support for user defined kdf parameters

2025-07-02 16:42:50 -05:00 · 2018-08-14 15:30:04 -04:00
parent 20f45ca2de
commit 0932189ccb
18 changed files with 470 additions and 3 deletions
--- a/src/Api/Controllers/AccountsController.cs
+++ b/src/Api/Controllers/AccountsController.cs
@ -20,6 +20,7 @@ namespace Bit.Api.Controllers
    public class AccountsController : Controller
    {
        private readonly IUserService _userService;
+        private readonly IUserRepository _userRepository;
        private readonly ICipherService _cipherService;
        private readonly IOrganizationUserRepository _organizationUserRepository;
        private readonly ILicensingService _licenseService;
@ -27,18 +28,32 @@ namespace Bit.Api.Controllers

        public AccountsController(
            IUserService userService,
+            IUserRepository userRepository,
            ICipherService cipherService,
            IOrganizationUserRepository organizationUserRepository,
            ILicensingService licenseService,
            GlobalSettings globalSettings)
        {
            _userService = userService;
+            _userRepository = userRepository;
            _cipherService = cipherService;
            _organizationUserRepository = organizationUserRepository;
            _licenseService = licenseService;
            _globalSettings = globalSettings;
        }

+        [HttpPost("prelogin")]
+        [AllowAnonymous]
+        public async Task<PreloginResponseModel> PostPrelogin([FromBody]PreloginRequestModel model)
+        {
+            var kdfInformation = await _userRepository.GetKdfInformationByEmailAsync(model.Email);
+            if(kdfInformation == null)
+            {
+                throw new NotFoundException();
+            }
+            return new PreloginResponseModel(kdfInformation);
+        }
+
        [HttpPost("register")]
        [AllowAnonymous]
        public async Task PostRegister([FromBody]RegisterRequestModel model)
@ -170,6 +185,31 @@ namespace Bit.Api.Controllers
            throw new BadRequestException(ModelState);
        }

+        [HttpPost("kdf")]
+        public async Task PostKdf([FromBody]KdfRequestModel model)
+        {
+            var user = await _userService.GetUserByPrincipalAsync(User);
+            if(user == null)
+            {
+                throw new UnauthorizedAccessException();
+            }
+
+            var result = await _userService.ChangeKdfAsync(user, model.MasterPasswordHash,
+                model.NewMasterPasswordHash, model.Key, model.Kdf.Value, model.KdfIterations.Value);
+            if(result.Succeeded)
+            {
+                return;
+            }
+
+            foreach(var error in result.Errors)
+            {
+                ModelState.AddModelError(string.Empty, error.Description);
+            }
+
+            await Task.Delay(2000);
+            throw new BadRequestException(ModelState);
+        }
+
        [HttpPost("key")]
        public async Task PostKey([FromBody]UpdateKeyRequestModel model)
        {