mirror of
https://github.com/bitwarden/server.git
synced 2025-04-05 05:00:19 -05:00
1274 lines
56 KiB
C#
1274 lines
56 KiB
C#
using System.Text.Json;
|
|
using Bit.Core.AdminConsole.Entities;
|
|
using Bit.Core.Billing.Enums;
|
|
using Bit.Core.Entities;
|
|
using Bit.Core.Enums;
|
|
using Bit.Core.Exceptions;
|
|
using Bit.Core.Platform.Push;
|
|
using Bit.Core.Repositories;
|
|
using Bit.Core.Services;
|
|
using Bit.Core.Test.AutoFixture.CipherFixtures;
|
|
using Bit.Core.Utilities;
|
|
using Bit.Core.Vault.Entities;
|
|
using Bit.Core.Vault.Enums;
|
|
using Bit.Core.Vault.Models.Data;
|
|
using Bit.Core.Vault.Queries;
|
|
using Bit.Core.Vault.Repositories;
|
|
using Bit.Core.Vault.Services;
|
|
using Bit.Test.Common.AutoFixture;
|
|
using Bit.Test.Common.AutoFixture.Attributes;
|
|
using NSubstitute;
|
|
using Xunit;
|
|
|
|
namespace Bit.Core.Test.Services;
|
|
|
|
[UserCipherCustomize]
|
|
[SutProviderCustomize]
|
|
public class CipherServiceTests
|
|
{
|
|
[Theory, BitAutoData]
|
|
public async Task SaveAsync_WrongRevisionDate_Throws(SutProvider<CipherService> sutProvider, Cipher cipher)
|
|
{
|
|
var lastKnownRevisionDate = cipher.RevisionDate.AddDays(-1);
|
|
|
|
var exception = await Assert.ThrowsAsync<BadRequestException>(
|
|
() => sutProvider.Sut.SaveAsync(cipher, cipher.UserId.Value, lastKnownRevisionDate));
|
|
Assert.Contains("out of date", exception.Message);
|
|
}
|
|
|
|
[Theory, BitAutoData]
|
|
public async Task SaveDetailsAsync_WrongRevisionDate_Throws(SutProvider<CipherService> sutProvider,
|
|
CipherDetails cipherDetails)
|
|
{
|
|
var lastKnownRevisionDate = cipherDetails.RevisionDate.AddDays(-1);
|
|
|
|
var exception = await Assert.ThrowsAsync<BadRequestException>(
|
|
() => sutProvider.Sut.SaveDetailsAsync(cipherDetails, cipherDetails.UserId.Value, lastKnownRevisionDate));
|
|
Assert.Contains("out of date", exception.Message);
|
|
}
|
|
|
|
[Theory, BitAutoData]
|
|
public async Task ShareAsync_WrongRevisionDate_Throws(SutProvider<CipherService> sutProvider, Cipher cipher,
|
|
Organization organization, List<Guid> collectionIds)
|
|
{
|
|
sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organization.Id).Returns(organization);
|
|
|
|
var lastKnownRevisionDate = cipher.RevisionDate.AddDays(-1);
|
|
cipher.SetAttachments(new Dictionary<string, CipherAttachment.MetaData>
|
|
{
|
|
[Guid.NewGuid().ToString()] = new CipherAttachment.MetaData { }
|
|
});
|
|
|
|
var exception = await Assert.ThrowsAsync<BadRequestException>(
|
|
() => sutProvider.Sut.ShareAsync(cipher, cipher, organization.Id, collectionIds, cipher.UserId.Value,
|
|
lastKnownRevisionDate));
|
|
Assert.Contains("out of date", exception.Message);
|
|
}
|
|
|
|
[Theory, BitAutoData]
|
|
public async Task ShareManyAsync_WrongRevisionDate_Throws(SutProvider<CipherService> sutProvider,
|
|
IEnumerable<Cipher> ciphers, Guid organizationId, List<Guid> collectionIds)
|
|
{
|
|
sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organizationId)
