Initial implementation of handling CredentialProviderService:OnBeginCreateCredentialRequest

Author: mohammaduvez

.gitignore

@@ -178,3 +178,4 @@ src/java/Keepass2AndroidPluginSDK2/build/generated/mockable-Google-Inc.-Google-A
 /src/MegaTest
 *.dtbcache.json
 /src/keepass2android-app/AndroidManifest.xml
+*.DS_Store

.vscode/launch.json

@@ -0,0 +1,14 @@
+{
+    // Use IntelliSense to learn about possible attributes.
+    // Hover to view descriptions of existing attributes.
+    // For more information, visit: https://go.microsoft.com/fwlink/?linkid=830387
+    "version": "0.2.0",
+    "configurations": [
+        {
+            "name": "C#: keepass2android-app Debug",
+            "type": "dotnet",
+            "request": "launch",
+            "projectPath": "${workspaceFolder}/src/keepass2android-app/keepass2android-app.csproj"
+        }
+    ]
+}

src/Kp2aBusinessLogic/database/edit/CreateDB.cs

@@ -28,6 +28,7 @@ namespace keepass2android
 
   public class CreateDb : OperationWithFinishHandler
   {
+    public const string DefaultDbName = "Keepass2Android Password Database";
     private readonly IOConnectionInfo _ioc;
     private readonly bool _dontSave;
     private readonly IKp2aApp _app;
@@ -68,7 +69,7 @@ public override void Run()
       db.KpDatabase.New(_ioc, _key, _app.GetFileStorage(_ioc).GetFilenameWithoutPathAndExt(_ioc));
 
       db.KpDatabase.KdfParameters = (new AesKdf()).GetDefaultParameters();
-      db.KpDatabase.Name = "Keepass2Android Password Database";
+      db.KpDatabase.Name = DefaultDbName;
       //re-set the name of the root group because the PwDatabase uses UrlUtil which is not appropriate for all file storages:
       db.KpDatabase.RootGroup.Name = _app.GetFileStorage(_ioc).GetFilenameWithoutPathAndExt(_ioc);
 

src/keepass2android-app/Resources/values/strings.xml

@@ -1350,5 +1350,8 @@
 
   <string name="pref_periodic_background_sync_interval_title">Periodic background synchronization time interval</string>
   <string name="pref_periodic_background_sync_interval_summary">Set the interval for background synchronization in minutes.</string>
+
+  <string name="credential_provider_service_subtitle">Password credential provider</string>
+  <string name="credential_provider_password_creation_description">Save Password in new entry</string>
 
 </resources>

src/keepass2android-app/Resources/xml/credentials_provider.xml

@@ -0,0 +1,30 @@
+<?xml version="1.0" encoding="utf-8"?>
+<!--
+ 
+     
+ This file is part of Keepass2Android, Copyright 2013 Philipp Crocoll. This file is based on
+Keepassdroid, Copyright Brian Pellin.
+
+  Keepass2Android is free software: you can redistribute it and/or modify
+  it under the terms of the GNU General Public License as published by
+  the Free Software Foundation, either version 2 of the License, or
+  (at your option) any later version.
+
+  Keepass2Android is distributed in the hope that it will be useful,
+  but WITHOUT ANY WARRANTY; without even the implied warranty of
+  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+  GNU General Public License for more details.
+
+  You should have received a copy of the GNU General Public License
+  along with Keepass2Android.  If not, see <http://www.gnu.org/licenses/>.
+-->
+<!--TODO
+set android:settingsActivity to AppSettingsActivity-->
+<credential-provider xmlns:android="http://schemas.android.com/apk/res/android"
+    xmlns:tools="http://schemas.android.com/tools"
+    android:settingsSubtitle="@string/credential_provider_service_subtitle"
+    tools:targetApi="34">
+    <capabilities>
+        <capability name="android.credentials.TYPE_PASSWORD_CREDENTIAL" />
+    </capabilities>
+</credential-provider>

src/keepass2android-app/keepass2android-app.csproj

@@ -745,6 +745,7 @@
     <PackageReference Include="Xamarin.AndroidX.AutoFill" Version="1.1.0.30" />
     <PackageReference Include="Xamarin.AndroidX.Biometric" Version="1.1.0.27" />
     <PackageReference Include="Xamarin.AndroidX.CoordinatorLayout" Version="1.3.0" />
+    <PackageReference Include="Xamarin.AndroidX.Credentials" Version="1.5.0" />
     <PackageReference Include="Xamarin.AndroidX.CursorAdapter" Version="1.0.0.31" />
     <PackageReference Include="Xamarin.AndroidX.Lifecycle.Common" Version="2.8.7.2" />
     <PackageReference Include="Xamarin.AndroidX.Lifecycle.Runtime" Version="2.8.7.2" />

src/keepass2android-app/services/Kp2aCredentialProvider/Kp2aCredentialLauncherActivity.cs

