Improved handling of grantor access to organizations after takeover (refactored) (#1134)

* Revert "Only return policy in TakeoverResponse if Owner" This reverts commit b20e6f5e85. * Revert "Return grantor policy info in TakeoverResponse" This reverts commit 204217a5e0. * Add endpoint to get grantor policies on takeover
2025-07-01 16:12:49 -05:00 · 2021-02-10 09:06:42 +10:00
parent d51b592cb5
commit 9f42357705
4 changed files with 34 additions and 10 deletions
--- a/src/Core/Models/Api/Response/EmergencyAccessResponseModel.cs
+++ b/src/Core/Models/Api/Response/EmergencyAccessResponseModel.cs
@ -84,7 +84,7 @@ namespace Bit.Core.Models.Api.Response

    public class EmergencyAccessTakeoverResponseModel : ResponseModel
    {
-        public EmergencyAccessTakeoverResponseModel(EmergencyAccess emergencyAccess, User grantor, ICollection<Policy> policy, string obj = "emergencyAccessTakeover") : base(obj)
+        public EmergencyAccessTakeoverResponseModel(EmergencyAccess emergencyAccess, User grantor, string obj = "emergencyAccessTakeover") : base(obj)
        {
            if (emergencyAccess == null)
            {
@ -94,13 +94,11 @@ namespace Bit.Core.Models.Api.Response
            KeyEncrypted = emergencyAccess.KeyEncrypted;
            Kdf = grantor.Kdf;
            KdfIterations = grantor.KdfIterations;
-            Policy = policy?.Select<Policy, PolicyResponseModel>(policy => new PolicyResponseModel(policy));
        }

        public int KdfIterations { get; private set; }
        public KdfType Kdf { get; private set; }
        public string KeyEncrypted { get; private set; }
-        public IEnumerable<PolicyResponseModel> Policy { get; private set; }
    }

    public class EmergencyAccessViewResponseModel : ResponseModel
--- a/src/Core/Services/IEmergencyAccessService.cs
+++ b/src/Core/Services/IEmergencyAccessService.cs
@ -20,7 +20,8 @@ namespace Bit.Core.Services
        Task InitiateAsync(Guid id, User initiatingUser);
        Task ApproveAsync(Guid id, User approvingUser);
        Task RejectAsync(Guid id, User rejectingUser);
-        Task<(EmergencyAccess, User, ICollection<Policy>)> TakeoverAsync(Guid id, User initiatingUser);
+        Task<ICollection<Policy>> GetPoliciesAsync(Guid id, User requestingUser);
+        Task<(EmergencyAccess, User)> TakeoverAsync(Guid id, User initiatingUser);
        Task PasswordAsync(Guid id, User user, string newMasterPasswordHash, string key);
        Task SendNotificationsAsync();
        Task HandleTimedOutRequestsAsync();
--- a/src/Core/Services/Implementations/EmergencyAccessService.cs
+++ b/src/Core/Services/Implementations/EmergencyAccessService.cs
@ -239,7 +239,7 @@ namespace Bit.Core.Services
            await _mailService.SendEmergencyAccessRecoveryRejected(emergencyAccess, NameOrEmail(rejectingUser), grantee.Email);
        }

-        public async Task<(EmergencyAccess, User, ICollection<Policy>)> TakeoverAsync(Guid id, User requestingUser)
+        public async Task<ICollection<Policy>> GetPoliciesAsync(Guid id, User requestingUser)
        {
            var emergencyAccess = await _emergencyAccessRepository.GetByIdAsync(id);

@ -253,9 +253,24 @@ namespace Bit.Core.Services

            var grantorOrganizations = await _organizationUserRepository.GetManyByUserAsync(grantor.Id);
            var isOrganizationOwner = grantorOrganizations.Any<OrganizationUser>(organization => organization.Type == OrganizationUserType.Owner);
-            var policy = isOrganizationOwner ? await _policyRepository.GetManyByUserIdAsync(grantor.Id) : null;
+            var policies = isOrganizationOwner ? await _policyRepository.GetManyByUserIdAsync(grantor.Id) : null;

-            return (emergencyAccess, grantor, policy);
+            return policies;
+        }
+
+        public async Task<(EmergencyAccess, User)> TakeoverAsync(Guid id, User requestingUser)
+        {
+            var emergencyAccess = await _emergencyAccessRepository.GetByIdAsync(id);
+
+            if (emergencyAccess == null || emergencyAccess.GranteeId != requestingUser.Id ||
+                emergencyAccess.Status != EmergencyAccessStatusType.RecoveryApproved)
+            {
+                throw new BadRequestException("Emergency Access not valid.");
+            }
+
+            var grantor = await _userRepository.GetByIdAsync(emergencyAccess.GrantorId);
+            
+            return (emergencyAccess, grantor);
        }

        public async Task PasswordAsync(Guid id, User requestingUser, string newMasterPasswordHash, string key)