKeysWithPasswordOnly && e.httpStatus === 401 && e.data.flows) {
|
|
|
|
|
this.setState({
|
|
|
|
|
accountPasswordCorrect: false,
|
|
|
|
|
phase: PHASE_MIGRATE,
|
|
|
|
|
});
|
|
|
|
|
} else {
|
|
|
|
|
this.setState({ error: e });
|
|
|
|
|
}
|
2019-12-05 18:05:28 +03:00
|
|
|
console.error("Error bootstrapping secret storage", e);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
_onCancel = () => {
|
|
|
|
|
this.props.onFinished(false);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
_onDone = () => {
|
|
|
|
|
this.props.onFinished(true);
|
|
|
|
|
}
|
|
|
|
|
|
2020-01-14 14:52:00 +03:00
|
|
|
_onRestoreKeyBackupClick = () => {
|
|
|
|
|
const RestoreKeyBackupDialog = sdk.getComponent('dialogs.keybackup.RestoreKeyBackupDialog');
|
|
|
|
|
Modal.createTrackedDialog(
|
2020-01-24 22:11:57 +03:00
|
|
|
'Restore Backup', '', RestoreKeyBackupDialog, {showSummary: false}, null,
|
2020-01-14 14:52:00 +03:00
|
|
|
/* priority = */ false, /* static = */ true,
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
|
2019-12-05 18:05:28 +03:00
|
|
|
_onOptOutClick = () => {
|
|
|
|
|
this.setState({phase: PHASE_OPTOUT_CONFIRM});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
_onSetUpClick = () => {
|
|
|
|
|
this.setState({phase: PHASE_PASSPHRASE});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
_onSkipPassPhraseClick = async () => {
|
|
|
|
|
const [keyInfo, encodedRecoveryKey] =
|
|
|
|
|
await MatrixClientPeg.get().createRecoveryKeyFromPassphrase();
|
|
|
|
|
this._keyInfo = keyInfo;
|
|
|
|
|
this._encodedRecoveryKey = encodedRecoveryKey;
|
|
|
|
|
this.setState({
|
|
|
|
|
copied: false,
|
|
|
|
|
downloaded: false,
|
|
|
|
|
phase: PHASE_SHOWKEY,
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
_onPassPhraseNextClick = () => {
|
|
|
|
|
this.setState({phase: PHASE_PASSPHRASE_CONFIRM});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
_onPassPhraseKeyPress = async (e) => {
|
|
|
|
|
if (e.key === 'Enter') {
|
|
|
|
|
// If we're waiting for the timeout before updating the result at this point,
|
|
|
|
|
// skip ahead and do it now, otherwise we'll deny the attempt to proceed
|
|
|
|
|
// even if the user entered a valid passphrase
|
|
|
|
|
if (this._setZxcvbnResultTimeout !== null) {
|
|
|
|
|
clearTimeout(this._setZxcvbnResultTimeout);
|
|
|
|
|
this._setZxcvbnResultTimeout = null;
|
|
|
|
|
await new Promise((resolve) => {
|
|
|
|
|
this.setState({
|
|
|
|
|
zxcvbnResult: scorePassword(this.state.passPhrase),
|
|
|
|
|
}, resolve);
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
if (this._passPhraseIsValid()) {
|
|
|
|
|
this._onPassPhraseNextClick();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
_onPassPhraseConfirmNextClick = async () => {
|
|
|
|
|
const [keyInfo, encodedRecoveryKey] =
|
|
|
|
|
await MatrixClientPeg.get().createRecoveryKeyFromPassphrase(this.state.passPhrase);
|
|
|
|
|
this._keyInfo = keyInfo;
|
|
|
|
|
this._encodedRecoveryKey = encodedRecoveryKey;
|
|
|
|
|
this.setState({
|
|
|
|
|
setPassPhrase: true,
|
|
|
|
|
copied: false,
|
|
|
|
|
downloaded: false,
