nhyatt/bitwarden
1
0
Fork 0
mirror of https://github.com/bitwarden/server.git synced 2025-04-05 05:00:19 -05:00
Code

Support large organization sync (#1311)

Browse Source 
* Increase organization max seat size from 30k to 2b (#1274)

* Increase organization max seat size from 30k to 2b

* PR review. Do not modify unless state matches expected

* Organization sync simultaneous event reporting (#1275)

* Split up azure messages according to max size

* Allow simultaneous login of organization user events

* Early resolve small event lists

* Clarify logic

Co-authored-by: Chad Scharf <3904944+cscharf@users.noreply.github.com>

* Improve readability

This comes at the cost of multiple serializations, but the
 improvement in wire-time should more than make up for this
 on message where serialization time matters

Co-authored-by: Chad Scharf <3904944+cscharf@users.noreply.github.com>

* Queue emails (#1286)

* Extract common Azure queue methods

* Do not use internal entity framework namespace

* Prefer IEnumerable to IList unless needed

All of these implementations were just using `Count == 1`,
which is easily replicated. This will be used when abstracting Azure queues

* Add model for azure queue message

* Abstract Azure queue for reuse

* Creat service to enqueue mail messages for later processing

Azure queue mail service uses Azure queues.
Blocking just blocks until all the work is done -- This is
how emailing works today

* Provide mail queue service to DI

* Queue organization invite emails for later processing

All emails can later be added to this queue

* Create Admin hosted service to process enqueued mail messages

* Prefer constructors to static generators

* Mass delete organization users (#1287)

* Add delete many to Organization Users

* Correct formatting

* Remove erroneous migration

* Clarify parameter name

* Formatting fixes

* Simplify bump account revision sproc

* Formatting fixes

* Match file names to objects

* Indicate if large import is expected

* Early pull all existing users we were planning on inviting (#1290)

* Early pull all existing users we were planning on inviting

* Improve sproc name

* Batch upsert org users (#1289)

* Add UpsertMany sprocs to OrganizationUser

* Add method to create TVPs from any object.

Uses DbOrder attribute to generate.
Sproc will fail unless TVP column order matches that of the db type

* Combine migrations

* Correct formatting

* Include sql objects in sql project

* Keep consisten parameter names

* Batch deletes for performance

* Correct formatting

* consolidate migrations

* Use batch methods in OrganizationImport

* Declare @BatchSize

* Transaction names limited to 32 chars

Drop sproc before creating it if it exists

* Update import tests

* Allow for more users in org upgrades

* Fix formatting

* Improve class hierarchy structure

* Use name tuple types

* Fix formatting

* Front load all reflection

* Format constructor

* Simplify ToTvp as class-specific extension

Co-authored-by: Chad Scharf <3904944+cscharf@users.noreply.github.com>
This commit is contained in:
Matt Gibson 2021-05-17 09:43:02 -05:00 committed by GitHub
parent 738a4c2bac
commit 785e788cb6
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
64 changed files with 1704 additions and 234 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

107
src/Admin/HostedServices/AzureQueueMailHostedService.cs Normal file
View File

@ -0,0 +1,107 @@
using System;
using Microsoft.Extensions.Hosting;
using Azure.Storage.Queues;
using Microsoft.Extensions.Logging;
using Bit.Core.Settings;
using System.Threading.Tasks;
using System.Threading;
using Bit.Core.Services;
using Newtonsoft.Json;
using Bit.Core.Models.Mail;
using Azure.Storage.Queues.Models;
using System.Linq;
using System.Collections.Generic;
using Newtonsoft.Json.Linq;
namespace Bit.Admin.HostedServices
{
public class AzureQueueMailHostedService : IHostedService
{
private readonly ILogger<AzureQueueMailHostedService> _logger;
private readonly GlobalSettings _globalSettings;
private readonly IMailService _mailService;
private CancellationTokenSource _cts;
private Task _executingTask;
private QueueClient _mailQueueClient;
public AzureQueueMailHostedService(
ILogger<AzureQueueMailHostedService> logger,
IMailService mailService,
GlobalSettings globalSettings)
{
_logger = logger;
_mailService = mailService;
_globalSettings = globalSettings;
}
public Task StartAsync(CancellationToken cancellationToken)
{
_cts = CancellationTokenSource.CreateLinkedTokenSource(cancellationToken);
_executingTask = ExecuteAsync(_cts.Token);
return _executingTask.IsCompleted ? _executingTask : Task.CompletedTask;
}
public async Task StopAsync(CancellationToken cancellationToken)
{
if (_executingTask == null)
{
return;
}
_cts.Cancel();
await Task.WhenAny(_executingTask, Task.Delay(-1, cancellationToken));
cancellationToken.ThrowIfCancellationRequested();
}
private async Task ExecuteAsync(CancellationToken cancellationToken)
{
_mailQueueClient = new QueueClient(_globalSettings.Mail.ConnectionString, "mail");
QueueMessage[] mailMessages;
while (!cancellationToken.IsCancellationRequested)
{
if (!(mailMessages = await RetrieveMessagesAsync()).Any())
{
await Task.Delay(TimeSpan.FromSeconds(15));
}
foreach (var message in mailMessages)
{
try
{
var token = JToken.Parse(message.MessageText);
if (token is JArray)
{
foreach (var mailQueueMessage in token.ToObject<List<MailQueueMessage>>())
{
await _mailService.SendEnqueuedMailMessageAsync(mailQueueMessage);
}
}
else if (token is JObject)
{
var mailQueueMessage = token.ToObject<MailQueueMessage>();
await _mailService.SendEnqueuedMailMessageAsync(mailQueueMessage);
}
}
catch (Exception e)
{
_logger.LogError(e, "Failed to send email");
// TODO: retries?
}
await _mailQueueClient.DeleteMessageAsync(message.MessageId, message.PopReceipt);
if (cancellationToken.IsCancellationRequested)
{
break;
}
}
}
}
private async Task<QueueMessage[]> RetrieveMessagesAsync()
{
return (await _mailQueueClient.ReceiveMessagesAsync(maxMessages: 32))?.Value ?? new QueueMessage[] { };
}
}
}

1
src/Admin/Jobs/DeleteSendsJob.cs
View File

@ -6,7 +6,6 @@ using Bit.Core.Context;
using Bit.Core.Jobs; using Bit.Core.Jobs;
using Bit.Core.Repositories; using Bit.Core.Repositories;
using Bit.Core.Services; using Bit.Core.Services;
using Microsoft.EntityFrameworkCore.Internal;
using Microsoft.Extensions.DependencyInjection; using Microsoft.Extensions.DependencyInjection;
using Microsoft.Extensions.Logging; using Microsoft.Extensions.Logging;
using Quartz; using Quartz;

2
src/Admin/Models/OrganizationEditModel.cs
View File

@ -67,7 +67,7 @@ namespace Bit.Admin.Models
[Display(Name = "Plan Name")] [Display(Name = "Plan Name")]
public string Plan { get; set; } public string Plan { get; set; }
[Display(Name = "Seats")] [Display(Name = "Seats")]
public short? Seats { get; set; } public int? Seats { get; set; }
[Display(Name = "Max. Collections")] [Display(Name = "Max. Collections")]
public short? MaxCollections { get; set; } public short? MaxCollections { get; set; }
[Display(Name = "Policies")] [Display(Name = "Policies")]

4
src/Admin/Startup.cs
View File

@ -90,6 +90,10 @@ namespace Bit.Admin
{ {
services.AddHostedService<HostedServices.AmazonSqsBlockIpHostedService>(); services.AddHostedService<HostedServices.AmazonSqsBlockIpHostedService>();
} }
if (CoreHelpers.SettingHasValue(globalSettings.Mail.ConnectionString))
{
services.AddHostedService<HostedServices.AzureQueueMailHostedService>();
}
} }
} }

2
src/Api/Controllers/OrganizationsController.cs
View File

@ -418,7 +418,7 @@ namespace Bit.Api.Controllers
[HttpPost("{id}/import")] [HttpPost("{id}/import")]
public async Task Import(string id, [FromBody]ImportOrganizationUsersRequestModel model) public async Task Import(string id, [FromBody]ImportOrganizationUsersRequestModel model)
{ {
if (!_globalSettings.SelfHosted && if (!_globalSettings.SelfHosted && !model.LargeImport &&
(model.Groups.Count() > 2000 || model.Users.Count(u => !u.Deleted) > 2000)) (model.Groups.Count() > 2000 || model.Users.Count(u => !u.Deleted) > 2000))
{ {
throw new BadRequestException("You cannot import this much data at once."); throw new BadRequestException("You cannot import this much data at once.");

2
src/Api/Public/Controllers/OrganizationController.cs
View File

@ -41,7 +41,7 @@ namespace Bit.Api.Public.Controllers
[ProducesResponseType(typeof(ErrorResponseModel), (int)HttpStatusCode.BadRequest)] [ProducesResponseType(typeof(ErrorResponseModel), (int)HttpStatusCode.BadRequest)]
public async Task<IActionResult> Import([FromBody]OrganizationImportRequestModel model) public async Task<IActionResult> Import([FromBody]OrganizationImportRequestModel model)
{ {
if (!_globalSettings.SelfHosted && if (!_globalSettings.SelfHosted && !model.LargeImport &&
(model.Groups.Count() > 2000 || model.Members.Count(u => !u.Deleted) > 2000)) (model.Groups.Count() > 2000 || model.Members.Count(u => !u.Deleted) > 2000))
{ {
throw new BadRequestException("You cannot import this much data at once."); throw new BadRequestException("You cannot import this much data at once.");

4
src/Core/Models/Api/Public/Request/OrganizationImportRequestModel.cs
View File

@ -20,6 +20,10 @@ namespace Bit.Core.Models.Api.Public
/// </summary> /// </summary>
[Required] [Required]
public bool? OverwriteExisting { get; set; } public bool? OverwriteExisting { get; set; }
/// <summary>
/// Indicates an import of over 2000 users and/or groups is expected
/// </summary>
public bool LargeImport { get; set; } = false;
public class OrganizationImportGroupRequestModel public class OrganizationImportGroupRequestModel
{ {

1
src/Core/Models/Api/Request/Organizations/ImportOrganizationUsersRequestModel.cs
View File

@ -11,6 +11,7 @@ namespace Bit.Core.Models.Api
public Group[] Groups { get; set; } public Group[] Groups { get; set; }
public User[] Users { get; set; } public User[] Users { get; set; }
public bool OverwriteExisting { get; set; } public bool OverwriteExisting { get; set; }
public bool LargeImport { get; set; }
public class Group public class Group
{ {

4
src/Core/Models/Api/Request/Organizations/OrganizationCreateRequestModel.cs
View File

@ -24,8 +24,8 @@ namespace Bit.Core.Models.Api
public OrganizationKeysRequestModel Keys { get; set; } public OrganizationKeysRequestModel Keys { get; set; }
public PaymentMethodType? PaymentMethodType { get; set; } public PaymentMethodType? PaymentMethodType { get; set; }
public string PaymentToken { get; set; } public string PaymentToken { get; set; }
[Range(0, double.MaxValue)] [Range(0, int.MaxValue)]
public short AdditionalSeats { get; set; } public int AdditionalSeats { get; set; }
[Range(0, 99)] [Range(0, 99)]
public short? AdditionalStorageGb { get; set; } public short? AdditionalStorageGb { get; set; }
public bool PremiumAccessAddon { get; set; } public bool PremiumAccessAddon { get; set; }

4
src/Core/Models/Api/Request/Organizations/OrganizationUpgradeRequestModel.cs
View File

@ -9,8 +9,8 @@ namespace Bit.Core.Models.Api
[StringLength(50)] [StringLength(50)]
public string BusinessName { get; set; } public string BusinessName { get; set; }
public PlanType PlanType { get; set; } public PlanType PlanType { get; set; }
[Range(0, double.MaxValue)] [Range(0, int.MaxValue)]
public short AdditionalSeats { get; set; } public int AdditionalSeats { get; set; }
[Range(0, 99)] [Range(0, 99)]
public short? AdditionalStorageGb { get; set; } public short? AdditionalStorageGb { get; set; }
public bool PremiumAccessAddon { get; set; } public bool PremiumAccessAddon { get; set; }

2
src/Core/Models/Api/Response/OrganizationResponseModel.cs
View File

@ -58,7 +58,7 @@ namespace Bit.Core.Models.Api
public string BillingEmail { get; set; } public string BillingEmail { get; set; }
public PlanResponseModel Plan { get; set; } public PlanResponseModel Plan { get; set; }
public PlanType PlanType { get; set; } public PlanType PlanType { get; set; }
public short? Seats { get; set; } public int? Seats { get; set; }
public short? MaxCollections { get; set; } public short? MaxCollections { get; set; }
public short? MaxStorageGb { get; set; } public short? MaxStorageGb { get; set; }
public bool UsePolicies { get; set; } public bool UsePolicies { get; set; }

2
src/Core/Models/Api/Response/PlanResponseModel.cs
View File

@ -67,7 +67,7 @@ namespace Bit.Core.Models.Api
public short? MaxUsers { get; set; } public short? MaxUsers { get; set; }
public bool HasAdditionalSeatsOption { get; set; } public bool HasAdditionalSeatsOption { get; set; }
public short? MaxAdditionalSeats { get; set; } public int? MaxAdditionalSeats { get; set; }
public bool HasAdditionalStorageOption { get; set; } public bool HasAdditionalStorageOption { get; set; }
public short? MaxAdditionalStorage { get; set; } public short? MaxAdditionalStorage { get; set; }
public bool HasPremiumAccessOption { get; set; } public bool HasPremiumAccessOption { get; set; }

2
src/Core/Models/Business/OrganizationLicense.cs
View File

@ -100,7 +100,7 @@ namespace Bit.Core.Models.Business
public bool Enabled { get; set; } public bool Enabled { get; set; }
public string Plan { get; set; } public string Plan { get; set; }
public PlanType PlanType { get; set; } public PlanType PlanType { get; set; }
public short? Seats { get; set; } public int? Seats { get; set; }
public short? MaxCollections { get; set; } public short? MaxCollections { get; set; }
public bool UsePolicies { get; set; } public bool UsePolicies { get; set; }
public bool UseSso { get; set; } public bool UseSso { get; set; }

2
src/Core/Models/Business/OrganizationUpgrade.cs
View File

@ -6,7 +6,7 @@ namespace Bit.Core.Models.Business
{ {
public string BusinessName { get; set; } public string BusinessName { get; set; }
public PlanType Plan { get; set; } public PlanType Plan { get; set; }
public short AdditionalSeats { get; set; } public int AdditionalSeats { get; set; }
public short AdditionalStorageGb { get; set; } public short AdditionalStorageGb { get; set; }
public bool PremiumAccessAddon { get; set; } public bool PremiumAccessAddon { get; set; }
public TaxInfo TaxInfo { get; set; } public TaxInfo TaxInfo { get; set; }

