All, Server: Add support for sharing notes when E2EE is enabled (#5529)

2025-07-16 00:14:34 +02:00 · 2021-11-03 16:24:40 +00:00
parent a0d23046bf
commit af19865865
33 changed files with 668 additions and 194 deletions
--- a/packages/lib/services/share/ShareService.test.ts
+++ b/packages/lib/services/share/ShareService.test.ts
@ -1,26 +1,20 @@
 import Note from '../../models/Note';
-import { msleep, setupDatabaseAndSynchronizer, switchClient } from '../../testing/test-utils';
+import { encryptionService, msleep, setupDatabaseAndSynchronizer, switchClient } from '../../testing/test-utils';
 import ShareService from './ShareService';
 import reducer from '../../reducer';
 import { createStore } from 'redux';
-import { NoteEntity } from '../database/types';
+import { FolderEntity, NoteEntity } from '../database/types';
+import Folder from '../../models/Folder';
+import { setEncryptionEnabled, setPpk } from '../synchronizer/syncInfoUtils';
+import { generateKeyPair } from '../e2ee/ppk';
+import MasterKey from '../../models/MasterKey';
+import { MasterKeyEntity } from '../e2ee/types';
+import { updateMasterPassword } from '../e2ee/utils';

-function mockApi() {
-	return {
-		exec: (method: string, path: string = '', _query: Record<string, any> = null, _body: any = null, _headers: any = null, _options: any = null): Promise<any> => {
-			if (method === 'GET' && path === 'api/shares') return { items: [] } as any;
-			return null;
-		},
-		personalizedUserContentBaseUrl(_userId: string) {
-
-		},
-	};
-}
-
-function mockService() {
+function mockService(api: any) {
 	const service = new ShareService();
 	const store = createStore(reducer as any);
-	service.initialize(store, mockApi() as any);
+	service.initialize(store, encryptionService(), api);
 	return service;
 }

@ -32,9 +26,17 @@ describe('ShareService', function() {
 		done();
 	});

-	it('should not change the note user timestamps when sharing or unsharing', (async () => {
+	it('should not change the note user timestamps when sharing or unsharing', async () => {
 		let note = await Note.save({});
-		const service = mockService();
+		const service = mockService({
+			exec: (method: string, path: string = '', _query: Record<string, any> = null, _body: any = null, _headers: any = null, _options: any = null): Promise<any> => {
+				if (method === 'GET' && path === 'api/shares') return { items: [] } as any;
+				return null;
+			},
+			personalizedUserContentBaseUrl(_userId: string) {
+
+			},
+		});
 		await msleep(1);
 		await service.shareNote(note.id);

@ -61,6 +63,90 @@ describe('ShareService', function() {
 			const noteReloaded = await Note.load(note.id);
 			checkTimestamps(note, noteReloaded);
 		}
-	}));
+	});
+
+	function testShareFolderService(extraExecHandlers: Record<string, Function> = {}) {
+		return mockService({
+			exec: async (method: string, path: string, query: Record<string, any>, body: any) => {
+				if (extraExecHandlers[`${method} ${path}`]) return extraExecHandlers[`${method} ${path}`](query, body);
+
+				if (method === 'POST' && path === 'api/shares') {
+					return {
+						id: 'share_1',
+					};
+				}
+
+				throw new Error(`Unhandled: ${method} ${path}`);
+			},
+		});
+	}
+
+	async function testShareFolder(service: ShareService) {
+		const folder = await Folder.save({});
+		const note = await Note.save({ parent_id: folder.id });
+
+		const share = await service.shareFolder(folder.id);
+		expect(share.id).toBe('share_1');
+		expect((await Folder.load(folder.id)).share_id).toBe('share_1');
+		expect((await Note.load(note.id)).share_id).toBe('share_1');
+
+		return share;
+	}
+
+	it('should share a folder', async () => {
+		await testShareFolder(testShareFolderService());
+	});
+
+	it('should share a folder - E2EE', async () => {
+		setEncryptionEnabled(true);
+		await updateMasterPassword('', '111111');
+		const ppk = await generateKeyPair(encryptionService(), '111111');
+		setPpk(ppk);
+
+		await testShareFolder(testShareFolderService());
+
+		expect((await MasterKey.all()).length).toBe(1);
+
+		const mk = (await MasterKey.all())[0];
+		const folder: FolderEntity = (await Folder.all())[0];
+		expect(folder.master_key_id).toBe(mk.id);
+	});
+
+	it('should add a recipient', async () => {
+		setEncryptionEnabled(true);
+		await updateMasterPassword('', '111111');
+		const ppk = await generateKeyPair(encryptionService(), '111111');
+		setPpk(ppk);
+		const recipientPpk = await generateKeyPair(encryptionService(), '222222');
+		expect(ppk.id).not.toBe(recipientPpk.id);
+
+		let uploadedEmail: string = '';
+		let uploadedMasterKey: MasterKeyEntity = null;
+
+		const service = testShareFolderService({
+			'POST api/shares': (_query: Record<string, any>, body: any) => {
+				return {
+					id: 'share_1',
+					master_key_id: body.master_key_id,
+				};
+			},
+			'GET api/users/toto%40example.com/public_key': async (_query: Record<string, any>, _body: any) => {
+				return recipientPpk;
+			},
+			'POST api/shares/share_1/users': async (_query: Record<string, any>, body: any) => {
+				uploadedEmail = body.email;
+				uploadedMasterKey = JSON.parse(body.master_key);
+			},
+		});
+
+		const share = await testShareFolder(service);
+
+		await service.addShareRecipient(share.id, share.master_key_id, 'toto@example.com');
+
+		expect(uploadedEmail).toBe('toto@example.com');
+
+		const content = JSON.parse(uploadedMasterKey.content);
+		expect(content.ppkId).toBe(recipientPpk.id);
+	});

 });