immich/mobile/lib/providers/local_auth.provider.dart

import 'package:easy_localization/easy_localization.dart';
import 'package:flutter/material.dart';
import 'package:flutter/services.dart';
import 'package:hooks_riverpod/hooks_riverpod.dart';
import 'package:immich_mobile/constants/constants.dart';
import 'package:immich_mobile/extensions/build_context_extensions.dart';
import 'package:immich_mobile/models/auth/biometric_status.model.dart';
import 'package:immich_mobile/services/local_auth.service.dart';
import 'package:immich_mobile/services/secure_storage.service.dart';
import 'package:logging/logging.dart';

final localAuthProvider =
    StateNotifierProvider<LocalAuthNotifier, BiometricStatus>((ref) {
  return LocalAuthNotifier(
    ref.watch(localAuthServiceProvider),
    ref.watch(secureStorageServiceProvider),
  );
});

class LocalAuthNotifier extends StateNotifier<BiometricStatus> {
  final LocalAuthService _localAuthService;
  final SecureStorageService _secureStorageService;

  final _log = Logger("LocalAuthNotifier");

  LocalAuthNotifier(this._localAuthService, this._secureStorageService)
      : super(
          const BiometricStatus(
            availableBiometrics: [],
            canAuthenticate: false,
          ),
        ) {
    _localAuthService.getStatus().then((value) {
      state = state.copyWith(
        canAuthenticate: value.canAuthenticate,
        availableBiometrics: value.availableBiometrics,
      );
    });
  }

  Future<bool> registerBiometric(BuildContext context, String pinCode) async {
    final isAuthenticated =
        await authenticate(context, 'Authenticate to enable biometrics');

    if (!isAuthenticated) {
      return false;
    }

    await _secureStorageService.write(kSecuredPinCode, pinCode);

    return true;
  }

  Future<bool> authenticate(BuildContext context, String? message) async {
    String errorMessage = "";

    try {
      return await _localAuthService.authenticate(message);
    } on PlatformException catch (error) {
      switch (error.code) {
        case "NotEnrolled":
          _log.warning("User is not enrolled in biometrics");
          errorMessage = "biometric_no_options".tr();
          break;
        case "NotAvailable":
          _log.warning("Biometric authentication is not available");
          errorMessage = "biometric_not_available".tr();
          break;
        case "LockedOut":
          _log.warning("User is locked out of biometric authentication");
          errorMessage = "biometric_locked_out".tr();
          break;
        default:
          _log.warning("Failed to authenticate with unknown reason");
          errorMessage = 'failed_to_authenticate'.tr();
      }
    } catch (error) {
      _log.warning("Error during authentication: $error");
      errorMessage = 'failed_to_authenticate'.tr();
    } finally {
      if (errorMessage.isNotEmpty) {
        context.showSnackBar(
          SnackBar(
            content: Text(
              errorMessage,
              style: context.textTheme.labelLarge,
            ),
            duration: const Duration(seconds: 3),
            backgroundColor: context.colorScheme.errorContainer,
          ),
        );
      }
    }

    return false;
  }
}
feat: locked view mobile (#18316) * feat: locked/private view * feat: locked/private view * feat: mobile lock/private view * feat: mobile lock/private view * merge main * pr feedback * pr feedback * bottom sheet sizing * always lock when navigating away 2025-05-20 08:35:22 -05:00			`import 'package:easy_localization/easy_localization.dart';`
			`import 'package:flutter/material.dart';`
			`import 'package:flutter/services.dart';`
			`import 'package:hooks_riverpod/hooks_riverpod.dart';`
			`import 'package:immich_mobile/constants/constants.dart';`
			`import 'package:immich_mobile/extensions/build_context_extensions.dart';`
			`import 'package:immich_mobile/models/auth/biometric_status.model.dart';`
			`import 'package:immich_mobile/services/local_auth.service.dart';`
			`import 'package:immich_mobile/services/secure_storage.service.dart';`
			`import 'package:logging/logging.dart';`

			`final localAuthProvider =`
			`StateNotifierProvider<LocalAuthNotifier, BiometricStatus>((ref) {`
			`return LocalAuthNotifier(`
			`ref.watch(localAuthServiceProvider),`
			`ref.watch(secureStorageServiceProvider),`
			`);`
			`});`

			`class LocalAuthNotifier extends StateNotifier<BiometricStatus> {`
			`final LocalAuthService _localAuthService;`
			`final SecureStorageService _secureStorageService;`

			`final _log = Logger("LocalAuthNotifier");`

			`LocalAuthNotifier(this._localAuthService, this._secureStorageService)`
			`: super(`
			`const BiometricStatus(`
			`availableBiometrics: [],`
			`canAuthenticate: false,`
			`),`
			`) {`
			`_localAuthService.getStatus().then((value) {`
			`state = state.copyWith(`
			`canAuthenticate: value.canAuthenticate,`
			`availableBiometrics: value.availableBiometrics,`
			`);`
			`});`
			`}`

			`Future<bool> registerBiometric(BuildContext context, String pinCode) async {`
			`final isAuthenticated =`
			`await authenticate(context, 'Authenticate to enable biometrics');`

			`if (!isAuthenticated) {`
			`return false;`
			`}`

			`await _secureStorageService.write(kSecuredPinCode, pinCode);`

			`return true;`
			`}`

			`Future<bool> authenticate(BuildContext context, String? message) async {`
			`String errorMessage = "";`

			`try {`
			`return await _localAuthService.authenticate(message);`
			`} on PlatformException catch (error) {`
			`switch (error.code) {`
			`case "NotEnrolled":`
			`_log.warning("User is not enrolled in biometrics");`
			`errorMessage = "biometric_no_options".tr();`
			`break;`
			`case "NotAvailable":`
			`_log.warning("Biometric authentication is not available");`
			`errorMessage = "biometric_not_available".tr();`
			`break;`
			`case "LockedOut":`
			`_log.warning("User is locked out of biometric authentication");`
			`errorMessage = "biometric_locked_out".tr();`
			`break;`
			`default:`
			`_log.warning("Failed to authenticate with unknown reason");`
			`errorMessage = 'failed_to_authenticate'.tr();`
			`}`
			`} catch (error) {`
			`_log.warning("Error during authentication: $error");`
			`errorMessage = 'failed_to_authenticate'.tr();`
			`} finally {`
			`if (errorMessage.isNotEmpty) {`
			`context.showSnackBar(`
			`SnackBar(`
			`content: Text(`
			`errorMessage,`
			`style: context.textTheme.labelLarge,`
			`),`
			`duration: const Duration(seconds: 3),`
			`backgroundColor: context.colorScheme.errorContainer,`
			`),`
			`);`
			`}`
			`}`

			`return false;`
			`}`
			`}`