Skip to content

Feat/seedless refresh token #5917

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 220 commits into
base: main
Choose a base branch
from
Open

Feat/seedless refresh token #5917

wants to merge 220 commits into from

Conversation

tuna1207
Copy link
Member

@tuna1207 tuna1207 commented Jun 4, 2025
edited
Loading

Explanation

Add refresh token and revoke refresh token handling to SeedlessOnboardingController

  • persist refresh token in state
  • store revoke token in vault
  • check for token expired in toprf call, refresh token and retry
  • revoke refresh token and replace with new one after password submit to prevent malicious use if refresh token leak in persisted state

References

Changelog

Checklist

  • I've updated the test suite for new or updated code as appropriate
  • I've updated documentation (JSDoc, Markdown, etc.) for new or updated code as appropriate
  • I've communicated my changes to consumers by updating changelogs for packages I've changed, highlighting breaking changes as necessary
  • I've prepared draft pull requests for clients and consumer packages to resolve any breaking changes

lwin-kyaw and others added 30 commits April 10, 2025 12:40
@lwin-kyaw
feat: init SeedlessOnboardingController
fe3f95c
@lwin-kyaw
feat: added optional vault Encryptor in constructor args
de16123
@lwin-kyaw
Merge remote-tracking branch 'origin/main' into feat/seedless-onboard…
65cb47a 
…ing-controller
@lwin-kyaw
feat: authenticate, createSeedPhraseBackup and fetchSeedPhraseBackup
6a30638
@lwin-kyaw
feat: changePassword
65a443d
@lwin-kyaw
feat: addMultiSrpBackup, batchAddBackup
4294696
@lwin-kyaw
lint: fixed lint
499bcc9
@lwin-kyaw
fix: updated CODEOWNERS
8ad9c24
@lwin-kyaw
added tgz package for TOPRF
611d358
@lwin-kyaw
lint: fixed
21df27b
@lwin-kyaw
updated changelog
c2bc7b4
@lwin-kyaw
fix: validate changelog
54e21b4
@lwin-kyaw
added PR number to changelog
999f1df
@lwin-kyaw
validate changelog
13da8a7
@lwin-kyaw
update: toprf-secure-backup package
94ba335
@lwin-kyaw
fix: export errors from controller
aaa9586
@chaitanyapotti @himanshuchawla009
Update packages/seedless-onboarding-controller/package.json
9137174 
Co-authored-by: himanshuchawla009 <[email protected]>
@chaitanyapotti @himanshuchawla009
Update packages/seedless-onboarding-controller/src/SeedlessOnboarding…
b9f9980 
…Controller.ts

Co-authored-by: himanshuchawla009 <[email protected]>
@chaitanyapotti @himanshuchawla009
Update packages/seedless-onboarding-controller/src/SeedlessOnboarding…
f3e8fed 
…Controller.ts

Co-authored-by: himanshuchawla009 <[email protected]>
@chaitanyapotti @himanshuchawla009
Update packages/seedless-onboarding-controller/src/SeedlessOnboarding…
acacda1 
…Controller.ts

Co-authored-by: himanshuchawla009 <[email protected]>
@chaitanyapotti @himanshuchawla009
Update packages/seedless-onboarding-controller/src/SeedlessOnboarding…
0f28440 
…Controller.ts

Co-authored-by: himanshuchawla009 <[email protected]>
@chaitanyapotti
fix: review comments regarding authenticate and default network
0677d52
@chaitanyapotti
Merge branch 'feat/seedless-onboarding-controller' of github.com:Meta…
8cc08fc 
…Mask/core into feat/seedless-onboarding-controller
@chaitanyapotti
fix: import of keccak256 + rename variables
334e060
@chaitanyapotti
fix: comment batchadd
cd62441
@lwin-kyaw
fix: lint
e7c66cd
@lwin-kyaw
Merge remote-tracking branch 'origin/main' into feat/seedless-onboard…
37d6821 
…ing-controller
@lwin-kyaw
fixed: build
b0ebb02
@lwin-kyaw
test: updated comment in jest.enviroment.js which defines 'webCrypto'
969053f
@lwin-kyaw
chore: updated comments for withPersistedSeedPhraseBackupsState method
caa3fef
lwin-kyaw and others added 18 commits May 30, 2025 01:48
@lwin-kyaw
docs: updated ChangeLog
4bd767a
@tuna1207
feat: handle refresh token logic
8536e06
@tuna1207
feat: fix eslint
a69bc83
@tuna1207
feat: sync latest password execute with refresh token
9b475a3
@tuna1207
chore: remove redundant import
f545879
@tuna1207
fix: update test
d7a67cb
@tuna1207
feat: handle revoke refresh token
ebe5129
@tuna1207
Merge branch 'main' into feat/seedless-refresh-token
d69faed
@tuna1207
feat: add execute with refresh token for recover password
63de572
@tuna1207
feat: update check is password outdated name and cache return
bace39f
@tuna1207
fix: correct skipLock param description
2fdcda6
@tuna1207
feat: correct assertIsAuthenticatedUser error and caller inside lock
08be49d
@tuna1207
feat: handle proactive token expire check
a0b20ca
@tuna1207
fix: remove unneeded import
d712fd1
@tuna1207
feat: correct refresh node auth token assert check
de2d264
@tuna1207
chore: update comment
70c99e6
@tuna1207
chore: correct comment for refreshToken in state
fa3b956
@tuna1207
feat: correct error for missing revoke token
bbd43ab
@tuna1207 tuna1207 requested a review from a team as a code owner June 4, 2025 10:21
@tuna1207 tuna1207 requested a review from a team as a code owner June 4, 2025 10:24
lwin-kyaw
lwin-kyaw reviewed Jun 5, 2025
View reviewed changes
packages/seedless-onboarding-controller/src/SeedlessOnboardingController.ts
@@ -109,6 +116,14 @@ const seedlessOnboardingMetadata: StateMetadata<SeedlessOnboardingControllerStat
persist: true,
anonymous: true,
},
refreshToken: {
persist: true,
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't think we should store the refreshToken in plain text

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Can this go inside the vault? We can decrypt and get it whenever we want.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@lwin-kyaw after discussing with @himanshuchawla009 we decided to go with this refresh token + revoke token approach since the checkIsPasswordOutdated call need to be checked when app is locked (vault is locked) so we need refreshToken outside vault
revokeToken is inside the vault and will be used to revoke refreshToken for new one (invalidate the old one) after user unlock the app

lwin-kyaw
lwin-kyaw reviewed Jun 5, 2025
View reviewed changes
packages/seedless-onboarding-controller/src/SeedlessOnboardingController.ts
persist: true,
anonymous: true,
},
revokeToken: {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Can this go inside the vault, too?

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@lwin-kyaw this is only temporarily stored in state (not persisted) for subsequent call to store in vault createToprfKeyAndBackupSeedPhrase, fetchAllSeedPhrases after authenticate
it's also cleared from temp state when app locked

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@lwin-kyaw lwin-kyaw lwin-kyaw left review comments

@chaitanyapotti chaitanyapotti Awaiting requested review from chaitanyapotti

@himanshuchawla009 himanshuchawla009 Awaiting requested review from himanshuchawla009

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@tuna1207 @lwin-kyaw @chaitanyapotti @ieow