Merge branch 'master' into 1927-design-implement-contract-deletion-op_contract_delete

Author: corrideat

backend/push.js

@@ -30,7 +30,7 @@ const deleteSubscriptionFromIndex = async (subcriptionId: string) => {
 }
 
 const saveSubscription = (server, subscriptionId) => {
-  sbp('chelonia/db/set', `_private_webpush_${subscriptionId}`, JSON.stringify({
+  return sbp('chelonia/db/set', `_private_webpush_${subscriptionId}`, JSON.stringify({
     subscription: server.pushSubscriptions[subscriptionId],
     channelIDs: [...server.pushSubscriptions[subscriptionId].subscriptions]
   })).catch(e => {
@@ -163,22 +163,25 @@ export const subscriptionInfoWrapper = (subcriptionId: string, subscriptionInfo:
   return subscriptionInfo
 }
 
-const removeSubscription = (server, subscriptionId) => {
-  const subscription = server.pushSubscriptions[subscriptionId]
-  delete server.pushSubscriptions[subscriptionId]
-  if (server.subscribersByChannelID) {
-    subscription.subscriptions.forEach((channelID) => {
-      server.subscribersByChannelID[channelID].delete(subscription)
-    })
+const removeSubscription = async (server, subscriptionId) => {
+  try {
+    const subscription = server.pushSubscriptions[subscriptionId]
+    delete server.pushSubscriptions[subscriptionId]
+    if (server.subscribersByChannelID) {
+      subscription.subscriptions.forEach((channelID) => {
+        server.subscribersByChannelID[channelID].delete(subscription)
+      })
+    }
+    await deleteSubscriptionFromIndex(subscriptionId)
+    await sbp('chelonia/db/delete', `_private_webpush_${subscriptionId}`)
+  } catch (e) {
+    console.error(e, 'Error removing subscription', subscriptionId)
   }
-  deleteSubscriptionFromIndex(subscriptionId).then(() => {
-    return sbp('chelonia/db/delete', `_private_webpush_${subscriptionId}`)
-  }).catch((e) => console.error(e, 'Error removing subscription', subscriptionId))
 }
 
 const deleteClient = (subscriptionId) => {
   const server = sbp('okTurtles.data/get', PUBSUB_INSTANCE)
-  removeSubscription(server, subscriptionId)
+  return removeSubscription(server, subscriptionId)
 }
 
 // Web push subscriptions (that contain a body) are mandatorily encrypted. The
@@ -239,6 +242,7 @@ export const postEvent = async (subscription: Object, event: ?string): Promise<v
   })
 
   if (!req.ok) {
+    console.warn('Error sending push notification', subscription.id, req.status)
     // If the response was 401 (Unauthorized), 404 (Not found) or 410 (Gone),
     // it likely means that the subscription no longer exists.
     if ([401, 404, 410].includes(req.status)) {
@@ -268,11 +272,17 @@ export const pushServerActionhandlers: any = {
     const subscriptionId = await getSubscriptionId(subscription)
 
     if (!server.pushSubscriptions[subscriptionId]) {
+      console.debug(`saving new push subscription '${subscriptionId}':`, subscription)
       // If this is a new subscription, we call `subscriptionInfoWrapper` and
       // store it in memory.
       server.pushSubscriptions[subscriptionId] = subscriptionInfoWrapper(subscriptionId, subscription)
       addSubscriptionToIndex(subscriptionId).then(() => {
         return sbp('chelonia/db/set', `_private_webpush_${subscriptionId}`, JSON.stringify({ subscription: subscription, channelIDs: [] }))
+          .catch(async e => {
+            console.error(e, 'removing subscription from index because of error saving subscription', subscriptionId)
+            await deleteSubscriptionFromIndex(subscriptionId)
+            throw e
+          })
       }).catch((e) => console.error(e, 'Error saving subscription', subscriptionId))
       // Send an initial push notification to verify that the endpoint works
       // This is mostly for testing to be able to auto-remove invalid or expired

backend/server.js

@@ -325,8 +325,9 @@ sbp('sbp/selectors/register', {
 })
 
 if (process.env.NODE_ENV === 'development' && !process.env.CI) {
-  hapi.events.on('response', (request, event, tags) => {
-    console.debug(chalk`{grey ${request.info.remoteAddress}: ${request.method.toUpperCase()} ${request.path} --> ${request.response.statusCode}}`)
+  hapi.events.on('response', (req, event, tags) => {
+    const ip = req.headers['x-real-ip'] || req.info.remoteAddress
+    console.debug(chalk`{grey ${ip}: ${req.method} ${req.path} --> ${req.response.statusCode}}`)
   })
 }
 