|
|
|
|
|
phase: PHASE_SHOWKEY,
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
_onPassPhraseConfirmKeyPress = (e) => {
|
|
|
|
|
if (e.key === 'Enter' && this.state.passPhrase === this.state.passPhraseConfirm) {
|
|
|
|
|
this._onPassPhraseConfirmNextClick();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
_onSetAgainClick = () => {
|
|
|
|
|
this.setState({
|
|
|
|
|
passPhrase: '',
|
|
|
|
|
passPhraseConfirm: '',
|
|
|
|
|
phase: PHASE_PASSPHRASE,
|
|
|
|
|
zxcvbnResult: null,
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
_onKeepItSafeBackClick = () => {
|
|
|
|
|
this.setState({
|
|
|
|
|
phase: PHASE_SHOWKEY,
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
_onPassPhraseChange = (e) => {
|
|
|
|
|
this.setState({
|
|
|
|
|
passPhrase: e.target.value,
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
if (this._setZxcvbnResultTimeout !== null) {
|
|
|
|
|
clearTimeout(this._setZxcvbnResultTimeout);
|
|
|
|
|
}
|
|
|
|
|
this._setZxcvbnResultTimeout = setTimeout(() => {
|
|
|
|
|
this._setZxcvbnResultTimeout = null;
|
|
|
|
|
this.setState({
|
|
|
|
|
// precompute this and keep it in state: zxcvbn is fast but
|
|
|
|
|
// we use it in a couple of different places so no point recomputing
|
|
|
|
|
// it unnecessarily.
|
|
|
|
|
zxcvbnResult: scorePassword(this.state.passPhrase),
|
|
|
|
|
});
|
|
|
|
|
}, PASSPHRASE_FEEDBACK_DELAY);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
_onPassPhraseConfirmChange = (e) => {
|
|
|
|
|
this.setState({
|
|
|
|
|
passPhraseConfirm: e.target.value,
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
_passPhraseIsValid() {
|
|
|
|
|
return this.state.zxcvbnResult && this.state.zxcvbnResult.score >= PASSWORD_MIN_SCORE;
|
|
|
|
|
}
|
|
|
|
|
|
2020-01-22 13:44:02 +03:00
|
|
|
_onAccountPasswordChange = (e) => {
|
|
|
|
|
this.setState({
|
|
|
|
|
accountPassword: e.target.value,
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
|
2020-01-09 23:49:37 +03:00
|
|
|
_renderPhaseRestoreKeyBackup() {
|
|
|
|
|
const DialogButtons = sdk.getComponent('views.elements.DialogButtons');
|
|
|
|
|
return <div>
|
|
|
|
|
<p>{_t(
|
|
|
|
|
"Key Backup is enabled on your account but has not been set " +
|
2020-01-14 14:32:30 +03:00
|
|
|
"up from this session. To set up secret storage, " +
|
2020-01-09 23:49:37 +03:00
|
|
|
"restore your key backup.",
|
|
|
|
|
)}</p>
|
2020-01-14 14:52:00 +03:00
|
|
|
<DialogButtons primaryButton={_t('Restore')}
|
|
|
|
|
onPrimaryButtonClick={this._onRestoreKeyBackupClick}
|
|
|
|
|
onCancel={this._onCancel}
|
|
|
|
|
hasCancel={true}
|
2020-01-09 23:49:37 +03:00
|
|
|
>
|
|
|
|
|
</DialogButtons>
|
|
|
|
|
</div>;
|
|
|
|
|
}
|
|
|
|
|
|
2019-12-19 14:26:20 +03:00
|
|
|
_renderPhaseMigrate() {
|
2019-12-19 22:49:36 +03:00
|
|
|
// TODO: This is a temporary screen so people who have the labs flag turned on and
|
2019-12-19 14:26:20 +03:00
|
|
|
// click the button are aware they're making a change to their account.
|
|
|
|
|
// Once we're confident enough in this (and it's supported enough) we can do
|
|
|
|
|
// it automatically.
