Add support for Emergency Access (#1000)

* Add support for Emergency Access * Add migration script * Review comments * Ensure grantor has premium when inviting new grantees. * Resolve review comments * Remove two factor references
2025-07-06 10:32:49 -05:00 · 2020-12-16 20:36:47 +01:00
parent 9bb63b86f0
commit 0f1af2333e
60 changed files with 2073 additions and 3 deletions
--- a/src/Core/Repositories/IEmergencyAccessRepository.cs
+++ b/src/Core/Repositories/IEmergencyAccessRepository.cs
@ -0,0 +1,18 @@
+using System;
+using System.Collections.Generic;
+using System.Threading.Tasks;
+using Bit.Core.Models.Data;
+using Bit.Core.Models.Table;
+
+namespace Bit.Core.Repositories
+{
+    public interface IEmergencyAccessRepository : IRepository<EmergencyAccess, Guid>
+    {
+        Task<int> GetCountByGrantorIdEmailAsync(Guid grantorId, string email, bool onlyRegisteredUsers);
+        Task<ICollection<EmergencyAccessDetails>> GetManyDetailsByGrantorIdAsync(Guid grantorId);
+        Task<ICollection<EmergencyAccessDetails>> GetManyDetailsByGranteeIdAsync(Guid granteeId);
+        Task<EmergencyAccessDetails> GetDetailsByIdGrantorIdAsync(Guid id, Guid grantorId);
+        Task<ICollection<EmergencyAccessNotify>> GetManyToNotifyAsync();
+        Task<ICollection<EmergencyAccessDetails>> GetExpiredRecoveriesAsync();
+    }
+}
--- a/src/Core/Repositories/SqlServer/EmergencyAccessRepository.cs
+++ b/src/Core/Repositories/SqlServer/EmergencyAccessRepository.cs
@ -0,0 +1,99 @@
+using System;
+using Bit.Core.Models.Table;
+using System.Data;
+using System.Data.SqlClient;
+using System.Threading.Tasks;
+using Dapper;
+using System.Linq;
+using System.Collections.Generic;
+using Bit.Core.Models.Data;
+
+namespace Bit.Core.Repositories.SqlServer
+{
+    public class EmergencyAccessRepository : Repository<EmergencyAccess, Guid>, IEmergencyAccessRepository
+    {
+        public EmergencyAccessRepository(GlobalSettings globalSettings)
+            : this(globalSettings.SqlServer.ConnectionString, globalSettings.SqlServer.ReadOnlyConnectionString)
+        { }
+
+        public EmergencyAccessRepository(string connectionString, string readOnlyConnectionString)
+            : base(connectionString, readOnlyConnectionString)
+        { }
+
+        public async Task<int> GetCountByGrantorIdEmailAsync(Guid grantorId, string email, bool onlyRegisteredUsers)
+        {
+            using (var connection = new SqlConnection(ConnectionString))
+            {
+                var results = await connection.ExecuteScalarAsync<int>(
+                    "[dbo].[EmergencyAccess_ReadCountByGrantorIdEmail]",
+                    new { GrantorId = grantorId, Email = email, OnlyUsers = onlyRegisteredUsers },
+                    commandType: CommandType.StoredProcedure);
+
+                return results;
+            }
+        }
+
+        public async Task<ICollection<EmergencyAccessDetails>> GetManyDetailsByGrantorIdAsync(Guid grantorId)
+        {
+            using (var connection = new SqlConnection(ConnectionString))
+            {
+                var results = await connection.QueryAsync<EmergencyAccessDetails>(
+                    "[dbo].[EmergencyAccessDetails_ReadByGrantorId]",
+                    new { GrantorId = grantorId },
+                    commandType: CommandType.StoredProcedure);
+
+                return results.ToList();
+            }
+        }
+
+        public async Task<ICollection<EmergencyAccessDetails>> GetManyDetailsByGranteeIdAsync(Guid granteeId)
+        {
+            using (var connection = new SqlConnection(ConnectionString))
+            {
+                var results = await connection.QueryAsync<EmergencyAccessDetails>(
+                    "[dbo].[EmergencyAccessDetails_ReadByGranteeId]",
+                    new { GranteeId = granteeId },
+                    commandType: CommandType.StoredProcedure);
+
+                return results.ToList();
+            }
+        }
+
+        public async Task<EmergencyAccessDetails> GetDetailsByIdGrantorIdAsync(Guid id, Guid grantorId)
+        {
+            using (var connection = new SqlConnection(ConnectionString))
+            {
+                var results = await connection.QueryAsync<EmergencyAccessDetails>(
+                    "[dbo].[EmergencyAccessDetails_ReadByIdGrantorId]",
+                    new { Id = id, GrantorId = grantorId },
+                    commandType: CommandType.StoredProcedure);
+
+                return results.FirstOrDefault();
+            }
+        }
+
+        public async Task<ICollection<EmergencyAccessNotify>> GetManyToNotifyAsync()
+        {
+            using (var connection = new SqlConnection(ConnectionString))
+            {
+                var results = await connection.QueryAsync<EmergencyAccessNotify>(
+                    "[dbo].[EmergencyAccess_ReadToNotify]",
+                    commandType: CommandType.StoredProcedure);
+
+                return results.ToList();
+            }
+        }
+
+        public async Task<ICollection<EmergencyAccessDetails>> GetExpiredRecoveriesAsync()
+        {
+            using (var connection = new SqlConnection(ConnectionString))
+            {
+                var results = await connection.QueryAsync<EmergencyAccessDetails>(
+                    "[dbo].[EmergencyAccessDetails_ReadExpiredRecoveries]",
+                    commandType: CommandType.StoredProcedure);
+
+                return results.ToList();
+            }
+        }
+    }
+}