remove networkSeed input from setKeys / genKeyfile flows

[c-johnson]

This PR makes several changes to the setKeys / generateKeyfile flows:

1. Automatically generate a random network seed if user logs in using a non-urbit-generated wallet. Store this value in memory when new keys are set.
2. Since network seeds are now always generated, hide the 'network seed' input on both setKeys and genKeyfile views. User doesn't need to interact with network seed at all anymore.
3. Change the copy to reflect the above flow.

There's one sticking point with the above flow; if the non-urbit-wallet user refreshes the page between setting network keys and generating their keyfile, the network seed they use is lost. It's fairly punishing if a user accidentally refreshes between steps. Some options we have include:

A) adding the networkSeed to localStorage,
B) making the networkSeed generation deterministic (like urbit wallet case)
C) download the keyfile automatically when new keys are set (combining the two actions into one)

For now Mark and I decided to just inform the user to download their keyfile immediately, but curious if others (@iamwillkim ?) have input here.

[Fang-]

This actually feels pretty good, flow-wise. I'd say this is a good solution. Left some comments with minor change requests though!

Additionally, we may want the "Ok ->" from the transaction confirmation screen to be "Download keyfile ->" instead, if that's doable with the forward-only router we have now/are getting.

slow confirm?

[Fang-]

Eww, commented code! (:

[c-johnson]

Ah, yeah. This was just a convenience for the commented-out development mode workflow. Removed it.

[Fang-]

I don't see anything about this in your commit messages, but I think these (and the couple lines below) are just dev setup tweaks?

[c-johnson]

Yep; hopefully that's okay. There were a couple issues with the flow so I just updated it.

[Fang-]

This should also inform the user of the alternative: getting into a state where we can detect networking seed. So, "If you've previously set networking keys while logged in with a master ticket or management mnemonic, logging in with that again might allow you to find the current networking seed." or something that's worded perhaps a little bit better.

[c-johnson]

How about "Try logging in with your master ticket or management mneumonic if you want to keep your current networking keys" ?

[Fang-]

Problem is it would only work if the current keys were actually set using those.
Maybe "Try logging in with your master ticket or management mnemonic. Alternatively, reset your keys."? All of this feels pretty aggressive if the user isn't aware that this is "quick and easy", but maybe it's good if they just find out for themselves?

[Fang-]

React Q, to confirm my understanding: putting these as properties into the View is what makes these accessible by other components?

[jtobin]

Right. If you have some component Foo, then <Foo foo=1 bar=2 /> is that component with the foo and bar properties set to 1 and 2 respectively. In src/Bridge.js, View is actually just whatever component is currently being pointed at by the router, so it gets passed all the properties you see listed there.

[Fang-]

This sentence needs more gravity. We should probably put it in one of those orange warning boxes, like the one we present when you try to configure keys for the very first time.

Might also want to add a brief description why. "Your network seed is not deterministic. Once the transaction ..."

[Fang-]

Also I guess it's a little silly that on the "download keyfile" page, if literally the only thing you can do is click "generate", you still need to click that manually. We should just remove that button and auto-generate when we can.

[Fang-]

Looks like web3 has a function for this. Supposedly "cryptographically strong". We should use that instead of rolling our own.

[c-johnson]

So I tried this out, and it turns out the function is pretty borked; it doesn't generate strings of consistent length >.<. How important is 'cryptographic strength' here do you think?

web3/web3.js#1490

[Fang-]

sigh

Just slap a //TODO use web3.utils.randomHex, see web3.js#1490 in there and call it a day. web3.js is such a shitshow rn. ):

[c-johnson]

Also I guess it's a little silly that on the "download keyfile" page, if literally the only thing you can do is click "generate", you still need to click that manually

Yeah, this page is really sparse, and linking to it after setting your keys feels overly complicated.

Could we just move this to the point detail page? At the bottom, after "Public Keys", we just have a section called Arvo Keyfile. If your keys have been set, it just presents you with a download button. If not, it directs you to set your keys. What do you think?

[Fang-]

Suggested change

	generated a random one for you, but you must download your Arvo
	generated a random one for you, so you must download your Arvo

[Fang-]

Could we just move this to the point detail page?

That might be better, flow-wise, as long as it doesn't need to be scrolled into view. @jyng thoughts?

[c-johnson]

Ok, just pushed the following improvements:

• Automatically generate your keyfile on genKeyfile when you load the page
• Add "Download Keyfile" link to sentTransaction after setting your keys
• Shored up the copy per our discussion

Lmk if you see anything missing!

[Fang-]

Nice! This is good, I like this flow.

The generate keyfile page seems to still show the "generating keyfile" text, even if it fails. If we remove that, and put the warning in a proper warning box like on the "set keys" page, then this should be good to be merged in. (:

[c-johnson]

@Fang- Whoops, forgot to add the conditional in. Alright, it's fixed and merged.