Android alignment

[pauljohanneskraft]

Android alignment

♻️ Current situation & Problem

@eldcn brought up a couple of improvement ideas for SpeziStorage. Since we aim to keep the Android and iOS interfaces similar, this pull request brings those changes to the iOS frameworks. This is mostly a conversation starter to discuss those changes and ultimately build the best version of Spezi for both platforms.

@Supereg Please let me know what you think. More context regarding these changes is also contained in StanfordSpezi/SpeziKt#123 and StanfordSpezi/SpeziKt#108.

⚙️ Release Notes

• Separates SecureStorage into CredentialStorage and KeyStorage.

📚 Documentation

Please ensure that you properly document any additions in conformance to Spezi Documentation Guide.
You can use this section to describe your solution, but we encourage contributors to document your reasoning and changes using in-line documentation.

✅ Testing

Please ensure that the PR meets the testing requirements set by CodeCov and that new functionality is appropriately tested.
This section describes important information about the tests and why some elements might not be testable.

📝 Code of Conduct & Contributing Guidelines

By submitting creating this pull request, you agree to follow our Code of Conduct and Contributing Guidelines:

• I agree to follow the Code of Conduct and Contributing Guidelines.

[codecov]

Codecov Report

Attention: Patch coverage is 79.80132% with 61 lines in your changes missing coverage. Please review.

Project coverage is 82.36%. Comparing base (6096237) to head (3626a28).

Files with missing lines	Patch %	Lines
...iSecureStorage/Credentials/CredentialStorage.swift	75.23%	28 Missing ⚠️
Sources/SpeziSecureStorage/Keys/KeyStorage.swift	81.19%	19 Missing ⚠️
...eziSecureStorage/Credentials/CredentialTypes.swift	0.00%	13 Missing ⚠️
...ources/SpeziSecureStorage/SecureStorageError.swift	92.31%	1 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main      #25      +/-   ##
==========================================
- Coverage   90.28%   82.36%   -7.92%     
==========================================
  Files           6       10       +4     
  Lines         473      544      +71     
==========================================
+ Hits          427      448      +21     
- Misses         46       96      +50     

Files with missing lines	Coverage Δ
Sources/SpeziLocalStorage/LocalStorage.swift	85.11% <100.00%> (+2.05%)	⬆️
...ources/SpeziLocalStorage/LocalStorageSetting.swift	100.00% <100.00%> (+2.71%)	⬆️
...es/SpeziSecureStorage/Credentials/Credential.swift	100.00% <100.00%> (ø)
Sources/SpeziSecureStorage/SecureStorage.swift	94.21% <100.00%> (+0.24%)	⬆️
...es/SpeziSecureStorage/SecureStorageItemTypes.swift	100.00% <100.00%> (ø)
...ources/SpeziSecureStorage/SecureStorageError.swift	92.31% <92.31%> (ø)
...eziSecureStorage/Credentials/CredentialTypes.swift	0.00% <0.00%> (ø)
Sources/SpeziSecureStorage/Keys/KeyStorage.swift	81.19% <81.19%> (ø)
...iSecureStorage/Credentials/CredentialStorage.swift	75.23% <75.23%> (ø)

---

Continue to review full report in Codecov by Sentry.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 6096237...3626a28. Read the comment docs.

[eldcn]

Thanks for adaptions, I would propose to wait for @PSchmiedmayer and @Supereg input as well, but I will leave some additional thoughts on the state and some improvements from my pov:

SecureStorageScope – belongs to the LocalStorage target. In the SecureStorage target, we are only using the accessGroup property of it which can safely be required as a nullable string in the store method. A hint in the code that these components do not belong together: assert(!(.secureEnclave ~= storageScope), "Storing of keys in the secure enclave is not supported by Apple.").

Newly added KeyStorage also belongs to the LocalStorage target.
Dependencies should then be reversed: SecureStorage should depend on LocalStorage – however only as long as we continue to support the deprecations.

After that, we can completely cut the dependency between the two targets - We achieve a lower coupling this way between the targets

[eldcn]

Should we consider adding server parameter as well? It is not a breaking change if you initialize it with null

[pauljohanneskraft]

This would be the only change that would kind of force us to make a major-version update... Is it really worth it?

Alternatively, we could have those deprecation functions with the server-property being explicit and then we override in the deprecated function just to keep the minor version update. But what behavior should we choose there? Keeping the old struct with the slightly different name but without the server-property, always overriding the struct-property with the function parameter or doing something like server ?? credential.server or the other way around?

[pauljohanneskraft]

nevermind, changed it and deprecated SecureStorage as a whole. We now don't even have SecureStorage on Android anymore, since it isn't needed and just builds a Façade that isn't really necessary.

[PSchmiedmayer]

I think that would make sense to ensure that we don't have to take a breaking change for now.

[pauljohanneskraft]

But soft-deprecation is fine, right? Like I still kept the implementation of SecureStorage on iOS, but marked the whole class as deprecated. So, one can still use it as-is, but internally we are pretty much just calling the new functions instead.

Credential now has a server property, but if you use the deprecated functions, we internally only use the function parameter and ignore what was set in the Credential struct.

[PSchmiedmayer]

Exactly; that would be ideal. Once we tag a new major version we can remove all these deprecated function implementations.

Sounds like a good plan!

[eldcn]

Shouldn't be needed, it's quite an expensive operation and we should at least warn the clients to use the result 😅

[PSchmiedmayer]

I think it would be fine to allow this result be be discardable; given the fact that the key generation already takes a decent amount of time this might not make a huge difference. I don't think we require the user to store or process the private key as they could always get it again if needed.

[pauljohanneskraft]

It may not be obvious, but both on Android and on iOS the key is actually already stored in the create function. So, even if you throw away the result, it wouldn't really matter much... I'm ultimately indifferent about this being marked discardableResult or not though, so I would rather keep it as it was.

[PSchmiedmayer]

Sounds good; we can keep it as it was for now, makes this backward compatible as well 👍

[PSchmiedmayer]

Thank you for all the improvements; great to see this aligned with Android @pauljohanneskraft!

I only had minor comments, they were mainly targeted at enduring backward compatibility before e update to a few major version.

Thank you for the input @eldcn!

Happy to see this merged once the comments and discussion elements are addressed.

[PSchmiedmayer]

We will also add a deprecated overload here; please ensure this for all methods that have changed.

[pauljohanneskraft]

I now made sure to not change the interface of SecureStorage at all and just deprecated it as a whole.

[PSchmiedmayer]

Sounds good 👍

[PSchmiedmayer]

I think it would be fine to allow this result be be discardable; given the fact that the key generation already takes a decent amount of time this might not make a huge difference. I don't think we require the user to store or process the private key as they could always get it again if needed.