// CSS is loaded via HTML link tag /*import { initChat } from '../src/pages/chat/chat';*/ import Database from './services/database.service'; import Services from './services/service'; import TokenService from './services/token'; import { cleanSubscriptions } from './utils/subscription.utils'; import { LoginComponent } from './pages/home/home-component'; // import { prepareAndSendPairingTx } from './utils/sp-address.utils'; // Unused import import ModalService from './services/modal.service'; import { MessageType } from './models/process.model'; import { splitPrivateData, isValid32ByteHex } from './utils/service.utils'; import { MerkleProofResult } from 'pkg/sdk_client'; const routes: { [key: string]: string } = { home: '/src/pages/home/home.html', 'process-element': '/src/pages/process-element/process-element.html', account: '/src/pages/account/account.html', chat: '/src/pages/chat/chat.html', signature: '/src/pages/signature/signature.html', }; export let currentRoute = ''; export async function navigate(path: string) { console.log('🧭 Navigate called with path:', path); cleanSubscriptions(); cleanPage(); path = path.replace(/^\//, ''); if (path.includes('/')) { const parsedPath = path.split('/')[0]; if (!routes[parsedPath]) { path = 'home'; } } console.log('🧭 Final path after processing:', path); await handleLocation(path); console.log('🧭 handleLocation completed for path:', path); } async function handleLocation(path: string) { console.log('📍 handleLocation called with path:', path); const parsedPath = path.split('/'); if (path.includes('/')) { path = parsedPath[0]; } currentRoute = path; const routeHtml = routes[path] || routes['home']; console.log('📍 Current route set to:', currentRoute); console.log('📍 Route HTML:', routeHtml); const content = document.getElementById('containerId'); console.log('📍 Container element found:', !!content); if (content) { if (path === 'home') { console.log('🏠 Processing home route...'); // Use LoginComponent const loginComponent = LoginComponent; const container = document.querySelector('#containerId'); console.log('🏠 Container for home:', !!container); const accountComponent = document.createElement('login-4nk-component'); accountComponent.setAttribute( 'style', 'width: 100vw; height: 100vh; position: relative; grid-row: 2;' ); if (container) { container.appendChild(accountComponent); console.log('🏠 Component appended to container'); } // Initialize the home page after component is added to DOM console.log('🏠 Initializing home page...'); try { const { initHomePage } = await import('./pages/home/home'); await initHomePage(); console.log('✅ Home page initialized successfully'); } catch (error) { console.error('❌ Failed to initialize home page:', error); } } else { console.log('📍 Processing other route:', path); const html = await fetch(routeHtml).then(data => data.text()); content.innerHTML = html; } await new Promise(requestAnimationFrame); // Essential functions are now handled directly in the application // const modalService = await ModalService.getInstance() // modalService.injectValidationModal() switch (path) { case 'process': // Process functionality removed - redirect to account console.warn('Process functionality has been removed, redirecting to account'); await navigate('account'); break; case 'process-element': // Process element functionality removed console.warn('Process element functionality has been removed'); break; case 'account': // Account page now uses device-management component directly break; /*case 'chat': const { ChatComponent } = await import('./pages/chat/chat-component'); const chatContainer = document.querySelector('.group-list'); if (chatContainer) { if (!customElements.get('chat-component')) { customElements.define('chat-component', ChatComponent); } const chatComponent = document.createElement('chat-component'); chatContainer.appendChild(chatComponent); } break;*/ case 'signature': // Signature functionality removed console.warn('Signature functionality has been removed'); break; } } } window.onpopstate = async () => { const services = await Services.getInstance(); if (!services.isPaired()) { handleLocation('home'); } else { handleLocation('process'); } }; export async function init(): Promise { try { console.log('🚀 Starting application initialization...'); // ÉTAPE 1: GESTION DE LA SÉCURITÉ (clés de sécurité) - EN PREMIER console.log('🔐 Step 1: Security key management...'); const securityConfigured = await handleSecurityKeyManagement(); if (!securityConfigured) { console.log('🔐 Security not configured, redirecting to home for setup...'); // Naviguer directement vers home pour la configuration de sécurité handleLocation('home'); return; } // ÉTAPE 2: INITIALISATION DES SERVICES (seulement après la sécurité) console.log('🔧 Step 2: Initializing services...'); const services = await Services.getInstance(); (window as any).myService = services; const db = await Database.getInstance(); // Register