@bitwarden/sdk-internal 0.2.0-main.269 → 0.2.0-main.270

package/node/bitwarden_wasm_internal.d.ts

@@ -256,6 +256,7 @@ export type InitUserCryptoMethod =
   | { password: { password: string; user_key: EncString } }
   | { decryptedKey: { decrypted_user_key: string } }
   | { pin: { pin: string; pin_protected_user_key: EncString } }
+  | { pinEnvelope: { pin: string; pin_protected_user_key_envelope: PasswordProtectedKeyEnvelope } }
   | { authRequest: { request_private_key: B64; method: AuthRequestMethod } }
   | {
       deviceKey: {
@@ -297,6 +298,20 @@ export interface UpdatePasswordResponse {
   newKey: EncString;
 }
 
+/**
+ * Request for deriving a pin protected user key
+ */
+export interface EnrollPinResponse {
+  /**
+   * [UserKey] protected by PIN
+   */
+  pinProtectedUserKeyEnvelope: PasswordProtectedKeyEnvelope;
+  /**
+   * PIN protected by [UserKey]
+   */
+  userKeyEncryptedPin: EncString;
+}
+
 /**
  * Request for deriving a pin protected user key
  */
@@ -450,7 +465,7 @@ export function isEnrollAdminPasswordResetError(error: any): error is EnrollAdmi
 
 export interface CryptoClientError extends Error {
   name: "CryptoClientError";
-  variant: "NotAuthenticated" | "VaultLocked" | "Crypto";
+  variant: "NotAuthenticated" | "VaultLocked" | "Crypto" | "PasswordProtectedKeyEnvelope";
 }
 
 export function isCryptoClientError(error: any): error is CryptoClientError;
@@ -471,7 +486,8 @@ export interface EncryptionSettingsError extends Error {
     | "InvalidSigningKey"
     | "InvalidSecurityState"
     | "MissingPrivateKey"
-    | "UserIdAlreadySetError";
+    | "UserIdAlreadySetError"
+    | "WrongPin";
 }
 
 export function isEncryptionSettingsError(error: any): error is EncryptionSettingsError;
@@ -1544,6 +1560,26 @@ export class CryptoClient {
    * Creates a rotated set of account keys for the current state
    */
   get_v2_rotated_account_keys(): UserCryptoV2KeysResponse;
+  /**
+   * Protects the current user key with the provided PIN. The result can be stored and later
+   * used to initialize another client instance by using the PIN and the PIN key with
+   * `initialize_user_crypto`.
+   */
+  enroll_pin(pin: string): EnrollPinResponse;
+  /**
+   * Protects the current user key with the provided PIN. The result can be stored and later
+   * used to initialize another client instance by using the PIN and the PIN key with
+   * `initialize_user_crypto`. The provided pin is encrypted with the user key.
+   */
+  enroll_pin_with_encrypted_pin(encrypted_pin: string): EnrollPinResponse;
+  /**
+   * Decrypts a `PasswordProtectedKeyEnvelope`, returning the user key, if successful.
+   * This is a stop-gap solution, until initialization of the SDK is used.
+   */
+  unseal_password_protected_key_envelope(
+    pin: string,
+    envelope: PasswordProtectedKeyEnvelope,
+  ): Uint8Array;
 }
 export class ExporterClient {
   private constructor();