|
|
.Returns(new Organization
|
|
{
|
|
PlanType = PlanType.EnterpriseAnnually,
|
|
MaxStorageGb = 100
|
|
});
|
|
|
|
var cipherInfos = ciphers.Select(c => (c, (DateTime?)c.RevisionDate.AddDays(-1)));
|
|
|
|
var exception = await Assert.ThrowsAsync<BadRequestException>(
|
|
() => sutProvider.Sut.ShareManyAsync(cipherInfos, organizationId, collectionIds, ciphers.First().UserId.Value));
|
|
Assert.Contains("out of date", exception.Message);
|
|
}
|
|
|
|
[Theory]
|
|
[BitAutoData("")]
|
|
[BitAutoData("Correct Time")]
|
|
public async Task SaveAsync_CorrectRevisionDate_Passes(string revisionDateString,
|
|
SutProvider<CipherService> sutProvider, Cipher cipher)
|
|
{
|
|
var lastKnownRevisionDate = string.IsNullOrEmpty(revisionDateString) ? (DateTime?)null : cipher.RevisionDate;
|
|
|
|
await sutProvider.Sut.SaveAsync(cipher, cipher.UserId.Value, lastKnownRevisionDate);
|
|
await sutProvider.GetDependency<ICipherRepository>().Received(1).ReplaceAsync(cipher);
|
|
}
|
|
|
|
[Theory]
|
|
[BitAutoData("")]
|
|
[BitAutoData("Correct Time")]
|
|
public async Task SaveDetailsAsync_CorrectRevisionDate_Passes(string revisionDateString,
|
|
SutProvider<CipherService> sutProvider, CipherDetails cipherDetails)
|
|
{
|
|
var lastKnownRevisionDate = string.IsNullOrEmpty(revisionDateString) ? (DateTime?)null : cipherDetails.RevisionDate;
|
|
|
|
await sutProvider.Sut.SaveDetailsAsync(cipherDetails, cipherDetails.UserId.Value, lastKnownRevisionDate);
|
|
await sutProvider.GetDependency<ICipherRepository>().Received(1).ReplaceAsync(cipherDetails);
|
|
}
|
|
|
|
[Theory]
|
|
[BitAutoData("")]
|
|
[BitAutoData("Correct Time")]
|
|
public async Task ShareAsync_CorrectRevisionDate_Passes(string revisionDateString,
|
|
SutProvider<CipherService> sutProvider, Cipher cipher, Organization organization, List<Guid> collectionIds)
|
|
{
|
|
var lastKnownRevisionDate = string.IsNullOrEmpty(revisionDateString) ? (DateTime?)null : cipher.RevisionDate;
|
|
var cipherRepository = sutProvider.GetDependency<ICipherRepository>();
|
|
cipherRepository.ReplaceAsync(cipher, collectionIds).Returns(true);
|
|
sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organization.Id).Returns(organization);
|
|
|
|
cipher.SetAttachments(new Dictionary<string, CipherAttachment.MetaData>
|
|
{
|
|
[Guid.NewGuid().ToString()] = new CipherAttachment.MetaData { }
|
|
});
|
|
await sutProvider.Sut.ShareAsync(cipher, cipher, organization.Id, collectionIds, cipher.UserId.Value,
|
|
lastKnownRevisionDate);
|
|
await cipherRepository.Received(1).ReplaceAsync(cipher, collectionIds);
|
|
}
|
|
|
|
[Theory]
|
|
[BitAutoData("Correct Time")]
|
|
public async Task ShareAsync_FailReplace_Throws(string revisionDateString,
|
|
SutProvider<CipherService> sutProvider, Cipher cipher, Organization organization, List<Guid> collectionIds)
|
|
{
|
|
var lastKnownRevisionDate = string.IsNullOrEmpty(revisionDateString) ? (DateTime?)null : cipher.RevisionDate;
|
