pypush-plus-plus/ids/__init__.py

from base64 import b64encode
from getpass import getpass
import logging

import apns

from . import _helpers, identity, profile, query
from typing import Callable, Any

class IDSUser:
    # Sets self.user_id and self._auth_token
    def _authenticate_for_token(
        self, username: str, password: str, factor_callback: Callable | None = None
    ):
        self.user_id, self._auth_token = profile.get_auth_token(
            username, password, factor_callback
        )

    # Sets self._auth_keypair using self.user_id and self._auth_token
    def _authenticate_for_cert(self):
        self._auth_keypair = profile.get_auth_cert(self.user_id, self._auth_token)

    # Factor callback will be called if a 2FA code is necessary
    def __init__(
        self,
        push_connection: apns.APNSConnection,
    ):
        self.push_connection = push_connection
        self._push_keypair = _helpers.KeyPair(
            self.push_connection.credentials.private_key, self.push_connection.credentials.cert
        )
        # set the encryption_identity to a default randomized value so that
        # it's still valid if we can't pull it from the config
        self.encryption_identity: identity.IDSIdentity = identity.IDSIdentity()

        self.ec_key = self.rsa_key = None

    def __str__(self):
        return f"IDSUser(user_id={self.user_id}, handles={self.handles}, push_token={b64encode(self.push_connection.credentials.token).decode()})"

    # Authenticates with a username and password, to create a brand new authentication keypair
    def authenticate(
        self, username: str, password: str, factor_callback: Callable | None = None
    ):
        self._authenticate_for_token(username, password, factor_callback)
        self._authenticate_for_cert()
        self.handles = profile.get_handles(
            b64encode(self.push_connection.credentials.token),
            self.user_id,
            self._auth_keypair,
            self._push_keypair,
        )
        self.current_handle = self.handles[0]


    # Uses an existing authentication keypair
    def restore_authentication(
        self, auth_keypair: _helpers.KeyPair, user_id: str, handles: dict
    ):
        self._auth_keypair = auth_keypair
        self.user_id = user_id
        self.handles = handles 
        self.current_handle = self.handles[0]

    # This is a separate call so that the user can make sure the first part succeeds before asking for validation data
    def register(self, validation_data: str):
        """
        self.ec_key, self.rsa_key will be set to a randomly gnenerated EC and RSA keypair
        if they are not already set
        """
        cert = identity.register(
            b64encode(self.push_connection.credentials.token),
            self.handles,
            self.user_id,
            self._auth_keypair,
            self._push_keypair,
            self.encryption_identity,
            validation_data,
        )
        self._id_keypair = _helpers.KeyPair(self._auth_keypair.key, cert)

    def restore_identity(self, id_keypair: _helpers.KeyPair):
        self._id_keypair = id_keypair

    def auth_and_set_encryption_from_config(self, config: dict[str, dict[str, Any]]):

        auth = config.get("auth", {})
        if (
			((key := auth.get("key")) is not None) and
			((cert := auth.get("cert")) is not None) and
			((user_id := auth.get("user_id")) is not None) and
			((handles := auth.get("handles")) is not None)
		):
            auth_keypair = _helpers.KeyPair(key, cert)
            self.restore_authentication(auth_keypair, user_id, handles)
        else:
            username = input("Username: ")
            password = getpass("Password: ")

            self.authenticate(username, password)

        encryption: dict[str, str] = config.get("encryption", {})
        id: dict[str, str] = config.get("id", {})

        if (
            (rsa_key := encryption.get("rsa_key")) and
            (signing_key := encryption.get("ec_key")) and
            (cert := id.get("cert")) and
            (key := id.get("key"))
        ):
            self.encryption_identity = identity.IDSIdentity(
                encryption_key=rsa_key,
                signing_key=signing_key,
            )

            id_keypair = _helpers.KeyPair(key, cert)
            self.restore_identity(id_keypair)
        else:
            logging.info("Registering new identity...")
            import emulated.nac

            vd = emulated.nac.generate_validation_data()
            vd = b64encode(vd).decode()

            self.register(vd)

