@lifeready/core 1.0.1 → 1.0.2

package/src/lib/scenario/scenario.types.ts

@@ -1,258 +0,0 @@
-import { PreparedPermissions } from '../api/key-exchange.types';
-import { Key } from '../cryptography/cryptography.types';
-import { SecretShare } from '../cryptography/slip39.service';
-import { TrustedParty } from '../trusted-parties/trusted-party.types';
-import { ApprovalGroup } from './approvals/scenario-approval.types';
-import { Claimant } from './claimants/scenario-claimant.types';
-import { Receiver } from './receivers/scenario-receiver.types';
-
-// Glossary
-// - Subject: the user that the scenario applies to
-// - Approver: the user that can approve a scenario
-// - Approver sub-assembly: a group of approvers that must reach quorum for the sub-assembly to be considered approved
-// - Approver assembly: a group of sub-assemblies that must reach quorum for the assembly to be considered approved
-// - Receiver: a user that will receive the released information
-// - Claimant: a user that can start the process of release of information
-
-export enum ScenarioState {
-  // Can not be claimed when DISABLED. Scenarios can be created in this state, then
-  // set to ENABLED once setup is complete.
-  DISABLED = 'DISABLED',
-  // Can be claimed when ENABLED. It sits in this state until claimed.
-  ENABLED = 'ENABLED',
-  // Claimant has initiated a claim.
-  CLAIMED = 'CLAIMED',
-  // Approvers have approved this scenario
-  APPROVED = 'APPROVED',
-  REJECTED = 'REJECTED',
-}
-
-export enum ScenarioClaimState {
-  Claimed = 'CLAIMED',
-  Approved = 'APPROVED',
-  Expired = 'EXPIRED',
-  Rejected = 'REJECTED',
-  Cancelled = 'CANCELLED',
-  Reset = 'RESET',
-}
-
-export enum ApproverClaimState {
-  Claimed = 'CLAIMED',
-  Approved = 'APPROVED',
-  Rejected = 'REJECTED',
-}
-
-export class NewScenario {
-  name: string;
-  event: string;
-  claimants: NewScenarioClaimant[];
-  approvalGroups: NewScenarioApprovalGroup[];
-  receivers: NewScenarioReceiver[];
-}
-
-export class NewScenarioClaimant {
-  trustedPartyId: string;
-  trustedPartySharedKeyId: string;
-  message?: string;
-}
-
-export class NewScenarioApprovalGroup {
-  name: string;
-  quorum: number;
-  singleReject: boolean;
-  approvers: NewScenarioApprover[];
-}
-
-export class NewScenarioApprover {
-  trustedPartyId: string;
-  trustedPartySharedKeyId: string;
-  message?: string;
-}
-
-export class NewScenarioReceiver {
-  trustedPartyId: string;
-  trustedPartySharedKeyId: string;
-  permissions: PreparedPermissions;
-  message?: string;
-}
-
-export class UpdateScenario {
-  scenarioId: string;
-  keyId: string;
-  assemblyKeyId: string;
-  name: string;
-  event: string;
-  claimants: UpdatedScenarioClaimant[];
-  deletedClaimantIds: string[];
-  approvalGroups: UpdatedScenarioApprovalGroup[];
-  deletedGroupIds: string[];
-  receivers: UpdatedScenarioReceiver[];
-  deletedReceiverIds: string[];
-}
-
-export class UpdatedScenarioClaimant {
-  claimantId?: string;
-  keyId?: string;
-  trustedPartyId: string;
-  trustedPartySharedKeyId: string;
-  message?: string;
-}
-
-export class UpdatedScenarioApprovalGroup {
-  subAssemblyId?: string;
-  name: string;
-  quorum: number;
-  singleReject: boolean;
-  approvers: UpdatedScenarioApprover[];
-  deletedApproverIds: string[];
-}
-
-export class UpdatedScenarioApprover {
-  approverId?: string;
-  keyId?: string;
-  trustedPartyId: string;
-  trustedPartySharedKeyId: string;
-  message?: string;
-}
-
-export class UpdatedScenarioReceiver {
-  receiverId?: string;
-  keyId?: string;
-  trustedPartyId: string;
-  trustedPartySharedKeyId: string;
-  permissions: PreparedPermissions;
-  message?: string;
-}
-
-export class ScenarioSummary {
-  id: string;
-  status: ScenarioState;
-  name: string;
-  event: string;
-  claimId?: string;
-  claimStatus?: ScenarioClaimState;
-  createdOn: string | Date;
-  lastModified: string | Date;
-}
-
-export class ScenarioClaim {
-  id: string;
-  state: ScenarioClaimState;
-  triggeredBy: TrustedParty;
-  triggeredOn: string;
-  lastModified: string;
-  scenario: ScenarioSummary;
-}
-
-export class SharedScenarioSummary {
-  id: string;
-  status: ScenarioState;
-  event: string;
-
-  trustedParty: TrustedParty;
-  claimStatus?: ScenarioClaimState;
-}
-
-export class SharedScenario {
-  id: string;
-  status: ScenarioState;
-  event: string;
-
-  trustedParty: TrustedParty;
-  isClaimant: boolean;
-  claimantMessage?: string;
-  isApprover: boolean;
-  approverMessages?: string[];
-  isReceiver: boolean;
-  receiverMessage?: string;
-  receiverKeyId?: string;
-  receiverPbkId?: string;
-  receiverDirectories?: { id: string; wrappedItemKey: string }[];
-
-  claim?: SharedScenarioClaim;
-}
-
-export interface SharedScenarioClaim {
-  id: string;
-  isClaimant: boolean;
-  status: ScenarioClaimState;
-  asApprovers?: SharedScenarioClaimApprover[];
-  asReceiver?: {
-    received: boolean;
-    ciphers: string[];
-  };
-}
-
-export interface SharedScenarioClaimApprover {
-  approverId: string;
-  approverKey: string;
-  status: ApproverClaimState;
-  receivers: {
-    id: string;
-    pbkId: string;
-  }[];
-}
-
-export interface Scenario {
-  id: string;
-  keyId: string;
-  assemblyKeyId: string;
-  assemblyQuorum: number;
-  status: ScenarioState;
-  name: string;
-  event: string;
-  claimants: Claimant[];
-  approverGroups: ApprovalGroup[];
-  receivers: Receiver[];
-  claim: {
-    id: string;
-    status: ScenarioClaimState;
-    claimant: Claimant;
-  };
-}
-
-export interface CreateScenarioInput {
-  plainSubjectCipherData: object;
-}
-
-export interface UpdateScenarioInput {
-  scenarioId: string;
-  keyId: string;
-  plainSubjectCipherData: object;
-}
-
-export interface PartialAssemblyKey {
-  slip39: {
-    share: SecretShare;
-    // Mainly for debugging.
-    subAssembly: {
-      quorum: number;
-      size: number;
-    };
-  };
-  assemblyKeyParams: object;
-}
-
-export interface SharedClaimReceiver {
-  id: string;
-  pbk: Key;
-}
-
-export interface SharedClaimApprover {
-  receivers: {
-    id: string;
-    pbk: Key;
-  }[];
-}
-
-export interface SharedClaimApproval {
-  receiverPbkCipher: string;
-  plainReceiverPbkCipher: {
-    partialAssemblyKey: PartialAssemblyKey;
-  };
-}
-
-export interface SharedClaimReceiver {
-  received: boolean;
-  approvals: SharedClaimApproval[];
-}

