Run formatting (#2230)

2025-07-02 00:22:50 -05:00 · 2022-08-29 16:06:55 -04:00
parent 9b7aef0763
commit 7f5f010e1e
1205 changed files with 73813 additions and 75022 deletions
--- a/src/Core/IdentityServer/ResourceOwnerPasswordValidator.cs
+++ b/src/Core/IdentityServer/ResourceOwnerPasswordValidator.cs
@ -11,163 +11,162 @@ using IdentityServer4.Validation;
 using Microsoft.AspNetCore.Identity;
 using Microsoft.Extensions.Logging;

-namespace Bit.Core.IdentityServer
+namespace Bit.Core.IdentityServer;
+
+public class ResourceOwnerPasswordValidator : BaseRequestValidator<ResourceOwnerPasswordValidationContext>,
+    IResourceOwnerPasswordValidator
 {
-    public class ResourceOwnerPasswordValidator : BaseRequestValidator<ResourceOwnerPasswordValidationContext>,
-        IResourceOwnerPasswordValidator
+    private UserManager<User> _userManager;
+    private readonly IUserService _userService;
+    private readonly ICurrentContext _currentContext;
+    private readonly ICaptchaValidationService _captchaValidationService;
+    public ResourceOwnerPasswordValidator(
+        UserManager<User> userManager,
+        IDeviceRepository deviceRepository,
+        IDeviceService deviceService,
+        IUserService userService,
+        IEventService eventService,
+        IOrganizationDuoWebTokenProvider organizationDuoWebTokenProvider,
+        IOrganizationRepository organizationRepository,
+        IOrganizationUserRepository organizationUserRepository,
+        IApplicationCacheService applicationCacheService,
+        IMailService mailService,
+        ILogger<ResourceOwnerPasswordValidator> logger,
+        ICurrentContext currentContext,
+        GlobalSettings globalSettings,
+        IPolicyRepository policyRepository,
+        ICaptchaValidationService captchaValidationService,
+        IUserRepository userRepository)
+        : base(userManager, deviceRepository, deviceService, userService, eventService,
+              organizationDuoWebTokenProvider, organizationRepository, organizationUserRepository,
+              applicationCacheService, mailService, logger, currentContext, globalSettings, policyRepository,
+              userRepository, captchaValidationService)
    {
-        private UserManager<User> _userManager;
-        private readonly IUserService _userService;
-        private readonly ICurrentContext _currentContext;
-        private readonly ICaptchaValidationService _captchaValidationService;
-        public ResourceOwnerPasswordValidator(
-            UserManager<User> userManager,
-            IDeviceRepository deviceRepository,
-            IDeviceService deviceService,
-            IUserService userService,
-            IEventService eventService,
-            IOrganizationDuoWebTokenProvider organizationDuoWebTokenProvider,
-            IOrganizationRepository organizationRepository,
-            IOrganizationUserRepository organizationUserRepository,
-            IApplicationCacheService applicationCacheService,
-            IMailService mailService,
-            ILogger<ResourceOwnerPasswordValidator> logger,
-            ICurrentContext currentContext,
-            GlobalSettings globalSettings,
-            IPolicyRepository policyRepository,
-            ICaptchaValidationService captchaValidationService,
-            IUserRepository userRepository)
-            : base(userManager, deviceRepository, deviceService, userService, eventService,
-                  organizationDuoWebTokenProvider, organizationRepository, organizationUserRepository,
-                  applicationCacheService, mailService, logger, currentContext, globalSettings, policyRepository,
-                  userRepository, captchaValidationService)
+        _userManager = userManager;
+        _userService = userService;
+        _currentContext = currentContext;
+        _captchaValidationService = captchaValidationService;
+    }
+
+    public async Task ValidateAsync(ResourceOwnerPasswordValidationContext context)
+    {
+        if (!AuthEmailHeaderIsValid(context))
        {
-            _userManager = userManager;
-            _userService = userService;
-            _currentContext = currentContext;
-            _captchaValidationService = captchaValidationService;
+            context.Result = new GrantValidationResult(TokenRequestErrors.InvalidGrant,
+                "Auth-Email header invalid.");
+            return;
        }