|
2019-12-19 22:54:44 +03:00
|
|
|
// https://github.com/vector-im/riot-web/issues/11696
|
2019-12-19 14:26:20 +03:00
|
|
|
const DialogButtons = sdk.getComponent('views.elements.DialogButtons');
|
2020-01-22 13:44:02 +03:00
|
|
|
const Field = sdk.getComponent('views.elements.Field');
|
|
|
|
|
|
|
|
|
|
let authPrompt;
|
|
|
|
|
if (this.state.canUploadKeysWithPasswordOnly) {
|
|
|
|
|
authPrompt = <div>
|
|
|
|
|
<div>{_t("Enter your account password to confirm the upgrade:")}</div>
|
|
|
|
|
<div><Field type="password"
|
|
|
|
|
id="mx_CreateSecretStorage_accountPassword"
|
|
|
|
|
label={_t("Password")}
|
|
|
|
|
value={this.state.accountPassword}
|
|
|
|
|
onChange={this._onAccountPasswordChange}
|
|
|
|
|
flagInvalid={this.state.accountPasswordCorrect === false}
|
|
|
|
|
autoFocus={true}
|
|
|
|
|
/></div>
|
|
|
|
|
</div>;
|
|
|
|
|
} else {
|
|
|
|
|
authPrompt = <p>
|
|
|
|
|
{_t("You'll need to authenticate with the server to confirm the upgrade.")}
|
|
|
|
|
</p>;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return <form onSubmit={this._onMigrateFormSubmit}>
|
2019-12-19 14:26:20 +03:00
|
|
|
<p>{_t(
|
2020-01-22 13:44:02 +03:00
|
|
|
"Upgrade this device to allow it to verify other devices, " +
|
|
|
|
|
"granting them access to encrypted messages and marking them " +
|
|
|
|
|
"as trusted for other users.",
|
2019-12-19 14:26:20 +03:00
|
|
|
)}</p>
|
2020-01-22 13:44:02 +03:00
|
|
|
<div>{authPrompt}</div>
|
2019-12-19 14:26:20 +03:00
|
|
|
<DialogButtons primaryButton={_t('Next')}
|
2020-01-22 13:44:02 +03:00
|
|
|
primaryIsSubmit={true}
|
2019-12-19 14:26:20 +03:00
|
|
|
hasCancel={true}
|
|
|
|
|
onCancel={this._onCancel}
|
2020-01-22 13:44:02 +03:00
|
|
|
primaryDisabled={this.state.canUploadKeysWithPasswordOnly && !this.state.accountPassword}
|
2019-12-19 14:26:20 +03:00
|
|
|
/>
|
2020-01-22 13:44:02 +03:00
|
|
|
</form>;
|
2019-12-19 14:26:20 +03:00
|
|
|
}
|
|
|
|
|
|
2019-12-05 18:05:28 +03:00
|
|
|
_renderPhasePassPhrase() {
|
|
|
|
|
const DialogButtons = sdk.getComponent('views.elements.DialogButtons');
|
2020-01-22 21:08:39 +03:00
|
|
|
const Field = sdk.getComponent('views.elements.Field');
|
2020-01-24 22:11:57 +03:00
|
|
|
const AccessibleButton = sdk.getComponent('elements.AccessibleButton');
|
2019-12-05 18:05:28 +03:00
|
|
|
|
|
|
|
|
let strengthMeter;
|
|
|
|
|
let helpText;
|
|
|
|
|
if (this.state.zxcvbnResult) {
|
|
|
|
|
if (this.state.zxcvbnResult.score >= PASSWORD_MIN_SCORE) {
|
|
|
|
|
helpText = _t("Great! This passphrase looks strong enough.");
|
|
|
|
|
} else {
|
|
|
|
|
const suggestions = [];
|
|
|
|
|
for (let i = 0; i < this.state.zxcvbnResult.feedback.suggestions.length; ++i) {
|
|
|
|
|
suggestions.push(<div key={i}>{this.state.zxcvbnResult.feedback.suggestions[i]}</div>);
|
|
|
|
|
}
|
|
|
|
|
const suggestionBlock = <div>{suggestions.length > 0 ? suggestions : _t("Keep going...")}</div>;
|
|
|
|
|
|
|
|