2
src/Core/Models/Business/ReferenceEvent.cs
View File

@ -42,7 +42,7 @@ namespace Bit.Core.Models.Business
public PlanType? PlanType { get; set; } public PlanType? PlanType { get; set; }
public short? Seats { get; set; } public int? Seats { get; set; }
public short? Storage { get; set; } public short? Storage { get; set; }

14
src/Core/Models/Mail/IMailQueueMessage.cs Normal file
View File

@ -0,0 +1,14 @@
using System.Collections.Generic;
namespace Bit.Core.Models.Mail
{
public interface IMailQueueMessage
{
string Subject { get; set; }
IEnumerable<string> ToEmails { get; set; }
IEnumerable<string> BccEmails { get; set; }
string Category { get; set; }
string TemplateName { get; set; }
object Model { get; set; }
}
}

26
src/Core/Models/Mail/MailQueueMessage.cs Normal file
View File

@ -0,0 +1,26 @@
using System.Collections.Generic;
namespace Bit.Core.Models.Mail
{
public class MailQueueMessage : IMailQueueMessage
{
public string Subject { get; set; }
public IEnumerable<string> ToEmails { get; set; }
public IEnumerable<string> BccEmails { get; set; }
public string Category { get; set; }
public string TemplateName { get; set; }
public object Model { get; set; }
public MailQueueMessage() { }
public MailQueueMessage(MailMessage message, string templateName, object model)
{
Subject = message.Subject;
ToEmails = message.ToEmails;
BccEmails = message.BccEmails;
Category = string.IsNullOrEmpty(message.Category) ? templateName : message.Category;
TemplateName = templateName;
Model = model;
}
}
}

2
src/Core/Models/StaticStore/Plan.cs
View File

@ -17,7 +17,7 @@ namespace Bit.Core.Models.StaticStore
public short? MaxUsers { get; set; } public short? MaxUsers { get; set; }
public bool HasAdditionalSeatsOption { get; set; } public bool HasAdditionalSeatsOption { get; set; }
public short? MaxAdditionalSeats { get; set; } public int? MaxAdditionalSeats { get; set; }
public bool HasAdditionalStorageOption { get; set; } public bool HasAdditionalStorageOption { get; set; }
public short? MaxAdditionalStorage { get; set; } public short? MaxAdditionalStorage { get; set; }
public bool HasPremiumAccessOption { get; set; } public bool HasPremiumAccessOption { get; set; }

2
src/Core/Models/Table/Organization.cs
View File

@ -23,7 +23,7 @@ namespace Bit.Core.Models.Table
public string BillingEmail { get; set; } public string BillingEmail { get; set; }
public string Plan { get; set; } public string Plan { get; set; }
public PlanType PlanType { get; set; } public PlanType PlanType { get; set; }
public short? Seats { get; set; } public int? Seats { get; set; }
public short? MaxCollections { get; set; } public short? MaxCollections { get; set; }
public bool UsePolicies { get; set; } public bool UsePolicies { get; set; }
public bool UseSso { get; set; } public bool UseSso { get; set; }

2
src/Core/Repositories/IEventRepository.cs
View File

@ -17,6 +17,6 @@ namespace Bit.Core.Repositories
Task<PagedResult<IEvent>> GetManyByCipherAsync(Cipher cipher, DateTime startDate, DateTime endDate, Task<PagedResult<IEvent>> GetManyByCipherAsync(Cipher cipher, DateTime startDate, DateTime endDate,
PageOptions pageOptions); PageOptions pageOptions);
Task CreateAsync(IEvent e); Task CreateAsync(IEvent e);
Task CreateManyAsync(IList<IEvent> e); Task CreateManyAsync(IEnumerable<IEvent> e);
} }
} }

5
src/Core/Repositories/IOrganizationUserRepository.cs
View File

@ -15,6 +15,7 @@ namespace Bit.Core.Repositories
Task<ICollection<OrganizationUser>> GetManyByUserAsync(Guid userId); Task<ICollection<OrganizationUser>> GetManyByUserAsync(Guid userId);
Task<ICollection<OrganizationUser>> GetManyByOrganizationAsync(Guid organizationId, OrganizationUserType? type); Task<ICollection<OrganizationUser>> GetManyByOrganizationAsync(Guid organizationId, OrganizationUserType? type);
Task<int> GetCountByOrganizationAsync(Guid organizationId, string email, bool onlyRegisteredUsers); Task<int> GetCountByOrganizationAsync(Guid organizationId, string email, bool onlyRegisteredUsers);
Task<IEnumerable<string>> SelectKnownEmailsAsync(Guid organizationId, IEnumerable<string> emails, bool onlyRegisteredUsers);
Task<OrganizationUser> GetByOrganizationAsync(Guid organizationId, Guid userId); Task<OrganizationUser> GetByOrganizationAsync(Guid organizationId, Guid userId);
Task<Tuple<OrganizationUser, ICollection<SelectionReadOnly>>> GetByIdWithCollectionsAsync(Guid id); Task<Tuple<OrganizationUser, ICollection<SelectionReadOnly>>> GetByIdWithCollectionsAsync(Guid id);
Task<OrganizationUserUserDetails> GetDetailsByIdAsync(Guid id); Task<OrganizationUserUserDetails> GetDetailsByIdAsync(Guid id);
@ -26,10 +27,14 @@ namespace Bit.Core.Repositories
Task<OrganizationUserOrganizationDetails> GetDetailsByUserAsync(Guid userId, Guid organizationId, Task<OrganizationUserOrganizationDetails> GetDetailsByUserAsync(Guid userId, Guid organizationId,
OrganizationUserStatusType? status = null); OrganizationUserStatusType? status = null);
Task UpdateGroupsAsync(Guid orgUserId, IEnumerable<Guid> groupIds); Task UpdateGroupsAsync(Guid orgUserId, IEnumerable<Guid> groupIds);
Task UpsertManyAsync(IEnumerable<OrganizationUser> organizationUsers);
Task CreateAsync(OrganizationUser obj, IEnumerable<SelectionReadOnly> collections); Task CreateAsync(OrganizationUser obj, IEnumerable<SelectionReadOnly> collections);
Task CreateManyAsync(IEnumerable<OrganizationUser> organizationIdUsers);
Task ReplaceAsync(OrganizationUser obj, IEnumerable<SelectionReadOnly> collections); Task ReplaceAsync(OrganizationUser obj, IEnumerable<SelectionReadOnly> collections);
Task ReplaceManyAsync(IEnumerable<OrganizationUser> organizationUsers);
Task<ICollection<OrganizationUser>> GetManyByManyUsersAsync(IEnumerable<Guid> userIds); Task<ICollection<OrganizationUser>> GetManyByManyUsersAsync(IEnumerable<Guid> userIds);
Task<ICollection<OrganizationUser>> GetManyAsync(IEnumerable<Guid> Ids); Task<ICollection<OrganizationUser>> GetManyAsync(IEnumerable<Guid> Ids);
Task DeleteManyAsync(IEnumerable<Guid> userIds);
Task<OrganizationUser> GetByOrganizationEmailAsync(Guid organizationId, string email); Task<OrganizationUser> GetByOrganizationEmailAsync(Guid organizationId, string email);
} }
} }

4
src/Core/Repositories/SqlServer/EventRepository.cs
View File

@ -74,14 +74,14 @@ namespace Bit.Core.Repositories.SqlServer
await base.CreateAsync(ev); await base.CreateAsync(ev);
} }
public async Task CreateManyAsync(IList<IEvent> entities) public async Task CreateManyAsync(IEnumerable<IEvent> entities)
{ {
if (!entities?.Any() ?? true) if (!entities?.Any() ?? true)
{ {
return; return;
} }
if (entities.Count == 1) if (!entities.Skip(1).Any())
{ {
await CreateAsync(entities.First()); await CreateAsync(entities.First());
return; return;

80
src/Core/Repositories/SqlServer/OrganizationUserRepository.cs
View File

@ -76,6 +76,20 @@ namespace Bit.Core.Repositories.SqlServer
} }
} }
public async Task<IEnumerable<string>> SelectKnownEmailsAsync(Guid organizationId, IEnumerable<string> emails,
bool onlyRegisteredUsers)
{
using (var connection = new SqlConnection(ConnectionString))
{
var result = await connection.QueryAsync<string>(
"[dbo].[OrganizationUser_SelectKnownEmails]",
new { OrganizationId = organizationId, Emails = emails.ToArrayTVP("Email"), OnlyUsers = onlyRegisteredUsers },
commandType: CommandType.StoredProcedure);
return result;
}
}
public async Task<OrganizationUser> GetByOrganizationAsync(Guid organizationId, Guid userId) public async Task<OrganizationUser> GetByOrganizationAsync(Guid organizationId, Guid userId)
{ {
using (var connection = new SqlConnection(ConnectionString)) using (var connection = new SqlConnection(ConnectionString))
@ -285,5 +299,71 @@ namespace Bit.Core.Repositories.SqlServer
return results.SingleOrDefault(); return results.SingleOrDefault();
} }
} }
public async Task DeleteManyAsync(IEnumerable<Guid> organizationUserIds)
{
using (var connection = new SqlConnection(ConnectionString))
{
await connection.ExecuteAsync("[dbo].[OrganizationUser_DeleteByIds]",
new { Ids = organizationUserIds.ToGuidIdArrayTVP() }, commandType: CommandType.StoredProcedure);
}
}
public async Task UpsertManyAsync(IEnumerable<OrganizationUser> organizationUsers)
{
var createUsers = new List<OrganizationUser>();
var replaceUsers = new List<OrganizationUser>();
foreach (var organizationUser in organizationUsers)
{
if (organizationUser.Id.Equals(default))
{
createUsers.Add(organizationUser);
}
else
{
replaceUsers.Add(organizationUser);
}
}
await CreateManyAsync(createUsers);
await ReplaceManyAsync(replaceUsers);
}
public async Task CreateManyAsync(IEnumerable<OrganizationUser> organizationUsers)
{
if (!organizationUsers.Any())
{
return;
}
foreach(var organizationUser in organizationUsers)
{
organizationUser.SetNewId();
}
using (var connection = new SqlConnection(ConnectionString))
{
var results = await connection.ExecuteAsync(
$"[{Schema}].[{Table}_CreateMany]",
new { OrganizationUsersInput = organizationUsers.ToTvp() },
commandType: CommandType.StoredProcedure);
}
}
public async Task ReplaceManyAsync(IEnumerable<OrganizationUser> organizationUsers)
{
if (!organizationUsers.Any())
{
return;
}
using (var connection = new SqlConnection(ConnectionString))
{
var results = await connection.ExecuteAsync(
$"[{Schema}].[{Table}_UpdateMany]",
new { OrganizationUsersInput = organizationUsers.ToTvp() },
commandType: CommandType.StoredProcedure);
}
}
} }
} }

4
src/Core/Repositories/TableStorage/EventRepository.cs
View File

@ -62,14 +62,14 @@ namespace Bit.Core.Repositories.TableStorage
await CreateEntityAsync(entity); await CreateEntityAsync(entity);
} }
public async Task CreateManyAsync(IList<IEvent> e) public async Task CreateManyAsync(IEnumerable<IEvent> e)
{ {
if (!e?.Any() ?? true) if (!e?.Any() ?? true)
{ {
return; return;
} }
if (e.Count == 1) if (!e.Skip(1).Any())
{ {
await CreateAsync(e.First()); await CreateAsync(e.First());
return; return;

1
src/Core/Services/IEventService.cs
View File

@ -15,6 +15,7 @@ namespace Bit.Core.Services
Task LogGroupEventAsync(Group group, EventType type, DateTime? date = null); Task LogGroupEventAsync(Group group, EventType type, DateTime? date = null);
Task LogPolicyEventAsync(Policy policy, EventType type, DateTime? date = null); Task LogPolicyEventAsync(Policy policy, EventType type, DateTime? date = null);
Task LogOrganizationUserEventAsync(OrganizationUser organizationUser, EventType type, DateTime? date = null); Task LogOrganizationUserEventAsync(OrganizationUser organizationUser, EventType type, DateTime? date = null);
Task LogOrganizationUserEventsAsync(IEnumerable<(OrganizationUser, EventType, DateTime?)> events);
Task LogOrganizationEventAsync(Organization organization, EventType type, DateTime? date = null); Task LogOrganizationEventAsync(Organization organization, EventType type, DateTime? date = null);
} }
} }

2
src/Core/Services/IEventWriteService.cs
View File

@ -7,6 +7,6 @@ namespace Bit.Core.Services
public interface IEventWriteService public interface IEventWriteService
{ {
Task CreateAsync(IEvent e); Task CreateAsync(IEvent e);
Task CreateManyAsync(IList<IEvent> e); Task CreateManyAsync(IEnumerable<IEvent> e);
} }
} }

13
src/Core/Services/IMailEnqueuingService.cs Normal file
View File

@ -0,0 +1,13 @@
using System;
using System.Collections.Generic;
using System.Threading.Tasks;
using Bit.Core.Models.Mail;
namespace Bit.Core.Services
{
public interface IMailEnqueuingService
{
Task EnqueueAsync(IMailQueueMessage message, Func<IMailQueueMessage, Task> fallback);
Task EnqueueManyAsync(IEnumerable<IMailQueueMessage> messages, Func<IMailQueueMessage, Task> fallback);
}
}

3
src/Core/Services/IMailService.cs
View File

@ -2,6 +2,7 @@
using Bit.Core.Models.Table; using Bit.Core.Models.Table;
using System.Collections.Generic; using System.Collections.Generic;
using System; using System;
using Bit.Core.Models.Mail;
namespace Bit.Core.Services namespace Bit.Core.Services
{ {
@ -16,6 +17,7 @@ namespace Bit.Core.Services
Task SendNoMasterPasswordHintEmailAsync(string email); Task SendNoMasterPasswordHintEmailAsync(string email);
Task SendMasterPasswordHintEmailAsync(string email, string hint); Task SendMasterPasswordHintEmailAsync(string email, string hint);
Task SendOrganizationInviteEmailAsync(string organizationName, OrganizationUser orgUser, string token); Task SendOrganizationInviteEmailAsync(string organizationName, OrganizationUser orgUser, string token);
Task BulkSendOrganizationInviteEmailAsync(string organizationName, IEnumerable<(OrganizationUser orgUser, string token)> invites);
Task SendOrganizationAcceptedEmailAsync(string organizationName, string userEmail, Task SendOrganizationAcceptedEmailAsync(string organizationName, string userEmail,
IEnumerable<string> adminEmails); IEnumerable<string> adminEmails);
Task SendOrganizationConfirmedEmailAsync(string organizationName, string email); Task SendOrganizationConfirmedEmailAsync(string organizationName, string email);
@ -37,5 +39,6 @@ namespace Bit.Core.Services
Task SendEmergencyAccessRecoveryRejected(EmergencyAccess emergencyAccess, string rejectingName, string email); Task SendEmergencyAccessRecoveryRejected(EmergencyAccess emergencyAccess, string rejectingName, string email);
Task SendEmergencyAccessRecoveryReminder(EmergencyAccess emergencyAccess, string initiatingName, string email); Task SendEmergencyAccessRecoveryReminder(EmergencyAccess emergencyAccess, string initiatingName, string email);
Task SendEmergencyAccessRecoveryTimedOut(EmergencyAccess ea, string initiatingName, string email); Task SendEmergencyAccessRecoveryTimedOut(EmergencyAccess ea, string initiatingName, string email);
Task SendEnqueuedMailMessageAsync(IMailQueueMessage queueMessage);
} }
} }

