Windows Separation Remastered: Authentication Window Controller (#607)

Author: lolgear

GitUp/Application/AppDelegate.h

@@ -13,9 +13,9 @@
 //  You should have received a copy of the GNU General Public License
 //  along with this program.  If not, see <http://www.gnu.org/licenses/>.
 
-#import <GitUpKit/GitUpKit.h>
+#import <AppKit/AppKit.h>
 
-@interface AppDelegate : NSObject <NSApplicationDelegate, GCRepositoryDelegate>
+@interface AppDelegate : NSObject <NSApplicationDelegate>
 @property(nonatomic, strong) IBOutlet NSWindow* preferencesWindow;
 @property(nonatomic, weak) IBOutlet NSToolbar* preferencesToolbar;
 @property(nonatomic, weak) IBOutlet NSTabView* preferencesTabView;
@@ -26,18 +26,7 @@
 @property(nonatomic, weak) IBOutlet NSTextField* cloneURLTextField;
 @property(nonatomic, weak) IBOutlet NSButton* cloneRecursiveButton;
 
-@property(nonatomic, strong) IBOutlet NSWindow* authenticationWindow;
-@property(nonatomic, weak) IBOutlet NSTextField* authenticationURLTextField;
-@property(nonatomic, weak) IBOutlet NSTextField* authenticationNameTextField;
-@property(nonatomic, weak) IBOutlet NSSecureTextField* authenticationPasswordTextField;
-
 + (instancetype)sharedDelegate;
-+ (BOOL)loadPlainTextAuthenticationFormKeychainForURL:(NSURL*)url user:(NSString*)user username:(NSString**)username password:(NSString**)password allowInteraction:(BOOL)allowInteraction;
-+ (void)savePlainTextAuthenticationToKeychainForURL:(NSURL*)url withUsername:(NSString*)username password:(NSString*)password;
-
-- (void)repository:(GCRepository*)repository willStartTransferWithURL:(NSURL*)url;
-- (BOOL)repository:(GCRepository*)repository requiresPlainTextAuthenticationForURL:(NSURL*)url user:(NSString*)user username:(NSString**)username password:(NSString**)password;
-- (void)repository:(GCRepository*)repository didFinishTransferWithURL:(NSURL*)url success:(BOOL)success;
 
 - (void)handleDocumentCountChanged;
 @end

GitUp/Application/AppDelegate.m

@@ -13,13 +13,13 @@
 //  You should have received a copy of the GNU General Public License
 //  along with this program.  If not, see <http://www.gnu.org/licenses/>.
 
-#import <Security/Security.h>
 #pragma clang diagnostic push
 #pragma clang diagnostic ignored "-Wobjc-interface-ivars"
 #import <HockeySDK/HockeySDK.h>
 #pragma clang diagnostic pop
 #import <Sparkle/Sparkle.h>
 
+#import <GitUpKit/GitUpKit.h>
 #import <GitUpKit/XLFacilityMacros.h>
 
 #import "AppDelegate.h"
@@ -52,11 +52,6 @@ @implementation AppDelegate {
   BOOL _updatePending;
   BOOL _manualCheck;
 
-  BOOL _authenticationUseKeychain;
-  NSURL* _authenticationURL;
-  NSString* _authenticationUsername;
-  NSString* _authenticationPassword;
-
   CFMessagePortRef _messagePort;
 }
 
@@ -103,89 +98,6 @@ + (instancetype)sharedDelegate {
   return (AppDelegate*)[NSApp delegate];
 }
 
