/* setup.vala * * Copyright 2024 Erica Z * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU Affero General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU Affero General Public License for more details. * * You should have received a copy of the GNU Affero General Public License * along with this program. If not, see . * * SPDX-License-Identifier: AGPL-3.0-or-later */ [CCode (cname = "sqlite3_randomness")] public extern void randomness (int N, void *P); [GtkTemplate (ui = "/eu/callcc/Wavelet/setup.ui")] public class Wavelet.Setup : Adw.NavigationPage { public string status { get; private set; default = _("Not connected"); } public bool authn_can_edit { get; private set; default = true; } public bool authn_can_validate { get; private set; default = false; } public string server_url { get; set; default = ""; } public string username { get; set; default = ""; } public string password { get; set; default = ""; } public string token; public string salt; public signal void connected (Wavelet.Subsonic api); [GtkCallback] private void on_authn_changed () { this.authn_can_validate = true; } [GtkCallback] private void on_authn_validate_activated () { this.authn_can_validate = false; this.authn_can_edit = false; this.status = _("Connecting..."); string new_token, new_salt; if (this.password != "") { this.salt_password (this.password, out new_token, out new_salt); } else { new_token = this.token; new_salt = this.salt; } var api = new Wavelet.Subsonic.with_token ( this.server_url, this.username, new_token, new_salt); api.ping.begin ((obj, res) => { try { api.ping.end (res); this.status = _("Connected"); this.token = new_token; this.salt = new_salt; this.save (); this.connected (api); } catch (Error e) { this.status = @"$(_("Ping failed")): $(e.message)"; this.authn_can_validate = true; } this.authn_can_edit = true; }); } public void load (Sqlite.Database db) { Sqlite.Statement stmt; int rc; rc = db.prepare_v2 ("""SELECT value FROM Setup WHERE key IS ?1""", -1, out stmt); assert (rc == Sqlite.OK); stmt.bind_text (1, "server_url"); if (stmt.step () == Sqlite.ROW) { this.server_url = stmt.column_text (0); } else { this.server_url = ""; } assert (stmt.reset () == Sqlite.OK); stmt.bind_text (1, "username"); if (stmt.step () == Sqlite.ROW) { this.username = stmt.column_text (0); } else { this.username = ""; } assert (stmt.reset () == Sqlite.OK); stmt.bind_text (1, "token"); if (stmt.step () == Sqlite.ROW) { this.token = stmt.column_text (0); } else { this.token = ""; } assert (stmt.reset () == Sqlite.OK); stmt.bind_text (1, "salt"); if (stmt.step () == Sqlite.ROW) { this.salt = stmt.column_text (0); } else { this.salt = ""; } assert (stmt.reset () == Sqlite.OK); this.password = ""; // first connection this.authn_can_validate = true; this.on_authn_validate_activated (); } private void salt_password (string password, out string token, out string salt) { uchar salt_bytes[8]; randomness (8, salt_bytes); uchar salt_chars[17]; for (int i = 0; i < 8; i += 1) { salt_chars[2*i+0] = "0123456789abcdef"[(salt_bytes[i]>>4)&0xf]; salt_chars[2*i+1] = "0123456789abcdef"[(salt_bytes[i]>>0)&0xf]; } salt_chars[16] = 0; var checksum = new Checksum (ChecksumType.MD5); checksum.update ((uchar[]) password, -1); checksum.update (salt_chars, 16); token = checksum.get_string (); salt = (string) salt_chars; } public void save () { Sqlite.Statement stmt; int rc; rc = config_db.prepare_v2 ("""INSERT OR REPLACE INTO Setup VALUES (?1, ?2)""", -1, out stmt); assert (rc == Sqlite.OK); stmt.bind_text (1, "server_url"); stmt.bind_text (2, this.server_url); assert (stmt.step () == Sqlite.DONE); assert (stmt.reset () == Sqlite.OK); stmt.bind_text (1, "username"); stmt.bind_text (2, this.username); assert (stmt.step () == Sqlite.DONE); assert (stmt.reset () == Sqlite.OK); stmt.bind_text (1, "token"); stmt.bind_text (2, this.token); assert (stmt.step () == Sqlite.DONE); assert (stmt.reset () == Sqlite.OK); stmt.bind_text (1, "salt"); stmt.bind_text (2, this.salt); assert (stmt.step () == Sqlite.DONE); assert (stmt.reset () == Sqlite.OK); this.password = ""; } }