4
src/Core/Services/IPaymentService.cs
View File

@ -9,10 +9,10 @@ namespace Bit.Core.Services
{ {
Task CancelAndRecoverChargesAsync(ISubscriber subscriber); Task CancelAndRecoverChargesAsync(ISubscriber subscriber);
Task<string> PurchaseOrganizationAsync(Organization org, PaymentMethodType paymentMethodType, Task<string> PurchaseOrganizationAsync(Organization org, PaymentMethodType paymentMethodType,
string paymentToken, Models.StaticStore.Plan plan, short additionalStorageGb, short additionalSeats, string paymentToken, Models.StaticStore.Plan plan, short additionalStorageGb, int additionalSeats,
bool premiumAccessAddon, TaxInfo taxInfo); bool premiumAccessAddon, TaxInfo taxInfo);
Task<string> UpgradeFreeOrganizationAsync(Organization org, Models.StaticStore.Plan plan, Task<string> UpgradeFreeOrganizationAsync(Organization org, Models.StaticStore.Plan plan,
short additionalStorageGb, short additionalSeats, bool premiumAccessAddon, TaxInfo taxInfo); short additionalStorageGb, int additionalSeats, bool premiumAccessAddon, TaxInfo taxInfo);
Task<string> PurchasePremiumAsync(User user, PaymentMethodType paymentMethodType, string paymentToken, Task<string> PurchasePremiumAsync(User user, PaymentMethodType paymentMethodType, string paymentToken,
short additionalStorageGb, TaxInfo taxInfo); short additionalStorageGb, TaxInfo taxInfo);
Task<string> AdjustStorageAsync(IStorableSubscriber storableSubscriber, int additionalStorage, string storagePlanId); Task<string> AdjustStorageAsync(IStorableSubscriber storableSubscriber, int additionalStorage, string storagePlanId);

32
src/Core/Services/Implementations/AzureQueueEventWriteService.cs
View File

@ -4,34 +4,16 @@ using Azure.Storage.Queues;
using Newtonsoft.Json; using Newtonsoft.Json;
using Bit.Core.Models.Data; using Bit.Core.Models.Data;
using Bit.Core.Settings; using Bit.Core.Settings;
using System.Linq;
using System.Text;
namespace Bit.Core.Services namespace Bit.Core.Services
{ {
public class AzureQueueEventWriteService : IEventWriteService public class AzureQueueEventWriteService : AzureQueueService<IEvent>, IEventWriteService
{ {
private readonly QueueClient _queueClient; public AzureQueueEventWriteService(GlobalSettings globalSettings) : base(
new QueueClient(globalSettings.Events.ConnectionString, "event"),
private JsonSerializerSettings _jsonSettings = new JsonSerializerSettings new JsonSerializerSettings { NullValueHandling = NullValueHandling.Ignore })
{ { }
NullValueHandling = NullValueHandling.Ignore
};
public AzureQueueEventWriteService(
GlobalSettings globalSettings)
{
_queueClient = new QueueClient(globalSettings.Events.ConnectionString, "event");
}
public async Task CreateAsync(IEvent e)
{
var json = JsonConvert.SerializeObject(e, _jsonSettings);
await _queueClient.SendMessageAsync(json);
}
public async Task CreateManyAsync(IList<IEvent> e)
{
var json = JsonConvert.SerializeObject(e, _jsonSettings);
await _queueClient.SendMessageAsync(json);
}
} }
} }

25
src/Core/Services/Implementations/AzureQueueMailService.cs Normal file
View File

@ -0,0 +1,25 @@
using System;
using System.Collections.Generic;
using System.Linq;
using System.Threading.Tasks;
using Azure.Storage.Queues;
using Bit.Core.Models.Mail;
using Bit.Core.Settings;
using Newtonsoft.Json;
namespace Bit.Core.Services
{
public class AzureQueueMailService : AzureQueueService<IMailQueueMessage>, IMailEnqueuingService
{
public AzureQueueMailService(GlobalSettings globalSettings) : base(
new QueueClient(globalSettings.Mail.ConnectionString, "mail"),
new JsonSerializerSettings { NullValueHandling = NullValueHandling.Ignore })
{ }
public Task EnqueueAsync(IMailQueueMessage message, Func<IMailQueueMessage, Task> fallback) =>
CreateAsync(message);
public Task EnqueueManyAsync(IEnumerable<IMailQueueMessage> messages, Func<IMailQueueMessage, Task> fallback) =>
CreateManyAsync(messages);
}
}

72
src/Core/Services/Implementations/AzureQueueService.cs Normal file
View File

@ -0,0 +1,72 @@
using System.Collections.Generic;
using System.ComponentModel.DataAnnotations.Schema;
using System.Linq;
using System.Threading.Tasks;
using Azure.Storage.Queues;
using IdentityServer4.Extensions;
using Microsoft.EntityFrameworkCore.Internal;
using Newtonsoft.Json;
namespace Bit.Core.Services
{
public abstract class AzureQueueService<T>
{
protected QueueClient _queueClient;
protected JsonSerializerSettings _jsonSettings;
protected AzureQueueService(QueueClient queueClient, JsonSerializerSettings jsonSettings)
{
_queueClient = queueClient;
_jsonSettings = jsonSettings;
}
public async Task CreateAsync(T message)
{
var json = JsonConvert.SerializeObject(message, _jsonSettings);
await _queueClient.SendMessageAsync(json);
}
public async Task CreateManyAsync(IEnumerable<T> messages)
{
if (messages?.Any() != true)
{
return;
}
if (!messages.Skip(1).Any())
{
await CreateAsync(messages.First());
return;
}
foreach (var json in SerializeMany(messages, _jsonSettings))
{
await _queueClient.SendMessageAsync(json);
}
}
protected IEnumerable<string> SerializeMany(IEnumerable<T> messages, JsonSerializerSettings jsonSettings)
{
var messagesLists = new List<List<T>> { new List<T>() };
var strings = new List<string>();
var ListMessageLength = 2; // to account for json array brackets "[]"
foreach (var (message, jsonEvent) in messages.Select(e => (e, JsonConvert.SerializeObject(e, jsonSettings))))
{
var messageLength = jsonEvent.Length + 1; // To account for json array comma
if (ListMessageLength + messageLength > _queueClient.MessageMaxBytes)
{
messagesLists.Add(new List<T> { message });
ListMessageLength = 2 + messageLength;
}
else
{
messagesLists.Last().Add(message);
ListMessageLength += messageLength;
}
}
return messagesLists.Select(l => JsonConvert.SerializeObject(l, jsonSettings));
}
}
}

24
src/Core/Services/Implementations/BlockingMailQueueService.cs Normal file
View File

@ -0,0 +1,24 @@
using System;
using System.Collections;
using System.Collections.Generic;
using System.Threading.Tasks;
using Bit.Core.Models.Mail;
namespace Bit.Core.Services
{
public class BlockingMailEnqueuingService : IMailEnqueuingService
{
public async Task EnqueueAsync(IMailQueueMessage message, Func<IMailQueueMessage, Task> fallback)
{
await fallback(message);
}
public async Task EnqueueManyAsync(IEnumerable<IMailQueueMessage> messages, Func<IMailQueueMessage, Task> fallback)
{
foreach(var message in messages)
{
await fallback(message);
}
}
}
}

33
src/Core/Services/Implementations/EventService.cs
View File

@ -178,24 +178,31 @@ namespace Bit.Core.Services
} }
public async Task LogOrganizationUserEventAsync(OrganizationUser organizationUser, EventType type, public async Task LogOrganizationUserEventAsync(OrganizationUser organizationUser, EventType type,
DateTime? date = null) DateTime? date = null) =>
await LogOrganizationUserEventsAsync(new[] { (organizationUser, type, date) });
public async Task LogOrganizationUserEventsAsync(IEnumerable<(OrganizationUser, EventType, DateTime?)> events)
{ {
var orgAbilities = await _applicationCacheService.GetOrganizationAbilitiesAsync(); var orgAbilities = await _applicationCacheService.GetOrganizationAbilitiesAsync();
if (!CanUseEvents(orgAbilities, organizationUser.OrganizationId)) var eventMessages = new List<IEvent>();
foreach (var (organizationUser, type, date) in events)
{ {
return; if (!CanUseEvents(orgAbilities, organizationUser.OrganizationId))
{
continue;
}
eventMessages.Add(new EventMessage
{
OrganizationId = organizationUser.OrganizationId,
UserId = organizationUser.UserId,
OrganizationUserId = organizationUser.Id,
Type = type,
ActingUserId = _currentContext?.UserId,
Date = date.GetValueOrDefault(DateTime.UtcNow)
});
} }
var e = new EventMessage(_currentContext) await _eventWriteService.CreateManyAsync(eventMessages);
{
OrganizationId = organizationUser.OrganizationId,
UserId = organizationUser.UserId,
OrganizationUserId = organizationUser.Id,
Type = type,
ActingUserId = _currentContext?.UserId,
Date = date.GetValueOrDefault(DateTime.UtcNow)
};
await _eventWriteService.CreateAsync(e);
} }
public async Task LogOrganizationEventAsync(Organization organization, EventType type, DateTime? date = null) public async Task LogOrganizationEventAsync(Organization organization, EventType type, DateTime? date = null)

59
src/Core/Services/Implementations/HandlebarsMailService.cs
View File

@ -19,6 +19,7 @@ namespace Bit.Core.Services
private readonly GlobalSettings _globalSettings; private readonly GlobalSettings _globalSettings;
private readonly IMailDeliveryService _mailDeliveryService; private readonly IMailDeliveryService _mailDeliveryService;
private readonly IMailEnqueuingService _mailEnqueuingService;
private readonly Dictionary<string, Func<object, string>> _templateCache = private readonly Dictionary<string, Func<object, string>> _templateCache =
new Dictionary<string, Func<object, string>>(); new Dictionary<string, Func<object, string>>();
@ -26,10 +27,12 @@ namespace Bit.Core.Services
public HandlebarsMailService( public HandlebarsMailService(
GlobalSettings globalSettings, GlobalSettings globalSettings,
IMailDeliveryService mailDeliveryService) IMailDeliveryService mailDeliveryService,
IMailEnqueuingService mailEnqueuingService)
{ {
_globalSettings = globalSettings; _globalSettings = globalSettings;
_mailDeliveryService = mailDeliveryService; _mailDeliveryService = mailDeliveryService;
_mailEnqueuingService = mailEnqueuingService;
} }
public async Task SendVerifyEmailEmailAsync(string email, Guid userId, string token) public async Task SendVerifyEmailEmailAsync(string email, Guid userId, string token)
@ -168,23 +171,32 @@ namespace Bit.Core.Services
await _mailDeliveryService.SendEmailAsync(message); await _mailDeliveryService.SendEmailAsync(message);
} }
public async Task SendOrganizationInviteEmailAsync(string organizationName, OrganizationUser orgUser, string token) public Task SendOrganizationInviteEmailAsync(string organizationName, OrganizationUser orgUser, string token) =>
BulkSendOrganizationInviteEmailAsync(organizationName, new[] { (orgUser, token) });
public async Task BulkSendOrganizationInviteEmailAsync(string organizationName, IEnumerable<(OrganizationUser orgUser, string token)> invites)
{ {
var message = CreateDefaultMessage($"Join {organizationName}", orgUser.Email); MailQueueMessage CreateMessage(string email, object model)
var model = new OrganizationUserInvitedViewModel
{ {
OrganizationName = CoreHelpers.SanitizeForEmail(organizationName), var message = CreateDefaultMessage($"Join {organizationName}", email);
Email = WebUtility.UrlEncode(orgUser.Email), return new MailQueueMessage(message, "OrganizationUserInvited", model);
OrganizationId = orgUser.OrganizationId.ToString(), }
OrganizationUserId = orgUser.Id.ToString(),
Token = WebUtility.UrlEncode(token), var messageModels = invites.Select(invite => CreateMessage(invite.orgUser.Email,
OrganizationNameUrlEncoded = WebUtility.UrlEncode(organizationName), new OrganizationUserInvitedViewModel
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash, {
SiteName = _globalSettings.SiteName OrganizationName = CoreHelpers.SanitizeForEmail(organizationName),
}; Email = WebUtility.UrlEncode(invite.orgUser.Email),
await AddMessageContentAsync(message, "OrganizationUserInvited", model); OrganizationId = invite.orgUser.OrganizationId.ToString(),
message.Category = "OrganizationUserInvited"; OrganizationUserId = invite.orgUser.Id.ToString(),
await _mailDeliveryService.SendEmailAsync(message); Token = WebUtility.UrlEncode(invite.token),
OrganizationNameUrlEncoded = WebUtility.UrlEncode(organizationName),
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
SiteName = _globalSettings.SiteName,
}
));
await EnqueueMailAsync(messageModels);
} }
public async Task SendOrganizationUserRemovedForPolicyTwoStepEmailAsync(string organizationName, string email) public async Task SendOrganizationUserRemovedForPolicyTwoStepEmailAsync(string organizationName, string email)
@ -341,6 +353,21 @@ namespace Bit.Core.Services
await _mailDeliveryService.SendEmailAsync(message); await _mailDeliveryService.SendEmailAsync(message);
} }
public async Task SendEnqueuedMailMessageAsync(IMailQueueMessage queueMessage)
{
var message = CreateDefaultMessage(queueMessage.Subject, queueMessage.ToEmails);
message.BccEmails = queueMessage.BccEmails;
message.Category = queueMessage.Category;
await AddMessageContentAsync(message, queueMessage.TemplateName, queueMessage.Model);
await _mailDeliveryService.SendEmailAsync(message);
}
private Task EnqueueMailAsync(IMailQueueMessage queueMessage) =>
_mailEnqueuingService.EnqueueAsync(queueMessage, SendEnqueuedMailMessageAsync);
private Task EnqueueMailAsync(IEnumerable<IMailQueueMessage> queueMessages) =>
_mailEnqueuingService.EnqueueManyAsync(queueMessages, SendEnqueuedMailMessageAsync);
private MailMessage CreateDefaultMessage(string subject, string toEmail) private MailMessage CreateDefaultMessage(string subject, string toEmail)
{ {
return CreateDefaultMessage(subject, new List<string> { toEmail }); return CreateDefaultMessage(subject, new List<string> { toEmail });

