Add support for system use notification

nuustik · nuustik · commit 4c4a3c1f4ee4 · 2022-02-04T14:10:43.000+02:00
diff --git a/README.rst b/README.rst
@@ -28,28 +28,65 @@ Before all examples, you need:
 Global API
 ~~~~~~~~~~
 
-studio.api.AuthRequest(userID, password)
-^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+studio.api.Request(systemName, applicationName, cdpVersion, systemUseNotification)
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
 
 - Arguments
 
-    userID - User id to authenticate.
+    systemName - System name the application belongs to.
 
-    password - Password to use for login.
+    applicationName - Application name.
+      
+    cdpVersion - CDP version the application is built with.
+      
+    systemUseNotification - System use notification message to ask for confirmation to continue.
+      
+- Returns
+
+    The created Request object.
+    
+Instance Methods / Request
+~~~~~~~~~~~~~~~~~~~~~~~~~~
+
+request.systemName()
+^^^^^^^^^^^^^^^^^^^^
+
+- Returns
+
+    System name the application belongs to.
+
+request.applicationName()
+^^^^^^^^^^^^^^^^^^^^^^^^^
+
+- Returns
+
+    Application name.
+
+request.cdpVersion()
+^^^^^^^^^^^^^^^^^^^^
+
+- Returns
+
+    CDP version the application is built with.
+
+request.systemUseNotification()
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
 
 - Returns
 
-    The created AuthRequest object with provided login data.
+    System use notification message to ask for confirmation to continue.
 
 
-studio.api.Client(uri)
-^^^^^^^^^^^^^^^^^^^^^^^
+studio.api.Client(uri, notificationListener)
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
 
 - Arguments
 
     uri - String containing the address and port of StudioAPI server separated by colon character
 
-    authenticate - Function authenticate(lastAttemptMessage) returning a Promise.<AuthRequest> containing userID and password for authentication
+    notificationListener - Object returning two functions: applicationAcceptanceRequested(studio.api.Request) and credentialsRequested(studio.api.Request). 
+      Function applicationAcceptanceRequested must return a Promise of void. Can be used to popup system use notification message and ask for confirmation to continue.
+      Function credentialsRequested must return a Promise of dictionary containing 'Username' and 'Password' as keys for authentication.
 
 - Returns
 
@@ -70,15 +107,24 @@ studio.api.Client(uri)
     
     .. code:: javascript
 
-        // Create client with authentication connected to uri provided in browser address bar.
-        // The authenticator is only called when page requires a login.
-        var authenticator =  function(loginMessage) {
+        // Create client with NotificationListener connected to uri provided in browser address bar.
+        // The NotificationListener is only called when page requires a login.
+        
+        class NotificationListener {
+          applicationAcceptanceRequested(request) {
             return new Promise(function(resolve, reject) {
-              //Do something to get username and password variables
-              resolve(new studio.api.AuthRequest(username, password));
+              window.confirm(request.systemUseNotification()) ? resolve() : reject();
             });
-        };
-        var client = new studio.api.Client(window.location.host, authenticator);
+          }
+
+          credentialsRequested(request) {
+            return new Promise(function(resolve, reject) {
+              resolve({Username: "cdpuser", Password: "cdpuser"});
+            });
+          }
+        }
+
+        var client = new studio.api.Client(window.location.host, new NotificationListener());
 
 
 Instance Methods / Client
diff --git a/index.js b/index.js
@@ -1,4 +1,4 @@
-import protobuf from 'protobufjs'
+import protobuf, { convertFieldsToCamelCase } from 'protobufjs'
 
 /**
  * The studio namespace.
