summaryrefslogtreecommitdiff
path: root/main
diff options
context:
space:
mode:
Diffstat (limited to 'main')
-rw-r--r--main/src/ui/java/de/blinkt/openvpn/fragments/Settings_Authentication.java260
-rw-r--r--main/src/ui/java/de/blinkt/openvpn/fragments/Settings_Authentication.kt212
-rw-r--r--main/src/ui/java/de/blinkt/openvpn/fragments/Utils.kt4
3 files changed, 214 insertions, 262 deletions
diff --git a/main/src/ui/java/de/blinkt/openvpn/fragments/Settings_Authentication.java b/main/src/ui/java/de/blinkt/openvpn/fragments/Settings_Authentication.java
deleted file mode 100644
index 48e98cb9..00000000
--- a/main/src/ui/java/de/blinkt/openvpn/fragments/Settings_Authentication.java
+++ /dev/null
@@ -1,260 +0,0 @@
-/*
- * Copyright (c) 2012-2016 Arne Schwabe
- * Distributed under the GNU GPL v2 with additional terms. For full terms see the file doc/LICENSE.txt
- */
-
-package de.blinkt.openvpn.fragments;
-
-import android.app.Activity;
-import android.content.Intent;
-import android.os.Build;
-import android.os.Bundle;
-import android.text.TextUtils;
-import android.util.Pair;
-
-import androidx.fragment.app.DialogFragment;
-import androidx.preference.CheckBoxPreference;
-import androidx.preference.EditTextPreference;
-import androidx.preference.ListPreference;
-import androidx.preference.Preference;
-import androidx.preference.SwitchPreference;
-
-import de.blinkt.openvpn.activities.FileSelect;
-import de.blinkt.openvpn.R;
-import de.blinkt.openvpn.core.VpnStatus;
-import de.blinkt.openvpn.views.RemoteCNPreference;
-import de.blinkt.openvpn.VpnProfile;
-import de.blinkt.openvpn.views.RemoteCNPreferenceDialog;
-
-import java.io.IOException;
-
-
-public class Settings_Authentication extends OpenVpnPreferencesFragment implements Preference.OnPreferenceChangeListener, Preference.OnPreferenceClickListener {
- private static final int SELECT_TLS_FILE_LEGACY_DIALOG = 10;
- private static final int SELECT_TLS_FILE_KITKAT = SELECT_TLS_FILE_LEGACY_DIALOG + 1;
- private CheckBoxPreference mExpectTLSCert;
- private CheckBoxPreference mCheckRemoteCN;
- private RemoteCNPreference mRemoteCN;
- private ListPreference mTLSAuthDirection;
- private Preference mTLSAuthFile;
- private SwitchPreference mUseTLSAuth;
- private EditTextPreference mDataCiphers;
- private String mTlsAuthFileData;
- private EditTextPreference mAuth;
- private EditTextPreference mRemoteX509Name;
-
- @Override
- public void onCreate(Bundle savedInstanceState) {
- super.onCreate(savedInstanceState);
-
- // Load the preferences from an XML resource
- addPreferencesFromResource(R.xml.vpn_authentification);
-
- mExpectTLSCert = findPreference("remoteServerTLS");
- mCheckRemoteCN = (CheckBoxPreference) findPreference("checkRemoteCN");
- mRemoteCN = (RemoteCNPreference) findPreference("remotecn");
- mRemoteCN.setOnPreferenceChangeListener(this);
-
- mRemoteX509Name = (EditTextPreference) findPreference("remotex509name");
- mRemoteX509Name.setOnPreferenceChangeListener(this);
-
- mUseTLSAuth = (SwitchPreference) findPreference("useTLSAuth");
