Show locked card warning

IB-8631

Signed-off-by: Raul Metsma <raul@metsma.ee>

Author: metsma

client/Application.cpp

@@ -944,10 +944,9 @@ void Application::showClient(QStringList files, bool crypto, bool sign, bool new
 	if(files.isEmpty())
 		return;
 	QMetaObject::invokeMethod(w, [&] {
-		using enum ria::qdigidoc4::Pages;
 		if(sign)
 			sign = files.size() != 1 || !CONTAINER_EXT.contains(QFileInfo(files.value(0)).suffix(), Qt::CaseInsensitive);
-		w->selectPage(crypto && !sign ? CryptoIntro : SignIntro);
+		w->selectPage(crypto && !sign ? MainWindow::CryptoIntro : MainWindow::SignIntro);
 		w->openFiles(std::move(files), false, sign);
 	});
 }

client/MainWindow.cpp

@@ -50,7 +50,7 @@ using namespace std::chrono;
 
 MainWindow::MainWindow( QWidget *parent )
 	: QWidget( parent )
-	, ui( new Ui::MainWindow )
+	, ui(std::make_unique<Ui::MainWindow>())
 {
 	setAttribute(Qt::WA_DeleteOnClose, true);
 	setAcceptDrops( true );
@@ -125,12 +125,7 @@ MainWindow::MainWindow( QWidget *parent )
 	updateMyEid(qApp->signer()->smartcard()->data());
 }
 
-MainWindow::~MainWindow()
-{
-	digiDoc.reset();
-	cryptoDoc.reset();
-	delete ui;
-}
+MainWindow::~MainWindow() noexcept = default;
 
 void MainWindow::adjustDrops()
 {
@@ -709,27 +704,34 @@ void MainWindow::updateMyEid(const QSmartCardData &data)
 		return;
 	bool pin1Blocked = data.retryCount(QSmartCardData::Pin1Type) == 0;
 	bool pin2Blocked = data.retryCount(QSmartCardData::Pin2Type) == 0;
+	bool pin1Locked = data.pinLocked(QSmartCardData::Pin1Type);
 	bool pin2Locked = data.pinLocked(QSmartCardData::Pin2Type);
 	ui->myEid->warningIcon(
-		pin1Blocked ||
+		pin1Blocked || pin1Locked ||
 		pin2Blocked || pin2Locked ||
 		data.retryCount(QSmartCardData::PukType) == 0);
 	ui->signContainerPage->cardChanged(data.signCert(), pin2Blocked || pin2Locked);
-	ui->cryptoContainerPage->cardChanged(data.authCert(), pin1Blocked);
-
-	if(pin1Blocked)
-		ui->warnings->showWarning({WarningType::UnblockPin1Warning, 0,
-			[this]{ changePinClicked(QSmartCardData::Pin1Type, QSmartCard::UnblockWithPuk); }});
-
-	if(pin2Locked && pin2Blocked)
-		ui->warnings->showWarning({WarningType::ActivatePin2WithPUKWarning, 0,
-			[this]{ changePinClicked(QSmartCardData::Pin2Type, QSmartCard::ActivateWithPuk); }});
-	else if(pin2Blocked)
-		ui->warnings->showWarning({WarningType::UnblockPin2Warning, 0,
-			[this]{ changePinClicked(QSmartCardData::Pin2Type, QSmartCard::UnblockWithPuk); }});
-	else if(pin2Locked)
-		ui->warnings->showWarning({WarningType::ActivatePin2Warning, 0,
-			[this]{ changePinClicked(QSmartCardData::Pin2Type, QSmartCard::ActivateWithPin); }});
+	ui->cryptoContainerPage->cardChanged(data.authCert(), pin1Blocked || pin1Locked);
+
+	using enum WarningText::WarningType;
+	if(pin1Locked)
+		ui->warnings->showWarning({LockedCardWarning});
+	else
+	{
+		if(pin1Blocked)
+			ui->warnings->showWarning({UnblockPin1Warning, 0,
+				[this]{ changePinClicked(QSmartCardData::Pin1Type, QSmartCard::UnblockWithPuk); }});
+
+		if(pin2Locked && pin2Blocked)
+			ui->warnings->showWarning({ActivatePin2WithPUKWarning, 0,
+				[this]{ changePinClicked(QSmartCardData::Pin2Type, QSmartCard::ActivateWithPuk); }});
+		else if(pin2Blocked)
+			ui->warnings->showWarning({UnblockPin2Warning, 0,
+				[this]{ changePinClicked(QSmartCardData::Pin2Type, QSmartCard::UnblockWithPuk); }});
+		else if(pin2Locked)
+			ui->warnings->showWarning({ActivatePin2Warning, 0,
+				[this]{ changePinClicked(QSmartCardData::Pin2Type, QSmartCard::ActivateWithPin); }});
+	}
 