@@ -140,35 +140,48 @@ studio.protocol = (function(ProtoBuf) {
     }.bind(this);
   }
 
-  function AuthHandler(socket, challenge, authenticate, onContainer, onError){
+  function AuthHandler(socket, hello, notificationListener, onContainer, onError){
     this.name = "AuthResponse";
+    let cdpVersion = hello.cdp_version_major + '.' + hello.cdp_version_minor + '.' + hello.cdp_version_patch
 
-    this.sendAuthRequest = function(lastAttemptErrorMessage = ""){
-      authenticate(lastAttemptErrorMessage).then(function(authRequest){
-        var credentials = new TextEncoder().encode(authRequest.userID.toLowerCase() + ':' + authRequest.password); // encode to utf-8 byte array
-        let authReq = new obj.AuthRequest();
-        authReq.user_id = authRequest.userID.toLowerCase();
-        var colon = new Int8Array([':'.charCodeAt(0)]);
-        crypto.subtle.digest('SHA-256', credentials.buffer)
-            .then(function(digest) {
-              let buffer = obj.appendBuffer(obj.appendBuffer(challenge, colon.buffer), digest);
-              crypto.subtle.digest('SHA-256', buffer)
-                  .then(function(challenge_digest) {
-                    let response = new obj.AuthRequestChallengeResponse();
-                    response.type = "PasswordHash";
-                    response.response = new Uint8Array(challenge_digest);
-                    authReq.challenge_response = new Array();
-                    authReq.challenge_response.push(response);
-                    socket.send(authReq.toArrayBuffer());
-                  })
-                  .catch(function(err) {
-                    console.error(err);
-                  });
-            })
-            .catch(function(err) {
-              console.error(err);
-            });
-      }).catch(function(){ console.log("Authentication cancelled") });
+    this.sendAuthRequest = function(){
+      let request = new studio.api.Request(hello.system_name, hello.application_name, cdpVersion, hello.system_use_notification);
+      let authReq = new obj.AuthRequest();
+      let applicationAccepted = {}
+
+      if (notificationListener && notificationListener.applicationAcceptanceRequested)
+        applicationAccepted = notificationListener.applicationAcceptanceRequested(request);
+      else
+        applicationAccepted = new Promise(function(resolve, reject) { window.confirm(hello.system_use_notification) ? resolve() : reject(); });
+
+      applicationAccepted
+        .then(function(){
+          return notificationListener.credentialsRequested(request)
+        })
+        .then(function(dict){
+          let username = dict.Username;
+          let password = dict.Password;
+          var credentials = new TextEncoder().encode(username.toLowerCase() + ':' + password); // encode to utf-8 byte array
+          authReq.user_id = username.toLowerCase();
+          return crypto.subtle.digest('SHA-256', credentials.buffer)
+        })
+        .then(function(digest) {
+          let challenge = hello.challenge.buffer.slice(hello.challenge.offset,hello.challenge.limit);
+          var colon = new Int8Array([':'.charCodeAt(0)]);
+          let buffer = obj.appendBuffer(obj.appendBuffer(challenge, colon.buffer), digest);
+          return crypto.subtle.digest('SHA-256', buffer)
+        })
+        .then(function(challenge_digest) {
+          let response = new obj.AuthRequestChallengeResponse();
+          response.type = "PasswordHash";
+          response.response = new Uint8Array(challenge_digest);
+          authReq.challenge_response = new Array();
+          authReq.challenge_response.push(response);
+          socket.send(authReq.toArrayBuffer());
+        })
+        .catch(function(){ 
+          console.log("Authentication cancelled.") 