service worker and wait for it to be ready console.log('📱 Registering service worker...'); await db.registerServiceWorker('/src/service-workers/database.worker.js'); // ÉTAPE 3: CONNEXION AUX RELAIS (pour la hauteur de blocs) console.log('🌐 Step 3: Connecting to relays for block height...'); try { console.log('🌐 Connecting to relays...'); services.updateUserStatus('🌐 Connecting to blockchain relays...'); await services.connectAllRelays(); console.log('✅ Relays connected successfully'); services.updateUserStatus('✅ Connected to blockchain relays'); // CRITICAL: Wait for handshake to be processed and block height to be set console.log('⏳ Waiting for relay handshake to complete...'); services.updateUserStatus('⏳ Waiting for blockchain synchronization...'); await services.waitForBlockHeight(); console.log('✅ Block height received from relay'); services.updateUserStatus('✅ Blockchain synchronized'); } catch (error) { console.warn('⚠️ Failed to connect to some relays:', error); console.log('🔄 Continuing despite relay connection issues...'); services.updateUserStatus('⚠️ Some relays unavailable, continuing...'); } // ÉTAPE 4: GÉNÉRATION/CHARGEMENT DU WALLET console.log('💰 Step 4: Wallet generation/loading...'); const device = await services.getDeviceFromDatabase(); console.log('🚀 ~ device:', device); if (!device) { // No wallet exists, create new account console.log('🔍 No existing wallet found, creating new account...'); services.updateUserStatus('🔍 Creating new secure wallet...'); await services.createNewDevice(); services.updateUserStatus('✅ New wallet created successfully'); } else { // Wallet exists, restore it and check pairing console.log('🔍 Existing wallet found, restoring account...'); services.updateUserStatus('🔍 Restoring existing wallet...'); services.restoreDevice(device); services.updateUserStatus('✅ Wallet restored successfully'); } // CRITICAL: Now that block height is set, synchronize wallet console.log('🔄 Synchronizing wallet with blockchain...'); services.updateUserStatus('🔄 Synchronizing wallet with blockchain...'); await services.updateDeviceBlockHeight(); console.log('✅ Wallet synchronization completed'); services.updateUserStatus('✅ Wallet synchronized successfully'); // ÉTAPE 5: HANDSHAKE console.log('🤝 Step 5: Performing handshake...'); await performHandshake(services); // ÉTAPE 6: PAIRING console.log('🔗 Step 6: Device pairing...'); await handlePairing(services); // ÉTAPE 7: ÉCOUTE DES PROCESSUS console.log('👂 Step 7: Starting process listening...'); await startProcessListening(services); // We register all the event listeners if we run in an iframe if (window.self !== window.top) { console.log('🖼️ Registering iframe listeners...'); await registerAllListeners(); // Add iframe mode class for styling document.body.classList.add('iframe-mode'); } // Navigate to appropriate page based on pairing status const isPaired = services.isPaired(); console.log('🔍 Device pairing status:', isPaired ? 'Paired' : 'Not paired'); if (isPaired) { console.log('✅ Device is paired, navigating to account page...'); await navigate('account'); console.log('✅ Navigation to account completed'); } else { console.log('⚠️ Device not paired, navigating to home page...'); await navigate('home'); console.log('✅ Navigation to home completed'); } console.log('✅ Application initialization completed successfully'); } catch (error) { console.error('❌ Application initialization failed:', error); // Handle WebAssembly memory errors specifically if (error instanceof RangeError && error.message.includes('WebAssembly.instantiate')) { console.error('🚨 WebAssembly memory error detected'); console.log('💡 Try refreshing the page or closing other tabs to free memory'); // Show user-friendly error message alert('⚠️ Insufficient memory for WebAssembly. Please refresh the page or close other tabs.'); } console.log('🔄 Falling back to home page...'); await navigate('home'); } } export async function registerAllListeners() { const services = await Services.getInstance(); const tokenService = await TokenService.getInstance(); const errorResponse = (errorMsg: string, origin: string, messageId?: string) => { window.parent.postMessage( { type: MessageType.ERROR, error: errorMsg, messageId, }, origin ); }; const successResponse = (data: any, origin: string, messageId?: string) => { // Use successResponse function console.log('Success response:', data); window.parent.postMessage( { type: MessageType.SUCCESS, data: data, messageId, }, origin ); }; // --- Handler functions --- const handleRequestLink = async (event: MessageEvent) => { if (event.data.type !== MessageType.REQUEST_LINK) { return; } const modalService = await ModalService.getInstance(); const result = await modalService.showConfirmationModal( { title: 'Confirmation de liaison', content: `

Liaison avec ${event.origin}

Vous êtes sur le point de lier l'identité numérique de la clé securisée propre à votre appareil avec ${event.origin}.

