jami/jami-daemon
1
0
Fork 0
mirror of https://git.jami.net/savoirfairelinux/jami-daemon.git synced 2025-08-12 22:09:25 +08:00
Code Issues Projects Releases Wiki Activity
Files
c1519ba4ec23cca2c2ba5a2dfdc5aed3e18006ea
jami-daemon/src/jamidht/jamiaccount_config.cpp
Adrien Béraud c1519ba4ec AccountArchive: allow to unlock with raw key instead of password 
Change-Id: Ic8b28a32f64862ac2dfae074d06f4eac470ab7e1
2024-01-02 17:18:06 -05:00

224 lines
11 KiB
C++
Raw Blame History

/*
* Copyright (C) 2004-2023 Savoir-faire Linux Inc.
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 3, or (at your option)
* any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; if not, see <https://www.gnu.org/licenses/>.
*/
#include "jamiaccount_config.h"
#include "account_const.h"
#include "account_schema.h"
#include "configkeys.h"
#include "fileutils.h"
#include "config/account_config_utils.h"
namespace jami {
namespace Conf {
constexpr const char* const TLS_KEY = "tls";
constexpr const char* CERTIFICATE_KEY = "certificate";
constexpr const char* CALIST_KEY = "calist";
const char* const TLS_PASSWORD_KEY = "password";
const char* const PRIVATE_KEY_KEY = "privateKey";
} // namespace Conf
static const JamiAccountConfig DEFAULT_CONFIG {};
void
JamiAccountConfig::serialize(YAML::Emitter& out) const
{
out << YAML::BeginMap;
SipAccountBaseConfig::serializeDiff(out, DEFAULT_CONFIG);
SERIALIZE_CONFIG(Conf::DHT_PORT_KEY, dhtPort);
SERIALIZE_CONFIG(Conf::DHT_PUBLIC_IN_CALLS, allowPublicIncoming);
SERIALIZE_CONFIG(Conf::DHT_ALLOW_PEERS_FROM_HISTORY, allowPeersFromHistory);
SERIALIZE_CONFIG(Conf::DHT_ALLOW_PEERS_FROM_CONTACT, allowPeersFromContact);
SERIALIZE_CONFIG(Conf::DHT_ALLOW_PEERS_FROM_TRUSTED, allowPeersFromTrusted);
SERIALIZE_CONFIG(libjami::Account::ConfProperties::DHT_PEER_DISCOVERY, dhtPeerDiscovery);
SERIALIZE_CONFIG(libjami::Account::ConfProperties::ACCOUNT_PEER_DISCOVERY, accountPeerDiscovery);
SERIALIZE_CONFIG(libjami::Account::ConfProperties::ACCOUNT_PUBLISH, accountPublish);
SERIALIZE_CONFIG(Conf::PROXY_ENABLED_KEY, proxyEnabled);
SERIALIZE_CONFIG(Conf::PROXY_SERVER_KEY, proxyServer);
SERIALIZE_CONFIG(libjami::Account::ConfProperties::DHT_PROXY_LIST_URL, proxyListUrl);
SERIALIZE_CONFIG(libjami::Account::ConfProperties::RingNS::URI, nameServer);
SERIALIZE_CONFIG(libjami::Account::VolatileProperties::REGISTERED_NAME, registeredName);
SERIALIZE_PATH(libjami::Account::ConfProperties::ARCHIVE_PATH, archivePath);
SERIALIZE_CONFIG(libjami::Account::ConfProperties::ARCHIVE_HAS_PASSWORD, archiveHasPassword);
SERIALIZE_CONFIG(libjami::Account::ConfProperties::DEVICE_NAME, deviceName);
SERIALIZE_CONFIG(libjami::Account::ConfProperties::MANAGER_URI, managerUri);
SERIALIZE_CONFIG(libjami::Account::ConfProperties::MANAGER_USERNAME, managerUsername);
out << YAML::Key << Conf::RING_ACCOUNT_RECEIPT << YAML::Value << receipt;
if (receiptSignature.size() > 0)
out << YAML::Key << Conf::RING_ACCOUNT_RECEIPT_SIG << YAML::Value
<< YAML::Binary(receiptSignature.data(), receiptSignature.size());
// tls submap
out << YAML::Key << Conf::TLS_KEY << YAML::Value << YAML::BeginMap;
SERIALIZE_PATH(Conf::CALIST_KEY, tlsCaListFile);
SERIALIZE_PATH(Conf::CERTIFICATE_KEY, tlsCertificateFile);
SERIALIZE_CONFIG(Conf::TLS_PASSWORD_KEY, tlsPassword);
SERIALIZE_PATH(Conf::PRIVATE_KEY_KEY, tlsPrivateKeyFile);
out << YAML::EndMap;
out << YAML::EndMap;
}
void
JamiAccountConfig::unserialize(const YAML::Node& node)
{
using yaml_utils::parseValueOptional;
using yaml_utils::parsePathOptional;
SipAccountBaseConfig::unserialize(node);