+        });
     }.bind(this);
 
     this.handle = function(message){
@@ -189,13 +202,13 @@ studio.protocol = (function(ProtoBuf) {
       } else {
         console.log("Auth msg:" + authResponse.result_text + "\n");
         console.log("Unable to login with existing user, password.\n");
-        this.sendAuthRequest(authResponse.result_text);
+        this.sendAuthRequest(/*authResponse.result_text*/);
         return this;
       }
     }.bind(this);
   }
 
-  function HelloHandler(socket, authenticate, onContainer, onError){
+  function HelloHandler(socket, notificationListener, onContainer, onError){
     this.name = "Hello";
     this.handle = function(message){
       try {
@@ -207,14 +220,14 @@ studio.protocol = (function(ProtoBuf) {
       }
 
       if (hello.challenge) {
-        console.log(hello.challenge.buffer.slice(hello.challenge.offset,hello.challenge.limit));
-        if (!authenticate)
+        
+        if (!notificationListener || !notificationListener.credentialsRequested)
         {
-          console.log("No authenticate callback provided to studio.api.Client constructor. Can't authenticate connection!");
+          console.log("No notificationListener.credentialsRequested callback provided to studio.api.Client constructor. Can't authenticate connection!");
           return new ErrorHandler();
         }
 
-        let authHandler = new AuthHandler(socket, hello.challenge.buffer.slice(hello.challenge.offset,hello.challenge.limit), authenticate, onContainer, onError);
+        let authHandler = new AuthHandler(socket, hello, notificationListener, onContainer, onError);
         authHandler.sendAuthRequest();
         return authHandler;
       } else {
@@ -226,12 +239,12 @@ studio.protocol = (function(ProtoBuf) {
     };
   }
 
-  obj.Handler = function(socket, authenticate) {
+  obj.Handler = function(socket, notificationListener) {
     this.onContainer = undefined;
     this.onError = undefined;
     var onContainer = function(container) {(this.onContainer && this.onContainer(container));}.bind(this);
     var onError = function(){(this.onError && this.onError());}.bind(this);
-    var handler = new HelloHandler(socket, authenticate, onContainer, onError);
+    var handler = new HelloHandler(socket, notificationListener, onContainer, onError);
     this.handle = function(message){
       handler = handler.handle(message);
     };
@@ -447,13 +460,13 @@ studio.internal = (function(proto) {
     };
   }
 
-  obj.AppConnection = function(url, authenticate) {
+  obj.AppConnection = function(url, notificationListener) {
     var appConnection = this;
     var appName = "";
     var appId = undefined;
     var appUrl = (location.protocol=="https:" ? proto.WSS_PREFIX : proto.WS_PREFIX) + url;
     var socket = new WebSocket(appUrl);
-    var handler = new proto.Handler(socket, authenticate);
+    var handler = new proto.Handler(socket, notificationListener);
     var requests = [];
     var nodeMap = new Map();
     var systemNode = new AppNode(appConnection, proto.SYSTEM_NODE_ID);
@@ -521,7 +534,7 @@ studio.internal = (function(proto) {
       setTimeout(function () {
         console.log("REconnect timer");
         socket = new WebSocket(appUrl);
-        handler = new proto.Handler(socket, authenticate);
+        handler = new proto.Handler(socket, notificationListener);
         handler.onContainer = handleIncomingContainer;
         socket.binaryType = proto.BINARY_TYPE;
         socket.onopen = onOpen;
@@ -946,33 +959,32 @@ studio.api = (function(internal) {
 
   obj.structure = internal.structure;
 
-  /**
-   * Creates an instance of AuthRequest
-   *
-   * @param userID String user id to authenticate
-   * @param password String password to use
-   *
-   * @this AuthRequest
-   * @constructor
-   */
-  obj.AuthRequest = function(userID, password) {
-    var obj = {}
-    obj.userID = userID;
-    obj.password = password;
-    return obj;
+  obj.Request = function(systemName, applicationName, cdpVersion, systemUseNotification) {
+    this.systemName = function() {
+      return systemName;
+    }
+    this.applicationName = function() {
+      return applicationName;
+    }
+    this.cdpVersion = function() {
+      return cdpVersion;
+    }
+    this.systemUseNotification = function() {
+      return systemUseNotification;
+    }
   }
 
   /**
    * Creates an instance of Client
    *
    * @param studioURL String containing the address and port of StudioAPI server separated by colon character
-   * @param authenticate Function authenticate(lastAttemptMessage) returning a {Promise.<AuthRequest>} containing userID and password for authentication
+   * @param notificationListener Object returning two functions: applicationAcceptanceRequested(AuthRequest) and credentialsRequested(AuthRequest). Function credentialsRequested must return a Promise of dictionary containing 'Username' and 'Password' as keys for authentication.