Cette action permettra à ${event.origin} d'intéragir avec votre appareil.

Voulez-vous continuer ?

`, confirmText: 'Ajouter un service', cancelText: 'Annuler', }, true ); if (!result) { const errorMsg = 'Failed to pair device: User refused to link'; console.error(errorMsg); // Error handling - no response needed } try { const tokens = await tokenService.generateSessionToken(event.origin); const acceptedMsg = { type: MessageType.LINK_ACCEPTED, accessToken: tokens.accessToken, refreshToken: tokens.refreshToken, messageId: event.data.messageId, }; window.parent.postMessage(acceptedMsg, event.origin); } catch (error) { const errorMsg = `Failed to generate tokens: ${error}`; console.error(errorMsg); // Error handling - no response needed } }; const handleCreatePairing = async (event: MessageEvent) => { if (event.data.type !== MessageType.CREATE_PAIRING) { return; } console.log('📨 [Router] Received CREATE_PAIRING request'); if (services.isPaired()) { const errorMsg = '⚠️ Device already paired — ignoring CREATE_PAIRING request'; console.warn(errorMsg); // Error handling - no response needed return; } try { const { accessToken } = event.data; console.log('🔐 Checking access token validity...'); const validToken = accessToken && (await tokenService.validateToken(accessToken, event.origin)); if (!validToken) { throw new Error('❌ Invalid or expired session token'); } console.log('✅ Token validated successfully'); console.log('🚀 Starting pairing process'); const myAddress = services.getDeviceAddress(); console.log('📍 Device address:', myAddress); console.log('🧱 Creating pairing process...'); const createPairingProcessReturn = await services.createPairingProcess('', [myAddress]); console.log('🧾 Pairing process created:', createPairingProcessReturn); const pairingId = createPairingProcessReturn.updated_process?.process_id; const stateId = createPairingProcessReturn.updated_process?.current_process?.states[0] ?.state_id as string; console.log('🔗 Pairing ID:', pairingId); console.log('🧩 State ID:', stateId); console.log('🔒 Registering device as paired...'); services.pairDevice(pairingId, [myAddress]); console.log('🧠 Handling API return for createPairingProcess...'); await services.handleApiReturn(createPairingProcessReturn); console.log('🔍 DEBUG: About to create PRD update...'); console.log('🧰 Creating PRD update...'); const createPrdUpdateReturn = await services.createPrdUpdate(pairingId, stateId); console.log('🧾 PRD update result:', createPrdUpdateReturn); await services.handleApiReturn(createPrdUpdateReturn); console.log('✅ DEBUG: PRD update completed successfully!'); console.log('🔍 DEBUG: About to approve change...'); console.log('✅ Approving change...'); const approveChangeReturn = await services.approveChange(pairingId, stateId); console.log('📜 Approve change result:', approveChangeReturn); await services.handleApiReturn(approveChangeReturn); console.log('✅ DEBUG: approveChange completed successfully!'); console.log('🔍 DEBUG: approveChange completed, about to call waitForPairingCommitment...'); console.log('⏳ Waiting for pairing process to be committed...'); await services.waitForPairingCommitment(pairingId); console.log('✅ DEBUG: waitForPairingCommitment completed successfully!'); console.log('🔍 DEBUG: About to call confirmPairing...'); console.log('🔁 Confirming pairing...'); await services.confirmPairing(pairingId); console.log('✅ DEBUG: confirmPairing completed successfully!'); console.log('🎉 Pairing successfully completed!'); // ✅ Send success response to frontend const successMsg = { type: MessageType.PAIRING_CREATED, pairingId, messageId: event.data.messageId, }; console.log('📤 Sending PAIRING_CREATED message to UI:', successMsg); window.parent.postMessage(successMsg, event.origin); } catch (e) { const errorMsg = `❌ Failed to create pairing process: ${e}`; console.error(errorMsg); // Error handling - no response needed } }; const handleGetMyProcesses = async (event: MessageEvent) => { if (event.data.type !== MessageType.GET_MY_PROCESSES) { return; } if (!services.isPaired()) { const errorMsg = 'Device not paired'; console.warn(errorMsg); // Error handling - no response needed return; } try { const { accessToken } = event.data; if (!accessToken || !(await tokenService.validateToken(accessToken, event.origin))) { throw new Error('Invalid or expired session token'); } const myProcesses = await services.getMyProcesses(); window.parent.postMessage( { type: MessageType.GET_MY_PROCESSES, myProcesses, messageId: event.data.messageId, }, event.origin ); } catch (e) { const errorMsg = `Failed to get processes: ${e}`; console.error(errorMsg); // Error handling - no response needed } }; const handleGetProcesses = async (event: MessageEvent) => { if (event.data.type !