[lib][native] Reset login state if authoritative keyserver fails
ClosedPublic
Actions

Authored by ashoat on Apr 30 2024, 11:36 AM.

Details

Reviewers

varun

Commits

rCOMM39314e76eb6f: [lib][native] Reset login state if authoritative keyserver fails

Summary

We have a two-part login and registration process: first the identity service, then the authoritative keyserver.

Ideally, if the first part succeeds but the second part fails, we could cache the success of the first part, and recompute it if inputs change. But I scoped that work and determined we didn't have the cycles for it right now.

An easier, more immediate solution is to simply reset the state between attempts. We'll attempt to reset the state in two places:

On the identity service we'll delete the CSAT, and in the case of registration delete the newly-created user entirely.
On the client we'll unset the currentUserInfo through either an identityLogOut or deleteDiscardedIdentityAccount action, which will result in clearSensitiveData being called due to the user ID no longer matching the one stamped on the SQLite DB.

Note – would normally put @tomek and @inka on this review, but since they're out for the rest of this week, I'm asking @varun to review.

Test Plan

Force keyserver auth to fail with this patch
Test new registration flow and confirm that it fails
Check the logs and confirm that the SQLite database was deleted
Stash the patch above
Try registration again and confirm that it works, and doesn't error due to identity already having an account with that username

Diff Detail

Repository

rCOMM Comm

Lint

No Lint Coverage

Unit

No Test Coverage

Event Timeline

ashoat created this revision.Apr 30 2024, 11:36 AM

ashoat added a child revision: D11846: [lib][native][web] Wait until database deletion before rejecting login/registration attempt.

ashoat added inline comments.Apr 30 2024, 11:42 AM

lib/actions/user-actions.js
334 ↗	(On Diff #39710)	I initially tried using the existing `logOut` and `deleteAccount`, but `deleteAccount` didn't work because the keyserver account deletion failed, which would result in dispatching `DELETE_ACCOUNT_FAILED` instead of `DELETE_ACCOUNT_SUCCESS`. As described in the comment above, we need `DELETE_ACCOUNT_SUCCESS` in order for the reducers to clear the `currentUserInfo`, which is what leads to the SQLite database being cleared. To get around this I decided to implement new functions. `useIdentityLogOut` wasn't strictly necessary since `useLogOut` always succeeds already, but I decided it would be better to skip calling the keyserver `logOut` endpoint here since it's not necessary.

Harbormaster completed remote builds in B28606: Diff 39710.Apr 30 2024, 11:53 AM

ashoat requested review of this revision.Apr 30 2024, 11:53 AM

what happens if identity account deletion fails after the failed keyserver auth? should we notify the user that their account was registered successfully?