synchronize files with no-extension branch

leshi · leshi · commit a33aab81d1fd · 2015-10-16T15:16:47.000-07:00
diff --git a/u2f-gae-demo/src/com/google/u2f/gaedemo/admin/AdminServlet.java b/u2f-gae-demo/src/com/google/u2f/gaedemo/admin/AdminServlet.java
@@ -21,7 +21,6 @@
 import com.google.template.soy.data.SoyMapData;
 import com.google.template.soy.tofu.SoyTofu;
 import com.google.template.soy.tofu.SoyTofu.Renderer;
-import com.google.u2f.gaedemo.storage.SecretKeys;
 
 @SuppressWarnings("serial")
 @Singleton
@@ -57,17 +56,6 @@ protected void doPost(HttpServletRequest req, HttpServletResponse resp)
       throws ServletException, IOException {
 
     String command = req.getParameter("command");
-
-    if ("generateKeys".equalsIgnoreCase(command)) {
-      generateKeys(req, resp);
-    } else {
-      resp.sendError(HttpServletResponse.SC_BAD_REQUEST, "unknown command");
-    }
-
-  }
-
-  private void generateKeys(HttpServletRequest req, HttpServletResponse resp) throws IOException {
-    SecretKeys.generate();
-    doGet(req, resp);
+    resp.sendError(HttpServletResponse.SC_BAD_REQUEST, "unknown command: " + command);
   }
 }
diff --git a/u2f-gae-demo/src/com/google/u2f/gaedemo/storage/SecretKeys.java b/u2f-gae-demo/src/com/google/u2f/gaedemo/storage/SecretKeys.java
@@ -10,7 +10,7 @@
 
 import java.security.SecureRandom;
 
-import com.google.common.base.Objects;
+import com.googlecode.objectify.Work;
 import com.googlecode.objectify.annotation.Entity;
 import com.googlecode.objectify.annotation.Id;
 import com.googlecode.objectify.annotation.Ignore;
@@ -25,16 +25,32 @@ public class SecretKeys {
 
   @Ignore private SecureRandom random = new SecureRandom();
 
-  public static void generate() {
-    SecretKeys keys = Objects.firstNonNull(
-        ofy().load().type(SecretKeys.class).id("singleton").now(),
-        new SecretKeys());
-    keys.generateNewKeys();
-    ofy().save().entity(keys).now();
+  private static SecretKeys generate() {
+    return ofy().transact(new Work<SecretKeys>() {
+      @Override
+      public SecretKeys run() {
+        SecretKeys keys = ofy().load().type(SecretKeys.class).id("singleton").now();
+        if (keys != null) {
+          return keys;
+        } else {
+          keys = new SecretKeys();
+          keys.generateNewKeys();
+          ofy().save().entity(keys).now();
+          return keys;
+        }
+      }
+    });
   }
 
   public static SecretKeys get() {
-    return ofy().load().type(SecretKeys.class).id("singleton").now();
+    SecretKeys keys = ofy().load().type(SecretKeys.class).id("singleton").now();
+
+    if (keys == null) {
+      // somebody (we?) need to generate the keys
+      return generate();
+    } else {
+      return keys;
+    }
   }
 
   public SecretKeys() {
diff --git a/u2f-gae-demo/src/soy/admin.soy b/u2f-gae-demo/src/soy/admin.soy
@@ -17,8 +17,8 @@
   <body>
   {call .sandbar data="all"/}
   <div id='main'>
-    <form action="/admin?command=generateKeys" method="POST">
-      <input type="submit" value="Generate New Keys"></input>
+    <!-- you can put commands here for admins to do -->
+    <form action="/admin?command=someAdminCommand" method="POST">
     </form>
   </body>
 </html>
diff --git a/u2f-gae-demo/war/js/u2fdemo.js b/u2f-gae-demo/war/js/u2fdemo.js
@@ -24,9 +24,9 @@ function tokenToDom(token) {
   card.querySelector('.issuer').textContent = token.issuer;
   card.querySelector('.enrollmentTimeValue').textContent = timeString;
   if (token.transports == null || token.transports === undefined) {
-	card.querySelector('.transportsValue').textContent = "None specified";
+	  card.querySelector('.transportsValue').textContent = "None specified";
   } else {
-    card.querySelector('.transportsValue').textContent = token.transports;
+	  card.querySelector('.transportsValue').textContent = token.transports;
   }
   card.querySelector('.keyHandle').textContent = token.key_handle;
   card.querySelector('.publicKey').textContent = token.public_key;
@@ -70,10 +70,22 @@ function hideMessage() {
 