== MessageType.GET_PROCESSES) { return; } const tokenService = await TokenService.getInstance(); if (!services.isPaired()) { const errorMsg = 'Device not paired'; console.warn(errorMsg); // Error handling - no response needed return; } try { const { accessToken } = event.data; // Validate the session token if (!accessToken || !(await tokenService.validateToken(accessToken, event.origin))) { throw new Error('Invalid or expired session token'); } const processes = await services.getProcesses(); window.parent.postMessage( { type: MessageType.PROCESSES_RETRIEVED, processes, messageId: event.data.messageId, }, event.origin ); } catch (e) { const errorMsg = `Failed to get processes: ${e}`; console.error(errorMsg); // Error handling - no response needed } }; /// We got a state for some process and return as many clear attributes as we can const handleDecryptState = async (event: MessageEvent) => { if (event.data.type !== MessageType.RETRIEVE_DATA) { return; } const tokenService = await TokenService.getInstance(); if (!services.isPaired()) { const errorMsg = 'Device not paired'; console.warn(errorMsg); // Error handling - no response needed return; } try { const { processId, stateId, accessToken } = event.data; if (!accessToken || !(await tokenService.validateToken(accessToken, event.origin))) { throw new Error('Invalid or expired session token'); } // Retrieve the state for the process const process = await services.getProcess(processId); if (!process) { throw new Error("Can't find process"); } const state = services.getStateFromId(process, stateId); await services.checkConnections(process, stateId); const res: Record = {}; if (state) { // Decrypt all the data we have the key for for (const attribute of Object.keys(state.pcd_commitment)) { if (attribute === 'roles' || state.public_data[attribute]) { continue; } const decryptedAttribute = await services.decryptAttribute(processId, state, attribute); if (decryptedAttribute) { res[attribute] = decryptedAttribute; } } } else { throw new Error('Unknown state for process', processId); } window.parent.postMessage( { type: MessageType.DATA_RETRIEVED, data: res, messageId: event.data.messageId, }, event.origin ); } catch (e) { const errorMsg = `Failed to retrieve data: ${e}`; console.error(errorMsg); // Error handling - no response needed } }; const handleValidateToken = async (event: MessageEvent) => { if (event.data.type !== MessageType.VALIDATE_TOKEN) { return; } const accessToken = event.data.accessToken; const refreshToken = event.data.refreshToken; if (!accessToken || !refreshToken) { errorResponse( 'Failed to validate token: missing access, refresh token or both', event.origin, event.data.messageId ); } const isValid = await tokenService.validateToken(accessToken, event.origin); window.parent.postMessage( { type: MessageType.VALIDATE_TOKEN, accessToken: accessToken, refreshToken: refreshToken, isValid: isValid, messageId: event.data.messageId, }, event.origin ); }; const handleRenewToken = async (event: MessageEvent) => { if (event.data.type !== MessageType.RENEW_TOKEN) { return; } try { const refreshToken = event.data.refreshToken; if (!refreshToken) { throw new Error('No refresh token provided'); } const newAccessToken = await tokenService.refreshAccessToken(refreshToken, event.origin); if (!newAccessToken) { throw new Error('Failed to refresh token'); } window.parent.postMessage( { type: MessageType.RENEW_TOKEN, accessToken: newAccessToken, refreshToken: refreshToken, messageId: event.data.messageId, }, event.origin ); } catch (error) { const errorMsg = `Failed to renew token: ${error}`; console.error(errorMsg); // Error handling - no response needed } }; const handleGetPairingId = async (event: MessageEvent) => { if (event.data.type !== MessageType.GET_PAIRING_ID) {return;} if (!services.isPaired()) { const errorMsg = 'Device not paired'; console.warn(errorMsg); // Error handling - no response needed return; } try { const { accessToken } = event.data; if (!accessToken || !(await tokenService.validateToken(accessToken, event.origin))) { throw new Error('Invalid or expired session token'); } const userPairingId = services.getPairingProcessId(); window.parent.postMessage( { type: MessageType.GET_PAIRING_ID, userPairingId, messageId: event.data.messageId, }, event.origin ); } catch (e) { const errorMsg = `Failed to get pairing id: ${e}`; console.error(errorMsg); // Error handling - no response needed } }; const handleCreateProcess = async (event: MessageEvent) => { if (event.data.type !