- mTLSAuthFile = findPreference("tlsAuthFile");
- mTLSAuthDirection = (ListPreference) findPreference("tls_direction");
-
-
- mTLSAuthFile.setOnPreferenceClickListener(this);
-
- mDataCiphers = (EditTextPreference) findPreference("dataciphers");
- mDataCiphers.setOnPreferenceChangeListener(this);
-
- mAuth = (EditTextPreference) findPreference("auth");
- mAuth.setOnPreferenceChangeListener(this);
-
- loadSettings();
-
- }
-
- @Override
- public void onCreatePreferences(Bundle savedInstanceState, String rootKey) {
-
- }
-
- @Override
- protected void loadSettings() {
-
- mExpectTLSCert.setChecked(mProfile.mExpectTLSCert);
- mCheckRemoteCN.setChecked(mProfile.mCheckRemoteCN);
- mRemoteCN.setDN(mProfile.mRemoteCN);
- mRemoteCN.setAuthType(mProfile.mX509AuthType);
- onPreferenceChange(mRemoteCN,
- new Pair<Integer, String>(mProfile.mX509AuthType, mProfile.mRemoteCN));
-
- mRemoteX509Name.setText(mProfile.mx509UsernameField);
- onPreferenceChange(mRemoteX509Name, mProfile.mx509UsernameField);
-
- mUseTLSAuth.setChecked(mProfile.mUseTLSAuth);
- mTlsAuthFileData = mProfile.mTLSAuthFilename;
- setTlsAuthSummary(mTlsAuthFileData);
- mTLSAuthDirection.setValue(mProfile.mTLSAuthDirection);
- mDataCiphers.setText(mProfile.mDataCiphers);
- onPreferenceChange(mDataCiphers, mProfile.mDataCiphers);
- mAuth.setText(mProfile.mAuth);
- onPreferenceChange(mAuth, mProfile.mAuth);
-
- if (mProfile.mAuthenticationType == VpnProfile.TYPE_STATICKEYS) {
- mExpectTLSCert.setEnabled(false);
- mCheckRemoteCN.setEnabled(false);
- mUseTLSAuth.setChecked(true);
- } else {
- mExpectTLSCert.setEnabled(true);
- mCheckRemoteCN.setEnabled(true);
-
- }
- }
-
- @Override
- protected void saveSettings() {
- mProfile.mExpectTLSCert = mExpectTLSCert.isChecked();
- mProfile.mCheckRemoteCN = mCheckRemoteCN.isChecked();
- mProfile.mRemoteCN = mRemoteCN.getCNText();
- mProfile.mX509AuthType = mRemoteCN.getAuthtype();
-
- mProfile.mUseTLSAuth = mUseTLSAuth.isChecked();
- mProfile.mTLSAuthFilename = mTlsAuthFileData;
- mProfile.mx509UsernameField = mRemoteX509Name.getText();
-
- if (mTLSAuthDirection.getValue() == null)
- mProfile.mTLSAuthDirection = null;
- else
- mProfile.mTLSAuthDirection = mTLSAuthDirection.getValue();
-
- if (mDataCiphers.getText() == null)
- mProfile.mDataCiphers = null;
- else
- mProfile.mDataCiphers = mDataCiphers.getText();
-
- if (mAuth.getText() == null)
- mProfile.mAuth = null;
- else
- mProfile.mAuth = mAuth.getText();
-
- }
-
-
- @Override
- public boolean onPreferenceChange(Preference preference, Object newValue) {
- if (preference == mRemoteCN) {
- @SuppressWarnings("unchecked")
- int authtype = ((Pair<Integer, String>) newValue).first;
- @SuppressWarnings("unchecked")
- String dn = ((Pair<Integer, String>) newValue).second;
-
- if ("".equals(dn)) {
- if (mProfile.mConnections.length > 0) {
- preference.setSummary(getX509String(VpnProfile.X509_VERIFY_TLSREMOTE_RDN, mProfile.mConnections[0].mServerName));
- } else {
- preference.setSummary(R.string.no_remote_defined);
- }
- } else {
- preference.setSummary(getX509String(authtype, dn));
