chore: login to phoenix code wiring in initial

Author: abose

docs/API-Reference/command/Commands.md

@@ -824,18 +824,6 @@ Sorts working set by file type
 ## CMD\_WORKING\_SORT\_TOGGLE\_AUTO
 Toggles automatic working set sorting
 
-**Kind**: global variable
-<a name="CMD_TOGGLE_SHOW_WORKING_SET"></a>
-
-## CMD\_TOGGLE\_SHOW\_WORKING\_SET
-Toggles working set visibility
-
-**Kind**: global variable
-<a name="CMD_TOGGLE_SHOW_FILE_TABS"></a>
-
-## CMD\_TOGGLE\_SHOW\_FILE\_TABS
-Toggles file tabs visibility
-
 **Kind**: global variable  
 <a name="CMD_TOGGLE_SHOW_WORKING_SET"></a>
 

src/brackets.js

@@ -139,6 +139,7 @@ define(function (require, exports, module) {
     require("widgets/InlineMenu");
     require("thirdparty/tinycolor");
     require("utils/LocalizationUtils");
+    require("services/login");
 
     // DEPRECATED: In future we want to remove the global CodeMirror, but for now we
     // expose our required CodeMirror globally so as to avoid breaking extensions in the

src/config.json

@@ -3,6 +3,7 @@
         "app_title": "Phoenix Code",
         "app_name_about": "Phoenix Code",
         "about_icon": "styles/images/phoenix-icon.svg",
+        "account_url": "https://account.phcode.io/",
         "how_to_use_url": "https://github.com/adobe/brackets/wiki/How-to-Use-Brackets",
         "docs_url": "https://docs.phcode.dev/",
         "support_url": "https://github.com/phcode-dev/phoenix/discussions",
@@ -59,4 +60,4 @@
             "url": "https://github.com/phcode-dev/phoenix/blob/master/LICENSE"
         }
     ]
-}
+}

src/extensionsIntegrated/Phoenix/main.js

@@ -18,7 +18,6 @@
  *
  */
 
-/*global Phoenix*/
 /*eslint no-console: 0*/
 /*eslint strict: ["error", "global"]*/
 /* jshint ignore:start */
@@ -32,26 +31,10 @@ define(function (require, exports, module) {
         Strings      = require("strings"),
         Dialogs      = require("widgets/Dialogs"),
         NotificationUI  = require("widgets/NotificationUI"),
-        DefaultDialogs = require("widgets/DefaultDialogs"),
-        ProfileMenu = require("./profile-menu");
+        DefaultDialogs = require("widgets/DefaultDialogs");
 
     const PERSIST_STORAGE_DIALOG_DELAY_SECS = 60000;
-    let $icon;
 
-    function _addToolbarIcon() {
-        const helpButtonID = "user-profile-button";
-        $icon = $("<a>")
-            .attr({
-                id: helpButtonID,
-                href: "#",
-                class: "user",
-                title: Strings.CMD_USER_PROFILE
-            })
-            .appendTo($("#main-toolbar .bottom-buttons"));
-        $icon.on('click', ()=>{
-            ProfileMenu.init();
-        });
-    }
     function _showUnSupportedBrowserDialogue() {
         if(Phoenix.browser.isMobile || Phoenix.browser.isTablet){
             Dialogs.showModalDialog(
@@ -109,7 +92,6 @@ define(function (require, exports, module) {
         if(Phoenix.isSpecRunnerWindow){
             return;
         }
-        _addToolbarIcon();
         serverSync.init();
         defaultProjects.init();
         newProject.init();

src/nls/root/strings.js

@@ -629,7 +629,7 @@ define({
     "CMD_AUTO_UPDATE": "Auto Update",
     "CMD_HOW_TO_USE_BRACKETS": "How to Use {APP_NAME}",
     "CMD_SUPPORT": "{APP_NAME} Support",
-    "CMD_USER_PROFILE": "User Profile",
+    "CMD_USER_PROFILE": "{APP_NAME} Account",
     "CMD_DOCS": "Help, Getting Started",
     "CMD_SUGGEST": "Suggest a Feature",
     "CMD_REPORT_ISSUE": "Report Issue",
@@ -1564,5 +1564,9 @@ define({
     "GIT_TOAST_MESSAGE": "Click the Git panel icon to manage your repository. Easily commit, push, pull, and view your project history—all in one place.<br><a href='https://docs.phcode.dev/docs/Features/git'>Learn more about the Git panel →</a>",
 
     // surveys
-    "SURVEY_TITLE_VOTE_FOR_FEATURES_YOU_WANT": "Vote for the features you want to see next!"
+    "SURVEY_TITLE_VOTE_FOR_FEATURES_YOU_WANT": "Vote for the features you want to see next!",
+
+    // login
+    "SIGNED_OUT": "You have been signed out.",
+    "SIGNED_OUT_MESSAGE": "You have been signed out of your {APP_NAME} account. Please sign in again to continue."
 });

src/phoenix/trust_ring.js

@@ -178,17 +178,18 @@ function _selectKeys() {
     return generateRandomKeyAndIV();
 }
 
