[PM-5963] Fix tde offboarding vault corruption (#4144)

* Attempt to fix tde to mp flow * Move tde offboarding to dedicated flag * Add tde offboarding password request * Validate tde offboarding input * Correctly check whether tde is active when building trusted device options * Refactor Tde offboarding into a separate command * Add unit tests for tde offboarding * Update tde offboarding request model * Fix tests * Fix further tests * Fix documentation * Add validation for updatetdepasswordasync key/newmasterpassword * Add comment explaining test * Remove unrelated changes
2025-06-30 07:36:14 -05:00 · 2024-07-23 20:53:08 +02:00
parent 48f9d09f4e
commit ce185eb3df
11 changed files with 283 additions and 2 deletions
--- a/test/Identity.IntegrationTest/Endpoints/IdentityServerSsoTests.cs
+++ b/test/Identity.IntegrationTest/Endpoints/IdentityServerSsoTests.cs
@ -178,6 +178,11 @@ public class IdentityServerSsoTests
            {
                Assert.Equal("HasManageResetPasswordPermission", p.Name);
                Assert.Equal(JsonValueKind.False, p.Value.ValueKind);
+            },
+            p =>
+            {
+                Assert.Equal("IsTdeOffboarding", p.Name);
+                Assert.Equal(JsonValueKind.False, p.Value.ValueKind);
            });
    }

@ -219,6 +224,7 @@ public class IdentityServerSsoTests
        //     "HasAdminApproval": true,
        //     "HasLoginApprovingDevice": true,
        //     "HasManageResetPasswordPermission": false
+        //     "IsTdeOffboarding": false
        //   }
        // }

@ -242,6 +248,11 @@ public class IdentityServerSsoTests
            {
                Assert.Equal("HasManageResetPasswordPermission", p.Name);
                Assert.Equal(JsonValueKind.False, p.Value.ValueKind);
+            },
+            p =>
+            {
+                Assert.Equal("IsTdeOffboarding", p.Name);
+                Assert.Equal(JsonValueKind.False, p.Value.ValueKind);
            });
    }