设备名与令牌解耦 + iOS Broker 应用内登录 / 消息 / 图库 / 记录持久化 + 三端 bug 修复
设备名与令牌解耦(presence 按 device_id 键控):
- hub 主键改稳定 device_id(presence / online / kick 用之),peer 路由仍按设备名经 hub 内 clientFor 解析——不动传输核心;Client 加 Name + 连接键,PresenceDevice 加 device_id,sse 传 claims.DeviceID,publishPresence 按 device_id 判在线、name 取自 devices 表
- 改名走已有 PATCH /api/devices/{device_id}(不重铸会话、不换 token、不中断 SSE)+ hub.Rename 更新活跃连接名 + 重广播 presence,全端即时无重复项;sessions 列表 name 用 devices 表覆盖 broker Label;web 改名从重铸迁到 PATCH,iOS 设置页即时改名;DeviceItem / DeviceInfo 按 device_id 键控判本机
- 移除「需移除两次」:publishPresence 不再把「有 device_id 但无 devices 行」的 live 连接当在线(吊销后用未过期 token 重连的僵尸),只显示 code-less 连接;合法重登新建行故正常
- revoke 对无 broker 会话的本地行也清(清掉合成测试 / 幽灵设备);跨端吊销 / 断连一律按 device_id Kick
iOS Broker 应用内登录(免扫码):
- BrokerLogin.swift:ASWebAuthenticationSession 跑 broker /device/authorize + /device/token 的 PKCE 设备授权流(对齐桌面 loopback,自定义 scheme cdrop://auth-callback 回调)→ /api/auth/device-session 代铸出带真名 + 稳定 device_id 的设备会话;DeviceIDStore 跨登录复用 device_id 杜绝重登重复
- LoginView 主登录改 broker 账号登录、扫码降级为可展开备选
iOS 功能补全:
- 设备间消息(引擎 main.ts 单条增量过桥 + onNativeEvent sendMessage;EngineController 消息状态 + 新 MessagesView 会话 UI;后端 /api/message 已就绪)
- 图库发送(PhotosPicker 文件 / 图库菜单 → stagePhotoData → 复用 cdrop-file 发送链路;NSPhotoLibraryUsageDescription)
- 传输历史 / 消息记录持久化(RecordsStore 落 Application Support JSON,跨重启存活)+ 长按删除 + 清空(二次确认)
- 进行中传输主动取消 / 立即切中继(详情页两按钮,复用引擎桥命令)
- 身份愈合(引擎 /api/me 取真实显示名经 identityUpdated 回报 Keychain,修扫码登录「用户显示 UUID」)
- 触发本地网络权限(NWBrowser 浏览 _cdrop._tcp)使 WKWebView WebRTC 取 host 候选
iOS 发送 / 启动修复:
- 发送在读文件即失败:引擎在 https 源下 fetch("cdrop-file://") 跨源 + Range 头触发 CORS 预检被拦 → 改走原生桥 bridgeFileSource / readFileSlice(512 KiB 分块 base64),绕开 CORS、整文件仍不整体进内存
- 冷启重开「missing injected session」:EngineWebView.makeUIView 在 boot 注入前确定性接好 auth,消除注入竞态
桌面 bug 修复:
- 登出静默失败:window.confirm 在 Wails WebView 失效(返回 falsy 致动作被静默跳过)→ 跨平台 DOM 确认弹窗(utils/confirm 的 Promise 式 confirmDialog + ui/ConfirmHost 的 Mantine Modal)取代之;登出改 await 先吊销 broker 会话再清本地(桌面 clearDesktopSession 会丢 Go 侧 refresh 的竞态)
- 扫 iOS 登录二维码被拒「不是本站的码」:wails:// 源永不等 https 站点源 → 桌面放宽 parseLinkApprovalUrl 的 origin 等值校验(仍留 /link 路径 + r/c;批准 r/c 一律发往本端后端、外站码只 404,无开放重定向)
- macOS 本地网络权限触发(localnetwork_darwin NWBrowser + Info.plist 键);相机修复(NSCameraUsageDescription)
web / 跨端:
- presence 透传 device_id + 离线检测按 device_id;会话列表随 presence 防抖重拉(已登出设备自动从列表消失,不再需手动刷新);移除设备 / 清剪贴板 / 撤销令牌 / 登出均改 DOM 确认弹窗
分发 / 签名:
- 真机签名从手动 scaffold 改自动 provisioning(删 Signing.xcconfig,project.yml 去 profile specifier,just ios-device 用 -allowProvisioningUpdates + ASC 团队 key);App Group 改名 group.net.commilitia.Commilitia-Drop(含 entitlements)
- hub 测试加 device_id 键控 + 改名解耦回归(-race)
This commit is contained in:
@@ -7,5 +7,6 @@ DerivedData/
|
||||
*.xcuserstate
|
||||
.DS_Store
|
||||
|
||||
# 真机签名的账号特定值(Team ID + profile 名)——公开仓库不留账号标识,见 REALDEVICE.md。
|
||||
Local.xcconfig
|
||||
# 真机签名的账号凭据——公开仓库不留账号标识。ASC API Key 的 .p8 + Team/Key/Issuer ID
|
||||
# 走根目录 gitignore 的 .env(见 REALDEVICE.md);.p8 若落本目录一并忽略。
|
||||
*.p8
|
||||
|
||||
@@ -10,7 +10,7 @@
|
||||
模拟器无需签名即生效;真机须付费 ADP 注册该 group(账号门控)。 -->
|
||||
<key>com.apple.security.application-groups</key>
|
||||
<array>
|
||||
<string>group.net.commilitia.cdrop</string>
|
||||
<string>group.net.commilitia.Commilitia-Drop</string>
|
||||
</array>
|
||||
</dict>
|
||||
</plist>
|
||||
|
||||
+33
-40
@@ -1,15 +1,15 @@
|
||||
# cdrop iOS 真机分发手册
|
||||
|
||||
把 cdrop 装到你自己的 iPhone(开发签名,1 年 profile)。代码侧全部就绪并经模拟器验证;真机只差**账号 + 门户 + 签名**这一层。本手册走**手动签名 + 全 CLI**路线——门户你手动建(一次),构建装机一条命令,**全程不碰 Xcode GUI**。
|
||||
把 cdrop 装到你自己的 iPhone(开发签名)。代码侧全部就绪并经模拟器验证;真机只差**账号 + 签名**这一层。本手册走 **ASC API Key 自动 provisioning + 全 CLI** 路线——一把 App Store Connect API Key,`-allowProvisioningUpdates` 自动登记连接的设备 + 创建/更新 App ID / App Group / Push / profile / 开发证书,构建装机一条命令,**全程不碰 Xcode GUI、不必手动建 profile**(绕过手动 profile「设备列表只剩 Mac」的坑)。
|
||||
|
||||
## 包名与标识(门户里要用的)
|
||||
## 包名与标识
|
||||
|
||||
| 项 | 值 |
|
||||
|---|---|
|
||||
| 主 app Bundle ID | `net.commilitia.Commilitia-Drop` |
|
||||
| Share Extension | `net.commilitia.Commilitia-Drop.share` |
|
||||
| 控件扩展 | `net.commilitia.Commilitia-Drop.widgets` |
|
||||
| App Group | `group.net.commilitia.cdrop`(与包名相互独立,刻意不同名) |
|
||||
| App Group | `group.net.commilitia.Commilitia-Drop` |
|
||||
| APNs topic(服务端 `CDROP_APNS_TOPIC`) | `net.commilitia.Commilitia-Drop` |
|
||||
|
||||
## 前置
|
||||
@@ -19,61 +19,54 @@
|
||||
|
||||
---
|
||||
|
||||
## A. 门户操作(developer.apple.com/account,一次性)
|
||||
## A. ASC API Key + .env(核心,一次性)
|
||||
|
||||
> 入口:登录后左侧 **Certificates, Identifiers & Profiles**(证书 / 标识符 / 描述文件总枢纽)——A1–A5 都在这里面;A6 在 **Keys**;Team ID 在 **Membership details**(10 位,记下)。
|
||||
`-allowProvisioningUpdates` 凭一把 App Store Connect API Key 替你在门户自动登记设备、建/改 App ID(含 App Groups + Push 能力)、建 App Group、建 profile、建/下开发证书——**不必手动建 profile**。
|
||||
|
||||
1. **证书**(Apple Development):本机「钥匙串访问」可能已有(「我的证书」分类里看)。没有就:钥匙串访问菜单 → 证书助理 → 从证书颁发机构请求证书 → 存到磁盘 → 门户 **Certificates** → + → Apple Development → 传 CSR → 下载 `.cer` 双击安装。
|
||||
2. **App IDs ×3**(**Identifiers** → + → App IDs → App,Bundle ID 选 **Explicit**):
|
||||
- `net.commilitia.Commilitia-Drop` — 勾 **App Groups** + **Push Notifications**
|
||||
- `net.commilitia.Commilitia-Drop.share` — 勾 **App Groups**
|
||||
- `net.commilitia.Commilitia-Drop.widgets` — 勾 **App Groups**
|
||||
3. **App Group**:**Identifiers** 页类型筛选切到 **App Groups** → + → `group.net.commilitia.cdrop`。再回上面 3 个 App ID 各自的 App Groups 能力里 **Edit/Configure** 关联它(三个都要)。
|
||||
4. **设备**:**Devices** → + → 填 UDID(插上手机后 `just ios-devices` 读)。
|
||||
5. **描述文件 ×3**(**Profiles** → + → **iOS App Development**,非 Distribution):每个选对应 App ID + 证书 + 设备,命名清楚(建议 `CDrop Dev` / `CDrop Share Dev` / `CDrop Widgets Dev`)→ 下载 → 双击安装。
|
||||
6. **APNs Auth Key**(**Keys** → + → 勾 Apple Push Notifications service):下载 `AuthKey_XXXXX.p8`(仅一次),记 **Key ID** + **Issuer ID**(服务端发推送用,见 D)。这把 `.p8` 与 A1 的证书是两码事。
|
||||
**生成 API Key**:appstoreconnect.apple.com → **用户和访问** → **集成** → **App Store Connect API** → **团队密钥** → 「+」→ 角色 **Admin**(要能管设备 / profile / 标识符)→ 命名 → 生成 → 下载 `AuthKey_XXXXX.p8`(**仅一次**)。记下三样:
|
||||
|
||||
> 常见坑:Bundle ID 选 **Explicit** 不是 Wildcard;App Group 务必 3 个 App ID 都关联;Profile 选 **Development** 不要 Distribution。
|
||||
- **Key ID**(密钥行里那串,10 位)
|
||||
- **Issuer ID**(密钥页顶部,UUID 形)
|
||||
- **Team ID**(账号 **Membership** 里,10 位)
|
||||
|
||||
**配 `.env`**(仓库根目录,已 gitignore,公开仓库不留账号凭据):
|
||||
|
||||
```
|
||||
CDROP_TEAM_ID=ABCDE12345
|
||||
CDROP_ASC_KEY_PATH=/绝对路径/AuthKey_XXXXX.p8
|
||||
CDROP_ASC_KEY_ID=XXXXXXXXXX
|
||||
CDROP_ASC_ISSUER_ID=xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx
|
||||
```
|
||||
|
||||
`.p8` 放仓库外即可,`CDROP_ASC_KEY_PATH` 指它绝对路径(落本目录则被 `*.p8` 忽略)。
|
||||
|
||||
> 你若已在门户手动建过 App ID / App Group / 证书,自动 provisioning 会复用、不冲突。**「手动建 profile 时设备列表只剩 Mac」**=那台 iPhone 在 **Devices** 里被登记成了 macOS 平台(登记表单 Platform 默认 macOS);自动 provisioning 直接按连接的真机重登记,绕过此坑。
