ubuntuone-credentials

Merge lp://qastaging/~mardy/ubuntuone-credentials/signon-plugin-part1 into lp://qastaging/ubuntuone-credentials

signon-plugin-part1
Merge into trunk

Proposed by Alberto Mardegan on 2016-04-19

Status:	Superseded
Proposed branch:	lp://qastaging/~mardy/ubuntuone-credentials/signon-plugin-part1
Merge into:	lp://qastaging/ubuntuone-credentials
Diff against target:	1440 lines (+1182/-38) 14 files modified debian/control (+2/-2) debian/libubuntuoneauth-2.0-0.symbols (+4/-0) debian/signon-plugin-ubuntuone.install (+1/-1) libubuntuoneauth/CMakeLists.txt (+13/-3) libubuntuoneauth/token.cpp (+44/-1) libubuntuoneauth/token.h (+4/-0) signon-plugin/CMakeLists.txt (+9/-2) signon-plugin/i18n.cpp (+37/-0) signon-plugin/i18n.h (+31/-0) signon-plugin/tests/CMakeLists.txt (+52/-0) signon-plugin/tests/test_plugin.cpp (+593/-0) signon-plugin/ubuntuone-plugin.cpp (+327/-19) signon-plugin/ubuntuone-plugin.h (+45/-7) signon-plugin/ubuntuonedata.h (+20/-3)
To merge this branch:	bzr merge lp://qastaging/~mardy/ubuntuone-credentials/signon-plugin-part1
Related bugs:	Link a bug report

Reviewer	Review Type	Date Requested	Status
PS Jenkins bot	continuous-integration		Needs Fixing on 2016-04-22
dobey (community)		2016-04-19	Needs Fixing on 2016-04-21
Review via email: mp+292284@code.qastaging.launchpad.net

This proposal has been superseded by a proposal from 2016-04-22.

Commit message

Complete the UbuntuOne authentication plugin

Implement the UbuntuOne authentication inside the signon plugin, with UI interactions delegated to the signon UI (currently implemented in the ubuntu-system-settings-online-accounts project).

Description of the change

Complete the UbuntuOne authentication plugin

Implement the UbuntuOne authentication inside the signon plugin, with UI interactions delegated to the signon UI (currently implemented in the ubuntu-system-settings-online-accounts project).

Revision history for this message

PS Jenkins bot (ps-jenkins) wrote on 2016-04-19:

FAILED: Continuous integration, rev:237
http://jenkins.qa.ubuntu.com/job/ubuntuone-credentials-ci/144/
Executed test runs:
    FAILURE: http://jenkins.qa.ubuntu.com/job/ubuntuone-credentials-wily-amd64-ci/21/console
    FAILURE: http://jenkins.qa.ubuntu.com/job/ubuntuone-credentials-wily-armhf-ci/21/console
    FAILURE: http://jenkins.qa.ubuntu.com/job/ubuntuone-credentials-wily-i386-ci/21/console

Click here to trigger a rebuild:
http://s-jenkins.ubuntu-ci:8080/job/ubuntuone-credentials-ci/144/rebuild

review: Needs Fixing (continuous-integration)

Revision history for this message

dobey (dobey) on 2016-04-19:

review: Needs Fixing

Revision history for this message

Alberto Mardegan (mardy) wrote on 2016-04-20:

Replied to inline comments.

Revision history for this message

dobey (dobey) wrote on 2016-04-20:

Download full text (4.1 KiB)

On Wed, 2016-04-20 at 08:14 +0000, Alberto Mardegan wrote:
> Because Token::isValid() is currently broken; either we add a check
> there to see that every variable is non empty, or we make sure we
> don't add empty variables into the map when we construct the token.

Please file a bug about this issue, and revert this change from this
branch. You don't fix all cases here, and I think this is probably the
wrong fix anyway. It's an issue separate from the signon-plugin, so
let's treat it as such and deal with it more appropriately.