== MessageType.CREATE_PROCESS) {return;} if (!services.isPaired()) { const errorMsg = 'Device not paired'; console.warn(errorMsg); // Error handling - no response needed return; } try { const { processData, privateFields, roles, accessToken } = event.data; if (!accessToken || !(await tokenService.validateToken(accessToken, event.origin))) { throw new Error('Invalid or expired session token'); } const { privateData, publicData } = splitPrivateData(processData, privateFields); const createProcessReturn = await services.createProcess(privateData, publicData, roles); if (!createProcessReturn.updated_process) { throw new Error('Empty updated_process in createProcessReturn'); } const processId = createProcessReturn.updated_process.process_id; const process = createProcessReturn.updated_process.current_process; const stateId = process.states[0].state_id; await services.handleApiReturn(createProcessReturn); const res = { processId, process, processData, }; window.parent.postMessage( { type: MessageType.PROCESS_CREATED, processCreated: res, messageId: event.data.messageId, }, event.origin ); } catch (e) { const errorMsg = `Failed to create process: ${e}`; console.error(errorMsg); // Error handling - no response needed } }; const handleNotifyUpdate = async (event: MessageEvent) => { if (event.data.type !== MessageType.NOTIFY_UPDATE) {return;} if (!services.isPaired()) { const errorMsg = 'Device not paired'; console.warn(errorMsg); // Error handling - no response needed return; } try { const { processId, stateId, accessToken } = event.data; if (!accessToken || !(await tokenService.validateToken(accessToken, event.origin))) { throw new Error('Invalid or expired session token'); } if (!isValid32ByteHex(stateId)) { throw new Error('Invalid state id'); } const res = await services.createPrdUpdate(processId, stateId); await services.handleApiReturn(res); window.parent.postMessage( { type: MessageType.UPDATE_NOTIFIED, messageId: event.data.messageId, }, event.origin ); } catch (e) { const errorMsg = `Failed to notify update for process: ${e}`; console.error(errorMsg); // Error handling - no response needed } }; const handleValidateState = async (event: MessageEvent) => { if (event.data.type !== MessageType.VALIDATE_STATE) {return;} if (!services.isPaired()) { const errorMsg = 'Device not paired'; console.warn(errorMsg); // Error handling - no response needed return; } try { const { processId, stateId, accessToken } = event.data; if (!accessToken || !(await tokenService.validateToken(accessToken, event.origin))) { throw new Error('Invalid or expired session token'); } const res = await services.approveChange(processId, stateId); await services.handleApiReturn(res); window.parent.postMessage( { type: MessageType.STATE_VALIDATED, validatedProcess: res.updated_process, messageId: event.data.messageId, }, event.origin ); } catch (e) { const errorMsg = `Failed to validate process: ${e}`; console.error(errorMsg); // Error handling - no response needed } }; const handleUpdateProcess = async (event: MessageEvent) => { if (event.data.type !== MessageType.UPDATE_PROCESS) {return;} if (!services.isPaired()) { const errorMsg = 'Device not paired'; console.warn(errorMsg); // Error handling - no response needed } try { // privateFields is only used if newData contains new fields // roles can be empty meaning that roles from the last commited state are kept const { processId, newData, privateFields, roles, accessToken } = event.data; if (!accessToken || !(await tokenService.validateToken(accessToken, event.origin))) { throw new Error('Invalid or expired session token'); } // Check if the new data is already in the process or if it's a new field const process = await services.getProcess(processId); if (!process) { throw new Error('Process not found'); } let lastState = services.getLastCommitedState(process); if (!lastState) { const firstState = process.states[0]; const roles = firstState.roles; if (services.rolesContainsUs(roles)) { const approveChangeRes = await services.approveChange(processId, firstState.state_id); await services.handleApiReturn(approveChangeRes); const prdUpdateRes = await services.createPrdUpdate(processId, firstState.state_id); await services.handleApiReturn(prdUpdateRes); } else { if (firstState.validation_tokens.length > 0) { // Try to send it again anyway const res = await services.createPrdUpdate(processId, firstState.state_id); await services.handleApiReturn(res); } } // Wait a couple seconds await new Promise(resolve => setTimeout(resolve, 2000)); lastState = services.getLastCommitedState(process); if (!lastState) { throw new Error("Process doesn't have a commited state yet"); } } const lastStateIndex = services.getLastCommitedStateIndex(process); if (lastStateIndex === null) { throw new Error("Process doesn't have a commited state yet"); } // Shouldn't happen const privateData: Record = {}; const publicData: Record = {}; for (const field of Object.keys(newData)) { // Public data are carried along each new state // So the first thing we can do is check if the new data is public data if (lastState.public_data[field]) { // Add it to public data publicData[field] = newData[field]; continue; } // If it's not a public data, it may be either a private data update, or a new field (public of private) // Caller gave us a list of new private fields, if we see it here this is a new private field if (privateFields.includes(field)) { // Add it to private data privateData[field] = newData[field]; continue; } // Now it can be an update of private data or a new public data // We check that the field exists in previous states private data for (let i = lastStateIndex; i >= 0; i--) { const state = process.states[i]; if (state.pcd_commitment[field]) { // We don't even check if it's a public field, we would have seen it in the last state privateData[field] = newData[field]; break; } else { // This attribute was not modified in that state, we go back to the previous state continue; } } if (privateData[field]) {continue;} // We've get back all the way to the first state without seeing it, it's a new public field publicData[field] = newData[field]; } // We'll let the wasm check if roles are consistent const res = await services.updateProcess(process, privateData, publicData, roles); await services.handleApiReturn(res); window.parent.postMessage( { type: MessageType.PROCESS_UPDATED, updatedProcess: res.updated_process, messageId: event.data.messageId, }, event.origin ); } catch (e) { const errorMsg = `Failed to update process: ${e}`; console.error(errorMsg); // Error handling - no response needed } }; const handleDecodePublicData = async (event: MessageEvent) => { if (event.data.type !== MessageType.DECODE_PUBLIC_DATA) {return;} if (!services.isPaired()) { const errorMsg = 'Device not paired'; console.warn(errorMsg); // Error handling - no response needed return; } try { const { accessToken, encodedData } = event.data; if (!accessToken || !(await tokenService.validateToken(accessToken, event.origin))) { throw new Error('Invalid or expired session token'); } const decodedData = services.decodeValue(encodedData); window.parent.postMessage( { type: MessageType.PUBLIC_DATA_DECODED, decodedData, messageId: event.data.messageId, }, event.origin ); } catch (e) { const errorMsg = `Failed to decode data: ${e}`; console.error(errorMsg); // Error handling - no response needed } }; const handleHashValue = async (event: MessageEvent) => { if (event.data.type !== MessageType.HASH_VALUE) {return;} console.log('handleHashValue', event.data); try { const { accessToken, commitedIn, label, fileBlob } = event.data; if (!accessToken || !(await tokenService.validateToken(accessToken, event.origin))) { throw new Error('Invalid or expired session token'); } const hash = services.getHashForFile(commitedIn, label, fileBlob); window.parent.postMessage( { type: MessageType.VALUE_HASHED, hash, messageId: event.data.messageId, }, event.origin ); } catch (e) { const errorMsg = `Failed to hash value: ${e}`; console.error(errorMsg); // Error handling - no response needed } }; const handleGetMerkleProof = async (event: MessageEvent) => { if (event.data.type !== MessageType.GET_MERKLE_PROOF) {return;} try { const { accessToken, processState, attributeName } = event.data; if (!accessToken || !(await tokenService.validateToken(accessToken, event.origin))) { throw new Error('Invalid or expired session token'); } const proof = services.getMerkleProofForFile(processState, attributeName); window.parent.postMessage( { type: MessageType.MERKLE_PROOF_RETRIEVED, proof, messageId: event.data.messageId, }, event.origin ); } catch (e) { const errorMsg = `Failed to get merkle proof: ${e}`; console.error(errorMsg); // Error handling - no response needed } }; const handleValidateMerkleProof = async (event: MessageEvent) => { if (event.data.type !== MessageType.VALIDATE_MERKLE_PROOF) {return;} try { const { accessToken, merkleProof, documentHash } = event.data; if (!accessToken || !