nhyatt/bitwarden
1
0
Fork 0
mirror of https://github.com/bitwarden/server.git synced 2025-06-30 23:52:50 -05:00
Code Activity

[Emergency Access] Add premium check (#1815)

Browse Source
This commit is contained in:
Oscar Hinton
2022-01-18 16:05:12 +01:00
committed by GitHub
parent 0def1830af
commit 68a8092235
4 changed files with 34 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/Core/Services/IEmergencyAccessService.cs
View File

@ -15,7 +15,7 @@ namespace Bit.Core.Services
Task DeleteAsync(Guid emergencyAccessId, Guid grantorId);
Task<EmergencyAccess> ConfirmUserAsync(Guid emergencyAccessId, string key, Guid grantorId);
Task<EmergencyAccessDetails> GetAsync(Guid emergencyAccessId, Guid userId);
Task SaveAsync(EmergencyAccess emergencyAccess, Guid savingUserId);
Task SaveAsync(EmergencyAccess emergencyAccess, User savingUser);
Task InitiateAsync(Guid id, User initiatingUser);
Task ApproveAsync(Guid id, User approvingUser);
Task RejectAsync(Guid id, User rejectingUser);

9
src/Core/Services/Implementations/EmergencyAccessService.cs
View File

@ -189,9 +189,14 @@ namespace Bit.Core.Services
return emergencyAccess;
}
public async Task SaveAsync(EmergencyAccess emergencyAccess, Guid savingUserId)
public async Task SaveAsync(EmergencyAccess emergencyAccess, User savingUser)
{
if (emergencyAccess.GrantorId != savingUserId)
if (!await _userService.CanAccessPremium(savingUser))
{
throw new BadRequestException("Not a premium user.");
}
if (emergencyAccess.GrantorId != savingUser.Id)
{
throw new BadRequestException("Emergency Access not valid.");
}