-const PHCODE_API_KEY = "PHCODE_API_KEY";
+const CRED_KEY_API = "API_KEY";
 const { key, iv } = _selectKeys();
 // this key is set at boot time as a truct base for all the core components before any extensions are loaded.
 // just before extensions are loaded, this key is blanked. This can be used by core modules to talk with other
 // core modules securely without worrying about interception by extensions.
 // KernalModeTrust should only be available within all code that loads before the first default/any extension.
 window.KernalModeTrust = {
+    CRED_KEY_API,
     aesKeys: { key, iv },
-    setPhoenixAPIKey,
-    getPhoenixAPIKey,
-    removePhoenixAPIKey,
+    setCredential,
+    getCredential,
+    removeCredential,
     AESDecryptString,
     generateRandomKeyAndIV,
     dismantleKeyring
@@ -198,29 +199,38 @@ if(Phoenix.isSpecRunnerWindow){
 }
 // key is 64 hex characters, iv is 24 hex characters
 
-async function setPhoenixAPIKey(apiKey) {
+async function setCredential(credKey, secret) {
     if(!window.__TAURI__){
         throw new Error("Phoenix API key can only be set in tauri shell!");
     }
-    return window.__TAURI__.tauri.invoke("store_credential", {scopeName: PHCODE_API_KEY, secretVal: apiKey});
+    if(!credKey){
+        throw new Error("credKey is required to set credential!");
+    }
+    return window.__TAURI__.tauri.invoke("store_credential", {scopeName: credKey, secretVal: secret});
 }
 
-async function getPhoenixAPIKey() {
+async function getCredential(credKey) {
     if(!window.__TAURI__){
         throw new Error("Phoenix API key can only be get in tauri shell!");
     }
-    const encryptedKey = await window.__TAURI__.tauri.invoke("get_credential", {scopeName: PHCODE_API_KEY});
+    if(!credKey){
+        throw new Error("credKey is required to get credential!");
+    }
+    const encryptedKey = await window.__TAURI__.tauri.invoke("get_credential", {scopeName: credKey});
     if(!encryptedKey){
         return null;
     }
     return AESDecryptString(encryptedKey, key, iv);
 }
 
-async function removePhoenixAPIKey() {
+async function removeCredential(credKey) {
     if(!window.__TAURI__){
         throw new Error("Phoenix API key can only be set in tauri shell!");
     }
-    return window.__TAURI__.tauri.invoke("delete_credential", {scopeName: PHCODE_API_KEY});
+    if(!credKey){
+        throw new Error("credKey is required to remove credential!");
+    }
+    return window.__TAURI__.tauri.invoke("delete_credential", {scopeName: credKey});
 }
 
 let _dismatled = false;

…ntegrated/Phoenix/html/login-dialog.html src/services/html/login-popup.htmlsrc/extensionsIntegrated/Phoenix/html/login-dialog.html renamed to src/services/html/login-popup.html src/extensionsIntegrated/Phoenix/html/login-dialog.html renamed to src/services/html/login-popup.html