191
src/Core/Services/Implementations/OrganizationService.cs
View File

@ -443,9 +443,9 @@ namespace Bit.Core.Services
var taxRate = taxRates.FirstOrDefault(); var taxRate = taxRates.FirstOrDefault();
if (taxRate != null && !sub.DefaultTaxRates.Any(x => x.Equals(taxRate.Id))) if (taxRate != null && !sub.DefaultTaxRates.Any(x => x.Equals(taxRate.Id)))
{ {
subUpdateOptions.DefaultTaxRates = new List<string>(1) subUpdateOptions.DefaultTaxRates = new List<string>(1)
{ {
taxRate.Id taxRate.Id
}; };
} }
} }
@ -1011,6 +1011,117 @@ namespace Bit.Core.Services
await UpdateAsync(organization); await UpdateAsync(organization);
} }
private async Task<List<OrganizationUser>> InviteUsersAsync(Guid organizationId, Guid? invitingUserId,
IEnumerable<(OrganizationUserInvite invite, string externalId)> invites)
{
var organization = await GetOrgById(organizationId);
if (organization == null || invites.Any(i => i.invite.Emails == null || i.externalId == null))
{
throw new NotFoundException();
}
var inviteTypes = new HashSet<OrganizationUserType>(invites.Where(i => i.invite.Type.HasValue)
.Select(i => i.invite.Type.Value));
if (invitingUserId.HasValue && inviteTypes.Count > 0)
{
foreach (var type in inviteTypes)
{
await ValidateOrganizationUserUpdatePermissionsAsync(invitingUserId.Value, organizationId, type, null);
}
}
if (organization.Seats.HasValue)
{
var userCount = await _organizationUserRepository.GetCountByOrganizationIdAsync(organizationId);
var availableSeats = organization.Seats.Value - userCount;
if (availableSeats < invites.Select(i => i.invite.Emails.Count()).Sum())
{
throw new BadRequestException("You have reached the maximum number of users " +
$"({organization.Seats.Value}) for this organization.");
}
}
var orgUsers = new List<OrganizationUser>();
var orgUserInvitedCount = 0;
var exceptions = new List<Exception>();
var events = new List<(OrganizationUser, EventType, DateTime?)>();
var existingEmails = new HashSet<string>(await _organizationUserRepository.SelectKnownEmailsAsync(
organizationId, invites.SelectMany(i => i.invite.Emails), false), StringComparer.InvariantCultureIgnoreCase);
foreach (var (invite, externalId) in invites)
{
foreach (var email in invite.Emails)
{
try
{
// Make sure user is not already invited
if (existingEmails.Contains(email))
{
continue;
}
var orgUser = new OrganizationUser
{
OrganizationId = organizationId,
UserId = null,
Email = email.ToLowerInvariant(),
Key = null,
Type = invite.Type.Value,
Status = OrganizationUserStatusType.Invited,
AccessAll = invite.AccessAll,
ExternalId = externalId,
CreationDate = DateTime.UtcNow,
RevisionDate = DateTime.UtcNow,
};
if (invite.Permissions != null)
{
orgUser.Permissions = System.Text.Json.JsonSerializer.Serialize(invite.Permissions, new JsonSerializerOptions
{
PropertyNamingPolicy = JsonNamingPolicy.CamelCase,
});
}
if (!orgUser.AccessAll && invite.Collections.Any())
{
throw new Exception("Bulk invite does not support limited collection invites");
}
events.Add((orgUser, EventType.OrganizationUser_Invited, DateTime.UtcNow));
orgUsers.Add(orgUser);
orgUserInvitedCount++;
}
catch (Exception e)
{
exceptions.Add(e);
}
}
}
try
{
await _organizationUserRepository.CreateManyAsync(orgUsers);
await SendInvitesAsync(orgUsers, organization);
await _eventService.LogOrganizationUserEventsAsync(events);
await _referenceEventService.RaiseEventAsync(
new ReferenceEvent(ReferenceEventType.InvitedUsers, organization)
{
Users = orgUserInvitedCount
});
}
catch (Exception e)
{
exceptions.Add(e);
}
if (exceptions.Any())
{
throw new AggregateException("One or more errors occurred while inviting users.", exceptions);
}
return orgUsers;
}
public async Task<List<OrganizationUser>> InviteUserAsync(Guid organizationId, Guid? invitingUserId, public async Task<List<OrganizationUser>> InviteUserAsync(Guid organizationId, Guid? invitingUserId,
string externalId, OrganizationUserInvite invite) string externalId, OrganizationUserInvite invite)
{ {
@ -1022,7 +1133,7 @@ namespace Bit.Core.Services
if (invitingUserId.HasValue && invite.Type.HasValue) if (invitingUserId.HasValue && invite.Type.HasValue)
{ {
await ValidateOrganizationUserUpdatePermissions(invitingUserId.Value, organizationId, invite.Type.Value, null); await ValidateOrganizationUserUpdatePermissionsAsync(invitingUserId.Value, organizationId, invite.Type.Value, null);
} }
if (organization.Seats.HasValue) if (organization.Seats.HasValue)
@ -1125,6 +1236,14 @@ namespace Bit.Core.Services
await SendInviteAsync(orgUser, org); await SendInviteAsync(orgUser, org);
} }
private async Task SendInvitesAsync(IEnumerable<OrganizationUser> orgUsers, Organization organization)
{
string MakeToken(OrganizationUser orgUser) =>
_dataProtector.Protect($"OrganizationUserInvite {orgUser.Id} {orgUser.Email} {CoreHelpers.ToEpocMilliseconds(DateTime.UtcNow)}");
await _mailService.BulkSendOrganizationInviteEmailAsync(organization.Name,
orgUsers.Select(o => (o, MakeToken(o))));
}
private async Task SendInviteAsync(OrganizationUser orgUser, Organization organization) private async Task SendInviteAsync(OrganizationUser orgUser, Organization organization)
{ {
var nowMillis = CoreHelpers.ToEpocMilliseconds(DateTime.UtcNow); var nowMillis = CoreHelpers.ToEpocMilliseconds(DateTime.UtcNow);
@ -1185,7 +1304,7 @@ namespace Bit.Core.Services
return await AcceptUserAsync(orgUser, user, userService); return await AcceptUserAsync(orgUser, user, userService);
} }
private async Task<OrganizationUser> AcceptUserAsync(OrganizationUser orgUser, User user, private async Task<OrganizationUser> AcceptUserAsync(OrganizationUser orgUser, User user,
IUserService userService) IUserService userService)
{ {
if (orgUser.Status != OrganizationUserStatusType.Invited) if (orgUser.Status != OrganizationUserStatusType.Invited)
@ -1322,13 +1441,14 @@ namespace Bit.Core.Services
} }
var originalUser = await _organizationUserRepository.GetByIdAsync(user.Id); var originalUser = await _organizationUserRepository.GetByIdAsync(user.Id);
if (user.Equals(originalUser)) { if (user.Equals(originalUser))
{
throw new BadRequestException("Please make changes before saving."); throw new BadRequestException("Please make changes before saving.");
} }
if (savingUserId.HasValue) if (savingUserId.HasValue)
{ {
await ValidateOrganizationUserUpdatePermissions(savingUserId.Value, user.OrganizationId, user.Type, originalUser.Type); await ValidateOrganizationUserUpdatePermissionsAsync(savingUserId.Value, user.OrganizationId, user.Type, originalUser.Type);
} }
if (user.Type != OrganizationUserType.Owner && if (user.Type != OrganizationUserType.Owner &&
@ -1459,13 +1579,13 @@ namespace Bit.Core.Services
{ {
if (loggedInUserId.HasValue) if (loggedInUserId.HasValue)
{ {
await ValidateOrganizationUserUpdatePermissions(loggedInUserId.Value, organizationUser.OrganizationId, organizationUser.Type, null); await ValidateOrganizationUserUpdatePermissionsAsync(loggedInUserId.Value, organizationUser.OrganizationId, organizationUser.Type, null);
} }
await _organizationUserRepository.UpdateGroupsAsync(organizationUser.Id, groupIds); await _organizationUserRepository.UpdateGroupsAsync(organizationUser.Id, groupIds);
await _eventService.LogOrganizationUserEventAsync(organizationUser, await _eventService.LogOrganizationUserEventAsync(organizationUser,
EventType.OrganizationUser_UpdatedGroups); EventType.OrganizationUser_UpdatedGroups);
} }
public async Task UpdateUserResetPasswordEnrollmentAsync(Guid organizationId, Guid organizationUserId, string resetPasswordKey, Guid? callingUserId) public async Task UpdateUserResetPasswordEnrollmentAsync(Guid organizationId, Guid organizationUserId, string resetPasswordKey, Guid? callingUserId)
{ {
var orgUser = await _organizationUserRepository.GetByOrganizationAsync(organizationId, organizationUserId); var orgUser = await _organizationUserRepository.GetByOrganizationAsync(organizationId, organizationUserId);
@ -1480,7 +1600,7 @@ namespace Bit.Core.Services
orgUser.ResetPasswordKey = resetPasswordKey; orgUser.ResetPasswordKey = resetPasswordKey;
await _organizationUserRepository.ReplaceAsync(orgUser); await _organizationUserRepository.ReplaceAsync(orgUser);
await _eventService.LogOrganizationUserEventAsync(orgUser, resetPasswordKey != null ? await _eventService.LogOrganizationUserEventAsync(orgUser, resetPasswordKey != null ?
EventType.OrganizationUser_ResetPassword_Enroll : EventType.OrganizationUser_ResetPassword_Withdraw); EventType.OrganizationUser_ResetPassword_Enroll : EventType.OrganizationUser_ResetPassword_Withdraw);
} }
@ -1558,32 +1678,23 @@ namespace Bit.Core.Services
var removeUsersSet = new HashSet<string>(removeUserExternalIds); var removeUsersSet = new HashSet<string>(removeUserExternalIds);
var existingUsersDict = existingExternalUsers.ToDictionary(u => u.ExternalId); var existingUsersDict = existingExternalUsers.ToDictionary(u => u.ExternalId);
var usersToRemove = removeUsersSet await _organizationUserRepository.DeleteManyAsync(removeUsersSet
.Except(newUsersSet) .Except(newUsersSet)
.Where(ru => existingUsersDict.ContainsKey(ru)) .Where(u => existingUsersDict.ContainsKey(u) && existingUsersDict[u].Type != OrganizationUserType.Owner)
.Select(ru => existingUsersDict[ru]); .Select(u => existingUsersDict[u].Id));
foreach (var user in usersToRemove)
{
if (user.Type != OrganizationUserType.Owner)
{
await _organizationUserRepository.DeleteAsync(new OrganizationUser { Id = user.Id });
existingExternalUsersIdDict.Remove(user.ExternalId);
}
}
} }
if (overwriteExisting) if (overwriteExisting)
{ {
// Remove existing external users that are not in new user set // Remove existing external users that are not in new user set
foreach (var user in existingExternalUsers) var usersToDelete = existingExternalUsers.Where(u =>
u.Type != OrganizationUserType.Owner &&
!newUsersSet.Contains(u.ExternalId) &&
existingExternalUsersIdDict.ContainsKey(u.ExternalId));
await _organizationUserRepository.DeleteManyAsync(usersToDelete.Select(u => u.Id));
foreach (var deletedUser in usersToDelete)
{ {
if (user.Type != OrganizationUserType.Owner && !newUsersSet.Contains(user.ExternalId) && existingExternalUsersIdDict.Remove(deletedUser.ExternalId);
existingExternalUsersIdDict.ContainsKey(user.ExternalId))
{
await _organizationUserRepository.DeleteAsync(new OrganizationUser { Id = user.Id });
existingExternalUsersIdDict.Remove(user.ExternalId);
}
} }
} }
@ -1595,6 +1706,7 @@ namespace Bit.Core.Services
.ToDictionary(u => u.Email); .ToDictionary(u => u.Email);
var newUsersEmailsDict = newUsers.ToDictionary(u => u.Email); var newUsersEmailsDict = newUsers.ToDictionary(u => u.Email);
var usersToAttach = existingUsersEmailsDict.Keys.Intersect(newUsersEmailsDict.Keys).ToList(); var usersToAttach = existingUsersEmailsDict.Keys.Intersect(newUsersEmailsDict.Keys).ToList();
var usersToUpsert = new List<OrganizationUser>();
foreach (var user in usersToAttach) foreach (var user in usersToAttach)
{ {
var orgUserDetails = existingUsersEmailsDict[user]; var orgUserDetails = existingUsersEmailsDict[user];
@ -1602,10 +1714,11 @@ namespace Bit.Core.Services
if (orgUser != null) if (orgUser != null)
{ {
orgUser.ExternalId = newUsersEmailsDict[user].ExternalId; orgUser.ExternalId = newUsersEmailsDict[user].ExternalId;
await _organizationUserRepository.UpsertAsync(orgUser); usersToUpsert.Add(orgUser);
existingExternalUsersIdDict.Add(orgUser.ExternalId, orgUser.Id); existingExternalUsersIdDict.Add(orgUser.ExternalId, orgUser.Id);
} }
} }
await _organizationUserRepository.UpsertManyAsync(usersToUpsert);
// Add new users // Add new users
var existingUsersSet = new HashSet<string>(existingExternalUsersIdDict.Keys); var existingUsersSet = new HashSet<string>(existingExternalUsersIdDict.Keys);
@ -1620,11 +1733,12 @@ namespace Bit.Core.Services
enoughSeatsAvailable = seatsAvailable >= usersToAdd.Count; enoughSeatsAvailable = seatsAvailable >= usersToAdd.Count;
} }
if (!enoughSeatsAvailable) if (!enoughSeatsAvailable)
{ {
throw new BadRequestException($"Organization does not have enough seats available. Need {usersToAdd.Count} but {seatsAvailable} available."); throw new BadRequestException($"Organization does not have enough seats available. Need {usersToAdd.Count} but {seatsAvailable} available.");
} }
var userInvites = new List<(OrganizationUserInvite, string)>();
foreach (var user in newUsers) foreach (var user in newUsers)
{ {
if (!usersToAdd.Contains(user.ExternalId) || string.IsNullOrWhiteSpace(user.Email)) if (!usersToAdd.Contains(user.ExternalId) || string.IsNullOrWhiteSpace(user.Email))
@ -1641,9 +1755,7 @@ namespace Bit.Core.Services
AccessAll = false, AccessAll = false,
Collections = new List<SelectionReadOnly>(), Collections = new List<SelectionReadOnly>(),
}; };
var newUser = await InviteUserAsync(organizationId, importingUserId, user.Email, userInvites.Add((invite, user.ExternalId));
OrganizationUserType.User, false, user.ExternalId, new List<SelectionReadOnly>());
existingExternalUsersIdDict.Add(newUser.ExternalId, newUser.Id);
} }
catch (BadRequestException) catch (BadRequestException)
{ {
@ -1651,10 +1763,16 @@ namespace Bit.Core.Services
continue; continue;
} }
} }
var invitedUsers = await InviteUsersAsync(organizationId, importingUserId, userInvites);
foreach (var invitedUser in invitedUsers)
{
existingExternalUsersIdDict.Add(invitedUser.ExternalId, invitedUser.Id);
}
} }
// Groups
// Groups
if (groups?.Any() ?? false) if (groups?.Any() ?? false)
{ {
if (!organization.UseGroups) if (!organization.UseGroups)
@ -1822,7 +1940,8 @@ namespace Bit.Core.Services
} }
} }
private async Task ValidateOrganizationUserUpdatePermissions(Guid loggedInUserId, Guid organizationId, OrganizationUserType newType, OrganizationUserType? oldType) private async Task ValidateOrganizationUserUpdatePermissionsAsync(Guid loggedInUserId, Guid organizationId,
OrganizationUserType newType, OrganizationUserType? oldType)
{ {
var loggedInUserOrgs = await _organizationUserRepository.GetManyByUserAsync(loggedInUserId); var loggedInUserOrgs = await _organizationUserRepository.GetManyByUserAsync(loggedInUserId);
var loggedInAsOrgOwner = loggedInUserOrgs var loggedInAsOrgOwner = loggedInUserOrgs

