[SG-167] Implement Passwordless Authentication via Notifications (#2276)

* [SG-549] Commit Initial AuthRequest Repository (#2174)

* Model Passwordless

* Scaffold database for Passwordless

* Implement SQL Repository

* [SG-167] Base Passwordless API (#2185)

* Implement Passwordless notifications

* Implement Controller

* Add documentation to BaseRequestValidator

* Register AuthRequestRepo

* Remove ExpirationDate from the AuthRequest table

* [SG-407] Create job to delete expired requests (#2187)

* chore: init

* remove exp date

* fix: log name

* [SG-167] Added fingerprint phrase to response model. (#2233)

* Remove FailedLoginAttempt logic

* Block unknown devices

* Add EF Support for passwordless

* Got SignalR working for responses

* Added delete job method to EF repo

* Implement a GetMany API endpoint for AuthRequests

* Ran dotnet format

* Fix a merge issues

* Redated migration scripts

* tried sorting sqlproj

* Remove FailedLoginAttempts from SQL

* Groom Postgres script

* Remove extra commas from migration script

* Correct isSpent()

* [SG-167] Adde identity validation for passwordless requests. Registered IAuthRepository.

* [SG-167] Added origin of the request to response model

* Use display name for device identifier in response

* Add datetime conversions back to postgres migration script

* [SG-655] Add anonymous endpoint for checking if a device & user combo match

* [review] Consolidate error conditions

Co-authored-by: Brandon Maharaj <107377945+BrandonM-Bitwarden@users.noreply.github.com>
Co-authored-by: André Filipe da Silva Bispo <andrefsbispo@hotmail.com>
Co-authored-by: André Bispo <abispo@bitwarden.com>

src/Sql/Sql.sqlproj

@@ -73,6 +73,12 @@
     <Build Include="dbo\Functions\PolicyApplicableToUser.sql" />
     <Build Include="dbo\Functions\UserCipherDetails.sql" />
     <Build Include="dbo\Functions\UserCollectionDetails.sql" />
+    <Build Include="dbo\Stored Procedures\AuthRequest_Create.sql" />
+    <Build Include="dbo\Stored Procedures\AuthRequest_DeleteById.sql" />
+    <Build Include="dbo\Stored Procedures\AuthRequest_DeleteIfExpired.sql" />
+    <Build Include="dbo\Stored Procedures\AuthRequest_ReadById.sql" />
+    <Build Include="dbo\Stored Procedures\AuthRequest_ReadByUserId.sql" />
+    <Build Include="dbo\Stored Procedures\AuthRequest_Update.sql" />
     <Build Include="dbo\Stored Procedures\AzureSQLMaintenance.sql" />
     <Build Include="dbo\Stored Procedures\CipherDetails_Create.sql" />
     <Build Include="dbo\Stored Procedures\CipherDetails_CreateWithCollections.sql" />
@@ -344,6 +350,7 @@
     <Build Include="dbo\Stored Procedures\User_UpdateKeys.sql" />
     <Build Include="dbo\Stored Procedures\User_UpdateRenewalReminderDate.sql" />
     <Build Include="dbo\Stored Procedures\User_UpdateStorage.sql" />
+    <Build Include="dbo\Tables\AuthRequest.sql" />
     <Build Include="dbo\Tables\Cipher.sql" />
     <Build Include="dbo\Tables\Collection.sql" />
     <Build Include="dbo\Tables\CollectionCipher.sql" />
@@ -378,6 +385,7 @@
     <Build Include="dbo\User Defined Types\OrganizationUserType.sql" />
     <Build Include="dbo\User Defined Types\SelectionReadOnlyArray.sql" />
     <Build Include="dbo\User Defined Types\TwoGuidIdArray.sql" />
+    <Build Include="dbo\Views\AuthRequestView.sql" />
     <Build Include="dbo\Views\CipherView.sql" />
     <Build Include="dbo\Views\CollectionView.sql" />
     <Build Include="dbo\Views\DeviceView.sql" />

src/Sql/dbo/Stored Procedures/AuthRequest_Create.sql

@@ -0,0 +1,57 @@
+CREATE PROCEDURE [dbo].[AuthRequest_Create]
+    @Id UNIQUEIDENTIFIER OUTPUT,
+    @UserId UNIQUEIDENTIFIER,
+    @Type TINYINT,
+    @RequestDeviceIdentifier NVARCHAR(50),
+    @RequestDeviceType TINYINT,
+    @RequestIpAddress VARCHAR(50),
+    @RequestFingerprint VARCHAR(MAX),
+    @ResponseDeviceId UNIQUEIDENTIFIER,
+    @AccessCode VARCHAR(25),
+    @PublicKey VARCHAR(MAX),
+    @Key VARCHAR(MAX),
+    @MasterPasswordHash VARCHAR(MAX),
+    @CreationDate DATETIME2(7),
+    @ResponseDate DATETIME2(7),
+    @AuthenticationDate DATETIME2(7)
+AS
+BEGIN
+    SET NOCOUNT ON
+
+    INSERT INTO [dbo].[AuthRequest]
+    (
+        [Id],
+        [UserId],
+        [Type],
+        [RequestDeviceIdentifier],
+        [RequestDeviceType],
+        [RequestIpAddress],
+        [RequestFingerprint],
+        [ResponseDeviceId],
+        [AccessCode],
+        [PublicKey],
+        [Key],
+        [MasterPasswordHash],
+        [CreationDate],
+        [ResponseDate],
+        [AuthenticationDate]
+    )
+    VALUES
+    (
+        @Id,
+        @UserId,
+        @Type,
+        @RequestDeviceIdentifier,
+        @RequestDeviceType,
+        @RequestIpAddress,
+        @RequestFingerprint,
+        @ResponseDeviceId,
+        @AccessCode,
+        @PublicKey,
+        @Key,
+        @MasterPasswordHash,
+        @CreationDate,
+        @ResponseDate,
+        @AuthenticationDate
+    )
+END

