Skip to content

[PB-3703] feat: recover private keys when recovering account #1508

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
CandelR merged 31 commits into from
Aug 13, 2025
Merged

[PB-3703] feat: recover private keys when recovering account #1508

CandelR merged 31 commits into from
Aug 13, 2025

Conversation

@jzunigax2
Copy link
Contributor

@jzunigax2 jzunigax2 commented Mar 31, 2025
edited
Loading

Description

In the security section, when "exporting backup keys", we now export a json format that besides storing the plain mnemonic also stores each unencrypted private key. So that when the user attempts to recover these keys they will get encrypted with the new password and be updated on the backend.

For existing files the account recoery remains the same, meaning that if the json.parse fails we fallback to interpreting the file as the plain mnemonic

Related Issues

Related Pull Requests

Checklist

  • Changes have been tested locally.
  • Unit tests have been written or updated as necessary.
  • The code adheres to the repository's coding standards.
  • Relevant documentation has been added or updated.
  • No new warnings or errors have been introduced.
  • SonarCloud issues have been reviewed and addressed.
  • QA Passed

How Has This Been Tested?

How Has This Been Tested

  1. Export Backup Key from Settings:

    • Navigate to the Preferences -> Security.
    • Export the backup key file saving it locally.

  2. Account Recovery Process:

    • Go to the login screen.
    • Click on the "Forgot Password" link.
    • Follow the prompts to recover the account using the exported backup key file.
    • Verify that the account recovery process completes successfully and that the account is accessible.

  3. Testing with Legacy Backup Files:

    • Obtain a legacy backup file or edit it to match the legacy format (only contains plain mnemonic text).
    • Repeat the account recovery process:
      • Go to the login screen.
      • Click on "Forgot Password."
      • Attempt to recover the account using the legacy backup file.
    • Confirm that the recovery process works as expected with the legacy backup file.

All these steps can only be tested with the changes being introduced in internxt/drive-server-wip/pull/506

Additional Notes

@jzunigax2 jzunigax2 added the enhancement New feature or request label Mar 31, 2025
@jzunigax2 jzunigax2 requested a review from apsantiso March 31, 2025 13:08
@jzunigax2 jzunigax2 self-assigned this Mar 31, 2025
@vercel
Copy link

vercel bot commented Mar 31, 2025
edited
Loading

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Project Deployment Preview Comments Updated (UTC)
drive-web Ready Preview Comment Aug 13, 2025 8:53am

@cloudflare-workers-and-pages
Copy link

cloudflare-workers-and-pages bot commented Mar 31, 2025
edited
Loading

Deploying drive-web with  Cloudflare Pages  Cloudflare Pages

Latest commit: 059e63a
Status: ✅  Deploy successful!
Preview URL: https://5b99b158.drive-web.pages.dev
Branch Preview URL: https://feat-recover-private-keys.drive-web.pages.dev

View logs

@jzunigax2 jzunigax2 marked this pull request as ready for review March 31, 2025 17:32
@jzunigax2 jzunigax2 requested a review from CandelR as a code owner March 31, 2025 17:32
CandelR
CandelR reviewed Apr 1, 2025
View reviewed changes
Copy link
Collaborator

@CandelR CandelR left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Remember to add the steps in the How Has This Been Tested section

CandelR
CandelR approved these changes Apr 2, 2025
View reviewed changes
Copy link
Collaborator

@CandelR CandelR left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Approved! Waiting for drive-server-wip changes to pass to QA
Good job @jzunigax2 🚀

@CandelR CandelR mentioned this pull request Apr 30, 2025
Merged
7 tasks
@CandelR CandelR changed the title feat: recover private keys when recovering account [PB-3703] feat: recover private keys when recovering account May 29, 2025
@CandelR
Copy link
Collaborator

CandelR commented May 29, 2025

Hey @jzunigax2, remember to update this branch with master in order to let it ready for QA and release it

@internxt internxt deleted a comment from sonarqubecloud bot Jul 22, 2025
@jzunigax2 jzunigax2 removed the request for review from a team July 28, 2025 22:14
@jzunigax2 jzunigax2 mentioned this pull request Aug 1, 2025
Closed
7 tasks
@sonarqubecloud
Copy link

sonarqubecloud bot commented Aug 13, 2025

Quality Gate Passed Quality Gate passed

Issues
2 New issues
1 Accepted issue

Measures
0 Security Hotspots
82.5% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@CandelR CandelR merged commit 6306fcb into master Aug 13, 2025
15 of 16 checks passed
@CandelR CandelR deleted the feat/recover-private-keys branch August 13, 2025 10:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@CandelR CandelR CandelR approved these changes

@apsantiso apsantiso Awaiting requested review from apsantiso

Assignees

@jzunigax2 jzunigax2

Labels

enhancement New feature or request ready-for-preview

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@jzunigax2 @CandelR