[Auth] Add linux secure manager file.

+ Support Save/Load/Delete/DeleteAll
+ Add Tests

PiperOrigin-RevId: 243900946

Author: cynthiajiang

auth/src/desktop/secure/user_secure_data_handle.h

@@ -0,0 +1,60 @@
+// Copyright 2019 Google LLC
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//      http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+#ifndef FIREBASE_AUTH_CLIENT_CPP_SRC_DESKTOP_SECURE_USER_SECURE_DATA_HANDLE_H_
+#define FIREBASE_AUTH_CLIENT_CPP_SRC_DESKTOP_SECURE_USER_SECURE_DATA_HANDLE_H_
+
+#include <string>
+
+#include "app/src/include/firebase/future.h"
+#include "app/src/reference_counted_future_impl.h"
+
+namespace firebase {
+namespace auth {
+namespace secure {
+
+enum UserSecureFn {
+  kUserSecureFnLoad,
+  kUserSecureFnSave,
+  kUserSecureFnDelete,
+  kUserSecureFnDeleteAll,
+  kUserSecureFnCount
+};
+
+enum UserSecureFutureResult {
+  kSuccess,
+  kNoEntry,
+};
+
+template <typename T>
+struct UserSecureDataHandle {
+  UserSecureDataHandle(const std::string& appName, const std::string& userData,
+                       ReferenceCountedFutureImpl* futureApi,
+                       const SafeFutureHandle<T>& futureHandle)
+      : app_name(appName),
+        user_data(userData),
+        future_api(futureApi),
+        future_handle(futureHandle) {}
+
+  const std::string app_name;
+  const std::string user_data;
+  ReferenceCountedFutureImpl* future_api;
+  SafeFutureHandle<T> future_handle;
+};
+
+}  // namespace secure
+}  // namespace auth
+}  // namespace firebase
+
+#endif  // FIREBASE_AUTH_CLIENT_CPP_SRC_DESKTOP_SECURE_USER_SECURE_DATA_HANDLE_H_

auth/src/desktop/secure/user_secure_internal.h

@@ -0,0 +1,50 @@
+// Copyright 2019 Google LLC
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//      http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+#ifndef FIREBASE_AUTH_CLIENT_CPP_SRC_DESKTOP_SECURE_USER_SECURE_INTERNAL_H_
+#define FIREBASE_AUTH_CLIENT_CPP_SRC_DESKTOP_SECURE_USER_SECURE_INTERNAL_H_
+
+#include <string>
+
+#include "app/src/scheduler.h"
+#include "auth/src/desktop/secure/user_secure_data_handle.h"
+
+namespace firebase {
+namespace auth {
+namespace secure {
+
+class UserSecureInternal {
+ public:
+  UserSecureInternal() = default;
+  virtual ~UserSecureInternal() = default;
+
+  // Load persisted user data for given app name.
+  virtual std::string LoadUserData(const std::string appName) = 0;
+
+  // Save user data under the key of given app name.
+  virtual void SaveUserData(const std::string appName,
+                            const std::string userData) = 0;
+
+  // Delete user data under the given app name.
+  virtual void DeleteUserData(const std::string appName) = 0;
+
+  // Delete all user data.
+  virtual void DeleteAllData() = 0;
+};
+
+}  // namespace secure
+}  // namespace auth
+}  // namespace firebase
+
+#endif  // FIREBASE_AUTH_CLIENT_CPP_SRC_DESKTOP_SECURE_USER_SECURE_INTERNAL_H_

