feat: Initial implementation of Open Authenticator for linux.

Without Firebase.

Author: Skyost

lib/i18n/de/local_auth.json

@@ -15,5 +15,9 @@
     "lockOut": "Die biometrische Authentifizierung ist deaktiviert. Bitte sperren und entsperren Sie Ihren Bildschirm, um sie zu aktivieren.",
     "goToSettingsDescription": "Die biometrische Authentifizierung ist auf Ihrem Gerät nicht eingerichtet. Bitte aktivieren Sie entweder Touch ID oder Face ID in den Einstellungen Ihres Geräts."
   },
+  "methodChannel": {
+    "title": "Authentifizierung erforderlich",
+    "wrongPassword": "Falsches Passwort. Versuchen Sie es erneut."
+  },
   "fallbackMessage": "Beim Überprüfen der lokalen Authentifizierung auf Ihrem Gerät ist ein Fehler aufgetreten. Bitte geben Sie unten Ihr Master-Passwort ein, um fortzufahren und die lokale Authentifizierung zu deaktivieren."
 }

lib/i18n/en/local_auth.json

@@ -15,5 +15,9 @@
     "lockOut": "Biometric authentication is disabled. Please lock and unlock your screen to enable it.",
     "goToSettingsDescription": "Biometric authentication is not set up on your device. Please either enable Touch ID or Face ID on your phone."
   },
+  "methodChannel": {
+    "title": "Authentication required",
+    "wrongPassword": "Wrong password. Try again."
+  },
   "fallbackMessage": "An error occurred while checking for local authentication on your device. Please enter your master password below to proceed and to disable local authentication as well."
 }

lib/i18n/fr/local_auth.json

@@ -15,5 +15,9 @@
     "lockOut": "L'authentification par biométrie est désactivée. Veuillez verrouiller puis déverrouiller votre appareil pour l'activer.",
     "goToSettingsDescription": "L'authentification par biométrie n'est pas configurée sur votre appareil. Veuillez activer Touch ID ou Face ID sur votre téléphone."
   },
+  "methodChannel": {
+    "title": "Authentification requise",
+    "wrongPassword": "Mauvais mot de passe. Veuillez réessayer."
+  },
   "fallbackMessage": "Une erreur est survenue pendant la vérification de l'authentification locale. Veuillez entrer votre mot de passe maître ci-dessous pour continuer et pour désactiver l'authentification locale."
 }

lib/i18n/it/local_auth.json

@@ -15,5 +15,9 @@
     "lockOut": "L'autenticazione biometrica è disabilitata. Blocca e sblocca lo schermo per abilitarla.",
     "goToSettingsDescription": "L'autenticazione biometrica non è configurata sul tuo dispositivo. Abilita Touch ID o Face ID sul tuo telefono."
   },
+  "methodChannel": {
+    "title": "Autenticazione necessaria",
+    "wrongPassword": "Password sbagliata. Riprovare."
+  },
   "fallbackMessage": "Si è verificato un errore durante il controllo dell'autenticazione locale sul tuo dispositivo. Inserisci la tua password principale qui sotto per procedere e disabilitare anche l'autenticazione locale."
 }

lib/i18n/pt/local_auth.json

@@ -15,5 +15,9 @@
     "lockOut": "A autenticação biométrica está desativada. Bloqueie e desbloqueie a tela para ativá-la.",
     "goToSettingsDescription": "A autenticação biométrica não está configurada no seu dispositivo. Ative o Touch ID ou Face ID no seu telefone."
   },
+  "methodChannel": {
+    "title": "Autenticação necessária",
+    "wrongPassword": "Palavra-passe errada. Tente novamente."
+  },
   "fallbackMessage": "Ocorreu um erro ao verificar a autenticação local no seu dispositivo. Insira sua senha mestra abaixo para continuar e também desativar a autenticação local."
 }

