migrate to appPassword

Author: Leptopoda

lib/src/blocs/login/login_bloc.dart

@@ -1,7 +1,6 @@
 import 'package:equatable/equatable.dart';
 import 'package:flutter_bloc/flutter_bloc.dart';
 import 'package:nextcloud_cookbook_flutter/src/blocs/authentication/authentication_bloc.dart';
-import 'package:nextcloud_cookbook_flutter/src/models/app_authentication.dart';
 import 'package:nextcloud_cookbook_flutter/src/services/services.dart';
 import 'package:nextcloud_cookbook_flutter/src/util/url_validator.dart';
 
@@ -24,24 +23,14 @@ class LoginBloc extends Bloc<LoginEvent, LoginState> {
     emit(LoginState(status: LoginStatus.loading));
 
     try {
-      AppAuthentication appAuthentication;
       assert(URLUtils.isSanitized(event.serverURL));
 
-      if (!event.isAppPassword) {
-        appAuthentication = await userRepository.authenticate(
-          event.serverURL,
-          event.username,
-          event.originalBasicAuth,
-          isSelfSignedCertificate: event.isSelfSignedCertificate,
-        );
-      } else {
-        appAuthentication = await userRepository.authenticateAppPassword(
-          event.serverURL,
-          event.username,
-          event.originalBasicAuth,
-          isSelfSignedCertificate: event.isSelfSignedCertificate,
-        );
-      }
+      final appAuthentication = await userRepository.authenticateAppPassword(
+        event.serverURL,
+        event.username,
+        event.appPassword,
+        isSelfSignedCertificate: event.isSelfSignedCertificate,
+      );
 
       authenticationBloc.add(LoggedIn(appAuthentication: appAuthentication));
       emit(LoginState());

lib/src/blocs/login/login_event.dart

@@ -11,13 +11,13 @@ class LoginButtonPressed extends LoginEvent {
   const LoginButtonPressed({
     required this.serverURL,
     required this.username,
-    required this.originalBasicAuth,
+    required this.appPassword,
     required this.isAppPassword,
     required this.isSelfSignedCertificate,
   });
   final String serverURL;
   final String username;
-  final String originalBasicAuth;
+  final String appPassword;
   final bool isAppPassword;
   final bool isSelfSignedCertificate;
 

lib/src/models/app_authentication.dart

@@ -1,34 +1,18 @@
 import 'dart:convert';
 
-import 'package:dio/dio.dart';
-import 'package:dio/io.dart';
 import 'package:equatable/equatable.dart';
 import 'package:json_annotation/json_annotation.dart';
 
 part 'app_authentication.g.dart';
 
 @JsonSerializable()
 class AppAuthentication extends Equatable {
-  AppAuthentication({
+  const AppAuthentication({
     required this.server,
     required this.loginName,
-    required this.basicAuth,
+    required this.appPassword,
     required this.isSelfSignedCertificate,
-  }) {
-    authenticatedClient.options
-      ..headers['authorization'] = basicAuth
-      ..headers['User-Agent'] = 'Cookbook App'
-      ..responseType = ResponseType.plain;
-
-    if (isSelfSignedCertificate) {
-      authenticatedClient.httpClientAdapter = IOHttpClientAdapter(
-        onHttpClientCreate: (client) {
-          client.badCertificateCallback = (cert, host, port) => true;
-          return client;
-        },
-      );
-    }
-  }
+  });
 
   factory AppAuthentication.fromJsonString(String jsonString) =>
       AppAuthentication.fromJson(
@@ -40,40 +24,37 @@ class AppAuthentication extends Equatable {
       return _$AppAuthenticationFromJson(jsonData);
       // ignore: avoid_catching_errors
     } on TypeError {
-      final basicAuth = parseBasicAuth(
-        jsonData['loginName'] as String,
-        jsonData['appPassword'] as String,
-      );
+      final basicAuth = jsonData['basicAuth'] as String?;
+      final appPassword =
+          jsonData['appPassword'] as String? ?? parseBasicAuth(basicAuth!);
 
       final selfSignedCertificate =
           jsonData['isSelfSignedCertificate'] as bool? ?? false;
 
       return AppAuthentication(
         server: jsonData['server'] as String,
         loginName: jsonData['loginName'] as String,
-        basicAuth: basicAuth,
+        appPassword: appPassword,
         isSelfSignedCertificate: selfSignedCertificate,
       );
     }
   }
   final String server;
   final String loginName;
-  final String basicAuth;
+  final String appPassword;
   final bool isSelfSignedCertificate;
 
-  final Dio authenticatedClient = Dio();
-
   String toJsonString() => json.encode(toJson());
   Map<String, dynamic> toJson() => _$AppAuthenticationToJson(this);
 