- }
-
- } else if (preference == mDataCiphers || preference == mAuth) {
- preference.setSummary((CharSequence) newValue);
- } else if (preference == mRemoteX509Name) {
- preference.setSummary(TextUtils.isEmpty((CharSequence) newValue) ? "CN (default)" : (CharSequence) newValue);
- }
- return true;
- }
-
- private CharSequence getX509String(int authtype, String dn) {
- String ret = "";
- switch (authtype) {
- case VpnProfile.X509_VERIFY_TLSREMOTE:
- case VpnProfile.X509_VERIFY_TLSREMOTE_COMPAT_NOREMAPPING:
- ret += "tls-remote ";
- break;
-
- case VpnProfile.X509_VERIFY_TLSREMOTE_DN:
- ret = "dn: ";
- break;
-
- case VpnProfile.X509_VERIFY_TLSREMOTE_RDN:
- ret = "rdn: ";
- break;
-
- case VpnProfile.X509_VERIFY_TLSREMOTE_RDN_PREFIX:
- ret = "rdn prefix: ";
- break;
- }
- return ret + dn;
- }
-
- void startFileDialog() {
- Intent startFC = null;
- if (Build.VERSION.SDK_INT >= Build.VERSION_CODES.KITKAT && !Utils.alwaysUseOldFileChooser(getActivity())) {
- startFC = Utils.getFilePickerIntent(getActivity(), Utils.FileType.TLS_AUTH_FILE);
- startActivityForResult(startFC, SELECT_TLS_FILE_KITKAT);
- }
-
- if (startFC == null) {
- startFC = new Intent(getActivity(), FileSelect.class);
- startFC.putExtra(FileSelect.START_DATA, mTlsAuthFileData);
- startFC.putExtra(FileSelect.WINDOW_TITLE, R.string.tls_auth_file);
- startActivityForResult(startFC, SELECT_TLS_FILE_LEGACY_DIALOG);
- }
- }
-
- @Override
- public boolean onPreferenceClick(Preference preference) {
- startFileDialog();
- return true;
-
- }
-
- @Override
- public void onActivityResult(int requestCode, int resultCode, Intent data) {
- super.onActivityResult(requestCode, resultCode, data);
- if (requestCode == SELECT_TLS_FILE_LEGACY_DIALOG && resultCode == Activity.RESULT_OK) {
- String result = data.getStringExtra(FileSelect.RESULT_DATA);
- mTlsAuthFileData = result;
- setTlsAuthSummary(result);
- } else if (requestCode == SELECT_TLS_FILE_KITKAT && resultCode == Activity.RESULT_OK) {
- try {
- mTlsAuthFileData = Utils.getFilePickerResult(Utils.FileType.TLS_AUTH_FILE, data, getActivity());
- setTlsAuthSummary(mTlsAuthFileData);
- } catch (IOException e) {
- VpnStatus.logException(e);
- } catch (SecurityException se) {
- VpnStatus.logException(se);
- }
- }
- }
-
- private void setTlsAuthSummary(String result) {
- if (result == null)
- result = getString(R.string.no_certificate);
- if (result.startsWith(VpnProfile.INLINE_TAG))
- mTLSAuthFile.setSummary(R.string.inline_file_data);
- else if (result.startsWith(VpnProfile.DISPLAYNAME_TAG))
- mTLSAuthFile.setSummary(getString(R.string.imported_from_file, VpnProfile.getDisplayName(result)));
- else
- mTLSAuthFile.setSummary(result);
- }
-
- @Override
- public void onDisplayPreferenceDialog(Preference preference) {
- DialogFragment dialogFragment = null;
- if (preference instanceof RemoteCNPreference) {
- dialogFragment = RemoteCNPreferenceDialog.newInstance(preference.getKey());
- }
-
- if (dialogFragment != null) {
- dialogFragment.setTargetFragment(this, 0);
- dialogFragment.show(requireFragmentManager(), "RemoteCNDialog");