2
src/Core/Services/Implementations/RepositoryEventWriteService.cs
View File

@ -20,7 +20,7 @@ namespace Bit.Core.Services
await _eventRepository.CreateAsync(e); await _eventRepository.CreateAsync(e);
} }
public async Task CreateManyAsync(IList<IEvent> e) public async Task CreateManyAsync(IEnumerable<IEvent> e)
{ {
await _eventRepository.CreateManyAsync(e); await _eventRepository.CreateManyAsync(e);
} }

4
src/Core/Services/Implementations/StripePaymentService.cs
View File

@ -55,7 +55,7 @@ namespace Bit.Core.Services
public async Task<string> PurchaseOrganizationAsync(Organization org, PaymentMethodType paymentMethodType, public async Task<string> PurchaseOrganizationAsync(Organization org, PaymentMethodType paymentMethodType,
string paymentToken, Models.StaticStore.Plan plan, short additionalStorageGb, string paymentToken, Models.StaticStore.Plan plan, short additionalStorageGb,
short additionalSeats, bool premiumAccessAddon, TaxInfo taxInfo) int additionalSeats, bool premiumAccessAddon, TaxInfo taxInfo)
{ {
var customerService = new CustomerService(); var customerService = new CustomerService();
@ -202,7 +202,7 @@ namespace Bit.Core.Services
} }
public async Task<string> UpgradeFreeOrganizationAsync(Organization org, Models.StaticStore.Plan plan, public async Task<string> UpgradeFreeOrganizationAsync(Organization org, Models.StaticStore.Plan plan,
short additionalStorageGb, short additionalSeats, bool premiumAccessAddon, TaxInfo taxInfo) short additionalStorageGb, int additionalSeats, bool premiumAccessAddon, TaxInfo taxInfo)
{ {
if (!string.IsNullOrWhiteSpace(org.GatewaySubscriptionId)) if (!string.IsNullOrWhiteSpace(org.GatewaySubscriptionId))
{ {

5
src/Core/Services/NoopImplementations/NoopEventService.cs
View File

@ -44,6 +44,11 @@ namespace Bit.Core.Services
return Task.FromResult(0); return Task.FromResult(0);
} }
public Task LogOrganizationUserEventsAsync(IEnumerable<(OrganizationUser, EventType, DateTime?)> events)
{
return Task.FromResult(0);
}
public Task LogUserEventAsync(Guid userId, EventType type, DateTime? date = null) public Task LogUserEventAsync(Guid userId, EventType type, DateTime? date = null)
{ {
return Task.FromResult(0); return Task.FromResult(0);

2
src/Core/Services/NoopImplementations/NoopEventWriteService.cs
View File

@ -11,7 +11,7 @@ namespace Bit.Core.Services
return Task.FromResult(0); return Task.FromResult(0);
} }
public Task CreateManyAsync(IList<IEvent> e) public Task CreateManyAsync(IEnumerable<IEvent> e)
{ {
return Task.FromResult(0); return Task.FromResult(0);
} }

11
src/Core/Services/NoopImplementations/NoopMailService.cs
View File

@ -1,6 +1,7 @@
using System; using System;
using System.Collections.Generic; using System.Collections.Generic;
using System.Threading.Tasks; using System.Threading.Tasks;
using Bit.Core.Models.Mail;
using Bit.Core.Models.Table; using Bit.Core.Models.Table;
namespace Bit.Core.Services namespace Bit.Core.Services
@ -47,6 +48,11 @@ namespace Bit.Core.Services
return Task.FromResult(0); return Task.FromResult(0);
} }
public Task BulkSendOrganizationInviteEmailAsync(string organizationName, IEnumerable<(OrganizationUser orgUser, string token)> invites)
{
return Task.FromResult(0);
}
public Task SendOrganizationUserRemovedForPolicyTwoStepEmailAsync(string organizationName, string email) public Task SendOrganizationUserRemovedForPolicyTwoStepEmailAsync(string organizationName, string email)
{ {
return Task.FromResult(0); return Task.FromResult(0);
@ -147,5 +153,10 @@ namespace Bit.Core.Services
{ {
return Task.FromResult(0); return Task.FromResult(0);
} }
public Task SendEnqueuedMailMessageAsync(IMailQueueMessage queueMessage)
{
return Task.FromResult(0);
}
} }
} }

13
src/Core/Settings/GlobalSettings.cs
View File

@ -272,6 +272,19 @@ namespace Bit.Core.Settings
public class MailSettings public class MailSettings
{ {
private ConnectionStringSettings _connectionStringSettings;
public string ConnectionString
{
get => _connectionStringSettings?.ConnectionString;
set
{
if (_connectionStringSettings == null)
{
_connectionStringSettings = new ConnectionStringSettings();
}
_connectionStringSettings.ConnectionString = value;
}
}
public string ReplyToEmail { get; set; } public string ReplyToEmail { get; set; }
public string AmazonConfigSetName { get; set; } public string AmazonConfigSetName { get; set; }
public SmtpSettings Smtp { get; set; } = new SmtpSettings(); public SmtpSettings Smtp { get; set; } = new SmtpSettings();

49
src/Core/Utilities/CoreHelpers.cs
View File

@ -148,6 +148,55 @@ namespace Bit.Core.Utilities
return table; return table;
} }
public static DataTable ToTvp(this IEnumerable<OrganizationUser> orgUsers)
{
var table = new DataTable();
table.SetTypeName("[dbo].[OrganizationUserType]");
var columnData = new List<(string name, Type type, Func<OrganizationUser, object> getter)>
{
(nameof(OrganizationUser.Id), typeof(Guid), ou => ou.Id),
(nameof(OrganizationUser.OrganizationId), typeof(Guid), ou => ou.OrganizationId),
(nameof(OrganizationUser.UserId), typeof(Guid), ou => ou.UserId),
(nameof(OrganizationUser.Email), typeof(string), ou => ou.Email),
(nameof(OrganizationUser.Key), typeof(string), ou => ou.Key),
(nameof(OrganizationUser.Status), typeof(byte), ou => ou.Status),
(nameof(OrganizationUser.Type), typeof(byte), ou => ou.Type),
(nameof(OrganizationUser.AccessAll), typeof(bool), ou => ou.AccessAll),
(nameof(OrganizationUser.ExternalId), typeof(string), ou => ou.ExternalId),
(nameof(OrganizationUser.CreationDate), typeof(DateTime), ou => ou.CreationDate),
(nameof(OrganizationUser.RevisionDate), typeof(DateTime), ou => ou.RevisionDate),
(nameof(OrganizationUser.Permissions), typeof(string), ou => ou.Permissions),
(nameof(OrganizationUser.ResetPasswordKey), typeof(Guid), ou => ou.UserId),
};
foreach (var (name, type, getter) in columnData)
{
var column = new DataColumn(name, type);
table.Columns.Add(column);
}
foreach (var orgUser in orgUsers ?? new OrganizationUser[] { })
{
var row = table.NewRow();
foreach (var (name, type, getter) in columnData)
{
var val = getter(orgUser);
if (val == null)
{
row[name] = DBNull.Value;
}
else
{
row[name] = val;
}
}
table.Rows.Add(row);
}
return table;
}
public static string CleanCertificateThumbprint(string thumbprint) public static string CleanCertificateThumbprint(string thumbprint)
{ {
// Clean possible garbage characters from thumbprint copy/paste // Clean possible garbage characters from thumbprint copy/paste

9
src/Core/Utilities/ServiceCollectionExtensions.cs
View File

@ -192,6 +192,15 @@ namespace Bit.Core.Utilities
services.AddSingleton<IBlockIpService, NoopBlockIpService>(); services.AddSingleton<IBlockIpService, NoopBlockIpService>();
} }
if (!globalSettings.SelfHosted && CoreHelpers.SettingHasValue(globalSettings.Mail.ConnectionString))
{
services.AddSingleton<IMailEnqueuingService, AzureQueueMailService>();
}
else
{
services.AddSingleton<IMailEnqueuingService, BlockingMailEnqueuingService>();
}
if (!globalSettings.SelfHosted && CoreHelpers.SettingHasValue(globalSettings.Events.ConnectionString)) if (!globalSettings.SelfHosted && CoreHelpers.SettingHasValue(globalSettings.Events.ConnectionString))
{ {
services.AddSingleton<IEventWriteService, AzureQueueEventWriteService>(); services.AddSingleton<IEventWriteService, AzureQueueEventWriteService>();

10
src/Sql/Sql.sqlproj
View File

@ -108,8 +108,10 @@
<Build Include="dbo\Stored Procedures\Organization_ReadByUserId.sql" /> <Build Include="dbo\Stored Procedures\Organization_ReadByUserId.sql" />
<Build Include="dbo\Stored Procedures\Organization_Update.sql" /> <Build Include="dbo\Stored Procedures\Organization_Update.sql" />
<Build Include="dbo\Stored Procedures\OrganizationUser_Create.sql" /> <Build Include="dbo\Stored Procedures\OrganizationUser_Create.sql" />
<Build Include="dbo\Stored Procedures\OrganizationUser_CreateMany.sql" />
<Build Include="dbo\Stored Procedures\Grant_DeleteByKey.sql" /> <Build Include="dbo\Stored Procedures\Grant_DeleteByKey.sql" />
<Build Include="dbo\Stored Procedures\OrganizationUser_DeleteById.sql" /> <Build Include="dbo\Stored Procedures\OrganizationUser_DeleteById.sql" />
<Build Include="dbo\Stored Procedures\OrganizationUser_DeleteByIds.sql" />
<Build Include="dbo\Stored Procedures\Grant_Delete.sql" /> <Build Include="dbo\Stored Procedures\Grant_Delete.sql" />
<Build Include="dbo\Stored Procedures\OrganizationUser_ReadById.sql" /> <Build Include="dbo\Stored Procedures\OrganizationUser_ReadById.sql" />
<Build Include="dbo\Stored Procedures\OrganizationUser_ReadByIds.sql" /> <Build Include="dbo\Stored Procedures\OrganizationUser_ReadByIds.sql" />
@ -123,12 +125,16 @@
<Build Include="dbo\Stored Procedures\User_ReadAccountRevisionDateById.sql" /> <Build Include="dbo\Stored Procedures\User_ReadAccountRevisionDateById.sql" />
<Build Include="dbo\Stored Procedures\OrganizationUser_ReadCountByOrganizationId.sql" /> <Build Include="dbo\Stored Procedures\OrganizationUser_ReadCountByOrganizationId.sql" />
<Build Include="dbo\Stored Procedures\OrganizationUser_ReadCountByOnlyOwner.sql" /> <Build Include="dbo\Stored Procedures\OrganizationUser_ReadCountByOnlyOwner.sql" />
<Build Include="dbo\Stored Procedures\OrganizationUser_SelectKnownEmails.sql" />
<Build Include="dbo\Stored Procedures\OrganizationUser_Update.sql" /> <Build Include="dbo\Stored Procedures\OrganizationUser_Update.sql" />
<Build Include="dbo\Stored Procedures\OrganizationUser_UpdateMany.sql" />
<Build Include="dbo\Stored Procedures\OrganizationUserOrganizationDetails_ReadByUserIdStatus.sql" /> <Build Include="dbo\Stored Procedures\OrganizationUserOrganizationDetails_ReadByUserIdStatus.sql" />
<Build Include="dbo\Stored Procedures\OrganizationUserUserDetails_ReadByOrganizationId.sql" /> <Build Include="dbo\Stored Procedures\OrganizationUserUserDetails_ReadByOrganizationId.sql" />
<Build Include="dbo\Stored Procedures\User_BumpAccountRevisionDate.sql" /> <Build Include="dbo\Stored Procedures\User_BumpAccountRevisionDate.sql" />
<Build Include="dbo\Stored Procedures\User_BumpManyAccountRevisionDates.sql" />
<Build Include="dbo\Stored Procedures\User_BumpAccountRevisionDateByOrganizationId.sql" /> <Build Include="dbo\Stored Procedures\User_BumpAccountRevisionDateByOrganizationId.sql" />
<Build Include="dbo\Stored Procedures\User_BumpAccountRevisionDateByOrganizationUserId.sql" /> <Build Include="dbo\Stored Procedures\User_BumpAccountRevisionDateByOrganizationUserId.sql" />
<Build Include="dbo\Stored Procedures\User_BumpAccountRevisionDateByOrganizationUserIds.sql" />
<Build Include="dbo\Stored Procedures\Cipher_Delete.sql" /> <Build Include="dbo\Stored Procedures\Cipher_Delete.sql" />
<Build Include="dbo\Stored Procedures\User_ReadPublicKeyById.sql" /> <Build Include="dbo\Stored Procedures\User_ReadPublicKeyById.sql" />
<Build Include="dbo\Stored Procedures\Cipher_Move.sql" /> <Build Include="dbo\Stored Procedures\Cipher_Move.sql" />
@ -202,7 +208,10 @@
<Build Include="dbo\Stored Procedures\Folder_ReadById.sql" /> <Build Include="dbo\Stored Procedures\Folder_ReadById.sql" />
<Build Include="dbo\Stored Procedures\Folder_ReadByUserId.sql" /> <Build Include="dbo\Stored Procedures\Folder_ReadByUserId.sql" />
<Build Include="dbo\Stored Procedures\Organization_Create.sql" /> <Build Include="dbo\Stored Procedures\Organization_Create.sql" />
<Build Include="dbo\User Defined Types\EmailArray.sql" />
<Build Include="dbo\User Defined Types\GuidIdArray.sql" /> <Build Include="dbo\User Defined Types\GuidIdArray.sql" />
<Build Include="dbo\User Defined Types\OrganizationUserType.sql" />
<Build Include="dbo\User Defined Types\TwoGuidIdArray.sql" />
<Build Include="dbo\User Defined Types\SelectionReadOnlyArray.sql" /> <Build Include="dbo\User Defined Types\SelectionReadOnlyArray.sql" />
<Build Include="dbo\Stored Procedures\Cipher_UpdateAttachment.sql" /> <Build Include="dbo\Stored Procedures\Cipher_UpdateAttachment.sql" />
<Build Include="dbo\Stored Procedures\Organization_UpdateStorage.sql" /> <Build Include="dbo\Stored Procedures\Organization_UpdateStorage.sql" />
@ -272,6 +281,7 @@
<Build Include="dbo\Stored Procedures\Cipher_SoftDelete.sql" /> <Build Include="dbo\Stored Procedures\Cipher_SoftDelete.sql" />
<Build Include="dbo\Tables\SsoUser.sql" /> <Build Include="dbo\Tables\SsoUser.sql" />
<Build Include="dbo\Stored Procedures\SsoUser_Delete.sql" /> <Build Include="dbo\Stored Procedures\SsoUser_Delete.sql" />
<Build Include="dbo\Stored Procedures\SsoUser_DeleteMany.sql" />
<Build Include="dbo\Stored Procedures\SsoUser_Create.sql" /> <Build Include="dbo\Stored Procedures\SsoUser_Create.sql" />
<Build Include="dbo\Stored Procedures\User_ReadBySsoUserOrganizationIdExternalId.sql" /> <Build Include="dbo\Stored Procedures\User_ReadBySsoUserOrganizationIdExternalId.sql" />
<Build Include="dbo\Stored Procedures\SsoUser_Update.sql" /> <Build Include="dbo\Stored Procedures\SsoUser_Update.sql" />