@@ -378,10 +379,9 @@ sbp('okTurtles.data/set', PUBSUB_INSTANCE, createServer(hapi.listener, {
         try {
           await handler.call(socket, payload)
         } catch (error) {
-          socket.send(createPushErrorResponse({
-            actionType: action,
-            message: error?.message || `push server failed to perform [${action}] action`
-          }))
+          const message = error?.message || `push server failed to perform [${action}] action`
+          console.warn(`Handler '${REQUEST_TYPE.PUSH_ACTION}' failed: ${message}`)
+          socket.send(createPushErrorResponse({ actionType: action, message }))
         }
       } else {
         socket.send(createPushErrorResponse({ message: `No handler for the '${action}' action` }))

backend/vapid.js

@@ -15,6 +15,7 @@ const vapid = { VAPID_EMAIL: process.env.VAPID_EMAIL || 'mailto:[email protected]
 export const initVapid = async () => {
   const vapidKeyPair = await sbp('chelonia/db/get', '_private_immutable_vapid_key').then(async (vapidKeyPair: string): Promise<[Object, string]> => {
     if (!vapidKeyPair) {
+      console.info('Generating new VAPID keypair...')
       // Generate a new ECDSA key pair
       const keyPair = await crypto.subtle.generateKey(
         {
@@ -35,6 +36,7 @@ export const initVapid = async () => {
       ])
 
       return sbp('chelonia/db/set', '_private_immutable_vapid_key', JSON.stringify(serializedKeyPair)).then(() => {
+        console.info('Successfully saved newly generated VAPID keys')
         return [keyPair.privateKey, serializedKeyPair[1]]
       })
     }

frontend/controller/actions/chatroom.js

@@ -215,8 +215,9 @@ export default (sbp('sbp/selectors/register', {
       await sbp('chelonia/contract/release', userID, { ephemeral: true })
     }
   },
-  'gi.actions/chatroom/shareNewKeys': (contractID: string, newKeys) => {
+  'gi.actions/chatroom/shareNewKeys': async (contractID: string, newKeys) => {
     const state = sbp('chelonia/contract/state', contractID)
+    const mainCEKid = await sbp('chelonia/contract/currentKeyIdByName', state, 'cek')
 
     const originatingContractID = state.attributes.groupContractID ? state.attributes.groupContractID : contractID
 
@@ -227,20 +228,25 @@ export default (sbp('sbp/selectors/register', {
         console.warn(`Unable to share rotated keys for ${originatingContractID} with ${pContractID}: Missing CEK`)
         return
       }
-      return {
-        contractID,
-        foreignContractID: pContractID,
-        // $FlowFixMe
-        keys: Object.values(newKeys).map(([, newKey, newId]: [any, Key, string]) => ({
-          id: newId,
-          meta: {
-            private: {
-              content: encryptedOutgoingData(pContractID, CEKid, serializeKey(newKey, true))
-            }
-          }
-        }))
-      }
-    }))
+      return [
+        'chelonia/out/keyShare',
+        {
+          data: encryptedOutgoingData(contractID, mainCEKid, {
+            contractID,
+            foreignContractID: pContractID,
+            // $FlowFixMe
+            keys: Object.values(newKeys).map(([, newKey, newId]: [any, Key, string]) => ({
+              id: newId,
+              meta: {
+                private: {
+                  content: encryptedOutgoingData(pContractID, CEKid, serializeKey(newKey, true))
+                }
+              }
+            }))
+          })
+        }
+      ]
+    })).then((keys) => [keys.filter(Boolean)])
   },
   'gi.actions/chatroom/_ondeleted': async (contractID: string, state: Object) => {
     const rootGetters = sbp('state/vuex/getters')

frontend/controller/actions/group.js

@@ -626,9 +626,10 @@ export default (sbp('sbp/selectors/register', {
       }
     })
   },
-  'gi.actions/group/shareNewKeys': (contractID: string, newKeys) => {
+  'gi.actions/group/shareNewKeys': async (contractID: string, newKeys) => {
     const rootState = sbp('chelonia/rootState')
     const state = rootState[contractID]
+    const mainCEKid = await sbp('chelonia/contract/currentKeyIdByName', state, 'cek')
 