|
||||
|
||||
**顺手:APNs Auth Key**(发推送用,与上面 ASC Key 是两码事):门户 **Keys** → + → 勾 **Apple Push Notifications service** → 下载 `AuthKey_YYYYY.p8`(仅一次),记 Key ID + Issuer ID(服务端配,见 C)。
|
||||
|
||||
---
|
||||
|
||||
## B. 本地签名配置(gitignore,填一次)
|
||||
|
||||
在 `ios/CDrop/Local.xcconfig` 写入(此文件已 gitignore,公开仓库不留你的账号标识):
|
||||
|
||||
```
|
||||
CDROP_TEAM_ID = ABCDE12345
|
||||
CDROP_PROFILE_APP = CDrop Dev
|
||||
CDROP_PROFILE_SHARE = CDrop Share Dev
|
||||
CDROP_PROFILE_WIDGETS = CDrop Widgets Dev
|
||||
```
|
||||
|
||||
- `CDROP_TEAM_ID`=A0 的 Team ID;三个 `CDROP_PROFILE_*`=A5 你起的 profile 名(**名字**,不是文件路径)。
|
||||
- 机制:`Signing.xcconfig`(已提交)仅对 **device SDK(iphoneos)** 套用手动签名 + 这些值;**模拟器**仍走 `project.yml` 的 ad-hoc(`CODE_SIGN_IDENTITY = "-"`),故缺 `Local.xcconfig` 也不影响模拟器构建。
|
||||
|
||||
---
|
||||
|
||||
## C. 构建装机(全 CLI)
|
||||
## B. 构建装机(全 CLI)
|
||||
|
||||
```sh
|
||||
just ios-devices # 手机插 USB,读 UDID(填进门户 A4 + 下行)
|
||||
just ios-device <你的设备UDID> # 真机构建(手动签名)+ devicectl 装机
|
||||
just ios-devices # 手机插 USB,读 UDID
|
||||
just ios-device <你的设备UDID> # 自动 provisioning 构建 + devicectl 装机
|
||||
```
|
||||
|
||||
- `just ios-device` = `xcodegen generate` → `xcodebuild`(device,手动签名走 `Local.xcconfig`)→ `xcrun devicectl device install app`。无 Xcode GUI。
|
||||
- `just ios-device` = `xcodegen generate` → `xcodebuild -allowProvisioningUpdates`(凭 .env 的 ASC Key 自动签名 + 登记设备 + 建 profile)→ `xcrun devicectl device install app`。无 Xcode GUI。
|
||||
- 首次装机后,iPhone 上首启该开发者 app 即可直接跑(付费 ADP 开发证书,无需手动「信任开发者」)。
|
||||
|
||||
---
|
||||
|
||||
## D. 服务端前置
|
||||
## C. 服务端前置
|
||||
|
||||
1. **引擎可达**:真机上引擎 WebView 加载 `https://drop.commilitia.net/engine.html`——**该文件随 cdrop 二进制部署到 prod**(`//go:embed` 进 binary,`just docker-image` 含最新 `dist`)。手机要用,prod 须是含本轮改动的最新部署。
|
||||
2. **APNs 真发**:把 A6 的 `.p8` 放到服务器,给后端容器配 `CDROP_APNS_KEY_PATH` / `CDROP_APNS_KEY_ID` / `CDROP_APNS_TEAM_ID` / `CDROP_APNS_TOPIC=net.commilitia.Commilitia-Drop` / `CDROP_APNS_ENV`(Xcode 开发构建的 device token 属 **sandbox**,故联调填 `sandbox`)。缺配置则推送惰性关闭,其余功能照常。
|
||||
1. **引擎可达**:真机上引擎 WebView 加载 `https://drop.commilitia.net/engine.html`——该文件随 cdrop 二进制部署到 prod(`//go:embed` 进 binary,`just docker-image` 含最新 `dist`)。手机要用,prod 须是含本轮改动的最新部署。
|
||||
2. **APNs 真发**:把 A 里那把 **APNs Auth Key** `.p8` 放到服务器,给后端容器配 `CDROP_APNS_KEY_PATH` / `CDROP_APNS_KEY_ID` / `CDROP_APNS_TEAM_ID` / `CDROP_APNS_TOPIC=net.commilitia.Commilitia-Drop` / `CDROP_APNS_ENV`(Xcode 开发构建的 device token 属 **sandbox**,故联调填 `sandbox`)。缺配置则推送惰性关闭,其余功能照常。
|
||||
3. 本机联调可选:环境变量 `CDROP_ENGINE_URL` 指向可达引擎。
|
||||
|
||||
---
|
||||
|
||||
## E. 只能真机验的清单
|
||||
## D. 只能真机验的清单
|
||||
|
||||
代码已实现,下列是真机才能验的点:
|
||||
|
||||
@@ -83,6 +76,6 @@ just ios-device <你的设备UDID> # 真机构建(手动签名)+ devicectl
|
||||
- [ ] 发送 / 接收:选文件 → 选设备 → 对端收到;对端发来落 Files(Documents)。
|
||||
- [ ] **大文件流式发送**(R-iOS-4 已实现):发大文件,WebView 内存应有界(按 Range 块拉取,不整文件入内存)。
|
||||
- [ ] **后台续传**(R-iOS-1 / R-iOS-3):传输中切后台 → `BGContinuedProcessingTask` 系统进度 UI;验 WKWebView JS 是否随之保活(不保活则退化为回前台续传,可接受)。
|
||||
- [ ] **APNs 推送**:离线设备收「收到文件」通知(需 D2 的 `.p8`)。
|
||||
- [ ] **APNs 推送**:离线设备收「收到文件」通知(需 C2 的 `.p8`)。
|
||||
- [ ] **Share Extension**:别的 app 分享 → 选 Commilitia Drop → 唤起主 app 选设备发送。
|
||||
- [ ] **控制中心剪贴板两控件**:控制中心加「上传 / 拉取剪贴板」控件 → 锁屏 / 解锁态点按 → 云剪贴板读写。
|
||||
|
||||
@@ -5,7 +5,7 @@
|
||||
<!-- 与主 app 共享的 App Group:Share Extension 把待发文件搬进收件箱(见 AppGroup.swift)。 -->
|
||||
<key>com.apple.security.application-groups</key>
|
||||
<array>
|
||||
<string>group.net.commilitia.cdrop</string>
|
||||
<string>group.net.commilitia.Commilitia-Drop</string>
|
||||
</array>
|
||||
</dict>
|
||||
</plist>
|
||||
|
||||
@@ -8,7 +8,7 @@ import Foundation
|
||||
// 文件名);发送 / 取消后删掉该子目录即清理。
|
||||
enum AppGroup
|
||||
{
|
||||
static let identifier = "group.net.commilitia.cdrop"
|
||||
static let identifier = "group.net.commilitia.Commilitia-Drop"
|
||||
|
||||
// 共享收件箱根目录。容器不存在(App Group 未生效)时返回 nil,调用方降级为静默不交接。
|
||||
static func inboxURL() -> URL?
|
||||
|
||||
@@ -1,11 +0,0 @@
|
||||
// 真机签名配置。仅对 device SDK(iphoneos)生效——模拟器仍走 project.yml base 的 ad-hoc
|
||||
// 签名(CODE_SIGN_IDENTITY = "-"),无需 Apple 账号即可构建 / 跑模拟器。
|
||||
//
|
||||
// 账号特定值(Team ID、各 target 的 profile 名)放在同目录 **gitignore** 的 Local.xcconfig
|
||||
// 里(公开仓库不留账号标识)。Local.xcconfig 不存在时下面的可选 include 跳过,device 构建会
|
||||
// 因缺 Team/profile 失败——这正是预期(真机构建须先按 REALDEVICE.md 建好 Local.xcconfig)。
|
||||
#include? "Local.xcconfig"
|
||||
|
||||
CODE_SIGN_STYLE[sdk=iphoneos*] = Manual
|
||||
CODE_SIGN_IDENTITY[sdk=iphoneos*] = Apple Development
|
||||
DEVELOPMENT_TEAM[sdk=iphoneos*] = $(CDROP_TEAM_ID)
|
||||
@@ -1,3 +1,4 @@
|
||||
import AuthenticationServices
|
||||
import Foundation
|
||||
import Observation
|
||||
import UIKit
|
||||
@@ -35,14 +36,19 @@ final class AuthManager
|
||||
|
||||
var session: Session?
|
||||
var qrPayload: String?
|
||||
var statusText: String = t("ios.login.generating")
|
||||
// 空初值:登录页以 broker 账号登录为主,无操作时不显状态文案;各登录流程开始时自行设置。
|
||||
var statusText: String = ""
|
||||
// 二维码已失效(denied/expired/失败)→ 登录页据此提示并高亮「刷新二维码」。
|
||||
var qrExpired = false
|
||||
|
||||
// 登录代次:每次 startQRLogin 自增,旧轮询据此识别自己已被刷新取代、丢弃结果,避免
|
||||
// 「刷新时仍在轮询」两条循环并发改 statusText / qrPayload 打架。
|
||||
// 登录代次:每次 startQRLogin / startBrokerLogin 自增,旧流程据此识别自己已被取代、丢弃
|
||||
// 结果,避免两条登录流程并发改 statusText / session 打架。
|
||||
private var loginGeneration = 0
|
||||
|
||||
// Broker 登录期间强持 ASWebAuthenticationSession 封装(其 presentationContextProvider 为 weak、
|
||||
// session 自身亦须保活至回调),完成 / 失败后置空。
|
||||
private var brokerFlow: BrokerAuthFlow?
|
||||
|
||||
// Keychain 持久化坐标(单 app 私有,见 Keychain.swift)。
|
||||
private static let keychainService = "net.commilitia.cdrop.session"
|
||||
private static let keychainAccount = "session"
|
||||
@@ -110,14 +116,152 @@ final class AuthManager
|
||||
}
|
||||
}
|
||||
|
||||
// 应用内 Broker 登录(device-authorization + PKCE,见 BrokerLogin.swift):手机直接输账号登录,
|
||||
// 无需另一台设备扫码。流程=拉 broker 配置 → ASWebAuthenticationSession 授权拿 code → 换 bootstrap
|
||||
// 令牌 → 代铸成 cdrop 设备会话(带真名 / 稳定 device_id)→ 落 full 会话 + Keychain。
|
||||
func startBrokerLogin() async
|
||||
{
|
||||
loginGeneration += 1
|
||||
let gen = loginGeneration
|
||||
qrExpired = false
|
||||
statusText = t("ios.login.brokerStarting")
|
||||
do
|
||||
{
|
||||
let cfg = try await fetchAuthConfig()
|
||||
guard !cfg.brokerURL.isEmpty, !cfg.brokerApp.isEmpty else { throw BrokerLoginError.incompleteConfig }
|
||||
|
||||
let verifier = PKCE.randomToken(64)
|
||||
let challenge = PKCE.challenge(for: verifier)
|
||||
let state = PKCE.randomToken(24)
|
||||
let redirectURI = "cdrop://auth-callback"
|
||||
|
||||
var comp = URLComponents(string: cfg.brokerURL.trimmingTrailingSlash() + "/device/authorize")!
