mCodex
diff --git a/‎CODE_OF_CONDUCT.md‎
Lines changed: 133 additions & 0 deletions b/‎CODE_OF_CONDUCT.md‎
Lines changed: 133 additions & 0 deletions
diff --git a/‎android/src/main/java/com/sensitiveinfo/HybridSensitiveInfo.kt‎
Lines changed: 46 additions & 10 deletions b/‎android/src/main/java/com/sensitiveinfo/HybridSensitiveInfo.kt‎
Lines changed: 46 additions & 10 deletions
diff --git a/‎android/src/main/java/com/sensitiveinfo/internal/auth/AndroidAuthenticationManagerImpl.kt‎
Lines changed: 96 additions & 0 deletions b/‎android/src/main/java/com/sensitiveinfo/internal/auth/AndroidAuthenticationManagerImpl.kt‎
Lines changed: 96 additions & 0 deletions
@@ -0,0 +1,133 @@
+
+# Contributor Covenant Code of Conduct
+
+## Our Pledge
+
+We as members, contributors, and leaders pledge to make participation in our
+community a harassment-free experience for everyone, regardless of age, body
+size, visible or invisible disability, ethnicity, sex characteristics, gender
+identity and expression, level of experience, education, socio-economic status,
+nationality, personal appearance, race, caste, color, religion, or sexual
+identity and orientation.
+
+We pledge to act and interact in ways that contribute to an open, welcoming,
+diverse, inclusive, and healthy community.
+
+## Our Standards
+
+Examples of behavior that contributes to a positive environment for our
+community include:
+
+* Demonstrating empathy and kindness toward other people
+* Being respectful of differing opinions, viewpoints, and experiences
+* Giving and gracefully accepting constructive feedback
+* Accepting responsibility and apologizing to those affected by our mistakes,
+  and learning from the experience
+* Focusing on what is best not just for us as individuals, but for the overall
+  community
+
+Examples of unacceptable behavior include:
+
+* The use of sexualized language or imagery, and sexual attention or advances of
+  any kind
+* Trolling, insulting or derogatory comments, and personal or political attacks
+* Public or private harassment
+* Publishing others' private information, such as a physical or email address,
+  without their explicit permission
+* Other conduct which could reasonably be considered inappropriate in a
+  professional setting
+
+## Enforcement Responsibilities
+
+Community leaders are responsible for clarifying and enforcing our standards of
+acceptable behavior and will take appropriate and fair corrective action in
+response to any behavior that they deem inappropriate, threatening, offensive,
+or harmful.
+
+Community leaders have the right and responsibility to remove, edit, or reject
+comments, commits, code, wiki edits, issues, and other contributions that are
+not aligned to this Code of Conduct, and will communicate reasons for moderation
+decisions when appropriate.
+
+## Scope
+
+This Code of Conduct applies within all community spaces, and also applies when
+an individual is officially representing the community in public spaces.
+Examples of representing our community include using an official e-mail address,
+posting via an official social media account, or acting as an appointed
+representative at an online or offline event.
+
+## Enforcement
+
+Instances of abusive, harassing, or otherwise unacceptable behavior may be
+reported to the community leaders responsible for enforcement at
+[INSERT CONTACT METHOD].
+All complaints will be reviewed and investigated promptly and fairly.
+
+All community leaders are obligated to respect the privacy and security of the
+reporter of any incident.
+
+## Enforcement Guidelines
+
+Community leaders will follow these Community Impact Guidelines in determining
+the consequences for any action they deem in violation of this Code of Conduct:
+
+### 1. Correction
+
+**Community Impact**: Use of inappropriate language or other behavior deemed
+unprofessional or unwelcome in the community.
+
+**Consequence**: A private, written warning from community leaders, providing
+clarity around the nature of the violation and an explanation of why the
+behavior was inappropriate. A public apology may be requested.
+
+### 2. Warning
+
+**Community Impact**: A violation through a single incident or series of
+actions.
+
+**Consequence**: A warning with consequences for continued behavior. No
+interaction with the people involved, including unsolicited interaction with
+those enforcing the Code of Conduct, for a specified period of time. This
+includes avoiding interactions in community spaces as well as external channels
+like social media. Violating these terms may lead to a temporary or permanent
+ban.
+
+### 3. Temporary Ban
+
+**Community Impact**: A serious violation of community standards, including
+sustained inappropriate behavior.
+
+**Consequence**: A temporary ban from any sort of interaction or public
+communication with the community for a specified period of time. No public or
+private interaction with the people involved, including unsolicited interaction
+with those enforcing the Code of Conduct, is allowed during this period.
+Violating these terms may lead to a permanent ban.
+
+### 4. Permanent Ban
+
+**Community Impact**: Demonstrating a pattern of violation of community
+standards, including sustained inappropriate behavior, harassment of an
+individual, or aggression toward or disparagement of classes of individuals.
+
+**Consequence**: A permanent ban from any sort of public interaction within the
+community.
+
+## Attribution
+
+This Code of Conduct is adapted from the [Contributor Covenant][homepage],
+version 2.1, available at
+[https://www.contributor-covenant.org/version/2/1/code_of_conduct.html][v2.1].
+
+Community Impact Guidelines were inspired by
+[Mozilla's code of conduct enforcement ladder][Mozilla CoC].
+
+For answers to common questions about this code of conduct, see the FAQ at
+[https://www.contributor-covenant.org/faq][FAQ]. Translations are available at
+[https://www.contributor-covenant.org/translations][translations].
+
+[homepage]: https://www.contributor-covenant.org
+[v2.1]: https://www.contributor-covenant.org/version/2/1/code_of_conduct.html
+[Mozilla CoC]: https://github.com/mozilla/diversity
+[FAQ]: https://www.contributor-covenant.org/faq
+[translations]: https://www.contributor-covenant.org/translations
@@ -1,12 +1,20 @@
 package com.sensitiveinfo
 