auth/src/desktop/secure/user_secure_linux_internal.cc

@@ -0,0 +1,109 @@
+// Copyright 2019 Google LLC
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//      http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+#include "auth/src/desktop/secure/user_secure_linux_internal.h"
+
+#include <dlfcn.h>
+
+#include <iostream>
+
+#include "auth/src/desktop/secure/user_secure_data_handle.h"
+
+namespace firebase {
+namespace auth {
+namespace secure {
+
+namespace {
+
+// key entry for the app name in the schema. When save the user data with a
+// given app name, the app name is the attribute of this key inside schema.
+const char kAppNameKey[] = "auth_app_name";
+// A common attribute-value pair is added to all the device keys. This makes it
+// possible to match all the keys easily (and remove them all at once).
+const char kCommonKeyId[] = "common_key_id";
+const char kCommonKeyValue[] = "common_key_value";
+// Helper function to build the right schema using the provided namespace, for
+// storing keys. For instance, helps create separate storage schema for storing
+// actual vs testing keys
+const char kAuthKeyName[] = "com.google.firebase.auth.Keys";
+SecretSchema BuildSchema(const char key_namespace[]) {
+  SecretSchema schema = {key_namespace,
+                         SECRET_SCHEMA_NONE,
+                         {
+                             {kAppNameKey, SECRET_SCHEMA_ATTRIBUTE_STRING},
+                             {kCommonKeyId, SECRET_SCHEMA_ATTRIBUTE_STRING},
+                         }};
+  return schema;
+}
+
+}  // namespace
+
+UserSecureLinuxInternal::UserSecureLinuxInternal()
+    : UserSecureLinuxInternal(kAuthKeyName) {}
+
+UserSecureLinuxInternal::UserSecureLinuxInternal(const char key_namespace[])
+    : storage_schema_(BuildSchema(key_namespace)) {}
+
+UserSecureLinuxInternal::~UserSecureLinuxInternal() {}
+
+std::string UserSecureLinuxInternal::LoadUserData(const std::string appName) {
+  fprintf(stderr, "internal loading start\n");
+  std::string empty_str("");
+  GError* error = nullptr;
+  char* result =
+      secret_password_lookup_sync(&storage_schema_,
+                                  /* cancellable= */ nullptr,
+                                  /* error= */ &error,
+                                  /* key1= */ kAppNameKey,
+                                  /* value1= */ appName.c_str(), nullptr);
+  if (error) {
+    g_error_free(error);
+    return empty_str;
+  }
+
+  if (result == nullptr) {
+    return empty_str;
+  }
+  std::string str_result(result);
+  secret_password_free(result);
+
+  return str_result;
+}
+
+void UserSecureLinuxInternal::SaveUserData(const std::string appName,
+                                           const std::string userData) {
+  secret_password_store_sync(
+      &storage_schema_, SECRET_COLLECTION_DEFAULT, /* label= */ "UserSecure",
+      /* password= */ userData.c_str(), /* cancellable= */ nullptr,
+      /* error= */ nullptr, /* key1= */ kAppNameKey,
+      /* value1= */ appName.c_str(),
+      /* key2= */ kCommonKeyId, /* value2= */ kCommonKeyValue, nullptr);
+}
+
+void UserSecureLinuxInternal::DeleteUserData(const std::string appName) {
+  secret_password_clear_sync(&storage_schema_,
+                             /* cancellable= */ nullptr, /* error= */ nullptr,
+                             /* key1= */ kAppNameKey,
+                             /* value1= */ appName.c_str(), nullptr);
+}
+
+void UserSecureLinuxInternal::DeleteAllData() {
+  secret_password_clear_sync(&storage_schema_, /* cancellable= */ nullptr,
+                             /* error= */ nullptr, /* key2= */ kCommonKeyId,
+                             /* value2= */ kCommonKeyValue, nullptr);
+}
+
+}  // namespace secure
+}  // namespace auth
+}  // namespace firebase

auth/src/desktop/secure/user_secure_linux_internal.h

@@ -0,0 +1,54 @@
+// Copyright 2019 Google LLC
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//      http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+#ifndef FIREBASE_AUTH_CLIENT_CPP_SRC_DESKTOP_SECURE_USER_SECURE_LINUX_INTERNAL_H_
+#define FIREBASE_AUTH_CLIENT_CPP_SRC_DESKTOP_SECURE_USER_SECURE_LINUX_INTERNAL_H_
+
+#include <string>
+
+#include "app/src/reference_counted_future_impl.h"
+#include "auth/src/desktop/secure/user_secure_data_handle.h"
+#include "auth/src/desktop/secure/user_secure_internal.h"
+#include "third_party/libsecret/libsecret/secret.h"
+namespace firebase {
+namespace auth {
+namespace secure {
+
+// Linux specific implementation for the secure manager of user data.
+class UserSecureLinuxInternal : public UserSecureInternal {
+ public:
+  UserSecureLinuxInternal();
+  ~UserSecureLinuxInternal() override;
+
+  // Overloaded constructor to set the storage schema for keys.
+  explicit UserSecureLinuxInternal(const char key_namespace[]);
+
+  std::string LoadUserData(const std::string appName) override;
+
+  void SaveUserData(const std::string appName,
+                    const std::string userData) override;
+
+  void DeleteUserData(const std::string appName) override;
+
+  void DeleteAllData() override;
+
+ private:
+  const SecretSchema storage_schema_;
+};
+
+}  // namespace secure
+}  // namespace auth
+}  // namespace firebase
+
+#endif  // FIREBASE_AUTH_CLIENT_CPP_SRC_DESKTOP_SECURE_USER_SECURE_LINUX_INTERNAL_H_