package/node/bitwarden_wasm_internal.js

@@ -803,7 +803,7 @@ function __wbg_adapter_59(arg0, arg1, arg2) {
   );
 }
 
-function __wbg_adapter_323(arg0, arg1, arg2, arg3) {
+function __wbg_adapter_326(arg0, arg1, arg2, arg3) {
   wasm.wasm_bindgen__convert__closures__invoke2_mut__h54a8613170fef18e(
     arg0,
     arg1,
@@ -1825,6 +1825,91 @@ class CryptoClient {
       wasm.__wbindgen_add_to_stack_pointer(16);
     }
   }
+  /**
+   * Protects the current user key with the provided PIN. The result can be stored and later
+   * used to initialize another client instance by using the PIN and the PIN key with
+   * `initialize_user_crypto`.
+   * @param {string} pin
+   * @returns {EnrollPinResponse}
+   */
+  enroll_pin(pin) {
+    try {
+      const retptr = wasm.__wbindgen_add_to_stack_pointer(-16);
+      const ptr0 = passStringToWasm0(pin, wasm.__wbindgen_malloc, wasm.__wbindgen_realloc);
+      const len0 = WASM_VECTOR_LEN;
+      wasm.cryptoclient_enroll_pin(retptr, this.__wbg_ptr, ptr0, len0);
+      var r0 = getDataViewMemory0().getInt32(retptr + 4 * 0, true);
+      var r1 = getDataViewMemory0().getInt32(retptr + 4 * 1, true);
+      var r2 = getDataViewMemory0().getInt32(retptr + 4 * 2, true);
+      if (r2) {
+        throw takeObject(r1);
+      }
+      return takeObject(r0);
+    } finally {
+      wasm.__wbindgen_add_to_stack_pointer(16);
+    }
+  }
+  /**
+   * Protects the current user key with the provided PIN. The result can be stored and later
+   * used to initialize another client instance by using the PIN and the PIN key with
+   * `initialize_user_crypto`. The provided pin is encrypted with the user key.
+   * @param {string} encrypted_pin
+   * @returns {EnrollPinResponse}
+   */
+  enroll_pin_with_encrypted_pin(encrypted_pin) {
+    try {
+      const retptr = wasm.__wbindgen_add_to_stack_pointer(-16);
+      const ptr0 = passStringToWasm0(
+        encrypted_pin,
+        wasm.__wbindgen_malloc,
+        wasm.__wbindgen_realloc,
+      );
+      const len0 = WASM_VECTOR_LEN;
+      wasm.cryptoclient_enroll_pin_with_encrypted_pin(retptr, this.__wbg_ptr, ptr0, len0);
+      var r0 = getDataViewMemory0().getInt32(retptr + 4 * 0, true);
+      var r1 = getDataViewMemory0().getInt32(retptr + 4 * 1, true);
+      var r2 = getDataViewMemory0().getInt32(retptr + 4 * 2, true);
+      if (r2) {
+        throw takeObject(r1);
+      }
+      return takeObject(r0);
+    } finally {
+      wasm.__wbindgen_add_to_stack_pointer(16);
+    }
+  }
+  /**
+   * Decrypts a `PasswordProtectedKeyEnvelope`, returning the user key, if successful.
+   * This is a stop-gap solution, until initialization of the SDK is used.
+   * @param {string} pin
+   * @param {PasswordProtectedKeyEnvelope} envelope
+   * @returns {Uint8Array}
+   */
+  unseal_password_protected_key_envelope(pin, envelope) {
+    try {
+      const retptr = wasm.__wbindgen_add_to_stack_pointer(-16);
+      const ptr0 = passStringToWasm0(pin, wasm.__wbindgen_malloc, wasm.__wbindgen_realloc);
+      const len0 = WASM_VECTOR_LEN;
+      wasm.cryptoclient_unseal_password_protected_key_envelope(
+        retptr,
+        this.__wbg_ptr,
+        ptr0,
+        len0,
+        addHeapObject(envelope),
+      );
+      var r0 = getDataViewMemory0().getInt32(retptr + 4 * 0, true);
+      var r1 = getDataViewMemory0().getInt32(retptr + 4 * 1, true);
+      var r2 = getDataViewMemory0().getInt32(retptr + 4 * 2, true);
+      var r3 = getDataViewMemory0().getInt32(retptr + 4 * 3, true);
+      if (r3) {
+        throw takeObject(r2);
+      }
+      var v2 = getArrayU8FromWasm0(r0, r1).slice();
+      wasm.__wbindgen_free(r0, r1 * 1, 1);
+      return v2;
+    } finally {
+      wasm.__wbindgen_add_to_stack_pointer(16);
+    }
+  }
 }
 module.exports.CryptoClient = CryptoClient;
 
@@ -3905,7 +3990,7 @@ module.exports.__wbg_getTime_46267b1c24877e30 = function (arg0) {
   return ret;
 };
 