|
||||
comp.queryItems = [
|
||||
URLQueryItem(name: "app", value: cfg.brokerApp),
|
||||
URLQueryItem(name: "redirect_uri", value: redirectURI),
|
||||
URLQueryItem(name: "state", value: state),
|
||||
URLQueryItem(name: "code_challenge", value: challenge),
|
||||
URLQueryItem(name: "code_challenge_method", value: "S256"),
|
||||
URLQueryItem(name: "description", value: "Commilitia Drop iOS"),
|
||||
]
|
||||
guard let authURL = comp.url else { throw BrokerLoginError.incompleteConfig }
|
||||
|
||||
let flow = BrokerAuthFlow()
|
||||
brokerFlow = flow
|
||||
let callback = try await flow.run(url: authURL, callbackScheme: "cdrop")
|
||||
brokerFlow = nil
|
||||
if gen != loginGeneration { return }
|
||||
|
||||
let items = URLComponents(url: callback, resolvingAgainstBaseURL: false)?.queryItems ?? []
|
||||
guard items.first(where: { $0.name == "state" })?.value == state
|
||||
else { throw BrokerLoginError.stateMismatch }
|
||||
guard let code = items.first(where: { $0.name == "code" })?.value, !code.isEmpty
|
||||
else { throw BrokerLoginError.missingCode }
|
||||
|
||||
let bootstrap = try await exchangeDeviceToken(
|
||||
brokerURL: cfg.brokerURL, code: code, verifier: verifier, redirectURI: redirectURI)
|
||||
let ds = try await mintDeviceSession(bootstrap: bootstrap)
|
||||
if gen != loginGeneration { return }
|
||||
|
||||
DeviceIDStore.value = ds.device_id
|
||||
let realName = (ds.name?.isEmpty == false) ? ds.name! : ds.user_id
|
||||
session = Session(accessToken: ds.access_token,
|
||||
refreshToken: ds.refresh_token,
|
||||
user: User(id: ds.user_id, name: realName, avatar: ds.avatar),
|
||||
deviceName: ds.device_name ?? DeviceNameStore.value,
|
||||
deviceId: ds.device_id,
|
||||
scope: "full")
|
||||
persist()
|
||||
}
|
||||
catch
|
||||
{
|
||||
brokerFlow = nil
|
||||
if gen != loginGeneration { return }
|
||||
// 用户主动取消(关闭授权页)不算失败:静默回到登录页等待再次操作。
|
||||
if let asErr = error as? ASWebAuthenticationSessionError, asErr.code == .canceledLogin
|
||||
{
|
||||
statusText = t("ios.login.waiting")
|
||||
return
|
||||
}
|
||||
statusText = t("ios.login.failed")
|
||||
}
|
||||
}
|
||||
|
||||
func logout()
|
||||
{
|
||||
session = nil
|
||||
qrPayload = nil
|
||||
statusText = t("ios.login.generating")
|
||||
statusText = ""
|
||||
Keychain.delete(service: Self.keychainService, account: Self.keychainAccount)
|
||||
}
|
||||
|
||||
// ---- Broker 登录辅助:配置拉取 / 令牌交换 / 代铸 ----
|
||||
|
||||
private struct AuthConfig { let brokerURL: String; let brokerApp: String }
|
||||
|
||||
private struct DeviceTokenResp: Decodable
|
||||
{
|
||||
let access: String
|
||||
let refresh: String
|
||||
let access_expires: Int64
|
||||
}
|
||||
|
||||
// 代铸响应:access/refresh + 稳定 device_id + 经边缘核验的真实身份(user_id/name/avatar)。
|
||||
private struct DeviceSessionResp: Decodable
|
||||
{
|
||||
let access_token: String
|
||||
let refresh_token: String
|
||||
let device_id: String
|
||||
let device_name: String?
|
||||
let user_id: String
|
||||
let name: String?
|
||||
let avatar: String?
|
||||
}
|
||||
|
||||
private func fetchAuthConfig() async throws -> AuthConfig
|
||||
{
|
||||
let (data, _) = try await URLSession.shared.data(from: URL(string: "\(apiBase)/api/auth/config")!)
|
||||
let obj = (try? JSONSerialization.jsonObject(with: data)) as? [String: Any] ?? [:]
|
||||
return AuthConfig(brokerURL: obj["broker_url"] as? String ?? "",
|
||||
brokerApp: obj["broker_app"] as? String ?? "")
|
||||
}
|
||||
|
||||
private func exchangeDeviceToken(
|
||||
brokerURL: String, code: String, verifier: String, redirectURI: String) async throws -> String
|
||||
{
|
||||
var req = URLRequest(url: URL(string: brokerURL.trimmingTrailingSlash() + "/device/token")!)
|
||||
req.httpMethod = "POST"
|
||||
req.setValue("application/json", forHTTPHeaderField: "Content-Type")
|
||||
req.setValue("application/json", forHTTPHeaderField: "Accept")
|
||||
req.httpBody = try JSONSerialization.data(withJSONObject: [
|
||||
"code": code, "code_verifier": verifier, "redirect_uri": redirectURI,
|
||||
])
|
||||
let (data, resp) = try await URLSession.shared.data(for: req)
|
||||
let status = (resp as? HTTPURLResponse)?.statusCode ?? 0
|
||||
guard status == 200 else { throw BrokerLoginError.tokenFailed(status) }
|
||||
let tr = try JSONDecoder().decode(DeviceTokenResp.self, from: data)
|
||||
guard !tr.access.isEmpty else { throw BrokerLoginError.badResponse }
|
||||
return tr.access
|
||||
}
|
||||
|
||||
private func mintDeviceSession(bootstrap: String) async throws -> DeviceSessionResp
|
||||
{
|
||||
var req = URLRequest(url: URL(string: "\(apiBase)/api/auth/device-session")!)
|
||||
req.httpMethod = "POST"
|
||||
req.setValue("Bearer \(bootstrap)", forHTTPHeaderField: "Authorization")
|
||||
req.setValue("application/json", forHTTPHeaderField: "Content-Type")
|
||||
req.setValue("ios", forHTTPHeaderField: "X-Device-Type")
|
||||
req.httpBody = try JSONSerialization.data(withJSONObject: [
|
||||
"device_id": DeviceIDStore.value,
|
||||
"device_name": DeviceNameStore.value,
|
||||
"device_type": "ios",
|
||||
])
|
||||
let (data, resp) = try await URLSession.shared.data(for: req)
|
||||
let status = (resp as? HTTPURLResponse)?.statusCode ?? 0
|
||||
guard status == 200 else { throw BrokerLoginError.deviceSessionFailed(status) }
|
||||
return try JSONDecoder().decode(DeviceSessionResp.self, from: data)
|
||||
}
|
||||
|
||||
// 持久化当前会话到 Keychain(扫码批准后调用)。
|
||||
private func persist()
|
||||
{
|
||||
@@ -136,6 +280,30 @@ final class AuthManager
|
||||
persist()
|
||||
}
|
||||
|
||||
// updateIdentity:引擎据 /api/me 取到真实显示名(QR 登录注入的是 subject UUID 名)→ 经桥
|
||||
// identityUpdated 回报,更新会话身份 + Keychain,使设置页显示真名而非 UUID(#12)。仅换
|
||||
// 显示身份,令牌 / 设备名不变。
|
||||
func updateIdentity(name: String, avatar: String?)
|
||||
{
|
||||
guard let cur = session else { return }
|
||||
let av = (avatar?.isEmpty == false) ? avatar : cur.user.avatar
|
||||
session = Session(accessToken: cur.accessToken, refreshToken: cur.refreshToken,
|
||||
user: User(id: cur.user.id, name: name, avatar: av),
|
||||
deviceName: cur.deviceName, deviceId: cur.deviceId, scope: cur.scope)
|
||||
persist()
|
||||
}
|
||||
|
||||
// updateDeviceName:本机即时改名成功(PATCH /api/devices/{device_id})后经桥 renamed 回报,
|
||||
// 更新会话里的设备名 + Keychain,使重启后 boot 注入新名。令牌 / 身份不变——设备名与令牌解耦。
|
||||
func updateDeviceName(_ name: String)
|
||||
{
|
||||
guard let cur = session else { return }
|
||||
session = Session(accessToken: cur.accessToken, refreshToken: cur.refreshToken,
|
||||
user: cur.user, deviceName: name,
|
||||
deviceId: cur.deviceId, scope: cur.scope)
|
||||
persist()
|
||||
}
|
||||
|
||||
// 仅供本机模拟器联调(CDROP_DEBUG_SESSION=1):注入占位会话跳过扫码,用于验证引擎从
|
||||
// prod 加载 + 桥往返。令牌无效、鉴权会 401,但能证 engine.html 在 WKWebView 里加载运行。
|
||||
func debugSession()
|
||||
|
||||
@@ -0,0 +1,111 @@
|
||||
import AuthenticationServices
|
||||
import CryptoKit
|
||||
import Foundation
|
||||
import UIKit
|
||||
|
||||
// 应用内 Broker 登录(device-authorization + PKCE,对齐桌面 desktop/platform/oauth.go)。iOS 无法
|
||||
// 跑 loopback 监听,故用 ASWebAuthenticationSession + 自定义 scheme 回调(cdrop://auth-callback):
|
||||
// 1. GET {broker}/device/authorize?app=cdrop&redirect_uri=cdrop://auth-callback&state&code_challenge&S256
|
||||
// 2. 用户在 broker SSO 授权 → 回调 cdrop://auth-callback?code=..&state=..
|
||||
// 3. POST {broker}/device/token {code, code_verifier, redirect_uri} → bootstrap 机器令牌
|
||||
// 4. POST {api}/api/auth/device-session(Bearer bootstrap)→ cdrop 设备会话(带真名 / device_id)
|
||||
// 这样手机上直接输账号登录,无需另一台设备扫码批准。
|
||||
// 前置:broker 须为 cdrop 应用注册 redirect_uri cdrop://auth-callback(同桌面 loopback 须注册)。
|
||||
|
||||
enum BrokerLoginError: Error
|
||||
{
|
||||
case incompleteConfig
|
||||
case cannotStart
|
||||
case noCallback
|
||||
case stateMismatch
|
||||
case missingCode
|
||||
case tokenFailed(Int)
|
||||
case deviceSessionFailed(Int)
|
||||
case badResponse
|
||||
}
|
||||
|
||||
// ASWebAuthenticationSession 的 async 封装 + 展示锚点提供者。须被持有至完成(session 的
|
||||
// presentationContextProvider 是 weak,且 session 自身也须保活),故由 AuthManager 在登录期间强持。
|
||||
@MainActor
|
||||
final class BrokerAuthFlow: NSObject, ASWebAuthenticationPresentationContextProviding
|
||||
{
|
||||
private var session: ASWebAuthenticationSession?