-// WARNING: We are using the same attributes for the keychain items than Git CLT appears to be using as of version 1.9.3
-+ (BOOL)loadPlainTextAuthenticationFormKeychainForURL:(NSURL*)url user:(NSString*)user username:(NSString**)username password:(NSString**)password allowInteraction:(BOOL)allowInteraction {
-  const char* serverName = url.host.UTF8String;
-  if (serverName && serverName[0]) {  // TODO: How can this be NULL?
-    const char* accountName = (*username).UTF8String;
-    SecKeychainItemRef itemRef;
-    UInt32 passwordLength;
-    void* passwordData;
-    SecKeychainSetUserInteractionAllowed(allowInteraction);  // Ignore errors
-    OSStatus status = SecKeychainFindInternetPassword(NULL,
-                                                      (UInt32)strlen(serverName), serverName,
-                                                      0, NULL,  // Any security domain
-                                                      accountName ? (UInt32)strlen(accountName) : 0, accountName,
-                                                      0, NULL,  // Any path
-                                                      0,  // Any port
-                                                      kSecProtocolTypeAny,
-                                                      kSecAuthenticationTypeAny,
-                                                      &passwordLength, &passwordData, &itemRef);
-    if (status == noErr) {
-      BOOL success = NO;
-      *password = [[NSString alloc] initWithBytes:passwordData length:passwordLength encoding:NSUTF8StringEncoding];
-      if (accountName == NULL) {
-        UInt32 tag = kSecAccountItemAttr;
-        UInt32 format = CSSM_DB_ATTRIBUTE_FORMAT_STRING;
-        SecKeychainAttributeInfo info = {1, &tag, &format};
-        SecKeychainAttributeList* attributes;
-        status = SecKeychainItemCopyAttributesAndData(itemRef, &info, NULL, &attributes, NULL, NULL);
-        if (status == noErr) {
-          XLOG_DEBUG_CHECK(attributes->count == 1);
-          XLOG_DEBUG_CHECK(attributes->attr[0].tag == kSecAccountItemAttr);
-          *username = [[NSString alloc] initWithBytes:attributes->attr[0].data length:attributes->attr[0].length encoding:NSUTF8StringEncoding];
-          success = YES;
-          SecKeychainItemFreeAttributesAndData(attributes, NULL);
-        } else {
-          XLOG_ERROR(@"SecKeychainItemCopyAttributesAndData() returned error %i", status);
-        }
-      } else {
-        success = YES;
-      }
-      SecKeychainItemFreeContent(NULL, passwordData);
-      CFRelease(itemRef);
-      if (success) {
-        return YES;
-      }
-    } else if (status != errSecItemNotFound) {
-      XLOG_ERROR(@"SecKeychainFindInternetPassword() returned error %i", status);
-    }
-  } else {
-    XLOG_WARNING(@"Unable to extract hostname from remote URL: %@", url);
-  }
-  return NO;
-}
-
-+ (void)savePlainTextAuthenticationToKeychainForURL:(NSURL*)url withUsername:(NSString*)username password:(NSString*)password {
-  SecProtocolType type;
-  if ([url.scheme isEqualToString:@"http"]) {
-    type = kSecProtocolTypeHTTP;
-  } else if ([url.scheme isEqualToString:@"https"]) {
-    type = kSecProtocolTypeHTTPS;
-  } else {
-    XLOG_DEBUG_UNREACHABLE();
-    return;
-  }
-  const char* serverName = url.host.UTF8String;
-  const char* accountName = username.UTF8String;
-  const char* accountPassword = password.UTF8String;
-  SecKeychainSetUserInteractionAllowed(true);  // Ignore errors
-  OSStatus status = SecKeychainAddInternetPassword(NULL,
-                                                   (UInt32)strlen(serverName), serverName,
-                                                   0, NULL,  // Any security domain
-                                                   accountName ? (UInt32)strlen(accountName) : 0, accountName,
-                                                   0, NULL,  // Any path
-                                                   0,  // Any port
-                                                   type,
-                                                   kSecAuthenticationTypeAny,
-                                                   (UInt32)strlen(accountPassword), accountPassword, NULL);
-  if (status != noErr) {
-    XLOG_ERROR(@"SecKeychainAddInternetPassword() returned error %i", status);
-  } else {
-    XLOG_VERBOSE(@"Successfully saved authentication in Keychain");
-  }
-}
-
 - (void)_setDocumentWindowModeID:(NSArray*)arguments {
   [(Document*)arguments[0] setWindowModeID:[arguments[1] unsignedIntegerValue]];
 }
@@ -704,49 +616,6 @@ - (void)userNotificationCenter:(NSUserNotificationCenter*)center didActivateNoti
   }
 }
 