 	const qint64 DAY = 24 * 60 * 60;
 	qint64 expiresIn = 106 * DAY;
@@ -741,12 +743,12 @@ void MainWindow::updateMyEid(const QSmartCardData &data)
 	if(expiresIn <= 0)
 	{
 		ui->myEid->invalidIcon(true);
-		ui->warnings->showWarning({WarningType::CertExpiredError});
+		ui->warnings->showWarning({CertExpiredError});
 	}
 	else if(expiresIn <= 105 * DAY)
 	{
 		ui->myEid->warningIcon(true);
-		ui->warnings->showWarning({WarningType::CertExpiryWarning});
+		ui->warnings->showWarning({CertExpiryWarning});
 	}
 }
 

client/MainWindow.h

@@ -37,11 +37,18 @@ class MainWindow final : public QWidget
 	Q_OBJECT
 
 public:
+	enum Pages : unsigned char {
+		SignIntro,
+		SignDetails,
+		CryptoIntro,
+		CryptoDetails,
+		MyEid
+	};
 	explicit MainWindow(QWidget *parent = nullptr);
-	~MainWindow() final;
+	~MainWindow() noexcept final;
 
 	void openFiles(QStringList files, bool addFile = false, bool forceCreate = false);
-	void selectPage(ria::qdigidoc4::Pages page);
+	void selectPage(Pages page);
 	void showSettings(int page);
 
 protected:
@@ -59,8 +66,7 @@ class MainWindow final : public QWidget
 	void convertToCDoc();
 	ria::qdigidoc4::ContainerState currentState();
 	bool encrypt();
-	void loadPicture();
-	void navigateToPage( ria::qdigidoc4::Pages page, const QStringList &files = QStringList(), bool create = true );
+	void navigateToPage(Pages page, const QStringList &files = QStringList(), bool create = true);
 	void onCryptoAction(int action, const QString &id, const QString &phone);
 	void onSignAction(int action, const QString &idCode, const QString &info2);
 	void openContainer(bool signature);
@@ -78,5 +84,5 @@ class MainWindow final : public QWidget
 
 	std::unique_ptr<CryptoDoc> cryptoDoc;
 	std::unique_ptr<DigiDoc> digiDoc;
-	Ui::MainWindow *ui;
+	std::unique_ptr<Ui::MainWindow> ui;
 };

client/QSmartCard.cpp

@@ -480,7 +480,10 @@ bool THALESCard::updateCounters(QSmartCardDataPrivate *d) const
 		{
 			d->retry[QSmartCardData::PinType(type)] = quint8(retry.data[0]);
 			auto changed = info[0xDF2F];
-			d->locked[QSmartCardData::PinType(type)] = changed && changed.data[0] == 0;
+			d->locked[QSmartCardData::PinType(type)] = (changed && changed.data[0] == 0);
+			// FIXME: remove from production
+			if (type == QSmartCardData::Pin1Type && qEnvironmentVariableIsSet("PIN1_LOCKED"))
+				d->locked[QSmartCardData::PinType(type)] = true;
 		}
 		else
 			return false;

client/common_enums.h

@@ -53,34 +53,4 @@ enum Actions : unsigned char {
     ClearCryptoWarning,
 };
 