|
||||
|
||||
// 打开授权页,等回调 URL(cdrop://auth-callback?code=..&state=..)。用户取消 / 失败抛错。
|
||||
func run(url: URL, callbackScheme: String) async throws -> URL
|
||||
{
|
||||
try await withCheckedThrowingContinuation
|
||||
{ cont in
|
||||
let s = ASWebAuthenticationSession(url: url, callbackURLScheme: callbackScheme)
|
||||
{ [weak self] callback, error in
|
||||
self?.session = nil
|
||||
if let error { cont.resume(throwing: error) }
|
||||
else if let callback { cont.resume(returning: callback) }
|
||||
else { cont.resume(throwing: BrokerLoginError.noCallback) }
|
||||
}
|
||||
s.presentationContextProvider = self
|
||||
// 共享浏览会话:若用户已在 Safari 登录 broker SSO,则免再输密码(无缝 SSO)。
|
||||
s.prefersEphemeralWebBrowserSession = false
|
||||
self.session = s
|
||||
if !s.start() { cont.resume(throwing: BrokerLoginError.cannotStart) }
|
||||
}
|
||||
}
|
||||
|
||||
func presentationAnchor(for session: ASWebAuthenticationSession) -> ASPresentationAnchor
|
||||
{
|
||||
let scenes = UIApplication.shared.connectedScenes.compactMap { $0 as? UIWindowScene }
|
||||
return scenes.flatMap { $0.windows }.first { $0.isKeyWindow }
|
||||
?? scenes.first?.windows.first
|
||||
?? ASPresentationAnchor()
|
||||
}
|
||||
}
|
||||
|
||||
// 跨登录持久的稳定 device_id(broker meta / 会话↔设备连接键)。存 UserDefaults,登出不清——
|
||||
// 故重登复用同一 device_id,broker R2 幂等轮换同一会话、设备表 UPSERT 同一行,杜绝重复设备项
|
||||
// (对齐 web 的 localStorage cdrop.device_id)。首次为空,由后端铸发后回存。
|
||||
enum DeviceIDStore
|
||||
{
|
||||
private static let key = "cdrop.device_id"
|
||||
static var value: String
|
||||
{
|
||||
get { UserDefaults.standard.string(forKey: key) ?? "" }
|
||||
set { UserDefaults.standard.set(newValue, forKey: key) }
|
||||
}
|
||||
}
|
||||
|
||||
// PKCE / 随机串(对齐桌面 randString:n 字节 base64url 取前 n 字符,落在 PKCE unreserved 集内)。
|
||||
enum PKCE
|
||||
{
|
||||
static func randomToken(_ n: Int) -> String
|
||||
{
|
||||
var bytes = [UInt8](repeating: 0, count: n)
|
||||
_ = SecRandomCopyBytes(kSecRandomDefault, n, &bytes)
|
||||
return String(Data(bytes).base64URLEncoded().prefix(n))
|
||||
}
|
||||
|
||||
static func challenge(for verifier: String) -> String
|
||||
{
|
||||
let digest = SHA256.hash(data: Data(verifier.utf8))
|
||||
return Data(digest).base64URLEncoded()
|
||||
}
|
||||
}
|
||||
|
||||
extension Data
|
||||
{
|
||||
// base64url(无填充,- / _ 替 + /),用于 PKCE challenge / 随机串。
|
||||
func base64URLEncoded() -> String
|
||||
{
|
||||
base64EncodedString()
|
||||
.replacingOccurrences(of: "+", with: "-")
|
||||
.replacingOccurrences(of: "/", with: "_")
|
||||
.replacingOccurrences(of: "=", with: "")
|
||||
}
|
||||
}
|
||||
|
||||
extension String
|
||||
{
|
||||
func trimmingTrailingSlash() -> String
|
||||
{
|
||||
hasSuffix("/") ? String(dropLast()) : self
|
||||
}
|
||||
}
|
||||
@@ -2,34 +2,70 @@ import CoreImage.CIFilterBuiltins
|
||||
import SwiftUI
|
||||
import UIKit
|
||||
|
||||
// 扫码登录界面:显示二维码 + 引导用已登录的 cdrop 扫码批准。轮询在 AuthManager 里。
|
||||
// 登录界面:主登录=应用内 Broker 账号登录(ASWebAuthenticationSession,直接输账号、无需另一台
|
||||
// 设备);扫码登录降级为可展开的备选(需另一台已登录设备扫码批准)。两条流程经 AuthManager。
|
||||
struct LoginView: View
|
||||
{
|
||||
@Environment(AuthManager.self) private var auth
|
||||
@State private var showQR = false
|
||||
|
||||
var body: some View
|
||||
{
|
||||
VStack(spacing: 24)
|
||||
VStack(spacing: 20)
|
||||
{
|
||||
Spacer()
|
||||
Text(t("app.brand"))
|
||||
.font(.largeTitle)
|
||||
.bold()
|
||||
qrArea
|
||||
Text(auth.statusText)
|
||||
.font(.callout)
|
||||
.foregroundStyle(auth.qrExpired ? Color.red : Color.secondary)
|
||||
refreshButton
|
||||
Text(t("ios.login.guide"))
|
||||
.font(.footnote)
|
||||
.foregroundStyle(.secondary)
|
||||
.multilineTextAlignment(.center)
|
||||
.padding(.horizontal, 40)
|
||||
|
||||
// 主登录:应用内 broker 账号登录。
|
||||
Button { Task { await auth.startBrokerLogin() } }
|
||||
label:
|
||||
{
|
||||
Label(t("ios.login.broker"), systemImage: "person.crop.circle")
|
||||
.frame(maxWidth: .infinity)
|
||||
}
|
||||
.buttonStyle(.glassProminent)
|
||||
.padding(.horizontal, 40)
|
||||
|
||||
if !auth.statusText.isEmpty
|
||||
{
|
||||
Text(auth.statusText)
|
||||
.font(.callout)
|
||||
.foregroundStyle(auth.qrExpired ? Color.red : Color.secondary)
|
||||
.multilineTextAlignment(.center)
|
||||
.padding(.horizontal, 40)
|
||||
}
|
||||
|
||||
// 备选:扫码登录(需另一台已登录设备)。展开时才发起二维码,避免无谓请求。
|
||||
DisclosureGroup(isExpanded: $showQR)
|
||||
{
|
||||
VStack(spacing: 16)
|
||||
{
|
||||
qrArea
|
||||
refreshButton
|
||||
Text(t("ios.login.guide"))
|
||||
.font(.footnote)
|
||||
.foregroundStyle(.secondary)
|
||||
.multilineTextAlignment(.center)
|
||||
}
|
||||
.padding(.top, 12)
|
||||
}
|
||||
label:
|
||||
{
|
||||
Text(t("ios.login.scanAlt"))
|
||||
.font(.subheadline)
|
||||
}
|
||||
.padding(.horizontal, 40)
|
||||
.onChange(of: showQR)
|
||||
{
|
||||
if showQR, auth.qrPayload == nil { Task { await auth.startQRLogin() } }
|
||||
}
|
||||
|
||||
Spacer()
|
||||
}
|
||||
.padding()
|
||||
.tint(.cdropAccent)
|
||||
.task { await auth.startQRLogin() }
|
||||
}
|
||||
|
||||
// 刷新二维码:失效后高亮(glassProminent),未失效时也常驻可手动刷新。两种玻璃样式类型
|
||||
|
||||
@@ -1,9 +1,10 @@
|
||||
import Foundation
|
||||
import UIKit
|
||||
|
||||
// 用户可编辑的设备名,持久在 UserDefaults。用于扫码登录 qr/start 的 device_name——设备名
|
||||
// 在登录时即烤进自签会话令牌,后端按 (userID, deviceName) 记 presence,无在线改名接口
|
||||
// (见 internal/httpapi/qr.go),故改名在「下次登录」生效。默认取系统设备名。
|
||||
// 用户可编辑的设备名,持久在 UserDefaults。用于扫码登录 qr/start 的初始 device_name。设备名
|
||||
// 已与会话令牌解耦:登录后在设置页改名经 PATCH /api/devices/{device_id} 即时生效(后端按稳定
|
||||
// device_id 改名 + 重广播 presence,不换 token),成功后由引擎 renamed 事件回写本存储 + Keychain
|
||||
// 会话名(见 EngineController / AuthManager)。默认取系统设备名。
|
||||
enum DeviceNameStore
|
||||
{
|
||||
private static let key = "cdrop.deviceName"
|
||||
|
||||
@@ -9,16 +9,30 @@ import WebKit
|
||||
// (对齐 web hub.ts handlePresence 的防御式取值)。
|
||||
struct DeviceItem: Identifiable, Equatable
|
||||
{
|
||||
// deviceID 是稳定标识(broker meta):设备名与令牌解耦后,去重 / 判本机 / 跨端吊销都按它,
|
||||
// 改名只换 name 而 deviceID 不变。后端 presence 总会带;偶发缺失(代铸前的连接)回落 name。
|
||||
let deviceID: String
|
||||
let name: String
|
||||
let type: String
|
||||
let online: Bool
|
||||
let lastSeen: Double
|
||||
var id: String { name }
|
||||
var id: String { deviceID.isEmpty ? name : deviceID }
|
||||
}
|
||||
|
||||
// 引擎过桥推来的设备间文本消息(对应 web store 的 MessageRecord)。原生侧持久化(见 RecordsStore),
|
||||
// 故重启存活、可手动删除——不再「关 app 即清」。
|
||||
struct MessageItem: Identifiable, Equatable, Codable
|
||||
{
|
||||
let id: String
|
||||
let direction: String // incoming | outgoing
|
||||
let peerName: String
|
||||
let text: String
|
||||
let sentAt: Double
|
||||
}
|
||||
|
||||
// 引擎过桥推来的传输记录(对应 web engine/main.ts 的 toWire 精简视图)。ice* 为选中候选
|
||||
// 对诊断(揭示 P2P 是否实为 TURN 中继,解释慢速)。同样手动容忍解析。
|
||||
struct TransferItem: Identifiable, Equatable
|
||||
struct TransferItem: Identifiable, Equatable, Codable
|
||||
{
|
||||
let sessionId: String
|
||||
let direction: String
|
||||
@@ -52,6 +66,7 @@ final class EngineController: NSObject
|
||||
var devices: [DeviceItem] = [] // 在线 / 离线设备 presence(每次 presence 事件整组替换)
|
||||
var transfers: [TransferItem] = [] // 活跃传输(每次 transfers 事件整组替换)
|
||||
var history: [TransferItem] = [] // 已完成传输(transferDone 逐条前插,限长 30)
|
||||
var messages: [MessageItem] = [] // 设备间文本消息(引擎每次 message 事件整组替换;最新在前)
|
||||
|
||||
// 诊断信号(设置页展示):SSE 是否连上 / 是否在重连 + 累计收到的 presence 事件数 + 引擎
|
||||
// 最近一条 warn/error 日志。用来定位「设备空」卡在哪一环(未连接?401?静默挂起?)。
|
||||
@@ -80,9 +95,13 @@ final class EngineController: NSObject
|
||||
return URL(string: "https://drop.commilitia.net/engine.html")!
|
||||
}
|
||||
|
||||
// 会话来源(登录后注入引擎 boot)。由 app 在启动时接好(AppRoot.onAppear)。
|
||||
// 会话来源(登录后注入引擎 boot)。在 EngineWebView.makeUIView 里 boot 注入前同步接好(#11)。
|
||||
var auth: AuthManager?
|
||||
|
||||
// 本机稳定设备 id(broker meta):判本机(presence 里哪台是自己)与即时改名(PATCH
|
||||
// /api/devices/{device_id})都用它,与设备名解耦——改名不变。
|
||||
var selfDeviceID: String { auth?.session?.deviceId ?? "" }
|
||||
|
||||
private var webView: WKWebView?