 function highlightTokenCardOnPage(token) {
   console.log(token);
-  var cardContent = $("#" + token.public_key).find(".cardContent");
-  
-  cardContent.addClass("highlight");
-  window.setTimeout(function() { cardContent.removeClass("highlight", 2000); }, 500 );
+
+  var cardChildren = document.getElementById(token.public_key).children;
+  for (i = 0; i < cardChildren.length; i++) {
+    if ($(cardChildren[i]).hasClass("cardContent")) {
+      $(cardChildren[i]).addClass("highlight");
+    }
+  }
+
+  window.setTimeout(
+    function() {
+      for (i = 0; i < cardChildren.length; i++) {
+        $(cardChildren[i]).removeClass("highlight", 2000);
+      }
+    },
+    500
+  );
 }
 
 
@@ -197,3 +209,40 @@ function onError(code, enrolling) {
     break;
   }
 }
+
+if (navigator.userAgent.indexOf("iPhone") > -1) {
+  function executeRequest (request) {
+    var str = JSON.stringify(request);
+    var url = "u2f://auth?" + encodeURI(str);
+    location.replace(url);
+  }
+
+  u2f.callbackMap_ = {};
+  u2f.sign = function(signRequests, callback, opt_timeoutSeconds) {
+    var reqId = ++u2f.reqCounter_;
+    u2f.callbackMap_[reqId] = callback;
+    var req = {
+      type: u2f.MessageTypes.U2F_SIGN_REQUEST,
+      signRequests: signRequests,
+      timeoutSeconds: (typeof opt_timeoutSeconds !== 'undefined' ?
+          opt_timeoutSeconds : u2f.EXTENSION_TIMEOUT_SEC),
+      requestId: reqId
+    };
+    executeRequest(req);    
+  };
+
+  u2f.register = function(registerRequests, signRequests,
+    callback, opt_timeoutSeconds) {
+    var reqId = ++u2f.reqCounter_;
+    u2f.callbackMap_[reqId] = callback;
+    var req = {
+      type: u2f.MessageTypes.U2F_REGISTER_REQUEST,
+      signRequests: signRequests,
+      registerRequests: registerRequests,
+      timeoutSeconds: (typeof opt_timeoutSeconds !== 'undefined' ?
+          opt_timeoutSeconds : u2f.EXTENSION_TIMEOUT_SEC),
+      requestId: reqId
+    };
+    executeRequest(req);
+  };
+}
diff --git a/u2f-ref-code/java/src/com/google/u2f/server/data/SecurityKeyData.java b/u2f-ref-code/java/src/com/google/u2f/server/data/SecurityKeyData.java
@@ -39,12 +39,12 @@ public SecurityKeyData(
   }
 
   public SecurityKeyData(
-		  long enrollmentTime,
-		  List<Transports> transports,
-		  byte[] keyHandle,
-		  byte[] publicKey,
-		  X509Certificate attestationCert,
-		  int counter) {
+      long enrollmentTime,
+      List<Transports> transports,
+      byte[] keyHandle,
+      byte[] publicKey,
+      X509Certificate attestationCert,
+      int counter) {
     this.enrollmentTime = enrollmentTime;
     this.transports = transports;
     this.keyHandle = keyHandle;
diff --git a/u2f-ref-code/java/src/com/google/u2f/server/impl/U2FServerReferenceImpl.java b/u2f-ref-code/java/src/com/google/u2f/server/impl/U2FServerReferenceImpl.java
@@ -26,6 +26,7 @@
 import org.bouncycastle.asn1.DERBitString;
 import org.bouncycastle.asn1.DEROctetString;
 
+import com.google.common.base.Joiner;
 import com.google.common.collect.ImmutableList;
 import com.google.common.collect.ImmutableSet;
 import com.google.gson.JsonElement;
@@ -409,7 +410,8 @@ private void verifyBrowserData(JsonElement browserDataAsElement,
   private void verifyOrigin(String origin) throws U2FException {
     if (!allowedOrigins.contains(canonicalizeOrigin(origin))) {
       throw new U2FException(origin +
-          " is not a recognized home origin for this backend");
+          " is not a recognized home origin for this backend" +
+          Joiner.on(", ").join(allowedOrigins));
     }
   }
 