-module.exports.__wbg_get_31aa32a26748ec8a = function () {
+module.exports.__wbg_get_115b852a26d2e64d = function () {
   return handleError(function (arg0, arg1, arg2) {
     let deferred0_0;
     let deferred0_1;
@@ -3920,7 +4005,7 @@ module.exports.__wbg_get_31aa32a26748ec8a = function () {
   }, arguments);
 };
 
-module.exports.__wbg_get_47834f608c28e2ef = function () {
+module.exports.__wbg_get_2ee0fd323259abbb = function () {
   return handleError(function (arg0, arg1, arg2) {
     let deferred0_0;
     let deferred0_1;
@@ -3947,7 +4032,7 @@ module.exports.__wbg_get_b9b93047fe3cf45b = function (arg0, arg1) {
   return addHeapObject(ret);
 };
 
-module.exports.__wbg_getaccesstoken_4bbc1b6cb72b38e5 = function (arg0) {
+module.exports.__wbg_getaccesstoken_f392c183f29e9890 = function (arg0) {
   const ret = getObject(arg0).get_access_token();
   return addHeapObject(ret);
 };
@@ -4052,14 +4137,14 @@ module.exports.__wbg_length_e2d2a49132c1b256 = function (arg0) {
   return ret;
 };
 
-module.exports.__wbg_list_796c7a27b66bb10d = function () {
+module.exports.__wbg_list_89cca7d490a44d70 = function () {
   return handleError(function (arg0) {
     const ret = getObject(arg0).list();
     return addHeapObject(ret);
   }, arguments);
 };
 
-module.exports.__wbg_list_da710ca964173491 = function () {
+module.exports.__wbg_list_8b4750ec86e7901c = function () {
   return handleError(function (arg0) {
     const ret = getObject(arg0).list();
     return addHeapObject(ret);
@@ -4094,7 +4179,7 @@ module.exports.__wbg_new_23a2665fac83c611 = function (arg0, arg1) {
       const a = state0.a;
       state0.a = 0;
       try {
-        return __wbg_adapter_323(a, state0.b, arg0, arg1);
+        return __wbg_adapter_326(a, state0.b, arg0, arg1);
       } finally {
         state0.a = a;
       }
@@ -4241,7 +4326,7 @@ module.exports.__wbg_randomFillSync_ac0988aba3254290 = function () {
   }, arguments);
 };
 
-module.exports.__wbg_remove_3129bda82100f0a2 = function () {
+module.exports.__wbg_remove_5d18d5e69e5b9e97 = function () {
   return handleError(function (arg0, arg1, arg2) {
     let deferred0_0;
     let deferred0_1;
@@ -4256,7 +4341,7 @@ module.exports.__wbg_remove_3129bda82100f0a2 = function () {
   }, arguments);
 };
 
-module.exports.__wbg_remove_4975ed78d2562376 = function () {
+module.exports.__wbg_remove_ae7f64be8e4b3d4b = function () {
   return handleError(function (arg0, arg1, arg2) {
     let deferred0_0;
     let deferred0_1;
@@ -4295,19 +4380,7 @@ module.exports.__wbg_setTimeout_ca12ead8b48245e2 = function (arg0, arg1) {
   return addHeapObject(ret);
 };
 
-module.exports.__wbg_set_37837023f3d740e8 = function (arg0, arg1, arg2) {
-  getObject(arg0)[arg1 >>> 0] = takeObject(arg2);
-};
-
-module.exports.__wbg_set_3f1d0b984ed272ed = function (arg0, arg1, arg2) {
-  getObject(arg0)[takeObject(arg1)] = takeObject(arg2);
-};
-
-module.exports.__wbg_set_65595bdd868b3009 = function (arg0, arg1, arg2) {
-  getObject(arg0).set(getObject(arg1), arg2 >>> 0);
-};
-
-module.exports.__wbg_set_8394acfd3cac67a4 = function () {
+module.exports.__wbg_set_1428084fdb396fcc = function () {
   return handleError(function (arg0, arg1, arg2, arg3) {
     let deferred0_0;
     let deferred0_1;
@@ -4322,12 +4395,24 @@ module.exports.__wbg_set_8394acfd3cac67a4 = function () {
   }, arguments);
 };
 
