Xedge>> redhat-mobile-demo-application>> 返回
项目作者: evanshortiss

项目描述 :
Application that is designed to be easily modified to demo AeroGear's device security checks
高级语言: TypeScript
项目地址: git://github.com/evanshortiss/redhat-mobile-demo-application.git


Work in Progress

This repository is a work in progress.

Demo - Device Security in Minutes

This application can be used to demonstrate how easy it is to add self-defense
checks using AeroGear to an application.

Requirements

  1. Node.js v6.11+
  2. npm 5.6+
  3. Ionic CLI v3.20.0 (npm install -g ionic@3.20)
  4. Android/iOS SDK & Tools
  5. Minishift with Mobile Core Addon

Running the Application

Install dependencies first via npm i.

Browser

npm run ionic:serve

Android Emulator

ionic cordova emulate android

iOS Simulator

ionic cordova emulate ios

Steps to Enforce Security

  1. Provision the Metrics service on OpenShift into a new or existing project
  2. Create an Android/iOS Application in OpenShift and use com.redhat.acmebank
    as the package name.
  3. Bind the Application and Metrics service then copy the resulting
    configuration to the src folder here and name it mobile-services.json. It
    should look something like this:
  1. {
  2.   "version": 1,
  3.   "clusterName": "https://192.168.64.23:8443",
  4.   "namespace": "acmebank",
  5.   "clientId": "myapp-android",
  6.   "services": [
  7.     {
  8.       "id": "metrics",
  9.       "name": "metrics",
  10.       "type": "metrics",
  11.       "url": "https://aerogear-app-metrics-acmebank.192.168.64.23.nip.io/metrics",
  12.       "config": {}
  13.     }
  14.   ]
  15. }
  1. Add the following AeroGear modules/plugins to this project:
    1. ionic cordova plugin add @aerogear/cordova-plugin-aerogear-security --save
    2. ionic cordova plugin add @aerogear/cordova-plugin-aerogear-metrics --save
    3. npm install @aerogear/app --save
    4. npm install @aerogear/security --save
  2. Create a src/services/security.ts file and paste the following content:
  1. import { Injectable } from '@angular/core';
  2. import { SecurityService, SecurityCheckType, SecurityCheck } from '@aerogear/security';
  4. @Injectable()
  5. export class DeviceSecurity {
  6.   private securityService: SecurityService;
  7.   private isBrowser: boolean
  9.   constructor() {
  10.     this.isBrowser = document.URL.indexOf('http') === 0
  12.     if (!this.isBrowser) {
  13.       this.securityService = new SecurityService();
  15.       this.securityService.checkManyAndPublishMetric(
  16.         SecurityCheckType.notDebugMode,
  17.         SecurityCheckType.notRooted,
  18.         SecurityCheckType.notEmulated,
  19.         SecurityCheckType.hasDeviceLock
  20.       );
  21.     }
  22.   }
  24.   private check (check: SecurityCheck) {
  25.     if (this.isBrowser) {
  26.       // Just flag everything as a "pass" in the browser
  27.       return Promise.resolve(true)
  28.     }
  30.     return this.securityService.check(check)
  31.       .then(check => check.passed)
  32.   }
  34.   isRooted() {
  35.     return this.check(SecurityCheckType.notRooted)
  36.       // invert result since isRooted should be true if the check returns false
  37.       .then((pass) => !pass)
  38.   }
  40.   isDeviceLockEnabled() {
  41.     return this.check(SecurityCheckType.hasDeviceLock)
  42.   }
  43. }
  1. In app.component.ts add the following import and initialise the SDK
    before platform.ready():
  1. // Add this to the top of the file
  2. import { init } from '@aerogear/app';
  4. // Necessary to prevent compiler warnings
  5. declare var require: any
  7. // Initialise the mobile services SDK
  8. let appConfig = require('../mobile-services.json');
  9. init(appConfig);

  1. In login.ts add the following snippets:

    1. import { DeviceSecurity } from '../../services/security'
    2. private sec: DeviceSecurity to the constructor
    3. ionViewDidEnter() {} to the class

  2. Add the following code in the ionViewDidEnter() function you created:

  1. this.sec.isRooted()
  2.   .then((rooted) => {
  3.     if (rooted) {
  4.       let alert = this.alertCtrl.create({
  5.         title: 'Insecure Device',
  6.         subTitle: 'We detected that this device is rooted. Running as root increases the likelihood of your device being compromised by malicious software that is designed to steal passwords and financial information. Continued use of this application is done so at your own risk.',
  7.         buttons: ['OK']
  8.       });
  10.       alert.present();
  11.     }
  12.   })
  1. In login.ts update the onPersistChange() function like so:
  1. this.sec.isDeviceLockEnabled()
  2.   .then((lockEnabled) => {
  3.     if (!lockEnabled) {
  4.       let alert = this.alertCtrl.create({
  5.         title: 'Device Lock Required',
  6.         subTitle: 'The "Stay Logged In" feature requires a device lock to be enabled. Update your device security settings and try again.',
  7.         buttons: ['OK']
  8.       });
  10.       alert.present();
  12.       // Don't allow the checkbox to be checked
  13.       this.persistentLogin = false
  14.     }
  15.   })
  1. Finally update app.module.ts by adding:
    1. import { DeviceSecurity } from '../services/security'; at the top
    2. DeviceSecurity to the providers Array in the @NgModule block

Icon Credits

Icons made by Roundicons from
www.flaticon.com are licensed by
CC 3.0 BY

Icons made by Freepik from
www.flaticon.com are licensed by
CC 3.0 BY

Icons made by Pixel Buddha from
www.flaticon.com are licensed by CC 3.0 BY