1.60.35

strongbox-mark · strongbox-mark · commit 2b020c6af353 · 2025-02-26T07:46:57.000Z
diff --git a/StrongBox/Strongbox.entitlements b/StrongBox/Strongbox.entitlements
@@ -4,10 +4,10 @@
 <dict>
 	<key>aps-environment</key>
 	<string>Production</string>
-    <key>com.apple.developer.aps-environment</key>
-    <string>Production</string>
-    <key>com.apple.developer.icloud-container-environment</key>
-    <string>Production</string>
+	<key>com.apple.developer.aps-environment</key>
+	<string>Production</string>
+	<key>com.apple.developer.icloud-container-environment</key>
+	<string>Production</string>
 	<key>com.apple.developer.authentication-services.autofill-credential-provider</key>
 	<true/>
 	<key>com.apple.developer.default-data-protection</key>
diff --git a/model/cloudkit/CloudKitDatabasesInteractor.swift b/model/cloudkit/CloudKitDatabasesInteractor.swift
@@ -330,12 +330,14 @@ class CloudKitDatabasesInteractor: NSObject {
     }
 
     func mergeOrUpdateDatabases(_ ckDbs: [CloudKitHostedDatabase]) async throws {
-        removeNoneExistentDatabases(ckDbs)
+        removeDeletedDatabases(ckDbs)
 
         
 
         for db in ckDbs {
-            try await mergeCloudKitDatabaseIn(db)
+            if db.deletedAt == nil {
+                try await mergeCloudKitDatabaseIn(db)
+            }
         }
     }
 
@@ -412,18 +414,17 @@ class CloudKitDatabasesInteractor: NSObject {
         }
     }
 
-    func removeNoneExistentDatabases(_ ckDbs: [CloudKitHostedDatabase]) {
+    private func removeDeletedDatabases(_ ckDbs: [CloudKitHostedDatabase]) {
+        
+        
         
 
-        let allIds = Set(ckDbs.map(\.id))
-
-        let toRemove = existingCloudKitDatabases.filter { db in
-            guard let cloudKitDatabaseId = cloudKitIdentifierFromStrongboxDatabase(db) else {
-                swlog("🔴 ERROR: Could not read fileId! \(#function)!!")
-                return true 
-            }
+        let deletedCkDbs = ckDbs.filter { ckDb in
+            ckDb.deletedAt != nil
+        }
 
-            return !allIds.contains(cloudKitDatabaseId)
+        let toRemove = deletedCkDbs.compactMap { deletedCkDb in
+            findStrongboxDatabaseForCloudKitDatabase(cloudKitIdentifier: deletedCkDb.id)
         }
 
         for removeMe in toRemove {
diff --git a/model/cloudkit/CloudKitHostedDatabase.swift b/model/cloudkit/CloudKitHostedDatabase.swift
@@ -15,6 +15,7 @@ extension CloudKitHostedDatabase {
         static let filename = "filename"
         static let dataBlob = "dataBlob"
         static let modDate = "modDate"
+        static let deletedAt = "deletedAt" 
     }
 }
 
@@ -24,6 +25,7 @@ struct CloudKitHostedDatabase: Identifiable {
     let nickname: String
     let filename: String
     let modDate: Date
+    let deletedAt: Date?
     let dataBlob: Data? 
     let associatedCkRecord: CKRecord
     let sharedWithMe: Bool
@@ -55,9 +57,12 @@ struct CloudKitHostedDatabase: Identifiable {
             return nil
         }
 
+        let deletedAt = record.encryptedValues[RecordKeys.deletedAt] as? Date
+
         self.nickname = nickname
         self.filename = filename
         self.modDate = modDate
+        self.deletedAt = deletedAt
 
         if let asset = record[RecordKeys.dataBlob] as? CKAsset {
             
diff --git a/model/cloudkit/CloudKitManager.swift b/model/cloudkit/CloudKitManager.swift
@@ -112,6 +112,7 @@ class CloudKitManager {
             CloudKitHostedDatabase.RecordKeys.nickname,
             CloudKitHostedDatabase.RecordKeys.filename,
             CloudKitHostedDatabase.RecordKeys.modDate,
+            CloudKitHostedDatabase.RecordKeys.deletedAt,
             CKRecord.SystemFieldKey.share,
         ]
 
@@ -148,11 +149,12 @@ class CloudKitManager {
             CloudKitHostedDatabase.RecordKeys.nickname,
             CloudKitHostedDatabase.RecordKeys.filename,
             CloudKitHostedDatabase.RecordKeys.modDate,
+            CloudKitHostedDatabase.RecordKeys.deletedAt,
             CKRecord.SystemFieldKey.share,
             
         ]
 