package/src/lib/search/search.gql.ts

@@ -1,62 +0,0 @@
-import gql from 'graphql-tag';
-import { KeyGraphFragment } from '../_common/queries.gql';
-const MAX_CATEGORY_DEPTH = 4;
-const DEFAULT_CATEGORY_DEPTH = 4;
-
-export const SearchRecordContentsQuery = gql`
-  query GetRecordContents(
-    $id: LrRelayIdInput!
-    $depth: Int
-    $first: Int
-    $after: String
-    $recordContentFilter: LrJSONFilter!
-  ) {
-    category: directory(id: $id) {
-      descendantDirectories(depth: $depth) {
-        recordContents: files(
-          first: $first
-          after: $after
-          plainMeta: $recordContentFilter
-          orderBy: "-created"
-        ) {
-          edges {
-            node {
-              currentVersion {
-                state {
-                  keyId
-                  plainMeta
-                  cipherMeta
-                  contentResource
-                }
-              }
-              nParentDirectoryLinks(n: 1) {
-                list {
-                  parentDirectory {
-                    id
-                    keyId
-                    created
-                    modified
-                    archived
-                    plainMeta
-                    cipherMeta
-                    nParentDirectoryLinks(n: 3) {
-                      list {
-                        parentDirectory {
-                          id
-                        }
-                      }
-                    }
-                  }
-                }
-              }
-            }
-          }
-        }
-      }
-    }
-    keyGraph {
-      ...KeyGraphFragment
-    }
-  }
-  ${KeyGraphFragment}
-`;

