[PM-8352] Initial Fido2 User verification flow implementation

[fedemkr]

🎟️ Tracking

PM-8352

📔 Objective

Implement Fido2 User verification flow.

Note: This is an initial PR and the flow will be completed in subsequent PRs to ease

⏰ Reminders before review

• Contributor guidelines followed
• All formatters and local linters executed and passed
• Written new unit and / or integration tests where applicable
• Protected functional changes with optionality (feature flags)
• Used internationalization (i18n) for all UI strings
• CI builds passed
• Communicated to DevOps any deployment requirements
• Updated any necessary documentation (Confluence, contributing docs) or informed the documentation team

🦮 Reviewer guidelines

• 👍 (:+1:) or similar for great changes
• 📝 (:memo:) or ℹ️ (:information_source:) for notes or general info
• ❓ (:question:) for questions
• 🤔 (:thinking:) or 💭 (:thought_balloon:) for more open inquiry that's not quite a confirmed issue and could potentially benefit from discussion
• 🎨 (:art:) for suggestions / improvements
• ❌ (:x:) or ⚠️ (:warning:) for more significant problems or concerns needing attention
• 🌱 (:seedling:) or ♻️ (:recycle:) for future improvements or indications of technical debt
• ⛏ (:pick:) for minor or nitpick changes

[github-actions]

	2 Warnings
⚠️	Ignoring duplicate libraries: '-lbitwarden_uniffi'
⚠️	BitwardenShared/UI/Auth/Utilities/UserVerificationHelper.swift has less than 80% code coverage

	6 Messages
📖	BitwardenActionExtensionTests: Executed 0 tests, with 0 failures (0 expected) in 0 (0.004) seconds
📖	BitwardenAutoFillExtensionTests: Executed 0 tests, with 0 failures (0 expected) in 0 (0.001) seconds
📖	BitwardenShareExtensionTests: Executed 0 tests, with 0 failures (0 expected) in 0 (0.001) seconds
📖	BitwardenSharedTests: Executed 3219 tests, with 12 failures (0 expected) in 75.208 (76.317) seconds
📖	BitwardenTests: Executed 4 tests, with 0 failures (0 expected) in 0.576 (0.617) seconds
📖	NetworkingTests: Executed 26 tests, with 0 failures (0 expected) in 0.059 (0.067) seconds

Bitwarden code coverage

Total coverage: 86.35%

File	Coverage
BitwardenShared/Core/Auth/Repositories/AuthRepository.swift	97.19%
BitwardenShared/Core/Auth/Services/LocalAuth/LocalAuthService.swift	100.00%
BitwardenShared/Core/Platform/Services/ServiceContainer.swift	97.33%
BitwardenShared/UI/Auth/Extensions/Alert+Auth.swift	100.00%
BitwardenShared/UI/Auth/Utilities/UserVerificationHelper.swift	79.01%
BitwardenShared/UI/Auth/Utilities/UserVerificationRunner.swift	100.00%
BitwardenShared/UI/Autofill/Utilities/Fido2UserVerificationMediator.swift	83.56%
BitwardenShared/UI/Platform/Application/Extensions/Alert+Extensions.swift	92.31%
BitwardenShared/UI/Platform/Settings/Extensions/Alert+Settings.swift	100.00%
BitwardenShared/UI/Platform/Settings/Settings/AccountSecurity/AccountSecurityProcessor.swift	98.71%

Powered by Slather

Generated by 🚫 Danger

[github-actions]

Checkmarx One – Scan Summary & Details – 8b2eb545-9a94-47a0-827c-dd490c41fe33

No New Or Fixed Issues Found

[KatherineInCode]

⛏️ In general we don't capitalize true and false in doc comments

[KatherineInCode]

⛏️ Maybe "User canceled authentication"?

[KatherineInCode]

⛏️ Usually our MARK comments for different top-level options (classes, etc.) are MARK: - to differentiate them from landmarks inside of a class.

[KatherineInCode]

⛏️

Suggested change

	/// - Parameter because: The reason to be displayed to the user when evaluating the policy if needed
	/// - Parameter because: The reason to be displayed to the user when evaluating the policy if needed

[KatherineInCode]

🤔 I also kinda feel like this parameter would better be called reason, to match what we call similar things elsewhere in the app

[KatherineInCode]

🎨 I feel like our usual pattern with tests is to make the test name somewhat more terse, generally of the test_function_condition variety, with each unit camelcased—so test_verifyDeviceLocalAuth_notAuthorized here—and to put the fuller explanation of the Given/When/Then in the comment, since that's easier to read.

[KatherineInCode]

❓ Why Int8 instead of Int for just counting? The Swift language guide indicates that we should always use Int unless there's a good reason to do otherwise.

[fedemkr]

I just thought that given it counts "attempts", one would never use hundreds or thousands of attempts so Int8 (maximum 127) made sense. Maybe I could even have used UInt8 to indicate that attempts shouldn't be negative. I can make it Int if performance is better or something like that. IMO even though is negligible for performance I often try to use the necessary data type instead of the broader one.

[KatherineInCode]

It's a good instinct, and one that I had coming from Objective-C, but Swift really pushes to use the base types (Int, Double, etc.) unless absolutely necessary. I assume there's some sort of compiler optimization that happens around those base types, and I've also occasionally run into issues doing math when I had competing types (though that was also a Very Long Time Ago so it might not be an issue now). It's relatively moot here, however.

[fedemkr]

Given that in this case it's pretty much the same and the performance gain is negligible, I'll just change it to avoid confusions.

[KatherineInCode]

🎨 Using a contraction here feels weird to me. I think a more idiomatic way would be unableToPerform

[KatherineInCode]

⛏️ Generally when giving a Swift function that takes multiple parameters, just the colons are used: evaluateDeviceOwnerPolicy(suppliedContext:deviceAuthStatus:localizedReason:). It's a little weird, but it's a holdover from the Objective-C days (when there weren't commas between function arguments like that).

[matt-livefront]

Tip: you can get the symbol name by right clicking the function > Copy > Copy Symbol Name. Or ^⇧⌘C is the default shortcut.

[matt-livefront]

Looks good to me!

[matt-livefront]

👍