|
||||
private let downloads = DownloadManager()
|
||||
|
||||
@@ -90,10 +109,17 @@ final class EngineController: NSObject
|
||||
// 回取字节(下方 WKURLSchemeHandler 供给)。
|
||||
private var outgoing: [String: URL] = [:]
|
||||
|
||||
// 历史 / 消息限长(原生持久化,跨重启存活)。
|
||||
private static let historyCap = 50
|
||||
private static let messagesCap = 200
|
||||
|
||||
override init()
|
||||
{
|
||||
super.init()
|
||||
PushRegistry.shared.engine = self
|
||||
// 加载上次持久化的传输历史 / 消息记录,修「重启清空」。新事件经引擎桥增量追加。
|
||||
history = RecordsStore.load([TransferItem].self, "history") ?? []
|
||||
messages = RecordsStore.load([MessageItem].self, "messages") ?? []
|
||||
}
|
||||
|
||||
// makeWebView:构建离屏 WebView——注入 __CDROP_BOOT__(device_type:"ios")、注册消息
|
||||
@@ -133,6 +159,8 @@ final class EngineController: NSObject
|
||||
deviceName = currentDeviceName()
|
||||
// 已登录、引擎启动 → 请求通知授权并注册远程通知(幂等)。令牌回来后经引擎桥上报。
|
||||
PushRegistry.shared.requestAuthorizationAndRegister()
|
||||
// 触发本地网络权限弹窗(#5):使 WKWebView 内的 WebRTC 能收集 host 候选、同内网直连。
|
||||
LocalNetworkPermission.trigger()
|
||||
return wv
|
||||
}
|
||||
|
||||
@@ -146,6 +174,10 @@ final class EngineController: NSObject
|
||||
devices = []
|
||||
transfers = []
|
||||
history = []
|
||||
messages = []
|
||||
// 登出清空持久记录,不跨账号残留(重启保活仅针对同一登录态)。
|
||||
RecordsStore.clear("history")
|
||||
RecordsStore.clear("messages")
|
||||
status = t("ios.engine.disconnected")
|
||||
deviceName = ""
|
||||
PushRegistry.shared.reset()
|
||||
@@ -157,6 +189,32 @@ final class EngineController: NSObject
|
||||
CDropAPI.clearWidgetDeviceID()
|
||||
}
|
||||
|
||||
// 删除一条传输历史记录(D)/ 清空全部(持久化同步)。仅删本地展示记录,不影响已落盘文件。
|
||||
func deleteTransferRecord(_ sessionId: String)
|
||||
{
|
||||
history.removeAll { $0.sessionId == sessionId }
|
||||
RecordsStore.save(history, "history")
|
||||
}
|
||||
|
||||
func clearHistory()
|
||||
{
|
||||
history.removeAll()
|
||||
RecordsStore.clear("history")
|
||||
}
|
||||
|
||||
// 删除一条消息(H)/ 清空全部(持久化同步)。
|
||||
func deleteMessage(_ id: String)
|
||||
{
|
||||
messages.removeAll { $0.id == id }
|
||||
RecordsStore.save(messages, "messages")
|
||||
}
|
||||
|
||||
func clearMessages()
|
||||
{
|
||||
messages.removeAll()
|
||||
RecordsStore.clear("messages")
|
||||
}
|
||||
|
||||
// 收到的文件(Documents 沙盒,与 Files app 同一批)。供「收到的文件」视图浏览 / 转发。
|
||||
func receivedFiles() -> [URL] { downloads.receivedFiles() }
|
||||
func deleteReceivedFile(_ url: URL) { downloads.deleteReceivedFile(url) }
|
||||
@@ -193,11 +251,44 @@ final class EngineController: NSObject
|
||||
sendCommand("clipboardPull", payload: [:])
|
||||
}
|
||||
|
||||
// 设备管理:移除 / 吊销一台设备。
|
||||
func revokeDevice(_ name: String)
|
||||
// 设备管理:移除 / 吊销一台设备。按稳定 device_id(DELETE /api/devices/{device_id})——
|
||||
// 之前传设备名致后端找不到而「移除失败」(#2)。
|
||||
func revokeDevice(_ deviceID: String)
|
||||
{
|
||||
deviceActionStatus = ""
|
||||
sendCommand("revokeDevice", payload: [ "name": name ])
|
||||
sendCommand("revokeDevice", payload: [ "device_id": deviceID ])
|
||||
}
|
||||
|
||||
// 主动取消一个进行中的传输(O)。引擎置该会话为 CANCELLED,随后 transfers / transferDone 回推。
|
||||
func cancelTransfer(_ sessionId: String)
|
||||
{
|
||||
sendCommand("cancelTransfer", payload: [ "sessionId": sessionId ])
|
||||
}
|
||||
|
||||
// 立即切到中继(O):跳过等待 ICE 直连的窗口,直接走 relay(同内网直连建不起来 / 不想等时用)。
|
||||
func switchToRelay(_ sessionId: String)
|
||||
{
|
||||
sendCommand("switchToRelay", payload: [ "sessionId": sessionId ])
|
||||
}
|
||||
|
||||
// 设备间文本消息(发送):把 { to=对端设备名, text } 交引擎经 POST /api/message 转发。乐观回显
|
||||
// 由引擎侧 store.addMessage 触发的 message 事件整组回推(含本条 outgoing),故这里不本地插。
|
||||
func sendMessage(to peerName: String, text: String)
|
||||
{
|
||||
let trimmed = text.trimmingCharacters(in: .whitespacesAndNewlines)
|
||||
guard !trimmed.isEmpty, !peerName.isEmpty else { return }
|
||||
sendCommand("sendMessage", payload: [ "to": peerName, "text": trimmed ])
|
||||
}
|
||||
|
||||
// 本机即时改名(设备名与令牌解耦):把 { device_id=本机, name } 交引擎经 PATCH /api/devices/
|
||||
// {device_id} 只改名字——不换 token、不重连、不产生重复项;成功后引擎回报 "renamed",本端据此
|
||||
// 落本地名 + 更新 Keychain 会话名(见 handleNotify)。无 device_id(异常)则不发。
|
||||
func renameSelf(to name: String)
|
||||
{
|
||||
let id = selfDeviceID
|
||||
let trimmed = name.trimmingCharacters(in: .whitespacesAndNewlines)
|
||||
guard !id.isEmpty, !trimmed.isEmpty else { return }
|
||||
sendCommand("renameSelf", payload: [ "device_id": id, "name": trimmed ])
|
||||
}
|
||||
|
||||
// APNs 令牌登记:原生拿到令牌(PushRegistry.didRegister)或引擎刚就绪(ready)任一时机调用。
|
||||
@@ -282,6 +373,20 @@ final class EngineController: NSObject
|
||||
pendingShareFiles = []
|
||||
}
|
||||
|
||||
// 图库选择(#14):PhotosPicker 给的是 PhotosPickerItem,须先 loadTransferable 取字节,再落
|
||||
// 一个临时文件,才能复用既有 cdrop-file scheme 发送链路(按 Range 读盘、整文件不入内存)。
|
||||
// 返回临时文件 URL(在 temporaryDirectory,系统回收);写盘失败回 nil。
|
||||
func stagePhotoData(_ data: Data, suggestedName: String) -> URL?
|
||||
{
|
||||
let dir = FileManager.default.temporaryDirectory
|
||||
.appendingPathComponent("PhotoOutbox/\(UUID().uuidString)", isDirectory: true)
|
||||
try? FileManager.default.createDirectory(at: dir, withIntermediateDirectories: true)
|
||||
let name = suggestedName.isEmpty ? "photo.jpg" : suggestedName
|
||||
let dest = dir.appendingPathComponent(name)
|
||||
do { try data.write(to: dest); return dest }
|
||||
catch { return nil }
|
||||
}
|
||||
|
||||
// 暂存待发文件,返回引擎用的 cdrop-file://<id> 引用。文件选择器给的 URL 是安全作用域
|
||||
// 资源,需 start...Access 才能读。
|
||||
private func stageOutgoingFile(_ url: URL) -> String
|
||||
@@ -291,6 +396,24 @@ final class EngineController: NSObject
|
||||
outgoing[id] = url
|
||||
return "cdrop-file://\(id)"
|
||||
}
|
||||
|
||||
// 发送侧按 [start,end) seek 读暂存的待发文件、回 base64(供 bridgeFileSource 经桥取片)。
|
||||
// url 形如 cdrop-file://<id>,id 即 stageOutgoingFile 的暂存键。无该文件 / 读失败抛错。
|
||||
fileprivate func readOutgoingSlice(url: String, start: Int, end: Int) throws -> String
|
||||
{
|
||||
guard let id = URL(string: url)?.host, let fileURL = outgoing[id]
|
||||
else
|
||||
{
|
||||
throw NSError(domain: "cdrop.engine", code: 404,
|
||||
userInfo: [NSLocalizedDescriptionKey: "no staged file: \(url)"])
|
||||
}
|
||||
let handle = try FileHandle(forReadingFrom: fileURL)
|
||||
defer { try? handle.close() }
|
||||
try handle.seek(toOffset: UInt64(max(0, start)))
|
||||
let count = max(0, end - start)
|
||||
let data = (try handle.read(upToCount: count)) ?? Data()
|
||||
return data.base64EncodedString()
|
||||
}
|
||||
}
|
||||
|
||||
// MARK: - JS → 原生(RPC + 通知)
|
||||
@@ -337,6 +460,12 @@ extension EngineController: WKScriptMessageHandler
|
||||
case "abortDownload":
|
||||
downloads.abort(sessionId: payload["sessionId"] as? String ?? "")
|
||||
resolve(id: id, ok: true, value: nil)
|
||||
case "readFileSlice":
|
||||
// 发送侧取片:原生 seek 暂存的待发文件读 [start,end)、回 base64(见 bridgeFileSource)。
|
||||
let b64 = try readOutgoingSlice(url: payload["url"] as? String ?? "",
|
||||
start: Self.intOf(payload["start"]),
|
||||
end: Self.intOf(payload["end"]))
|
||||
resolve(id: id, ok: true, value: b64)
|
||||
default:
|
||||
resolve(id: id, ok: false, value: "unknown method: \(method)")
|
||||
}
|
||||
@@ -380,6 +509,21 @@ extension EngineController: WKScriptMessageHandler
|
||||
transfers = raw.compactMap { ($0 as? [String: Any]).flatMap(Self.parseTransfer) }
|
||||
syncBackgroundTask()
|
||||
}
|
||||
case "message":
|
||||
// 引擎推来的单条新消息(增量):前插 + 去重 + 限长 + 落盘。原生为持久真源,故不被
|
||||
// 引擎重启后的空列表覆盖(重启清空问题的根因)。
|
||||
if let p = payload as? [String: Any],
|
||||
let m = p["message"] as? [String: Any],
|
||||
let item = Self.parseMessage(m)
|
||||
{
|
||||
messages.removeAll { $0.id == item.id }
|
||||
messages.insert(item, at: 0)
|
||||
if messages.count > Self.messagesCap
|
||||
{
|
||||
messages.removeLast(messages.count - Self.messagesCap)
|
||||
}
|
||||
RecordsStore.save(messages, "messages")
|
||||
}
|
||||
case "transferDone":
|
||||
// 完成项移出活跃、前插历史;按 sessionId 去重避免重复事件叠加。
|
||||
if let p = payload as? [String: Any], let item = Self.parseTransfer(p)
|
||||
@@ -387,8 +531,9 @@ extension EngineController: WKScriptMessageHandler
|
||||
transfers.removeAll { $0.sessionId == item.sessionId }
|
||||
history.removeAll { $0.sessionId == item.sessionId }
|
||||
history.insert(item, at: 0)
|
||||
if history.count > 30 { history.removeLast(history.count - 30) }
|
||||
if history.count > Self.historyCap { history.removeLast(history.count - Self.historyCap) }
|
||||
syncBackgroundTask()
|
||||
RecordsStore.save(history, "history") // 持久化,跨重启存活
|
||||
}
|
||||
case "sendStarted":
|
||||
// 随后的 transfers 事件会带出该活跃项,这里无需额外处理。
|
||||
@@ -420,6 +565,23 @@ extension EngineController: WKScriptMessageHandler
|
||||
clipboardStatus = t("ios.clipboard.uploaded")
|
||||
case "deviceRevoked":
|
||||
deviceActionStatus = t("ios.devices.revoked")
|
||||
case "identityUpdated":
|
||||
// 引擎据 /api/me 取到真实显示名(QR 登录注入的是 UUID 名)→ 更新会话身份 + Keychain,
|
||||
// 设置页据此显示真名而非 UUID(#12)。
|
||||
if let p = payload as? [String: Any], let name = p["name"] as? String, !name.isEmpty
|
||||
{
|
||||
auth?.updateIdentity(name: name, avatar: p["avatar"] as? String)
|
||||
}
|
||||
case "renamed":
|
||||
// 本机即时改名成功(PATCH /api/devices/{device_id} 已落库 + 重广播 presence)→ 落本地名
|
||||
// 并更新 Keychain 会话名,使重启后 boot 注入新名。
|
||||
if let p = payload as? [String: Any], let name = p["name"] as? String, !name.isEmpty
|
||||
{
|
||||
DeviceNameStore.value = name
|
||||
auth?.updateDeviceName(name)
|
||||
deviceName = name
|
||||
deviceActionStatus = t("ios.settings.deviceName.success")
|
||||
}
|
||||
case "error":
|
||||
// 复用现有 error 通知:剪贴板 / 吊销失败也走这里,分流到对应状态行。
|
||||
if let p = payload as? [String: Any]
|
||||
@@ -580,12 +742,24 @@ extension EngineController
|
||||
static func parseDevice(_ d: [String: Any]) -> DeviceItem?
|
||||
{
|
||||
guard let name = d["name"] as? String, let type = d["type"] as? String else { return nil }
|
||||
return DeviceItem(name: name,
|
||||
// 引擎推来的是 web store 的 DeviceInfo(camelCase:deviceId / lastSeen)。
|
||||
return DeviceItem(deviceID: d["deviceId"] as? String ?? "",
|
||||
name: name,
|
||||
type: type,
|
||||
online: boolOf(d["online"]),
|
||||
lastSeen: doubleOf(d["lastSeen"]))
|
||||
}
|
||||
|
||||
static func parseMessage(_ m: [String: Any]) -> MessageItem?
