[auth] Improve recovery input validation (#2735)

## Description ## Tests
ente-io · Aug 17, 2024 · 78a727c · 78a727c
2 parents 191e324 + 3676151
commit 78a727c
Show file tree

Hide file tree

Showing 2 changed files with 14 additions and 3 deletions.
diff --git a/auth/lib/core/configuration.dart b/auth/lib/core/configuration.dart
@@ -285,9 +285,20 @@ class Configuration {
   Future<void> recover(String recoveryKey) async {
     // check if user has entered mnemonic code
     if (recoveryKey.contains(' ')) {
-      if (recoveryKey.split(' ').length != mnemonicKeyWordCount) {
+      final split = recoveryKey.split(' ');
+      if (split.length != mnemonicKeyWordCount) {
+        String wordThatIsFollowedByEmptySpaceInSplit = '';
+        for (int i = 0; i < split.length; i++) {
+          String word = split[i];
+          if (word.isEmpty) {
+            wordThatIsFollowedByEmptySpaceInSplit =
+                '\n\nExtra space after word at position $i';
+            break;
+          }
+        }
         throw AssertionError(
-          'recovery code should have $mnemonicKeyWordCount words',
+          '\nRecovery code should have $mnemonicKeyWordCount words, '
+          'found ${split.length} words instead.$wordThatIsFollowedByEmptySpaceInSplit',
         );
       }
       recoveryKey = bip39.mnemonicToEntropy(recoveryKey);

diff --git a/auth/pubspec.yaml b/auth/pubspec.yaml
@@ -1,6 +1,6 @@
 name: ente_auth
 description: ente two-factor authenticator
-version: 3.1.1+321
+version: 3.1.2+322
 publish_to: none
 
 environment: