Cryptography service now handles random byte generation

Protected strings are now protected in memory
2025-10-03 15:40:18 -04:00 · 2020-05-18 14:14:28 +02:00
parent ceaf7dabd3
commit 9126307b4c
22 changed files with 134 additions and 105 deletions
--- a/ModernKeePass.Application/Entry/Commands/UpsertField/UpsertFieldCommand.cs
+++ b/ModernKeePass.Application/Entry/Commands/UpsertField/UpsertFieldCommand.cs
@@ -1,4 +1,5 @@
-using MediatR;
+using System.Threading.Tasks;
+using MediatR;
 using ModernKeePass.Application.Common.Interfaces;
 using ModernKeePass.Domain.Exceptions;

@@ -11,7 +12,7 @@ namespace ModernKeePass.Application.Entry.Commands.UpsertField
        public object FieldValue { get; set; }
        public bool IsProtected { get; set; } = true;

-        public class UpsertFieldCommandHandler : IRequestHandler<UpsertFieldCommand>
+        public class UpsertFieldCommandHandler : IAsyncRequestHandler<UpsertFieldCommand>
        {
            private readonly IDatabaseProxy _database;

@@ -20,11 +21,11 @@ namespace ModernKeePass.Application.Entry.Commands.UpsertField
                _database = database;
            }

-            public void Handle(UpsertFieldCommand message)
+            public async Task Handle(UpsertFieldCommand message)
            {
                if (!_database.IsOpen) throw new DatabaseClosedException();

-                _database.UpdateEntry(message.EntryId, message.FieldName, message.FieldValue, message.IsProtected);
+                await _database.UpdateEntry(message.EntryId, message.FieldName, message.FieldValue, message.IsProtected);
            }
        }
    }
--- a/ModernKeePass.Application/Entry/Models/EntryVm.cs
+++ b/ModernKeePass.Application/Entry/Models/EntryVm.cs
@@ -39,29 +39,20 @@ namespace ModernKeePass.Application.Entry.Models
        public void Mapping(Profile profile)
        {
            profile.CreateMap<EntryEntity, EntryVm>()
-                .ForMember(d => d.ParentGroupId, opts => opts.MapFrom(s => s.ParentId))
-                .ForMember(d => d.ParentGroupName, opts => opts.MapFrom(s => s.ParentName))
-                .ForMember(d => d.Id, opts => opts.MapFrom(s => s.Id))
                .ForMember(d => d.Title, opts => opts.MapFrom(s => s.Fields.FirstOrDefault(f => 
-                    f.Name.Equals(EntryFieldName.Title, StringComparison.OrdinalIgnoreCase)) ?? new FieldEntity { Name = EntryFieldName.Title, IsProtected = true } ))
+                    f.Name.Equals(EntryFieldName.Title, StringComparison.OrdinalIgnoreCase)) ?? new FieldEntity { Name = EntryFieldName.Title, IsProtected = false } ))
                .ForMember(d => d.Username, opts => opts.MapFrom(s => s.Fields.FirstOrDefault(f => 
-                    f.Name.Equals(EntryFieldName.UserName, StringComparison.OrdinalIgnoreCase)) ?? new FieldEntity { Name = EntryFieldName.UserName, IsProtected = true } ))
+                    f.Name.Equals(EntryFieldName.UserName, StringComparison.OrdinalIgnoreCase)) ?? new FieldEntity { Name = EntryFieldName.UserName, IsProtected = false } ))
                .ForMember(d => d.Password, opts => opts.MapFrom(s => s.Fields.FirstOrDefault(f => 
                    f.Name.Equals(EntryFieldName.Password, StringComparison.OrdinalIgnoreCase)) ?? new FieldEntity { Name = EntryFieldName.Password, IsProtected = true } ))
                .ForMember(d => d.Url, opts => opts.MapFrom(s => s.Fields.FirstOrDefault(f => 
-                    f.Name.Equals(EntryFieldName.Url, StringComparison.OrdinalIgnoreCase)) ?? new FieldEntity { Name = EntryFieldName.Url, IsProtected = true } ))
+                    f.Name.Equals(EntryFieldName.Url, StringComparison.OrdinalIgnoreCase)) ?? new FieldEntity { Name = EntryFieldName.Url, IsProtected = false } ))
                .ForMember(d => d.Notes, opts => opts.MapFrom(s => s.Fields.FirstOrDefault(f => 
-                    f.Name.Equals(EntryFieldName.Notes, StringComparison.OrdinalIgnoreCase)) ?? new FieldEntity { Name = EntryFieldName.Notes, IsProtected = true } ))
+                    f.Name.Equals(EntryFieldName.Notes, StringComparison.OrdinalIgnoreCase)) ?? new FieldEntity { Name = EntryFieldName.Notes, IsProtected = false } ))
                .ForMember(d => d.AdditionalFields, opts => opts.MapFrom(s => 
                    s.Fields.Where(f => !EntryFieldName.StandardFieldNames.Contains(f.Name, StringComparer.OrdinalIgnoreCase))))
                .ForMember(d => d.History, opts => opts.MapFrom(s => s.History.Reverse()))
-                .ForMember(d => d.HasExpirationDate, opts => opts.MapFrom(s => s.HasExpirationDate))
-                .ForMember(d => d.ExpirationDate, opts => opts.MapFrom(s => s.ExpirationDate))
-                .ForMember(d => d.ModificationDate, opts => opts.MapFrom(s => s.LastModificationDate))
-                .ForMember(d => d.Icon, opts => opts.MapFrom(s => s.HasExpirationDate && s.ExpirationDate < DateTimeOffset.Now ? Icon.ReportHacked : s.Icon))
-                .ForMember(d => d.ForegroundColor, opts => opts.MapFrom(s => s.ForegroundColor))
-                .ForMember(d => d.BackgroundColor, opts => opts.MapFrom(s => s.BackgroundColor))
-                .ForMember(d => d.Attachments, opts => opts.MapFrom(s => s.Attachments));
+                .ForMember(d => d.Icon, opts => opts.MapFrom(s => s.HasExpirationDate && s.ExpirationDate < DateTimeOffset.Now ? Icon.ReportHacked : s.Icon));
        }
    }
 }