VLCKeychainCoordinator.m 6.2 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174
  1. /*****************************************************************************
  2. * VLCKeychainCoordinator.m
  3. * VLC for iOS
  4. *****************************************************************************
  5. * Copyright (c) 2015 VideoLAN. All rights reserved.
  6. * $Id$
  7. *
  8. * Authors: Felix Paul Kühne <fkuehne # videolan.org>
  9. *
  10. * Refer to the COPYING file of the official project for license.
  11. *****************************************************************************/
  12. #import "VLCKeychainCoordinator.h"
  13. #import "PAPasscodeViewController.h"
  14. #import <XKKeychain/XKKeychainGenericPasswordItem.h>
  15. #import <LocalAuthentication/LocalAuthentication.h>
  16. NSString *const VLCPasscode = @"org.videolan.vlc-ios.passcode";
  17. @interface VLCKeychainCoordinator () <PAPasscodeViewControllerDelegate>
  18. {
  19. PAPasscodeViewController *_passcodeLockController;
  20. __weak void (^_completion)(void);
  21. BOOL _avoidPromptingTouchID;
  22. }
  23. @end
  24. @implementation VLCKeychainCoordinator
  25. + (instancetype)defaultCoordinator
  26. {
  27. static VLCKeychainCoordinator *sharedInstance = nil;
  28. static dispatch_once_t pred;
  29. dispatch_once(&pred, ^{
  30. sharedInstance = [VLCKeychainCoordinator new];
  31. });
  32. return sharedInstance;
  33. }
  34. - (instancetype)init
  35. {
  36. self = [super init];
  37. if (!self)
  38. return nil;
  39. [[NSNotificationCenter defaultCenter] addObserver:self
  40. selector:@selector(appInForeground:)
  41. name:UIApplicationDidBecomeActiveNotification
  42. object:nil];
  43. return self;
  44. }
  45. - (void)appInForeground:(NSNotification *)notification
  46. {
  47. /* our touch ID session is killed by the OS if the app moves to background, so re-init */
  48. UIViewController *rootViewController = [UIApplication sharedApplication].delegate.window.rootViewController;
  49. if ([rootViewController.presentedViewController isKindOfClass:[UINavigationController class]]){
  50. UINavigationController *navCon = (UINavigationController *)rootViewController.presentedViewController;
  51. if ([navCon.topViewController isKindOfClass:[PAPasscodeViewController class]] && [self touchIDEnabled]){
  52. [self _touchIDQuery];
  53. }
  54. }
  55. }
  56. - (NSString *)_obtainPasscode
  57. {
  58. NSUserDefaults *defaults = [NSUserDefaults standardUserDefaults];
  59. BOOL wasReset = [defaults boolForKey:kVLCSettingPasscodeResetOnUpgrade];
  60. if (wasReset) {
  61. XKKeychainGenericPasswordItem *item = [XKKeychainGenericPasswordItem itemForService:VLCPasscode account:VLCPasscode error:nil];
  62. NSString *passcode = item.secret.stringValue;
  63. return passcode;
  64. }
  65. [XKKeychainGenericPasswordItem removeItemsForService:VLCPasscode error:nil];
  66. [defaults setBool:YES forKey:kVLCSettingPasscodeResetOnUpgrade];
  67. return nil;
  68. }
  69. - (BOOL)touchIDEnabled
  70. {
  71. return [[NSUserDefaults standardUserDefaults] boolForKey:kVLCSettingPasscodeAllowTouchID];
  72. }
  73. - (BOOL)passcodeLockEnabled
  74. {
  75. return [[NSUserDefaults standardUserDefaults] boolForKey:kVLCSettingPasscodeOnKey];
  76. }
  77. - (void)validatePasscodeWithCompletion:(void(^)(void))completion
  78. {
  79. NSString *passcode = [self _obtainPasscode];
  80. if (passcode == nil || [passcode isEqualToString:@""]) {
  81. completion();
  82. return;
  83. }
  84. _passcodeLockController = [[PAPasscodeViewController alloc] initForAction:PasscodeActionEnter];
  85. _passcodeLockController.delegate = self;
  86. _passcodeLockController.passcode = passcode;
  87. _completion = completion;
  88. UIViewController *rootViewController = [UIApplication sharedApplication].delegate.window.rootViewController;
  89. if (rootViewController.presentedViewController)
  90. [rootViewController dismissViewControllerAnimated:NO completion:nil];
  91. UINavigationController *navCon = [[UINavigationController alloc] initWithRootViewController:_passcodeLockController];
  92. navCon.modalPresentationStyle = UIModalPresentationFullScreen;
  93. [rootViewController presentViewController:navCon animated:YES completion:^{
  94. if ([[NSUserDefaults standardUserDefaults] boolForKey:kVLCSettingPasscodeAllowTouchID]) {
  95. [self _touchIDQuery];
  96. }
  97. }];
  98. }
  99. - (void)_touchIDQuery
  100. {
  101. //if we just entered background don't show TouchID
  102. if (_avoidPromptingTouchID || [UIApplication sharedApplication].applicationState == UIApplicationStateInactive)
  103. return;
  104. LAContext *myContext = [[LAContext alloc] init];
  105. if ([myContext canEvaluatePolicy:LAPolicyDeviceOwnerAuthenticationWithBiometrics error:nil]) {
  106. _avoidPromptingTouchID = YES;
  107. [myContext evaluatePolicy:LAPolicyDeviceOwnerAuthenticationWithBiometrics
  108. localizedReason:NSLocalizedString(@"TOUCHID_UNLOCK", nil)
  109. reply:^(BOOL success, NSError *error) {
  110. //if we cancel we don't want to show TouchID again
  111. dispatch_async(dispatch_get_main_queue(), ^{
  112. _avoidPromptingTouchID = !success;
  113. if (success) {
  114. [[UIApplication sharedApplication].delegate.window.rootViewController dismissViewControllerAnimated:YES completion:^{
  115. _completion();
  116. }];
  117. }
  118. });
  119. }];
  120. }
  121. }
  122. - (void)PAPasscodeViewControllerDidEnterPasscode:(PAPasscodeViewController *)controller
  123. {
  124. _avoidPromptingTouchID = NO;
  125. [[UIApplication sharedApplication].delegate.window.rootViewController dismissViewControllerAnimated:YES completion:^{
  126. _completion();
  127. }];
  128. }
  129. - (void)PAPasscodeViewController:(PAPasscodeViewController *)controller didFailToEnterPasscode:(NSInteger)attempts
  130. {
  131. // FIXME: handle countless failed passcode attempts
  132. }
  133. - (void)setPasscode:(NSString *)passcode
  134. {
  135. if (!passcode) {
  136. [XKKeychainGenericPasswordItem removeItemsForService:VLCPasscode error:nil];
  137. return;
  138. }
  139. XKKeychainGenericPasswordItem *keychainItem = [[XKKeychainGenericPasswordItem alloc] init];
  140. keychainItem.service = VLCPasscode;
  141. keychainItem.account = VLCPasscode;
  142. keychainItem.secret.stringValue = passcode;
  143. [keychainItem saveWithError:nil];
  144. }
  145. @end