Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat(intel-security): Add com-intel-security-cordova-plugin Support #1256

Merged
merged 10 commits into from
Mar 27, 2017
Merged

feat(intel-security): Add com-intel-security-cordova-plugin Support #1256

Changes from 5 commits
Commits
Show all changes
10 commits
Select commit Hold shift + click to select a range
ed40d15
Initial plugin pass
Mar 24, 2017
e30d03c
Remove unneeded imports, or else plugins will not build.
Mar 24, 2017
b4eb6af
Add try-catch blocks.
Mar 24, 2017
6b2f302
handle missing intel variable.
Mar 24, 2017
21bb1c1
Add documentation
eric-horodyski Mar 25, 2017
53a64f9
Conform to Cordova decorators.
eric-horodyski Mar 26, 2017
72e0d71
Add IntelSecurityDataOptions
Mar 27, 2017
81134f6
Update plugin to use plain `return` method statements.
Mar 27, 2017
14f469b
Merge branch 'master' of https://github.com/driftyco/ionic-native int…
Mar 27, 2017
d60fdb7
Better conform to Ionic Native
Mar 27, 2017
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
248 changes: 248 additions & 0 deletions src/@ionic-native/plugins/intel-security/index.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,248 @@
import { Plugin } from '@ionic-native/core';
import { Injectable } from '@angular/core';

declare var window: any;
declare var intel: any;

/**
* @name Intel Security
* @description
* The App Security API enables the use of security properties and capabilities on the platform, using a new set of API defined for application developers. You are not required to be a security expert to make good use of the API. Key elements, such as encryption of data and establishments of capabilities, is abstracted and done by the API implementation, for you.
*
* For example:
* - Use the API to store (E.g. cache) data locally, using the device non-volatile storage. Data protection/encryption will be done for you by the API implementation
* - Establish a connection with remote server (E.g. XHR) using a protected channel. SSL/TLS establishment and usage will be done for you by the API implementation
*
* For more information please visit the [API documentation](https://software.intel.com/en-us/app-security-api/api).
*
* @usage
* ```
* import { IntelSecurity } from '@ionic-native/intel-security';
* ...
* constructor(private intelSecurity: IntelSecurity) { }
* ...
*
* let storageID = 'id';
*
* this.intelSecurity.data.createFromData('Sample Data')
* .then((instanceID: any) => this.IntelSecurity.storage.write(id, instanceID))
* .catch((error: any) => console.log(error));
*
* this.intelSecurity.storage.read(storageID)
* .then(this.intelSecurity.data.getData)
* .then((data: string) => console.log(data)) // Resolves to 'Sample Data'
* .catch((error: any) => console.log(error));
*
* this.intelSecurity.storage.delete(storageID)
* .then(() => console.log('Deleted Successfully'))
* .catch((error: any) => console.log(error));
*
* ```
*/
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Add the following

* @classes
* IntelSecurityData 
* IntelSecurityStorage

@Plugin({
pluginName: 'IntelSecurity',
plugin: 'com-intel-security-cordova-plugin',
pluginRef: 'intel.security',
repo: 'https://github.com/AppSecurityApi/com-intel-security-cordova-plugin'
})
@Injectable()
export class IntelSecurity {

public storage: IntelSecurityStorage;
public data: IntelSecurityData;

constructor() {
this.storage = new IntelSecurityStorage();
this.data = new IntelSecurityData();

try {
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Remove these 5 lines as they are not needed.

if (!window.intel)
throw true;
} catch (e) {
console.warn('Native: Intel App Security API is not installed or you are running on a browser.');
}
}
}

/**
* @hidden
*/
export class IntelSecurityData {
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

You can add another @Plugin() tag here with a different pluginRef and no repo property. You can also make it injectable if you think that's a better way to do it.

If you make it Injectable. Then the class above should be empty and only used for documentation purposes.

Apply this fix to the class below as well.


/**
* This creates a new instance of secure data using plain-text data.
* @param id {string} Storage resource identifier.
* @returns {Promise<any>} Returns a Promise that resolves with the instanceID of the created data instance, or rejects with an error.
*/
createFromData(data: string): Promise<any> {
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

After making the changes I mentioned above, you can remove the if (!window.intel) ... check and add the regular @Cordova decorator.

Apply this fix to all methods below.

if (!window.intel) {
return Promise.reject(console.warn('Native: tried calling IntelSecurity.data.createFromData, but Intel App Security API is not available. Make sure to run in a device/simulator.'));
}
return intel.security.secureData.createFromData({ data: data });
}

/**
* This creates a new instance of secure data (using sealed data)
* @param sealedData {string} Sealed data in string format.
* @returns {Promise<any>} Returns a Promise that resolves with the instanceID of the created data instance, or rejects with an error.
*/
createFromSealedData(sealedData: string): Promise<any> {
if (!window.intel) {
return Promise.reject(console.warn('Native: tried calling IntelSecurity.data.createFromSealedData, but Intel App Security API is not available. Make sure to run in a device/simulator.'));
}
return intel.security.secureData.createFromSealedData({ sealedData: sealedData });
}

/**
* This returns the plain-text data of the secure data instance.
* @param instanceID {any} Secure data instance ID.
* @returns {Promise<string>} Returns a Promise that resolves to the data as plain-text, or rejects with an error.
*/
getData(instanceID: any): Promise<string> {
if (!window.intel) {
return Promise.reject(console.warn('Native: tried calling IntelSecurity.data.getData, but Intel App Security API is not available. Make sure to run in a device/simulator.'));
}
return intel.security.secureData.getData(instanceID);
}