- } else {
- super.onDisplayPreferenceDialog(preference);
- }
- }
-} \ No newline at end of file
diff --git a/main/src/ui/java/de/blinkt/openvpn/fragments/Settings_Authentication.kt b/main/src/ui/java/de/blinkt/openvpn/fragments/Settings_Authentication.kt
new file mode 100644
index 00000000..15687f26
--- /dev/null
+++ b/main/src/ui/java/de/blinkt/openvpn/fragments/Settings_Authentication.kt
@@ -0,0 +1,212 @@
+/*
+ * Copyright (c) 2012-2016 Arne Schwabe
+ * Distributed under the GNU GPL v2 with additional terms. For full terms see the file doc/LICENSE.txt
+ */
+package de.blinkt.openvpn.fragments
+
+import android.app.Activity
+import android.content.Intent
+import android.os.Build
+import android.os.Bundle
+import android.util.Pair
+import androidx.activity.result.ActivityResult
+import androidx.activity.result.contract.ActivityResultContracts
+import androidx.fragment.app.DialogFragment
+import androidx.preference.*
+import de.blinkt.openvpn.R
+import de.blinkt.openvpn.VpnProfile
+import de.blinkt.openvpn.activities.FileSelect
+import de.blinkt.openvpn.core.VpnStatus
+import de.blinkt.openvpn.fragments.Utils.alwaysUseOldFileChooser
+import de.blinkt.openvpn.fragments.Utils.getFilePickerIntent
+import de.blinkt.openvpn.fragments.Utils.getFilePickerResult
+import de.blinkt.openvpn.views.RemoteCNPreference
+import de.blinkt.openvpn.views.RemoteCNPreferenceDialog
+import java.io.IOException
+
+class Settings_Authentication : OpenVpnPreferencesFragment(), Preference.OnPreferenceChangeListener,
+ Preference.OnPreferenceClickListener {
+ private lateinit var mExpectTLSCert: CheckBoxPreference
+ private lateinit var mCheckRemoteCN: CheckBoxPreference
+ private lateinit var mRemoteCN: RemoteCNPreference
+ private lateinit var mTLSAuthDirection: ListPreference
+ private lateinit var mTLSAuthFile: Preference
+ private lateinit var mUseTLSAuth: SwitchPreference
+ private lateinit var mDataCiphers: EditTextPreference
+ private var mTlsAuthFileData: String? = null
+ private lateinit var mAuth: EditTextPreference
+ private lateinit var mRemoteX509Name: EditTextPreference
+
+ override fun onCreatePreferences(savedInstanceState: Bundle?, rootKey: String?) {
+ }
+
+ override fun onCreate(savedInstanceState: Bundle?) {
+ super.onCreate(savedInstanceState)
+
+ // Load the preferences from an XML resource
+ addPreferencesFromResource(R.xml.vpn_authentification)
+ mExpectTLSCert = findPreference("remoteServerTLS")!!
+ mCheckRemoteCN = findPreference("checkRemoteCN")!!
+ mRemoteCN = findPreference("remotecn")!!
+ mRemoteCN.onPreferenceChangeListener = this
+ mRemoteX509Name = findPreference("remotex509name")!!
+ mRemoteX509Name.onPreferenceChangeListener = this
+ mUseTLSAuth = findPreference("useTLSAuth")!!
+ mTLSAuthFile = findPreference("tlsAuthFile")!!
+ mTLSAuthDirection = findPreference("tls_direction")!!
+ mTLSAuthFile.onPreferenceClickListener = this
+ mDataCiphers = findPreference("dataciphers")!!
+ mDataCiphers.onPreferenceChangeListener = this
+ mAuth = findPreference("auth")!!
