Hide email address in Sends (#1234)

* Add send HideEmail to tables and models * Respect HideEmail setting for Sends * Recreate SendView to include new HideEmail column * Enforce new Send policy * Insert default value for new HideEmail column * Delete c95d7598-71cc-4eab-8b08-aced0045198b.json * Remove unrelated files * Revert disableSendPolicy, add sendOptionsPolicy * Minor style fixes * Update SQL project with Send.HideEmail column * unit test SendOptionsPolicy.DisableHideEmail * Add SendOptionsPolicy to Portal * Make HideEmail nullable, fix migrator script * Remove NOT NULL constraint from HideEmail * Fix style * Make HideEmail nullable * minor fixes to model and error message * Move SendOptionsExemption banner Co-authored-by: Chad Scharf <3904944+cscharf@users.noreply.github.com>
2025-07-02 00:22:50 -05:00 · 2021-03-29 07:56:56 +10:00
parent 94249747b4
commit 688cc00d48
17 changed files with 334 additions and 17 deletions
--- a/src/Core/Services/Implementations/SendService.cs
+++ b/src/Core/Services/Implementations/SendService.cs
@ -59,7 +59,7 @@ namespace Bit.Core.Services
        public async Task SaveSendAsync(Send send)
        {
            // Make sure user can save Sends
-            await ValidateUserCanSaveAsync(send.UserId);
+            await ValidateUserCanSaveAsync(send.UserId, send);

            if (send.Id == default(Guid))
            {
@ -265,7 +265,7 @@ namespace Bit.Core.Services
            return _passwordHasher.HashPassword(new User(), password);
        }

-        private async Task ValidateUserCanSaveAsync(Guid? userId)
+        private async Task ValidateUserCanSaveAsync(Guid? userId, Send send)
        {
            if (!userId.HasValue || (!_currentContext.Organizations?.Any() ?? true))
            {
@ -286,6 +286,23 @@ namespace Bit.Core.Services
                    throw new BadRequestException("Due to an Enterprise Policy, you are only able to delete an existing Send.");
                }
            }
+
+            if (send.HideEmail.GetValueOrDefault())
+            {
+                foreach (var policy in policies.Where(p => p.Enabled && p.Type == PolicyType.SendOptions && !_currentContext.ManagePolicies(p.OrganizationId)))
+                {
+                    SendOptionsPolicyData data = null;
+                    if (policy.Data != null)
+                    {
+                        data = JsonConvert.DeserializeObject<SendOptionsPolicyData>(policy.Data);
+                    }
+
+                    if (data?.DisableHideEmail ?? false)
+                    {
+                        throw new BadRequestException("Due to an Enterprise Policy, you are not allowed to hide your email address from recipients when creating or editing a Send.");
+                    }
+                }
+            }
        }

        private async Task<long> StorageRemainingForSendAsync(Send send)