NoPass™ SDK for Android

This SDK applies to Android version 1.0.0.

The main components are the following: NoPassRegistrationManager, NoPassUserManager, NoPassUtils.

Initial setup

  1. Connect the NoPass™ maven repository to our SDK: 
    maven {  
      url "https://repository.identite.us/repository/maven-public/"
}
  2. Copy the file into the build.gradle (Project: My_Application) folder.
  3. Add the dependencies to your module level gradle build file: 
    allprojects {
    repositories {
        google ()
        jcenter ()
        maven {
             url "https://repository.identite.us/repository/maven-public/"
         }
        }
     }
implementation "com.android.support:multidex:1.0.2"
implementation "org.jetbrains.kotlinx:kotlinx-coroutines-core:1.3.0"
implementation 'androidx.appcompat:appcompat:1.1.0'
implementation 'androidx.constraintlayout:constraintlayout:1.1.3'
implementation "us.identite.sdk:core:1.0.1@aar"{
   exclude group: 'org.jetbrains.kotlin', module: 'kotlin-reflect'
}
implementation 'io.reactivex.rxjava2:rxjava:2.2.0'
implementation "io.reactivex.rxjava2:rxkotlin:2.2.0"
implementation "io.reactivex.rxjava2:rxandroid:2.0.0"
implementation "com.squareup.retrofit2:retrofit:2.3.0"
implementation "com.squareup.okhttp3:logging-interceptor:3.9.0"
implementation "com.squareup.retrofit2:converter-moshi:2.3.0"
implementation "com.squareup.retrofit2:adapter-rxjava2:2.3.0"
implementation("com.squareup.moshi:moshi-kotlin:1.5.0")
implementation "com.serjltt.moshi:moshi-lazy-adapters:2.1"
implementation "com.android.support:multidex:1.0.2"
implementation 'com.google.code.gson:gson:2.8.5'
implementation "androidx.room:room-runtime:2.1.0-alpha06"
implementation "androidx.room:room-rxjava2:2.1.0-alpha06"
implementation "com.scottyab:rootbeer-lib:0.0.7"
implementation "org.jetbrains.kotlinx:kotlinx-coroutines-core:1.3.0"
implementation 'com.google.http-client:google-http-client-gson:1.26.0'
implementation 'com.google.api-client:google-api-client-android:1.30.8'
implementation 'com.google.apis:google-api-services-drive:v3-rev194-1.25.0'
implementation 'com.google.firebase:firebase-auth:19.2.0'
kapt "androidx.room:room-compiler:2.1.0-alpha06"
implementation 'com.google.firebase:firebase-messaging:20.2.3'
implementation 'com.google.firebase:firebase-analytics:17.4.4'
  4. To make the core functionality work, hook the NoPass™ service to the firebase callbacks and provide the application instance.
     

     NoPass™ uses the Firebase cloud messaging system in its registration and authorization flows. So, in order to complete them successfully, you will have to set up the so-called interceptors inside your Firebase onMessageReceived() callback.

    Simply provide the data for further processing. Any non-NoPass data will be ignored:

    override fun onMessageReceived(remoteMessage: RemoteMessage) {
   interceptFirebaseMessage(remoteMessage.data)
}
    Make sure the Firebase token is provided correctly and will be available during registration and authorization flows: 
    interceptFirebaseToken(token)
 
  5. And, finally, give us your application instance (inside your Application class onCreate() method: 
    provideApplication(this)

Registration

To create a secure user token, serving to authenticate a user, you will need to use the registration manager. Its only responsibility is to register a user account, containing all the neccessary information. Once you have properly configured its instance singleton, you will be able to register new users. 

 

To set up the registration manager, do the following:

  1. Instantiate the manager: 
    val manager = NoPassRegistrationManager.configure()
       .setOnConfirmationCodeRequiredListener {code ->
           //show it to a user
       }
       .setOnRegistrationResultListener { success, error/*null if no error occurred*/ ->
          //react to the registration result.
        }
       .build()
  2. You will need the parameters string from a QR-code, deep link or whatever way of delivering this data to the app you choose. Once you get it, you can trigger the registration process: 
    manager.register(paramsString)
     NoPass™ does not deliver any of the user data to outer networks since it is connected to your organization's on-premises back-end system. 

Authentication

Once you have registered the user, your NoPass™ back-end server gets able to send authorization requests. To receive them, perform the following setup.

The NoPassUserManager class serves to receive authorization requests and send authorization responses.

To be able to receive and process requests do the following:

val userManager = NoPassUserManager.configure
.setOnAuthRequestReceivedListener { noPassUser, keyphraseData, initialProgress ->
        //noPassUser contains the information about the user
        //keyphraseData contains picture and digits for showing to the user
        //initialProgress approximately shows how much time has passed since the request //was sent
        //TODO: parse the user data to notify the user
}
.setOnOTPChangedListener { keyphraseData ->
    //TODO: use the following data to show to the user inside the authentication message
    //the timeToLive property stands for the time in seconds the OTP and image values are 
    //valid. After that time the callback will be invoked once again
}
.setOnTickListener{ tick ->
    //current timer tick in seconds
}
.setOnAuthenticationResultListener{success, error ->
    //TODO: process the server's response on auth request
}
.setOnSessionTimeoutListener{user ->
    //the session is timed out. You can no longer authenticate during this session
}
    .build()
 

When the setup is ready, you can authorize your user during the authentication session by calling the following function:

userManager.authenticate()

or decline the authentication if needed:

userManager.decline(reason)
Other operations

There are other operations that can be performed with the user manager.

  1. Get all the users list: 
    userManager.getAllUsers { users, error ->
}
  2. Get the authentication history: 
    userManager.getAuthenticationHistory { records, error ->
}

  3. You can also delete the user from both back-end and the mobile device:

    userManager.deleteUser(params.id) {user, success, error ->
        //in case it is triggered from the app the result may be
        //processed in this callback
}
.setOnUserDeleteResultListener { noPassUser, success, throwable ->
    //react to the result. May be useful for “silent” deletions
}

  4. User updating. This can occur only when initiated from the back-end.

    .setOnUserUpdateResultListener { noPassUser, success, throwable ->
    //react to the result
}

  5. Backup. It is also possible to create a backup data string encrypted by a 6-digits pin-code. This data may be used to restore accounts later. To initiate backup, do the following:

    userManager.backupAccounts(pin)
.setOnUsersBackupResultListener { backup,
                        usersList,
                        errors,
                        generalError ->
    //backup string is to be saved somewhere to preserve 
}

  6. Restore. If there are properly backed up accounts, they can be restored by a backup string and the pin code. To begin restoration, run the command:

    userManager.restoreAccounts(backupData, pin)
.setOnUsersRestoreResultListener { allSuccess,
                        usersList,
                        errors,
                        generalError ->
}
     Restore/backup implies a series of interactions for each user account and does not break the whole procedure on particular user errors. Hence, the errors parameter is represented by a map of users and errors associated with them to provide more detailed information about what could go wrong. The generalError is returned when an error that is not related to a certain user occurs. 

 

next topic: NoPass™ SDK for React

previous topic: NoPass™ SDK for iOS

 

Suggest edits