+ mAuth.onPreferenceChangeListener = this
+ loadSettings()
+ }
+
+ override fun loadSettings() {
+ mExpectTLSCert.isChecked = mProfile.mExpectTLSCert
+ mCheckRemoteCN.isChecked = mProfile.mCheckRemoteCN
+ mRemoteCN.setDN(mProfile.mRemoteCN)
+ mRemoteCN.setAuthType(mProfile.mX509AuthType)
+ onPreferenceChange(
+ mRemoteCN,
+ Pair(mProfile.mX509AuthType, mProfile.mRemoteCN)
+ )
+ mRemoteX509Name.text = mProfile.mx509UsernameField ?: ""
+ onPreferenceChange(mRemoteX509Name, mProfile.mx509UsernameField ?: "")
+ mUseTLSAuth.isChecked = mProfile.mUseTLSAuth
+ mTlsAuthFileData = mProfile.mTLSAuthFilename
+ setTlsAuthSummary(mTlsAuthFileData)
+ mTLSAuthDirection.value = mProfile.mTLSAuthDirection
+ mDataCiphers.text = mProfile.mDataCiphers
+ onPreferenceChange(mDataCiphers, mProfile.mDataCiphers)
+ mAuth.text = mProfile.mAuth
+ onPreferenceChange(mAuth, mProfile.mAuth)
+ if (mProfile.mAuthenticationType == VpnProfile.TYPE_STATICKEYS) {
+ mExpectTLSCert.isEnabled = false
+ mCheckRemoteCN.isEnabled = false
+ mUseTLSAuth.isChecked = true
+ } else {
+ mExpectTLSCert.isEnabled = true
+ mCheckRemoteCN.isEnabled = true
+ }
+ }
+
+ override fun saveSettings() {
+ mProfile.mExpectTLSCert = mExpectTLSCert.isChecked
+ mProfile.mCheckRemoteCN = mCheckRemoteCN.isChecked
+ mProfile.mRemoteCN = mRemoteCN.cnText
+ mProfile.mX509AuthType = mRemoteCN.authtype
+ mProfile.mUseTLSAuth = mUseTLSAuth.isChecked
+ mProfile.mTLSAuthFilename = mTlsAuthFileData
+ mProfile.mx509UsernameField = mRemoteX509Name.text
+ if (mTLSAuthDirection.value == null) mProfile.mTLSAuthDirection =
+ null else mProfile.mTLSAuthDirection = mTLSAuthDirection.value
+ if (mDataCiphers.text == null) mProfile.mDataCiphers = null else mProfile.mDataCiphers =
+ mDataCiphers.text
+ if (mAuth.text == null) mProfile.mAuth = null else mProfile.mAuth = mAuth.text
+ }
+
+ override fun onPreferenceChange(preference: Preference, newValue: Any): Boolean {
+ if (preference === mRemoteCN && newValue is Pair<*, *>) {
+ val authtype = newValue.first as Int
+ val dn = newValue.second
+ if ("" == dn) {
+ if (mProfile.mConnections.size > 0) {
+ preference.summary = getX509String(
+ VpnProfile.X509_VERIFY_TLSREMOTE_RDN,
+ mProfile.mConnections[0].mServerName
+ )
+ } else {
+ preference.setSummary(R.string.no_remote_defined)
+ }
+ } else {
+ preference.summary = getX509String(authtype, dn as String)
+ }
+ } else if (preference === mDataCiphers || preference === mAuth) {
+ preference.summary = (newValue as CharSequence)
+ } else if (preference === mRemoteX509Name) {
+ preference.summary =
+ (if (newValue.toString().isEmpty()) "CN (default)" else newValue as CharSequence)
+ }
+ return true
+ }
+
+ private fun getX509String(authtype: Int, dn: String): CharSequence {
+ var ret = ""
+ when (authtype) {
+ VpnProfile.X509_VERIFY_TLSREMOTE, VpnProfile.X509_VERIFY_TLSREMOTE_COMPAT_NOREMAPPING -> ret += "tls-remote "
+ VpnProfile.X509_VERIFY_TLSREMOTE_DN -> ret = "dn: "
+ VpnProfile.X509_VERIFY_TLSREMOTE_RDN -> ret = "rdn: "