|
|
helpText = <div>
|
|
|
|
|
{this.state.zxcvbnResult.feedback.warning}
|
|
|
|
|
{suggestionBlock}
|
|
|
|
|
</div>;
|
|
|
|
|
}
|
|
|
|
|
strengthMeter = <div>
|
|
|
|
|
<progress max={PASSWORD_MIN_SCORE} value={this.state.zxcvbnResult.score} />
|
|
|
|
|
</div>;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return <div>
|
|
|
|
|
<p>{_t(
|
2020-01-22 21:08:39 +03:00
|
|
|
"Set up encryption on this device to allow it to verify other devices, " +
|
|
|
|
|
"granting them access to encrypted messages and marking them as trusted for other users.",
|
2019-12-05 18:05:28 +03:00
|
|
|
)}</p>
|
|
|
|
|
<p>{_t(
|
2020-01-22 21:08:39 +03:00
|
|
|
"Secure your encryption keys with a passphrase. For maximum security " +
|
2020-01-22 21:15:35 +03:00
|
|
|
"this should be different to your account password:",
|
2019-12-05 18:05:28 +03:00
|
|
|
)}</p>
|
|
|
|
|
|
2020-01-22 21:08:39 +03:00
|
|
|
<div className="mx_CreateSecretStorageDialog_passPhraseContainer">
|
|
|
|
|
<Field type="password"
|
|
|
|
|
className="mx_CreateSecretStorageDialog_passPhraseField"
|
|
|
|
|
onChange={this._onPassPhraseChange}
|
|
|
|
|
onKeyPress={this._onPassPhraseKeyPress}
|
|
|
|
|
value={this.state.passPhrase}
|
|
|
|
|
label={_t("Enter a passphrase")}
|
|
|
|
|
autoFocus={true}
|
|
|
|
|
/>
|
|
|
|
|
<div className="mx_CreateSecretStorageDialog_passPhraseHelp">
|
|
|
|
|
{strengthMeter}
|
|
|
|
|
{helpText}
|
2019-12-05 18:05:28 +03:00
|
|
|
</div>
|
|
|
|
|
</div>
|
|
|
|
|
|
2020-01-22 21:08:39 +03:00
|
|
|
<DialogButtons primaryButton={_t('Continue')}
|
2019-12-05 18:05:28 +03:00
|
|
|
onPrimaryButtonClick={this._onPassPhraseNextClick}
|
|
|
|
|
hasCancel={false}
|
|
|
|
|
disabled={!this._passPhraseIsValid()}
|
2020-01-22 21:08:39 +03:00
|
|
|
>
|
|
|
|
|
<button type="button"
|
|
|
|
|
onClick={this._onCancel}
|
|
|
|
|
className="danger"
|
|
|
|
|
>{_t("Skip")}</button>
|
|
|
|
|
</DialogButtons>
|
2019-12-05 18:05:28 +03:00
|
|
|
|
|
|
|
|
<details>
|
|
|
|
|
<summary>{_t("Advanced")}</summary>
|
2020-01-24 22:11:57 +03:00
|
|
|
<p><AccessibleButton kind='primary' onClick={this._onSkipPassPhraseClick} >
|
2019-12-05 18:05:28 +03:00
|
|
|
{_t("Set up with a recovery key")}
|
2020-01-24 22:11:57 +03:00
|
|
|
</AccessibleButton></p>
|
2019-12-05 18:05:28 +03:00
|
|
|
</details>
|
|
|
|
|
</div>;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
_renderPhasePassPhraseConfirm() {
|
|
|
|
|
const AccessibleButton = sdk.getComponent('elements.AccessibleButton');
|
2020-01-22 21:08:39 +03:00
|
|
|
const Field = sdk.getComponent('views.elements.Field');
|
2019-12-05 18:05:28 +03:00
|
|
|
|
|
|
|
|
let matchText;
|
|
|
|
|
if (this.state.passPhraseConfirm === this.state.passPhrase) {
|
|
|
|
|
matchText = _t("That matches!");
|
|
|
|
|
} else if (!this.state.passPhrase.startsWith(this.state.passPhraseConfirm)) {
|
|
|
|
|
// only tell them they're wrong if they've actually gone wrong.
