Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

wallet-ext: fix connection request pending #4534

Merged
merged 3 commits into from
Sep 15, 2022
Merged

wallet-ext: fix connection request pending #4534

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
9df4505
wallet-ext: content script lazy connect to bg service
pchrysochoidis Sep 8, 2022
216ccf8
wallet-ext: tabs helper functionality
pchrysochoidis Sep 8, 2022
3b5a57e
wallet-ext: fix pending permission request
pchrysochoidis Sep 8, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
216 changes: 161 additions & 55 deletions wallet/src/background/Permissions.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,42 +1,156 @@
// Copyright (c) 2022, Mysten Labs, Inc.
// SPDX-License-Identifier: Apache-2.0

import { filter, lastValueFrom, map, race, Subject, take, tap } from 'rxjs';
import {
catchError,
concatMap,
filter,
from,
mergeWith,
share,
Subject,
} from 'rxjs';
import { v4 as uuidV4 } from 'uuid';
import Browser from 'webextension-polyfill';

import Tabs from './Tabs';
import { Window } from './Window';
import {
ALL_PERMISSION_TYPES,
isValidPermissionTypes,
} from '_payloads/permissions';

import type { ContentScriptConnection } from './connections/ContentScriptConnection';
import type {
Permission,
PermissionResponse,
PermissionType,
} from '_messages/payloads/permissions';

function openPermissionWindow(permissionID: string) {
return new Window(
Browser.runtime.getURL('ui.html') +
`#/dapp/connect/${encodeURIComponent(permissionID)}`
);
}
} from '_payloads/permissions';
import type { Observable } from 'rxjs';

const PERMISSIONS_STORAGE_KEY = 'permissions';
const PERMISSION_UI_URL = `${Browser.runtime.getURL('ui.html')}#/dapp/connect/`;
const PERMISSION_UI_URL_REGEX = new RegExp(
`${PERMISSION_UI_URL}([0-9a-f-]+$)`,
'i'
);

class Permissions {
public static getUiUrl(permissionID: string) {
return `${PERMISSION_UI_URL}${encodeURIComponent(permissionID)}`;
}

public static isPermissionUiUrl(url: string) {
return PERMISSION_UI_URL_REGEX.test(url);
}

public static getPermissionIDFromUrl(url: string) {
const match = PERMISSION_UI_URL_REGEX.exec(url);
if (match) {
return match[1];
}
return null;
}

private _permissionResponses: Subject<PermissionResponse> = new Subject();
//NOTE: we need at least one subscription in order for this to handle permission requests
public readonly permissionReply: Observable<Permission | null>;

public async acquirePermissions(
constructor() {
this.permissionReply = this._permissionResponses.pipe(
mergeWith(
Tabs.onRemoved.pipe(
filter((aTab) =>
Permissions.isPermissionUiUrl(aTab.url || '')
)
)
),
concatMap((data) =>
from(
(async () => {
let permissionID: string | null;
const response: Partial<Permission> = {
allowed: false,
accounts: [],
responseDate: new Date().toISOString(),
};
if ('url' in data) {
permissionID = Permissions.getPermissionIDFromUrl(
data.url || ''
);
} else {
permissionID = data.id;
response.allowed = data.allowed;
response.accounts = data.accounts;
response.responseDate = data.responseDate;
}
let aPermissionRequest: Permission | null = null;
if (permissionID) {
aPermissionRequest = await this.getPermissionByID(
permissionID
);
}
if (
aPermissionRequest &&
this.isPendingPermissionRequest(aPermissionRequest)
) {
const finalPermission: Permission = {
...aPermissionRequest,
...response,
};
return finalPermission;
}
// ignore the event
return null;
})()
).pipe(
filter((data) => data !== null),
concatMap((permission) =>
from(
(async () => {
if (permission) {
await this.storePermission(permission);
return permission;
}
return null;
})()
)
)
)
),
// we ignore any errors and continue to handle other requests
// TODO: expose those errors to dapp?
catchError((_error, originalSource) => originalSource),
share()
);
}