-enum Pages : unsigned char {
-    SignIntro,
-    SignDetails,
-    CryptoIntro,
-    CryptoDetails,
-    MyEid
-};
-
-enum WarningType : unsigned char {
-    NoWarning = 0,
-
-    CertExpiredError,
-    CertExpiryWarning,
-    UnblockPin1Warning,
-    UnblockPin2Warning,
-    ActivatePin2Warning,
-    ActivatePin1WithPUKWarning,
-    ActivatePin2WithPUKWarning,
-
-    InvalidSignatureError,
-    InvalidTimestampError,
-    UnknownSignatureWarning,
-    UnknownTimestampWarning,
-    UnsupportedAsicSWarning,
-    UnsupportedAsicCadesWarning,
-    UnsupportedDDocWarning,
-    UnsupportedCDocWarning,
-    EmptyFileWarning,
-};
-
 }

client/dialogs/MobileProgress.cpp

@@ -228,8 +228,8 @@ bool MobileProgress::init(const QString &ssid, const QString &cell)
 	if(!d->UUID.isEmpty() && QUuid(d->UUID).isNull())
 	{
 		WarningDialog::create(d->parentWidget())
-			->withTitle(QCoreApplication::translate("DigiDoc", "Failed to sign container"))
 			->withText(tr("Failed to send request. Check your %1 service access settings.").arg(tr("mobile-ID")))
+			->withTitle(QCoreApplication::translate("DigiDoc", "Failed to sign container"))
 			->open();
 		return false;
 	}

client/translations/en.ts

@@ -2922,6 +2922,14 @@ Additional licenses and components</translation>
         <source>Please check your internet connection.</source>
         <translation>Please check your internet connection.</translation>
     </message>
+    <message>
+        <source>The ID-card must be activated in order to authenticate</source>
+        <translation>The ID-card must be activated in order to authenticate</translation>
+    </message>
+    <message>
+        <source>The ID-card must be activated in order to sign</source>
+        <translation>The ID-card must be activated in order to sign</translation>
+    </message>
     <message>
         <source>PIN%1 has been blocked because PIN%1 code has been entered incorrectly 3 times.</source>
         <translation>PIN%1 has been blocked because PIN%1 code has been entered incorrectly 3 times.</translation>
@@ -3040,6 +3048,18 @@ Additional licenses and components</translation>
         <source>https://www.id.ee/en/article/changing-id-card-pin-codes-and-puk-code/</source>
         <translation>https://www.id.ee/en/article/changing-id-card-pin-codes-and-puk-code/</translation>
     </message>
+    <message>
+        <source>Authentication and signing with the ID-card isn&apos;t possible yet. ID-card must be activated in the Police and Border Guard Board’s self-service portal in order to use it.</source>
+        <translation>Authentication and signing with the ID-card isn&apos;t possible yet. ID-card must be activated in the Police and Border Guard Board’s self-service portal in order to use it.</translation>
+    </message>
+    <message>
+        <source>Activate ID-card</source>
+        <translation>Activate ID-card</translation>
+    </message>
+    <message>
+        <source>https://www.politsei.ee/en/self-service-portal/</source>
+        <translation>https://www.politsei.ee/en/self-service-portal/</translation>
+    </message>
     <message>
         <source>This ASiC-S container contains XAdES signature. You are not allowed to add or remove signatures to this container.</source>
         <translation>This ASiC-S container contains XAdES signature. You are not allowed to add or remove signatures to this container.</translation>

client/translations/et.ts

@@ -2838,6 +2838,14 @@ Täiendavad litsentsid ja komponendid</translation>
         <source>Change with PUK code</source>
         <translation>Muuda PUK-koodiga</translation>
     </message>
+    <message>
+        <source>The ID-card must be activated in order to authenticate</source>
+        <translation>Autentimiseks tuleb ID-kaart aktiveerida</translation>
+    </message>
+    <message>
+        <source>The ID-card must be activated in order to sign</source>
+        <translation>Allkirjastamiseks tuleb ID-kaart aktiveerida</translation>
+    </message>
     <message>
         <source>PIN%1 code must be changed in order to authenticate</source>
         <translation>Autentimiseks tuleb PIN%1-koodi muuta</translation>
@@ -3040,6 +3048,18 @@ Täiendavad litsentsid ja komponendid</translation>
         <source>https://www.id.ee/en/article/changing-id-card-pin-codes-and-puk-code/</source>
         <translation>https://www.id.ee/artikkel/id-kaardi-pin-ja-puk-koodide-muutmine/</translation>
     </message>
+    <message>
+        <source>Authentication and signing with the ID-card isn&apos;t possible yet. ID-card must be activated in the Police and Border Guard Board’s self-service portal in order to use it.</source>
+        <translation>ID-kaardiga isikutuvastamine ja allkirjastamine ei ole veel võimalik. ID-kaardi kasutamiseks tuleb see aktiveerida Politsei- ja Piirivalveameti iseteeninduses.</translation>
+    </message>
+    <message>
+        <source>Activate ID-card</source>
+        <translation>Aktiveeri ID-kaart</translation>
+    </message>
+    <message>
+        <source>https://www.politsei.ee/en/self-service-portal/</source>
+        <translation>https://www.politsei.ee/et/iseteenindus/</translation>
+    </message>
     <message>
         <source>This ASiC-S container contains XAdES signature. You are not allowed to add or remove signatures to this container.</source>
         <translation>Tegemist on XAdES allkirja sisaldava ASiC-S ümbrikuga. Sellele ümbrikule ei saa allkirja lisada ega eemaldada.</translation>