package/src/lib/search/search.service.spec.ts

@@ -1,57 +0,0 @@
-import { TestBed } from '@angular/core/testing';
-import { loginTestUser } from '../auth/life-ready-auth.service.spec';
-import { KeyFactoryService } from '../cryptography/key-factory.service';
-import { RecordFieldType } from '../record-type/record-type.types';
-import { RecordService } from '../record/record.service';
-import { lrConfigureTestingModule, lrit } from '../_common/tests';
-import { SearchService } from './search.service';
-import { SearchItemType } from './search.types';
-
-const TIMEOUT = 1000 * 60 * 10;
-
-// xdescribe('SearchService', () => {
-//   let searchService: SearchService;
-//   let recordService: RecordService;
-//   let keyFactory: KeyFactoryService;
-
-//   beforeEach(async () => {
-//     lrConfigureTestingModule();
-//     searchService = TestBed.inject(SearchService);
-//     recordService = TestBed.inject(RecordService);
-//     keyFactory = TestBed.inject(KeyFactoryService);
-//   }, TIMEOUT);
-
-//   lrit('should download records', async () => {
-//     await loginTestUser();
-
-//     await populateRecords(
-//       recordService,
-//       keyFactory,
-//       searchService,
-//       10
-//     );
-
-//     let start;
-//     let end;
-
-//     start = Date.now();
-//     await (searchService as any).load();
-//     end = Date.now();
-//     console.log("search load time (s): ", (end - start) / 1000);
-
-//     start = Date.now();
-//     await (searchService as any).index();
-//     end = Date.now();
-//     console.log("search index time (s): ", (end - start) / 1000);
-
-//     console.log((searchService as any).vaultItems);
-
-//     start = Date.now();
-//     const res = searchService.search("bank");
-//     end = Date.now();
-//     console.log("search time (s): ", (end - start) / 1000);
-//     console.log("search result: ", res);
-
-//   }, TIMEOUT);
-
-// });