|
|
|
|
|
// Security concious readers will note that if you left riot-web unattended
|
|
|
|
|
// on this screen, this would make it easy for a malicious person to guess
|
|
|
|
|
// your passphrase one letter at a time, but they could get this faster by
|
|
|
|
|
// just opening the browser's developer tools and reading it.
|
|
|
|
|
// Note that not having typed anything at all will not hit this clause and
|
|
|
|
|
// fall through so empty box === no hint.
|
|
|
|
|
matchText = _t("That doesn't match.");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
let passPhraseMatch = null;
|
|
|
|
|
if (matchText) {
|
2020-01-22 21:08:39 +03:00
|
|
|
passPhraseMatch = <div>
|
2019-12-05 18:05:28 +03:00
|
|
|
<div>{matchText}</div>
|
|
|
|
|
<div>
|
|
|
|
|
<AccessibleButton element="span" className="mx_linkButton" onClick={this._onSetAgainClick}>
|
|
|
|
|
{_t("Go back to set it again.")}
|
|
|
|
|
</AccessibleButton>
|
|
|
|
|
</div>
|
|
|
|
|
</div>;
|
|
|
|
|
}
|
|
|
|
|
const DialogButtons = sdk.getComponent('views.elements.DialogButtons');
|
|
|
|
|
return <div>
|
|
|
|
|
<p>{_t(
|
2020-01-22 21:08:39 +03:00
|
|
|
"Enter your passphrase a second time to confirm it.",
|
2019-12-05 18:05:28 +03:00
|
|
|
)}</p>
|
2020-01-22 21:08:39 +03:00
|
|
|
<div className="mx_CreateSecretStorageDialog_passPhraseContainer">
|
|
|
|
|
<Field type="password"
|
|
|
|
|
id="mx_CreateSecretStorageDialog_passPhraseField"
|
|
|
|
|
onChange={this._onPassPhraseConfirmChange}
|
|
|
|
|
onKeyPress={this._onPassPhraseConfirmKeyPress}
|
|
|
|
|
value={this.state.passPhraseConfirm}
|
|
|
|
|
className="mx_CreateSecretStorageDialog_passPhraseField"
|
|
|
|
|
label={_t("Confirm your passphrase")}
|
|
|
|
|
autoFocus={true}
|
|
|
|
|
/>
|
|
|
|
|
<div className="mx_CreateSecretStorageDialog_passPhraseMatch">
|
2019-12-05 18:05:28 +03:00
|
|
|
{passPhraseMatch}
|
|
|
|
|
</div>
|
|
|
|
|
</div>
|
2020-01-22 21:08:39 +03:00
|
|
|
<DialogButtons primaryButton={_t('Continue')}
|
2019-12-05 18:05:28 +03:00
|
|
|
onPrimaryButtonClick={this._onPassPhraseConfirmNextClick}
|
|
|
|
|
hasCancel={false}
|
|
|
|
|
disabled={this.state.passPhrase !== this.state.passPhraseConfirm}
|
2020-01-22 21:08:39 +03:00
|
|
|
>
|
|
|
|
|
<button type="button"
|
|
|
|
|
onClick={this._onCancel}
|
|
|
|
|
className="danger"
|
|
|
|
|
>{_t("Skip")}</button>
|
|
|
|
|
</DialogButtons>
|
2019-12-05 18:05:28 +03:00
|
|
|
</div>;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
_renderPhaseShowKey() {
|
|
|
|
|
let bodyText;
|
|
|
|
|
if (this.state.setPassPhrase) {
|
|
|
|
|
bodyText = _t(
|
|
|
|
|
"As a safety net, you can use it to restore your access to encrypted " +
|
|
|
|
|
"messages if you forget your passphrase.",
|
|
|
|
|
);
|
|
|
|
|
} else {
|
|
|
|
|
bodyText = _t(
|
|
|
|
|
