using System; using System.Threading.Tasks; using Bit.Core.Models.Table; using Bit.Core.Enums; using Microsoft.AspNetCore.Http; using Bit.Core.Models; using System.Net.Http; using Bit.Core.Models.Api; using Microsoft.Extensions.Logging; namespace Bit.Core.Services { public class RelayPushNotificationService : BaseRelayPushNotificationService, IPushNotificationService { private readonly IHttpContextAccessor _httpContextAccessor; private readonly ILogger _logger; public RelayPushNotificationService( GlobalSettings globalSettings, IHttpContextAccessor httpContextAccessor, ILogger logger) : base(globalSettings, logger) { _httpContextAccessor = httpContextAccessor; _logger = logger; } public async Task PushSyncCipherCreateAsync(Cipher cipher) { await PushCipherAsync(cipher, PushType.SyncCipherCreate); } public async Task PushSyncCipherUpdateAsync(Cipher cipher) { await PushCipherAsync(cipher, PushType.SyncCipherUpdate); } public async Task PushSyncCipherDeleteAsync(Cipher cipher) { await PushCipherAsync(cipher, PushType.SyncLoginDelete); } private async Task PushCipherAsync(Cipher cipher, PushType type) { if(cipher.OrganizationId.HasValue) { // We cannot send org pushes since access logic is much more complicated than just the fact that they belong // to the organization. Potentially we could blindly send to just users that have the access all permission // device registration needs to be more granular to handle that appropriately. A more brute force approach could // me to send "full sync" push to all org users, but that has the potential to DDOS the API in bursts. // await SendPayloadToOrganizationAsync(cipher.OrganizationId.Value, type, message, true); } else if(cipher.UserId.HasValue) { var message = new SyncCipherPushNotification { Id = cipher.Id, UserId = cipher.UserId, OrganizationId = cipher.OrganizationId, RevisionDate = cipher.RevisionDate, }; await SendPayloadToUserAsync(cipher.UserId.Value, type, message, true); } } public async Task PushSyncFolderCreateAsync(Folder folder) { await PushFolderAsync(folder, PushType.SyncFolderCreate); } public async Task PushSyncFolderUpdateAsync(Folder folder) { await PushFolderAsync(folder, PushType.SyncFolderUpdate); } public async Task PushSyncFolderDeleteAsync(Folder folder) { await PushFolderAsync(folder, PushType.SyncFolderDelete); } private async Task PushFolderAsync(Folder folder, PushType type) { var message = new SyncFolderPushNotification { Id = folder.Id, UserId = folder.UserId, RevisionDate = folder.RevisionDate }; await SendPayloadToUserAsync(folder.UserId, type, message, true); } public async Task PushSyncCiphersAsync(Guid userId) { await PushSyncUserAsync(userId, PushType.SyncCiphers); } public async Task PushSyncVaultAsync(Guid userId) { await PushSyncUserAsync(userId, PushType.SyncVault); } public async Task PushSyncOrgKeysAsync(Guid userId) { await PushSyncUserAsync(userId, PushType.SyncOrgKeys); } public async Task PushSyncSettingsAsync(Guid userId) { await PushSyncUserAsync(userId, PushType.SyncSettings); } private async Task PushSyncUserAsync(Guid userId, PushType type) { var message = new SyncUserPushNotification { UserId = userId, Date = DateTime.UtcNow }; await SendPayloadToUserAsync(userId, type, message, false); } private async Task SendPayloadToUserAsync(Guid userId, PushType type, object payload, bool excludeCurrentContext) { var request = new PushSendRequestModel { UserId = userId.ToString(), Type = type, Payload = payload }; if(excludeCurrentContext) { ExcludeCurrentContext(request); } await SendAsync(request); } private async Task SendPayloadToOrganizationAsync(Guid orgId, PushType type, object payload, bool excludeCurrentContext) { var request = new PushSendRequestModel { OrganizationId = orgId.ToString(), Type = type, Payload = payload }; if(excludeCurrentContext) { ExcludeCurrentContext(request); } await SendAsync(request); } private async Task SendAsync(PushSendRequestModel requestModel) { var tokenStateResponse = await HandleTokenStateAsync(); if(!tokenStateResponse) { return; } var message = new TokenHttpRequestMessage(requestModel, AccessToken) { Method = HttpMethod.Post, RequestUri = new Uri(string.Concat(PushClient.BaseAddress, "/push/send")) }; try { await PushClient.SendAsync(message); } catch(Exception e) { _logger.LogError(12334, e, "Unable to send push notification."); } } private void ExcludeCurrentContext(PushSendRequestModel request) { var currentContext = _httpContextAccessor?.HttpContext?. RequestServices.GetService(typeof(CurrentContext)) as CurrentContext; if(!string.IsNullOrWhiteSpace(currentContext?.DeviceIdentifier)) { request.Identifier = currentContext.DeviceIdentifier; } } public Task SendPayloadToUserAsync(string userId, PushType type, object payload, string identifier) { throw new NotImplementedException(); } public Task SendPayloadToOrganizationAsync(string orgId, PushType type, object payload, string identifier) { throw new NotImplementedException(); } } }