40
src/Sql/dbo/Stored Procedures/OrganizationUser_CreateMany.sql Normal file
View File

@ -0,0 +1,40 @@
CREATE PROCEDURE [dbo].[OrganizationUser_CreateMany]
@OrganizationUsersInput [dbo].[OrganizationUserType] READONLY
AS
BEGIN
SET NOCOUNT ON
INSERT INTO [dbo].[OrganizationUser]
(
[Id],
[OrganizationId],
[UserId],
[Email],
[Key],
[Status],
[Type],
[AccessAll],
[ExternalId],
[CreationDate],
[RevisionDate],
[Permissions],
[ResetPasswordKey]
)
SELECT
OU.[Id],
OU.[OrganizationId],
OU.[UserId],
OU.[Email],
OU.[Key],
OU.[Status],
OU.[Type],
OU.[AccessAll],
OU.[ExternalId],
OU.[CreationDate],
OU.[RevisionDate],
OU.[Permissions],
OU.[ResetPasswordKey]
FROM
@OrganizationUsersInput OU
END
GO

83
src/Sql/dbo/Stored Procedures/OrganizationUser_DeleteByIds.sql Normal file
View File

@ -0,0 +1,83 @@
CREATE PROCEDURE [dbo].[OrganizationUser_DeleteByIds]
@Ids [dbo].[GuidIdArray] READONLY
AS
BEGIN
SET NOCOUNT ON
EXEC [dbo].[User_BumpAccountRevisionDateByOrganizationUserIds] @Ids
DECLARE @UserAndOrganizationIds [dbo].[TwoGuidIdArray]
INSERT INTO @UserAndOrganizationIds
(Id1, Id2)
SELECT
UserId,
OrganizationId
FROM
[dbo].[OrganizationUser] OU
INNER JOIN
@Ids OUIds ON OUIds.Id = OU.Id
WHERE
UserId IS NOT NULL AND
OrganizationId IS NOT NULL
BEGIN
EXEC [dbo].[SsoUser_DeleteMany] @UserAndOrganizationIds
END
DECLARE @BatchSize INT = 100
-- Delete CollectionUsers
WHILE @BatchSize > 0
BEGIN
BEGIN TRANSACTION CollectionUser_DeleteMany_CollectionUsers
DELETE TOP(@BatchSize) CU
FROM
[dbo].[CollectionUser] CU
INNER JOIN
@Ids I ON I.Id = CU.OrganizationUserId
SET @BatchSize = @@ROWCOUNT
COMMIT TRANSACTION CollectionUser_DeleteMany_CollectionUsers
END
SET @BatchSize = 100;
-- Delete GroupUsers
WHILE @BatchSize > 0
BEGIN
BEGIN TRANSACTION GroupUser_DeleteMany_GroupUsers
DELETE TOP(@BatchSize) GU
FROM
[dbo].[GroupUser] GU
INNER JOIN
@Ids I ON I.Id = GU.OrganizationUserId
SET @BatchSize = @@ROWCOUNT
COMMIT TRANSACTION GoupUser_DeleteMany_GroupUsers
END
SET @BatchSize = 100;
-- Delete OrganizationUsers
WHILE @BatchSize > 0
BEGIN
BEGIN TRANSACTION OrganizationUser_DeleteMany_OrganizationUsers
DELETE TOP(@BatchSize) OU
FROM
[dbo].[OrganizationUser] OU
INNER JOIN
@Ids I ON I.Id = OU.Id
SET @BatchSize = @@ROWCOUNT
COMMIT TRANSACTION OrganizationUser_DeleteMany_OrganizationUsers
END
END
GO

30
src/Sql/dbo/Stored Procedures/OrganizationUser_SelectKnownEmails.sql Normal file
View File

@ -0,0 +1,30 @@
CREATE PROCEDURE [dbo].[OrganizationUser_SelectKnownEmails]
@OrganizationId UNIQUEIDENTIFIER,
@Emails [dbo].[EmailArray] READONLY,
@OnlyUsers BIT
AS
BEGIN
SET NOCOUNT ON
SELECT
E.Email
FROM
@Emails E
INNER JOIN
(
SELECT
U.[Email] as 'UEmail',
OU.[Email] as 'OUEmail',
OU.OrganizationId
FROM
[dbo].[User] U
RIGHT JOIN
[dbo].[OrganizationUser] OU ON OU.[UserId] = U.[Id]
WHERE
OU.OrganizationId = @OrganizationId
) OUU ON OUU.[UEmail] = E.[Email] OR OUU.[OUEmail] = E.[Email]
WHERE
(@OnlyUsers = 0 AND (OUU.UEmail IS NOT NULL OR OUU.OUEmail IS NOT NULL)) OR
(@OnlyUsers = 1 AND (OUU.UEmail IS NOT NULL))
END

33
src/Sql/dbo/Stored Procedures/OrganizationUser_UpdateMany.sql Normal file
View File

@ -0,0 +1,33 @@
CREATE PROCEDURE [dbo].[OrganizationUser_UpdateMany]
@OrganizationUsersInput [dbo].[OrganizationUserType] READONLY
AS
BEGIN
SET NOCOUNT ON
UPDATE
OU
SET
[OrganizationId] = OUI.[OrganizationId],
[UserId] = OUI.[UserId],
[Email] = OUI.[Email],
[Key] = OUI.[Key],
[Status] = OUI.[Status],
[Type] = OUI.[Type],
[AccessAll] = OUI.[AccessAll],
[ExternalId] = OUI.[ExternalId],
[CreationDate] = OUI.[CreationDate],
[RevisionDate] = OUI.[RevisionDate],
[Permissions] = OUI.[Permissions],
[ResetPasswordKey] = OUI.[ResetPasswordKey]
FROM
[dbo].[OrganizationUser] OU
INNER JOIN
@OrganizationUsersInput OUI ON OU.Id = OUI.Id
EXEC [dbo].[User_BumpManyAccountRevisionDates]
(
SELECT UserId
FROM @OrganizationUsersInput
)
END
GO

2
src/Sql/dbo/Stored Procedures/Organization_Create.sql
View File

@ -11,7 +11,7 @@
@BillingEmail NVARCHAR(256), @BillingEmail NVARCHAR(256),
@Plan NVARCHAR(50), @Plan NVARCHAR(50),
@PlanType TINYINT, @PlanType TINYINT,
@Seats SMALLINT, @Seats INT,
@MaxCollections SMALLINT, @MaxCollections SMALLINT,
@UsePolicies BIT, @UsePolicies BIT,
@UseSso BIT, @UseSso BIT,

2
src/Sql/dbo/Stored Procedures/Organization_Update.sql
View File

@ -11,7 +11,7 @@
@BillingEmail NVARCHAR(256), @BillingEmail NVARCHAR(256),
@Plan NVARCHAR(50), @Plan NVARCHAR(50),
@PlanType TINYINT, @PlanType TINYINT,
@Seats SMALLINT, @Seats INT,
@MaxCollections SMALLINT, @MaxCollections SMALLINT,
@UsePolicies BIT, @UsePolicies BIT,
@UseSso BIT, @UseSso BIT,

34
src/Sql/dbo/Stored Procedures/SsoUser_DeleteMany.sql Normal file
View File

@ -0,0 +1,34 @@
CREATE PROCEDURE [dbo].[SsoUser_DeleteMany]
@UserAndOrganizationIds [dbo].[TwoGuidIdArray] READONLY
AS
BEGIN
SET NOCOUNT ON
SELECT
Id
INTO
#SSOIds
FROM
[dbo].[SsoUser] SU
INNER JOIN
@UserAndOrganizationIds UOI ON UOI.Id1 = SU.UserId AND UOI.Id2 = SU.OrganizationId
DECLARE @BatchSize INT = 100
-- Delete SSO Users
WHILE @BatchSize > 0
BEGIN
BEGIN TRANSACTION SsoUser_DeleteMany_SsoUsers
DELETE TOP(@BatchSize) SU
FROM
[dbo].[SsoUser] SU
INNER JOIN
#SSOIds ON #SSOIds.Id = SU.Id
SET @BatchSize = @@ROWCOUNT
COMMIT TRANSACTION SsoUser_DeleteMany_SsoUsers
END
END
GO

18
src/Sql/dbo/Stored Procedures/User_BumpAccountRevisionDateByOrganizationUserIds.sql Normal file
View File

@ -0,0 +1,18 @@
CREATE PROCEDURE [dbo].[User_BumpAccountRevisionDateByOrganizationUserIds]
@OrganizationUserIds [dbo].[GuidIdArray] READONLY
AS
BEGIN
SET NOCOUNT ON
UPDATE
U
SET
U.[AccountRevisionDate] = GETUTCDATE()
FROM
@OrganizationUserIds OUIDs
INNER JOIN
[dbo].[OrganizationUser] OU ON OUIDs.Id = OU.Id AND OU.[Status] = 2 -- Confirmed
INNER JOIN
[dbo].[User] U ON OU.UserId = U.Id
END
GO

16
src/Sql/dbo/Stored Procedures/User_BumpManyAccountRevisionDates.sql Normal file
View File

@ -0,0 +1,16 @@
CREATE PROCEDURE [dbo].[User_BumpManyAccountRevisionDates]
@Ids [dbo].[GuidIdArray] READONLY
AS
BEGIN
SET NOCOUNT ON
UPDATE
U
SET
[AccountRevisionDate] = GETUTCDATE()
FROM
[dbo].[User] U
INNER JOIN
@Ids IDs ON IDs.Id = U.Id
END
GO

2
src/Sql/dbo/Tables/Organization.sql
View File

@ -11,7 +11,7 @@
[BillingEmail] NVARCHAR (256) NOT NULL, [BillingEmail] NVARCHAR (256) NOT NULL,
[Plan] NVARCHAR (50) NOT NULL, [Plan] NVARCHAR (50) NOT NULL,
[PlanType] TINYINT NOT NULL, [PlanType] TINYINT NOT NULL,
[Seats] SMALLINT NULL, [Seats] INT NULL,
[MaxCollections] SMALLINT NULL, [MaxCollections] SMALLINT NULL,
[UsePolicies] BIT NOT NULL, [UsePolicies] BIT NOT NULL,
[UseSso] BIT NOT NULL, [UseSso] BIT NOT NULL,

3
src/Sql/dbo/User Defined Types/EmailArray.sql Normal file
View File

@ -0,0 +1,3 @@
CREATE TYPE [dbo].[EmailArray] AS TABLE (
[Email] NVARCHAR(256) NOT NULL);
GO

15
src/Sql/dbo/User Defined Types/OrganizationUserType.sql Normal file
View File

@ -0,0 +1,15 @@
CREATE TYPE [dbo].[OrganizationUserType] AS TABLE(
[Id] UNIQUEIDENTIFIER,
[OrganizationId] UNIQUEIDENTIFIER,
[UserId] UNIQUEIDENTIFIER,
[Email] NVARCHAR(256),
[Key] VARCHAR(MAX),
[Status] TINYINT,
[Type] TINYINT,
[AccessAll] BIT,
[ExternalId] NVARCHAR(300),
[CreationDate] DATETIME2(7),
[RevisionDate] DATETIME2(7),
[Permissions] NVARCHAR(MAX),
[ResetPasswordKey] VARCHAR(MAX)
)

4
src/Sql/dbo/User Defined Types/TwoGuidIdArray.sql Normal file
View File

@ -0,0 +1,4 @@
CREATE TYPE [dbo].[TwoGuidIdArray] AS TABLE (
[Id1] UNIQUEIDENTIFIER NOT NULL,
[Id2] UNIQUEIDENTIFIER NOT NULL);
GO

5
test/Core.Test/Services/HandlebarsMailServiceTests.cs
View File

@ -12,15 +12,18 @@ namespace Bit.Core.Test.Services
private readonly GlobalSettings _globalSettings; private readonly GlobalSettings _globalSettings;
private readonly IMailDeliveryService _mailDeliveryService; private readonly IMailDeliveryService _mailDeliveryService;
private readonly IMailEnqueuingService _mailEnqueuingService;
public HandlebarsMailServiceTests() public HandlebarsMailServiceTests()
{ {
_globalSettings = new GlobalSettings(); _globalSettings = new GlobalSettings();
_mailDeliveryService = Substitute.For<IMailDeliveryService>(); _mailDeliveryService = Substitute.For<IMailDeliveryService>();
_mailEnqueuingService = Substitute.For<IMailEnqueuingService>();
_sut = new HandlebarsMailService( _sut = new HandlebarsMailService(
_globalSettings, _globalSettings,
_mailDeliveryService _mailDeliveryService,
_mailEnqueuingService
); );
} }