(await tokenService.validateToken(accessToken, event.origin))) { throw new Error('Invalid or expired session token'); } // Try to parse the proof // We will validate it's a MerkleProofResult in the wasm let parsedMerkleProof: MerkleProofResult; try { parsedMerkleProof = JSON.parse(merkleProof); } catch (e) { throw new Error('Provided merkleProof is not a valid json object'); } const res = services.validateMerkleProof(parsedMerkleProof, documentHash); window.parent.postMessage( { type: MessageType.MERKLE_PROOF_VALIDATED, isValid: res, messageId: event.data.messageId, }, event.origin ); } catch (e) { const errorMsg = `Failed to get merkle proof: ${e}`; console.error(errorMsg); // Error handling - no response needed } }; window.removeEventListener('message', handleMessage); window.addEventListener('message', handleMessage); async function handleMessage(event: MessageEvent) { try { switch (event.data.type) { case MessageType.REQUEST_LINK: await handleRequestLink(event); break; case MessageType.CREATE_PAIRING: await handleCreatePairing(event); break; case MessageType.GET_MY_PROCESSES: await handleGetMyProcesses(event); break; case MessageType.GET_PROCESSES: await handleGetProcesses(event); break; case MessageType.RETRIEVE_DATA: await handleDecryptState(event); break; case MessageType.VALIDATE_TOKEN: await handleValidateToken(event); break; case MessageType.RENEW_TOKEN: await handleRenewToken(event); break; case MessageType.GET_PAIRING_ID: await handleGetPairingId(event); break; case MessageType.CREATE_PROCESS: await handleCreateProcess(event); break; case MessageType.CREATE_CONVERSATION: console.warn('CREATE_CONVERSATION functionality has been removed'); break; case MessageType.NOTIFY_UPDATE: await handleNotifyUpdate(event); break; case MessageType.VALIDATE_STATE: await handleValidateState(event); break; case MessageType.UPDATE_PROCESS: await handleUpdateProcess(event); break; case MessageType.DECODE_PUBLIC_DATA: await handleDecodePublicData(event); break; case MessageType.HASH_VALUE: await handleHashValue(event); break; case MessageType.GET_MERKLE_PROOF: await handleGetMerkleProof(event); break; case MessageType.VALIDATE_MERKLE_PROOF: await handleValidateMerkleProof(event); break; case MessageType.PAIRING_4WORDS_CREATE: await handlePairing4WordsCreate(event); break; case MessageType.PAIRING_4WORDS_JOIN: await handlePairing4WordsJoin(event); break; case 'LISTENING': // Parent is listening for messages - no action needed console.log('👂 Parent is listening for messages'); break; case 'IFRAME_READY': // Iframe is ready - no action needed console.log('🔗 Iframe is ready'); break; default: console.warn(`Unhandled message type: ${event.data.type}`); } } catch (error) { const errorMsg = `Error handling message: ${error}`; console.error(errorMsg); // Error handling - no response needed } } window.parent.postMessage( { type: MessageType.LISTENING, }, '*' ); } // 4 Words Pairing Handlers async function handlePairing4WordsCreate(_event: MessageEvent) { try { console.log('🔐 Handling 4 words pairing create request'); const service = await Services.getInstance(); // Use service variable console.log('Service instance:', service); const iframePairingService = await import('./services/iframe-pairing.service'); const IframePairingService = iframePairingService.default; const pairingService = IframePairingService.getInstance(); await pairingService.createPairing(); // Pairing creation initiated - no response needed } catch (error) { const errorMsg = `Error creating 4 words pairing: ${error}`; console.error(errorMsg); // Error handling - no response needed } } async function handlePairing4WordsJoin(event: MessageEvent) { try { console.log('🔗 Handling 4 words pairing join request'); const { words } = event.data; if (!words) { throw new Error('Words are required for joining pairing'); } const iframePairingService = await import('./services/iframe-pairing.service'); const IframePairingService = iframePairingService.default; const pairingService = IframePairingService.getInstance(); await pairingService.joinPairing(words); // Pairing join initiated - no response needed } catch (error) { const errorMsg = `Error joining 4 words pairing: ${error}`; console.error(errorMsg); // Error handling - no response needed } } async function cleanPage() { const container = document.querySelector('#containerId'); if (container) {container.innerHTML = '';} } // Essential functions are now handled directly in the application // No need to import from header component since it was removed (window as any).navigate = navigate; // Global function to delete account (window as any).deleteAccount = async () => { if ( confirm( '⚠️ Êtes-vous sûr de vouloir supprimer complètement votre compte ?