 import android.content.Context
+import android.os.Handler
+import android.os.Looper
 import com.margelo.nitro.core.Promise
 import com.margelo.nitro.sensitiveinfo.*
+import com.sensitiveinfo.internal.auth.AndroidAuthenticationManager
+import com.sensitiveinfo.internal.auth.AuthenticationManager
 import com.sensitiveinfo.internal.auth.BiometricAuthenticator
+import com.sensitiveinfo.internal.crypto.AccessControlManager
 import com.sensitiveinfo.internal.crypto.AccessControlResolver
+import com.sensitiveinfo.internal.crypto.AndroidAccessControlManager
 import com.sensitiveinfo.internal.crypto.CryptoManager
 import com.sensitiveinfo.internal.crypto.SecurityAvailabilityResolver
+import com.sensitiveinfo.internal.metadata.AndroidMetadataManagerImpl
+import com.sensitiveinfo.internal.metadata.MetadataManager
 import com.sensitiveinfo.internal.response.ResponseBuilder
 import com.sensitiveinfo.internal.response.StandardResponseBuilder
 import com.sensitiveinfo.internal.storage.PersistedEntry
@@ -41,10 +49,14 @@ import kotlin.jvm.Volatile
  * @since 6.0.0
  */
 final class HybridSensitiveInfo : HybridSensitiveInfoSpec() {
+  
   private data class Dependencies(
     val context: Context,
     val storage: SecureStorage,
     val cryptoManager: CryptoManager,
+    val metadataManager: MetadataManager,
+    val authenticationManager: AuthenticationManager,
+    val accessControlManager: AccessControlManager,
     val accessControlResolver: AccessControlResolver,
     val securityAvailabilityResolver: SecurityAvailabilityResolver,
     val serviceNameResolver: ServiceNameResolver,
@@ -58,9 +70,11 @@ final class HybridSensitiveInfo : HybridSensitiveInfoSpec() {
   private val initializationLock = Any()
   private val coroutineScope = CoroutineScope(Dispatchers.Default + SupervisorJob())
   private var rotationEventCallback: ((RotationEvent) -> Unit)? = null
-  private val mainHandler = android.os.Handler(android.os.Looper.getMainLooper())
+  private val mainHandler = Handler(Looper.getMainLooper())
   private var rotationCheckRunnable: Runnable? = null
 
+  // MARK: - Initialization
+
   private fun initialize(ctx: Context): Dependencies {
     dependencies?.let { return it }
 
@@ -72,10 +86,20 @@ final class HybridSensitiveInfo : HybridSensitiveInfoSpec() {
         val authenticator = BiometricAuthenticator()
         val cryptoManager = CryptoManager(authenticator)
 