package/src/lib/search/search.service.ts

@@ -1,174 +0,0 @@
-import { Injectable, NgZone } from '@angular/core';
-import { LrApolloService } from '../api/lr-apollo.service';
-import { CategoryService } from '../category/category.service';
-import { KeyFactoryService } from '../cryptography/key-factory.service';
-import { KeyGraphService } from '../cryptography/key-graph.service';
-import { RecordFieldType } from '../record-type/record-type.types';
-import { RecordContentFilter } from '../record/record.gql';
-import { RecordService } from '../record/record.service';
-import { RunOutsideAngular } from '../_common/run-outside-angular';
-import { SearchRecordContentsQuery } from './search.gql';
-import { SearchItem, SearchItemType } from './search.types';
-
-async function debugPopulateCategory(
-  categoryService: CategoryService,
-  recordService: RecordService,
-  keyFactory: KeyFactoryService,
-  categoryId: string,
-  recordsPerCategory: number
-) {
-  const tasks = [];
-
-  const category = await categoryService.getCategory(categoryId);
-
-  // Create records
-  for (let i = category.records.length; i < recordsPerCategory; ++i) {
-    const name = `${category.category.name}+${keyFactory.randomString(16)}`;
-    console.log('Creating record: ', name);
-    await recordService.createRecord({
-      categoryIds: [category.category.id],
-      name,
-      recordType: {
-        id: '1',
-        version: 1,
-        name: 'Vehicle Details',
-      },
-      fields: [
-        {
-          id: '1-vin',
-          type: RecordFieldType.Text,
-          label: 'VIN Number',
-          value: '1234567890',
-        },
-        {
-          id: '1-location',
-          type: RecordFieldType.Text,
-          label: 'Location',
-          value: '10'.repeat(1000),
-        },
-      ],
-      // attachments
-    });
-  }
-
-  // Delete records
-  for (let i = category.records.length; i > recordsPerCategory; --i) {
-    const id = category.records[i - 1].id;
-    console.log('Deleting record: ', id);
-    await recordService.deleteRecord(id);
-  }
-}
-
-export async function debugPopulateRecords(
-  categoryService: CategoryService,
-  recordService: RecordService,
-  keyFactory: KeyFactoryService,
-  recordsPerCategory: number
-) {
-  const pillars = await categoryService.getCategories();
-
-  // For each category, added records
-  for (const pillar of pillars) {
-    const category = await categoryService.getCategory(pillar.id);
-    for (const subCategory of category.subCategories) {
-      if (subCategory.allowRecords) {
-        await debugPopulateCategory(
-          categoryService,
-          recordService,
-          keyFactory,
-          subCategory.id,
-          recordsPerCategory
-        );
-      }
-    }
-  }
-}
-
-@RunOutsideAngular({
-  ngZoneName: 'ngZone',
-})
-@Injectable({
-  providedIn: 'root',
-})
-export class SearchService {
-  vaultItems: { [itemId: string]: SearchItem } = {};
-  recordContentsResult: any;
-
-  constructor(
-    private ngZone: NgZone,
-    private lrApollo: LrApolloService,
-    private categoryService: CategoryService,
-    private keyGraph: KeyGraphService
-  ) {}
-
-  private async mapRecordContent(recordContent: any): Promise<SearchItem> {
-    const record = recordContent.nParentDirectoryLinks.list[0].parentDirectory;
-    const state = recordContent.currentVersion.state;
-
-    const plainCipherMeta =
-      state.cipherMeta &&
-      (await this.keyGraph.decryptFromString<any>(
-        state.keyId,
-        state.cipherMeta
-      ));
-
-    return {
-      type: SearchItemType.RECORD,
-      id: record.id,
-      created: new Date(record.created),
-      modified: new Date(record.modified),
-      archived: record.archived,
-      plainMeta:
-        state.plainMeta &&
-        JSON.parse(recordContent.currentVersion.state.plainMeta),
-      plainCipherMeta,
-      parentCategoryId: record.nParentDirectoryLinks.list[0].parentDirectory.id,
-    };
-  }
-
-  private async mapRecordContents(edges: any[]): Promise<SearchItem[]> {
-    return Promise.all(edges.map((edge) => this.mapRecordContent(edge.node)));
-  }
-
-  private async load() {
-    const defaultVault = await this.categoryService.getDefaultVault();
-    let start;
-    let end;
-
-    start = Date.now();
-
-    this.recordContentsResult = await this.lrApollo.query<any>({
-      query: SearchRecordContentsQuery,
-      variables: {
-        id: defaultVault.id,
-        depth: 5,
-        first: null,
-        after: null,
-        recordContentFilter: RecordContentFilter,
-      },
-    });
-
-    end = Date.now();
-    console.log('Search API time (s): ', (end - start) / 1000);
-
-    start = Date.now();
-    // try {
-    const items = await this.mapRecordContents(
-      this.recordContentsResult.category.descendantDirectories.recordContents
-        .edges
-    );
-    for (const item of items) {
-      this.vaultItems[item.id] = item;
-    }
-
-    end = Date.now();
-    console.log('Search mapCategory time (s): ', (end - start) / 1000);
-  }
-
-  public async refresh() {
-    await this.load();
-
-    console.log(Object.values(this.vaultItems));
-    return this.vaultItems;
-  }
-}

package/src/lib/search/search.types.ts

@@ -1,24 +0,0 @@
-import Fuse from 'fuse.js';
-
-export enum SearchItemType {
-  RECORD = 'RECORD',
-  CATEGORY = 'CATEGORY',
-}
-
-export interface SearchRecordAttachment {
-  name: string;
-}
-
-export interface SearchItem {
-  id: string;
-  type: SearchItemType;
-  created: Date;
-  modified: Date;
-  archived: boolean;
-  plainMeta: any;
-  plainCipherMeta: any;
-  parentCategoryId?: string;
-  attachments?: SearchRecordAttachment[];
-}
-
-export type SearchResults = Fuse.FuseResult<SearchItem>[];