-#pragma mark - GCRepositoryDelegate
-
-- (void)repository:(GCRepository*)repository willStartTransferWithURL:(NSURL*)url {
-  _authenticationUseKeychain = YES;
-  _authenticationURL = nil;
-  _authenticationUsername = nil;
-  _authenticationPassword = nil;
-}
-
-- (BOOL)repository:(GCRepository*)repository requiresPlainTextAuthenticationForURL:(NSURL*)url user:(NSString*)user username:(NSString**)username password:(NSString**)password {
-  if (_authenticationUseKeychain) {
-    _authenticationUseKeychain = NO;
-    if ([self.class loadPlainTextAuthenticationFormKeychainForURL:url user:user username:username password:password allowInteraction:YES]) {
-      return YES;
-    }
-  } else {
-    XLOG_VERBOSE(@"Skipping Keychain lookup for repeated authentication failures");
-  }
-
-  _authenticationURLTextField.stringValue = url.absoluteString;
-  _authenticationNameTextField.stringValue = *username ? *username : @"";
-  _authenticationPasswordTextField.stringValue = @"";
-  [_authenticationWindow makeFirstResponder:(*username ? _authenticationPasswordTextField : _authenticationNameTextField)];
-  if ([NSApp runModalForWindow:_authenticationWindow] && _authenticationNameTextField.stringValue.length && _authenticationPasswordTextField.stringValue.length) {
-    _authenticationURL = url;
-    _authenticationUsername = [_authenticationNameTextField.stringValue copy];
-    _authenticationPassword = [_authenticationPasswordTextField.stringValue copy];
-    *username = _authenticationNameTextField.stringValue;
-    *password = _authenticationPasswordTextField.stringValue;
-    return YES;
-  }
-  return NO;
-}
-
-- (void)repository:(GCRepository*)repository didFinishTransferWithURL:(NSURL*)url success:(BOOL)success {
-  if (success && _authenticationURL && _authenticationUsername && _authenticationPassword) {
-    [self.class savePlainTextAuthenticationToKeychainForURL:_authenticationURL withUsername:_authenticationUsername password:_authenticationPassword];
-  }
-  _authenticationURL = nil;
-  _authenticationUsername = nil;
-  _authenticationPassword = nil;
-}
-
 #pragma mark - SUUpdaterDelegate
 
 - (NSString*)feedURLStringForUpdater:(SUUpdater*)updater {

GitUp/Application/AuthenticationWindowController.h

@@ -0,0 +1,23 @@
+//
+//  AuthenticationWindowController.h
+//  Application
+//
+//  Created by Dmitry Lobanov on 08.10.2019.
+//
+
+#import <AppKit/AppKit.h>
+
+
+NS_ASSUME_NONNULL_BEGIN
+
+@class GCRepository;
+
+@interface AuthenticationWindowController : NSWindowController
+
+// Repository
+- (void)repository:(GCRepository*)repository willStartTransferWithURL:(NSURL*)url;
+- (BOOL)repository:(GCRepository*)repository requiresPlainTextAuthenticationForURL:(NSURL*)url user:(NSString*)user username:(NSString * _Nullable * _Nonnull )username password:(NSString * _Nullable * _Nonnull)password;
+- (void)repository:(GCRepository*)repository didFinishTransferWithURL:(NSURL*)url success:(BOOL)success;
+@end
+
+NS_ASSUME_NONNULL_END