client/translations/ru.ts

@@ -2923,6 +2923,14 @@ Additional licenses and components</source>
         <source>Please check your internet connection.</source>
         <translation>Пожалуйста проверьте подключение к интернету.</translation>
     </message>
+    <message>
+        <source>The ID-card must be activated in order to authenticate</source>
+        <translation>Для аутентификации ID карту необходимо активировать</translation>
+    </message>
+    <message>
+        <source>The ID-card must be activated in order to sign</source>
+        <translation>Для подписания документов ID карту необходимо активировать</translation>
+    </message>
     <message>
         <source>PIN%1 has been blocked because PIN%1 code has been entered incorrectly 3 times.</source>
         <translation>PIN%1 заблокирован, потому что PIN%1-код был введен неверно 3 раза.</translation>
@@ -3045,6 +3053,18 @@ Additional licenses and components</source>
         <source>https://www.id.ee/en/article/changing-id-card-pin-codes-and-puk-code/</source>
         <translation>https://www.id.ee/ru/artikkel/poryadok-izmeneniya-pin-kodov-i-puk-koda-id-karty/</translation>
     </message>
+    <message>
+        <source>Authentication and signing with the ID-card isn&apos;t possible yet. ID-card must be activated in the Police and Border Guard Board’s self-service portal in order to use it.</source>
+        <translation>Идентификация и подписание документов с помощью ID карты пока невозможны. Для использования удостоверения личности его необходимо активировать в системе самообслуживания Управления полиции и пограничной охраны.</translation>
+    </message>
+    <message>
+        <source>Activate ID-card</source>
+        <translation>Активировать ID карту</translation>
+    </message>
+    <message>
+        <source>https://www.politsei.ee/en/self-service-portal/</source>
+        <translation>https://www.politsei.ee/ru/samoobsluzhivanie/</translation>
+    </message>
     <message>
         <source>This ASiC-S container contains XAdES signature. You are not allowed to add or remove signatures to this container.</source>
         <translation>Речь идет о конверте ASiC-S, содержащемся в подписи XAdES. К данному контейнеру нельзя добавить или удалить из него подпись.</translation>

client/widgets/ContainerPage.cpp

@@ -328,13 +328,14 @@ void ContainerPage::transition(CryptoDoc *container, const QSslCertificate &cert
 		ui->rightPane->addWidget(new AddressItem(std::move(key), AddressItem::Icon, ui->rightPane));
 	}
 	if(hasUnsupported)
-		emit warning({UnsupportedCDocWarning});
+		emit warning({WarningText::UnsupportedCDocWarning});
 	ui->leftPane->setModel(container->documentModel());
 	updatePanes(container->state());
 }
 
 void ContainerPage::transition(DigiDoc* container)
 {
+	using enum WarningText::WarningType;
 	disconnect(ui->leftPane, &ItemList::removed, container, nullptr);
 	connect(ui->leftPane, &ItemList::removed, container, [this, container](int index) {
 		deleteConfirm(container, index);
@@ -386,7 +387,7 @@ void ContainerPage::transition(DigiDoc* container)
 	});
 
 	clear(ClearSignatureWarning);
-	std::map<ria::qdigidoc4::WarningType, int> errors;
+	std::map<WarningText::WarningType, int> errors;
 	setHeader(container->fileName());
 	ui->leftPane->init(fileName, QT_TRANSLATE_NOOP("ItemList", "Container files"));