|
||||
{
|
||||
guard let id = m["id"] as? String, let text = m["text"] as? String else { return nil }
|
||||
return MessageItem(id: id,
|
||||
direction: m["direction"] as? String ?? "incoming",
|
||||
peerName: m["peerName"] as? String ?? "",
|
||||
text: text,
|
||||
sentAt: doubleOf(m["sentAt"]))
|
||||
}
|
||||
|
||||
static func parseTransfer(_ t: [String: Any]) -> TransferItem?
|
||||
{
|
||||
guard let sessionId = t["sessionId"] as? String else { return nil }
|
||||
|
||||
@@ -6,9 +6,14 @@ import WebKit
|
||||
struct EngineWebView: UIViewRepresentable
|
||||
{
|
||||
let controller: EngineController
|
||||
// 会话源:在构建 WebView(注入 __CDROP_BOOT__)之前确定性接好。冷启动重开时,本视图的
|
||||
// makeUIView 可能先于 AppRoot.onAppear 跑——若那时 controller.auth 仍为 nil,boot 注入
|
||||
// session:null → 引擎报「missing injected session」整个 boot 死(#11)。故在此同步接好。
|
||||
let auth: AuthManager
|
||||
|
||||
func makeUIView(context: Context) -> WKWebView
|
||||
{
|
||||
controller.auth = auth
|
||||
return controller.makeWebView()
|
||||
}
|
||||
|
||||
|
||||
@@ -56,6 +56,8 @@
|
||||
<string>Commilitia Drop 使用相机扫描二维码登录新设备。</string>
|
||||
<key>NSLocalNetworkUsageDescription</key>
|
||||
<string>Commilitia Drop 需要访问本地网络以发现同内网设备并建立直连传输。</string>
|
||||
<key>NSPhotoLibraryUsageDescription</key>
|
||||
<string>Commilitia Drop 需要访问照片库,以便从相册选取图片或视频发送给其他设备。</string>
|
||||
<key>UIBackgroundModes</key>
|
||||
<array>
|
||||
<string>remote-notification</string>
|
||||
|
||||
@@ -0,0 +1,26 @@
|
||||
import Foundation
|
||||
import Network
|
||||
|
||||
// 触发本地网络权限弹窗(#5)。iOS 14+ 默认拒绝 App 访问本地网络;未授权时 WKWebView 内的
|
||||
// WebRTC 收集不到 host 候选 → 同内网也退回 srflx / relay(慢、非直连)。WKWebView 自身不会
|
||||
// 触发该权限请求,须由宿主 App 主动发起一次本地网络访问。这里启动一个对 _cdrop._tcp 的
|
||||
// NWBrowser 浏览即触发系统弹窗;用户允许后,后续 RTCPeerConnection 才能收集本地 host / mDNS
|
||||
// 候选实现直连。仅需触发一次;保持 browser 存活以维持授权态。project.yml 已声明
|
||||
// NSLocalNetworkUsageDescription + NSBonjourServices(_cdrop._tcp)。
|
||||
enum LocalNetworkPermission
|
||||
{
|
||||
private static var browser: NWBrowser?
|
||||
|
||||
// 启动浏览以触发权限请求。幂等:已在浏览则不重复启。浏览结果本身不关心——「发起访问」这一
|
||||
// 动作即触发系统授权弹窗。
|
||||
static func trigger()
|
||||
{
|
||||
guard browser == nil else { return }
|
||||
let params = NWParameters()
|
||||
params.includePeerToPeer = true
|
||||
let b = NWBrowser(for: .bonjour(type: "_cdrop._tcp", domain: nil), using: params)
|
||||
b.browseResultsChangedHandler = { _, _ in }
|
||||
browser = b
|
||||
b.start(queue: .main)
|
||||
}
|
||||
}
|
||||
@@ -0,0 +1,164 @@
|
||||
import SwiftUI
|
||||
|
||||
// 设备间文本消息(#13):聊天式列表 + 底部撰写栏。消息由引擎经桥推来(in-memory,关 app 即清,
|
||||
// 对齐 web 语义),收发都经 POST /api/message(hub SendTo 实时转发;对端离线则后端发推送)。
|
||||
// 可发给任意非本机设备(在线即时达、离线走推送),故目标取全部非本机设备而非仅在线。
|
||||
struct MessagesView: View
|
||||
{
|
||||
@Environment(EngineController.self) private var engine
|
||||
@State private var draft = ""
|
||||
@State private var target = ""
|
||||
@State private var showClearConfirm = false
|
||||
|
||||
// 可发消息的目标:全部非本机设备(按 device_id 判本机,与设备名解耦)。
|
||||
private var targets: [DeviceItem]
|
||||
{
|
||||
let selfID = engine.selfDeviceID
|
||||
return engine.devices.filter
|
||||
{ d in
|
||||
if !selfID.isEmpty, !d.deviceID.isEmpty { return d.deviceID != selfID }
|
||||
return d.name != engine.deviceName
|
||||
}
|
||||
}
|
||||
|
||||
// store 是最新在前;聊天式从上到下需旧→新。
|
||||
private var ordered: [MessageItem] { engine.messages.reversed() }
|
||||
|
||||
var body: some View
|
||||
{
|
||||
VStack(spacing: 0)
|
||||
{
|
||||
if engine.messages.isEmpty
|
||||
{
|
||||
ContentUnavailableView(t("ios.messages.empty"), systemImage: "message")
|
||||
.frame(maxWidth: .infinity, maxHeight: .infinity)
|
||||
}
|
||||
else
|
||||
{
|
||||
ScrollViewReader
|
||||
{ proxy in
|
||||
ScrollView
|
||||
{
|
||||
LazyVStack(alignment: .leading, spacing: 10)
|
||||
{
|
||||
ForEach(ordered)
|
||||
{ msg in
|
||||
messageRow(msg)
|
||||
.id(msg.id)
|
||||
.contextMenu
|
||||
{
|
||||
Button(role: .destructive) { engine.deleteMessage(msg.id) }
|
||||
label: { Label(t("transfer.action.delete"), systemImage: "trash") }
|
||||
}
|
||||
}
|
||||
}
|
||||
.padding()
|
||||
}
|
||||
.onChange(of: engine.messages.count) { scrollToLast(proxy) }
|
||||
.onAppear { scrollToLast(proxy) }
|
||||
}
|
||||
}
|
||||
composeBar
|
||||
}
|
||||
.navigationTitle(t("ios.tab.messages"))
|
||||
.toolbar
|
||||
{
|
||||
if !engine.messages.isEmpty
|
||||
{
|
||||
ToolbarItem(placement: .topBarTrailing)
|
||||
{
|
||||
Button(role: .destructive) { showClearConfirm = true }
|
||||
label: { Label(t("ios.records.clear"), systemImage: "trash") }
|
||||
}
|
||||
}
|
||||
}
|
||||
.confirmationDialog(t("ios.records.clearConfirm"), isPresented: $showClearConfirm, titleVisibility: .visible)
|
||||
{
|
||||
Button(t("ios.records.clear"), role: .destructive) { engine.clearMessages() }
|
||||
Button(t("common.cancel"), role: .cancel) { }
|
||||
}
|
||||
.onAppear { if target.isEmpty { target = targets.first?.name ?? "" } }
|
||||
}
|
||||
|
||||
private func scrollToLast(_ proxy: ScrollViewProxy)
|
||||
{
|
||||
guard let last = ordered.last else { return }
|
||||
withAnimation { proxy.scrollTo(last.id, anchor: .bottom) }
|
||||
}
|
||||
|
||||
private func messageRow(_ msg: MessageItem) -> some View
|
||||
{
|
||||
let outgoing = msg.direction == "outgoing"
|
||||
return HStack
|
||||
{
|
||||
if outgoing { Spacer(minLength: 48) }
|
||||
VStack(alignment: outgoing ? .trailing : .leading, spacing: 2)
|
||||
{
|
||||
Text(msg.peerName)
|
||||
.font(.caption2)
|
||||
.foregroundStyle(.secondary)
|
||||
Text(msg.text)
|
||||
.padding(.horizontal, 12)
|
||||
.padding(.vertical, 8)
|
||||
.background(outgoing ? Color.cdropAccent.opacity(0.18) : Color(.secondarySystemBackground),
|
||||
in: RoundedRectangle(cornerRadius: 14))
|
||||
.textSelection(.enabled)
|
||||
}
|
||||
if !outgoing { Spacer(minLength: 48) }
|
||||
}
|
||||
.frame(maxWidth: .infinity, alignment: outgoing ? .trailing : .leading)
|
||||
}
|
||||
|
||||
@ViewBuilder
|
||||
private var composeBar: some View
|
||||
{
|
||||
VStack(spacing: 6)
|
||||
{
|
||||
if targets.isEmpty
|
||||
{
|
||||
Text(t("ios.messages.noPeers"))
|
||||
.font(.caption)
|
||||
.foregroundStyle(.secondary)
|
||||
.frame(maxWidth: .infinity, alignment: .leading)
|
||||
}
|
||||
else
|
||||
{
|
||||
HStack(spacing: 10)
|
||||
{
|
||||
Menu
|
||||
{
|
||||
ForEach(targets)
|
||||
{ dev in
|
||||
Button(dev.name) { target = dev.name }
|
||||
}
|
||||
}
|
||||
label:
|
||||
{
|
||||
Label(target.isEmpty ? t("ios.send.pickDevice") : target,
|
||||
systemImage: "chevron.up.chevron.down")
|
||||
.font(.caption)
|
||||
.lineLimit(1)
|
||||
}
|
||||
TextField(t("ios.messages.placeholder"), text: $draft, axis: .vertical)
|
||||
.textFieldStyle(.roundedBorder)
|
||||
.lineLimit(1...4)
|
||||
.submitLabel(.send)
|
||||
.onSubmit { send() }
|
||||
Button { send() }
|
||||
label: { Image(systemName: "paperplane.fill").font(.title3) }
|
||||
.disabled(draft.trimmingCharacters(in: .whitespacesAndNewlines).isEmpty || target.isEmpty)
|
||||
}
|
||||
}
|
||||
}
|
||||
.padding()
|
||||
.background(.bar)
|
||||
}
|
||||
|
||||
private func send()
|
||||
{
|
||||
let text = draft.trimmingCharacters(in: .whitespacesAndNewlines)
|
||||
guard !text.isEmpty, !target.isEmpty else { return }
|
||||
engine.sendMessage(to: target, text: text)
|
||||
draft = ""
|
||||
}
|
||||
}
|
||||
@@ -0,0 +1,33 @@
|
||||
import Foundation
|
||||
|
||||
// 传输历史 / 消息记录的本地持久化(修「重启清空」)。落 Application Support 下的 JSON 文件——
|
||||
// 不进 Documents(那是「收到的文件」对用户可见的目录),也不进 UserDefaults(记录可能较多)。
|
||||
// 原生侧是这两类记录的真源:引擎只过桥推增量,原生加载 / 追加 / 删除 / 落盘(见 EngineController)。
|
||||
enum RecordsStore
|
||||
{
|
||||
private static func fileURL(_ name: String) -> URL?
|
||||
{
|
||||
guard let dir = FileManager.default.urls(for: .applicationSupportDirectory, in: .userDomainMask).first
|
||||
else { return nil }
|
||||
try? FileManager.default.createDirectory(at: dir, withIntermediateDirectories: true)
|
||||
return dir.appendingPathComponent("cdrop-\(name).json")
|
||||
}
|
||||
|
||||
static func save<T: Encodable>(_ value: T, _ name: String)
|
||||
{
|
||||
guard let url = fileURL(name), let data = try? JSONEncoder().encode(value) else { return }
|
||||
try? data.write(to: url, options: .atomic)
|
||||
}
|
||||
|
||||
static func load<T: Decodable>(_ type: T.Type, _ name: String) -> T?
