[Provider] Setup provider (#1378)

2025-07-03 00:52:49 -05:00 · 2021-06-30 09:35:26 +02:00
parent 08f508f536
commit 43f7271147
85 changed files with 1810 additions and 113 deletions
--- a/src/Core/IdentityServer/ApiResources.cs
+++ b/src/Core/IdentityServer/ApiResources.cs
@ -22,11 +22,14 @@ namespace Bit.Core.IdentityServer
                    "orgmanager",
                    "orguser",
                    "orgcustom",
+                    "providerprovideradmin",
+                    "providerserviceuser",
                }),
                new ApiResource("internal", new string[] { JwtClaimTypes.Subject }),
                new ApiResource("api.push", new string[] { JwtClaimTypes.Subject }),
                new ApiResource("api.licensing", new string[] { JwtClaimTypes.Subject }),
-                new ApiResource("api.organization", new string[] { JwtClaimTypes.Subject })
+                new ApiResource("api.organization", new string[] { JwtClaimTypes.Subject }),
+                new ApiResource("api.provider", new string[] { JwtClaimTypes.Subject }),
            };
        }
    }
--- a/src/Core/IdentityServer/ClientStore.cs
+++ b/src/Core/IdentityServer/ClientStore.cs
@ -25,6 +25,7 @@ namespace Bit.Core.IdentityServer
        private readonly ILicensingService _licensingService;
        private readonly ICurrentContext _currentContext;
        private readonly IOrganizationUserRepository _organizationUserRepository;
+        private readonly IProviderUserRepository _providerUserRepository;

        public ClientStore(
            IInstallationRepository installationRepository,
@ -34,7 +35,8 @@ namespace Bit.Core.IdentityServer
            StaticClientStore staticClientStore,
            ILicensingService licensingService,
            ICurrentContext currentContext,
-            IOrganizationUserRepository organizationUserRepository)
+            IOrganizationUserRepository organizationUserRepository,
+            IProviderUserRepository providerUserRepository)
        {
            _installationRepository = installationRepository;
            _organizationRepository = organizationRepository;
@ -44,6 +46,7 @@ namespace Bit.Core.IdentityServer
            _licensingService = licensingService; 
            _currentContext = currentContext;
            _organizationUserRepository = organizationUserRepository;
+            _providerUserRepository = providerUserRepository;
        }

        public async Task<Client> FindClientByIdAsync(string clientId)
@ -138,8 +141,9 @@ namespace Bit.Core.IdentityServer
                            new ClientClaim(JwtClaimTypes.AuthenticationMethod, "Application", "external")
                        }; 
                        var orgs = await _currentContext.OrganizationMembershipAsync(_organizationUserRepository, user.Id);
+                        var providers = await _currentContext.ProviderMembershipAsync(_providerUserRepository, user.Id);
                        var isPremium = await _licensingService.ValidateUserPremiumAsync(user);
-                        foreach (var claim in CoreHelpers.BuildIdentityClaims(user, orgs, isPremium))
+                        foreach (var claim in CoreHelpers.BuildIdentityClaims(user, orgs, providers, isPremium))
                        {
                            var upperValue = claim.Value.ToUpperInvariant();
                            var isBool = upperValue == "TRUE" || upperValue == "FALSE";
--- a/src/Core/IdentityServer/ProfileService.cs
+++ b/src/Core/IdentityServer/ProfileService.cs
@ -18,17 +18,20 @@ namespace Bit.Core.IdentityServer
    {
        private readonly IUserService _userService;
        private readonly IOrganizationUserRepository _organizationUserRepository;
+        private readonly IProviderUserRepository _providerUserRepository;
        private readonly ILicensingService _licensingService;
        private readonly ICurrentContext _currentContext;

        public ProfileService(
            IUserService userService,
            IOrganizationUserRepository organizationUserRepository,
+            IProviderUserRepository providerUserRepository,
            ILicensingService licensingService,
            ICurrentContext currentContext)
        {
            _userService = userService;
            _organizationUserRepository = organizationUserRepository;
+            _providerUserRepository = providerUserRepository;
            _licensingService = licensingService;
            _currentContext = currentContext;
        }
@ -43,7 +46,8 @@ namespace Bit.Core.IdentityServer
            {
                var isPremium = await _licensingService.ValidateUserPremiumAsync(user);
                var orgs = await _currentContext.OrganizationMembershipAsync(_organizationUserRepository, user.Id);
-                foreach (var claim in CoreHelpers.BuildIdentityClaims(user, orgs, isPremium))
+                var providers = await _currentContext.ProviderMembershipAsync(_providerUserRepository, user.Id);
+                foreach (var claim in CoreHelpers.BuildIdentityClaims(user, orgs, providers, isPremium))
                {
                    var upperValue = claim.Value.ToUpperInvariant();
                    var isBool = upperValue == "TRUE" || upperValue == "FALSE";