PM-9532: pt2. separate vault unlock logic and fail out on error during login.

[dseverns-livefront]

🎟️ Tracking

PM-9532

📔 Objective

If a user is able to authenticate successfully with the server but there is an issue in the SDK when unlocking the vault (or related SDK operation like initializing crypto) they will be in a sort of limbo state where they will immediately be take to the unlock screen but unable to proceed. To prevent this and match iOS behavior we want to propagate any error from the SDK that occurs in the vault unlock process to the LoginResult and prevent a "successful" login, if they are unable to access the vault due to the issue stated above.

NOTE

The repro step which originally highlighted this issue has been fixed in the SDK according to the info on the ticket. To recreate you can force the result of VaultSdkSourceImpl.initializeCrypto to return a failure and see the difference on main vs this branch. Also testing to make sure no regression is added in the separation of some of the vault unlock logic from the storage of keys.

⏰ Reminders before review

• Contributor guidelines followed
• All formatters and local linters executed and passed
• Written new unit and / or integration tests where applicable
• Used internationalization (i18n) for all UI strings
• CI builds passed
• Communicated to DevOps any deployment requirements
• Updated any necessary documentation or informed the documentation team

🦮 Reviewer guidelines

• 👍 (:+1:) or similar for great changes
• 📝 (:memo:) or ℹ️ (:information_source:) for notes or general info
• ❓ (:question:) for questions
• 🤔 (:thinking:) or 💭 (:thought_balloon:) for more open inquiry that's not quite a confirmed
  issue and could potentially benefit from discussion
• 🎨 (:art:) for suggestions / improvements
• ❌ (:x:) or ⚠️ (:warning:) for more significant problems or concerns needing attention
• 🌱 (:seedling:) or ♻️ (:recycle:) for future improvements or indications of technical debt
• ⛏ (:pick:) for minor or nitpick changes

[github-actions]

Checkmarx One – Scan Summary & Details – df21295c-b439-4523-a984-44e9dd289795

No New Or Fixed Issues Found

[codecov]

Codecov Report

Attention: Patch coverage is 88.77551% with 11 lines in your changes missing coverage. Please review.

Project coverage is 87.83%. Comparing base (bbe50ae) to head (7e72776).
Report is 17 commits behind head on main.

Files	Patch %	Lines
...twarden/data/auth/repository/AuthRepositoryImpl.kt	87.91%	1 Missing and 10 partials ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #3609      +/-   ##
==========================================
+ Coverage   87.81%   87.83%   +0.02%     
==========================================
  Files         368      368              
  Lines       30469    30495      +26     
  Branches     4552     4561       +9     
==========================================
+ Hits        26755    26785      +30     
+ Misses       2128     2119       -9     
- Partials     1586     1591       +5     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[SaintPatrck]

👍

[SaintPatrck]

Can we get a test for this?

[dseverns-livefront]

Done!

[david-livefront]

Can we chain this:

            val pendingRequest = authDiskSource
                .getPendingAuthRequest(userId = userId)
                ?: return null

[david-livefront]

👍

[david-livefront]

Can we drop the extra parenthesis?

[david-livefront]

Could we replace this with some early returns:

    ): VaultUnlockResult? {
        // Attempt to unlock the vault with password if possible.
        val masterPassword = password ?: return null
        val privateKey = loginResponse.privateKey ?: return null
        val key = loginResponse.key ?: return null
        return vaultRepository.unlockVault(
            userId = userId,
            email = userStateJson.activeAccount.profile.email,
            kdf = userStateJson.activeAccount.profile.toSdkParams(),
            userKey = key,
            privateKey = privateKey,
            masterPassword = masterPassword,
            // We can separately unlock vault for organization data after
            // receiving the sync response if this data is currently absent.
            organizationKeys = null,
        )
    }

[david-livefront]

Do we need this?

Could we just do this:

    ): VaultUnlockResult? {
        // Attempt to unlock the vault with auth request if possible.
        // These values will only be null during the Just-in-Time provisioning flow.
        if (loginResponse.privateKey != null && loginResponse.key != null) {
            deviceData?.let { model ->
                return vaultRepository.unlockVault(
                    userId = userId,

[david-livefront]

If we return early above, we know that we should run the code inside this if if we make it this far.

So this should work, right?

        // Handle the Trusted Device Encryption flow
        return loginResponse
            .userDecryptionOptions
            ?.trustedDeviceUserDecryptionOptions
            ?.let { options ->
                loginResponse.privateKey?.let { privateKey ->
                    unlockVaultWithTrustedDeviceUserDecryptionOptionsAndStoreKeys(
                        options = options,
                        userStateJson = userStateJson,
                        privateKey = privateKey,
                    )
                }
            }

[dseverns-livefront]

brilliant!

[david-livefront]

Can this be simplified?

(block() as? VaultUnlockError)?.also(onVaultUnlockError)

[dseverns-livefront]

done!

[david-livefront]

👍

[david-livefront]

Is this formatted correctly?

I feels over indented here

[dseverns-livefront]

weird I definitely cmd+shift+l on this several times, but yeah this a big ol \t\t

[david-livefront]

Double comment

[david-livefront]

Can we get the correct punctuation here:

     * A helper method to handle the [TrustedDeviceUserDecryptionOptionsJson] specific to TDE
     * and store the necessary keys when appropriate.