@@ -0,0 +1,140 @@
+using Android.Content;
+using Android.Content.PM;
+using Android.Runtime;
+using Android.Views;
+using AndroidX.Credentials;
+using AndroidX.Credentials.Exceptions;
+using AndroidX.Credentials.Provider;
+using Keepass2android.Pluginsdk;
+using KeePassLib;
+using Org.Json;
+
+namespace keepass2android.services.Kp2aCredentialProvider
+{
+  [Activity(Label = AppNames.AppName,
+    ConfigurationChanges = ConfigChanges.Orientation | ConfigChanges.KeyboardHidden,
+    Theme = "@style/Kp2aTheme_ActionBar",
+    WindowSoftInputMode = SoftInput.AdjustResize,
+    Permission = "keepass2android." + AppNames.PackagePart + ".permission.Kp2aChooseAutofill")]
+  public class Kp2aCredentialLauncherActivity : AndroidX.AppCompat.App.AppCompatActivity
+  {
+    public const string CredentialRequestTypeKey = "credential_request_type";
+    public const int CredentialRequestTypeCreatePassword = 1;
+    private const int CreateEntryRequestCode = 100;
+
+    protected override void OnCreate(Bundle? savedInstanceState)
+    {
+      base.OnCreate(savedInstanceState);
+
+      var intent = Intent;
+      if (intent == null)
+      {
+        // should never happen
+        SetResult(Result.Canceled);
+        Finish();
+      }
+      else
+      {
+        var requestType = intent.GetIntExtra(CredentialRequestTypeKey, 0);
+        switch (requestType)
+        {
+          case CredentialRequestTypeCreatePassword:
+            HandleCreatePasswordRequest(intent);
+            break;
+
+          default:
+            // should never happen
+            SetResult(Result.Canceled);
+            Finish();
+            break;
+        }
+      }
+    }
+
+    private void HandleCreatePasswordRequest(Intent intent)
+    {
+      var createRequest = PendingIntentHandler.RetrieveProviderCreateCredentialRequest(intent);
+      if (createRequest != null && createRequest?.CallingRequest is CreatePasswordRequest)
+      {
+        if (createRequest.CallingRequest is not CreatePasswordRequest request)
+        {
+          SetUpFailureResponseForCreateAndFinish("Unable to extract request from intent");
+        }
+        else
+        {
+          var callingPackage = createRequest.CallingAppInfo.PackageName;
+
+          var forwardIntent = new Intent(this, typeof(SelectCurrentDbActivity));
+
+          Dictionary<string, string> outputFields = [];
+          if (callingPackage != null)
+          {
+            outputFields.TryAdd(PwDefs.UrlField, $"{KeePass.AndroidAppScheme}{callingPackage}");
+          }
+
+          outputFields.TryAdd(PwDefs.UserNameField, request.Id);
+          outputFields.TryAdd(PwDefs.PasswordField, request.Password);
+
+          JSONObject jsonOutput = new(outputFields);
+          var jsonOutputStr = jsonOutput.ToString();
+          forwardIntent.PutExtra(Strings.ExtraEntryOutputData, jsonOutputStr);
+
+          JSONArray jsonProtectedFields = new(
+              (System.Collections.ICollection)Array.Empty<string>());
+          forwardIntent.PutExtra(Strings.ExtraProtectedFieldsList, jsonProtectedFields.ToString());
+
+          forwardIntent.PutExtra(AppTask.AppTaskKey, "CreateEntryThenCloseTask");
+          forwardIntent.PutExtra(CreateEntryThenCloseTask.ShowUserNotificationsKey, "false");
+          StartActivityForResult(forwardIntent, CreateEntryRequestCode);
+        }
+      }
+      else
+      {
+        SetUpFailureResponseForCreateAndFinish("Unable to extract request from intent");
+      }
+    }
+    protected override void OnActivityResult(int requestCode, [GeneratedEnum] Result resultCode, Intent? data)
+    {
+      base.OnActivityResult(requestCode, resultCode, data);
+      if (requestCode == CreateEntryRequestCode)
+      {
+        var result = new Intent();
+        if (resultCode == KeePass.ExitCloseAfterTaskComplete)
+        {
+          PendingIntentHandler.SetCreateCredentialResponse(
+            result,
+            new CreatePasswordResponse()
+          );
+          SetResult(Result.Ok, result);
+        }
+        else
+        {
+          PendingIntentHandler.SetCreateCredentialException(
+              result,
+              new CreateCredentialCancellationException()
+          );
+          SetResult(Result.Canceled, result);
+        }
+        if (!IsFinishing)
+        {
+          Finish();
+        }
+      }
+    }
+
+    /// <summary>
+    /// If the request is null, send an unknown exception to client and finish the flow.
+    /// </summary>
+    /// <param name="message">The error message to send to the client.</param>
+    private void SetUpFailureResponseForCreateAndFinish(string message)
+    {
+      var result = new Intent();
+      PendingIntentHandler.SetCreateCredentialException(
+          result,
+          new CreateCredentialUnknownException(message)
+      );
+      SetResult(Result.Ok, result);
+      Finish();
+    }
+  }
+}

src/keepass2android-app/services/Kp2aCredentialProvider/Kp2aCredentialProviderService.cs