/**
* This returns the sealed chunk of a secure data instance.
* @param instanceID {any} Secure data instance ID.
* @returns {Promise<any>} Returns a Promise that resolves to the sealed data, or rejects with an error.
*/
getSealedData(instanceID: any): Promise<any> {
if (!window.intel) {
return Promise.reject(console.warn('Native: tried calling IntelSecurity.data.getSealedData, but Intel App Security API is not available. Make sure to run in a device/simulator.'));
}
return intel.security.secureData.getSealedData(instanceID);
}

/**
* This returns the tag of the secure data instance.
* @param instanceID {any} Secure data instance ID.
* @returns {Promise<string>} Returns a Promise that resolves to the tag, or rejects with an error.
*/
getTag(instanceID: any): Promise<string> {
if (!window.intel) {
return Promise.reject(console.warn('Native: tried calling IntelSecurity.data.getTag, but Intel App Security API is not available. Make sure to run in a device/simulator.'));
}
return intel.security.secureData.getTag(instanceID);
}

/**
* This returns the data policy of the secure data instance.
* @param instanceID {any} Secure data instance ID.
* @returns {Promise<any> Returns a promise that resolves to the policy object, or rejects with an error.
*/
getPolicy(instanceID: any): Promise<any> {
if (!window.intel) {
return Promise.reject(console.warn('Native: tried calling IntelSecurity.data.getPolicy, but Intel App Security API is not available. Make sure to run in a device/simulator.'));
}
return intel.security.secureData.getPolicy(instanceID);
}

/**
* This returns an array of the data owners unique IDs.
* @param instanceID {any} Secure data instance ID.
* @returns {Promise<Array>} Returns a promise that resolves to an array of owners' unique IDs, or rejects with an error.
*/
getOwners(instanceID: any): Promise<Array<any>> {
if (!window.intel) {
return Promise.reject(console.warn('Native: tried calling IntelSecurity.data.getOwners, but Intel App Security API is not available. Make sure to run in a device/simulator.'));
}
return intel.security.secureData.getOwners(instanceID);
}

/**
* This returns the data creator unique ID.
* @param instanceID {any} Secure data instance ID.
* @returns {Promise<Number>} Returns a promsie that resolves to the creator's unique ID, or rejects with an error.
*/
getCreator(instanceID: any): Promise<Number> {
if (!window.intel) {
return Promise.reject(console.warn('Native: tried calling IntelSecurity.data.getCreator, but Intel App Security API is not available. Make sure to run in a device/simulator.'));
}
return intel.security.secureData.getCreator(instanceID);
}

/**
* This returns an array of the trusted web domains of the secure data instance.
* @param instanceID {any} Secure data instance ID.
* @returns {Promise<Array>} Returns a promise that resolves to a list of web owners, or rejects with an error.
*/
getWebOwners(instanceID: any): Promise<Array<any>> {
if (!window.intel) {
return Promise.reject(console.warn('Native: tried calling IntelSecurity.data.getWebOwners, but Intel App Security API is not available. Make sure to run in a device/simulator.'));
}
return intel.security.secureData.getWebOwners(instanceID);
}

/**
* This changes the extra key of a secure data instance. To successfully replace the extra key, the calling application must have sufficient access to the plain-text data.
* @param instanceID {any} Secure data instance ID.
* @param extraKey {Number} Extra sealing secret for secure data instance.
* @returns {Promise<any>} Returns a promise that resolves with no parameters, or rejects with an error.
*/
changeExtraKey(instanceID: any, extraKey: Number): Promise<any> {
if (!window.intel) {
return Promise.reject(console.warn('Native: tried calling IntelSecurity.data.changeExtraKey, but Intel App Security API is not available. Make sure to run in a device/simulator.'));
}
return intel.security.secureData.changeExtraKey({ instanceID: instanceID, extraKey: extraKey });
}

/**
* This releases a secure data instance.
* @param instanceID {any} Secure data instance ID.
* @returns {Promise<any>} Returns a promise that resovles with no parameters, or rejects with an error.
*/
destroy(instanceID: any): Promise<any> {
if (!window.intel) {
return Promise.reject(console.warn('Native: tried calling IntelSecurity.data.destroy, but Intel App Security API is not available. Make sure to run in a device/simulator.'));
}
return intel.security.secureData.destroy(instanceID);
}

}

/**
* @hidden
*/
export class IntelSecurityStorage {

/**
* This deletes a secure storage resource (indicated by id).
* @param id {string} Storage resource identifier.
* @returns {Promise<any>} Returns a Promise that resolves with no parameters, or rejects with an error.
*/
delete(id: string): Promise<any> {
if (!window.intel) {
return Promise.reject(console.warn('Native: tried calling IntelSecurity.storage.delete, but Intel App Security API is not available. Make sure to run in a device/simulator.'));
}
return intel.security.secureStorage.delete({ id: id });
}

/**
* This reads the data from secure storage (indicated by id) and creates a new secure data instance.
* @param id {string} Storage resource identifier.
* @returns {Promise<string>} Returns a Promise that resolved with the data as plain-text, or rejects with an error.
*/
read(id: string): Promise<string> {
if (!window.intel) {
return Promise.reject(console.warn('Native: tried calling IntelSecurity.storage.read, but Intel App Security API is not available. Make sure to run in a device/simulator.'));
}
return intel.security.secureStorage.read({ id: id });
}

/**
* This writes the data contained in a secure data instance into secure storage.
* @param id {string} Storage resource identifier.
* @param instanceID {number} Valid secure data instance ID
*/
write(id: string, instanceID: number): Promise<any> {
if (!window.intel) {
return Promise.reject(console.warn('Native: tried calling IntelSecurity.storage.write, but Intel App Security API is not available. Make sure to run in a device/simulator.'));
}
return intel.security.secureStorage.write({ id: id, instanceID: instanceID });
}

}