GitUp/Application/AuthenticationWindowController.m

@@ -0,0 +1,150 @@
+//
+//  AuthenticationWindowController.m
+//  Application
+//
+//  Created by Dmitry Lobanov on 08.10.2019.
+//
+
+#import "AuthenticationWindowController.h"
+#import <GitUpKit/GitUpKit.h>
+#import <GitUpKit/XLFacilityMacros.h>
+#import "KeychainAccessor.h"
+
+@interface AuthenticationWindowControllerModel : NSObject
+@property (nonatomic, assign) BOOL useKeychain;
+@property (nonatomic, copy) NSURL *url;
+@property (nonatomic, copy) NSString *name;
+@property (nonatomic, copy) NSString *password;
+
+@property (nonatomic, assign, readonly) BOOL isValid;
+@end
+
+@implementation AuthenticationWindowControllerModel
+- (BOOL)isValid {
+  return self.url && self.name && self.password;
+}
+- (void)unsetUseKeychain {
+  self.useKeychain = NO;
+}
+- (void)willStartTransfer {
+  self.useKeychain = YES;
+  self.url = nil;
+  self.name = nil;
+  self.password = nil;
+}
+- (void)didFinishTransferWithURL:(NSURL *)url success:(BOOL)success onResult:(void(^)(AuthenticationWindowControllerModel *model))onResult {
+  if (onResult) {
+    BOOL shouldPassModel = success && self.isValid;
+    onResult( shouldPassModel ? self : nil );
+  }
+  self.url = nil;
+  self.name = nil;
+  self.password = nil;
+}
+@end
+
+@interface AuthenticationWindowController ()
+
+// Model
+@property (nonatomic, strong) AuthenticationWindowControllerModel *model;
+
+// Outlets
+@property(nonatomic, weak) IBOutlet NSTextField* urlTextField;
+@property(nonatomic, weak) IBOutlet NSTextField* nameTextField;
+@property(nonatomic, weak) IBOutlet NSSecureTextField* passwordTextField;
+
+// Credentials
+@property (nonatomic, assign, readonly) BOOL credentialsExists;
+
+@end
+
+@implementation AuthenticationWindowController
+#pragma mark - Initialization
+- (instancetype)init {
+  if ((self = [super initWithWindowNibName:@"AuthenticationWindowController"])) {
+    self.model = [[AuthenticationWindowControllerModel alloc] init];
+  }
+  return self;
+}
+
+#pragma mark - Window Lifecycle
+- (void)beforeRunInModal {
+  self.urlTextField.stringValue = self.model.url.absoluteString;
+  self.nameTextField.stringValue = self.model.name;
+  self.passwordTextField.stringValue = self.model.password;
+  [self makeFirstResponderWhenUsernameExists:self.model.name.length > 0];
+}
+- (void)windowDidLoad {
+  [super windowDidLoad];
+  [self beforeRunInModal];
+}
+
+#pragma mark - Actions
+- (IBAction)dismissModal:(id)sender {
+  [NSApp stopModalWithCode:[(NSButton *)sender tag]];
+  [self close];
+}
+
+#pragma mark - FirstResponder
+- (NSResponder *)firstResponderWhenUsernameExists:(BOOL)usernameExists {
+  return usernameExists ? self.passwordTextField : self.nameTextField;
+}
+
+- (void)makeFirstResponderWhenUsernameExists:(BOOL)usernameExists {
+  [self.window makeFirstResponder:[self firstResponderWhenUsernameExists:usernameExists]];
+}
+
+#pragma mark - Credentials
+- (BOOL)credentialsExists {
+  return self.nameTextField.stringValue.length && self.passwordTextField.stringValue.length;
+}
+
+#pragma mark - Repository
+- (void)repository:(GCRepository*)repository willStartTransferWithURL:(NSURL*)url {
+  [self.model willStartTransfer];
+}
+
+- (BOOL)repository:(GCRepository*)repository requiresPlainTextAuthenticationForURL:(NSURL*)url user:(NSString*)user username:(NSString**)username password:(NSString**)password {
+  if (self.model.useKeychain) {
+    [self.model unsetUseKeychain];
+    if ([KeychainAccessor loadPlainTextAuthenticationFormKeychainForURL:url user:user username:username password:password allowInteraction:YES]) {
+      return YES;
+    }
+  } else {
+    XLOG_VERBOSE(@"Skipping Keychain lookup for repeated authentication failures");
+  }
+
+  // TODO: Add data to model and when window is appearing, we should set data from model.
+  // We need two callbacks ( willPresentModal and didPresentModal ).
+  self.model.url = url;
+  
+  self.model.name = *username ? *username : @"";
+  self.model.password = @"";
+  
+  if (self.windowLoaded) {
+    [self beforeRunInModal];
+  }
+  else {
+    // look at -windowDidLoad when window first time loaded.
+  }
+  
+  if ([NSApp runModalForWindow:self.window] && self.credentialsExists) {
+    self.model.name = self.nameTextField.stringValue;
+    self.model.password = self.passwordTextField.stringValue;
+    *username = self.model.name;
+    *password = self.model.password;
+    return YES;
+  }
+  
+  return NO;
+}
+
+- (void)repository:(GCRepository*)repository didFinishTransferWithURL:(NSURL*)url success:(BOOL)success {
+  [self.model didFinishTransferWithURL:url success:success onResult:^(AuthenticationWindowControllerModel *model) {
+    if (model) {
+      [KeychainAccessor savePlainTextAuthenticationToKeychainForURL:url username:model.name password:model.password];
+    }
+  }];
+}
+
+@end