passforios/pass/PasswordStore.swift

//
//  PasswordStore.swift
//  pass
//
//  Created by Mingshen Sun on 19/1/2017.
//  Copyright © 2017 Bob Sun. All rights reserved.
//

import Foundation
import Result
import CoreData
import UIKit
import SwiftyUserDefaults
import ObjectiveGit

struct GitCredential {
    
    enum Credential {
        case http(userName: String, password: String)
        case ssh(userName: String, password: String, publicKeyFile: URL, privateKeyFile: URL)
    }
    
    var credential: Credential
    
    func credentialProvider() throws -> GTCredentialProvider {
        return GTCredentialProvider { (_, _, _) -> (GTCredential) in
            let credential: GTCredential?
            switch self.credential {
            case let .http(userName, password):
                print("username \(userName), password \(password)")
                credential = try? GTCredential(userName: userName, password: password)
            case let .ssh(userName, password, publicKeyFile, privateKeyFile):
                print("username \(userName), password \(password), publicKeyFile \(publicKeyFile), privateKeyFile \(privateKeyFile)")
                credential = try? GTCredential(userName: userName, publicKeyURL: publicKeyFile, privateKeyURL: privateKeyFile, passphrase: password)
            }
            return credential ?? GTCredential()
        }
    }
}

class PasswordStore {
    static let shared = PasswordStore()
    
    let storeURL = URL(fileURLWithPath: "\(Globals.shared.documentPath)/password-store")
    var storeRepository: GTRepository?
    var gitCredential: GitCredential?
    
    let pgp: ObjectivePGP = ObjectivePGP()
    
    let context = (UIApplication.shared.delegate as! AppDelegate).persistentContainer.viewContext

    
    private init() {
        do {
            try storeRepository = GTRepository.init(url: storeURL)
        } catch {
            print(error)
        }
        if Defaults[.pgpKeyID] != "" {
            pgp.importKeys(fromFile: Globals.shared.secringPath, allowDuplicates: false)
        }
        if Defaults[.gitRepositoryAuthenticationMethod] == "Password" {
            gitCredential = GitCredential(credential: GitCredential.Credential.http(userName: Defaults[.gitRepositoryUsername], password: Defaults[.gitRepositoryPassword]))
        } else if Defaults[.gitRepositoryAuthenticationMethod] == "SSH Key"{
            gitCredential = GitCredential(credential: GitCredential.Credential.ssh(userName: Defaults[.gitRepositoryUsername], password: Defaults[.gitRepositorySSHPrivateKeyPassphrase]!, publicKeyFile: Globals.shared.sshPublicKeyPath, privateKeyFile: Globals.shared.sshPrivateKeyPath))
        } else {
            gitCredential = nil
        }
        
    }
    
    func initPGP(pgpKeyURL: URL, pgpKeyLocalPath: String) -> Bool {
        do {
            let pgpData = try Data(contentsOf: pgpKeyURL)
            try pgpData.write(to: URL(fileURLWithPath: pgpKeyLocalPath), options: .atomic)
            pgp.importKeys(fromFile: pgpKeyLocalPath, allowDuplicates: false)
            let key = pgp.keys[0]
            Defaults[.pgpKeyID] = key.keyID!.shortKeyString
            if let gpgUser = key.users[0] as? PGPUser {
                Defaults[.pgpKeyUserID] = gpgUser.userID
            }
            return true
        } catch {
            print("error")
            return false
        }
    }
    
    
    func cloneRepository(remoteRepoURL: URL,
                         credential: GitCredential,
                         transferProgressBlock: @escaping (UnsafePointer<git_transfer_progress>, UnsafeMutablePointer<ObjCBool>) -> Void,
                         checkoutProgressBlock: @escaping (String?, UInt, UInt) -> Void) -> Bool {
        print("start cloning remote repo: \(remoteRepoURL)")
        let fm = FileManager.default
        if (storeRepository != nil) {
            print("remove item")
            do {
                try fm.removeItem(at: storeURL)
            } catch let error as NSError {
                print(error.debugDescription)
            }
        }
        do {
            print("start cloning...")
            let credentialProvider = try credential.credentialProvider()
            let options: [String: Any] = [
                GTRepositoryCloneOptionsCredentialProvider: credentialProvider,
            ]
            storeRepository = try GTRepository.clone(from: remoteRepoURL, toWorkingDirectory: storeURL, options: options, transferProgressBlock:transferProgressBlock, checkoutProgressBlock: checkoutProgressBlock)
            print("clone finish")
            updatePasswordEntityCoreData()
            gitCredential = credential
            return true
        } catch {
            print(error)
            return false
        }
    }
    
