2021-07-19 11:27:43 +02:00
|
|
|
import Note from '../../models/Note';
|
2022-02-09 20:04:27 +02:00
|
|
|
import { encryptionService, loadEncryptionMasterKey, msleep, resourceService, setupDatabaseAndSynchronizer, supportDir, switchClient } from '../../testing/test-utils';
|
2021-07-19 11:27:43 +02:00
|
|
|
import ShareService from './ShareService';
|
2021-12-20 16:47:50 +02:00
|
|
|
import reducer, { defaultState } from '../../reducer';
|
2021-07-19 11:27:43 +02:00
|
|
|
import { createStore } from 'redux';
|
2022-02-09 20:04:27 +02:00
|
|
|
import { NoteEntity } from '../database/types';
|
2021-11-03 18:24:40 +02:00
|
|
|
import Folder from '../../models/Folder';
|
|
|
|
|
import { setEncryptionEnabled, setPpk } from '../synchronizer/syncInfoUtils';
|
|
|
|
|
import { generateKeyPair } from '../e2ee/ppk';
|
|
|
|
|
import MasterKey from '../../models/MasterKey';
|
|
|
|
|
import { MasterKeyEntity } from '../e2ee/types';
|
2022-02-09 20:04:27 +02:00
|
|
|
import { loadMasterKeysFromSettings, setupAndEnableEncryption, updateMasterPassword } from '../e2ee/utils';
|
2021-12-20 16:47:50 +02:00
|
|
|
import Logger, { LogLevel } from '../../Logger';
|
2022-02-09 20:04:27 +02:00
|
|
|
import shim from '../../shim';
|
|
|
|
|
import Resource from '../../models/Resource';
|
|
|
|
|
import { readFile } from 'fs-extra';
|
|
|
|
|
import BaseItem from '../../models/BaseItem';
|
|
|
|
|
|
|
|
|
|
interface TestShareFolderServiceOptions {
|
|
|
|
|
master_key_id?: string;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
const testImagePath = `${supportDir}/photo.jpg`;
|
2021-12-20 16:47:50 +02:00
|
|
|
|
|
|
|
|
const testReducer = (state: any = defaultState, action: any) => {
|
|
|
|
|
return reducer(state, action);
|
|
|
|
|
};
|
2021-07-19 11:27:43 +02:00
|
|
|
|
2021-11-03 18:24:40 +02:00
|
|
|
function mockService(api: any) {
|
2021-07-19 11:27:43 +02:00
|
|
|
const service = new ShareService();
|
2021-12-20 16:47:50 +02:00
|
|
|
const store = createStore(testReducer as any);
|
2021-11-03 18:24:40 +02:00
|
|
|
service.initialize(store, encryptionService(), api);
|
2021-07-19 11:27:43 +02:00
|
|
|
return service;
|
|
|
|
|
}
|
|
|
|
|
|
2023-02-20 17:02:29 +02:00
|
|
|
describe('ShareService', () => {
|
2021-07-19 11:27:43 +02:00
|
|
|
|
2022-11-15 12:23:50 +02:00
|
|
|
beforeEach(async () => {
|
2021-07-19 11:27:43 +02:00
|
|
|
await setupDatabaseAndSynchronizer(1);
|
|
|
|
|
await switchClient(1);
|
|
|
|
|
});
|
|
|
|
|
|
2021-11-03 18:24:40 +02:00
|
|
|
it('should not change the note user timestamps when sharing or unsharing', async () => {
|
2021-07-19 11:27:43 +02:00
|
|
|
let note = await Note.save({});
|
2021-11-03 18:24:40 +02:00
|
|
|
const service = mockService({
|
2023-06-30 10:11:26 +02:00
|
|
|
exec: (method: string, path = '', _query: Record<string, any> = null, _body: any = null, _headers: any = null, _options: any = null): Promise<any> => {
|
2021-11-03 18:24:40 +02:00
|
|
|
if (method === 'GET' && path === 'api/shares') return { items: [] } as any;
|
|
|
|
|
return null;
|
|
|
|
|
},
|
|
|
|
|
personalizedUserContentBaseUrl(_userId: string) {
|
|
|
|
|
|
|
|
|
|
},
|
|
|
|
|
});
|
2021-07-19 11:27:43 +02:00
|
|
|
await msleep(1);
|
2022-04-03 20:19:24 +02:00
|
|
|
await service.shareNote(note.id, false);
|
2021-07-19 11:27:43 +02:00
|
|
|
|
|
|
|
|
function checkTimestamps(previousNote: NoteEntity, newNote: NoteEntity) {
|
|
|
|
|
// After sharing or unsharing, only the updated_time property should
|
|
|
|
|
// be updated, for sync purposes. All other timestamps shouldn't
|
|
|
|
|
// change.