-        return try await executeCloudKitOperation(theDatabase: cloudKitDatabase) { database in
+        let all = try await executeCloudKitOperation(theDatabase: cloudKitDatabase) { database in
             var all: [CloudKitHostedDatabase] = []
 
             let (results, initialQueryCursor) = try await database.records(matching: query, inZoneWith: zone.zoneID, desiredKeys: desiredKeys)
@@ -178,6 +180,34 @@ class CloudKitManager {
 
             return all
         }
+
+        
+
+        maintenanceDeleteOldDatabasesMarkedDeletedAt(all)
+
+        return all
+    }
+
+    func maintenanceDeleteOldDatabasesMarkedDeletedAt(_ databases: [CloudKitHostedDatabase]) {
+        let olds = databases.filter { ckDb in
+            if !ckDb.sharedWithMe, let deletedAt = ckDb.deletedAt, (deletedAt as NSDate).isMoreThanXDaysAgo(90) {
+                return true
+            } else {
+                return false
+            }
+        }
+
+        if !olds.isEmpty {
+            Task {
+                for old in olds {
+                    do {
+                        try await deleteActual(id: old.id)
+                    } catch {
+                        swlog("🔴 Cannot cleanup an old database [\(old)] marked deleted more than 90 days ago.")
+                    }
+                }
+            }
+        }
     }
 
     func updateDatabase(_ id: CloudKitDatabaseIdentifier, dataBlob: Data) async throws -> CloudKitHostedDatabase {
@@ -195,6 +225,22 @@ class CloudKitManager {
     }
 
     func delete(id: CloudKitDatabaseIdentifier) async throws {
+        
+        
+        
+        
+        
+        
+
+        let existing = try await getDatabase(id: id, includeDataBlob: false) 
+
+        
+        
+
+        _ = try await saveOrUpdate(existing.associatedCkRecord, sharedWithMe: id.sharedWithMe, modDate: .now, dataBlob: Data(), deletedAt: .now)
+    }
+
+    func deleteActual(id: CloudKitDatabaseIdentifier) async throws {
         guard !id.sharedWithMe else {
             swlog("🔴 Cannot delete a database we don't own")
             throw CloudKitManagerError.invalidParameters
@@ -207,13 +253,16 @@ class CloudKitManager {
         }
     }
 
-    private func saveOrUpdate(_ ckRecord: CKRecord, sharedWithMe: Bool, nickName: String? = nil, fileName: String? = nil, modDate: Date? = nil, dataBlob: Data? = nil) async throws -> CloudKitHostedDatabase {
+    private func saveOrUpdate(_ ckRecord: CKRecord, sharedWithMe: Bool, nickName: String? = nil, fileName: String? = nil, modDate: Date? = nil, dataBlob: Data? = nil, deletedAt: Date? = nil) async throws -> CloudKitHostedDatabase {
         if let nickName {
             ckRecord.encryptedValues[CloudKitHostedDatabase.RecordKeys.nickname] = nickName
         }
         if let fileName {
             ckRecord.encryptedValues[CloudKitHostedDatabase.RecordKeys.filename] = fileName
         }
+        if let deletedAt {
+            ckRecord.encryptedValues[CloudKitHostedDatabase.RecordKeys.deletedAt] = deletedAt
+        }
 
         var tmpAssetUrlToDelete: URL? = nil
 

Original file line number	Diff line number	Diff line change
`@@ -330,12 +330,14 @@ class CloudKitDatabasesInteractor: NSObject {`
`330`	`330`	`}`
`331`	`331`
`332`	`332`	`func mergeOrUpdateDatabases(_ ckDbs: [CloudKitHostedDatabase]) async throws {`
`333`		`- removeNoneExistentDatabases(ckDbs)`
	`333`	`+ removeDeletedDatabases(ckDbs)`
`334`	`334`
`335`	`335`
`336`	`336`
`337`	`337`	`for db in ckDbs {`
`338`		`- try await mergeCloudKitDatabaseIn(db)`
	`338`	`+ if db.deletedAt == nil {`
	`339`	`+ try await mergeCloudKitDatabaseIn(db)`
	`340`	`+ }`
`339`	`341`	`}`
`340`	`342`	`}`
`341`	`343`
`@@ -412,18 +414,17 @@ class CloudKitDatabasesInteractor: NSObject {`
`412`	`414`	`}`
`413`	`415`	`}`
`414`	`416`
`415`		`- func removeNoneExistentDatabases(_ ckDbs: [CloudKitHostedDatabase]) {`
	`417`	`+ private func removeDeletedDatabases(_ ckDbs: [CloudKitHostedDatabase]) {`
	`418`	`+`
	`419`	`+`
`416`	`420`
`417`	`421`
`418`		`- let allIds = Set(ckDbs.map(\.id))`
`419`		`-`
`420`		`- let toRemove = existingCloudKitDatabases.filter { db in`
`421`		`- guard let cloudKitDatabaseId = cloudKitIdentifierFromStrongboxDatabase(db) else {`
`422`		`- swlog("🔴 ERROR: Could not read fileId! \(#function)!!")`
`423`		`- return true`
`424`		`- }`
	`422`	`+ let deletedCkDbs = ckDbs.filter { ckDb in`
	`423`	`+ ckDb.deletedAt != nil`
	`424`	`+ }`
`425`	`425`
`426`		`- return !allIds.contains(cloudKitDatabaseId)`
	`426`	`+ let toRemove = deletedCkDbs.compactMap { deletedCkDb in`
	`427`	`+ findStrongboxDatabaseForCloudKitDatabase(cloudKitIdentifier: deletedCkDb.id)`
`427`	`428`	`}`
`428`	`429`
`429`	`430`	`for removeMe in toRemove {`