"As a safety net, you can use it to restore your access to encrypted " +
|
|
|
|
|
"messages.",
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
|
2020-01-24 22:11:57 +03:00
|
|
|
const AccessibleButton = sdk.getComponent('elements.AccessibleButton');
|
2019-12-05 18:05:28 +03:00
|
|
|
return <div>
|
|
|
|
|
<p>{_t(
|
|
|
|
|
"Your recovery key is a safety net - you can use it to restore " +
|
|
|
|
|
"access to your encrypted messages if you forget your passphrase.",
|
|
|
|
|
)}</p>
|
|
|
|
|
<p>{_t(
|
|
|
|
|
"Keep your recovery key somewhere very secure, like a password manager (or a safe).",
|
|
|
|
|
)}</p>
|
|
|
|
|
<p>{bodyText}</p>
|
|
|
|
|
<div className="mx_CreateSecretStorageDialog_primaryContainer">
|
|
|
|
|
<div className="mx_CreateSecretStorageDialog_recoveryKeyHeader">
|
|
|
|
|
{_t("Your Recovery Key")}
|
|
|
|
|
</div>
|
|
|
|
|
<div className="mx_CreateSecretStorageDialog_recoveryKeyContainer">
|
|
|
|
|
<div className="mx_CreateSecretStorageDialog_recoveryKey">
|
|
|
|
|
<code ref={this._collectRecoveryKeyNode}>{this._encodedRecoveryKey}</code>
|
|
|
|
|
</div>
|
|
|
|
|
<div className="mx_CreateSecretStorageDialog_recoveryKeyButtons">
|
2020-01-24 22:11:57 +03:00
|
|
|
<AccessibleButton kind='primary' className="mx_Dialog_primary" onClick={this._onCopyClick}>
|
2019-12-05 18:05:28 +03:00
|
|
|
{_t("Copy to clipboard")}
|
2020-01-24 22:11:57 +03:00
|
|
|
</AccessibleButton>
|
|
|
|
|
<AccessibleButton kind='primary' className="mx_Dialog_primary" onClick={this._onDownloadClick}>
|
2019-12-05 18:05:28 +03:00
|
|
|
{_t("Download")}
|
2020-01-24 22:11:57 +03:00
|
|
|
</AccessibleButton>
|
2019-12-05 18:05:28 +03:00
|
|
|
</div>
|
|
|
|
|
</div>
|
|
|
|
|
</div>
|
|
|
|
|
</div>;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
_renderPhaseKeepItSafe() {
|
|
|
|
|
let introText;
|
|
|
|
|
if (this.state.copied) {
|
|
|
|
|
introText = _t(
|
|
|
|
|
"Your recovery key has been <b>copied to your clipboard</b>, paste it to:",
|
|
|
|
|
{}, {b: s => <b>{s}</b>},
|
|
|
|
|
);
|
|
|
|
|
} else if (this.state.downloaded) {
|
|
|
|
|
introText = _t(
|
|
|
|
|
"Your recovery key is in your <b>Downloads</b> folder.",
|
|
|
|
|
{}, {b: s => <b>{s}</b>},
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
const DialogButtons = sdk.getComponent('views.elements.DialogButtons');
|
|
|
|
|
return <div>
|
|
|
|
|
{introText}
|
|
|
|
|
<ul>
|
|
|
|
|
<li>{_t("<b>Print it</b> and store it somewhere safe", {}, {b: s => <b>{s}</b>})}</li>
|
|
|
|
|
<li>{_t("<b>Save it</b> on a USB key or backup drive", {}, {b: s => <b>{s}</b>})}</li>
|
|
|
|
|
<li>{_t("<b>Copy it</b> to your personal cloud storage", {}, {b: s => <b>{s}</b>})}</li>
|
|
|
|
|
</ul>
|
|
|
|
|
<DialogButtons primaryButton={_t("OK")}
|
|
|
|
|
onPrimaryButtonClick={this._bootstrapSecretStorage}
|