package/src/lib/trusted-parties/tp-password-reset-request.service.ts

@@ -1,140 +0,0 @@
-import { Injectable, Injector, NgZone } from '@angular/core';
-import { JWK } from 'node-jose';
-import {
-  LrGraphQLService,
-  LrMergedMutation,
-  LrMutation,
-  LrMutationBase,
-  LrService,
-} from '../api/lr-graphql';
-import { TpAssemblyState, TpClaimApproverState } from '../api/types';
-import { EncryptionService } from '../cryptography/encryption.service';
-import { LrBadStateException } from '../_common/exceptions';
-import { RunOutsideAngular } from '../_common/run-outside-angular';
-import {
-  ApproveTpPasswordResetRequestMutation,
-  RejectTpPasswordResetRequestMutation,
-  SharedTpPasswordResetQuery,
-  SharedTpPasswordResetsQuery,
-} from './tp-password-reset.gql';
-
-@RunOutsideAngular({
-  ngZoneName: 'ngZone',
-})
-@Injectable({
-  providedIn: 'root',
-})
-export class TpPasswordResetRequestService extends LrService {
-  constructor(
-    private ngZone: NgZone,
-    private injector: Injector,
-    private encryptionService: EncryptionService
-  ) {
-    super(injector);
-  }
-
-  async getSharedResets() {
-    return (
-      await this.query({
-        query: SharedTpPasswordResetsQuery,
-      })
-    ).sharedTpPasswordResets;
-  }
-
-  async getSharedReset(id) {
-    return (
-      await this.query({
-        query: SharedTpPasswordResetQuery,
-        variables: {
-          id,
-        },
-      })
-    ).sharedTpPasswordReset;
-  }
-
-  private activeRequestOrRaise(sharedReset): void {
-    const state = sharedReset.sharedRequest.claim.state;
-    if (state !== TpAssemblyState.CLAIMED) {
-      throw new LrBadStateException(`Claim is already in ${state} state.`);
-    }
-  }
-
-  rejectRequest(sharedResetId: string) {
-    return this.mutate(this.rejectRequestMutation(sharedResetId));
-  }
-
-  async rejectRequestMutation(sharedResetId: string) {
-    const sharedReset = await this.getSharedReset(sharedResetId);
-
-    this.activeRequestOrRaise(sharedReset);
-
-    return LrMergedMutation.create(
-      sharedReset.sharedRequest.claim.asClaimApprovers.edges
-        .filter((edge) => edge.node.state === TpClaimApproverState.CLAIMED)
-        .map(
-          (edge) =>
-            new LrMutation({
-              mutation: RejectTpPasswordResetRequestMutation,
-              variables: { input: { claimApproverId: edge.node.id } },
-            })
-        )
-    );
-  }
-
-  // ?? TODO The return from this should not be any.
-  approveRequest(sharedResetId: string, pbkFingerPrint?: string) {
-    return this.mutate(
-      this.approveRequestMutation(sharedResetId, pbkFingerPrint)
-    );
-  }
-
-  async approveRequestMutation(sharedResetId: string, pbkFingerPrint?: string) {
-    const sharedReset = await this.getSharedReset(sharedResetId);
-
-    this.activeRequestOrRaise(sharedReset);
-
-    const pbk = await JWK.asKey(JSON.parse(sharedReset.sharedRequest.pxk.pbk));
-    console.log(pbk.toJSON());
-
-    // TODO <AZ> Verify pbk against pbkFingerPrint
-
-    const claimApprovers = sharedReset.sharedRequest.claim.asClaimApprovers.edges.filter(
-      (edge) => edge.node.state === TpClaimApproverState.CLAIMED
-    );
-
-    // A single approver may belong to multiple sub-assemblies. We approve them all here in a single
-    // transaction.
-    return LrMergedMutation.create(
-      await Promise.all(
-        claimApprovers.map(async (approverEdge) => {
-          const ca = approverEdge.node;
-          const input = {
-            claimApproverId: ca.id,
-            receiverApprovals: await Promise.all(
-              ca.receiverApprovals.edges.map(async (receiverEdge) => {
-                const ra = receiverEdge.node;
-                return {
-                  receiverApprovalId: ra.id,
-                  receiverCipher: '',
-                  receiverCipherPartialAssemblyKey: await this.encryptionService.encryptToString(
-                    pbk,
-                    ca.sharedCipherPartialAssemblyKeyClearJson
-                  ),
-                };
-              })
-            ),
-          };
-
-          console.log(input);
-
-          return new LrMutation({
-            mutation: ApproveTpPasswordResetRequestMutation,
-            variables: {
-              input,
-            },
-          });
-        })
-      )
-    );
-  }
-}