From 232699bdb1efdad9693906fc9d252ce1fd6d685f Mon Sep 17 00:00:00 2001
From: NaiJi <naijiworld@protonmail.com>
Date: Tue, 16 May 2023 15:49:03 -0300
Subject: [PATCH] feat: Implement proper access recovery for DNS providers

---
 lib/logic/api_maps/graphql_maps/api_map.dart  |  2 +-
 lib/logic/api_maps/staging_options.dart       | 12 +++++++++--
 .../cubit/dns_records/dns_records_cubit.dart  |  3 +++
 .../server_installation_cubit.dart            | 18 ++++++++++++-----
 .../server_installation_repository.dart       | 20 +++++++++++--------
 5 files changed, 39 insertions(+), 16 deletions(-)

diff --git a/lib/logic/api_maps/graphql_maps/api_map.dart b/lib/logic/api_maps/graphql_maps/api_map.dart
index a633866e..34e39b7a 100644
--- a/lib/logic/api_maps/graphql_maps/api_map.dart
+++ b/lib/logic/api_maps/graphql_maps/api_map.dart
@@ -56,7 +56,7 @@ class ResponseLoggingParser extends ResponseParser {
 abstract class ApiMap {
   Future<GraphQLClient> getClient() async {
     IOClient? ioClient;
-    if (StagingOptions.stagingAcme) {
+    if (StagingOptions.stagingAcme || !StagingOptions.verifyCertificate) {
       final HttpClient httpClient = HttpClient();
       httpClient.badCertificateCallback = (
         final cert,
diff --git a/lib/logic/api_maps/staging_options.dart b/lib/logic/api_maps/staging_options.dart
index 7d3084b7..a4e98fe8 100644
--- a/lib/logic/api_maps/staging_options.dart
+++ b/lib/logic/api_maps/staging_options.dart
@@ -1,8 +1,16 @@
-/// Controls staging environment for network, is used during manual
-/// integration testing and such
+/// Controls staging environment for network
 class StagingOptions {
   /// Whether we request for staging temprorary certificates.
   /// Hardcode to 'true' in the middle of testing to not
   /// get your domain banned by constant certificate renewal
+  ///
+  /// If set to 'true', the 'verifyCertificate' becomes useless
   static bool get stagingAcme => false;
+
+  /// Should we consider CERTIFICATE_VERIFY_FAILED code an error
+  /// For now it's just a global variable and DNS API
+  /// classes can change it at will
+  ///
+  /// Doesn't matter if 'statingAcme' is set to 'true'
+  static bool verifyCertificate = false;
 }
diff --git a/lib/logic/cubit/dns_records/dns_records_cubit.dart b/lib/logic/cubit/dns_records/dns_records_cubit.dart
index de87910d..2e57f0f7 100644
--- a/lib/logic/cubit/dns_records/dns_records_cubit.dart
+++ b/lib/logic/cubit/dns_records/dns_records_cubit.dart
@@ -1,7 +1,10 @@
 import 'package:cubit_form/cubit_form.dart';
+import 'package:selfprivacy/config/get_it_config.dart';
 import 'package:selfprivacy/logic/api_maps/rest_maps/api_controller.dart';
+import 'package:selfprivacy/logic/api_maps/rest_maps/api_factory_settings.dart';
 import 'package:selfprivacy/logic/api_maps/rest_maps/dns_providers/dns_provider.dart';
 import 'package:selfprivacy/logic/cubit/app_config_dependent/authentication_dependend_cubit.dart';
+import 'package:selfprivacy/logic/get_it/api_config.dart';
 import 'package:selfprivacy/logic/models/hive/server_domain.dart';
 import 'package:selfprivacy/logic/models/json/dns_records.dart';
 
