Sign upLogin

teamdigitale/italia-app

View on GitHub
Star
ts/features/fci/utils/signature.ts

Summary

Maintainability
A
35 mins
Test Coverage
import * as t from "io-ts";
import sha from "sha.js";
import * as A from "fp-ts/lib/Array";
import { pipe } from "fp-ts/lib/function";
import * as TE from "fp-ts/lib/TaskEither";
import * as E from "fp-ts/lib/Either";
import * as S from "fp-ts/lib/string";
import ReactNativeBlobUtil from "react-native-blob-util";
import { QtspClauses } from "../../../../definitions/fci/QtspClauses";
import { DocumentToSign } from "../../../../definitions/fci/DocumentToSign";
import { constants } from "../../lollipop/httpSignature/constants";
import { savePath } from "../saga/networking/handleDownloadDocument";

export const QtspDocumentToSign = t.type({
  url: t.string
});

export type QtspDocumentToSign =
  | t.TypeOf<typeof QtspDocumentToSign> & DocumentToSign;

const getFileDigest = (url: string) =>
  pipe(
    // TODO: instead of use fetch to download again the file, we should refactor FcidocumentScreen
    // to store the file locally and use it later to calculate the digest.
    // https://pagopa.atlassian.net/browse/SFEQS-1470
    TE.tryCatch(
      () =>
        ReactNativeBlobUtil.config({
          path: savePath(url),
          fileCache: true
        }).fetch("GET", url),
      E.toError
    ),
    TE.chain(response =>
      TE.tryCatch(
        () => ReactNativeBlobUtil.fs.readFile(response.path(), "base64"),
        E.toError
      )
    ),
    TE.map(base64 => Buffer.from(base64, "base64")),
    TE.map(buffer => sha(constants.SHA_256).update(buffer).digest("hex"))
  );

export const getTosSignature = (qtspClauses: QtspClauses) =>
  pipe(
    qtspClauses.filled_document_url,
    getFileDigest,
    TE.map(
      documentDigest =>
        qtspClauses.nonce +
        "+" +
        documentDigest +
        qtspClauses.accepted_clauses.reduce(
          (finalString, currentClause) =>
            finalString + "+" + currentClause.text,
          ""
        )
    ),
    TE.map(tos => tos.replace(/\r\n/g, "")),
    TE.map(tosChallenge =>
      sha(constants.SHA_256).update(tosChallenge).digest("hex")
    )
  );

export const getCustomSignature = (
  documentsToSign: Array<QtspDocumentToSign>
) =>
  pipe(
    documentsToSign,
    A.map(document =>
      pipe(
        getFileDigest(document.url),
        TE.map(hash => {
          const attributes = document.signature_fields
            .map(signatureField =>
              "unique_name" in signatureField.attrs
                ? signatureField.attrs.unique_name
                : // eslint-disable-next-line @typescript-eslint/restrict-plus-operands
                  signatureField.attrs.page +
                  "-" +
                  signatureField.attrs.bottom_left.x +
                  "-" +
                  signatureField.attrs.bottom_left.y +
                  "-" +
                  signatureField.attrs.top_right.x +
                  "-" +
                  signatureField.attrs.top_right.y
            )
            .join("+");

          return S.isEmpty(attributes) ? hash : hash + "+" + attributes;
        })
      )
    ),
    A.sequence(TE.ApplicativeSeq),
    TE.map(chellenges => chellenges.join("+")),
    TE.map(challenge => challenge.replace(/\r\n/g, "")),
    TE.map(challenge => sha(constants.SHA_256).update(challenge).digest("hex"))
  );