[SM-1150] Add secret sync endpoint (#3906)

* Add SecretsSyncQuery * Add SecretsSync to controller * Add unit tests * Add integration tests * update repo layer
2025-07-16 23:27:30 -05:00 · 2024-04-25 10:34:08 -05:00
parent f7aa56b324
commit a7b992d424
16 changed files with 711 additions and 138 deletions
--- a/src/Core/SecretsManager/Models/Data/SecretsSyncRequest.cs
+++ b/src/Core/SecretsManager/Models/Data/SecretsSyncRequest.cs
@ -0,0 +1,12 @@
+#nullable enable
+using Bit.Core.Enums;
+
+namespace Bit.Core.SecretsManager.Models.Data;
+
+public class SecretsSyncRequest
+{
+    public AccessClientType AccessClientType { get; set; }
+    public Guid OrganizationId { get; set; }
+    public Guid ServiceAccountId { get; set; }
+    public DateTime? LastSyncedDate { get; set; }
+}
--- a/src/Core/SecretsManager/Queries/Secrets/Interfaces/ISecretsSyncQuery.cs
+++ b/src/Core/SecretsManager/Queries/Secrets/Interfaces/ISecretsSyncQuery.cs
@ -0,0 +1,10 @@
+#nullable enable
+using Bit.Core.SecretsManager.Entities;
+using Bit.Core.SecretsManager.Models.Data;
+
+namespace Bit.Core.SecretsManager.Queries.Secrets.Interfaces;
+
+public interface ISecretsSyncQuery
+{
+    Task<(bool HasChanges, IEnumerable<Secret>? Secrets)> GetAsync(SecretsSyncRequest syncRequest);
+}
--- a/src/Core/SecretsManager/Repositories/ISecretRepository.cs
+++ b/src/Core/SecretsManager/Repositories/ISecretRepository.cs
@ -6,11 +6,12 @@ namespace Bit.Core.SecretsManager.Repositories;

 public interface ISecretRepository
 {
-    Task<IEnumerable<SecretPermissionDetails>> GetManyByOrganizationIdAsync(Guid organizationId, Guid userId, AccessClientType accessType);
-    Task<IEnumerable<SecretPermissionDetails>> GetManyByOrganizationIdInTrashAsync(Guid organizationId);
+    Task<IEnumerable<SecretPermissionDetails>> GetManyDetailsByOrganizationIdAsync(Guid organizationId, Guid userId, AccessClientType accessType);
+    Task<IEnumerable<SecretPermissionDetails>> GetManyDetailsByOrganizationIdInTrashAsync(Guid organizationId);
+    Task<IEnumerable<SecretPermissionDetails>> GetManyDetailsByProjectIdAsync(Guid projectId, Guid userId, AccessClientType accessType);
+    Task<IEnumerable<Secret>> GetManyByOrganizationIdAsync(Guid organizationId, Guid userId, AccessClientType accessType);
    Task<IEnumerable<Secret>> GetManyByOrganizationIdInTrashByIdsAsync(Guid organizationId, IEnumerable<Guid> ids);
    Task<IEnumerable<Secret>> GetManyByIds(IEnumerable<Guid> ids);
-    Task<IEnumerable<SecretPermissionDetails>> GetManyByProjectIdAsync(Guid projectId, Guid userId, AccessClientType accessType);
    Task<Secret> GetByIdAsync(Guid id);
    Task<Secret> CreateAsync(Secret secret);
    Task<Secret> UpdateAsync(Secret secret);
@ -18,7 +19,6 @@ public interface ISecretRepository
    Task HardDeleteManyByIdAsync(IEnumerable<Guid> ids);
    Task RestoreManyByIdAsync(IEnumerable<Guid> ids);
    Task<IEnumerable<Secret>> ImportAsync(IEnumerable<Secret> secrets);
-    Task UpdateRevisionDates(IEnumerable<Guid> ids);
    Task<(bool Read, bool Write)> AccessToSecretAsync(Guid id, Guid userId, AccessClientType accessType);
    Task EmptyTrash(DateTime nowTime, uint deleteAfterThisNumberOfDays);
    Task<int> GetSecretsCountByOrganizationIdAsync(Guid organizationId);
--- a/src/Core/SecretsManager/Repositories/Noop/NoopSecretRepository.cs
+++ b/src/Core/SecretsManager/Repositories/Noop/NoopSecretRepository.cs
@ -6,17 +6,23 @@ namespace Bit.Core.SecretsManager.Repositories.Noop;

 public class NoopSecretRepository : ISecretRepository
 {
-    public Task<IEnumerable<SecretPermissionDetails>> GetManyByOrganizationIdAsync(Guid organizationId, Guid userId,
+    public Task<IEnumerable<SecretPermissionDetails>> GetManyDetailsByOrganizationIdAsync(Guid organizationId, Guid userId,
        AccessClientType accessType)
    {
        return Task.FromResult(null as IEnumerable<SecretPermissionDetails>);
    }

-    public Task<IEnumerable<SecretPermissionDetails>> GetManyByOrganizationIdInTrashAsync(Guid organizationId)
+    public Task<IEnumerable<SecretPermissionDetails>> GetManyDetailsByOrganizationIdInTrashAsync(Guid organizationId)
    {
        return Task.FromResult(null as IEnumerable<SecretPermissionDetails>);
    }

+    public Task<IEnumerable<Secret>> GetManyByOrganizationIdAsync(Guid organizationId, Guid userId,
+        AccessClientType accessType)
+    {
+        return Task.FromResult(null as IEnumerable<Secret>);
+    }
+
    public Task<IEnumerable<Secret>> GetManyByOrganizationIdInTrashByIdsAsync(Guid organizationId,
        IEnumerable<Guid> ids)
    {
@ -28,7 +34,7 @@ public class NoopSecretRepository : ISecretRepository
        return Task.FromResult(null as IEnumerable<Secret>);
    }

-    public Task<IEnumerable<SecretPermissionDetails>> GetManyByProjectIdAsync(Guid projectId, Guid userId,
+    public Task<IEnumerable<SecretPermissionDetails>> GetManyDetailsByProjectIdAsync(Guid projectId, Guid userId,
        AccessClientType accessType)
    {
        return Task.FromResult(null as IEnumerable<SecretPermissionDetails>);
@ -69,11 +75,6 @@ public class NoopSecretRepository : ISecretRepository
        return Task.FromResult(null as IEnumerable<Secret>);
    }

-    public Task UpdateRevisionDates(IEnumerable<Guid> ids)
-    {
-        return Task.FromResult(0);
-    }
-
    public Task<(bool Read, bool Write)> AccessToSecretAsync(Guid id, Guid userId, AccessClientType accessType)
    {
        return Task.FromResult((false, false));