-        public async Task ValidateAsync(ResourceOwnerPasswordValidationContext context)
+        var user = await _userManager.FindByEmailAsync(context.UserName.ToLowerInvariant());
+        var validatorContext = new CustomValidatorRequestContext
        {
-            if (!AuthEmailHeaderIsValid(context))
+            User = user,
+            KnownDevice = await KnownDeviceAsync(user, context.Request)
+        };
+        string bypassToken = null;
+        if (!validatorContext.KnownDevice &&
+            _captchaValidationService.RequireCaptchaValidation(_currentContext, user))
+        {
+            var captchaResponse = context.Request.Raw["captchaResponse"]?.ToString();
+
+            if (string.IsNullOrWhiteSpace(captchaResponse))
            {
-                context.Result = new GrantValidationResult(TokenRequestErrors.InvalidGrant,
-                    "Auth-Email header invalid.");
+                context.Result = new GrantValidationResult(TokenRequestErrors.InvalidGrant, "Captcha required.",
+                    new Dictionary<string, object>
+                    {
+                        { _captchaValidationService.SiteKeyResponseKeyName, _captchaValidationService.SiteKey },
+                    });
                return;
            }

-            var user = await _userManager.FindByEmailAsync(context.UserName.ToLowerInvariant());
-            var validatorContext = new CustomValidatorRequestContext
+            validatorContext.CaptchaResponse = await _captchaValidationService.ValidateCaptchaResponseAsync(
+                captchaResponse, _currentContext.IpAddress, user);
+            if (!validatorContext.CaptchaResponse.Success)
            {
-                User = user,
-                KnownDevice = await KnownDeviceAsync(user, context.Request)
-            };
-            string bypassToken = null;
-            if (!validatorContext.KnownDevice &&
-                _captchaValidationService.RequireCaptchaValidation(_currentContext, user))
-            {
-                var captchaResponse = context.Request.Raw["captchaResponse"]?.ToString();
+                await BuildErrorResultAsync("Captcha is invalid. Please refresh and try again", false, context, null);
+                return;
+            }
+            bypassToken = _captchaValidationService.GenerateCaptchaBypassToken(user);
+        }