-  String get password {
+  static String parseBasicAuth(String basicAuth) {
     final base64 = basicAuth.substring(6);
     final string = utf8.decode(base64Decode(base64));
     final auth = string.split(':');
     return auth[1];
   }
 
-  static String parseBasicAuth(String loginName, String appPassword) {
+  static String parsePassword(String loginName, String appPassword) {
     return 'Basic ${base64Encode(utf8.encode('$loginName:$appPassword'))}';
   }
 
@@ -85,7 +66,7 @@ class AppAuthentication extends Equatable {
   List<Object?> get props => [
         server,
         loginName,
-        basicAuth,
+        appPassword,
         isSelfSignedCertificate,
       ];
 }

lib/src/models/app_authentication.g.dart

@@ -3,7 +3,6 @@ import 'package:flutter_bloc/flutter_bloc.dart';
 import 'package:flutter_spinkit/flutter_spinkit.dart';
 import 'package:flutter_translate/flutter_translate.dart';
 import 'package:nextcloud_cookbook_flutter/src/blocs/login/login_bloc.dart';
-import 'package:nextcloud_cookbook_flutter/src/models/app_authentication.dart';
 import 'package:nextcloud_cookbook_flutter/src/services/services.dart';
 import 'package:nextcloud_cookbook_flutter/src/util/url_validator.dart';
 import 'package:nextcloud_cookbook_flutter/src/widget/checkbox_form_field.dart';
@@ -66,14 +65,12 @@ class _LoginFormState extends State<LoginForm> with WidgetsBindingObserver {
         final serverUrl = URLUtils.sanitizeUrl(_serverUrl.text);
         final username = _username.text.trim();
         final password = _password.text.trim();
-        final originalBasicAuth =
-            AppAuthentication.parseBasicAuth(username, password);
 
         BlocProvider.of<LoginBloc>(context).add(
           LoginButtonPressed(
             serverURL: serverUrl,
             username: username,
-            originalBasicAuth: originalBasicAuth,
+            appPassword: password,
             isAppPassword: advancedIsAppPassword,
             isSelfSignedCertificate: advancedIsSelfSignedCertificate,
           ),

lib/src/screens/form/login_form.dart

@@ -12,7 +12,7 @@ class ApiProvider {
     ncCookbookApi.setBasicAuth(
       'app_password',
       auth.loginName,
-      auth.password,
+      auth.appPassword,
     );
     recipeApi = ncCookbookApi.getRecipesApi();
     categoryApi = ncCookbookApi.getCategoriesApi();

lib/src/services/api_provider.dart

@@ -6,91 +6,6 @@ class AuthenticationProvider {
   AppAuthentication? currentAppAuthentication;
   dio.CancelToken? _cancelToken;
 
-  Future<AppAuthentication> authenticate({
-    required String serverUrl,
-    required String username,
-    required String originalBasicAuth,
-    required bool isSelfSignedCertificate,
-  }) async {
-    assert(URLUtils.isSanitized(serverUrl));
-
-    final urlInitialCall = '$serverUrl/ocs/v2.php/core/getapppassword';
-
-    dio.Response response;
-    try {
-      final client = dio.Dio();
-      if (isSelfSignedCertificate) {
-        client.httpClientAdapter = IOHttpClientAdapter(
-          onHttpClientCreate: (client) {
-            client.badCertificateCallback = (cert, host, port) => true;
-            return client;
-          },
-        );
-      }
-
-      response = await client.get(
-        urlInitialCall,
-        options: dio.Options(
-          headers: {
-            'OCS-APIREQUEST': 'true',
-            'User-Agent': 'Cookbook App',
-            'authorization': originalBasicAuth
-          },
-          validateStatus: (status) => status! < 500,
-        ),
-        cancelToken: _cancelToken,
-      );
-    } on dio.DioError catch (e) {
-      if (e.message?.contains('SocketException') ?? false) {
-        throw translate(
-          'login.errors.not_reachable',
-          args: {'server_url': serverUrl, 'error_msg': e},
-        );
-      } else if (e.message?.contains('CERTIFICATE_VERIFY_FAILED') ?? false) {
-        throw translate(
-          'login.errors.certificate_failed',
-          args: {'server_url': serverUrl, 'error_msg': e},
-        );
-      }
-      throw translate('login.errors.request_failed', args: {'error_msg': e});
-    }
-    _cancelToken = null;
-
-    if (response.statusCode == 200) {
-      String appPassword;
-      try {
-        appPassword = XmlDocument.parse(response.data as String)
-            .findAllElements('apppassword')
-            .first
-            .text;
-      } on XmlParserException catch (e) {
-        throw translate('login.errors.parse_failed', args: {'error_msg': e});
-        // ignore: avoid_catching_errors
-      } on StateError catch (e) {
-        throw translate('login.errors.parse_missing', args: {'error_msg': e});
-      }
-
-      final basicAuth = AppAuthentication.parseBasicAuth(username, appPassword);
-
-      return AppAuthentication(
-        server: serverUrl,
-        loginName: username,
-        basicAuth: basicAuth,
-        isSelfSignedCertificate: isSelfSignedCertificate,
-      );
-    } else if (response.statusCode == 401) {
-      throw translate('login.errors.auth_failed');
-    } else {
-      throw translate(
-        'login.errors.failure',
-        args: {
-          'status_code': response.statusCode,
-          'status_message': response.statusMessage,
-        },
-      );
-    }
-  }
-
   Future<AppAuthentication> authenticateAppPassword({
     required String serverUrl,
     required String username,
@@ -125,7 +40,7 @@ class AuthenticationProvider {
       return AppAuthentication(
         server: serverUrl,
         loginName: username,
-        basicAuth: basicAuth,
+        appPassword: basicAuth,
         isSelfSignedCertificate: isSelfSignedCertificate,
       );
     } else {
@@ -221,10 +136,14 @@ class AuthenticationProvider {
   Future<void> deleteAppAuthentication() async {
     dio.Response? response;
     try {
-      response = await currentAppAuthentication?.authenticatedClient.delete(
+      response = await Dio().delete(
         '${currentAppAuthentication!.server}/ocs/v2.php/core/apppassword',
         options: dio.Options(
           headers: {
+            'Authorization': AppAuthentication.parsePassword(
+              currentAppAuthentication!.loginName,
+              currentAppAuthentication!.appPassword,
+            ),
             'OCS-APIREQUEST': 'true',
           },
         ),