198
test/Core.Test/Services/OrganizationServiceTests.cs
View File

@ -7,7 +7,6 @@ using Bit.Core.Models.Table;
using Bit.Core.Models.Business; using Bit.Core.Models.Business;
using Bit.Core.Repositories; using Bit.Core.Repositories;
using Bit.Core.Services; using Bit.Core.Services;
using Microsoft.AspNetCore.DataProtection;
using NSubstitute; using NSubstitute;
using Xunit; using Xunit;
using Bit.Core.Test.AutoFixture; using Bit.Core.Test.AutoFixture;
@ -17,135 +16,108 @@ using Bit.Core.Test.AutoFixture.Attributes;
using Bit.Core.Test.AutoFixture.OrganizationFixtures; using Bit.Core.Test.AutoFixture.OrganizationFixtures;
using System.Text.Json; using System.Text.Json;
using Organization = Bit.Core.Models.Table.Organization; using Organization = Bit.Core.Models.Table.Organization;
using System.Linq;
namespace Bit.Core.Test.Services namespace Bit.Core.Test.Services
{ {
public class OrganizationServiceTests public class OrganizationServiceTests
{ {
[Fact] // [Fact]
public async Task OrgImportCreateNewUsers() [Theory, PaidOrganizationAutoData]
public async Task OrgImportCreateNewUsers(SutProvider<OrganizationService> sutProvider, Guid userId,
Organization org, List<OrganizationUserUserDetails> existingUsers, List<ImportedOrganizationUser> newUsers)
{ {
var orgRepo = Substitute.For<IOrganizationRepository>(); org.UseDirectory = true;
var orgUserRepo = Substitute.For<IOrganizationUserRepository>(); newUsers.Add(new ImportedOrganizationUser
var collectionRepo = Substitute.For<ICollectionRepository>();
var userRepo = Substitute.For<IUserRepository>();
var groupRepo = Substitute.For<IGroupRepository>();
var dataProtector = Substitute.For<IDataProtector>();
var mailService = Substitute.For<IMailService>();
var pushNotService = Substitute.For<IPushNotificationService>();
var pushRegService = Substitute.For<IPushRegistrationService>();
var deviceRepo = Substitute.For<IDeviceRepository>();
var licenseService = Substitute.For<ILicensingService>();
var eventService = Substitute.For<IEventService>();
var installationRepo = Substitute.For<IInstallationRepository>();
var appCacheService = Substitute.For<IApplicationCacheService>();
var paymentService = Substitute.For<IPaymentService>();
var policyRepo = Substitute.For<IPolicyRepository>();
var ssoConfigRepo = Substitute.For<ISsoConfigRepository>();
var ssoUserRepo = Substitute.For<ISsoUserRepository>();
var referenceEventService = Substitute.For<IReferenceEventService>();
var globalSettings = Substitute.For<Settings.GlobalSettings>();
var taxRateRepository = Substitute.For<ITaxRateRepository>();
var orgService = new OrganizationService(orgRepo, orgUserRepo, collectionRepo, userRepo,
groupRepo, dataProtector, mailService, pushNotService, pushRegService, deviceRepo,
licenseService, eventService, installationRepo, appCacheService, paymentService, policyRepo,
ssoConfigRepo, ssoUserRepo, referenceEventService, globalSettings, taxRateRepository);
var id = Guid.NewGuid();
var userId = Guid.NewGuid();
var org = new Organization
{ {
Id = id, Email = existingUsers.First().Email,
Name = "Test Org", ExternalId = existingUsers.First().ExternalId
UseDirectory = true,
UseGroups = true,
Seats = 3
};
orgRepo.GetByIdAsync(id).Returns(org);
var existingUsers = new List<OrganizationUserUserDetails>();
existingUsers.Add(new OrganizationUserUserDetails
{
Id = Guid.NewGuid(),
ExternalId = "a",
Email = "a@test.com"
}); });
orgUserRepo.GetManyDetailsByOrganizationAsync(id).Returns(existingUsers); var expectedNewUsersCount = newUsers.Count - 1;
orgUserRepo.GetCountByOrganizationIdAsync(id).Returns(1);
var newUsers = new List<ImportedOrganizationUser>(); sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(org.Id).Returns(org);
newUsers.Add(new ImportedOrganizationUser { Email = "a@test.com", ExternalId = "a" }); sutProvider.GetDependency<IOrganizationUserRepository>().GetManyDetailsByOrganizationAsync(org.Id)
newUsers.Add(new ImportedOrganizationUser { Email = "b@test.com", ExternalId = "b" }); .Returns(existingUsers);
newUsers.Add(new ImportedOrganizationUser { Email = "c@test.com", ExternalId = "c" }); sutProvider.GetDependency<IOrganizationUserRepository>().GetCountByOrganizationIdAsync(org.Id)
await orgService.ImportAsync(id, userId, null, newUsers, null, false); .Returns(existingUsers.Count);
await orgUserRepo.DidNotReceive().UpsertAsync(Arg.Any<OrganizationUser>()); await sutProvider.Sut.ImportAsync(org.Id, userId, null, newUsers, null, false);
await orgUserRepo.Received(2).CreateAsync(Arg.Any<OrganizationUser>());
await sutProvider.GetDependency<IOrganizationUserRepository>().DidNotReceiveWithAnyArgs()
.UpsertAsync(default);
await sutProvider.GetDependency<IOrganizationUserRepository>().Received(1)
.UpsertManyAsync(Arg.Is<IEnumerable<OrganizationUser>>(users => users.Count() == 0));
await sutProvider.GetDependency<IOrganizationUserRepository>().DidNotReceiveWithAnyArgs()
.CreateAsync(default);
// Create new users
await sutProvider.GetDependency<IOrganizationUserRepository>().Received(1)
.CreateManyAsync(Arg.Is<IEnumerable<OrganizationUser>>(users => users.Count() == expectedNewUsersCount));
await sutProvider.GetDependency<IMailService>().Received(1)
.BulkSendOrganizationInviteEmailAsync(org.Name,
Arg.Is<IEnumerable<(OrganizationUser, string)>>(messages => messages.Count() == expectedNewUsersCount));
// Send events
await sutProvider.GetDependency<IEventService>().Received(1)
.LogOrganizationUserEventsAsync(Arg.Is<IEnumerable<(OrganizationUser, EventType, DateTime?)>>(events =>
events.Count() == expectedNewUsersCount));
await sutProvider.GetDependency<IReferenceEventService>().Received(1)
.RaiseEventAsync(Arg.Is<ReferenceEvent>(referenceEvent =>
referenceEvent.Type == ReferenceEventType.InvitedUsers && referenceEvent.Id == org.Id &&
referenceEvent.Users == expectedNewUsersCount));
} }
[Fact] [Theory, PaidOrganizationAutoData]
public async Task OrgImportCreateNewUsersAndMarryExistingUser() public async Task OrgImportCreateNewUsersAndMarryExistingUser(SutProvider<OrganizationService> sutProvider,
Guid userId, Organization org, List<OrganizationUserUserDetails> existingUsers,
List<ImportedOrganizationUser> newUsers)
{ {
var orgRepo = Substitute.For<IOrganizationRepository>(); org.UseDirectory = true;
var orgUserRepo = Substitute.For<IOrganizationUserRepository>(); var reInvitedUser = existingUsers.First();
var collectionRepo = Substitute.For<ICollectionRepository>(); reInvitedUser.ExternalId = null;
var userRepo = Substitute.For<IUserRepository>(); newUsers.Add(new ImportedOrganizationUser
var groupRepo = Substitute.For<IGroupRepository>();
var dataProtector = Substitute.For<IDataProtector>();
var mailService = Substitute.For<IMailService>();
var pushNotService = Substitute.For<IPushNotificationService>();
var pushRegService = Substitute.For<IPushRegistrationService>();
var deviceRepo = Substitute.For<IDeviceRepository>();
var licenseService = Substitute.For<ILicensingService>();
var eventService = Substitute.For<IEventService>();
var installationRepo = Substitute.For<IInstallationRepository>();
var appCacheService = Substitute.For<IApplicationCacheService>();
var paymentService = Substitute.For<IPaymentService>();
var policyRepo = Substitute.For<IPolicyRepository>();
var ssoConfigRepo = Substitute.For<ISsoConfigRepository>();
var ssoUserRepo = Substitute.For<ISsoUserRepository>();
var referenceEventService = Substitute.For<IReferenceEventService>();
var globalSettings = Substitute.For<Settings.GlobalSettings>();
var taxRateRepo = Substitute.For<ITaxRateRepository>();
var orgService = new OrganizationService(orgRepo, orgUserRepo, collectionRepo, userRepo,
groupRepo, dataProtector, mailService, pushNotService, pushRegService, deviceRepo,
licenseService, eventService, installationRepo, appCacheService, paymentService, policyRepo,
ssoConfigRepo, ssoUserRepo, referenceEventService, globalSettings, taxRateRepo);
var id = Guid.NewGuid();
var userId = Guid.NewGuid();
var org = new Organization
{ {
Id = id, Email = reInvitedUser.Email,
Name = "Test Org", ExternalId = reInvitedUser.Email,
UseDirectory = true,
UseGroups = true,
Seats = 3
};
orgRepo.GetByIdAsync(id).Returns(org);
var existingUserAId = Guid.NewGuid();
var existingUsers = new List<OrganizationUserUserDetails>();
existingUsers.Add(new OrganizationUserUserDetails
{
Id = existingUserAId,
// No external id here
Email = "a@test.com"
}); });
orgUserRepo.GetManyDetailsByOrganizationAsync(id).Returns(existingUsers); var expectedNewUsersCount = newUsers.Count - 1;
orgUserRepo.GetCountByOrganizationIdAsync(id).Returns(1);
orgUserRepo.GetByIdAsync(existingUserAId).Returns(new OrganizationUser { Id = existingUserAId });
var newUsers = new List<ImportedOrganizationUser>(); sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(org.Id).Returns(org);
newUsers.Add(new ImportedOrganizationUser { Email = "a@test.com", ExternalId = "a" }); sutProvider.GetDependency<IOrganizationUserRepository>().GetManyDetailsByOrganizationAsync(org.Id)
newUsers.Add(new ImportedOrganizationUser { Email = "b@test.com", ExternalId = "b" }); .Returns(existingUsers);
newUsers.Add(new ImportedOrganizationUser { Email = "c@test.com", ExternalId = "c" }); sutProvider.GetDependency<IOrganizationUserRepository>().GetCountByOrganizationIdAsync(org.Id)
await orgService.ImportAsync(id, userId, null, newUsers, null, false); .Returns(existingUsers.Count);
sutProvider.GetDependency<IOrganizationUserRepository>().GetByIdAsync(reInvitedUser.Id)
.Returns(new OrganizationUser { Id = reInvitedUser.Id });
await orgUserRepo.Received(1).UpsertAsync(Arg.Any<OrganizationUser>()); await sutProvider.Sut.ImportAsync(org.Id, userId, null, newUsers, null, false);
await orgUserRepo.Received(2).CreateAsync(Arg.Any<OrganizationUser>());
await sutProvider.GetDependency<IOrganizationUserRepository>().DidNotReceiveWithAnyArgs()
.UpsertAsync(default);
await sutProvider.GetDependency<IOrganizationUserRepository>().DidNotReceiveWithAnyArgs()
.CreateAsync(default);
await sutProvider.GetDependency<IOrganizationUserRepository>().DidNotReceiveWithAnyArgs()
.CreateAsync(default, default);
// Upserted existing user
await sutProvider.GetDependency<IOrganizationUserRepository>().Received(1)
.UpsertManyAsync(Arg.Is<IEnumerable<OrganizationUser>>(users => users.Count() == 1));
// Created and invited new users
await sutProvider.GetDependency<IOrganizationUserRepository>().Received(1)
.CreateManyAsync(Arg.Is<IEnumerable<OrganizationUser>>(users => users.Count() == expectedNewUsersCount));
await sutProvider.GetDependency<IMailService>().Received(1)
.BulkSendOrganizationInviteEmailAsync(org.Name,
Arg.Is<IEnumerable<(OrganizationUser, string)>>(messages => messages.Count() == expectedNewUsersCount));
// Sent events
await sutProvider.GetDependency<IEventService>().Received(1)
.LogOrganizationUserEventsAsync(Arg.Is<IEnumerable<(OrganizationUser, EventType, DateTime?)>>(events =>
events.Where(e => e.Item2 == EventType.OrganizationUser_Invited).Count() == expectedNewUsersCount));
await sutProvider.GetDependency<IReferenceEventService>().Received(1)
.RaiseEventAsync(Arg.Is<ReferenceEvent>(referenceEvent =>
referenceEvent.Type == ReferenceEventType.InvitedUsers && referenceEvent.Id == org.Id &&
referenceEvent.Users == expectedNewUsersCount));
} }
[Theory, CustomAutoData(typeof(SutProviderCustomization))] [Theory, CustomAutoData(typeof(SutProviderCustomization))]

235
util/Migrator/DbScripts/2021-04-07_00_IncreaseOrgSeatSize.sql Normal file
View File