src/Sql/dbo/Stored Procedures/AuthRequest_DeleteById.sql

@@ -0,0 +1,12 @@
+CREATE PROCEDURE [dbo].[AuthRequest_DeleteById]
+    @Id UNIQUEIDENTIFIER
+AS
+BEGIN
+    SET NOCOUNT ON
+
+    DELETE
+    FROM
+        [dbo].[AuthRequest]
+    WHERE
+        [Id] = @Id
+END

src/Sql/dbo/Stored Procedures/AuthRequest_DeleteIfExpired.sql

@@ -0,0 +1,6 @@
+CREATE PROCEDURE [dbo].[AuthRequest_DeleteIfExpired]
+AS
+BEGIN
+    SET NOCOUNT OFF
+    DELETE FROM [dbo].[AuthRequest] WHERE [CreationDate] < DATEADD(minute, -15, GETUTCDATE());
+END

src/Sql/dbo/Stored Procedures/AuthRequest_ReadById.sql

@@ -0,0 +1,13 @@
+CREATE PROCEDURE [dbo].[AuthRequest_ReadById]
+    @Id UNIQUEIDENTIFIER
+AS
+BEGIN
+    SET NOCOUNT ON
+
+    SELECT
+        *
+    FROM
+        [dbo].[AuthRequestView]
+    WHERE
+        [Id] = @Id
+END

src/Sql/dbo/Stored Procedures/AuthRequest_ReadByUserId.sql

@@ -0,0 +1,13 @@
+CREATE PROCEDURE [dbo].[AuthRequest_ReadByUserId]
+    @UserId UNIQUEIDENTIFIER
+AS
+BEGIN
+    SET NOCOUNT ON
+
+    SELECT
+        *
+    FROM
+        [dbo].[AuthRequestView]
+    WHERE
+        [UserId] = @UserId
+END

src/Sql/dbo/Stored Procedures/AuthRequest_Update.sql

@@ -0,0 +1,22 @@
+CREATE PROCEDURE [dbo].[AuthRequest_Update]
+    @Id UNIQUEIDENTIFIER OUTPUT,
+    @ResponseDeviceId UNIQUEIDENTIFIER,
+    @Key VARCHAR(MAX),
+    @MasterPasswordHash VARCHAR(MAX),
+    @ResponseDate DATETIME2(7),
+    @AuthenticationDate DATETIME2(7)
+AS
+BEGIN
+    SET NOCOUNT ON
+
+    UPDATE
+        [dbo].[AuthRequest]
+    SET
+        [ResponseDeviceId] = @ResponseDeviceId,
+        [Key] = @Key,
+        [MasterPasswordHash] = @MasterPasswordHash,
+        [ResponseDate] = @ResponseDate,
+        [AuthenticationDate] = @AuthenticationDate
+    WHERE
+        [Id] = @Id
+END

src/Sql/dbo/Tables/AuthRequest.sql

@@ -0,0 +1,23 @@
+CREATE TABLE [dbo].[AuthRequest] (
+    [Id]                        UNIQUEIDENTIFIER NOT NULL,
+    [UserId]                    UNIQUEIDENTIFIER NOT NULL,
+    [Type]                      SMALLINT         NOT NULL,
+    [RequestDeviceIdentifier]   NVARCHAR(50)     NOT NULL,
+    [RequestDeviceType]         SMALLINT         NOT NULL,
+    [RequestIpAddress]          VARCHAR(50)      NOT NULL,
+    [RequestFingerprint]        VARCHAR(MAX)     NOT NULL,
+    [ResponseDeviceId]          UNIQUEIDENTIFIER NULL,
+    [AccessCode]                VARCHAR(25)      NOT NULL,
+    [PublicKey]                 VARCHAR(MAX)     NOT NULL,
+    [Key]                       VARCHAR(MAX)     NULL,
+    [MasterPasswordHash]        VARCHAR(MAX)     NULL,
+    [CreationDate]              DATETIME2 (7)    NOT NULL,
+    [ResponseDate]              DATETIME2 (7)    NULL,
+    [AuthenticationDate]        DATETIME2 (7)    NULL,
+    CONSTRAINT [PK_AuthRequest] PRIMARY KEY CLUSTERED ([Id] ASC),
+    CONSTRAINT [FK_AuthRequest_User] FOREIGN KEY ([UserId]) REFERENCES [dbo].[User] ([Id]),
+    CONSTRAINT [FK_AuthRequest_ResponseDevice] FOREIGN KEY ([ResponseDeviceId]) REFERENCES [dbo].[Device] ([Id])
+);
+
+
+GO

src/Sql/dbo/Views/AuthRequestView.sql

@@ -0,0 +1,6 @@
+CREATE VIEW [dbo].[AuthRequestView]
+AS
+SELECT
+    *
+FROM
+    [dbo].[AuthRequest]