refactor subvault ctrl with org context checks

2025-07-02 16:42:50 -05:00 · 2017-04-05 16:40:09 -04:00
parent c4ab901098
commit e414b8d731
6 changed files with 30 additions and 87 deletions
--- a/src/Sql/Sql.sqlproj
+++ b/src/Sql/Sql.sqlproj
@ -165,7 +165,6 @@
    <Build Include="dbo\Stored Procedures\OrganizationUser_ReadByOrganizationIdEmail.sql" />
    <Build Include="dbo\Stored Procedures\OrganizationUser_ReadByOrganizationId.sql" />
    <Build Include="dbo\Stored Procedures\Organization_ReadByUserId.sql" />
-    <Build Include="dbo\Stored Procedures\Subvault_ReadByIdAdminUserId.sql" />
    <Build Include="dbo\Stored Procedures\Grant_DeleteByKey.sql" />
    <Build Include="dbo\Stored Procedures\SubvaultUserSubvaultDetails_ReadByUserId.sql" />
    <Build Include="dbo\Stored Procedures\Grant_DeleteBySubjectIdClientId.sql" />
@ -178,7 +177,6 @@
    <Build Include="dbo\Stored Procedures\User_ReadPublicKeyById.sql" />
    <Build Include="dbo\Stored Procedures\OrganizationUserUserDetails_ReadById.sql" />
    <Build Include="dbo\Stored Procedures\OrganizationUserUserDetails_ReadByOrganizationId.sql" />
-    <Build Include="dbo\Stored Procedures\Subvault_ReadByOrganizationIdAdminUserId.sql" />
    <Build Include="dbo\User Defined Types\GuidIdArray.sql" />
    <Build Include="dbo\Stored Procedures\SubvaultCipher_ReadByCipherId.sql" />
    <Build Include="dbo\Stored Procedures\OrganizationUser_ReadByUserId.sql" />
--- a/Procedures/Subvault_ReadByIdAdminUserId.sql
+++ b/Procedures/Subvault_ReadByIdAdminUserId.sql
@ -1,19 +0,0 @@
-CREATE PROCEDURE [dbo].[Subvault_ReadByIdAdminUserId]
-    @Id UNIQUEIDENTIFIER,
-    @UserId UNIQUEIDENTIFIER
-AS
-BEGIN
-    SET NOCOUNT ON
-
-    SELECT
-        S.*
-    FROM
-        [dbo].[SubvaultView] S
-    INNER JOIN
-        [OrganizationUser] OU ON OU.[OrganizationId] = S.[OrganizationId]
-    WHERE
-        S.[Id] = @Id
-        AND OU.[UserId] = @UserId
-        AND OU.[Status] = 2 -- Confirmed
-        AND OU.[Type] <= 1 -- Owner and admin
-END
--- a/Procedures/Subvault_ReadByOrganizationIdAdminUserId.sql
+++ b/Procedures/Subvault_ReadByOrganizationIdAdminUserId.sql
@ -1,19 +0,0 @@
-CREATE PROCEDURE [dbo].[Subvault_ReadByOrganizationIdAdminUserId]
-    @OrganizationId UNIQUEIDENTIFIER,
-    @UserId UNIQUEIDENTIFIER
-AS
-BEGIN
-    SET NOCOUNT ON
-
-    SELECT
-        S.*
-    FROM
-        [dbo].[SubvaultView] S
-    INNER JOIN
-        [OrganizationUser] OU ON OU.[OrganizationId] = S.[OrganizationId]
-    WHERE
-        S.[OrganizationId] = @OrganizationId
-        AND OU.[UserId] = @UserId
-        AND OU.[Status] = 2 -- Confirmed
-        AND OU.[Type] <= 1 -- Owner and admin
-END