fix (security/pairing): scope pairing stores by account

2026-02-15 19:09:04 -08:00 · 2026-02-15 19:09:04 -08:00 · ee10feb80e
parent 61c9935264
commit ee10feb80e
2 changed files with 101 additions and 7 deletions
--- a/src/pairing/pairing-store.test.ts
+++ b/src/pairing/pairing-store.test.ts
@ -5,7 +5,13 @@ import path from "node:path";
 import { afterAll, beforeAll, describe, expect, it, vi } from "vitest";
 import { resolveOAuthDir } from "../config/paths.js";
 import { captureEnv } from "../test-utils/env.js";
-import { listChannelPairingRequests, upsertChannelPairingRequest } from "./pairing-store.js";
+import {
+  addChannelAllowFromStoreEntry,
+  approveChannelPairingCode,
+  listChannelPairingRequests,
+  readChannelAllowFromStore,
+  upsertChannelPairingRequest,
+} from "./pairing-store.js";

 let fixtureRoot = "";
 let caseId = 0;
@ -141,4 +147,41 @@ describe("pairing store", () => {
      expect(listIds).not.toContain("+15550000004");
    });
  });
+
+  it("stores allowFrom entries per account when accountId is provided", async () => {
+    await withTempStateDir(async () => {
+      await addChannelAllowFromStoreEntry({
+        channel: "telegram",
+        accountId: "yy",
+        entry: "12345",
+      });
+
+      const accountScoped = await readChannelAllowFromStore("telegram", process.env, "yy");
+      const channelScoped = await readChannelAllowFromStore("telegram");
+      expect(accountScoped).toContain("12345");
+      expect(channelScoped).not.toContain("12345");
+    });
+  });
+
+  it("approves pairing codes into account-scoped allowFrom via pairing metadata", async () => {
+    await withTempStateDir(async () => {
+      const created = await upsertChannelPairingRequest({
+        channel: "telegram",
+        accountId: "yy",
+        id: "12345",
+      });
+      expect(created.created).toBe(true);
+
+      const approved = await approveChannelPairingCode({
+        channel: "telegram",
+        code: created.code,
+      });
+      expect(approved?.id).toBe("12345");
+
+      const accountScoped = await readChannelAllowFromStore("telegram", process.env, "yy");
+      const channelScoped = await readChannelAllowFromStore("telegram");
+      expect(accountScoped).toContain("12345");
+      expect(channelScoped).not.toContain("12345");
+    });
+  });
 });
--- a/src/pairing/pairing-store.ts
+++ b/src/pairing/pairing-store.ts
@ -66,11 +66,32 @@ function resolvePairingPath(channel: PairingChannel, env: NodeJS.ProcessEnv = pr
  return path.join(resolveCredentialsDir(env), `${safeChannelKey(channel)}-pairing.json`);
 }

+function safeAccountKey(accountId: string): string {
+  const raw = String(accountId).trim().toLowerCase();
+  if (!raw) {
+    throw new Error("invalid pairing account id");
+  }
+  const safe = raw.replace(/[\\/:*?"<>|]/g, "_").replace(/\.\./g, "_");
+  if (!safe || safe === "_") {
+    throw new Error("invalid pairing account id");
+  }
+  return safe;
+}
+
 function resolveAllowFromPath(
  channel: PairingChannel,
  env: NodeJS.ProcessEnv = process.env,
+  accountId?: string,
 ): string {
-  return path.join(resolveCredentialsDir(env), `${safeChannelKey(channel)}-allowFrom.json`);
+  const base = safeChannelKey(channel);
+  const normalizedAccountId = typeof accountId === "string" ? accountId.trim() : "";
+  if (!normalizedAccountId) {
+    return path.join(resolveCredentialsDir(env), `${base}-allowFrom.json`);
+  }
+  return path.join(
+    resolveCredentialsDir(env),
+    `${base}-${safeAccountKey(normalizedAccountId)}-allowFrom.json`,
+  );
 }

