feat: locked view mobile (#18316)

* feat: locked/private view * feat: locked/private view * feat: mobile lock/private view * feat: mobile lock/private view * merge main * pr feedback * pr feedback * bottom sheet sizing * always lock when navigating away
2025-10-17 18:19:27 +00:00 · 2025-05-20 08:35:22 -05:00 · 2025-05-20 08:35:22 -05:00 · fe71894308
commit fe71894308
parent 397808dd1a
57 changed files with 1893 additions and 289 deletions
--- a/mobile/lib/providers/local_auth.provider.dart
+++ b/mobile/lib/providers/local_auth.provider.dart
@ -0,0 +1,97 @@
+import 'package:easy_localization/easy_localization.dart';
+import 'package:flutter/material.dart';
+import 'package:flutter/services.dart';
+import 'package:hooks_riverpod/hooks_riverpod.dart';
+import 'package:immich_mobile/constants/constants.dart';
+import 'package:immich_mobile/extensions/build_context_extensions.dart';
+import 'package:immich_mobile/models/auth/biometric_status.model.dart';
+import 'package:immich_mobile/services/local_auth.service.dart';
+import 'package:immich_mobile/services/secure_storage.service.dart';
+import 'package:logging/logging.dart';
+
+final localAuthProvider =
+    StateNotifierProvider<LocalAuthNotifier, BiometricStatus>((ref) {
+  return LocalAuthNotifier(
+    ref.watch(localAuthServiceProvider),
+    ref.watch(secureStorageServiceProvider),
+  );
+});
+
+class LocalAuthNotifier extends StateNotifier<BiometricStatus> {
+  final LocalAuthService _localAuthService;
+  final SecureStorageService _secureStorageService;
+
+  final _log = Logger("LocalAuthNotifier");
+
+  LocalAuthNotifier(this._localAuthService, this._secureStorageService)
+      : super(
+          const BiometricStatus(
+            availableBiometrics: [],
+            canAuthenticate: false,
+          ),
+        ) {
+    _localAuthService.getStatus().then((value) {
+      state = state.copyWith(
+        canAuthenticate: value.canAuthenticate,
+        availableBiometrics: value.availableBiometrics,
+      );
+    });
+  }
+
+  Future<bool> registerBiometric(BuildContext context, String pinCode) async {
+    final isAuthenticated =
+        await authenticate(context, 'Authenticate to enable biometrics');
+
+    if (!isAuthenticated) {
+      return false;
+    }
+
+    await _secureStorageService.write(kSecuredPinCode, pinCode);
+
+    return true;
+  }
+
+  Future<bool> authenticate(BuildContext context, String? message) async {
+    String errorMessage = "";
+
+    try {
+      return await _localAuthService.authenticate(message);
+    } on PlatformException catch (error) {
+      switch (error.code) {
+        case "NotEnrolled":
+          _log.warning("User is not enrolled in biometrics");
+          errorMessage = "biometric_no_options".tr();
+          break;
+        case "NotAvailable":
+          _log.warning("Biometric authentication is not available");
+          errorMessage = "biometric_not_available".tr();
+          break;
+        case "LockedOut":
+          _log.warning("User is locked out of biometric authentication");
+          errorMessage = "biometric_locked_out".tr();
+          break;
+        default:
+          _log.warning("Failed to authenticate with unknown reason");
+          errorMessage = 'failed_to_authenticate'.tr();
+      }
+    } catch (error) {
+      _log.warning("Error during authentication: $error");
+      errorMessage = 'failed_to_authenticate'.tr();
+    } finally {
+      if (errorMessage.isNotEmpty) {
+        context.showSnackBar(
+          SnackBar(
+            content: Text(
+              errorMessage,
+              style: context.textTheme.labelLarge,
+            ),
+            duration: const Duration(seconds: 3),
+            backgroundColor: context.colorScheme.errorContainer,
+          ),
+        );
+      }
+    }
+
+    return false;
+  }
+}