    async def lookup(self, uris: list[str], topic: str = "com.apple.madrid") -> Any:
        return await query.lookup(self.push_connection, self.current_handle, self._id_keypair, uris, topic)
starting the refactor 2023-05-09 14:36:33 -05:00			`from base64 import b64encode`
- Remove unused imports - extract idsuser authentication functionality to separate function so that it can be reused - add more typing hints to make lsp happier - access dictionary values more safely with walrus operator - simplify some list comprehension and iteration - print proxy errors in more detail so they're easier to debug - store apnsconnection in proxy so that we can use it to make a user and decrypt payloads if needed 2023-08-21 22:10:04 -05:00			`from getpass import getpass`
			`import logging`
remove old stuff, more refactoring 2023-05-09 16:03:27 -05:00
starting the refactor 2023-05-09 14:36:33 -05:00			`import apns`
remove old stuff, more refactoring 2023-05-09 16:03:27 -05:00
begin refactor 2023-07-27 10:04:57 -05:00			`from . import _helpers, identity, profile, query`
typing, async, kinda works most of the time 2023-08-17 20:14:44 -05:00			`from typing import Callable, Any`
starting the refactor 2023-05-09 14:36:33 -05:00
			`class IDSUser:`
more refactoring 2023-05-09 15:09:28 -05:00			`# Sets self.user_id and self._auth_token`
starting the refactor 2023-05-09 14:36:33 -05:00			`def _authenticate_for_token(`
typing, async, kinda works most of the time 2023-08-17 20:14:44 -05:00			`self, username: str, password: str, factor_callback: Callable \| None = None`
starting the refactor 2023-05-09 14:36:33 -05:00			`):`
use bags rather than hardcoded urls 2023-05-09 19:01:22 -05:00			`self.user_id, self._auth_token = profile.get_auth_token(`
starting the refactor 2023-05-09 14:36:33 -05:00			`username, password, factor_callback`
			`)`

more refactoring 2023-05-09 15:09:28 -05:00			`# Sets self._auth_keypair using self.user_id and self._auth_token`
starting the refactor 2023-05-09 14:36:33 -05:00			`def _authenticate_for_cert(self):`
use bags rather than hardcoded urls 2023-05-09 19:01:22 -05:00			`self._auth_keypair = profile.get_auth_cert(self.user_id, self._auth_token)`
starting the refactor 2023-05-09 14:36:33 -05:00
			`# Factor callback will be called if a 2FA code is necessary`
			`def __init__(`
			`self,`
			`push_connection: apns.APNSConnection,`
			`):`
			`self.push_connection = push_connection`
remove old stuff, more refactoring 2023-05-09 16:03:27 -05:00			`self._push_keypair = _helpers.KeyPair(`
typing, async, kinda works most of the time 2023-08-17 20:14:44 -05:00			`self.push_connection.credentials.private_key, self.push_connection.credentials.cert`
remove old stuff, more refactoring 2023-05-09 16:03:27 -05:00			`)`
- Remove unused imports - extract idsuser authentication functionality to separate function so that it can be reused - add more typing hints to make lsp happier - access dictionary values more safely with walrus operator - simplify some list comprehension and iteration - print proxy errors in more detail so they're easier to debug - store apnsconnection in proxy so that we can use it to make a user and decrypt payloads if needed 2023-08-21 22:10:04 -05:00			`# set the encryption_identity to a default randomized value so that`
			`# it's still valid if we can't pull it from the config`
			`self.encryption_identity: identity.IDSIdentity = identity.IDSIdentity()`
more refactoring 2023-05-09 15:09:28 -05:00
clean up some of the enc key stuff 2023-07-26 17:49:41 -05:00			`self.ec_key = self.rsa_key = None`

more refactoring 2023-05-09 15:09:28 -05:00			`def __str__(self):`
typing, async, kinda works most of the time 2023-08-17 20:14:44 -05:00			`return f"IDSUser(user_id={self.user_id}, handles={self.handles}, push_token={b64encode(self.push_connection.credentials.token).decode()})"`
remove old stuff, more refactoring 2023-05-09 16:03:27 -05:00
more refactoring 2023-05-09 15:09:28 -05:00			`# Authenticates with a username and password, to create a brand new authentication keypair`
remove old stuff, more refactoring 2023-05-09 16:03:27 -05:00			`def authenticate(`
typing, async, kinda works most of the time 2023-08-17 20:14:44 -05:00			`self, username: str, password: str, factor_callback: Callable \| None = None`
remove old stuff, more refactoring 2023-05-09 16:03:27 -05:00			`):`
starting the refactor 2023-05-09 14:36:33 -05:00			`self._authenticate_for_token(username, password, factor_callback)`
			`self._authenticate_for_cert()`
use bags rather than hardcoded urls 2023-05-09 19:01:22 -05:00			`self.handles = profile.get_handles(`
typing, async, kinda works most of the time 2023-08-17 20:14:44 -05:00			`b64encode(self.push_connection.credentials.token),`
starting the refactor 2023-05-09 14:36:33 -05:00			`self.user_id,`
			`self._auth_keypair,`
more refactoring 2023-05-09 15:09:28 -05:00			`self._push_keypair,`
starting the refactor 2023-05-09 14:36:33 -05:00			`)`
implement handle selection 2023-07-31 15:30:06 -05:00			`self.current_handle = self.handles[0]`