> > + if (pair.count() < 2) continue;
> Yes, it helps the migration from using the current password plugin to
> the new one: the new one won't store the encoded token in the
> password field, which will be used for the password instead.
> However, to ease the migration, the new plugin first checks is the
> password fields contains an encoded token: to do that, it tries to
> load the password into a Token with Token::fromQuery, and then checks
> whether the token is valid. If the password field does contain a
> password and not a token, this would break. (see lines 974-1000 of
> this diff)

So the plug-in can read the data from a different plug-in type to
convert it? If the line is required, please make it a 3 line addition
with open/close curly braces.

> Answering in random order:
> No, this won't affect the current account plugin: with the code I'm
> going to propose, the account plugin disables all signon UI
> interactions, which means that this code path will not be taken and
> that the account plugin will receive error codes instead, so that it
> will be able to adapt its UI and query the user itself (exactly like
> it's currently doing). So, no additional dialogs there.
>
> This code is mainly for the case of the Click scope, as well as PayUI
> (unless you can handle UI requests there, in which case we could do a
> similar thing as we are doing for the account plugin, of disabling
> signon UI in there too) and any third party app using the UbuntuOne
> account (a launchpad client, for example).

Can you clarify how this would work exactly for the click scope? A flow
chart of screen grabs or such perhaps? I think design wants us to
always show branded UI for cases where we require the user to log in
again.

> What happens in that case is that the client will receive the U1
> token data, if available, and no UI interactions will be required.
> If, however, the token data is not available (because the existing
> token has been invalidated via the website, or because the client is
> using a different TokenName and therefore a new token needs to be
> created instead), there might be the need to show the login dialog to
> the user. In that case, this authentication plugin asks signond to
> popup a UI to request the needed info.

How does online-accounts know the token has been invalidated via the
web site or such? We would need to change the clients to call some
other methods than they are currently calling, for these cases?

> The parameters you see being passed here into the "data" dictionary
> describe what are the needed fields, and it's possible to override
> the dialog title and each field's descr...

> > +            if (pair.count() < 2) continue;
> Yes, it helps the migration from using the current password plugin to
> the new one: the new one won't store the encoded token in the
> password field, which will be used for the password instead.
> However, to ease the migration, the new plugin first checks is the
> password fields contains an encoded token: to do that, it tries to
> load the password into a Token with Token::fromQuery, and then checks
> whether the token is valid. If the password field does contain a
> password and not a token, this would break. (see lines 974-1000 of
> this diff)

So the plug-in can read the data from a different plug-in type to
convert it? If the line is required, please make it a 3 line addition
with open/close curly braces.

> Answering in random order:
> No, this won't affect the current account plugin: with the code I'm
> going to propose, the account plugin disables all signon UI
> interactions, which means that this code path will not be taken and
> that the account plugin will receive error codes instead, so that it
> will be able to adapt its UI and query the user itself (exactly like
> it's currently doing). So, no additional dialogs there.
> 
> This code is mainly for the case of the Click scope, as well as PayUI
> (unless you can handle UI requests there, in which case we could do a
> similar thing as we are doing for the account plugin, of disabling
> signon UI in there too) and any third party app using the UbuntuOne
> account (a launchpad client, for example).

How does online-accounts know the token has been invalidated via the
web site or such? We would need to change the clients to call some
other methods than they are currently calling, for these cases?

>  The parameters you see being passed here into the "data" dictionary
> describe what are the needed fields, and it's possible to override
> the dialog title and each field's description. If we don't override
> the descriptions, that's also fine, but I think that the advantage of
> doing that here is that we are in the same project as the account
> plugin, so we can reuse the translations you use in the U1 account
> plugin UI, so we can be sure that they'll always be in sync. If
> translators decide that "2-factor device code" needs to be translated
> differently, they'll have to change it only in this project, and that
> will update both the string shown in the account plugin and in the
> authentication dialog.

Does this UI request open the Main.qml plug-in we are providing? Or it
only opens generic UI provided by online-accounts itself?

> Also, the strings provided by signon UI are generic, and maybe they
> will change in the future in a way that does not fit nicely with
> UbuntuOne.
> 
> I hope this answers your questions.