lib/main.dart

@@ -24,8 +24,8 @@ import 'package:open_authenticator/pages/scan.dart';
 import 'package:open_authenticator/pages/settings/page.dart';
 import 'package:open_authenticator/pages/totp.dart';
 import 'package:open_authenticator/utils/account.dart';
+import 'package:open_authenticator/utils/firebase.dart';
 import 'package:open_authenticator/utils/firebase_app_check/firebase_app_check.dart';
-import 'package:open_authenticator/utils/firebase_crashlytics.dart';
 import 'package:open_authenticator/utils/platform.dart';
 import 'package:open_authenticator/utils/rate_my_app.dart';
 import 'package:open_authenticator/utils/result.dart';
@@ -40,6 +40,7 @@ import 'package:window_manager/window_manager.dart';
 /// Hello world !
 Future<void> main() async {
   WidgetsFlutterBinding.ensureInitialized();
+  await SimpleSecureStorage.initialize(_OpenAuthenticatorSSSInitializationOptions());
   if (currentPlatform.isDesktop) {
     await windowManager.ensureInitialized();
     windowManager.waitUntilReadyToShow(
@@ -53,16 +54,17 @@ Future<void> main() async {
       await windowManager.focus();
     });
   }
-  await Firebase.initializeApp(options: DefaultFirebaseOptions.currentPlatform);
-  await FirebaseAppCheck.instance.activate();
-  if (FirebaseCrashlytics.instance.shouldEnable) {
-    FlutterError.onError = FirebaseCrashlytics.instance.recordFlutterFatalError;
-    PlatformDispatcher.instance.onError = (error, stack) {
-      FirebaseCrashlytics.instance.recordError(error, stack, fatal: true);
-      return true;
-    };
+  if (isFirebaseSupported) {
+    await Firebase.initializeApp(options: DefaultFirebaseOptions.currentPlatform);
+    await FirebaseAppCheck.instance.activate();
+    if (isCrashlyticsEnabled) {
+      FlutterError.onError = FirebaseCrashlytics.instance.recordFlutterFatalError;
+      PlatformDispatcher.instance.onError = (error, stack) {
+        FirebaseCrashlytics.instance.recordError(error, stack, fatal: true);
+        return true;
+      };
+    }
   }
-  await SimpleSecureStorage.initialize(_OpenAuthenticatorSSSInitializationOptions());
   await LocaleSettings.useDeviceLocale();
   runApp(
     ProviderScope(

lib/model/app_unlock/method.dart

@@ -1,22 +1,14 @@
 import 'package:flutter/material.dart';
 import 'package:flutter_riverpod/flutter_riverpod.dart';
-import 'package:local_auth/local_auth.dart';
-// ignore: depend_on_referenced_packages
-import 'package:local_auth_android/local_auth_android.dart';
-// ignore: depend_on_referenced_packages
-import 'package:local_auth_darwin/local_auth_darwin.dart';
-// ignore: depend_on_referenced_packages
-import 'package:local_auth_windows/local_auth_windows.dart';
 import 'package:open_authenticator/i18n/translations.g.dart';
 import 'package:open_authenticator/model/crypto.dart';
 import 'package:open_authenticator/model/password_verification/methods/method.dart';
 import 'package:open_authenticator/model/password_verification/methods/password_signature.dart';
 import 'package:open_authenticator/model/password_verification/password_verification.dart';
 import 'package:open_authenticator/model/totp/repository.dart';
-import 'package:open_authenticator/utils/platform.dart';
+import 'package:open_authenticator/utils/local_authentication/local_authentication.dart';
 import 'package:open_authenticator/utils/result.dart';
 import 'package:open_authenticator/widgets/dialog/text_input_dialog.dart';
-import 'package:window_manager/window_manager.dart';
 
 /// Allows to unlock the app.
 sealed class AppUnlockMethod<T> {
@@ -77,60 +69,17 @@ sealed class CannotUnlockException implements Exception {}
 class LocalAuthenticationAppUnlockMethod extends AppUnlockMethod {
   @override
   Future<Result> _tryUnlock(BuildContext context, Ref ref, UnlockReason reason) async {
-    LocalAuthentication auth = LocalAuthentication();
-    if (currentPlatform.isDesktop) {
-      await windowManager.ensureInitialized();
-      await windowManager.focus();
-      await windowManager.setAlwaysOnTop(true);
-    }
-    if (!context.mounted) {
-      return const ResultCancelled();
-    }
-    bool result = await auth.authenticate(
-      localizedReason: translations.appUnlock.localAuthentication[reason.name] ?? 'Authenticate to access the app.',
-      authMessages: [
-        IOSAuthMessages(
-          lockOut: translations.localAuth.ios.lockOut,
-          goToSettingsButton: translations.localAuth.common.goToSettings,
-          goToSettingsDescription: translations.localAuth.ios.goToSettingsDescription,
-          cancelButton: MaterialLocalizations.of(context).cancelButtonLabel,
-        ),
-        AndroidAuthMessages(
-          biometricHint: translations.localAuth.android.biometricHint,
-          biometricNotRecognized: translations.localAuth.android.biometricNotRecognized,
-          biometricRequiredTitle: translations.localAuth.android.biometricRequiredTitle,
-          biometricSuccess: translations.error.noError,
-          cancelButton: MaterialLocalizations.of(context).cancelButtonLabel,
-          deviceCredentialsRequiredTitle: translations.localAuth.android.deviceCredentialsRequiredTitle,
-          deviceCredentialsSetupDescription: translations.localAuth.android.deviceCredentialsSetupDescription,
-          goToSettingsButton: translations.localAuth.common.goToSettings,
-          goToSettingsDescription: translations.localAuth.android.goToSettingsDescription,
-          signInTitle: translations.localAuth.android.signInTitle,
-        ),
-        const WindowsAuthMessages(),
-      ],
-    );
-    if (currentPlatform.isDesktop) {
-      if (currentPlatform == Platform.macOS || currentPlatform == Platform.windows) {
-        // See https://github.com/flutter/flutter/issues/122322.
-        await windowManager.blur();
-        await windowManager.focus();
-      }
-      await windowManager.setAlwaysOnTop(false);
-    }
+    bool result = await LocalAuthentication.instance.authenticate(context, translations.appUnlock.localAuthentication[reason.name] ?? 'Authenticate to access the app.');
     return result ? const ResultSuccess() : const ResultCancelled();
   }
 