     // $FlowFixMe
     return Promise.all(
@@ -638,22 +639,26 @@ export default (sbp('sbp/selectors/register', {
           const CEKid = await sbp('chelonia/contract/currentKeyIdByName', rootState[pContractID], 'cek')
           if (!CEKid) {
             console.warn(`Unable to share rotated keys for ${contractID} with ${pContractID}: Missing CEK`)
-            return Promise.resolve()
+            return
           }
-          return {
-            contractID,
-            foreignContractID: pContractID,
-            // $FlowFixMe
-            keys: Object.values(newKeys).map(([, newKey, newId]: [any, Key, string]) => ({
-              id: newId,
-              meta: {
-                private: {
-                  content: encryptedOutgoingData(pContractID, CEKid, serializeKey(newKey, true))
-                }
-              }
-            }))
-          }
-        }))
+          return [
+            'chelonia/out/keyShare',
+            {
+              data: encryptedOutgoingData(contractID, mainCEKid, {
+                contractID,
+                foreignContractID: pContractID,
+                // $FlowFixMe
+                keys: Object.values(newKeys).map(([, newKey, newId]: [any, Key, string]) => ({
+                  id: newId,
+                  meta: {
+                    private: {
+                      content: encryptedOutgoingData(pContractID, CEKid, serializeKey(newKey, true))
+                    }
+                  }
+                }))
+              })
+            }]
+        })).then((keys) => [keys.filter(Boolean)])
   },
   ...encryptedAction('gi.actions/group/addChatRoom', L('Failed to add chat channel'), async function (sendMessage, params) {
     const rootState = sbp('chelonia/rootState')

frontend/controller/actions/identity.js

@@ -667,7 +667,20 @@ export default (sbp('sbp/selectors/register', {
     // share along with OP_KEY_UPDATE. In this case, we're sharing all keys
     // to their respective contracts and there are no keys to include in
     // the same event as OP_KEY_UPDATE. Therefore, we return undefined
-    return undefined
+    if (!newKeys.pek) return undefined
+    return [
+      undefined, // Nothing before OP_KEY_UPDATE
+      [
+        // Re-encrypt attributes with the new PEK
+        await sbp('gi.actions/identity/setAttributes', {
+          contractID,
+          data: state.attributes,
+          encryptionKey: newKeys.pek[1],
+          encryptionKeyId: newKeys.pek[2],
+          returnInvocation: true
+        })
+      ]
+    ]
   },
   ...encryptedAction('gi.actions/identity/setAttributes', L('Failed to set profile attributes.'), undefined, 'pek'),
   ...encryptedAction('gi.actions/identity/updateSettings', L('Failed to update profile settings.')),

frontend/controller/actions/index.js

@@ -93,7 +93,12 @@ sbp('sbp/selectors/register', {
     contractID: string,
     contractName: string,
     keysToRotate: string[] | '*' | 'pending',
-    shareNewKeysSelector?: string
+    // Additional operations to be done along with key roation.
+    // If any, it should return an array of arrays of invocations that can be
+    // passed to `'chelonia/out/atomic'`. The first element of the array are
+    // operations to be done before `keyUpdate` and the second element are
+    // to be added after `keyUpdate`.
+    addtionalOperationsSelector?: string
   ) => {
     const state = sbp('chelonia/contract/state', contractID)
 
@@ -167,12 +172,9 @@ sbp('sbp/selectors/register', {
       throw new Error('No suitable signing key found')
     }
 
-    // TODO: GI-specific
-    const CEKid = findKeyIdByName(state, 'cek')
-    if (!CEKid) return
-
-    // Share new keys with other contracts
-    const keyShares = shareNewKeysSelector ? await sbp(shareNewKeysSelector, contractID, newKeys) : undefined
+    // Additional operations to be done along with key roation.
+    // E.g., share new keys with other contracts
+    const additionalOperations = addtionalOperationsSelector ? await sbp(addtionalOperationsSelector, contractID, newKeys) : undefined
 
     const preSendCheck = (msg, state) => {
       const updatedKeysRemaining = updatedKeys.filter((key) => {
@@ -185,14 +187,15 @@ sbp('sbp/selectors/register', {
       return true
     }
 