 async function readJsonFile<T>(
@ -237,11 +258,12 @@ async function writeAllowFromState(filePath: string, allowFrom: string[]): Promi
 async function updateAllowFromStoreEntry(params: {
  channel: PairingChannel;
  entry: string | number;
+  accountId?: string;
  env?: NodeJS.ProcessEnv;
  apply: (current: string[], normalized: string) => string[] | null;
 }): Promise<{ changed: boolean; allowFrom: string[] }> {
  const env = params.env ?? process.env;
-  const filePath = resolveAllowFromPath(params.channel, env);
+  const filePath = resolveAllowFromPath(params.channel, env, params.accountId);
  return await withFileLock(
    filePath,
    { version: 1, allowFrom: [] } satisfies AllowFromStore,
@ -267,8 +289,9 @@ async function updateAllowFromStoreEntry(params: {
 export async function readChannelAllowFromStore(
  channel: PairingChannel,
  env: NodeJS.ProcessEnv = process.env,
+  accountId?: string,
 ): Promise<string[]> {
-  const filePath = resolveAllowFromPath(channel, env);
+  const filePath = resolveAllowFromPath(channel, env, accountId);
  const { value } = await readJsonFile<AllowFromStore>(filePath, {
    version: 1,
    allowFrom: [],
@ -279,11 +302,13 @@ export async function readChannelAllowFromStore(
 export async function addChannelAllowFromStoreEntry(params: {
  channel: PairingChannel;
  entry: string | number;
+  accountId?: string;
  env?: NodeJS.ProcessEnv;
 }): Promise<{ changed: boolean; allowFrom: string[] }> {
  return await updateAllowFromStoreEntry({
    channel: params.channel,
    entry: params.entry,
+    accountId: params.accountId,
    env: params.env,
    apply: (current, normalized) => {
      if (current.includes(normalized)) {
@ -297,11 +322,13 @@ export async function addChannelAllowFromStoreEntry(params: {
 export async function removeChannelAllowFromStoreEntry(params: {
  channel: PairingChannel;
  entry: string | number;
+  accountId?: string;
  env?: NodeJS.ProcessEnv;
 }): Promise<{ changed: boolean; allowFrom: string[] }> {
  return await updateAllowFromStoreEntry({
    channel: params.channel,
    entry: params.entry,
+    accountId: params.accountId,
    env: params.env,
    apply: (current, normalized) => {
      const next = current.filter((entry) => entry !== normalized);
@ -316,6 +343,7 @@ export async function removeChannelAllowFromStoreEntry(params: {
 export async function listChannelPairingRequests(
  channel: PairingChannel,
  env: NodeJS.ProcessEnv = process.env,
+  accountId?: string,
 ): Promise<PairingRequest[]> {
  const filePath = resolvePairingPath(channel, env);
  return await withFileLock(
@ -342,7 +370,13 @@ export async function listChannelPairingRequests(
          requests: pruned,
        } satisfies PairingStore);
      }
-      return pruned
+      const normalizedAccountId = accountId?.trim().toLowerCase() || "";
+      const filtered = normalizedAccountId
+        ? pruned.filter(
+            (entry) => String(entry.meta?.accountId ?? "").trim().toLowerCase() === normalizedAccountId,
+          )
+        : pruned;
+      return filtered
        .filter(
          (r) =>
            r &&
@ -359,6 +393,7 @@ export async function listChannelPairingRequests(
 export async function upsertChannelPairingRequest(params: {
  channel: PairingChannel;
  id: string | number;
+  accountId?: string;
  meta?: Record<string, string | undefined | null>;
  env?: NodeJS.ProcessEnv;
  /** Extension channels can pass their adapter directly to bypass registry lookup. */
@ -377,7 +412,8 @@ export async function upsertChannelPairingRequest(params: {
      const now = new Date().toISOString();
      const nowMs = Date.now();
      const id = normalizeId(params.id);
-      const meta =
+      const normalizedAccountId = params.accountId?.trim();
+      const baseMeta =
        params.meta && typeof params.meta === "object"
          ? Object.fromEntries(
              Object.entries(params.meta)
@ -385,6 +421,9 @@ export async function upsertChannelPairingRequest(params: {
                .filter(([_, v]) => Boolean(v)),
            )
          : undefined;
+      const meta = normalizedAccountId
+        ? { ...baseMeta, accountId: normalizedAccountId }
+        : baseMeta;

      let reqs = Array.isArray(value.requests) ? value.requests : [];
      const { requests: prunedExpired, removed: expiredRemoved } = pruneExpiredRequests(
@ -456,6 +495,7 @@ export async function upsertChannelPairingRequest(params: {
 export async function approveChannelPairingCode(params: {
  channel: PairingChannel;
  code: string;
+  accountId?: string;
  env?: NodeJS.ProcessEnv;
 }): Promise<{ id: string; entry?: PairingRequest } | null> {
  const env = params.env ?? process.env;
@ -476,7 +516,16 @@ export async function approveChannelPairingCode(params: {
      const reqs = Array.isArray(value.requests) ? value.requests : [];
      const nowMs = Date.now();
      const { requests: pruned, removed } = pruneExpiredRequests(reqs, nowMs);
-      const idx = pruned.findIndex((r) => String(r.code ?? "").toUpperCase() === code);
+      const normalizedAccountId = params.accountId?.trim().toLowerCase() || "";
+      const idx = pruned.findIndex((r) => {
+        if (String(r.code ?? "").toUpperCase() !== code) {
+          return false;
+        }
+        if (!normalizedAccountId) {
+          return true;
+        }
+        return String(r.meta?.accountId ?? "").trim().toLowerCase() === normalizedAccountId;
+      });
      if (idx < 0) {
        if (removed) {
          await writeJsonFile(filePath, {
@ -495,9 +544,11 @@ export async function approveChannelPairingCode(params: {
        version: 1,
        requests: pruned,
      } satisfies PairingStore);
+      const entryAccountId = String(entry.meta?.accountId ?? "").trim() || undefined;
      await addChannelAllowFromStoreEntry({
        channel: params.channel,
        entry: entry.id,
+        accountId: params.accountId?.trim() || entryAccountId,
        env,
      });
      return { id: entry.id, entry };