   @override
   Future<CannotUnlockException?> canUnlock(Ref ref) async {
-    if (!(await isSupported())) {
+    if (!(await LocalAuthentication.instance.isSupported())) {
       return LocalAuthenticationDeviceNotSupported();
     }
     return null;
   }
-
-  /// Returns whether this unlock method is supported;
-  static Future<bool> isSupported() => LocalAuthentication().isDeviceSupported();
 }
 
 /// Indicates that local authentication is not supported by the device.

lib/model/crypto.dart

@@ -24,11 +24,17 @@ class StoredCryptoStore extends AsyncNotifier<CryptoStore?> {
   @override
   FutureOr<CryptoStore?> build() async {
     Salt? salt = await Salt.readFromLocalStorage();
-    if (salt == null || !await SimpleSecureStorage.has(_kPasswordDerivedKeyKey)) {
+    if (salt == null) {
       return null;
     }
+
+    String? derivedKey = await SimpleSecureStorage.read(_kPasswordDerivedKeyKey);
+    if (derivedKey == null) {
+      return null;
+    }
+
     return CryptoStore._(
-      key: await AesGcmSecretKey.importRawKey(base64.decode((await SimpleSecureStorage.read(_kPasswordDerivedKeyKey))!)),
+      key: await AesGcmSecretKey.importRawKey(base64.decode(derivedKey)),
       salt: salt,
     );
   }

lib/pages/settings/entries/clear_data.dart

@@ -14,6 +14,7 @@ import 'package:open_authenticator/model/settings/entry.dart';
 import 'package:open_authenticator/model/storage/local.dart';
 import 'package:open_authenticator/model/totp/image_cache.dart';
 import 'package:open_authenticator/pages/settings/entries/widgets.dart';
+import 'package:open_authenticator/utils/firebase.dart';
 import 'package:open_authenticator/utils/platform.dart';
 import 'package:open_authenticator/utils/result.dart';
 import 'package:open_authenticator/utils/shared_preferences_with_prefix.dart';
@@ -70,8 +71,10 @@ class ClearDataSettingsEntryWidget extends ConsumerWidget {
                 context.showSnackBarForResult(logoutResult, retryIfError: true);
                 return;
               }
-              await FirebaseFirestore.instance.terminate();
-              await FirebaseFirestore.instance.clearPersistence();
+              if (isFirebaseSupported) {
+                await FirebaseFirestore.instance.terminate();
+                await FirebaseFirestore.instance.clearPersistence();
+              }
               await SimpleSecureStorage.clear();
               TotpImageCacheManager totpImageCacheManager = ref.read(totpImageCacheManagerProvider.notifier);
               await totpImageCacheManager.clearCache();

lib/pages/settings/entries/enable_local_auth.dart

@@ -4,6 +4,7 @@ import 'package:open_authenticator/i18n/translations.g.dart';
 import 'package:open_authenticator/model/app_unlock/method.dart';
 import 'package:open_authenticator/model/settings/app_unlock_method.dart';
 import 'package:open_authenticator/pages/settings/entries/widgets.dart';
+import 'package:open_authenticator/utils/local_authentication/local_authentication.dart';
 
 /// Allows to configure [enableLocalAuthSettingsEntryProvider].
 class EnableLocalAuthSettingsEntryWidget extends CheckboxSettingsEntryWidget<AppUnlockMethodSettingsEntry, AppUnlockMethod> {
@@ -19,7 +20,7 @@ class EnableLocalAuthSettingsEntryWidget extends CheckboxSettingsEntryWidget<App
 
   @override
   Widget build(BuildContext context, WidgetRef ref) => FutureBuilder(
-        future: LocalAuthenticationAppUnlockMethod.isSupported(),
+        future: LocalAuthentication.instance.isSupported(),
         builder: (context, snapshot) {
           if (snapshot.data == null) {
             return createListTile(context, ref, enabled: false);