Migrate key backups to SSSS

If there's a key backup set up when we bootstrap SSSS, use its key for SSSS and add the key backup key as a passthrough secret. Requires https://github.com/matrix-org/matrix-js-sdk/pull/1128 Fixes https://github.com/vector-im/riot-web/issues/11210
2019-12-19 11:26:20 +00:00 · 2019-12-19 11:26:20 +00:00 · 6851ad04b6
commit 6851ad04b6
parent f30e919f9e
2 changed files with 57 additions and 9 deletions
--- a/src/async-components/views/dialogs/secretstorage/CreateSecretStorageDialog.js
+++ b/src/async-components/views/dialogs/secretstorage/CreateSecretStorageDialog.js
@ -23,13 +23,15 @@ import FileSaver from 'file-saver';
 import { _t } from '../../../../languageHandler';
 import Modal from '../../../../Modal';

-const PHASE_PASSPHRASE = 0;
-const PHASE_PASSPHRASE_CONFIRM = 1;
-const PHASE_SHOWKEY = 2;
-const PHASE_KEEPITSAFE = 3;
-const PHASE_STORING = 4;
-const PHASE_DONE = 5;
-const PHASE_OPTOUT_CONFIRM = 6;
+const PHASE_LOADING = 0;
+const PHASE_MIGRATE = 1;
+const PHASE_PASSPHRASE = 2;
+const PHASE_PASSPHRASE_CONFIRM = 3;
+const PHASE_SHOWKEY = 4;
+const PHASE_KEEPITSAFE = 5;
+const PHASE_STORING = 6;
+const PHASE_DONE = 7;
+const PHASE_OPTOUT_CONFIRM = 8;

 const PASSWORD_MIN_SCORE = 4; // So secure, many characters, much complex, wow, etc, etc.
 const PASSPHRASE_FEEDBACK_DELAY = 500; // How long after keystroke to offer passphrase feedback, ms.
@ -58,7 +60,7 @@ export default class CreateSecretStorageDialog extends React.PureComponent {
        this._setZxcvbnResultTimeout = null;

        this.state = {
-            phase: PHASE_PASSPHRASE,
+            phase: PHASE_LOADING,
            passPhrase: '',
            passPhraseConfirm: '',
            copied: false,
@ -66,6 +68,8 @@ export default class CreateSecretStorageDialog extends React.PureComponent {
            zxcvbnResult: null,
            setPassPhrase: false,
        };
+
+        this._fetchBackupInfo();
    }

    componentWillUnmount() {
@ -74,10 +78,23 @@ export default class CreateSecretStorageDialog extends React.PureComponent {
        }
    }

+    async _fetchBackupInfo() {
+        const backupInfo = await MatrixClientPeg.get().getKeyBackupVersion();
+
+        this.setState({
+            phase: backupInfo ? PHASE_MIGRATE: PHASE_PASSPHRASE,
+            backupInfo,
+        });
+    }
+
    _collectRecoveryKeyNode = (n) => {
        this._recoveryKeyNode = n;
    }

+    _onMigrateNextClick = () => {
+        this._bootstrapSecretStorage();
+    }
+
    _onCopyClick = () => {
        selectText(this._recoveryKeyNode);
        const successful = document.execCommand('copy');
@ -105,6 +122,7 @@ export default class CreateSecretStorageDialog extends React.PureComponent {
        this.setState({
            phase: PHASE_STORING,
            error: null,
+            keyBackupInfo: this.state.backupInfo,
        });
        const cli = MatrixClientPeg.get();
        try {
@ -250,6 +268,26 @@ export default class CreateSecretStorageDialog extends React.PureComponent {
        return this.state.zxcvbnResult && this.state.zxcvbnResult.score >= PASSWORD_MIN_SCORE;
    }

+    _renderPhaseMigrate() {
+        // This is a temporary screen so people who have the labs flag turned on and
+        // click the button are aware they're making a change to their account.
+        // Once we're confident enough in this (and it's supported enough) we can do
+        // it automatically.
+        const DialogButtons = sdk.getComponent('views.elements.DialogButtons');
+        return <div>
+            <p>{_t(
+                "Secret Storage will be set up using your existing key backup details." +
+                "Your secret storage passphrase and recovery key will be the same as " +
+                " they were for your key backup",
+            )}</p>
+            <DialogButtons primaryButton={_t('Next')}
+                onPrimaryButtonClick={this._onMigrateNextClick}
+                hasCancel={true}
+                onCancel={this._onCancel}
+            />
+        </div>;
+    }
+
    _renderPhasePassPhrase() {
        const DialogButtons = sdk.getComponent('views.elements.DialogButtons');

@ -449,7 +487,7 @@ export default class CreateSecretStorageDialog extends React.PureComponent {
        </div>;
    }

-    _renderBusyPhase(text) {
+    _renderBusyPhase() {
        const Spinner = sdk.getComponent('views.elements.Spinner');
        return <div>
            <Spinner />
@ -488,6 +526,8 @@ export default class CreateSecretStorageDialog extends React.PureComponent {

    _titleForPhase(phase) {
        switch (phase) {
+            case PHASE_MIGRATE:
+                return _t('Migrate from Key Backup');
            case PHASE_PASSPHRASE:
                return _t('Secure your encrypted messages with a passphrase');
            case PHASE_PASSPHRASE_CONFIRM:
@ -525,6 +565,12 @@ export default class CreateSecretStorageDialog extends React.PureComponent {
            </div>;
        } else {
            switch (this.state.phase) {
+                case PHASE_LOADING:
+                    content = this._renderBusyPhase();
+                    break;
+                case PHASE_MIGRATE:
+                    content = this._renderPhaseMigrate();
+                    break;
                case PHASE_PASSPHRASE:
                    content = this._renderPhasePassPhrase();
                    break;