    func pullRepository(transferProgressBlock: @escaping (UnsafePointer<git_transfer_progress>, UnsafeMutablePointer<ObjCBool>) -> Void) -> Bool {
        print("pullRepoisitory")
        do {
            print("start pulling...")
            let credentialProvider = try gitCredential!.credentialProvider()
            let options: [String: Any] = [
                GTRepositoryRemoteOptionsCredentialProvider: credentialProvider
            ]
            let remote = try GTRemote(name: "origin", in: storeRepository!)
            try storeRepository?.pull((storeRepository?.currentBranch())!, from: remote, withOptions: options, progress: transferProgressBlock)
            updatePasswordEntityCoreData()
            return true
        } catch {
            print(error)
            return false
        }
    }
    
    func updatePasswordEntityCoreData() {
        let fetchRequest = NSFetchRequest<NSFetchRequestResult>(entityName: "PasswordEntity")
        let deleteRequest = NSBatchDeleteRequest(fetchRequest: fetchRequest)
        do {
            try context.execute(deleteRequest)
        } catch let error as NSError {
            print(error)
        }

        let fm = FileManager.default
        fm.enumerator(atPath: storeURL.path)?.forEach({ (e) in
            if let e = e as? String, let url = URL(string: e) {
                if url.pathExtension == "gpg" {
                    let entity = PasswordEntity(context: context)
                    let endIndex =  url.lastPathComponent.index(url.lastPathComponent.endIndex, offsetBy: -4)
                    entity.name = url.lastPathComponent.substring(to: endIndex)
                    entity.rawPath = "password-store/\(url.absoluteString)"
                }
            }
        })
        do {
            try context.save()
        } catch {
            print("Error with save: \(error)")
        }
    }
    
    func fetchPasswordEntityCoreData() -> [PasswordEntity] {
        let passwordEntityFetch = NSFetchRequest<NSFetchRequestResult>(entityName: "PasswordEntity")
        do {
            let fetchedPasswordEntities = try context.fetch(passwordEntityFetch) as! [PasswordEntity]
            return fetchedPasswordEntities.sorted(by: { (p1, p2) -> Bool in
                return p1.name! < p2.name!;
            })
        } catch {
            fatalError("Failed to fetch employees: \(error)")
        }
    }
    
    func updateRemoteRepo() {
    }
}
first commit 2017-01-19 21:15:47 +08:00			`//`
			`// PasswordStore.swift`
			`// pass`
			`//`
			`// Created by Mingshen Sun on 19/1/2017.`
			`// Copyright © 2017 Bob Sun. All rights reserved.`
			`//`

			`import Foundation`
			`import Result`
			`import CoreData`
			`import UIKit`
change a lot, the structure will be stable this time 2017-01-22 01:42:36 +08:00			`import SwiftyUserDefaults`
use ObjectiveGit instead of SwiftGit2 2017-01-23 16:29:36 +08:00			`import ObjectiveGit`
first commit 2017-01-19 21:15:47 +08:00
try to use username and password credential to clone repository 2017-01-24 01:49:55 +08:00			`struct GitCredential {`

			`enum Credential {`
			`case http(userName: String, password: String)`
			`case ssh(userName: String, password: String, publicKeyFile: URL, privateKeyFile: URL)`
			`}`

			`var credential: Credential`

			`func credentialProvider() throws -> GTCredentialProvider {`
			`return GTCredentialProvider { (_, _, _) -> (GTCredential) in`
			`let credential: GTCredential?`
			`switch self.credential {`
			`case let .http(userName, password):`
			`print("username \(userName), password \(password)")`
			`credential = try? GTCredential(userName: userName, password: password)`
			`case let .ssh(userName, password, publicKeyFile, privateKeyFile):`
fix bugs of ssh key authentication method 2017-01-31 22:54:58 +08:00			`print("username \(userName), password \(password), publicKeyFile \(publicKeyFile), privateKeyFile \(privateKeyFile)")`
try to use username and password credential to clone repository 2017-01-24 01:49:55 +08:00			`credential = try? GTCredential(userName: userName, publicKeyURL: publicKeyFile, privateKeyURL: privateKeyFile, passphrase: password)`
			`}`
			`return credential ?? GTCredential()`
			`}`
			`}`
			`}`

first commit 2017-01-19 21:15:47 +08:00			`class PasswordStore {`
			`static let shared = PasswordStore()`

change a lot, the structure will be stable this time 2017-01-22 01:42:36 +08:00			`let storeURL = URL(fileURLWithPath: "\(Globals.shared.documentPath)/password-store")`
use ObjectiveGit instead of SwiftGit2 2017-01-23 16:29:36 +08:00			`var storeRepository: GTRepository?`
fix bugs in the first startup 2017-02-02 15:02:57 +08:00			`var gitCredential: GitCredential?`
use ObjectiveGit instead of SwiftGit2 2017-01-23 16:29:36 +08:00
change a lot, the structure will be stable this time 2017-01-22 01:42:36 +08:00			`let pgp: ObjectivePGP = ObjectivePGP()`
first commit 2017-01-19 21:15:47 +08:00
			`let context = (UIApplication.shared.delegate as! AppDelegate).persistentContainer.viewContext`