|
|
|
|
|
expect(previousNote.user_created_time).toBe(newNote.user_created_time);
|
|
|
|
|
expect(previousNote.user_updated_time).toBe(newNote.user_updated_time);
|
|
|
|
|
expect(previousNote.updated_time < newNote.updated_time).toBe(true);
|
|
|
|
|
expect(previousNote.created_time).toBe(newNote.created_time);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
{
|
|
|
|
|
const noteReloaded = await Note.load(note.id);
|
|
|
|
|
checkTimestamps(note, noteReloaded);
|
|
|
|
|
note = noteReloaded;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
await msleep(1);
|
|
|
|
|
await service.unshareNote(note.id);
|
|
|
|
|
|
|
|
|
|
{
|
|
|
|
|
const noteReloaded = await Note.load(note.id);
|
|
|
|
|
checkTimestamps(note, noteReloaded);
|
|
|
|
|
}
|
2021-11-03 18:24:40 +02:00
|
|
|
});
|
|
|
|
|
|
2022-02-09 20:04:27 +02:00
|
|
|
function testShareFolderService(extraExecHandlers: Record<string, Function> = {}, options: TestShareFolderServiceOptions = {}) {
|
2021-11-03 18:24:40 +02:00
|
|
|
return mockService({
|
|
|
|
|
exec: async (method: string, path: string, query: Record<string, any>, body: any) => {
|
|
|
|
|
if (extraExecHandlers[`${method} ${path}`]) return extraExecHandlers[`${method} ${path}`](query, body);
|
|
|
|
|
|
2022-02-09 20:04:27 +02:00
|
|
|
if (method === 'GET' && path === 'api/shares') {
|
|
|
|
|
return {
|
|
|
|
|
items: [
|
|
|
|
|
{
|
|
|
|
|
id: 'share_1',
|
|
|
|
|
master_key_id: options.master_key_id,
|
|
|
|
|
},
|
|
|
|
|
],
|
|
|
|
|
};
|
|
|
|
|
}
|
|
|
|
|
|
2021-11-03 18:24:40 +02:00
|
|
|
if (method === 'POST' && path === 'api/shares') {
|
|
|
|
|
return {
|
|
|
|
|
id: 'share_1',
|
|
|
|
|
};
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
throw new Error(`Unhandled: ${method} ${path}`);
|
|
|
|
|
},
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
async function testShareFolder(service: ShareService) {
|
|
|
|
|
const folder = await Folder.save({});
|
2022-02-09 20:04:27 +02:00
|
|
|
let note = await Note.save({ parent_id: folder.id });
|
|
|
|
|
note = await shim.attachFileToNote(note, testImagePath);
|
|
|
|
|
const resourceId = (await Note.linkedResourceIds(note.body))[0];
|
|
|
|
|
const resource = await Resource.load(resourceId);
|
|
|
|
|
|
|
|
|
|
await resourceService().indexNoteResources();
|
2021-11-03 18:24:40 +02:00
|
|
|
|
|
|
|
|
const share = await service.shareFolder(folder.id);
|
|
|
|
|
expect(share.id).toBe('share_1');
|
|
|
|
|
expect((await Folder.load(folder.id)).share_id).toBe('share_1');
|
|
|
|
|
expect((await Note.load(note.id)).share_id).toBe('share_1');
|
2022-02-09 20:04:27 +02:00
|
|
|
expect((await Resource.load(resource.id)).share_id).toBe('share_1');
|
2021-11-03 18:24:40 +02:00
|
|
|
|
2022-02-09 20:04:27 +02:00
|
|
|
return { share, folder, note, resource };
|
2021-11-03 18:24:40 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
it('should share a folder', async () => {
|
|
|
|
|
await testShareFolder(testShareFolderService());
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should share a folder - E2EE', async () => {
|
2022-02-09 20:04:27 +02:00
|
|
|
const masterKey = await loadEncryptionMasterKey();
|
|
|
|
|
await setupAndEnableEncryption(encryptionService(), masterKey, '111111');
|
2021-11-03 18:24:40 +02:00
|
|
|
const ppk = await generateKeyPair(encryptionService(), '111111');
|
|
|
|
|
setPpk(ppk);
|
|
|
|
|
|
2022-02-09 20:04:27 +02:00
|
|
|
let shareService = testShareFolderService();
|
2021-11-03 18:24:40 +02:00
|
|
|
|
2022-02-09 20:04:27 +02:00
|
|
|
expect(await MasterKey.count()).toBe(1);
|
2021-11-03 18:24:40 +02:00
|
|
|
|
2022-02-09 20:04:27 +02:00
|
|
|
let { folder, note, resource } = await testShareFolder(shareService);
|
2022-07-12 12:28:48 +02:00
|
|
|
await Folder.updateAllShareIds(resourceService());
|
2022-02-09 20:04:27 +02:00
|
|
|
|
|
|
|
|
// The share service should automatically create a new encryption key
|
|
|
|
|
// specifically for that shared folder
|
|
|
|
|
expect(await MasterKey.count()).toBe(2);
|
|
|
|
|
|
|
|
|
|
folder = await Folder.load(folder.id);
|
|
|
|
|
note = await Note.load(note.id);
|
|
|
|
|
resource = await Resource.load(resource.id);
|
|
|
|
|
|
|
|
|
|
// The key that is not the master key is the folder key
|
|
|
|
|
const folderKey = (await MasterKey.all()).find(mk => mk.id !== masterKey.id);
|
|
|
|
|
|
|
|
|
|
// Double-check that it's going to encrypt the folder using the shared
|
|
|
|
|
// key (and not the user's own master key)
|
|
|
|
|
expect(folderKey.id).not.toBe(masterKey.id);
|
|
|
|
|
expect(folder.master_key_id).toBe(folderKey.id);
|
|
|
|
|
|
|
|
|
|
await loadMasterKeysFromSettings(encryptionService());
|
|
|
|
|
|
|
|
|
|
// Reload the service so that the mocked calls use the newly created key
|
|
|
|
|
shareService = testShareFolderService({}, { master_key_id: folderKey.id });
|
|
|
|
|
|
|
|
|
|
BaseItem.shareService_ = shareService;
|
|
|
|
|
Resource.shareService_ = shareService;
|
|
|
|
|
|
|
|
|
|
try {
|
|
|
|
|
const serializedNote = await Note.serializeForSync(note);
|
|
|
|
|
expect(serializedNote).toContain(folderKey.id);
|
|
|
|
|
|
|
|
|
|
// The resource should be encrypted using the above key (if it is,
|
|
|
|
|
// the key ID will be in the header).