+module.exports.__wbg_set_37837023f3d740e8 = function (arg0, arg1, arg2) {
+  getObject(arg0)[arg1 >>> 0] = takeObject(arg2);
+};
+
+module.exports.__wbg_set_3f1d0b984ed272ed = function (arg0, arg1, arg2) {
+  getObject(arg0)[takeObject(arg1)] = takeObject(arg2);
+};
+
+module.exports.__wbg_set_65595bdd868b3009 = function (arg0, arg1, arg2) {
+  getObject(arg0).set(getObject(arg1), arg2 >>> 0);
+};
+
 module.exports.__wbg_set_8fc6bf8a5b1071d1 = function (arg0, arg1, arg2) {
   const ret = getObject(arg0).set(getObject(arg1), getObject(arg2));
   return addHeapObject(ret);
 };
 
-module.exports.__wbg_set_9397834d5293a974 = function () {
+module.exports.__wbg_set_ecd2eed98800a72b = function () {
   return handleError(function (arg0, arg1, arg2, arg3) {
     let deferred0_0;
     let deferred0_1;
@@ -4530,18 +4615,18 @@ module.exports.__wbindgen_cb_drop = function (arg0) {
   return ret;
 };
 
-module.exports.__wbindgen_closure_wrapper3336 = function (arg0, arg1, arg2) {
-  const ret = makeMutClosure(arg0, arg1, 276, __wbg_adapter_54);
+module.exports.__wbindgen_closure_wrapper3386 = function (arg0, arg1, arg2) {
+  const ret = makeMutClosure(arg0, arg1, 278, __wbg_adapter_54);
   return addHeapObject(ret);
 };
 
-module.exports.__wbindgen_closure_wrapper5710 = function (arg0, arg1, arg2) {
-  const ret = makeMutClosure(arg0, arg1, 301, __wbg_adapter_54);
+module.exports.__wbindgen_closure_wrapper5756 = function (arg0, arg1, arg2) {
+  const ret = makeMutClosure(arg0, arg1, 303, __wbg_adapter_54);
   return addHeapObject(ret);
 };
 
-module.exports.__wbindgen_closure_wrapper6065 = function (arg0, arg1, arg2) {
-  const ret = makeMutClosure(arg0, arg1, 326, __wbg_adapter_59);
+module.exports.__wbindgen_closure_wrapper6111 = function (arg0, arg1, arg2) {
+  const ret = makeMutClosure(arg0, arg1, 328, __wbg_adapter_59);
   return addHeapObject(ret);
 };
 

package/node/bitwarden_wasm_internal_bg.wasm.d.ts

@@ -186,6 +186,20 @@ export const cryptoclient_make_key_pair: (a: number, b: number, c: number) => vo
 export const cryptoclient_verify_asymmetric_keys: (a: number, b: number, c: number) => void;
 export const cryptoclient_make_keys_for_user_crypto_v2: (a: number, b: number) => void;
 export const cryptoclient_get_v2_rotated_account_keys: (a: number, b: number) => void;
+export const cryptoclient_enroll_pin: (a: number, b: number, c: number, d: number) => void;
+export const cryptoclient_enroll_pin_with_encrypted_pin: (
+  a: number,
+  b: number,
+  c: number,
+  d: number,
+) => void;
+export const cryptoclient_unseal_password_protected_key_envelope: (
+  a: number,
+  b: number,
+  c: number,
+  d: number,
+  e: number,
+) => void;
 export const isDeriveKeyConnectorError: (a: number) => number;
 export const isEnrollAdminPasswordResetError: (a: number) => number;
 export const isCryptoClientError: (a: number) => number;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@bitwarden/sdk-internal",
-  "version": "0.2.0-main.269",
+  "version": "0.2.0-main.270",
   "license": "GPL-3.0",
   "files": [
     "bitwarden_wasm_internal_bg.js",