@ -0,0 +1,235 @@
IF EXISTS (
SELECT *
FROM INFORMATION_SCHEMA.COLUMNS
WHERE COLUMN_NAME = 'Seats' AND
DATA_TYPE = 'smallint' AND
TABLE_NAME = 'Organization')
BEGIN
ALTER TABLE [dbo].[Organization]
ALTER COLUMN [Seats] INT NULL
END
GO
IF OBJECT_ID('[dbo].[Organization_Create]') IS NOT NULL
BEGIN
DROP PROCEDURE [dbo].[Organization_Create]
END
GO
CREATE PROCEDURE [dbo].[Organization_Create]
@Id UNIQUEIDENTIFIER,
@Identifier NVARCHAR(50),
@Name NVARCHAR(50),
@BusinessName NVARCHAR(50),
@BusinessAddress1 NVARCHAR(50),
@BusinessAddress2 NVARCHAR(50),
@BusinessAddress3 NVARCHAR(50),
@BusinessCountry VARCHAR(2),
@BusinessTaxNumber NVARCHAR(30),
@BillingEmail NVARCHAR(256),
@Plan NVARCHAR(50),
@PlanType TINYINT,
@Seats INT,
@MaxCollections SMALLINT,
@UsePolicies BIT,
@UseSso BIT,
@UseGroups BIT,
@UseDirectory BIT,
@UseEvents BIT,
@UseTotp BIT,
@Use2fa BIT,
@UseApi BIT,
@SelfHost BIT,
@UsersGetPremium BIT,
@Storage BIGINT,
@MaxStorageGb SMALLINT,
@Gateway TINYINT,
@GatewayCustomerId VARCHAR(50),
@GatewaySubscriptionId VARCHAR(50),
@ReferenceData VARCHAR(MAX),
@Enabled BIT,
@LicenseKey VARCHAR(100),
@ApiKey VARCHAR(30),
@TwoFactorProviders NVARCHAR(MAX),
@ExpirationDate DATETIME2(7),
@CreationDate DATETIME2(7),
@RevisionDate DATETIME2(7)
AS
BEGIN
SET NOCOUNT ON
INSERT INTO [dbo].[Organization]
(
[Id],
[Identifier],
[Name],
[BusinessName],
[BusinessAddress1],
[BusinessAddress2],
[BusinessAddress3],
[BusinessCountry],
[BusinessTaxNumber],
[BillingEmail],
[Plan],
[PlanType],
[Seats],
[MaxCollections],
[UsePolicies],
[UseSso],
[UseGroups],
[UseDirectory],
[UseEvents],
[UseTotp],
[Use2fa],
[UseApi],
[SelfHost],
[UsersGetPremium],
[Storage],
[MaxStorageGb],
[Gateway],
[GatewayCustomerId],
[GatewaySubscriptionId],
[ReferenceData],
[Enabled],
[LicenseKey],
[ApiKey],
[TwoFactorProviders],
[ExpirationDate],
[CreationDate],
[RevisionDate]
)
VALUES
(
@Id,
@Identifier,
@Name,
@BusinessName,
@BusinessAddress1,
@BusinessAddress2,
@BusinessAddress3,
@BusinessCountry,
@BusinessTaxNumber,
@BillingEmail,
@Plan,
@PlanType,
@Seats,
@MaxCollections,
@UsePolicies,
@UseSso,
@UseGroups,
@UseDirectory,
@UseEvents,
@UseTotp,
@Use2fa,
@UseApi,
@SelfHost,
@UsersGetPremium,
@Storage,
@MaxStorageGb,
@Gateway,
@GatewayCustomerId,
@GatewaySubscriptionId,
@ReferenceData,
@Enabled,
@LicenseKey,
@ApiKey,
@TwoFactorProviders,
@ExpirationDate,
@CreationDate,
@RevisionDate
)
END
GO
-- Recreate procedure Organization_Update
IF OBJECT_ID('[dbo].[Organization_Update]') IS NOT NULL
BEGIN
DROP PROCEDURE [dbo].[Organization_Update]
END
GO
CREATE PROCEDURE [dbo].[Organization_Update]
@Id UNIQUEIDENTIFIER,
@Identifier NVARCHAR(50),
@Name NVARCHAR(50),
@BusinessName NVARCHAR(50),
@BusinessAddress1 NVARCHAR(50),
@BusinessAddress2 NVARCHAR(50),
@BusinessAddress3 NVARCHAR(50),
@BusinessCountry VARCHAR(2),
@BusinessTaxNumber NVARCHAR(30),
@BillingEmail NVARCHAR(256),
@Plan NVARCHAR(50),
@PlanType TINYINT,
@Seats INT,
@MaxCollections SMALLINT,
@UsePolicies BIT,
@UseSso BIT,
@UseGroups BIT,
@UseDirectory BIT,
@UseEvents BIT,
@UseTotp BIT,
@Use2fa BIT,
@UseApi BIT,
@SelfHost BIT,
@UsersGetPremium BIT,
@Storage BIGINT,
@MaxStorageGb SMALLINT,
@Gateway TINYINT,
@GatewayCustomerId VARCHAR(50),
@GatewaySubscriptionId VARCHAR(50),
@ReferenceData VARCHAR(MAX),
@Enabled BIT,
@LicenseKey VARCHAR(100),
@ApiKey VARCHAR(30),
@TwoFactorProviders NVARCHAR(MAX),
@ExpirationDate DATETIME2(7),
@CreationDate DATETIME2(7),
@RevisionDate DATETIME2(7)
AS
BEGIN
SET NOCOUNT ON
UPDATE
[dbo].[Organization]
SET
[Identifier] = @Identifier,
[Name] = @Name,
[BusinessName] = @BusinessName,
[BusinessAddress1] = @BusinessAddress1,
[BusinessAddress2] = @BusinessAddress2,
[BusinessAddress3] = @BusinessAddress3,
[BusinessCountry] = @BusinessCountry,
[BusinessTaxNumber] = @BusinessTaxNumber,
[BillingEmail] = @BillingEmail,
[Plan] = @Plan,
[PlanType] = @PlanType,
[Seats] = @Seats,
[MaxCollections] = @MaxCollections,
[UsePolicies] = @UsePolicies,
[UseSso] = @UseSso,
[UseGroups] = @UseGroups,
[UseDirectory] = @UseDirectory,
[UseEvents] = @UseEvents,
[UseTotp] = @UseTotp,
[Use2fa] = @Use2fa,
[UseApi] = @UseApi,
[SelfHost] = @SelfHost,
[UsersGetPremium] = @UsersGetPremium,
[Storage] = @Storage,
[MaxStorageGb] = @MaxStorageGb,
[Gateway] = @Gateway,
[GatewayCustomerId] = @GatewayCustomerId,
[GatewaySubscriptionId] = @GatewaySubscriptionId,
[ReferenceData] = @ReferenceData,
[Enabled] = @Enabled,
[LicenseKey] = @LicenseKey,
[ApiKey] = @ApiKey,
[TwoFactorProviders] = @TwoFactorProviders,
[ExpirationDate] = @ExpirationDate,
[CreationDate] = @CreationDate,
[RevisionDate] = @RevisionDate
WHERE
[Id] = @Id
END
GO

183
util/Migrator/DbScripts/2021-04-16_00_OrganizationUser_DeleteMany.sql Normal file
View File

@ -0,0 +1,183 @@
-- Create sproc to bump the revision date of a batch of users
IF OBJECT_ID('[dbo].[User_BumpAccountRevisionDateByOrganizationUserIds]') IS NOT NULL
BEGIN
DROP PROCEDURE [dbo].[User_BumpAccountRevisionDateByOrganizationUserIds]
END
GO
CREATE PROCEDURE [dbo].[User_BumpAccountRevisionDateByOrganizationUserIds]
@OrganizationUserIds [dbo].[GuidIdArray] READONLY
AS
BEGIN
SET NOCOUNT ON
SELECT
OU.UserId
INTO
#UserIds
FROM
[dbo].[OrganizationUser] OU
INNER JOIN
@OrganizationUserIds OUIds ON OUIds.Id = OU.Id
WHERE
OU.[Status] = 2 -- Confirmed
UPDATE
U
SET
U.[AccountRevisionDate] = GETUTCDATE()
FROM
[dbo].[User] U
INNER JOIN
#UserIds ON U.[Id] = #UserIds.[UserId]
END
GO
-- Create TwoGuidIdArray Type
IF NOT EXISTS (
SELECT
*
FROM
sys.types
WHERE
[Name] = 'TwoGuidIdArray' AND
is_user_defined = 1
)
CREATE TYPE [dbo].[TwoGuidIdArray] AS TABLE (
[Id1] UNIQUEIDENTIFIER NOT NULL,
[Id2] UNIQUEIDENTIFIER NOT NULL);
GO
-- Create sproc to delete batch of users
-- Parameter Ids are UserId, OrganizationId
IF OBJECT_ID('[dbo].[SsoUser_DeleteMany]') IS NOT NULL
BEGIN
DROP PROCEDURE [dbo].[SsoUser_DeleteMany]
END
GO
CREATE PROCEDURE [dbo].[SsoUser_DeleteMany]
@UserAndOrganizationIds [dbo].[TwoGuidIdArray] READONLY
AS
BEGIN
SET NOCOUNT ON
SELECT
Id
INTO
#SSOIds
FROM
[dbo].[SsoUser] SU
INNER JOIN
@UserAndOrganizationIds UOI ON UOI.Id1 = SU.UserId AND UOI.Id2 = SU.OrganizationId
DECLARE @BatchSize INT = 100
-- Delete SSO Users
WHILE @BatchSize > 0
BEGIN
BEGIN TRANSACTION SsoUser_DeleteMany_SsoUsers
DELETE TOP(@BatchSize) SU
FROM
[dbo].[SsoUser] SU
INNER JOIN
#SSOIDs ON #SSOIds.Id = SU.Id
SET @BatchSize = @@ROWCOUNT
COMMIT TRANSACTION SsoUser_DeleteMany_SsoUsers
END
END
GO
-- Create OrganizationUser Delete many by Id procedure
IF OBJECT_ID('[dbo].[OrganizationUser_DeleteByIds]') IS NOT NULL
BEGIN
DROP PROCEDURE [dbo].[OrganizationUser_DeleteByIds]
END
GO
CREATE PROCEDURE [dbo].[OrganizationUser_DeleteByIds]
@Ids [dbo].[GuidIdArray] READONLY
AS
BEGIN
SET NOCOUNT ON
EXEC [dbo].[User_BumpAccountRevisionDateByOrganizationUserIds] @Ids
DECLARE @UserAndOrganizationIds [dbo].[TwoGuidIdArray]
INSERT INTO @UserAndOrganizationIds
(Id1, Id2)
SELECT
UserId,
OrganizationId
FROM
[dbo].[OrganizationUser] OU
INNER JOIN
@Ids OUIds ON OUIds.Id = OU.Id
WHERE
UserId IS NOT NULL AND
OrganizationId IS NOT NULL
BEGIN
EXEC [dbo].[SsoUser_DeleteMany] @UserAndOrganizationIds
END
DECLARE @BatchSize INT = 100
-- Delete CollectionUsers
WHILE @BatchSize > 0
BEGIN
BEGIN TRANSACTION CollectionUser_DeleteMany_CUs
DELETE TOP(@BatchSize) CU
FROM
[dbo].[CollectionUser] CU
INNER JOIN
@Ids I ON I.Id = CU.OrganizationUserId
SET @BatchSize = @@ROWCOUNT
COMMIT TRANSACTION CollectionUser_DeleteMany_CUs
END
SET @BatchSize = 100;
-- Delete GroupUsers
WHILE @BatchSize > 0
BEGIN
BEGIN TRANSACTION GroupUser_DeleteMany_GroupUsers
DELETE TOP(@BatchSize) GU
FROM
[dbo].[GroupUser] GU
INNER JOIN
@Ids I ON I.Id = GU.OrganizationUserId
SET @BatchSize = @@ROWCOUNT
COMMIT TRANSACTION GoupUser_DeleteMany_GroupUsers
END
SET @BatchSize = 100;
-- Delete OrganizationUsers
WHILE @BatchSize > 0
BEGIN
BEGIN TRANSACTION OrganizationUser_DeleteMany_OUs
DELETE TOP(@BatchSize) OU
FROM
[dbo].[OrganizationUser] OU
INNER JOIN
@Ids I ON I.Id = OU.Id
SET @BatchSize = @@ROWCOUNT
COMMIT TRANSACTION OrganizationUser_DeleteMany_OUs
END
END
GO

142
util/Migrator/DbScripts/2021-04-27_00_OrganizationUser_UpsertMany.sql Normal file
View File

@ -0,0 +1,142 @@
-- Create OrganizationUser Type
IF NOT EXISTS (
SELECT
*
FROM
sys.types
WHERE
[Name] = 'OrganizationUserType' AND
is_user_defined = 1
)
BEGIN
CREATE TYPE [dbo].[OrganizationUserType] AS TABLE(
[Id] UNIQUEIDENTIFIER,
[OrganizationId] UNIQUEIDENTIFIER,
[UserId] UNIQUEIDENTIFIER,
[Email] NVARCHAR(256),
[Key] VARCHAR(MAX),
[Status] TINYINT,
[Type] TINYINT,
[AccessAll] BIT,
[ExternalId] NVARCHAR(300),
[CreationDate] DATETIME2(7),
[RevisionDate] DATETIME2(7),
[Permissions] NVARCHAR(MAX),
[ResetPasswordKey] VARCHAR(MAX)
)
END
GO
-- Create many sproc
IF OBJECT_ID('[dbo].[OrganizationUser_CreateMany]') IS NOT NULL
BEGIN
DROP PROCEDURE [dbo].[OrganizationUser_CreateMany]
END
GO
CREATE PROCEDURE [dbo].[OrganizationUser_CreateMany]
@OrganizationUsersInput [dbo].[OrganizationUserType] READONLY
AS
BEGIN
SET NOCOUNT ON
INSERT INTO [dbo].[OrganizationUser]
(
[Id],
[OrganizationId],
[UserId],
[Email],
[Key],
[Status],
[Type],
[AccessAll],
[ExternalId],
[CreationDate],
[RevisionDate],
[Permissions],
[ResetPasswordKey]
)
SELECT
OU.[Id],
OU.[OrganizationId],
OU.[UserId],
OU.[Email],
OU.[Key],
OU.[Status],
OU.[Type],
OU.[AccessAll],
OU.[ExternalId],
OU.[CreationDate],
OU.[RevisionDate],
OU.[Permissions],
OU.[ResetPasswordKey]
FROM
@OrganizationUsersInput OU
END
GO
-- Bump many user account revision dates
IF OBJECT_ID('[dbo].[User_BumpManyAccountRevisionDates]') IS NOT NULL
BEGIN
DROP PROCEDURE [dbo].[User_BumpManyAccountRevisionDates]
END
GO
CREATE PROCEDURE [dbo].[User_BumpManyAccountRevisionDates]
@Ids [dbo].[GuidIdArray] READONLY
AS
BEGIN
SET NOCOUNT ON
UPDATE
U
SET
[AccountRevisionDate] = GETUTCDATE()
FROM
[dbo].[User] U
INNER JOIN
@Ids IDs ON IDs.Id = U.Id
END
GO
-- Update many OrganizationUsers
IF OBJECT_ID('[dbo].[OrganizationUser_UpdateMany]') IS NOT NULL
BEGIN
DROP PROCEDURE [dbo].[OrganizationUser_UpdateMany]
END
GO
CREATE PROCEDURE [dbo].[OrganizationUser_UpdateMany]
@OrganizationUsersInput [dbo].[OrganizationUserType] READONLY
AS
BEGIN
SET NOCOUNT ON
UPDATE
OU
SET
[OrganizationId] = OUI.[OrganizationId],
[UserId] = OUI.[UserId],
[Email] = OUI.[Email],
[Key] = OUI.[Key],
[Status] = OUI.[Status],
[Type] = OUI.[Type],
[AccessAll] = OUI.[AccessAll],
[ExternalId] = OUI.[ExternalId],
[CreationDate] = OUI.[CreationDate],
[RevisionDate] = OUI.[RevisionDate],
[Permissions] = OUI.[Permissions],
[ResetPasswordKey] = OUI.[ResetPasswordKey]
FROM
[dbo].[OrganizationUser] OU
INNER JOIN
@OrganizationUsersInput OUI ON OU.Id = OUI.Id
EXEC [dbo].[User_BumpManyAccountRevisionDates]
(
SELECT UserId
FROM @OrganizationUsersInput
)
END
GO

49
util/Migrator/DbScripts/2021-04-30_00_Select_Known_OrganizationUsers_Emails.sql Normal file
View File

@ -0,0 +1,49 @@
-- Create EmailArray type
IF NOT EXISTS (
SELECT *
FROM sys.types
WHERE [Name] = 'EmailArray'
AND is_user_defined = 1
)
CREATE TYPE [dbo].[EmailArray] AS TABLE (
[Email] NVARCHAR(256) NOT NULL);
GO
IF OBJECT_ID('[dbo].[OrganizationUser_SelectKnownEmails]') IS NOT NULL
BEGIN
DROP PROCEDURE [dbo].[OrganizationUser_SelectKnownEmails]
END
GO
-- Create sproc to return existing users
CREATE PROCEDURE [dbo].[OrganizationUser_SelectKnownEmails]
@OrganizationId UNIQUEIDENTIFIER,
@Emails [dbo].[EmailArray] READONLY,
@OnlyUsers BIT
AS
BEGIN
SET NOCOUNT ON
SELECT
E.Email
FROM
@Emails E
INNER JOIN
(
SELECT
U.[Email] as 'UEmail',
OU.[Email] as 'OUEmail',
OU.OrganizationId
FROM
[dbo].[User] U
RIGHT JOIN
[dbo].[OrganizationUser] OU ON OU.[UserId] = U.[Id]
WHERE
OU.OrganizationId = @OrganizationId
) OUU ON OUU.[UEmail] = E.[Email] OR OUU.[OUEmail] = E.[Email]
WHERE
(@OnlyUsers = 0 AND (OUU.UEmail IS NOT NULL OR OUU.OUEmail IS NOT NULL)) OR
(@OnlyUsers = 1 AND (OUU.UEmail IS NOT NULL))
END
GO