|
||||
{
|
||||
guard let url = fileURL(name), let data = try? Data(contentsOf: url) else { return nil }
|
||||
return try? JSONDecoder().decode(type, from: data)
|
||||
}
|
||||
|
||||
static func clear(_ name: String)
|
||||
{
|
||||
guard let url = fileURL(name) else { return }
|
||||
try? FileManager.default.removeItem(at: url)
|
||||
}
|
||||
}
|
||||
@@ -301,6 +301,9 @@
|
||||
"ios.login.guide": "Scan to approve from another signed-in device",
|
||||
"ios.login.expired": "Code expired — please try again",
|
||||
"ios.login.failed": "Sign-in failed — please try again",
|
||||
"ios.login.broker": "Sign In",
|
||||
"ios.login.brokerStarting": "Opening sign-in…",
|
||||
"ios.login.scanAlt": "Sign in by scanning from another device",
|
||||
"ios.login.refresh": "Refresh QR Code",
|
||||
"ios.login.needFull": "This device needs full access — choose \"Trust this device\" when approving.",
|
||||
"ios.send.pickDevice": "Choose a device",
|
||||
@@ -343,7 +346,18 @@
|
||||
"ios.settings.user": "User",
|
||||
"ios.settings.logout": "Sign Out",
|
||||
"ios.settings.deviceName": "Device Name",
|
||||
"ios.settings.deviceNameNote": "Renaming takes effect on next sign-in",
|
||||
"ios.settings.deviceNameNote": "Renaming takes effect at once and syncs to all devices, without affecting sign-in.",
|
||||
"ios.settings.deviceName.success": "Device name updated",
|
||||
"ios.tab.messages": "Messages",
|
||||
"ios.send.fromFiles": "From Files",
|
||||
"ios.send.fromPhotos": "From Photos",
|
||||
"ios.messages.empty": "No messages yet",
|
||||
"ios.messages.noPeers": "No device to message",
|
||||
"ios.messages.placeholder": "Type a message…",
|
||||
"ios.records.clear": "Clear",
|
||||
"ios.records.clearConfirm": "Clear all records? This cannot be undone.",
|
||||
"ios.transfer.cancel": "Cancel transfer",
|
||||
"ios.transfer.forceRelay": "Relay now",
|
||||
"ios.settings.deviceCount": "Known Devices",
|
||||
"ios.settings.signaling": "Signaling",
|
||||
"ios.settings.presenceEvents": "Presence Events",
|
||||
|
||||
@@ -301,6 +301,9 @@
|
||||
"ios.login.guide": "用另一台已登录的设备扫码批准",
|
||||
"ios.login.expired": "二维码已失效,请重试",
|
||||
"ios.login.failed": "登录失败,请重试",
|
||||
"ios.login.broker": "登录",
|
||||
"ios.login.brokerStarting": "正在打开登录…",
|
||||
"ios.login.scanAlt": "用其他设备扫码登录",
|
||||
"ios.login.refresh": "刷新二维码",
|
||||
"ios.login.needFull": "此设备需要完整权限,批准时请选择“信任此设备”",
|
||||
"ios.send.pickDevice": "选择接收设备",
|
||||
@@ -343,7 +346,18 @@
|
||||
"ios.settings.user": "用户",
|
||||
"ios.settings.logout": "退出登录",
|
||||
"ios.settings.deviceName": "设备名称",
|
||||
"ios.settings.deviceNameNote": "改名将在下次登录后生效",
|
||||
"ios.settings.deviceNameNote": "改名即时生效并同步到所有设备,不影响登录。",
|
||||
"ios.settings.deviceName.success": "设备名已更新",
|
||||
"ios.tab.messages": "消息",
|
||||
"ios.send.fromFiles": "从文件",
|
||||
"ios.send.fromPhotos": "从图库",
|
||||
"ios.messages.empty": "暂无消息",
|
||||
"ios.messages.noPeers": "没有可发送消息的设备",
|
||||
"ios.messages.placeholder": "输入消息…",
|
||||
"ios.records.clear": "清空",
|
||||
"ios.records.clearConfirm": "确定清空全部记录?此操作不可撤销。",
|
||||
"ios.transfer.cancel": "取消传输",
|
||||
"ios.transfer.forceRelay": "立即切到中继",
|
||||
"ios.settings.deviceCount": "已知设备",
|
||||
"ios.settings.signaling": "信令连接",
|
||||
"ios.settings.presenceEvents": "在线事件",
|
||||
|
||||
@@ -301,6 +301,9 @@
|
||||
"ios.login.guide": "用另一台已登入的裝置掃碼核准",
|
||||
"ios.login.expired": "QR 碼已失效,請重試",
|
||||
"ios.login.failed": "登入失敗,請重試",
|
||||
"ios.login.broker": "登入",
|
||||
"ios.login.brokerStarting": "正在開啟登入…",
|
||||
"ios.login.scanAlt": "用其他裝置掃碼登入",
|
||||
"ios.login.refresh": "重新整理 QR 碼",
|
||||
"ios.login.needFull": "此裝置需要完整權限,批准時請選擇「信任此裝置」",
|
||||
"ios.send.pickDevice": "選擇接收裝置",
|
||||
@@ -343,7 +346,18 @@
|
||||
"ios.settings.user": "使用者",
|
||||
"ios.settings.logout": "登出",
|
||||
"ios.settings.deviceName": "裝置名稱",
|
||||
"ios.settings.deviceNameNote": "改名將在下次登入後生效",
|
||||
"ios.settings.deviceNameNote": "改名即時生效並同步到所有裝置,不影響登入。",
|
||||
"ios.settings.deviceName.success": "裝置名稱已更新",
|
||||
"ios.tab.messages": "訊息",
|
||||
"ios.send.fromFiles": "從檔案",
|
||||
"ios.send.fromPhotos": "從相簿",
|
||||
"ios.messages.empty": "尚無訊息",
|
||||
"ios.messages.noPeers": "沒有可傳送訊息的裝置",
|
||||
"ios.messages.placeholder": "輸入訊息…",
|
||||
"ios.records.clear": "清空",
|
||||
"ios.records.clearConfirm": "確定清空全部記錄?此操作無法復原。",
|
||||
"ios.transfer.cancel": "取消傳輸",
|
||||
"ios.transfer.forceRelay": "立即切到中繼",
|
||||
"ios.settings.deviceCount": "已知裝置",
|
||||
"ios.settings.signaling": "信令連線",
|
||||
"ios.settings.presenceEvents": "上線事件",
|
||||
|
||||
@@ -1,3 +1,4 @@
|
||||
import PhotosUI
|
||||
import SwiftUI
|
||||
import UIKit
|
||||
import UniformTypeIdentifiers
|
||||
@@ -9,6 +10,9 @@ import UniformTypeIdentifiers
|
||||
struct RootView: View
|
||||
{
|
||||
@Environment(EngineController.self) private var engine
|
||||
// auth 经环境注入(AppRoot 已 .environment(auth)),用于把会话源在 EngineWebView.makeUIView
|
||||
// 里同步接给引擎——早于 boot 注入,消除冷启重开的「missing injected session」竞态(#11)。
|
||||
@Environment(AuthManager.self) private var auth
|
||||
// 初始标签可经 CDROP_TAB 环境变量指定(本机截图测试用:直接进设置看引擎状态)。
|
||||
@State private var selection = ProcessInfo.processInfo.environment["CDROP_TAB"] ?? "transfer"
|
||||
|
||||
@@ -30,6 +34,13 @@ struct RootView: View
|
||||
DeviceListView()
|
||||
}
|
||||
}
|
||||
Tab(t("ios.tab.messages"), systemImage: "message", value: "messages")
|
||||
{
|
||||
NavigationStack
|
||||
{
|
||||
MessagesView()
|
||||
}
|
||||
}
|
||||
Tab(t("ios.tab.files"), systemImage: "folder", value: "files")
|
||||
{
|
||||
NavigationStack
|
||||
@@ -49,7 +60,7 @@ struct RootView: View
|
||||
.tint(.cdropAccent)
|
||||
.background
|
||||
{
|
||||
EngineWebView(controller: engine)
|
||||
EngineWebView(controller: engine, auth: auth)
|
||||
.frame(width: 0, height: 0)
|
||||
.opacity(0)
|
||||
.allowsHitTesting(false)
|
||||
@@ -78,9 +89,12 @@ struct TransferListView: View
|
||||
{
|
||||
@Environment(EngineController.self) private var engine
|
||||
@State private var showImporter = false
|
||||
@State private var showPhotoPicker = false
|
||||
@State private var photoItem: PhotosPickerItem?
|
||||
@State private var pickedURL: URL?
|
||||
@State private var showDevicePicker = false
|
||||
@State private var showNoDevices = false
|
||||
@State private var showClearConfirm = false
|
||||
|
||||
// 可发送目标:在线、且非本机(共用 EngineController.sendableDevices)。
|
||||
private var sendableDevices: [DeviceItem]
|
||||
@@ -115,6 +129,12 @@ struct TransferListView: View
|
||||
ForEach(engine.history)
|
||||
{ item in
|
||||
transferLink(item)
|
||||
.contextMenu
|
||||
{
|
||||
Button(role: .destructive)
|
||||
{ engine.deleteTransferRecord(item.sessionId) }
|
||||
label: { Label(t("transfer.action.delete"), systemImage: "trash") }
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
@@ -122,9 +142,33 @@ struct TransferListView: View
|
||||
}
|
||||
}
|
||||
.navigationTitle(t("ios.tab.transfer"))
|
||||
.toolbar
|
||||
{
|
||||
if !engine.history.isEmpty
|
||||
{
|
||||
ToolbarItem(placement: .topBarTrailing)
|
||||
{
|
||||
Button(role: .destructive) { showClearConfirm = true }
|
||||
label: { Label(t("ios.records.clear"), systemImage: "trash") }
|
||||
}
|
||||
}
|
||||
}
|
||||
.confirmationDialog(t("ios.records.clearConfirm"), isPresented: $showClearConfirm, titleVisibility: .visible)
|
||||
{
|
||||
Button(t("ios.records.clear"), role: .destructive) { engine.clearHistory() }
|
||||
Button(t("common.cancel"), role: .cancel) { }
|
||||
}
|
||||
.overlay(alignment: .bottomTrailing)
|
||||
{
|
||||
Button { showImporter = true }
|
||||
// 发送入口:文件(Files / 文档)或图库(Photos)。图库走 PhotosPicker,选中后取字节落
|
||||
// 临时文件再复用既有发送链路(#14)。
|
||||
Menu
|
||||
{
|
||||
Button { showImporter = true }
|
||||
label: { Label(t("ios.send.fromFiles"), systemImage: "folder") }
|
||||
Button { showPhotoPicker = true }
|
||||
label: { Label(t("ios.send.fromPhotos"), systemImage: "photo.on.rectangle") }
|
||||
}
|
||||
label:
|
||||
{
|
||||
Image(systemName: "paperplane.fill")
|
||||
@@ -143,6 +187,9 @@ struct TransferListView: View
|
||||
else { showDevicePicker = true }
|
||||
}
|
||||
}
|
||||
.photosPicker(isPresented: $showPhotoPicker, selection: $photoItem,
|
||||
matching: .any(of: [ .images, .videos ]))
|
||||
.onChange(of: photoItem) { loadPhoto() }
|
||||
.confirmationDialog(t("ios.send.pickDevice"), isPresented: $showDevicePicker, titleVisibility: .visible)