@@ -0,0 +1,149 @@
+/*
+ * GNU AGPL-3.0 License
+ *
+ * Copyright (c) 2021 - present core.ai . All rights reserved.
+ *
+ * This program is free software: you can redistribute it and/or modify it under
+ * the terms of the GNU Affero General Public License as published by the Free
+ * Software Foundation, either version 3 of the License, or (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY;
+ * without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
+ * See the GNU Affero General Public License for more details.
+ *
+ * You should have received a copy of the GNU Affero General Public License along
+ * with this program. If not, see https://opensource.org/licenses/AGPL-3.0.
+ *
+ */
+
+
+define(function (require, exports, module) {
+    const EventDispatcher = require("utils/EventDispatcher"),
+        PreferencesManager  = require("preferences/PreferencesManager"),
+        Dialogs = require("widgets/Dialogs"),
+        DefaultDialogs = require("widgets/DefaultDialogs"),
+        Strings = require("strings"),
+        ProfileMenu  = require("./profile-menu");
+
+    const KernalModeTrust = window.KernalModeTrust;
+    if(!KernalModeTrust){
+        // integrated extensions will have access to kernal mode, but not external extensions
+        throw new Error("Login service should have access to KernalModeTrust. Cannot boot without trust ring");
+    }
+    const secureExports = {};
+    KernalModeTrust.loginService = secureExports;
+    // user profile is something like "apiKey": "uuid...", validationCode: "dfdf", "firstName":"Aa","lastName":"bb",
+    // "email":"[email protected]", "customerID":"uuid...","loginTime":1750074393853,
+    // "profileIcon":{"color":"#14b8a6","initials":"AB"}
+    let userProfile = null;
+    let isLoggedInUser = false;
+
+    // just used as trigger to notify different windows about user profile changes
+    const PREF_USER_PROFILE_VERSION = "userProfileVersion";
+
+
+    function isLoggedIn() {
+        return isLoggedInUser;
+    }
+
+    const ERR_RETRY_LATER = "retry_later";
+    const ERR_INVALID = "invalid";
+
+    /**
+     * Resolves the provided API key and verification code to user profile data
+     *
+     * @param {string} apiKey - The API key to be validated.
+     * @param {string} validationCode - The verification code associated with the API key.
+     * @return {Promise<Object>} A promise resolving to an object containing the user details if successful,
+     * or an error object with the relevant error code (`ERR_RETRY_LATER` or `ERR_INVALID`) if the operation fails.
+     * never rejects.
+     */
+    async function _resolveAPIKey(apiKey, validationCode) {
+        const resolveURL = `${Phoenix.config.account_url}resolveAppSessionID?appSessionID=${apiKey}&validationCode=${validationCode}`;
+        if (!navigator.onLine) {
+            return {err: ERR_RETRY_LATER};
+        }
+        try {
+            const response = await fetch(resolveURL);
+            if (response.status === 400 || response.status === 404) {
+                // 404 api key not found and 400 Bad Request, eg: verification code mismatch
+                return {err: ERR_INVALID};
+            } else if (response.ok) {
+                const userDetails = await response.json();
+                userDetails.apiKey = apiKey;
+                userDetails.validationCode = validationCode;
+                return {userDetails};
+            }
+            // Other errors like 500 are retriable
+            console.log('Other error:', response.status);
+            return {err: ERR_RETRY_LATER};
+        } catch (e) {
+            console.error(e, "Failed to call resolve API endpoint", resolveURL);
+            return {err: ERR_RETRY_LATER};
+        }
+    }
+
+    async function _verifyLogin() {
+        const savedUserProfile = await KernalModeTrust.getCredential(KernalModeTrust.CRED_KEY_API);
+        if(!savedUserProfile){
+            console.log("No savedUserProfile found. Not logged in");
+            ProfileMenu.setNotLoggedIn();
+            return;
+        }
+        try {
+            userProfile = JSON.parse(savedUserProfile);
+        } catch (e) {
+            console.error(e, "Failed to parse saved user profile credentials");// this should never happen
+            ProfileMenu.setNotLoggedIn();
+            return; // not logged in if parse fails
+        }
+        isLoggedInUser = true;
+        // api key is present, verify if the key is valid. but just show user that we are logged in with
+        // stored credentials.
+        ProfileMenu.setLoggedIn(userProfile.profileIcon.initials, userProfile.profileIcon.color);
+        const resolveResponse = await _resolveAPIKey(userProfile.apiKey, userProfile.validationCode);
+        if(resolveResponse.userDetails) {
+            // a valid user account is in place. update the stored credentials
+            userProfile = resolveResponse.userDetails;
+            ProfileMenu.setLoggedIn(userProfile.profileIcon.initials, userProfile.profileIcon.color);
+            await KernalModeTrust.setCredential(KernalModeTrust.CRED_KEY_API, JSON.stringify(userProfile));
+            return;
+        }
+        // some error happened.
+        if(resolveResponse.err === ERR_INVALID) { // the api key is invalid, we need to logout and tell user
+            ProfileMenu.setNotLoggedIn();
+            Dialogs.showModalDialog(
+                DefaultDialogs.DIALOG_ID_ERROR,
+                Strings.SIGNED_OUT,
+                Strings.SIGNED_OUT_MESSAGE
+            );
+            await KernalModeTrust.removeCredential(KernalModeTrust.CRED_KEY_API);
+        }
+        // maybe some intermittent network error, ERR_RETRY_LATER is here. do nothing
+    }
+
+    function init() {
+        ProfileMenu.init();
+        if(!Phoenix.isNativeApp){
+            console.warn("Login service is not supported in browser");
+            return;
+        }
+        _verifyLogin().catch(console.error);// todo raise metrics
+        const pref = PreferencesManager.stateManager.definePreference(PREF_USER_PROFILE_VERSION, 'string', '0')
+            .watchExternalChanges();
+
+    }
+
+    init();
+
+    // no sensitive apis or events should be triggered from the public exports of this module as extensions
+    // can read them. Always use KernalModeTrust.loginService for sensitive apis.
+    EventDispatcher.makeEventDispatcher(exports);
+    EventDispatcher.makeEventDispatcher(secureExports);
+
+    // kernal exports
+    secureExports.isLoggedIn = isLoggedIn;
+    // public exports
+    exports.isLoggedIn = isLoggedIn;
+
+});