Merge pull request #3033 from Aerilym/ses-1114-recovery-phrase-spam-exploit

Fix: enforce password check before modal view for recovery phrase

ts/components/dialog/SessionSeedModal.tsx

@@ -188,7 +188,6 @@ interface ModalInnerProps {
 
 const SessionSeedModalInner = (props: ModalInnerProps) => {
   const { onClickOk } = props;
-  const [loadingPassword, setLoadingPassword] = useState(true);
   const [loadingSeed, setLoadingSeed] = useState(true);
   const [recoveryPhrase, setRecoveryPhrase] = useState('');
   const [hasPassword, setHasPassword] = useState<null | boolean>(null);
@@ -197,30 +196,22 @@ const SessionSeedModalInner = (props: ModalInnerProps) => {
   const dispatch = useDispatch();
 
   useMount(() => {
-    async function checkHasPassword() {
+    async function validateAccess() {
-      if (!loadingPassword) {
+      if (passwordHash || recoveryPhrase) {
         return;
       }
 
       const hash = await Data.getPasswordHash();
       setHasPassword(!!hash);
       setPasswordHash(hash || '');
-      setLoadingPassword(false);
+
-    }
-    async function getRecoveryPhrase() {
-      if (recoveryPhrase) {
-        return false;
-      }
       const newRecoveryPhrase = getCurrentRecoveryPhrase();
       setRecoveryPhrase(newRecoveryPhrase);
       setLoadingSeed(false);
-
-      return true;
     }
 
     setTimeout(() => (document.getElementById('seed-input-password') as any)?.focus(), 100);
-    void checkHasPassword();
+    void validateAccess();
-    void getRecoveryPhrase();
   });
 
   const onClose = () => dispatch(recoveryPhraseModal(null));