-                if (string.IsNullOrWhiteSpace(captchaResponse))
+        await ValidateAsync(context, context.Request, validatorContext);
+        if (context.Result.CustomResponse != null && bypassToken != null)
+        {
+            context.Result.CustomResponse["CaptchaBypassToken"] = bypassToken;
+        }
+    }
+
+    protected async override Task<bool> ValidateContextAsync(ResourceOwnerPasswordValidationContext context,
+        CustomValidatorRequestContext validatorContext)
+    {
+        if (string.IsNullOrWhiteSpace(context.UserName) || validatorContext.User == null)
+        {
+            return false;
+        }
+
+        if (!await _userService.CheckPasswordAsync(validatorContext.User, context.Password))
+        {
+            return false;
+        }
+
+        return true;
+    }
+
+    protected override Task SetSuccessResult(ResourceOwnerPasswordValidationContext context, User user,
+        List<Claim> claims, Dictionary<string, object> customResponse)
+    {
+        context.Result = new GrantValidationResult(user.Id.ToString(), "Application",
+            identityProvider: "bitwarden",
+            claims: claims.Count > 0 ? claims : null,
+            customResponse: customResponse);
+        return Task.CompletedTask;
+    }
+
+    protected override void SetTwoFactorResult(ResourceOwnerPasswordValidationContext context,
+        Dictionary<string, object> customResponse)
+    {
+        context.Result = new GrantValidationResult(TokenRequestErrors.InvalidGrant, "Two factor required.",
+            customResponse);
+    }
+
+    protected override void SetSsoResult(ResourceOwnerPasswordValidationContext context,
+        Dictionary<string, object> customResponse)
+    {
+        context.Result = new GrantValidationResult(TokenRequestErrors.InvalidGrant, "Sso authentication required.",
+            customResponse);
+    }
+
+    protected override void SetErrorResult(ResourceOwnerPasswordValidationContext context,
+        Dictionary<string, object> customResponse)
+    {
+        context.Result = new GrantValidationResult(TokenRequestErrors.InvalidGrant, customResponse: customResponse);
+    }
+
+    private bool AuthEmailHeaderIsValid(ResourceOwnerPasswordValidationContext context)
+    {
+        if (!_currentContext.HttpContext.Request.Headers.ContainsKey("Auth-Email"))
+        {
+            return false;
+        }
+        else
+        {
+            try
+            {
+                var authEmailHeader = _currentContext.HttpContext.Request.Headers["Auth-Email"];
+                var authEmailDecoded = CoreHelpers.Base64UrlDecodeString(authEmailHeader);
+
+                if (authEmailDecoded != context.UserName)
                {
-                    context.Result = new GrantValidationResult(TokenRequestErrors.InvalidGrant, "Captcha required.",
-                        new Dictionary<string, object>
-                        {
-                            { _captchaValidationService.SiteKeyResponseKeyName, _captchaValidationService.SiteKey },
-                        });
-                    return;
-                }
-
-                validatorContext.CaptchaResponse = await _captchaValidationService.ValidateCaptchaResponseAsync(
-                    captchaResponse, _currentContext.IpAddress, user);
-                if (!validatorContext.CaptchaResponse.Success)
-                {
-                    await BuildErrorResultAsync("Captcha is invalid. Please refresh and try again", false, context, null);
-                    return;
-                }
-                bypassToken = _captchaValidationService.GenerateCaptchaBypassToken(user);
-            }
-
-            await ValidateAsync(context, context.Request, validatorContext);
-            if (context.Result.CustomResponse != null && bypassToken != null)
-            {
-                context.Result.CustomResponse["CaptchaBypassToken"] = bypassToken;
-            }
-        }
-
-        protected async override Task<bool> ValidateContextAsync(ResourceOwnerPasswordValidationContext context,
-            CustomValidatorRequestContext validatorContext)
-        {
-            if (string.IsNullOrWhiteSpace(context.UserName) || validatorContext.User == null)
-            {
-                return false;
-            }
-
-            if (!await _userService.CheckPasswordAsync(validatorContext.User, context.Password))
-            {
-                return false;
-            }
-
-            return true;
-        }
-
-        protected override Task SetSuccessResult(ResourceOwnerPasswordValidationContext context, User user,
-            List<Claim> claims, Dictionary<string, object> customResponse)
-        {
-            context.Result = new GrantValidationResult(user.Id.ToString(), "Application",
-                identityProvider: "bitwarden",
-                claims: claims.Count > 0 ? claims : null,
-                customResponse: customResponse);
-            return Task.CompletedTask;
-        }
-
-        protected override void SetTwoFactorResult(ResourceOwnerPasswordValidationContext context,
-            Dictionary<string, object> customResponse)
-        {
-            context.Result = new GrantValidationResult(TokenRequestErrors.InvalidGrant, "Two factor required.",
-                customResponse);
-        }
-
-        protected override void SetSsoResult(ResourceOwnerPasswordValidationContext context,
-            Dictionary<string, object> customResponse)
-        {
-            context.Result = new GrantValidationResult(TokenRequestErrors.InvalidGrant, "Sso authentication required.",
-                customResponse);
-        }
-
-        protected override void SetErrorResult(ResourceOwnerPasswordValidationContext context,
-            Dictionary<string, object> customResponse)
-        {
-            context.Result = new GrantValidationResult(TokenRequestErrors.InvalidGrant, customResponse: customResponse);
-        }
-
-        private bool AuthEmailHeaderIsValid(ResourceOwnerPasswordValidationContext context)
-        {
-            if (!_currentContext.HttpContext.Request.Headers.ContainsKey("Auth-Email"))
-            {
-                return false;
-            }
-            else
-            {
-                try
-                {
-                    var authEmailHeader = _currentContext.HttpContext.Request.Headers["Auth-Email"];
-                    var authEmailDecoded = CoreHelpers.Base64UrlDecodeString(authEmailHeader);
-
-                    if (authEmailDecoded != context.UserName)
-                    {
-                        return false;
-                    }
-                }
-                catch (System.Exception e) when (e is System.InvalidOperationException || e is System.FormatException)
-                {
-                    // Invalid B64 encoding
                    return false;
                }
            }
-
-            return true;
+            catch (System.Exception e) when (e is System.InvalidOperationException || e is System.FormatException)
+            {
+                // Invalid B64 encoding
+                return false;
+            }
        }
+
+        return true;
    }
 }