public async startRequestPermissions(
permissionTypes: readonly PermissionType[],
connection: ContentScriptConnection
): Promise<Permission> {
connection: ContentScriptConnection,
requestMsgID: string
): Promise<Permission | null> {
if (!isValidPermissionTypes(permissionTypes)) {
throw new Error(
`Invalid permission types. Allowed type are ${ALL_PERMISSION_TYPES.join(
', '
)}`
);
}
const { origin } = connection;
const existingPermission = await this.getPermission(origin);
const hasPendingRequest = await this.hasPendingPermissionRequest(
origin,
existingPermission
);
if (hasPendingRequest) {
if (existingPermission) {
const uiUrl = Permissions.getUiUrl(existingPermission.id);
const found = await Tabs.highlight({ url: uiUrl });
if (!found) {
await new Window(uiUrl).show();
}
}
throw new Error('Another permission request is pending.');
}
const alreadyAllowed = await this.hasPermissions(
Expand All @@ -51,44 +165,11 @@ class Permissions {
connection.origin,
permissionTypes,
connection.originFavIcon,
requestMsgID,
existingPermission
);
const permissionWindow = openPermissionWindow(pRequest.id);
const onWindowCloseStream = await permissionWindow.show();
const responseStream = this._permissionResponses.pipe(
filter((resp) => resp.id === pRequest.id),
map((resp) => {
pRequest.allowed = resp.allowed;
pRequest.accounts = resp.accounts;
pRequest.responseDate = resp.responseDate;
return pRequest;
}),
tap(() => permissionWindow.close())
);
return lastValueFrom(
race(
onWindowCloseStream.pipe(
map(() => {
pRequest.allowed = false;
pRequest.accounts = [];
pRequest.responseDate = new Date().toISOString();
return pRequest;
})
),
responseStream
).pipe(
take(1),
tap(async (permission) => {
await this.storePermission(permission);
}),
map((permission) => {
if (!permission.allowed) {
throw new Error('Permission rejected');
}
return permission;
})
)
);
await new Window(Permissions.getUiUrl(pRequest.id)).show();
return null;
}

public handlePermissionResponse(response: PermissionResponse) {
Expand Down Expand Up @@ -122,7 +203,10 @@ class Permissions {
permission?: Permission | null
): Promise<boolean> {
const existingPermission = await this.getPermission(origin, permission);
return !!existingPermission && existingPermission.responseDate === null;
return (
!!existingPermission &&
this.isPendingPermissionRequest(existingPermission)
);
}

public async hasPermissions(
Expand All @@ -144,17 +228,24 @@ class Permissions {
origin: string,
permissionTypes: readonly PermissionType[],
favIcon: string | undefined,
requestMsgID: string,
existingPermission?: Permission | null
): Promise<Permission> {
let permissionToStore: Permission;
if (existingPermission) {
existingPermission.allowed = null;
existingPermission.responseDate = null;
permissionTypes.forEach((aPermission) => {
if (!existingPermission.permissions.includes(aPermission)) {
existingPermission.permissions.push(aPermission);
}
});
existingPermission.requestMsgID = requestMsgID;
if (existingPermission.allowed) {
permissionTypes.forEach((aPermission) => {
if (!existingPermission.permissions.includes(aPermission)) {
existingPermission.permissions.push(aPermission);
}
});
} else {
existingPermission.permissions =
permissionTypes as PermissionType[];
}
existingPermission.allowed = null;
permissionToStore = existingPermission;
} else {
permissionToStore = {
Expand All @@ -166,6 +257,7 @@ class Permissions {
favIcon,
permissions: permissionTypes as PermissionType[],
responseDate: null,
requestMsgID,
};
}
await this.storePermission(permissionToStore);
Expand All @@ -179,6 +271,20 @@ class Permissions {
[PERMISSIONS_STORAGE_KEY]: permissions,
});
}

private async getPermissionByID(id: string) {
const permissions = await this.getPermissions();
for (const aPermission of Object.values(permissions)) {
if (aPermission.id === id) {
return aPermission;
}
}
return null;
}

private isPendingPermissionRequest(permissionRequest: Permission) {
return permissionRequest.responseDate === null;
}
}

export default new Permissions();
Loading