+ VpnProfile.X509_VERIFY_TLSREMOTE_RDN_PREFIX -> ret = "rdn prefix: "
+ }
+ return ret + dn
+ }
+
+ fun startFileDialog() {
+ var startFC: Intent? = null
+ if (Build.VERSION.SDK_INT >= Build.VERSION_CODES.KITKAT && !alwaysUseOldFileChooser(activity)) {
+ startFC = getFilePickerIntent(requireContext(), Utils.FileType.TLS_AUTH_FILE)
+ registerForActivityResult(ActivityResultContracts.StartActivityForResult()) { result: ActivityResult ->
+ if (result.resultCode == Activity.RESULT_OK)
+ try {
+ mTlsAuthFileData =
+ getFilePickerResult(
+ Utils.FileType.TLS_AUTH_FILE,
+ result.data,
+ requireContext()
+ )
+ setTlsAuthSummary(mTlsAuthFileData)
+ } catch (e: IOException) {
+ VpnStatus.logException(e)
+ } catch (se: SecurityException) {
+ VpnStatus.logException(se)
+ }
+ }
+ }
+ if (startFC == null) {
+ startFC = Intent(activity, FileSelect::class.java)
+ startFC.putExtra(FileSelect.START_DATA, mTlsAuthFileData)
+ startFC.putExtra(FileSelect.WINDOW_TITLE, R.string.tls_auth_file)
+ registerForActivityResult(ActivityResultContracts.StartActivityForResult()) { result: ActivityResult ->
+
+ val resData = result.data?.getStringExtra(FileSelect.RESULT_DATA)
+ mTlsAuthFileData = resData
+ setTlsAuthSummary(resData)
+
+ }
+ }
+ }
+
+ override fun onPreferenceClick(preference: Preference): Boolean {
+ startFileDialog()
+ return true
+ }
+
+
+ private fun setTlsAuthSummary(result: String?) {
+ var result = result
+ if (result == null)
+ result = getString(R.string.no_certificate)
+
+ if (result.startsWith(VpnProfile.INLINE_TAG))
+ mTLSAuthFile.setSummary(R.string.inline_file_data)
+ else if (result.startsWith(VpnProfile.DISPLAYNAME_TAG))
+ mTLSAuthFile.summary =
+ getString(R.string.imported_from_file, VpnProfile.getDisplayName(result))
+ else
+ mTLSAuthFile.summary = result
+ }
+
+ override fun onDisplayPreferenceDialog(preference: Preference) {
+ var dialogFragment: DialogFragment? = null
+ if (preference is RemoteCNPreference) {
+ dialogFragment = RemoteCNPreferenceDialog.newInstance(preference.getKey())
+ }
+ if (dialogFragment != null) {
+ dialogFragment.setTargetFragment(this, 0)
+ dialogFragment.show(parentFragmentManager, "RemoteCNDialog")
+ } else {
+ super.onDisplayPreferenceDialog(preference)
+ }
+ }
+} \ No newline at end of file
diff --git a/main/src/ui/java/de/blinkt/openvpn/fragments/Utils.kt b/main/src/ui/java/de/blinkt/openvpn/fragments/Utils.kt
index ae3f0617..8756b5b0 100644
--- a/main/src/ui/java/de/blinkt/openvpn/fragments/Utils.kt
+++ b/main/src/ui/java/de/blinkt/openvpn/fragments/Utils.kt
@@ -187,8 +187,8 @@ object Utils {
@JvmStatic
@Throws(IOException::class, SecurityException::class)
- fun getFilePickerResult(ft: FileType?, result: Intent, c: Context): String? {
- val uri = result.data ?: return null
+ fun getFilePickerResult(ft: FileType?, result: Intent?, c: Context): String? {
+ val uri = result?.data ?: return null
val fileData = readBytesFromStream(c.contentResolver.openInputStream(uri))
var newData: String? = null
val cursor = c.contentResolver.query(uri, null, null, null, null)