-    if (Array.isArray(keyShares) && keyShares.length > 0) {
+    if (Array.isArray(additionalOperations) && additionalOperations.length > 0) {
       // Issue OP_ATOMIC
       await sbp('chelonia/out/atomic', {
         contractID,
         contractName,
         data: [
-          ...keyShares.map((data) => ['chelonia/out/keyShare', { data: encryptedOutgoingData(contractID, CEKid, data) }]),
-          ['chelonia/out/keyUpdate', { data: updatedKeys }]
+          ...(additionalOperations[0] ?? []),
+          ['chelonia/out/keyUpdate', { data: updatedKeys }],
+          ...(additionalOperations[1] ?? [])
         ],
         signingKeyId,
         hooks: {

frontend/controller/app/group.js

@@ -3,14 +3,62 @@
 import { L } from '@common/common.js'
 import {
   INVITE_INITIAL_CREATOR,
-  MAX_GROUP_MEMBER_COUNT
+  MAX_GROUP_MEMBER_COUNT,
+  PROFILE_STATUS
 } from '@model/contracts/shared/constants.js'
 import sbp from '@sbp/sbp'
-import { JOINED_GROUP, LEFT_GROUP, NEW_LAST_LOGGED_IN, OPEN_MODAL, REPLACE_MODAL, SWITCH_GROUP } from '@utils/events.js'
+import { ERROR_GROUP_GENERAL_CHATROOM_DOES_NOT_EXIST, ERROR_JOINING_CHATROOM, JOINED_GROUP, LEFT_GROUP, NEW_LAST_LOGGED_IN, OPEN_MODAL, REPLACE_MODAL, SWITCH_GROUP } from '@utils/events.js'
 import ALLOWED_URLS from '@view-utils/allowedUrls.js'
 import type { ChelKeyRequestParams } from '~/shared/domains/chelonia/chelonia.js'
 import type { GIActionParams } from '../actions/types.js'
 
+sbp('okTurtles.events/on', ERROR_GROUP_GENERAL_CHATROOM_DOES_NOT_EXIST, ({ identityContractID, groupContractID }) => {
+  const rootState = sbp('state/vuex/state')
+  if (rootState.loggedIn?.identityContractID !== identityContractID) return
+  if (!rootState[groupContractID]) return
+
+  sbp('chelonia/contract/wait', groupContractID).then(() => {
+    const ourGroups = sbp('state/vuex/getters').ourGroups
+    if (!ourGroups.includes(groupContractID)) return
+
+    const rootState = sbp('state/vuex/state')
+    if (!rootState[groupContractID].generalChatRoomId) {
+      sbp('gi.ui/prompt', {
+        heading: L('Error joining the #general chatroom'),
+        question: L('There was an error joining the #general chatroom because it doesn\'t exist'),
+        primaryButton: L('Close')
+      })
+    }
+  })
+})
+
+sbp('okTurtles.events/on', ERROR_JOINING_CHATROOM, ({ identityContractID, groupContractID, chatRoomID }) => {
+  const rootState = sbp('state/vuex/state')
+  if (rootState.loggedIn?.identityContractID !== identityContractID) return
+  if (!rootState[groupContractID]) return
+
+  sbp('chelonia/contract/wait', groupContractID).then(() => {
+    const ourGroups = sbp('state/vuex/getters').ourGroups
+    if (!ourGroups.includes(groupContractID)) return
+
+    const rootState = sbp('state/vuex/state')
+    if (
+      rootState[groupContractID].chatRooms[chatRoomID]?.members[identityContractID]?.status === PROFILE_STATUS.ACTIVE &&
+      !rootState[chatRoomID]?.members[identityContractID]
+    ) {
+      sbp('gi.ui/prompt', {
+        heading: L('Error joining chatroom'),
+        question: L('There was an error joining the {chatRoomName} chatroom', {
+          chatRoomName: rootState[groupContractID].chatRooms[chatRoomID]?.name
+            ? `#${rootState[groupContractID].chatRooms[chatRoomID].name}`
+            : L('(unknown)')
+        }),
+        primaryButton: L('Close')
+      })
+    }
+  })
+})
+
 // handle incoming group-related events that are sent from the service worker
 sbp('okTurtles.events/on', JOINED_GROUP, ({ identityContractID, groupContractID }) => {
   const rootState = sbp('state/vuex/state')