@@ -0,0 +1,92 @@
+// This file is part of Keepass2Android, Copyright 2025 Philipp Crocoll.
+//
+//   Keepass2Android is free software: you can redistribute it and/or modify
+//   it under the terms of the GNU General Public License as published by
+//   the Free Software Foundation, either version 3 of the License, or
+//   (at your option) any later version.
+//
+//   Keepass2Android is distributed in the hope that it will be useful,
+//   but WITHOUT ANY WARRANTY; without even the implied warranty of
+//   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+//   GNU General Public License for more details.
+//
+//   You should have received a copy of the GNU General Public License
+//   along with Keepass2Android.  If not, see <http://www.gnu.org/licenses/>.
+
+using System.Runtime.Versioning;
+using Android.Content;
+using Android.Graphics;
+using Android.Graphics.Drawables;
+using Android.OS;
+using AndroidX.Credentials.Exceptions;
+using AndroidX.Credentials.Provider;
+using Java.Interop;
+using Java.Util.Concurrent.Atomic;
+
+namespace keepass2android.services.Kp2aCredentialProvider
+{
+  [Service(Enabled = true, Exported = true, Permission = "android.permission.BIND_CREDENTIAL_PROVIDER_SERVICE")]
+  [IntentFilter(actions: ["android.service.credentials.CredentialProviderService"])]
+  [MetaData(name: "android.credentials.provider", Resource = "@xml/credentials_provider")]
+  [SupportedOSPlatform("android31.0")]
+  public class Kp2aCredentialProviderService : CredentialProviderService
+  {
+    private readonly AtomicInteger requestCode = new();
+    public override void OnBeginCreateCredentialRequest(BeginCreateCredentialRequest request, CancellationSignal cancellationSignal, IOutcomeReceiver callback)
+    {
+      Kp2aLog.Log("Kp2aCredentialProviderService:onBeginCreateCredentialRequest called");
+      if (request is BeginCreatePasswordCredentialRequest)
+      {
+        var currentDb = App.Kp2a.CurrentDb;
+        var accountName = currentDb?.KpDatabase?.Name ?? CreateDb.DefaultDbName;
+        var blendMode = BlendMode.Dst;
+        var icon = blendMode == null
+        ? null
+        : Icon.CreateWithResource(this, AppNames.LauncherIcon)?.SetTintBlendMode(blendMode);
+
+        callback.OnResult(
+              new BeginCreateCredentialResponse.Builder()
+            .AddCreateEntry(
+           new CreateEntry
+            .Builder(
+               accountName,
+                PendingIntent.GetActivity(
+                  ApplicationContext,
+                  requestCode.IncrementAndGet(),
+                  new Intent(this, typeof(Kp2aCredentialLauncherActivity))
+                   .PutExtra(
+                    Kp2aCredentialLauncherActivity.CredentialRequestTypeKey,
+                    Kp2aCredentialLauncherActivity.CredentialRequestTypeCreatePassword
+                  ),
+                  PendingIntentFlags.Mutable | PendingIntentFlags.UpdateCurrent
+                )!
+            )
+            .SetIcon(icon)
+            .SetDescription(
+                GetString(Resource.String.credential_provider_password_creation_description)
+            )
+            // Set the last used time to "now"
+            // so the active account is the default option in the system prompt.
+            .SetLastUsedTime(currentDb == null ? null : Java.Time.Instant.Now())
+            .Build()
+            ).Build()
+        );
+      }
+      else
+      {
+        callback.OnError(new CreateCredentialUnsupportedException()
+           .JavaCast<Java.Lang.Object>());
+      }
+    }
+
+    public override void OnBeginGetCredentialRequest(BeginGetCredentialRequest request, CancellationSignal cancellationSignal, IOutcomeReceiver callback)
+    {
+      //TODO implement Kp2aCredentialProviderService:OnBeginGetCredentialRequest
+    }
+
+    public override void OnClearCredentialStateRequest(ProviderClearCredentialStateRequest request, CancellationSignal cancellationSignal, IOutcomeReceiver callback)
+    {
+      //TODO implement Kp2aCredentialProviderService:OnClearCredentialStateRequest
+    }
+  }
+}