// get tls submap
try {
const auto& tlsMap = node[Conf::TLS_KEY];
parsePathOptional(tlsMap, Conf::CERTIFICATE_KEY, tlsCertificateFile, path);
parsePathOptional(tlsMap, Conf::CALIST_KEY, tlsCaListFile, path);
parseValueOptional(tlsMap, Conf::TLS_PASSWORD_KEY, tlsPassword);
parsePathOptional(tlsMap, Conf::PRIVATE_KEY_KEY, tlsPrivateKeyFile, path);
} catch (...) {
}
parseValueOptional(node, Conf::DHT_ALLOW_PEERS_FROM_HISTORY, allowPeersFromHistory);
parseValueOptional(node, Conf::DHT_ALLOW_PEERS_FROM_CONTACT, allowPeersFromContact);
parseValueOptional(node, Conf::DHT_ALLOW_PEERS_FROM_TRUSTED, allowPeersFromTrusted);
parseValueOptional(node, Conf::PROXY_ENABLED_KEY, proxyEnabled);
parseValueOptional(node, Conf::PROXY_SERVER_KEY, proxyServer);
parseValueOptional(node, libjami::Account::ConfProperties::DHT_PROXY_LIST_URL, proxyListUrl);
parseValueOptional(node, libjami::Account::ConfProperties::DEVICE_NAME, deviceName);
parseValueOptional(node, libjami::Account::ConfProperties::MANAGER_URI, managerUri);
parseValueOptional(node, libjami::Account::ConfProperties::MANAGER_USERNAME, managerUsername);
parsePathOptional(node, libjami::Account::ConfProperties::ARCHIVE_PATH, archivePath, path);
parseValueOptional(node,
libjami::Account::ConfProperties::ARCHIVE_HAS_PASSWORD,
archiveHasPassword);
try {
parseValueOptional(node, Conf::RING_ACCOUNT_RECEIPT, receipt);
auto receipt_sig = node[Conf::RING_ACCOUNT_RECEIPT_SIG].as<YAML::Binary>();
receiptSignature = {receipt_sig.data(), receipt_sig.data() + receipt_sig.size()};
} catch (const std::exception& e) {
JAMI_WARN("can't read receipt: %s", e.what());
}
parseValueOptional(node, libjami::Account::ConfProperties::DHT_PEER_DISCOVERY, dhtPeerDiscovery);
parseValueOptional(node,
libjami::Account::ConfProperties::ACCOUNT_PEER_DISCOVERY,
accountPeerDiscovery);
parseValueOptional(node, libjami::Account::ConfProperties::ACCOUNT_PUBLISH, accountPublish);
parseValueOptional(node, libjami::Account::ConfProperties::RingNS::URI, nameServer);
parseValueOptional(node, libjami::Account::VolatileProperties::REGISTERED_NAME, registeredName);
parseValueOptional(node, Conf::DHT_PUBLIC_IN_CALLS, allowPublicIncoming);
}
std::map<std::string, std::string>
JamiAccountConfig::toMap() const
{
std::map<std::string, std::string> a = SipAccountBaseConfig::toMap();
a.emplace(Conf::CONFIG_DHT_PORT, std::to_string(dhtPort));
a.emplace(Conf::CONFIG_DHT_PUBLIC_IN_CALLS, allowPublicIncoming ? TRUE_STR : FALSE_STR);
a.emplace(libjami::Account::ConfProperties::DHT_PEER_DISCOVERY,
dhtPeerDiscovery ? TRUE_STR : FALSE_STR);
a.emplace(libjami::Account::ConfProperties::ACCOUNT_PEER_DISCOVERY,
accountPeerDiscovery ? TRUE_STR : FALSE_STR);
a.emplace(libjami::Account::ConfProperties::ACCOUNT_PUBLISH,
accountPublish ? TRUE_STR : FALSE_STR);
a.emplace(libjami::Account::ConfProperties::DEVICE_NAME, deviceName);
a.emplace(libjami::Account::ConfProperties::Presence::SUPPORT_SUBSCRIBE, TRUE_STR);
if (not archivePath.empty() or not managerUri.empty())
a.emplace(libjami::Account::ConfProperties::ARCHIVE_HAS_PASSWORD,
archiveHasPassword ? TRUE_STR : FALSE_STR);
a.emplace(Conf::CONFIG_TLS_CA_LIST_FILE, fileutils::getFullPath(path, tlsCaListFile).string());
a.emplace(Conf::CONFIG_TLS_CERTIFICATE_FILE,
fileutils::getFullPath(path, tlsCertificateFile).string());
a.emplace(Conf::CONFIG_TLS_PRIVATE_KEY_FILE,
fileutils::getFullPath(path, tlsPrivateKeyFile).string());
a.emplace(Conf::CONFIG_TLS_PASSWORD, tlsPassword);
a.emplace(libjami::Account::ConfProperties::ALLOW_CERT_FROM_HISTORY,