+        // Initialize specialized managers
+        val metadataManager: MetadataManager = AndroidMetadataManagerImpl()
+        val authenticationManager: AuthenticationManager = AndroidAuthenticationManager(authenticator)
+        val accessControlManager: AccessControlManager = AndroidAccessControlManager(
+          securityAvailabilityResolver
+        )
+
         Dependencies(
           context = ctx,
           storage = SecureStorage(ctx),
           cryptoManager = cryptoManager,
+          metadataManager = metadataManager,
+          authenticationManager = authenticationManager,
+          accessControlManager = accessControlManager,
           accessControlResolver = accessControlResolver,
           securityAvailabilityResolver = securityAvailabilityResolver,
           serviceNameResolver = serviceNameResolver,
@@ -655,15 +679,21 @@ final class HybridSensitiveInfo : HybridSensitiveInfoSpec() {
       var reEncryptedCount = 0
       val errors = mutableListOf<ReEncryptError>()
 
-      // Step 4: Re-encrypt items that use old keys
+      // Step 4: Re-encrypt items that use old keys or have empty metadata alias
       for ((key, entry) in entries) {
         try {
-          if (entry.alias != currentKeyVersion && entry.ciphertext != null && entry.iv != null) {
+          // Re-encrypt if: (1) using old key, (2) metadata alias is empty, or (3) has ciphertext and iv
+          val shouldReEncrypt = (entry.metadata.alias != currentKeyVersion || entry.metadata.alias.isEmpty()) && 
+                                entry.ciphertext != null && entry.iv != null
+          
+          if (shouldReEncrypt) {
             // Get access control from persisted
             val accessControl = accessControlFromPersisted(entry.metadata.accessControl) ?: AccessControl.NONE
             val securityLevel = securityLevelFromPersisted(entry.metadata.securityLevel) ?: SecurityLevel.SOFTWARE
 
-            // Decrypt with old key
+            // Decrypt with old key (use metadata.alias or entry.alias as fallback)
+            val oldKeyAlias = entry.metadata.alias.takeIf { it.isNotEmpty() } ?: entry.alias
+            
             val resolution = deps.cryptoManager.buildResolutionForPersisted(
               accessControl = accessControl,
               securityLevel = securityLevel,
@@ -674,7 +704,7 @@ final class HybridSensitiveInfo : HybridSensitiveInfoSpec() {
             )
 
             val plaintext = deps.cryptoManager.decrypt(
-              entry.alias,
+              oldKeyAlias,
               entry.ciphertext,
               entry.iv,
               resolution,
@@ -698,7 +728,7 @@ final class HybridSensitiveInfo : HybridSensitiveInfoSpec() {
               null
             )
 
-            // Update storage
+            // Update storage with new key alias
             val updatedEntry = entry.copy(
               ciphertext = encryption.ciphertext,
               iv = encryption.iv,
@@ -797,12 +827,18 @@ final class HybridSensitiveInfo : HybridSensitiveInfoSpec() {
 
     for ((key, entry) in entries) {
       try {
-        if (entry.metadata.alias != newKeyVersion && entry.ciphertext != null && entry.iv != null) {
+        // Re-encrypt if: (1) using old key, (2) metadata alias is empty, or (3) has ciphertext and iv
+        val shouldReEncrypt = (entry.metadata.alias != newKeyVersion || entry.metadata.alias.isEmpty()) && 
+                              entry.ciphertext != null && entry.iv != null
+        
+        if (shouldReEncrypt) {
           // Get access control from persisted
           val accessControl = accessControlFromPersisted(entry.metadata.accessControl) ?: AccessControl.NONE
           val securityLevel = securityLevelFromPersisted(entry.metadata.securityLevel) ?: SecurityLevel.SOFTWARE
 
-          // Decrypt with old key
+          // Decrypt with old key (use metadata.alias or entry.alias as fallback)
+          val oldKeyAlias = entry.metadata.alias.takeIf { it.isNotEmpty() } ?: entry.alias
+          
           val resolution = deps.cryptoManager.buildResolutionForPersisted(
             accessControl = accessControl,
             securityLevel = securityLevel,
@@ -813,7 +849,7 @@ final class HybridSensitiveInfo : HybridSensitiveInfoSpec() {
           )
 
           val plaintext = deps.cryptoManager.decrypt(
-            entry.metadata.alias,
+            oldKeyAlias,
             entry.ciphertext,
             entry.iv,
             resolution,
@@ -837,7 +873,7 @@ final class HybridSensitiveInfo : HybridSensitiveInfoSpec() {
             null
           )
 
