Add KeyshareVerifyPin method to client

83b932bb · Sietse Ringers · dcd97c24 · 83b932bb · 83b932bb
Commit 83b932bb authored Jan 16, 2019 by Sietse Ringers
--- a/irmaclient/client.go
+++ b/irmaclient/client.go
@@ -719,6 +719,15 @@ func (client *Client) keyshareEnrollWorker(managerID irma.SchemeManagerIdentifie
 	return nil
 }

+func (client *Client) KeyshareVerifyPin(pin string, schemeid irma.SchemeManagerIdentifier) (bool, int, int, error) {
+	scheme := client.Configuration.SchemeManagers[schemeid]
+	if scheme == nil || !scheme.Distributed() {
+		return false, 0, 0, errors.Errorf("Can't verify pin of scheme %s", schemeid.String())
+	}
+	kss := client.keyshareServers[schemeid]
+	return verifyPinWorker(pin, kss, irma.NewHTTPTransport(kss.URL))
+}
+
 func (client *Client) KeyshareChangePin(manager irma.SchemeManagerIdentifier, oldPin string, newPin string) {
 	go func() {
 		err := client.keyshareChangePinWorker(manager, oldPin, newPin)

--- a/irmaclient/keyshare.go
+++ b/irmaclient/keyshare.go
@@ -270,6 +270,33 @@ func (ks *keyshareSession) VerifyPin(attempts int) {
 	}))
 }

+func verifyPinWorker(pin string, kss *keyshareServer, transport *irma.HTTPTransport) (
+	success bool, tries int, blocked int, err error) {
+	pinmsg := keysharePinMessage{Username: kss.Username, Pin: kss.HashedPin(pin)}
+	pinresult := &keysharePinStatus{}
+	err = transport.Post("users/verify/pin", pinresult, pinmsg)
+	if err != nil {
+		return
+	}
+
+	switch pinresult.Status {
+	case kssPinSuccess:
+		success = true
+		kss.token = pinresult.Message
+		transport.SetHeader(kssAuthHeader, kss.token)
+		return
+	case kssPinFailure:
+		tries, err = strconv.Atoi(pinresult.Message)
+		return
+	case kssPinError:
+		blocked, err = strconv.Atoi(pinresult.Message)
+		return
+	default:
+		err = errors.New("Keyshare server returned unrecognized PIN status")
+		return
+	}
+}
+
 // Verify the specified pin at each of the keyshare servers involved in the specified session.
 // - If the pin did not verify at one of the keyshare servers but there are attempts remaining,
 // the amount of remaining attempts is returned as the second return value.
@@ -287,30 +314,11 @@ func (ks *keyshareSession) verifyPinAttempt(pin string) (

 		kss := ks.keyshareServers[manager]
 		transport := ks.transports[manager]
-		pinmsg := keysharePinMessage{Username: kss.Username, Pin: kss.HashedPin(pin)}
-		pinresult := &keysharePinStatus{}
-		err = transport.Post("users/verify/pin", pinresult, pinmsg)
-		if err != nil {
-			return
-		}
-
-		switch pinresult.Status {
-		case kssPinSuccess:
-			kss.token = pinresult.Message
-			transport.SetHeader(kssAuthHeader, kss.token)
-		case kssPinFailure:
-			tries, err = strconv.Atoi(pinresult.Message)
-			return
-		case kssPinError:
-			blocked, err = strconv.Atoi(pinresult.Message)
-			return
-		default:
-			err = errors.New("Keyshare server returned unrecognized PIN status")
+		success, tries, blocked, err = verifyPinWorker(pin, kss, transport)
+		if !success {
 			return
 		}
 	}
-
-	success = true
 	return
 }