Improved handling of grantor access to organizations after takeover (refactored) (#1134)

* Revert "Only return policy in TakeoverResponse if Owner" This reverts commit b20e6f5e85. * Revert "Return grantor policy info in TakeoverResponse" This reverts commit 204217a5e0. * Add endpoint to get grantor policies on takeover
2025-07-01 16:12:49 -05:00 · 2021-02-10 09:06:42 +10:00
parent d51b592cb5
commit 9f42357705
4 changed files with 34 additions and 10 deletions
--- a/src/Api/Controllers/EmergencyAccessController.cs
+++ b/src/Api/Controllers/EmergencyAccessController.cs
@ -5,6 +5,7 @@ using Bit.Core.Exceptions;
 using Bit.Core.Models.Api;
 using Bit.Core.Models.Api.Request;
 using Bit.Core.Models.Api.Response;
+using Bit.Core.Models.Table;
 using Bit.Core.Repositories;
 using Bit.Core.Services;
 using Microsoft.AspNetCore.Authorization;
@ -60,7 +61,16 @@ namespace Bit.Api.Controllers
            var result = await _emergencyAccessService.GetAsync(new Guid(id), userId.Value);
            return new EmergencyAccessGranteeDetailsResponseModel(result);
        }
-        
+
+        [HttpGet("{id}/policies")]
+        public async Task<ListResponseModel<PolicyResponseModel>> Policies(string id)
+        {
+            var user = await _userService.GetUserByPrincipalAsync(User);
+            var policies = await _emergencyAccessService.GetPoliciesAsync(new Guid(id), user);
+            var responses = policies.Select<Policy, PolicyResponseModel>(policy => new PolicyResponseModel(policy));
+            return new ListResponseModel<PolicyResponseModel>(responses);
+        }
+
        [HttpPut("{id}")]
        [HttpPost("{id}")]
        public async Task Put(string id, [FromBody]EmergencyAccessUpdateRequestModel model)
@ -136,8 +146,8 @@ namespace Bit.Api.Controllers
        public async Task<EmergencyAccessTakeoverResponseModel> Takeover(string id)
        {
            var user = await _userService.GetUserByPrincipalAsync(User);
-            var (result, grantor, policy) = await _emergencyAccessService.TakeoverAsync(new Guid(id), user);
-            return new EmergencyAccessTakeoverResponseModel(result, grantor, policy);
+            var (result, grantor) = await _emergencyAccessService.TakeoverAsync(new Guid(id), user);
+            return new EmergencyAccessTakeoverResponseModel(result, grantor);
        }
        
        [HttpPost("{id}/password")]