			`private init() {`
use ObjectiveGit instead of SwiftGit2 2017-01-23 16:29:36 +08:00			`do {`
			`try storeRepository = GTRepository.init(url: storeURL)`
			`} catch {`
			`print(error)`
first commit 2017-01-19 21:15:47 +08:00			`}`
change a lot, the structure will be stable this time 2017-01-22 01:42:36 +08:00			`if Defaults[.pgpKeyID] != "" {`
			`pgp.importKeys(fromFile: Globals.shared.secringPath, allowDuplicates: false)`
			`}`
complete SSH Key authentication 2017-01-31 22:00:50 +08:00			`if Defaults[.gitRepositoryAuthenticationMethod] == "Password" {`
			`gitCredential = GitCredential(credential: GitCredential.Credential.http(userName: Defaults[.gitRepositoryUsername], password: Defaults[.gitRepositoryPassword]))`
fix bugs in the first startup 2017-02-02 15:02:57 +08:00			`} else if Defaults[.gitRepositoryAuthenticationMethod] == "SSH Key"{`
fix bug in git pull 2017-01-31 23:11:04 +08:00			`gitCredential = GitCredential(credential: GitCredential.Credential.ssh(userName: Defaults[.gitRepositoryUsername], password: Defaults[.gitRepositorySSHPrivateKeyPassphrase]!, publicKeyFile: Globals.shared.sshPublicKeyPath, privateKeyFile: Globals.shared.sshPrivateKeyPath))`
fix bugs in the first startup 2017-02-02 15:02:57 +08:00			`} else {`
			`gitCredential = nil`
complete SSH Key authentication 2017-01-31 22:00:50 +08:00			`}`
try to use username and password credential to clone repository 2017-01-24 01:49:55 +08:00
first commit 2017-01-19 21:15:47 +08:00			`}`

change a lot, the structure will be stable this time 2017-01-22 01:42:36 +08:00			`func initPGP(pgpKeyURL: URL, pgpKeyLocalPath: String) -> Bool {`
			`do {`
			`let pgpData = try Data(contentsOf: pgpKeyURL)`
			`try pgpData.write(to: URL(fileURLWithPath: pgpKeyLocalPath), options: .atomic)`
			`pgp.importKeys(fromFile: pgpKeyLocalPath, allowDuplicates: false)`
			`let key = pgp.keys[0]`
			`Defaults[.pgpKeyID] = key.keyID!.shortKeyString`
			`if let gpgUser = key.users[0] as? PGPUser {`
			`Defaults[.pgpKeyUserID] = gpgUser.userID`
			`}`
			`return true`
			`} catch {`
			`print("error")`
			`return false`
			`}`
			`}`