|
|
|
|
|
const result = await Resource.fullPathForSyncUpload(resource);
|
|
|
|
|
const content = await readFile(result.path, 'utf8');
|
|
|
|
|
expect(content).toContain(folderKey.id);
|
|
|
|
|
} finally {
|
|
|
|
|
BaseItem.shareService_ = shareService;
|
|
|
|
|
Resource.shareService_ = null;
|
|
|
|
|
}
|
2021-11-03 18:24:40 +02:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
it('should add a recipient', async () => {
|
|
|
|
|
setEncryptionEnabled(true);
|
|
|
|
|
await updateMasterPassword('', '111111');
|
|
|
|
|
const ppk = await generateKeyPair(encryptionService(), '111111');
|
|
|
|
|
setPpk(ppk);
|
|
|
|
|
const recipientPpk = await generateKeyPair(encryptionService(), '222222');
|
|
|
|
|
expect(ppk.id).not.toBe(recipientPpk.id);
|
|
|
|
|
|
2023-02-05 13:32:28 +02:00
|
|
|
let uploadedEmail = '';
|
2021-11-03 18:24:40 +02:00
|
|
|
let uploadedMasterKey: MasterKeyEntity = null;
|
|
|
|
|
|
|
|
|
|
const service = testShareFolderService({
|
|
|
|
|
'POST api/shares': (_query: Record<string, any>, body: any) => {
|
|
|
|
|
return {
|
|
|
|
|
id: 'share_1',
|
|
|
|
|
master_key_id: body.master_key_id,
|
|
|
|
|
};
|
|
|
|
|
},
|
|
|
|
|
'GET api/users/toto%40example.com/public_key': async (_query: Record<string, any>, _body: any) => {
|
|
|
|
|
return recipientPpk;
|
|
|
|
|
},
|
|
|
|
|
'POST api/shares/share_1/users': async (_query: Record<string, any>, body: any) => {
|
|
|
|
|
uploadedEmail = body.email;
|
|
|
|
|
uploadedMasterKey = JSON.parse(body.master_key);
|
|
|
|
|
},
|
|
|
|
|
});
|
|
|
|
|
|
2022-02-09 20:04:27 +02:00
|
|
|
const { share } = await testShareFolder(service);
|
2021-11-03 18:24:40 +02:00
|
|
|
|
|
|
|
|
await service.addShareRecipient(share.id, share.master_key_id, 'toto@example.com');
|
|
|
|
|
|
|
|
|
|
expect(uploadedEmail).toBe('toto@example.com');
|
|
|
|
|
|
|
|
|
|
const content = JSON.parse(uploadedMasterKey.content);
|
|
|
|
|
expect(content.ppkId).toBe(recipientPpk.id);
|
|
|
|
|
});
|
2021-07-19 11:27:43 +02:00
|
|
|
|
2021-12-20 16:47:50 +02:00
|
|
|
it('should leave folders that are no longer with the user', async () => {
|
|
|
|
|
// `checkShareConsistency` will emit a warning so we need to silent it
|
|
|
|
|
// in tests.
|
|
|
|
|
const previousLogLevel = Logger.globalLogger.setLevel(LogLevel.Error);
|
|
|
|
|
|
|
|
|
|
const service = testShareFolderService({
|
|
|
|
|
'GET api/shares': async (_query: Record<string, any>, _body: any): Promise<any> => {
|
|
|
|
|
return {
|
|
|
|
|
items: [],
|
|
|
|
|
has_more: false,
|
|
|
|
|
};
|
|
|
|
|
},
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
const folder = await Folder.save({ share_id: 'nolongershared' });
|
|
|
|
|
await service.checkShareConsistency();
|
|
|
|
|
expect(await Folder.load(folder.id)).toBeFalsy();
|
|
|
|
|
|
|
|
|
|
Logger.globalLogger.setLevel(previousLogLevel);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
|
2021-07-19 11:27:43 +02:00
|
|
|
});
|