allowPeersFromHistory ? TRUE_STR : FALSE_STR);
a.emplace(libjami::Account::ConfProperties::ALLOW_CERT_FROM_CONTACT,
allowPeersFromContact ? TRUE_STR : FALSE_STR);
a.emplace(libjami::Account::ConfProperties::ALLOW_CERT_FROM_TRUSTED,
allowPeersFromTrusted ? TRUE_STR : FALSE_STR);
a.emplace(libjami::Account::ConfProperties::PROXY_ENABLED, proxyEnabled ? TRUE_STR : FALSE_STR);
a.emplace(libjami::Account::ConfProperties::PROXY_SERVER, proxyServer);
a.emplace(libjami::Account::ConfProperties::DHT_PROXY_LIST_URL, proxyListUrl);
a.emplace(libjami::Account::ConfProperties::MANAGER_URI, managerUri);
a.emplace(libjami::Account::ConfProperties::MANAGER_USERNAME, managerUsername);
#if HAVE_RINGNS
a.emplace(libjami::Account::ConfProperties::RingNS::URI, nameServer);
#endif
return a;
}
void
JamiAccountConfig::fromMap(const std::map<std::string, std::string>& details)
{
SipAccountBaseConfig::fromMap(details);
// TLS
parsePath(details, Conf::CONFIG_TLS_CA_LIST_FILE, tlsCaListFile, path);
parsePath(details, Conf::CONFIG_TLS_CERTIFICATE_FILE, tlsCertificateFile, path);
parsePath(details, Conf::CONFIG_TLS_PRIVATE_KEY_FILE, tlsPrivateKeyFile, path);
parseString(details, Conf::CONFIG_TLS_PASSWORD, tlsPassword);
if (hostname.empty())
hostname = DHT_DEFAULT_BOOTSTRAP;
parseString(details, libjami::Account::ConfProperties::BOOTSTRAP_LIST_URL, bootstrapListUrl);
parseInt(details, Conf::CONFIG_DHT_PORT, dhtPort);
parseBool(details, Conf::CONFIG_DHT_PUBLIC_IN_CALLS, allowPublicIncoming);
parseBool(details, libjami::Account::ConfProperties::DHT_PEER_DISCOVERY, dhtPeerDiscovery);
parseBool(details,
libjami::Account::ConfProperties::ACCOUNT_PEER_DISCOVERY,
accountPeerDiscovery);
parseBool(details, libjami::Account::ConfProperties::ACCOUNT_PUBLISH, accountPublish);
parseBool(details,
libjami::Account::ConfProperties::ALLOW_CERT_FROM_HISTORY,
allowPeersFromHistory);
parseBool(details,
libjami::Account::ConfProperties::ALLOW_CERT_FROM_CONTACT,
allowPeersFromContact);
parseBool(details,
libjami::Account::ConfProperties::ALLOW_CERT_FROM_TRUSTED,
allowPeersFromTrusted);
parseString(details, libjami::Account::ConfProperties::MANAGER_URI, managerUri);
parseString(details, libjami::Account::ConfProperties::MANAGER_USERNAME, managerUsername);
// parseString(details, libjami::Account::ConfProperties::USERNAME, username);
parseString(details, libjami::Account::ConfProperties::ARCHIVE_PASSWORD, archive_password);
parseString(details, libjami::Account::ConfProperties::ARCHIVE_PASSWORD_SCHEME, archive_password_scheme);
parseString(details, libjami::Account::ConfProperties::ARCHIVE_PIN, archive_pin);
std::transform(archive_pin.begin(), archive_pin.end(), archive_pin.begin(), ::toupper);
parseString(details, libjami::Account::ConfProperties::ARCHIVE_PATH, archive_path);
parseString(details, libjami::Account::ConfProperties::DEVICE_NAME, deviceName);
auto oldProxyServer = proxyServer, oldProxyServerList = proxyListUrl;
parseString(details, libjami::Account::ConfProperties::DHT_PROXY_LIST_URL, proxyListUrl);
parseBool(details, libjami::Account::ConfProperties::PROXY_ENABLED, proxyEnabled);
parseString(details, libjami::Account::ConfProperties::PROXY_SERVER, proxyServer);
parseString(details, libjami::Account::ConfProperties::UI_CUSTOMIZATION, uiCustomization);
if (not managerUri.empty() and managerUri.rfind("http", 0) != 0) {
managerUri = "https://" + managerUri;
}
#if HAVE_RINGNS
parseString(details, libjami::Account::ConfProperties::RingNS::URI, nameServer);
#endif
}
} // namespace jami
Reference in New Issue View Git Blame Copy Permalink