Conv

2025-06-09 14:44:05 +05:30
parent 31f393ad5b
commit dfd80a136b
1 changed files with 21 additions and 25 deletions
--- a/web/packages/accounts/services/passkey.ts
+++ b/web/packages/accounts/services/passkey.ts
@@ -102,18 +102,17 @@ export const openPasskeyVerificationURL = ({
 * see and their manage their passkeys.
 */
 export const openAccountsManagePasskeysPage = async () => {
-    // Check if the user has passkey recovery enabled
-    const recoveryEnabled = await isPasskeyRecoveryEnabled();
-    if (!recoveryEnabled) {
+    // Check if the user has passkey recovery enabled.
+    const { isPasskeyRecoveryEnabled } = await getTwoFactorRecoveryStatus();
+    if (!isPasskeyRecoveryEnabled) {
        // If not, enable it for them by creating the necessary recovery
        // information to prevent them from getting locked out.
        const resetSecret = await generateKey();
-        const box = await encryptBox(resetSecret, await getUserRecoveryKey());
-        await configurePasskeyRecovery(
+        const { encryptedData, nonce } = await encryptBox(
            resetSecret,
-            box.encryptedData,
-            box.nonce,
+            await getUserRecoveryKey(),
        );
+        await configurePasskeyRecovery(resetSecret, encryptedData, nonce);
    }

    // Redirect to the Ente Accounts app where they can view and add and manage
@@ -125,25 +124,22 @@ export const openAccountsManagePasskeysPage = async () => {
    window.open(`${accountsURL}/passkeys?${params.toString()}`);
 };

-export const isPasskeyRecoveryEnabled = async () => {
-    try {
-        const token = getToken();
+const TwoFactorRecoveryStatus = z.object({
+    /**
+     * `true` if the passkey recovery setup has been completed.
+     */
+    isPasskeyRecoveryEnabled: z.boolean(),
+});

-        const resp = await HTTPService.get(
-            await apiURL("/users/two-factor/recovery-status"),
-            {},
-            { "X-Auth-Token": token },
-        );
-
-        if (typeof resp.data == "undefined") {
-            throw Error("request failed");
-        }
-
-        return resp.data.isPasskeyRecoveryEnabled as boolean;
-    } catch (e) {
-        log.error("failed to get passkey recovery status", e);
-        throw e;
-    }
+/**
+ * Obtain the second factor recovery status from remote.
+ */
+export const getTwoFactorRecoveryStatus = async () => {
+    const res = await fetch(await apiURL("/users/two-factor/recovery-status"), {
+        headers: await authenticatedRequestHeaders(),
+    });
+    ensureOk(res);
+    return TwoFactorRecoveryStatus.parse(await res.json());
 };

 const configurePasskeyRecovery = async (