|
|
|
|
hasCancel={false}>
|
|
|
|
|
<button onClick={this._onKeepItSafeBackClick}>{_t("Back")}</button>
|
|
|
|
|
</DialogButtons>
|
|
|
|
|
</div>;
|
|
|
|
|
}
|
|
|
|
|
|
2019-12-19 14:26:20 +03:00
|
|
|
_renderBusyPhase() {
|
2019-12-05 18:05:28 +03:00
|
|
|
const Spinner = sdk.getComponent('views.elements.Spinner');
|
|
|
|
|
return <div>
|
|
|
|
|
<Spinner />
|
|
|
|
|
</div>;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
_renderPhaseDone() {
|
|
|
|
|
const DialogButtons = sdk.getComponent('views.elements.DialogButtons');
|
|
|
|
|
return <div>
|
|
|
|
|
<p>{_t(
|
2020-01-22 13:59:50 +03:00
|
|
|
"This device can now verify other devices, granting them access " +
|
|
|
|
|
"to encrypted messages and marking them as trusted for other users.",
|
|
|
|
|
)}</p>
|
|
|
|
|
<p>{_t(
|
|
|
|
|
"Verify other users in their profile.",
|
2019-12-05 18:05:28 +03:00
|
|
|
)}</p>
|
|
|
|
|
<DialogButtons primaryButton={_t('OK')}
|
|
|
|
|
onPrimaryButtonClick={this._onDone}
|
|
|
|
|
hasCancel={false}
|
|
|
|
|
/>
|
|
|
|
|
</div>;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
_renderPhaseOptOutConfirm() {
|
|
|
|
|
const DialogButtons = sdk.getComponent('views.elements.DialogButtons');
|
|
|
|
|
return <div>
|
|
|
|
|
{_t(
|
|
|
|
|
"Without setting up secret storage, you won't be able to restore your " +
|
|
|
|
|
"access to encrypted messages or your cross-signing identity for " +
|
|
|
|
|
"verifying other devices if you log out or use another device.",
|
|
|
|
|
)}
|
|
|
|
|
<DialogButtons primaryButton={_t('Set up secret storage')}
|
|
|
|
|
onPrimaryButtonClick={this._onSetUpClick}
|
|
|
|
|
hasCancel={false}
|
|
|
|
|
>
|
|
|
|
|
<button onClick={this._onCancel}>I understand, continue without</button>
|
|
|
|
|
</DialogButtons>
|
|
|
|
|
</div>;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
_titleForPhase(phase) {
|
|
|
|
|
switch (phase) {
|
2020-01-09 23:49:37 +03:00
|
|
|
case PHASE_RESTORE_KEY_BACKUP:
|
2020-01-14 14:31:00 +03:00
|
|
|
return _t('Restore your Key Backup');
|
2019-12-19 14:26:20 +03:00
|
|
|
case PHASE_MIGRATE:
|
2020-01-22 13:44:02 +03:00
|
|
|
return _t('Upgrade your encryption');
|
2019-12-05 18:05:28 +03:00
|
|
|
case PHASE_PASSPHRASE:
|
2020-01-22 21:08:39 +03:00
|
|
|
return _t('Set up encryption');
|
2019-12-05 18:05:28 +03:00
|
|
|
case PHASE_PASSPHRASE_CONFIRM:
|
2020-01-22 21:08:39 +03:00
|
|
|
return _t('Confirm passphrase');
|
2019-12-05 18:05:28 +03:00
|
|
|
case PHASE_OPTOUT_CONFIRM:
|
|
|
|
|
return _t('Warning!');
|
|
|
|
|
case PHASE_SHOWKEY:
|
|
|
|
|
return _t('Recovery key');
|
|
|
|
|
case PHASE_KEEPITSAFE:
|
|
|
|
|
return _t('Keep it safe');
|
|
|
|
|
case PHASE_STORING:
|
|
|
|
|
return _t('Storing secrets...');
|
|
|
|
|
case PHASE_DONE:
|
2020-01-23 13:18:08 +03:00
|
|
|
