Add support for shamir recovery invitation

[vxgmichel]

Part of #6090

Close #7359

Fix #8429

Tested with:

$ . ./cli/run_testenv.sh 
[...]
Alice & Bob devices (password: P@ssw0rd.):
- 624 // Alice
- 196 // Alice 2nd device
- 1f2 // Bob

$ echo P@ssw0rd. | target/debug/parsec-cli shared-recovery create --password-stdin -d 1f2
Shamir setup has been created

$ echo P@ssw0rd. | target/debug/parsec-cli invite shared-recovery --password-stdin -d 624 --email [email protected]
Invitation URL: parsec3://127.0.0.1:41997/Org?no_ssl=true&a=claim_shamir_recovery&p=xBCqEy9RIO8HPyycmlus9Qzg

$ echo P@ssw0rd. | target/debug/parsec-cli invite list --password-stdin -d 624
aa132f5120ef073f2c9c9a5bacf50ce0        idle    shamir recovery (Bob <[email protected]>)

$ echo P@ssw0rd. | target/debug/parsec-cli invite cancel --password-stdin -d 624 --token aa132f5120ef073f2c9c9a5bacf50ce0
Invitation deleted

$ echo P@ssw0rd. | target/debug/parsec-cli invite list --password-stdin -d 624 
aa132f5120ef073f2c9c9a5bacf50ce0        cancelled       shamir recovery (Bob <[email protected]>)

[vxgmichel]

Missing tests for:

• invite_list with shamir recovery
• invite_info for shamir recovery
• certificates_get with shamir certificates

[AureliaDolo]

Suggested change

[vxgmichel]

I grouped the attribute on purpose, to easily visualize those that are type dependent

[AureliaDolo]

Is there a specific reason to not define a SetupNotFound error ?

[vxgmichel]

AFAIC we decided to not share the brief and removal certificates with users that are not part of the corresponding shamir. That means that users don't have a way to know whether another user has a shamir recovery setup when they are not part of it. For this reason, it would be weird to have the server give this information through an error status.

[AureliaDolo]

There is one mail sent per greeter ? Does the order of greeter matter ?

[vxgmichel]

In this context, the greeter is the user that created the invitation link. That user is part of the recipients so it's a good idea to include their name in the mail, although the claimer will have to contact some of the other recipients too.

[FirelightFlagboy]

If the email was not sent, should the CLI fail with an error ?

It's expected that the message being print to stdout and not stderr ? (println vs eprintln)

[vxgmichel]

I understand the email sent status as extra information, so maybe it could be a warning if the mail wasn't sent properly?

Also we should probably start a discussion about making sure that all commands use the same approach to error handling.

[FirelightFlagboy]

Missing multiple news fragments for the CLI change

[vxgmichel]

@FirelightFlagboy

Missing multiple news fragments for the CLI change

You mean for #8429 or for other shamir related commands?

I don't think it's worth adding newsfragments for the different shamir commands, a single newsfragment commenting the general feature at the end is enough IMO.

[FirelightFlagboy]

You would expect at least 2 newsfragment: one for the updated example in the CLI help message, and the other that could group the change related to the added/updated shamir command

[vxgmichel]

one for the updated example in the CLI help message,

Does that really deserve a newsfragment though? I'd say no, but I can add it if necessary.

and the other that could group the change related to the added/updated shamir command

This will come later once the feature is fully implemented.

[FirelightFlagboy]

What do you think of providing the email as a argument over an option ?

[vxgmichel]

Does our clap_parser_with_shared_opts_builder allow to do that?

[FirelightFlagboy]

nitpick: Could we use constant here ?

[vxgmichel]

Feel free to provide a suggested change