lib/src/services/authentication_provider.dart

@@ -18,7 +18,6 @@ import 'package:nextcloud_cookbook_flutter/src/screens/recipe_import_screen.dart
 import 'package:nextcloud_cookbook_flutter/src/util/url_validator.dart';
 import 'package:timezone/data/latest_10y.dart' as tz;
 import 'package:timezone/timezone.dart' as tz;
-import 'package:xml/xml.dart';
 
 part 'api_provider.dart';
 part 'authentication_provider.dart';

lib/src/services/services.dart

@@ -9,20 +9,6 @@ class UserRepository {
 
   AuthenticationProvider authenticationProvider = AuthenticationProvider();
 
-  Future<AppAuthentication> authenticate(
-    String serverUrl,
-    String username,
-    String originalBasicAuth, {
-    required bool isSelfSignedCertificate,
-  }) async {
-    return authenticationProvider.authenticate(
-      serverUrl: serverUrl,
-      username: username,
-      originalBasicAuth: originalBasicAuth,
-      isSelfSignedCertificate: isSelfSignedCertificate,
-    );
-  }
-
   Future<AppAuthentication> authenticateAppPassword(
     String serverUrl,
     String username,
@@ -45,10 +31,6 @@ class UserRepository {
     return authenticationProvider.currentAppAuthentication!;
   }
 
-  Dio get authenticatedClient {
-    return currentAppAuthentication.authenticatedClient;
-  }
-
   Future<bool> hasAppAuthentication() async {
     return authenticationProvider.hasAppAuthentication();
   }
@@ -60,7 +42,7 @@ class UserRepository {
   Future<bool> checkAppAuthentication() async {
     return authenticationProvider.checkAppAuthentication(
       currentAppAuthentication.server,
-      currentAppAuthentication.basicAuth,
+      currentAppAuthentication.appPassword,
       isSelfSignedCertificate: currentAppAuthentication.isSelfSignedCertificate,
     );
   }

lib/src/services/user_repository.dart

@@ -1,5 +1,6 @@
 import 'package:cached_network_image/cached_network_image.dart';
 import 'package:flutter/material.dart';
+import 'package:nextcloud_cookbook_flutter/src/models/app_authentication.dart';
 import 'package:nextcloud_cookbook_flutter/src/services/services.dart';
 
 class UserImage extends StatelessWidget {
@@ -10,15 +11,15 @@ class UserImage extends StatelessWidget {
   @override
   Widget build(BuildContext context) {
     final url = DataRepository().getUserAvatarUrl();
-    final appAuthentication = UserRepository().currentAppAuthentication;
+    final auth = UserRepository().currentAppAuthentication;
 
     return CircleAvatar(
       backgroundColor: Colors.grey[400],
       child: ClipOval(
         child: CachedNetworkImage(
           fit: BoxFit.fill,
           httpHeaders: {
-            'Authorization': appAuthentication.basicAuth,
+            'Authorization': AppAuthentication.parsePassword(auth.loginName, auth.appPassword),
             'Accept': 'image/jpeg'
           },
           imageUrl: url,