return this.state.doingUpgrade ? _t('Encryption upgraded') : _t('Encryption setup complete');
|
2019-12-05 18:05:28 +03:00
|
|
|
default:
|
2020-01-22 14:44:47 +03:00
|
|
|
return '';
|
2019-12-05 18:05:28 +03:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
render() {
|
|
|
|
|
const BaseDialog = sdk.getComponent('views.dialogs.BaseDialog');
|
|
|
|
|
|
|
|
|
|
let content;
|
|
|
|
|
if (this.state.error) {
|
|
|
|
|
const DialogButtons = sdk.getComponent('views.elements.DialogButtons');
|
|
|
|
|
content = <div>
|
|
|
|
|
<p>{_t("Unable to set up secret storage")}</p>
|
|
|
|
|
<div className="mx_Dialog_buttons">
|
|
|
|
|
<DialogButtons primaryButton={_t('Retry')}
|
|
|
|
|
onPrimaryButtonClick={this._bootstrapSecretStorage}
|
|
|
|
|
hasCancel={true}
|
|
|
|
|
onCancel={this._onCancel}
|
|
|
|
|
/>
|
|
|
|
|
</div>
|
|
|
|
|
</div>;
|
|
|
|
|
} else {
|
|
|
|
|
switch (this.state.phase) {
|
2019-12-19 14:26:20 +03:00
|
|
|
case PHASE_LOADING:
|
|
|
|
|
content = this._renderBusyPhase();
|
|
|
|
|
break;
|
2020-01-09 23:49:37 +03:00
|
|
|
case PHASE_RESTORE_KEY_BACKUP:
|
|
|
|
|
content = this._renderPhaseRestoreKeyBackup();
|
|
|
|
|
break;
|
2019-12-19 14:26:20 +03:00
|
|
|
case PHASE_MIGRATE:
|
|
|
|
|
content = this._renderPhaseMigrate();
|
|
|
|
|
break;
|
2019-12-05 18:05:28 +03:00
|
|
|
case PHASE_PASSPHRASE:
|
|
|
|
|
content = this._renderPhasePassPhrase();
|
|
|
|
|
break;
|
|
|
|
|
case PHASE_PASSPHRASE_CONFIRM:
|
|
|
|
|
content = this._renderPhasePassPhraseConfirm();
|
|
|
|
|
break;
|
|
|
|
|
case PHASE_SHOWKEY:
|
|
|
|
|
content = this._renderPhaseShowKey();
|
|
|
|
|
break;
|
|
|
|
|
case PHASE_KEEPITSAFE:
|
|
|
|
|
content = this._renderPhaseKeepItSafe();
|
|
|
|
|
break;
|
|
|
|
|
case PHASE_STORING:
|
|
|
|
|
content = this._renderBusyPhase();
|
|
|
|
|
break;
|
|
|
|
|
case PHASE_DONE:
|
|
|
|
|
content = this._renderPhaseDone();
|
|
|
|
|
break;
|
|
|
|
|
case PHASE_OPTOUT_CONFIRM:
|
|
|
|
|
content = this._renderPhaseOptOutConfirm();
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2020-01-22 14:44:47 +03:00
|
|
|
let headerImage;
|
|
|
|
|
if (this._titleForPhase(this.state.phase)) {
|
|
|
|
|
headerImage = require("../../../../../res/img/e2e/normal.svg");
|
|
|
|
|
}
|
|
|
|
|
|
2019-12-05 18:05:28 +03:00
|
|
|
return (
|
|
|
|
|
<BaseDialog className='mx_CreateSecretStorageDialog'
|
|
|
|
|
onFinished={this.props.onFinished}
|
|
|
|
|
title={this._titleForPhase(this.state.phase)}
|
2020-01-22 14:44:47 +03:00
|
|
|
headerImage={headerImage}
|
2020-01-24 22:11:57 +03:00
|
|
|
hasCancel={this.props.hasCancel && [PHASE_PASSPHRASE].includes(this.state.phase)}
|
2019-12-05 18:05:28 +03:00
|
|
|
>
|
|
|
|
|
<div>
|
|
|
|
|
{content}
|
|
|
|
|
</div>
|
|
|
|
|
</BaseDialog>
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
}
|