show transfer progress 2017-01-23 17:36:10 +08:00			`func cloneRepository(remoteRepoURL: URL,`
try to use username and password credential to clone repository 2017-01-24 01:49:55 +08:00			`credential: GitCredential,`
show transfer progress 2017-01-23 17:36:10 +08:00			`transferProgressBlock: @escaping (UnsafePointer<git_transfer_progress>, UnsafeMutablePointer<ObjCBool>) -> Void,`
			`checkoutProgressBlock: @escaping (String?, UInt, UInt) -> Void) -> Bool {`
try to use username and password credential to clone repository 2017-01-24 01:49:55 +08:00			`print("start cloning remote repo: \(remoteRepoURL)")`
first commit 2017-01-19 21:15:47 +08:00			`let fm = FileManager.default`
use ObjectiveGit instead of SwiftGit2 2017-01-23 16:29:36 +08:00			`if (storeRepository != nil) {`
first commit 2017-01-19 21:15:47 +08:00			`print("remove item")`
			`do {`
			`try fm.removeItem(at: storeURL)`
			`} catch let error as NSError {`
			`print(error.debugDescription)`
			`}`
			`}`
use ObjectiveGit instead of SwiftGit2 2017-01-23 16:29:36 +08:00			`do {`
show transfer progress 2017-01-23 17:36:10 +08:00			`print("start cloning...")`
try to use username and password credential to clone repository 2017-01-24 01:49:55 +08:00			`let credentialProvider = try credential.credentialProvider()`
			`let options: [String: Any] = [`
pull repository with credential 2017-01-24 16:57:16 +08:00			`GTRepositoryCloneOptionsCredentialProvider: credentialProvider,`
try to use username and password credential to clone repository 2017-01-24 01:49:55 +08:00			`]`
			`storeRepository = try GTRepository.clone(from: remoteRepoURL, toWorkingDirectory: storeURL, options: options, transferProgressBlock:transferProgressBlock, checkoutProgressBlock: checkoutProgressBlock)`
			`print("clone finish")`
use ObjectiveGit instead of SwiftGit2 2017-01-23 16:29:36 +08:00			`updatePasswordEntityCoreData()`
try to use username and password credential to clone repository 2017-01-24 01:49:55 +08:00			`gitCredential = credential`
use ObjectiveGit instead of SwiftGit2 2017-01-23 16:29:36 +08:00			`return true`
			`} catch {`
			`print(error)`
			`return false`
			`}`
			`}`
pull repository with credential 2017-01-24 16:57:16 +08:00
show transfer progress 2017-01-23 17:36:10 +08:00			`func pullRepository(transferProgressBlock: @escaping (UnsafePointer<git_transfer_progress>, UnsafeMutablePointer<ObjCBool>) -> Void) -> Bool {`
use ObjectiveGit instead of SwiftGit2 2017-01-23 16:29:36 +08:00			`print("pullRepoisitory")`
			`do {`
pull repository with credential 2017-01-24 16:57:16 +08:00			`print("start pulling...")`
fix bugs in the first startup 2017-02-02 15:02:57 +08:00			`let credentialProvider = try gitCredential!.credentialProvider()`
pull repository with credential 2017-01-24 16:57:16 +08:00			`let options: [String: Any] = [`
			`GTRepositoryRemoteOptionsCredentialProvider: credentialProvider`
			`]`
use ObjectiveGit instead of SwiftGit2 2017-01-23 16:29:36 +08:00			`let remote = try GTRemote(name: "origin", in: storeRepository!)`
pull repository with credential 2017-01-24 16:57:16 +08:00			`try storeRepository?.pull((storeRepository?.currentBranch())!, from: remote, withOptions: options, progress: transferProgressBlock)`
first commit 2017-01-19 21:15:47 +08:00			`updatePasswordEntityCoreData()`
			`return true`
use ObjectiveGit instead of SwiftGit2 2017-01-23 16:29:36 +08:00			`} catch {`
first commit 2017-01-19 21:15:47 +08:00			`print(error)`
			`return false`
			`}`
			`}`

			`func updatePasswordEntityCoreData() {`
			`let fetchRequest = NSFetchRequest<NSFetchRequestResult>(entityName: "PasswordEntity")`
			`let deleteRequest = NSBatchDeleteRequest(fetchRequest: fetchRequest)`
			`do {`
			`try context.execute(deleteRequest)`
			`} catch let error as NSError {`
			`print(error)`
			`}`

			`let fm = FileManager.default`
			`fm.enumerator(atPath: storeURL.path)?.forEach({ (e) in`
			`if let e = e as? String, let url = URL(string: e) {`
			`if url.pathExtension == "gpg" {`
			`let entity = PasswordEntity(context: context)`
exclude .gpg extension in password name 2017-01-23 17:53:49 +08:00			`let endIndex = url.lastPathComponent.index(url.lastPathComponent.endIndex, offsetBy: -4)`
			`entity.name = url.lastPathComponent.substring(to: endIndex)`
change a lot, the structure will be stable this time 2017-01-22 01:42:36 +08:00			`entity.rawPath = "password-store/\(url.absoluteString)"`
first commit 2017-01-19 21:15:47 +08:00			`}`
			`}`
			`})`
			`do {`
			`try context.save()`
			`} catch {`
			`print("Error with save: \(error)")`
			`}`
			`}`

			`func fetchPasswordEntityCoreData() -> [PasswordEntity] {`
			`let passwordEntityFetch = NSFetchRequest<NSFetchRequestResult>(entityName: "PasswordEntity")`
			`do {`
			`let fetchedPasswordEntities = try context.fetch(passwordEntityFetch) as! [PasswordEntity]`
sort fetched passwords by name 2017-01-23 17:49:06 +08:00			`return fetchedPasswordEntities.sorted(by: { (p1, p2) -> Bool in`
			`return p1.name! < p2.name!;`
			`})`
first commit 2017-01-19 21:15:47 +08:00			`} catch {`
			`fatalError("Failed to fetch employees: \(error)")`
			`}`
			`}`

			`func updateRemoteRepo() {`
			`}`
			`}`