\n\nCette action est IRRÉVERSIBLE et supprimera :\n• Tous vos processus\n• Toutes vos données\n• Votre wallet\n• Votre historique\n\nTapez "SUPPRIMER" pour confirmer.' ) ) { const confirmation = prompt('Tapez "SUPPRIMER" pour confirmer la suppression :'); if (confirmation === 'SUPPRIMER') { try { const services = await Services.getInstance(); await services.deleteAccount(); // Show success message alert( "✅ Compte supprimé avec succès !\n\nLa page va se recharger pour redémarrer l'application." ); // Reload the page to restart the application window.location.reload(); } catch (error) { console.error('❌ Erreur lors de la suppression du compte:', error); alert('❌ Erreur lors de la suppression du compte. Veuillez réessayer.'); } } else { alert('❌ Suppression annulée. Le texte de confirmation ne correspond pas.'); } } }; document.addEventListener('navigate', (e: Event) => { const event = e as CustomEvent<{ page: string; processId?: string }>; if (event.detail.page === 'chat') { const container = document.querySelector('.container'); if (container) {container.innerHTML = '';} //initChat(); const chatElement = document.querySelector('chat-element'); if (chatElement) { chatElement.setAttribute('process-id', event.detail.processId || ''); } } }); /** * ÉTAPE 2: Gestion de la sécurité (clés de sécurité) * Cette étape doit être la première et rien d'autre ne doit s'exécuter en parallèle */ async function handleSecurityKeyManagement(): Promise { console.log('🔐 Starting security key management...'); try { // Vérifier d'abord si un mode de sécurité est configuré const { SecurityModeService } = await import('./services/security-mode.service'); const securityModeService = SecurityModeService.getInstance(); const currentMode = await securityModeService.getCurrentMode(); if (!currentMode) { console.log('🔐 No security mode configured, redirecting to security setup...'); window.location.href = '/src/pages/security-setup/security-setup.html'; return false; } console.log('🔐 Security mode configured:', currentMode); // Vérifier si des credentials existent const { SecureCredentialsService } = await import('./services/secure-credentials.service'); const secureCredentialsService = SecureCredentialsService.getInstance(); const hasCredentials = await secureCredentialsService.hasCredentials(); if (!hasCredentials) { console.log('🔐 No security credentials found, redirecting to wallet setup...'); window.location.href = '/src/pages/wallet-setup/wallet-setup.html'; return false; } else { console.log('🔐 Security credentials found, verifying access...'); // Vérifier l'accès aux credentials const credentials = await secureCredentialsService.retrieveCredentials('4nk-secure-password'); if (!credentials) { console.log('❌ Failed to access security credentials'); window.location.href = '/src/pages/wallet-setup/wallet-setup.html'; return false; } console.log('✅ Security credentials verified'); return true; } } catch (error) { console.error('❌ Security key management failed:', error); console.log('🔐 Redirecting to security setup...'); window.location.href = '/src/pages/security-setup/security-setup.html'; return false; } } /** * ÉTAPE 5: Handshake */ async function performHandshake(services: any): Promise { console.log('🤝 Performing handshake...'); try { // Le handshake est déjà fait lors de la connexion aux relais // Cette fonction peut être étendue pour des handshakes supplémentaires console.log('✅ Handshake completed'); } catch (error) { console.error('❌ Handshake failed:', error); throw error; } } /** * ÉTAPE 6: Pairing */ async function handlePairing(services: any): Promise { console.log('🔗 Handling device pairing...'); try { // Vérifier le statut de pairing const isPaired = services.isPaired(); console.log('🔍 Device pairing status:', isPaired ? 'Paired' : 'Not paired'); if (!isPaired) { console.log('⚠️ Device not paired, user must complete pairing...'); // Le pairing sera géré par la page home return; } else { console.log('✅ Device is already paired'); } } catch (error) { console.error('❌ Pairing handling failed:', error); throw error; } } /** * ÉTAPE 7: Écoute des processus */ async function startProcessListening(services: any): Promise { console.log('👂 Starting process listening...'); try { // Restore data from database (these operations can fail, so we handle them separately) try { console.log('📊 Restoring processes from database...'); await services.restoreProcessesFromDB(); } catch (error) { console.warn('⚠️ Failed to restore processes from database:', error); } try { console.log('🔐 Restoring secrets from database...'); await services.restoreSecretsFromDB(); } catch (error) { console.warn('⚠️ Failed to restore secrets from database:', error); } console.log('✅ Process listening started'); } catch (error) { console.error('❌ Process listening failed:', error); throw error; } }