|
||||
{
|
||||
ForEach(sendableDevices)
|
||||
@@ -184,6 +231,32 @@ struct TransferListView: View
|
||||
engine.sendFile(to: device, fileURL: url)
|
||||
pickedURL = nil
|
||||
}
|
||||
|
||||
// 图库选中后:异步取字节 → 落临时文件 → 走与文件相同的「选设备发送」流程(#14)。
|
||||
private func loadPhoto()
|
||||
{
|
||||
guard let item = photoItem else { return }
|
||||
Task
|
||||
{
|
||||
guard let data = try? await item.loadTransferable(type: Data.self),
|
||||
let url = engine.stagePhotoData(data, suggestedName: suggestedPhotoName(item))
|
||||
else { return }
|
||||
await MainActor.run
|
||||
{
|
||||
pickedURL = url
|
||||
photoItem = nil
|
||||
if sendableDevices.isEmpty { showNoDevices = true }
|
||||
else { showDevicePicker = true }
|
||||
}
|
||||
}
|
||||
}
|
||||
|
||||
// 据所选项的内容类型推一个带正确扩展名的文件名(图片默认 jpg,视频默认 mov)。
|
||||
private func suggestedPhotoName(_ item: PhotosPickerItem) -> String
|
||||
{
|
||||
let ext = item.supportedContentTypes.first?.preferredFilenameExtension ?? "jpg"
|
||||
return "photo-\(UUID().uuidString.prefix(8)).\(ext)"
|
||||
}
|
||||
}
|
||||
|
||||
// 传输卡片:内容层,用语义材质背景而非玻璃(玻璃专属功能 / 导航层)。状态 / 阶段 / 速率
|
||||
@@ -262,6 +335,21 @@ struct TransferDetailView: View
|
||||
{
|
||||
List
|
||||
{
|
||||
// 进行中的传输:主动取消 / 立即切中继(O)。已是中继则不再显示「立即中继」。
|
||||
if isActive(item)
|
||||
{
|
||||
Section
|
||||
{
|
||||
Button(role: .destructive) { engine.cancelTransfer(item.sessionId) }
|
||||
label: { Label(t("ios.transfer.cancel"), systemImage: "xmark.circle") }
|
||||
if item.mode != "relay"
|
||||
{
|
||||
Button { engine.switchToRelay(item.sessionId) }
|
||||
label: { Label(t("ios.transfer.forceRelay"),
|
||||
systemImage: "antenna.radiowaves.left.and.right") }
|
||||
}
|
||||
}
|
||||
}
|
||||
Section
|
||||
{
|
||||
LabeledContent(t("ios.detail.direction"),
|
||||
@@ -343,7 +431,13 @@ struct DeviceListView: View
|
||||
engine.devices.sorted { a, b in isSelf(a) && !isSelf(b) }
|
||||
}
|
||||
|
||||
private func isSelf(_ dev: DeviceItem) -> Bool { dev.name == engine.deviceName }
|
||||
// 判本机按稳定 device_id(与设备名解耦——改名后仍判得准);selfDeviceID 缺失时回落按名。
|
||||
private func isSelf(_ dev: DeviceItem) -> Bool
|
||||
{
|
||||
let selfID = engine.selfDeviceID
|
||||
if !selfID.isEmpty, !dev.deviceID.isEmpty { return dev.deviceID == selfID }
|
||||
return dev.name == engine.deviceName
|
||||
}
|
||||
|
||||
var body: some View
|
||||
{
|
||||
@@ -385,7 +479,7 @@ struct DeviceListView: View
|
||||
{
|
||||
Button(t("ios.devices.remove"), role: .destructive)
|
||||
{
|
||||
if let target = revokeTarget { engine.revokeDevice(target.name) }
|
||||
if let target = revokeTarget { engine.revokeDevice(target.deviceID) }
|
||||
}
|
||||
Button(t("common.cancel"), role: .cancel) { }
|
||||
}
|
||||
@@ -438,9 +532,17 @@ struct SettingsView: View
|
||||
Section
|
||||
{
|
||||
LabeledContent(t("ios.settings.user"), value: user.name)
|
||||
// 即时改名(设备名与令牌解耦):提交即经引擎 PATCH /api/devices/{device_id} 改名,
|
||||
// 不换 token、不重连、不产生重复项,全端即时看到新名(见 EngineController.renameSelf)。
|
||||
TextField(t("ios.settings.deviceName"), text: $deviceNameDraft)
|
||||
.submitLabel(.done)
|
||||
.onChange(of: deviceNameDraft) { DeviceNameStore.value = deviceNameDraft }
|
||||
.onSubmit { commitRename() }
|
||||
if !engine.deviceActionStatus.isEmpty
|
||||
{
|
||||
Text(engine.deviceActionStatus)
|
||||
.font(.caption)
|
||||
.foregroundStyle(.secondary)
|
||||
}
|
||||
Button(role: .destructive) { logout() }
|
||||
label:
|
||||
{
|
||||
@@ -511,6 +613,15 @@ struct SettingsView: View
|
||||
return t("ios.engine.disconnected")
|
||||
}
|
||||
|
||||
// 即时改名:提交时把草稿交引擎改名(PATCH /api/devices/{device_id})。空 / 未变则忽略。
|
||||
// 成功后引擎经 renamed 事件落本地名 + Keychain 会话名 + 刷新 engine.deviceName。
|
||||
private func commitRename()
|
||||
{
|
||||
let trimmed = deviceNameDraft.trimmingCharacters(in: .whitespacesAndNewlines)
|
||||
guard !trimmed.isEmpty, trimmed != (auth.session?.deviceName ?? "") else { return }
|
||||
engine.renameSelf(to: trimmed)
|
||||
}
|
||||
|
||||
// 登出:先复位引擎(断 SSE + 丢 WebView),再清会话回登录页(清 Keychain 由 auth 负责)。
|
||||
private func logout()
|
||||
{
|
||||
|
||||
@@ -5,7 +5,7 @@
|
||||
<!-- 与主 app 共享的 App Group:控件读取 widget_session.json(主 app 代铸的控件会话)。 -->
|
||||
<key>com.apple.security.application-groups</key>
|
||||
<array>
|
||||
<string>group.net.commilitia.cdrop</string>
|
||||
<string>group.net.commilitia.Commilitia-Drop</string>
|
||||
</array>
|
||||
</dict>
|
||||
</plist>
|
||||
|
||||
+2
-14
@@ -18,9 +18,6 @@ targets:
|
||||
type: application
|
||||
platform: iOS
|
||||
deploymentTarget: "26.0"
|
||||
configFiles:
|
||||
Debug: Signing.xcconfig
|
||||
Release: Signing.xcconfig
|
||||
sources:
|
||||
- path: Sources
|
||||
- path: Shared
|
||||
@@ -63,6 +60,8 @@ targets:
|
||||
NSBonjourServices:
|
||||
- "_cdrop._tcp"
|
||||
NSCameraUsageDescription: "Commilitia Drop 使用相机扫描二维码登录新设备。"
|
||||
# 图库选择:从相册选取图片 / 视频发送(PhotosPicker,见 RootView #14)。
|
||||
NSPhotoLibraryUsageDescription: "Commilitia Drop 需要访问照片库,以便从相册选取图片或视频发送给其他设备。"
|
||||
settings:
|
||||
base:
|
||||
PRODUCT_BUNDLE_IDENTIFIER: net.commilitia.Commilitia-Drop
|
||||
@@ -71,18 +70,12 @@ targets:
|
||||
# APNs 推送的 aps-environment entitlement(见 CDrop.entitlements)。模拟器取令牌可用;
|
||||
# 真机签名须付费 ADP 开 Push 能力(账号门控)。
|
||||
CODE_SIGN_ENTITLEMENTS: CDrop.entitlements
|
||||
# 真机:用门户 profile 手动签名(仅 device SDK;模拟器走 base ad-hoc)。profile 名取自
|
||||
# gitignore 的 Local.xcconfig(见 Signing.xcconfig / REALDEVICE.md)。
|
||||
"PROVISIONING_PROFILE_SPECIFIER[sdk=iphoneos*]": "$(CDROP_PROFILE_APP)"
|
||||
# Share Extension:抓分享文件 → App Group 收件箱 → 深链主 app 选设备发送(只交接、不跑引擎,
|
||||
# 见 PLAN §I5)。只编 ShareViewController + 共享的 AppGroup,绝不拉主 app Sources(避超 120MB)。
|
||||
CDropShare:
|
||||
type: app-extension
|
||||
platform: iOS
|
||||
deploymentTarget: "26.0"
|
||||
configFiles:
|
||||
Debug: Signing.xcconfig
|
||||
Release: Signing.xcconfig
|
||||
sources:
|
||||
- path: Share
|
||||
- path: Shared
|
||||
@@ -103,16 +96,12 @@ targets:
|
||||
PRODUCT_BUNDLE_IDENTIFIER: net.commilitia.Commilitia-Drop.share
|
||||
TARGETED_DEVICE_FAMILY: "1,2"
|
||||
CODE_SIGN_ENTITLEMENTS: Share/CDropShare.entitlements
|
||||
"PROVISIONING_PROFILE_SPECIFIER[sdk=iphoneos*]": "$(CDROP_PROFILE_SHARE)"
|
||||
# 控制中心剪贴板两控件(WidgetKit ControlWidget,iOS 18+,PLAN §I4)。纯原生 REST + 控件专用
|
||||
# 设备会话(不跑引擎)。i18n JSON 一并打包使控件标签随设备语言(t() 经 no-subdir 回退读 bundle)。
|
||||
CDropWidgets:
|
||||
type: app-extension
|
||||
platform: iOS
|
||||
deploymentTarget: "26.0"
|
||||
configFiles:
|
||||
Debug: Signing.xcconfig
|
||||
Release: Signing.xcconfig
|
||||
sources:
|
||||
- path: Widgets
|
||||
- path: Shared
|
||||
@@ -128,7 +117,6 @@ targets:
|
||||
PRODUCT_BUNDLE_IDENTIFIER: net.commilitia.Commilitia-Drop.widgets
|
||||
TARGETED_DEVICE_FAMILY: "1,2"
|
||||
CODE_SIGN_ENTITLEMENTS: Widgets/CDropWidgets.entitlements
|
||||
"PROVISIONING_PROFILE_SPECIFIER[sdk=iphoneos*]": "$(CDROP_PROFILE_WIDGETS)"
|
||||
schemes:
|
||||
CDrop:
|
||||
build:
|
||||
|
||||
+1
-1
@@ -111,7 +111,7 @@ Share Extension 落法(据上):**抓文件 → 写 App Group 容器 →
|
||||
| **I6** APNs | 服务端通道(§3)+ 原生注册;不含剪贴板 | `.p8` + 真机硬等账号 |
|
||||
| **I7** 打磨与分发 | 后台窗口;图标 / 启动屏(复用品牌资产);旁加载分发 | 硬等账号 |
|
||||
|
||||
> **实现状态(2026-06-27)**:I1/I2/I3/I4/I5/I6 的**代码**全部落地——发送端流式(R-iOS-4,FileSource + 原生 Range,整文件不进 WebView 内存);后台续传(BGContinuedProcessingTask);APNs(后端 `internal/apns` ES256 + 原生注册经引擎桥);Share Extension(App Group 收件箱 + `cdrop://share` 深链);控制中心两控件(**专用 broker 设备会话**,纯原生 REST,不与引擎抢 refresh 轮换)。模拟器验 + ultracode 多 agent 审查修讫(0 HIGH,修 2 MED + 7 LOW)。**I0 账号 / 证书 + 真机签名 / 真发推送 / 旁加载分发**仍账号门控——手册 `ios/CDrop/REALDEVICE.md`(手动签名 + `just ios-device` 全 CLI 装机,门户手动建)。包名 `net.commilitia.Commilitia-Drop`。
|
||||
> **实现状态(2026-06-27)**:I1/I2/I3/I4/I5/I6 的**代码**全部落地——发送端流式(R-iOS-4,FileSource + 原生 Range,整文件不进 WebView 内存);后台续传(BGContinuedProcessingTask);APNs(后端 `internal/apns` ES256 + 原生注册经引擎桥);Share Extension(App Group 收件箱 + `cdrop://share` 深链);控制中心两控件(**专用 broker 设备会话**,纯原生 REST,不与引擎抢 refresh 轮换)。模拟器验 + ultracode 多 agent 审查修讫(0 HIGH,修 2 MED + 7 LOW)。**I0 账号 / 证书 + 真机签名 / 真发推送 / 旁加载分发**仍账号门控——手册 `ios/CDrop/REALDEVICE.md`(ASC API Key 自动 provisioning + `just ios-device` 全 CLI 装机,`-allowProvisioningUpdates` 自动登记设备 / 建 profile)。包名 `net.commilitia.Commilitia-Drop`,App Group `group.net.commilitia.Commilitia-Drop`。
|
||||
|
||||
---
|
||||
|
||||
|
||||
Reference in New Issue
Block a user