Follow OrgRules to forbid backups keys

[ekievsky]

This PR:
Skipping backups searching on Setup and Settings if OrgRules has canBackupKeys false;
Handling unknown ClientConfigurationFlag;
Added tests for unknown ClientConfigurationFlag;
Waiting for OrgRules to be fetched on Startup;

close #277

---

Tests:

• Tests added or updated

---

To be filled by reviewers

I have reviewed that this PR... (tick whichever items you personally focused on during this review):

• addresses the issue it closes (if any)
• code is readable and understandable
• is accompanied with tests, or tests are not needed
• is free of vulnerabilities
• is documented clearly and usefully, or doesn't need documentation

[ekievsky]

@tomholub The build fails on CI and if I open SemaphoreCI it shows me empty screen with Secret flowcrypt-ios-ci-secrets not found message, is it internal Semaphore issue?

[Kharchevskyi]

same for https://flowcrypt.semaphoreci.com/workflows/183fcbb7-7dec-4c55-aa82-680e9f0beb39

[Kharchevskyi]

@tomholub we do not run ui tests on CI. Maybe we can remove this step from CI flow?

[ekievsky]

Hi @tomholub , which task should I take next?

[tomholub]

issue 359 please - thanks. later i’ll assign more

…

On Tuesday, July 6, 2021, Evgenii Kievsky ***@***.***> wrote: Hi @tomholub <https://github.com/tomholub> , which task should I take next? — You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub <#376 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/ABQDZEJBKWLQCIPI3VEV75TTWMIJBANCNFSM47YIDXJQ> .

-- -- Tom James Holub <http://holub.me/>

[tomholub]

Thank you for the PR - see my comments.

Some of the naming choices were not ideal already in the code before your PR, but got highlighted now - so we'll do a bit of refactoring per my comments.

[ekievsky]

@tomholub there could be error with JSON parsing and wrong user domain in EnterpriseServerApi should we show error on startup with error description or just create OrgRules with empty ClientConfig?

[tomholub]

@tomholub there could be error with JSON parsing and wrong user domain in EnterpriseServerApi should we show error on startup with error description or just create OrgRules with empty ClientConfig?

Thank you for asking. Absolutely have to show error to the user, never default to empty ClientConfig to resolve errors.

Additionally:

• If this error happened when we already had OrgRules saved before (we are refreshing them), then leave already saved OrgRules as they are
• if this error happens during setup flow - before any OrgRules were saved before - we cannot proceed setup at all.

Only default to empty ClientConfig on gmail.com domain and similar where we know there are no OrgRules to fetch.

In general, I want errors to be handled "harshly" - either crash the app if it's never expected (like a value that should never be nil but somehow is), or show the error to the user if it's some errors that could conceivably happen (like a network error, or badly formatted external json like here).

We do a lot of "soft" error handling in the app with something ?? "" and similar and I dislike it a lot, because errors don't get properly discovered where they happen, and instead they either blow up somewhere else (best case) or go completely unnoticed (worst case), so I'd like to move away from doing that.

[tomholub]

@Kharchevskyi does the order of items matter here? If there are some foreign keys then we probably need to delete the user last?

[Kharchevskyi]

I think in this case - yes.
ClientConfigurationObject has userObject as a reference.
To be sure please check if this cause a crash on log out when there are 2 accounts logged in.

[tomholub]

Changes in this file are very good, thanks

[tomholub]

Does assertionFailure also work for production builds?