diff --git a/lib/logic/cubit/server_installation/server_installation_cubit.dart b/lib/logic/cubit/server_installation/server_installation_cubit.dart
index cc5bffcc..fa0a04e1 100644
--- a/lib/logic/cubit/server_installation/server_installation_cubit.dart
+++ b/lib/logic/cubit/server_installation/server_installation_cubit.dart
@@ -541,13 +541,20 @@ class ServerInstallationCubit extends Cubit<ServerInstallationState> {
         customToken: serverDetails.apiToken,
         isWithToken: true,
       ).getServerProviderType();
-      if (provider == ServerProvider.unknown) {
+      final dnsProvider = await ServerApi(
+        customToken: serverDetails.apiToken,
+        isWithToken: true,
+      ).getDnsProviderType();
+      if (provider == ServerProvider.unknown ||
+          dnsProvider == DnsProvider.unknown) {
         getIt<NavigationService>()
             .showSnackBar('recovering.generic_error'.tr());
         return;
       }
       await repository.saveServerDetails(serverDetails);
+      await repository.saveDnsProviderType(dnsProvider);
       setServerProviderType(provider);
+      setDnsProviderType(dnsProvider);
       emit(
         dataState.copyWith(
           serverDetails: serverDetails,
@@ -700,14 +707,15 @@ class ServerInstallationCubit extends Cubit<ServerInstallationState> {
           .showSnackBar('recovering.domain_not_available_on_token'.tr());
       return;
     }
+    final dnsProviderType = await ServerApi(
+      customToken: dataState.serverDetails!.apiToken,
+      isWithToken: true,
+    ).getDnsProviderType();
     await repository.saveDomain(
       ServerDomain(
         domainName: serverDomain.domainName,
         zoneId: zoneId,
-        provider: await ServerApi(
-          customToken: token,
-          isWithToken: true,
-        ).getDnsProviderType(),
+        provider: dnsProviderType,
       ),
     );
     await repository.saveDnsProviderKey(token);
diff --git a/lib/logic/cubit/server_installation/server_installation_repository.dart b/lib/logic/cubit/server_installation/server_installation_repository.dart
index ff167518..bc92f645 100644
--- a/lib/logic/cubit/server_installation/server_installation_repository.dart
+++ b/lib/logic/cubit/server_installation/server_installation_repository.dart
@@ -15,6 +15,7 @@ import 'package:selfprivacy/logic/api_maps/rest_maps/dns_providers/dns_provider.
 import 'package:selfprivacy/logic/api_maps/rest_maps/dns_providers/dns_provider_api_settings.dart';
 import 'package:selfprivacy/logic/api_maps/graphql_maps/server_api/server_api.dart';
 import 'package:selfprivacy/logic/api_maps/rest_maps/server_providers/server_provider.dart';
+import 'package:selfprivacy/logic/api_maps/staging_options.dart';
 import 'package:selfprivacy/logic/cubit/server_installation/server_installation_cubit.dart';
 import 'package:selfprivacy/logic/models/hive/backblaze_credential.dart';
 import 'package:selfprivacy/logic/models/hive/server_details.dart';
@@ -76,17 +77,20 @@ class ServerInstallationRepository {
       );
     }
 
-    if (dnsProvider != null ||
-        (serverDomain != null &&
-            serverDomain.provider != DnsProvider.unknown)) {
-      ApiController.initDnsProviderApiFactory(
-        DnsProviderApiFactorySettings(
-          provider: dnsProvider ?? serverDomain!.provider,
-        ),
-      );
+    if (ApiController.currentDnsProviderApiFactory == null) {
+      if (dnsProvider != null ||
+          (serverDomain != null &&
+              serverDomain.provider != DnsProvider.unknown)) {
+        ApiController.initDnsProviderApiFactory(
+          DnsProviderApiFactorySettings(
+            provider: dnsProvider ?? serverDomain!.provider,
+          ),
+        );
+      }
     }
 
     if (box.get(BNames.hasFinalChecked, defaultValue: false)) {
+      StagingOptions.verifyCertificate = true;
       return ServerInstallationFinished(
         providerApiToken: providerApiToken!,
         serverTypeIdentificator: serverTypeIdentificator ?? '',