use crate::{ components::router::{AppRoute, NavButton}, infra::api::HostService, }; use anyhow::{anyhow, bail, Context, Result}; use lldap_auth::*; use validator_derive::Validate; use yew::{ prelude::*, services::{fetch::FetchTask, ConsoleService}, }; use yew_form::Form; use yew_form_derive::Model; use yew_router::{ agent::{RouteAgentDispatcher, RouteRequest}, route::Route, }; #[derive(PartialEq, Eq)] enum OpaqueData { None, Login(opaque::client::login::ClientLogin), Registration(opaque::client::registration::ClientRegistration), } impl Default for OpaqueData { fn default() -> Self { OpaqueData::None } } impl OpaqueData { fn take(&mut self) -> Self { std::mem::take(self) } } /// The fields of the form, with the constraints. #[derive(Model, Validate, PartialEq, Clone, Default)] pub struct FormModel { #[validate(custom( function = "empty_or_long", message = "Password should be longer than 8 characters" ))] old_password: String, #[validate(length(min = 8, message = "Invalid password. Min length: 8"))] password: String, #[validate(must_match(other = "password", message = "Passwords must match"))] confirm_password: String, } fn empty_or_long(value: &str) -> Result<(), validator::ValidationError> { if value.is_empty() || value.len() >= 8 { Ok(()) } else { Err(validator::ValidationError::new("")) } } pub struct ChangePasswordForm { link: ComponentLink, props: Props, error: Option, form: Form, opaque_data: OpaqueData, // Used to keep the request alive long enough. task: Option, route_dispatcher: RouteAgentDispatcher, } #[derive(Clone, PartialEq, Properties)] pub struct Props { pub username: String, pub is_admin: bool, } pub enum Msg { FormUpdate, Submit, AuthenticationStartResponse(Result>), SubmitNewPassword, RegistrationStartResponse(Result>), RegistrationFinishResponse(Result<()>), } impl ChangePasswordForm { fn call_backend(&mut self, method: M, req: Req, callback: C) -> Result<()> where M: Fn(Req, Callback) -> Result, C: Fn(Resp) -> ::Message + 'static, { self.task = Some(method(req, self.link.callback(callback))?); Ok(()) } fn handle_message(&mut self, msg: ::Message) -> Result { match msg { Msg::FormUpdate => Ok(true), Msg::Submit => { if !self.form.validate() { bail!("Check the form for errors"); } if self.props.is_admin { self.handle_message(Msg::SubmitNewPassword) } else { let old_password = self.form.model().old_password; if old_password.is_empty() { bail!("Current password should not be empty"); } let mut rng = rand::rngs::OsRng; let login_start_request = opaque::client::login::start_login(&old_password, &mut rng) .context("Could not initialize login")?; self.opaque_data = OpaqueData::Login(login_start_request.state); let req = login::ClientLoginStartRequest { username: self.props.username.clone(), login_start_request: login_start_request.message, }; self.call_backend( HostService::login_start, req, Msg::AuthenticationStartResponse, )?; Ok(true) } } Msg::AuthenticationStartResponse(res) => { let res = res.context("Could not initiate login")?; match self.opaque_data.take() { OpaqueData::Login(l) => { opaque::client::login::finish_login(l, res.credential_response).map_err( |e| { // Common error, we want to print a full error to the console but only a // simple one to the user. ConsoleService::error(&format!( "Invalid username or password: {}", e )); anyhow!("Invalid username or password") }, )?; } _ => panic!("Unexpected data in opaque_data field"), }; self.handle_message(Msg::SubmitNewPassword) } Msg::SubmitNewPassword => { let mut rng = rand::rngs::OsRng; let new_password = self.form.model().password; let registration_start_request = opaque::client::registration::start_registration(&new_password, &mut rng) .context("Could not initiate password change")?; let req = registration::ClientRegistrationStartRequest { username: self.props.username.clone(), registration_start_request: registration_start_request.message, }; self.opaque_data = OpaqueData::Registration(registration_start_request.state); self.call_backend( HostService::register_start, req, Msg::RegistrationStartResponse, )?; Ok(true) } Msg::RegistrationStartResponse(res) => { let res = res.context("Could not initiate password change")?; match self.opaque_data.take() { OpaqueData::Registration(registration) => { let mut rng = rand::rngs::OsRng; let registration_finish = opaque::client::registration::finish_registration( registration, res.registration_response, &mut rng, ) .context("Error during password change")?; let req = registration::ClientRegistrationFinishRequest { server_data: res.server_data, registration_upload: registration_finish.message, }; self.call_backend( HostService::register_finish, req, Msg::RegistrationFinishResponse, ) } _ => panic!("Unexpected data in opaque_data field"), }?; Ok(false) } Msg::RegistrationFinishResponse(response) => { self.task = None; if response.is_ok() { self.route_dispatcher .send(RouteRequest::ChangeRoute(Route::from( AppRoute::UserDetails(self.props.username.clone()), ))); } response?; Ok(true) } } } } impl Component for ChangePasswordForm { type Message = Msg; type Properties = Props; fn create(props: Self::Properties, link: ComponentLink) -> Self { ChangePasswordForm { link, props, error: None, form: yew_form::Form::::new(FormModel::default()), opaque_data: OpaqueData::None, task: None, route_dispatcher: RouteAgentDispatcher::new(), } } fn update(&mut self, msg: Self::Message) -> ShouldRender { self.error = None; match self.handle_message(msg) { Err(e) => { ConsoleService::error(&e.to_string()); self.error = Some(e); self.task = None; true } Ok(b) => b, } } fn change(&mut self, _: Self::Properties) -> ShouldRender { false } fn view(&self) -> Html { let is_admin = self.props.is_admin; type Field = yew_form::Field; html! { <>

{if !is_admin { html! {

{"Current password*:"}

{&self.form.field_message("old_password")}

}} else { html! {} }}

{"New password*:"}

{&self.form.field_message("password")}

{"Confirm password*:"}

{&self.form.field_message("confirm_password")}

{ if let Some(e) = &self.error { html! {

{e.to_string() }

} } else { html! {} } }

{"Back"}

} } }