Record when a provider user accesses a clients vault (#1496)

* Record when a provider user accesses a clients vault * Do not allow removal from provider unless owner exists * PR Review * Null safe event processing * append `Async` to async methods
2025-07-01 08:02:49 -05:00 · 2021-08-05 08:50:41 -04:00
parent 744e8f1a13
commit cfc7fa071b
9 changed files with 56 additions and 15 deletions
--- a/src/Api/Controllers/CiphersController.cs
+++ b/src/Api/Controllers/CiphersController.cs
@ -30,6 +30,7 @@ namespace Bit.Api.Controllers
        private readonly ICipherService _cipherService;
        private readonly IUserService _userService;
        private readonly IAttachmentStorageService _attachmentStorageService;
+        private readonly IProviderService _providerService;
        private readonly ICurrentContext _currentContext;
        private readonly ILogger<CiphersController> _logger;
        private readonly GlobalSettings _globalSettings;
@ -40,6 +41,7 @@ namespace Bit.Api.Controllers
            ICipherService cipherService,
            IUserService userService,
            IAttachmentStorageService attachmentStorageService,
+            IProviderService providerService,
            ICurrentContext currentContext,
            ILogger<CiphersController> logger,
            GlobalSettings globalSettings)
@ -49,6 +51,7 @@ namespace Bit.Api.Controllers
            _cipherService = cipherService;
            _userService = userService;
            _attachmentStorageService = attachmentStorageService;
+            _providerService = providerService;
            _currentContext = currentContext;
            _logger = logger;
            _globalSettings = globalSettings;
@ -224,6 +227,12 @@ namespace Bit.Api.Controllers

            var responses = ciphers.Select(c => new CipherMiniDetailsResponseModel(c, _globalSettings,
                collectionCiphersGroupDict));
+
+            var providerId = await _currentContext.ProviderIdForOrg(orgIdGuid);
+            if (providerId.HasValue)
+            {
+                await _providerService.LogProviderAccessToOrganizationAsync(orgIdGuid);
+            }
            return new ListResponseModel<CipherMiniDetailsResponseModel>(responses);
        }

--- a/src/Api/Controllers/ProviderOrganizationsController.cs
+++ b/src/Api/Controllers/ProviderOrganizationsController.cs
@ -91,7 +91,7 @@ namespace Bit.Api.Controllers
            }

            var userId = _userService.GetProperUserId(User);
-            await _providerService.RemoveOrganization(providerId, id, userId.Value);
+            await _providerService.RemoveOrganizationAsync(providerId, id, userId.Value);
        }
    }
 }