    *
    * @this Client
    * @constructor
    */
-  obj.Client = function(studioURL, authenticate) {
-    var appConnection = new internal.AppConnection(studioURL, authenticate);
+  obj.Client = function(studioURL, notificationListener) {
+    var appConnection = new internal.AppConnection(studioURL, notificationListener);
 
     /**
      * Request root node.
@@ -1038,3 +1050,4 @@ studio.api = (function(internal) {
 })(studio.internal);
 
 export default studio
+
diff --git a/studioapi.proto b/studioapi.proto
@@ -1,10 +1,12 @@
 // This file describes the StudioAPI wire protocol. It can be compiled with
 // the Google Protobuf protoc compiler into native C++, Java, Python etc.
 
-// package StudioAPI.Proto;
+syntax = "proto2";
 
-// option optimize_for = LITE_RUNTIME;
-// option java_package = "no.icd.studioapi.proto";
+package StudioAPI.Proto;
+
+option optimize_for = LITE_RUNTIME;
+option java_package = "no.icd.studioapi.proto";
 
 /** Initial server connection response. */
 message Hello {
@@ -17,11 +19,13 @@ message Hello {
   optional uint32 cdp_version_major = 7;
   optional uint32 cdp_version_minor = 8;
   optional uint32 cdp_version_patch = 9;
+  optional uint32 idle_lockout_period = 10;
+  optional string system_use_notification = 11;
 }
 
 /** Server expects this response if it sent a auth_required true. */
 message AuthRequest {
-  optional string user_id = 1;
+  optional string user_id = 1; // case-insensitive (can be sent in any casing)
   message ChallengeResponse {
     optional string type = 1;
     optional bytes response = 2; // data corresponding to the type, eg. hash(challenge + password)
@@ -68,6 +72,9 @@ message Container {
     eCurrentTimeResponse = 8;
     eChildAddRequest = 9;
     eChildRemoveRequest = 10;
+    eReAuthRequest = 11;
+    eReAuthResponse = 12;
+    eActivityNotification = 13;
   }
   optional Type message_type = 1;
   optional Error error = 2;
@@ -80,6 +87,8 @@ message Container {
   optional uint64 current_time_response = 9;
   repeated ChildAdd child_add_request = 10;
   repeated ChildRemove child_remove_request = 11;
+  optional AuthRequest re_auth_request = 12;
+  optional AuthResponse re_auth_response = 13;
   extensions 100 to max;
 }
 
@@ -89,10 +98,14 @@ message Error {
   optional string text = 2;
   optional uint32 node_id = 3;
   optional string parameter = 4;
+  optional bytes challenge = 5; // new challenge for re-authentication, used with code = eAUTH_RESPONSE_EXPIRED
+  optional uint32 idle_lockout_period = 6; // updated value for idle lockout period, used with code = eAUTH_RESPONSE_EXPIRED
   extensions 100 to max;
 }
 
 enum RemoteErrorCode {
+  eAUTH_RESPONSE_EXPIRED = 1; // connection is in non-authenticated state (e.g. because of session inactivity timeout) -
+                              // full reconnect or new AuthRequest with ChallengeResponse is needed to continue
   eINVALID_REQUEST = 10;
   eUNSUPPORTED_CONTAINER_TYPE = 20;
   eVALUE_THROTTLING_OCCURRING = 30;
@@ -211,5 +224,8 @@ message ValueRequest {
   optional double fs = 2; // If present indicates that values expected no more often than provided FS rate
                           // (server will accumulate and time-stamp values if they occur more often)
   optional bool stop = 3; // If true target must stop updates on the provided values else this is start
+  optional double sample_rate = 4; // If non zero indicates that values should be
+                                   // sampled with given sampling rate frequency (samples/second)
+                                   // missing or zero means all samples must be provided
   extensions 100 to max;
 }
