Ring Daemon
Loading...
Searching...
No Matches
server_account_manager.h
Go to the documentation of this file.
1/*
2 * Copyright (C) 2004-2026 Savoir-faire Linux Inc.
3 *
4 * This program is free software: you can redistribute it and/or modify
5 * it under the terms of the GNU General Public License as published by
6 * the Free Software Foundation, either version 3 of the License, or
7 * (at your option) any later version.
8 *
9 * This program is distributed in the hope that it will be useful,
10 * but WITHOUT ANY WARRANTY; without even the implied warranty of
11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 * GNU General Public License for more details.
13 *
14 * You should have received a copy of the GNU General Public License
15 * along with this program. If not, see <https://www.gnu.org/licenses/>.
16 */
17#pragma once
18
19#include "account_manager.h"
20
21#include <queue>
22#include <set>
23#include <chrono>
24
25namespace jami {
26
27class ServerAccountManager : public AccountManager
28{
29public:
30 ServerAccountManager(const std::string& accountId,
31 const std::filesystem::path& path,
32 const std::string& managerHostname,
33 const std::string& nameServer);
34
35 struct ServerAccountCredentials : AccountCredentials
36 {
37 std::string username;
38 std::shared_ptr<dht::crypto::Certificate> ca;
39 };
40
41 void initAuthentication(PrivateKey request,
42 std::string deviceName,
43 std::unique_ptr<AccountCredentials> credentials,
44 AuthSuccessCallback onSuccess,
45 AuthFailureCallback onFailure,
46 const OnChangeCallback& onChange) override;
47
48 bool changePassword(const std::string& /*password_old*/, const std::string& /*password_new*/) override
49 {
50 return false;
51 }
52
53 void syncDevices() override;
54
55 using SyncBlueprintCallback = std::function<void(const std::map<std::string, std::string>& config)>;
56
57 void syncBlueprintConfig(SyncBlueprintCallback onSuccess);
58
59 bool revokeDevice(const std::string& device,
60 std::string_view scheme,
61 const std::string& password,
62 RevokeDeviceCallback cb) override;
63
64 bool searchUser(const std::string& query, SearchCallback cb) override;
65 void registerName(const std::string& name,
66 std::string_view scheme,
67 const std::string& password,
68 RegistrationCallback cb) override;
69
70 void onNeedsMigration(std::function<void()> cb) { onNeedsMigration_ = std::move(cb); }
71
72private:
73 struct AuthContext
74 {
75 std::string accountId;
76 PrivateKey key;
77 CertRequest request;
78 std::string deviceName;
79 std::unique_ptr<ServerAccountCredentials> credentials;
80 AuthSuccessCallback onSuccess;
81 AuthFailureCallback onFailure;
82 };
83
84 const std::string managerHostname_;
85 std::shared_ptr<dht::Logger> logger_;
86
87 std::mutex requestLock_;
88 std::set<std::shared_ptr<dht::http::Request>> requests_;
89 std::unique_ptr<ServerAccountCredentials> creds_;
90
91 void sendRequest(const std::shared_ptr<dht::http::Request>& request);
92 void clearRequest(const std::weak_ptr<dht::http::Request>& request);
93
94 enum class TokenScope : unsigned { None = 0, Device, User, Admin };
95 std::mutex tokenLock_;
96 std::string token_ {};
97 TokenScope tokenScope_ {};
98 std::chrono::steady_clock::time_point tokenExpire_ {std::chrono::steady_clock::time_point::min()};
99
100 using RequestQueue = std::queue<std::shared_ptr<dht::http::Request>>;
101 RequestQueue pendingDeviceRequests_;
102 RequestQueue pendingAccountRequests_;
103 RequestQueue& getRequestQueue(TokenScope scope)
104 {
105 return scope == TokenScope::Device ? pendingDeviceRequests_ : pendingAccountRequests_;
106 }
107 bool hasAuthorization(TokenScope scope) const
108 {
109 return not token_.empty() and tokenScope_ >= scope and tokenExpire_ >= std::chrono::steady_clock::now();
110 }
111 void setAuthHeaderFields(dht::http::Request& request) const;
112
113 void sendDeviceRequest(const std::shared_ptr<dht::http::Request>& req);
114 void sendAccountRequest(const std::shared_ptr<dht::http::Request>& req, const std::string& password);
115
116 void authenticateDevice();
117 void authenticateAccount(const std::string& username, const std::string& password);
118 void authFailed(TokenScope scope, int code);
119 void authError(TokenScope scope);
120 void onAuthEnded(const Json::Value& json, const dht::http::Response& response, TokenScope scope);
121 std::function<void()> onNeedsMigration_;
122
123 void setToken(std::string token, TokenScope scope, std::chrono::steady_clock::time_point expiration);
124};
125
126} // namespace jami
account_manager.h
jami::AccountManager::RegistrationCallback
NameDirectory::RegistrationCallback RegistrationCallback
Definition account_manager.h:264
jami::AccountManager::PrivateKey
std::shared_future< std::shared_ptr< dht::crypto::PrivateKey > > PrivateKey
Definition account_manager.h:103
jami::AccountManager::RevokeDeviceCallback
std::function< void(RevokeDeviceResult)> RevokeDeviceCallback
Definition account_manager.h:160
jami::AccountManager::AuthFailureCallback
std::function< void(AuthError error, const std::string &message)> AuthFailureCallback
Definition account_manager.h:100
jami::AccountManager::SearchCallback
NameDirectory::SearchCallback SearchCallback
Definition account_manager.h:263
jami::AccountManager::CertRequest
std::future< std::unique_ptr< dht::crypto::CertificateRequest > > CertRequest
Definition account_manager.h:102
jami::AccountManager::AuthSuccessCallback
std::function< void(const AccountInfo &info, const std::map< std::string, std::string > &config, std::string &&receipt, std::vector< uint8_t > &&receipt_signature)> AuthSuccessCallback
Definition account_manager.h:98
jami::ServerAccountManager::initAuthentication
void initAuthentication(PrivateKey request, std::string deviceName, std::unique_ptr< AccountCredentials > credentials, AuthSuccessCallback onSuccess, AuthFailureCallback onFailure, const OnChangeCallback &onChange) override
Definition server_account_manager.cpp:66
jami::ServerAccountManager::SyncBlueprintCallback
std::function< void(const std::map< std::string, std::string > &config)> SyncBlueprintCallback
Definition server_account_manager.h:55
jami::ServerAccountManager::onNeedsMigration
void onNeedsMigration(std::function< void()> cb)
Definition server_account_manager.h:70
jami::ServerAccountManager::syncBlueprintConfig
void syncBlueprintConfig(SyncBlueprintCallback onSuccess)
Definition server_account_manager.cpp:582
jami::ServerAccountManager::revokeDevice
bool revokeDevice(const std::string &device, std::string_view scheme, const std::string &password, RevokeDeviceCallback cb) override
Definition server_account_manager.cpp:614
jami::ServerAccountManager::searchUser
bool searchUser(const std::string &query, SearchCallback cb) override
Definition server_account_manager.cpp:665
jami::ServerAccountManager::registerName
void registerName(const std::string &name, std::string_view scheme, const std::string &password, RegistrationCallback cb) override
Definition server_account_manager.cpp:656
jami::ServerAccountManager::changePassword
bool changePassword(const std::string &, const std::string &) override
Definition server_account_manager.h:48
jami::emitSignal
void emitSignal(Args... args)
Definition jami_signal.h:64
jami::ServerAccountManager::ServerAccountCredentials::ca
std::shared_ptr< dht::crypto::Certificate > ca
Definition server_account_manager.h:38