I'm sure I will have plenty more, as my understanding of online-
acocunts is still somewhat limited. :)

lp://qastaging/~mardy/ubuntuone-credentials/signon-plugin-part1 updated on 2016-04-21

238. By Alberto Mardegan on 2016-04-21: Partial revert

Revision history for this message

Alberto Mardegan (mardy) wrote on 2016-04-21:

On 20/04/2016 23:15, Rodney Dawes wrote:
> Please file a bug about this issue, and revert this change from this
> branch. You don't fix all cases here, and I think this is probably the
> wrong fix anyway. It's an issue separate from the signon-plugin, so
> let's treat it as such and deal with it more appropriately.

https://bugs.launchpad.net/bugs/1572943

>>> + if (pair.count() < 2) continue;
[...]
> So the plug-in can read the data from a different plug-in type to
> convert it? If the line is required, please make it a 3 line addition
> with open/close curly braces.

OK.

[...]
> Can you clarify how this would work exactly for the click scope? A flow
> chart of screen grabs or such perhaps? I think design wants us to
> always show branded UI for cases where we require the user to log in
> again.

I can do that of course, but IMHO the best thing is whether you would
test the silo and see for yourself.
There is not much branded in the current authentication UI (apart from
the page title), but in principle this is something which can be
improved easily.

> How does online-accounts know the token has been invalidated via the
> web site or such? We would need to change the clients to call some
> other methods than they are currently calling, for these cases?

The authentication plugins checks the validity of a token before
returning it to the client: see the
SignOnPlugin::respondWithStoredData() method: near the end it calls
SignOnPlugin::checkTokenValidity() and if the token is invalid it won't
return it; instead, it will try to get a new one.

> Does this UI request open the Main.qml plug-in we are providing? Or it
> only opens generic UI provided by online-accounts itself?

The latter. It's a generic UI, configurable with a few parameters.

Revision history for this message

PS Jenkins bot (ps-jenkins) wrote on 2016-04-21:

FAILED: Continuous integration, rev:238
http://jenkins.qa.ubuntu.com/job/ubuntuone-credentials-ci/146/
Executed test runs:
    FAILURE: http://jenkins.qa.ubuntu.com/job/ubuntuone-credentials-wily-amd64-ci/23/console
    FAILURE: http://jenkins.qa.ubuntu.com/job/ubuntuone-credentials-wily-armhf-ci/23/console
    FAILURE: http://jenkins.qa.ubuntu.com/job/ubuntuone-credentials-wily-i386-ci/23/console

Click here to trigger a rebuild:
http://s-jenkins.ubuntu-ci:8080/job/ubuntuone-credentials-ci/146/rebuild

review: Needs Fixing (continuous-integration)

Revision history for this message

Alberto Mardegan (mardy) wrote on 2016-04-21:

To clarify: I'm talking about silo 79 (https://requests.ci-train.ubuntu.com/#/ticket/1049). No matter what the train says, the packages in the silo PPA appear to be working as expected, and testing is quite easy: create an U1 plugin, then go to the website to revoke the token and finally try to install an app from the click scope.
You will get a dialog like this beauty: http://www.mardy.it/archivos/ubuntuone.png
If you enter the correct credentials, the package installation will start; otherwise, the dialog will reappear. And indeed, if you type the right credentials but you have 2fa enabled, the dialog will reappear and will have an additional field for the 2fa.

Before you say it: I'm aware of the uglyness of the dialog, and also that it would be a much better experience if the dialog didn't close at every attempt, but instead remain on screen with a spinner until the authentication has completed.
Both these things are solvable; the first with some UI designers input, the latter with some non trivial changes to ussoa, which I didn't start doing given that U1 was the only account requiring these changes, and I was not sure whether the U1 authentication plugin was ever going to land.
However, now that it appears that we are going to have an owncloud plugin, I might get started on them anyway.

Revision history for this message

PS Jenkins bot (ps-jenkins) wrote on 2016-04-21:

FAILED: Continuous integration, rev:239
http://jenkins.qa.ubuntu.com/job/ubuntuone-credentials-ci/147/
Executed test runs:
    FAILURE: http://jenkins.qa.ubuntu.com/job/ubuntuone-credentials-wily-amd64-ci/24/console
    FAILURE: http://jenkins.qa.ubuntu.com/job/ubuntuone-credentials-wily-armhf-ci/24/console
    FAILURE: http://jenkins.qa.ubuntu.com/job/ubuntuone-credentials-wily-i386-ci/24/console