[PM-11667] Remove all code related to the outdated custom permissions 'Edit/Delete Assigned Collections' (#4736)

2025-07-02 00:22:50 -05:00 · 2024-09-10 15:06:13 +01:00
parent 4c0f8d54f3
commit add8783e31
11 changed files with 5 additions and 580 deletions
--- a/src/Core/AdminConsole/Enums/OrganizationUserType.cs
+++ b/src/Core/AdminConsole/Enums/OrganizationUserType.cs
@ -1,6 +1,4 @@
-using Bit.Core.Models.Data;
-
-namespace Bit.Core.Enums;
+namespace Bit.Core.Enums;

 public enum OrganizationUserType : byte
 {
@ -10,35 +8,3 @@ public enum OrganizationUserType : byte
    // Manager = 3 has been intentionally permanently deleted
    Custom = 4,
 }
-
-public static class OrganizationUserTypeExtensions
-{
-    public static OrganizationUserType GetFlexibleCollectionsUserType(this OrganizationUserType type, Permissions permissions)
-    {
-        // Downgrade Custom users with no other permissions than 'Edit/Delete Assigned Collections' to User
-        if (type == OrganizationUserType.Custom && permissions is not null)
-        {
-            if ((permissions.EditAssignedCollections || permissions.DeleteAssignedCollections) &&
-                permissions is
-                {
-                    AccessEventLogs: false,
-                    AccessImportExport: false,
-                    AccessReports: false,
-                    CreateNewCollections: false,
-                    EditAnyCollection: false,
-                    DeleteAnyCollection: false,
-                    ManageGroups: false,
-                    ManagePolicies: false,
-                    ManageSso: false,
-                    ManageUsers: false,
-                    ManageResetPassword: false,
-                    ManageScim: false
-                })
-            {
-                return OrganizationUserType.User;
-            }
-        }
-
-        return type;
-    }
-}
--- a/src/Core/AdminConsole/Models/Data/Permissions.cs
+++ b/src/Core/AdminConsole/Models/Data/Permissions.cs
@ -10,10 +10,6 @@ public class Permissions
    public bool CreateNewCollections { get; set; }
    public bool EditAnyCollection { get; set; }
    public bool DeleteAnyCollection { get; set; }
-    [Obsolete("Pre-Flexible Collections logic.")]
-    public bool EditAssignedCollections { get; set; }
-    [Obsolete("Pre-Flexible Collections logic.")]
-    public bool DeleteAssignedCollections { get; set; }
    public bool ManageGroups { get; set; }
    public bool ManagePolicies { get; set; }
    public bool ManageSso { get; set; }
@ -30,8 +26,6 @@ public class Permissions
        (CreateNewCollections, "createnewcollections"),
        (EditAnyCollection, "editanycollection"),
        (DeleteAnyCollection, "deleteanycollection"),
-        (EditAssignedCollections, "editassignedcollections"),
-        (DeleteAssignedCollections, "deleteassignedcollections"),
        (ManageGroups, "managegroups"),
        (ManagePolicies, "managepolicies"),
        (ManageSso, "managesso"),
--- a/src/Core/AdminConsole/OrganizationFeatures/OrganizationUsers/OrganizationUserUserDetailsQuery.cs
+++ b/src/Core/AdminConsole/OrganizationFeatures/OrganizationUsers/OrganizationUserUserDetailsQuery.cs
@ -1,5 +1,4 @@
-using Bit.Core.Enums;
-using Bit.Core.Models.Data.Organizations.OrganizationUsers;
+using Bit.Core.Models.Data.Organizations.OrganizationUsers;
 using Bit.Core.Repositories;
 using Bit.Core.Utilities;
 using Core.AdminConsole.OrganizationFeatures.OrganizationUsers.Interfaces;
@ -33,15 +32,6 @@ public class OrganizationUserUserDetailsQuery : IOrganizationUserUserDetailsQuer
            {
                var userPermissions = o.GetPermissions();

-                // Downgrade Custom users with no other permissions than 'Edit/Delete Assigned Collections' to User
-                o.Type = o.Type.GetFlexibleCollectionsUserType(userPermissions);
-
-                if (userPermissions is not null)
-                {
-                    userPermissions.EditAssignedCollections = false;
-                    userPermissions.DeleteAssignedCollections = false;
-                }
-
                o.Permissions = CoreHelpers.ClassToJsonData(userPermissions);

                return o;
--- a/src/Core/Context/CurrentContext.cs
+++ b/src/Core/Context/CurrentContext.cs
@ -509,8 +509,6 @@ public class CurrentContext : ICurrentContext
            CreateNewCollections = hasClaim("createnewcollections"),
            EditAnyCollection = hasClaim("editanycollection"),
            DeleteAnyCollection = hasClaim("deleteanycollection"),
-            EditAssignedCollections = hasClaim("editassignedcollections"),
-            DeleteAssignedCollections = hasClaim("deleteassignedcollections"),
            ManageGroups = hasClaim("managegroups"),
            ManagePolicies = hasClaim("managepolicies"),
            ManageSso = hasClaim("managesso"),