// // AppManager.swift // AltStore // // Created by Riley Testut on 5/29/19. // Copyright © 2019 Riley Testut. All rights reserved. // import Foundation import UIKit import AltSign import AltKit import Roxas extension AppManager { enum AppError: LocalizedError { case unknown case missingUDID case noServersFound case missingPrivateKey case missingCertificate case download(URLError) case authentication(Error) case fetchingSigningResources(Error) case prepare(Error) case install(Error) var errorDescription: String? { switch self { case .unknown: return "An unknown error occured." case .missingUDID: return "The UDID for this device is unknown." case .noServersFound: return "An active AltServer could not be found." case .missingPrivateKey: return "A valid private key must be provided." case .missingCertificate: return "A valid certificate must be provided." case .download(let error): return error.localizedDescription case .authentication(let error): return error.localizedDescription case .fetchingSigningResources(let error): return error.localizedDescription case .prepare(let error): return error.localizedDescription case .install(let error): return error.localizedDescription } } } } class AppManager { static let shared = AppManager() private let session = URLSession(configuration: .default) private init() { } } extension AppManager { func refresh() { let context = DatabaseManager.shared.persistentContainer.newBackgroundSavingViewContext() let fetchRequest = InstalledApp.fetchRequest() as NSFetchRequest fetchRequest.relationshipKeyPathsForPrefetching = [#keyPath(InstalledApp.app)] do { let installedApps = try context.fetch(fetchRequest) for app in installedApps { if UIApplication.shared.canOpenURL(app.openAppURL) { // App is still installed, good! } else { context.delete(app) } } try context.save() } catch { print("Error while fetching installed apps") } } } extension AppManager { func install(_ app: App, presentingViewController: UIViewController, completionHandler: @escaping (Result) -> Void) { let ipaURL = InstalledApp.ipaURL(for: app) let backgroundTaskID = RSTBeginBackgroundTask("com.rileytestut.AltStore.InstallApp") func finish(_ result: Result) { completionHandler(result) RSTEndBackgroundTask(backgroundTaskID) } // Download app self.downloadApp(from: app.downloadURL) { (result) in let result = result.flatMap { (fileURL) -> Result in // Copy downloaded app to proper location let result = Result { try FileManager.default.copyItem(at: fileURL, to: ipaURL, shouldReplace: true) } return result.mapError { _ in URLError(.cannotWriteToFile) } } switch result { case .failure(let error): finish(.failure(.download(error))) case .success: // Authenticate self.authenticate(presentingViewController: presentingViewController) { (result) in switch result { case .failure(let error): finish(.failure(.authentication(error))) case .success(let team): // Fetch signing resources self.fetchSigningResources(for: app, team: team, presentingViewController: presentingViewController) { (result) in switch result { case .failure(let error): finish(.failure(.fetchingSigningResources(error))) case .success(let certificate, let profile): // Prepare app DatabaseManager.shared.persistentContainer.performBackgroundTask { (context) in let app = context.object(with: app.objectID) as! App let installedApp = InstalledApp(app: app, bundleIdentifier: profile.appID.bundleIdentifier, signedDate: Date(), expirationDate: Date().addingTimeInterval(60 * 60 * 24 * 7), context: context) self.prepare(installedApp, team: team, certificate: certificate, provisioningProfile: profile) { (result) in switch result { case .failure(let error): finish(.failure(.prepare(error))) case .success(let resignedURL): // Send app to server context.perform { self.sendAppToServer(fileURL: resignedURL, identifier: installedApp.bundleIdentifier) { (result) in switch result { case .failure(let error): finish(.failure(.install(error))) case .success: context.perform { finish(.success(installedApp)) } } } } } } } } } } } } } } } private extension AppManager { func downloadApp(from url: URL, completionHandler: @escaping (Result) -> Void) { let downloadTask = self.session.downloadTask(with: url) { (fileURL, response, error) in do { let (fileURL, _) = try Result((fileURL, response), error).get() completionHandler(.success(fileURL)) } catch let error as URLError { completionHandler(.failure(error)) } catch { completionHandler(.failure(URLError(.unknown))) } } downloadTask.resume() } func authenticate(presentingViewController: UIViewController, completionHandler: @escaping (Result) -> Void) { DispatchQueue.main.async { let alertController = UIAlertController(title: "Enter Apple ID + Password", message: "", preferredStyle: .alert) alertController.addTextField { (textField) in textField.placeholder = "Apple ID" textField.textContentType = .emailAddress } alertController.addTextField { (textField) in textField.placeholder = "Password" textField.textContentType = .password } alertController.addAction(.cancel) alertController.addAction(UIAlertAction(title: "Sign In", style: .default) { [unowned alertController] (action) in guard let emailAddress = alertController.textFields![0].text, let password = alertController.textFields![1].text, !emailAddress.isEmpty, !password.isEmpty else { return completionHandler(.failure(ALTAppleAPIError(.incorrectCredentials))) } ALTAppleAPI.shared.authenticate(appleID: emailAddress, password: password) { (account, error) in do { let account = try Result(account, error).get() self.fetchTeam(for: account, presentingViewController: presentingViewController, completionHandler: completionHandler) } catch { completionHandler(.failure(error)) } } }) presentingViewController.present(alertController, animated: true, completion: nil) } } func fetchSigningResources(for app: App, team: ALTTeam, presentingViewController: UIViewController, completionHandler: @escaping (Result<(ALTCertificate, ALTProvisioningProfile), Error>) -> Void) { guard let udid = Bundle.main.object(forInfoDictionaryKey: Bundle.Info.deviceID) as? String else { return completionHandler(.failure(AppError.missingUDID)) } let device = ALTDevice(name: UIDevice.current.name, identifier: udid) self.register(device, team: team) { (result) in do { _ = try result.get() self.fetchCertificate(for: team, presentingViewController: presentingViewController) { (result) in do { let certificate = try result.get() app.managedObjectContext?.perform { self.register(app, with: team) { (result) in do { let appID = try result.get() self.fetchProvisioningProfile(for: appID, team: team) { (result) in do { let provisioningProfile = try result.get() completionHandler(.success((certificate, provisioningProfile))) } catch { completionHandler(.failure(error)) } } } catch { completionHandler(.failure(error)) } } } } catch { completionHandler(.failure(error)) } } } catch { completionHandler(.failure(error)) } } } func prepare(_ installedApp: InstalledApp, team altTeam: ALTTeam, certificate: ALTCertificate, provisioningProfile: ALTProvisioningProfile, completionHandler: @escaping (Result) -> Void) { do { let refreshedAppDirectory = installedApp.directoryURL.appendingPathComponent("Refreshed", isDirectory: true) if FileManager.default.fileExists(atPath: refreshedAppDirectory.path) { try FileManager.default.removeItem(at: refreshedAppDirectory) } try FileManager.default.createDirectory(at: refreshedAppDirectory, withIntermediateDirectories: true, attributes: nil) let appBundleURL = try FileManager.default.unzipAppBundle(at: installedApp.ipaURL, toDirectory: refreshedAppDirectory) guard let bundle = Bundle(url: appBundleURL) else { throw ALTError(.missingAppBundle) } guard var infoDictionary = NSDictionary(contentsOf: bundle.infoPlistURL) as? [String: Any] else { throw ALTError(.missingInfoPlist) } var allURLSchemes = infoDictionary[Bundle.Info.urlTypes] as? [[String: Any]] ?? [] let altstoreURLScheme = ["CFBundleTypeRole": "Editor", "CFBundleURLName": installedApp.bundleIdentifier, "CFBundleURLSchemes": [installedApp.openAppURL.scheme!]] as [String : Any] allURLSchemes.append(altstoreURLScheme) infoDictionary[Bundle.Info.urlTypes] = allURLSchemes try (infoDictionary as NSDictionary).write(to: bundle.infoPlistURL) let signer = ALTSigner(team: altTeam, certificate: certificate) signer.signApp(at: appBundleURL, provisioningProfile: provisioningProfile) { (success, error) in do { try Result(success, error).get() let resignedURL = try FileManager.default.zipAppBundle(at: appBundleURL) completionHandler(.success(resignedURL)) } catch { completionHandler(.failure(error)) } } } catch { completionHandler(.failure(error)) } } func sendAppToServer(fileURL: URL, identifier: String, completionHandler: @escaping (Result) -> Void) { guard let server = ServerManager.shared.discoveredServers.first else { return completionHandler(.failure(AppError.noServersFound)) } server.installApp(at: fileURL, identifier: identifier) { (result) in let result = result.mapError { $0 as Error } completionHandler(result) } } } private extension AppManager { func fetchTeam(for account: ALTAccount, presentingViewController: UIViewController, completionHandler: @escaping (Result) -> Void) { ALTAppleAPI.shared.fetchTeams(for: account) { (teams, error) in do { let teams = try Result(teams, error).get() guard teams.count > 0 else { throw ALTAppleAPIError(.noTeams) } if let team = teams.first, teams.count == 1 { completionHandler(.success(team)) } else { DispatchQueue.main.async { let alertController = UIAlertController(title: "Select Team", message: "", preferredStyle: .actionSheet) alertController.addAction(.cancel) for team in teams { alertController.addAction(UIAlertAction(title: team.name, style: .default) { (action) in completionHandler(.success(team)) }) } presentingViewController.present(alertController, animated: true, completion: nil) } } } catch { completionHandler(.failure(error)) } } } func fetchCertificate(for team: ALTTeam, presentingViewController: UIViewController, completionHandler: @escaping (Result) -> Void) { ALTAppleAPI.shared.fetchCertificates(for: team) { (certificates, error) in do { let certificates = try Result(certificates, error).get() if certificates.count < 1 { let machineName = "AltStore - " + UIDevice.current.name ALTAppleAPI.shared.addCertificate(machineName: machineName, to: team) { (certificate, error) in do { let certificate = try Result(certificate, error).get() guard let privateKey = certificate.privateKey else { throw AppError.missingPrivateKey } ALTAppleAPI.shared.fetchCertificates(for: team) { (certificates, error) in do { let certificates = try Result(certificates, error).get() guard let certificate = certificates.first(where: { $0.identifier == certificate.identifier }) else { throw AppError.missingCertificate } certificate.privateKey = privateKey completionHandler(.success(certificate)) } catch { completionHandler(.failure(error)) } } } catch { completionHandler(.failure(error)) } } } else { DispatchQueue.main.async { let alertController = UIAlertController(title: "Too Many Certificates", message: "Please select the certificate you would like to revoke.", preferredStyle: .actionSheet) alertController.addAction(.cancel) for certificate in certificates { alertController.addAction(UIAlertAction(title: certificate.name, style: .default) { (action) in ALTAppleAPI.shared.revoke(certificate, for: team) { (success, error) in do { try Result(success, error).get() self.fetchCertificate(for: team, presentingViewController: presentingViewController, completionHandler: completionHandler) } catch { completionHandler(.failure(error)) } } }) } presentingViewController.present(alertController, animated: true, completion: nil) } } } catch { completionHandler(.failure(error)) } } } func register(_ device: ALTDevice, team: ALTTeam, completionHandler: @escaping (Result) -> Void) { ALTAppleAPI.shared.fetchDevices(for: team) { (devices, error) in do { let devices = try Result(devices, error).get() if let device = devices.first(where: { $0.identifier == device.identifier }) { completionHandler(.success(device)) } else { ALTAppleAPI.shared.registerDevice(name: device.name, identifier: device.identifier, team: team) { (device, error) in completionHandler(Result(device, error)) } } } catch { completionHandler(.failure(error)) } } } func register(_ app: App, with team: ALTTeam, completionHandler: @escaping (Result) -> Void) { let appName = app.name let bundleID = "com.\(team.identifier).\(app.identifier)" ALTAppleAPI.shared.fetchAppIDs(for: team) { (appIDs, error) in do { let appIDs = try Result(appIDs, error).get() if let appID = appIDs.first(where: { $0.bundleIdentifier == bundleID }) { completionHandler(.success(appID)) } else { ALTAppleAPI.shared.addAppID(withName: appName, bundleIdentifier: bundleID, team: team) { (appID, error) in completionHandler(Result(appID, error)) } } } catch { completionHandler(.failure(error)) } } } func fetchProvisioningProfile(for appID: ALTAppID, team: ALTTeam, completionHandler: @escaping (Result) -> Void) { ALTAppleAPI.shared.fetchProvisioningProfile(for: appID, team: team) { (profile, error) in completionHandler(Result(profile, error)) } } }