starting the refactor 2023-05-09 14:36:33 -05:00
more refactoring 2023-05-09 15:09:28 -05:00			`# Uses an existing authentication keypair`
remove old stuff, more refactoring 2023-05-09 16:03:27 -05:00			`def restore_authentication(`
			`self, auth_keypair: _helpers.KeyPair, user_id: str, handles: dict`
			`):`
more refactoring 2023-05-09 15:09:28 -05:00			`self._auth_keypair = auth_keypair`
			`self.user_id = user_id`
clean up some of the enc key stuff 2023-07-26 17:49:41 -05:00			`self.handles = handles`
bugfix 2023-07-31 15:45:45 -05:00			`self.current_handle = self.handles[0]`
remove old stuff, more refactoring 2023-05-09 16:03:27 -05:00
more refactoring 2023-05-09 15:09:28 -05:00			`# This is a separate call so that the user can make sure the first part succeeds before asking for validation data`
clean up some of the enc key stuff 2023-07-26 17:49:41 -05:00			`def register(self, validation_data: str):`
			`"""`
			`self.ec_key, self.rsa_key will be set to a randomly gnenerated EC and RSA keypair`
			`if they are not already set`
			`"""`
remove old stuff, more refactoring 2023-05-09 16:03:27 -05:00			`cert = identity.register(`
typing, async, kinda works most of the time 2023-08-17 20:14:44 -05:00			`b64encode(self.push_connection.credentials.token),`
more refactoring 2023-05-09 15:09:28 -05:00			`self.handles,`
			`self.user_id,`
			`self._auth_keypair,`
			`self._push_keypair,`
begin refactor 2023-07-27 10:04:57 -05:00			`self.encryption_identity,`
remove old stuff, more refactoring 2023-05-09 16:03:27 -05:00			`validation_data,`
more refactoring 2023-05-09 15:09:28 -05:00			`)`
remove old stuff, more refactoring 2023-05-09 16:03:27 -05:00			`self._id_keypair = _helpers.KeyPair(self._auth_keypair.key, cert)`

			`def restore_identity(self, id_keypair: _helpers.KeyPair):`
			`self._id_keypair = id_keypair`
trying to fix query after refactor 2023-05-09 17:01:32 -05:00
- Remove unused imports - extract idsuser authentication functionality to separate function so that it can be reused - add more typing hints to make lsp happier - access dictionary values more safely with walrus operator - simplify some list comprehension and iteration - print proxy errors in more detail so they're easier to debug - store apnsconnection in proxy so that we can use it to make a user and decrypt payloads if needed 2023-08-21 22:10:04 -05:00			`def auth_and_set_encryption_from_config(self, config: dict[str, dict[str, Any]]):`

			`auth = config.get("auth", {})`
			`if (`
			`((key := auth.get("key")) is not None) and`
			`((cert := auth.get("cert")) is not None) and`
			`((user_id := auth.get("user_id")) is not None) and`
			`((handles := auth.get("handles")) is not None)`
			`):`
			`auth_keypair = _helpers.KeyPair(key, cert)`
			`self.restore_authentication(auth_keypair, user_id, handles)`
			`else:`
			`username = input("Username: ")`
			`password = getpass("Password: ")`

			`self.authenticate(username, password)`

			`encryption: dict[str, str] = config.get("encryption", {})`
			`id: dict[str, str] = config.get("id", {})`

			`if (`
			`(rsa_key := encryption.get("rsa_key")) and`
			`(signing_key := encryption.get("ec_key")) and`
			`(cert := id.get("cert")) and`
			`(key := id.get("key"))`
			`):`
			`self.encryption_identity = identity.IDSIdentity(`
			`encryption_key=rsa_key,`
			`signing_key=signing_key,`
			`)`

			`id_keypair = _helpers.KeyPair(key, cert)`
			`self.restore_identity(id_keypair)`
			`else:`
			`logging.info("Registering new identity...")`
			`import emulated.nac`

			`vd = emulated.nac.generate_validation_data()`
			`vd = b64encode(vd).decode()`

			`self.register(vd)`

typing, async, kinda works most of the time 2023-08-17 20:14:44 -05:00			`async def lookup(self, uris: list[str], topic: str = "com.apple.madrid") -> Any:`
			`return await query.lookup(self.push_connection, self.current_handle, self._id_keypair, uris, topic)`
trying to fix query after refactor 2023-05-09 17:01:32 -05:00