-          // Update storage
+          // Update storage with new key alias
           val updatedEntry = entry.copy(
             ciphertext = encryption.ciphertext,
             iv = encryption.iv,
 
@@ -0,0 +1,96 @@
+package com.sensitiveinfo.internal.auth
+
+import android.content.Context
+import android.os.Build
+import androidx.biometric.BiometricManager
+import androidx.biometric.BiometricPrompt
+import androidx.fragment.app.FragmentActivity
+import com.margelo.nitro.sensitiveinfo.AuthenticationPrompt
+import com.sensitiveinfo.internal.util.ReactContextHolder
+import kotlinx.coroutines.suspendCancellableCoroutine
+import kotlin.coroutines.resume
+import kotlin.coroutines.resumeWithException
+
+/**
+ * Concrete implementation of AuthenticationManager for Android.
+ *
+ * Handles biometric and device credential authentication:
+ * - Biometric prompt presentation
+ * - Device credential fallback
+ * - Error mapping and handling
+ * - Custom prompt customization
+ *
+ * @since 6.0.0
+ */
+class AndroidAuthenticationManager(
+  private val biometricAuthenticator: BiometricAuthenticator = BiometricAuthenticator()
+) : AuthenticationManager {
+  
+  private val context: Context?
+    get() = ReactContextHolder.getContext()
+
+  override suspend fun isBiometricAvailable(): Boolean {
+    val ctx = context ?: return false
+    val manager = BiometricManager.from(ctx)
+    return manager.canAuthenticate(BiometricManager.Authenticators.BIOMETRIC_STRONG) == BiometricManager.BIOMETRIC_SUCCESS
+  }
+
+  override suspend fun isDeviceCredentialAvailable(): Boolean {
+    val ctx = context ?: return false
+    val manager = BiometricManager.from(ctx)
+    return manager.canAuthenticate(BiometricManager.Authenticators.DEVICE_CREDENTIAL) == BiometricManager.BIOMETRIC_SUCCESS
+  }
+
+  override suspend fun evaluateBiometric(prompt: AuthenticationPrompt?): Boolean {
+    return suspendCancellableCoroutine { continuation ->
+      val ctx = context
+      if (ctx !is FragmentActivity) {
+        continuation.resumeWithException(
+          IllegalStateException("Context must be FragmentActivity for biometric authentication")
+        )
+        return@suspendCancellableCoroutine
+      }
+
+      val title = prompt?.title ?: "Authenticate"
+      val subtitle = prompt?.subtitle ?: "Use biometric to continue"
+      val negativeText = prompt?.cancel ?: "Cancel"
+
+      biometricAuthenticator.authenticate(
+        fragmentActivity = ctx,
+        title = title,
+        subtitle = subtitle,
+        negativeButtonText = negativeText,
+        onSuccess = { continuation.resume(true) },
+        onError = { error ->
+          if (isAuthenticationCanceled(error)) {
+            continuation.resumeWithException(
+              Exception("[E_AUTH_CANCELED] Authentication prompt canceled by the user.")
+            )
+          } else {
+            continuation.resumeWithException(error)
+          }
+        }
+      )
+    }
+  }
+
+  override suspend fun evaluateDeviceCredential(prompt: AuthenticationPrompt?): Boolean {
+    // Device credential is handled through BiometricPrompt with DEVICE_CREDENTIAL authenticator
+    return evaluateBiometric(prompt)
+  }
+
+  override fun isAuthenticationCanceled(exception: Exception): Boolean {
+    val message = exception.message ?: ""
+    return message.contains("canceled", ignoreCase = true) ||
+           message.contains("user_cancel", ignoreCase = true) ||
+           message.contains("negative_button", ignoreCase = true)
+  }
+
+  override fun makeAuthenticationError(exception: Exception): String {
+    return if (isAuthenticationCanceled(exception)) {
+      "[E_AUTH_CANCELED] Authentication prompt canceled by the user."
+    } else {
+      "Authentication failed: ${exception.message}"
+    }
+  }
+}