|
var cipherRepository = sutProvider.GetDependency<ICipherRepository>();
|
|
cipherRepository.ReplaceAsync(cipher, collectionIds).Returns(false);
|
|
sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organization.Id).Returns(organization);
|
|
|
|
cipher.SetAttachments(new Dictionary<string, CipherAttachment.MetaData>
|
|
{
|
|
[Guid.NewGuid().ToString()] = new CipherAttachment.MetaData { }
|
|
});
|
|
|
|
var exception = await Assert.ThrowsAsync<BadRequestException>(
|
|
() => sutProvider.Sut.ShareAsync(cipher, cipher, organization.Id, collectionIds, cipher.UserId.Value,
|
|
lastKnownRevisionDate));
|
|
Assert.Contains("Unable to save", exception.Message);
|
|
}
|
|
|
|
[Theory]
|
|
[BitAutoData("Correct Time")]
|
|
public async Task ShareAsync_HasV0Attachments_ReplaceAttachmentMetadataWithNewOneBeforeSavingCipher(string revisionDateString,
|
|
SutProvider<CipherService> sutProvider, Cipher cipher, Organization organization, List<Guid> collectionIds)
|
|
{
|
|
var lastKnownRevisionDate = string.IsNullOrEmpty(revisionDateString) ? (DateTime?)null : cipher.RevisionDate;
|
|
var originalCipher = CoreHelpers.CloneObject(cipher);
|
|
var cipherRepository = sutProvider.GetDependency<ICipherRepository>();
|
|
cipherRepository.ReplaceAsync(cipher, collectionIds).Returns(true);
|
|
sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organization.Id).Returns(organization);
|
|
var pushNotificationService = sutProvider.GetDependency<IPushNotificationService>();
|
|
|
|
var v0AttachmentId = Guid.NewGuid().ToString();
|
|
var anotherAttachmentId = Guid.NewGuid().ToString();
|
|
cipher.SetAttachments(new Dictionary<string, CipherAttachment.MetaData>
|
|
{
|
|
[v0AttachmentId] = new CipherAttachment.MetaData
|
|
{
|
|
AttachmentId = v0AttachmentId,
|
|
ContainerName = "attachments",
|
|
FileName = "AFileNameEncrypted"
|
|
},
|
|
[anotherAttachmentId] = new CipherAttachment.MetaData
|
|
{
|
|
AttachmentId = anotherAttachmentId,
|
|
Key = "AwesomeKey",
|
|
FileName = "AnotherFilename",
|
|
ContainerName = "attachments",
|
|
Size = 300,
|
|
Validated = true
|
|
}
|
|
});
|
|
|
|
originalCipher.SetAttachments(new Dictionary<string, CipherAttachment.MetaData>
|
|
{
|
|
[v0AttachmentId] = new CipherAttachment.MetaData
|
|
{
|
|
AttachmentId = v0AttachmentId,
|
|
ContainerName = "attachments",
|
|
FileName = "AFileNameEncrypted",
|
|
TempMetadata = new CipherAttachment.MetaData
|
|
{
|
|
AttachmentId = v0AttachmentId,
|
|
ContainerName = "attachments",
|
|
FileName = "AFileNameRe-EncryptedWithOrgKey",
|
|
Key = "NewAttachmentKey"
|
|
}
|
|
},
|
|
[anotherAttachmentId] = new CipherAttachment.MetaData
|
|
{
|
|
AttachmentId = anotherAttachmentId,
|
|
Key = "AwesomeKey",
|
|
FileName = "AnotherFilename",
|
|
ContainerName = "attachments",
|
|
Size = 300,
|
|
Validated = true
|
|
}
|
|
});
|
|
|
|
await sutProvider.Sut.ShareAsync(originalCipher, cipher, organization.Id, collectionIds, cipher.UserId.Value,
|
|
lastKnownRevisionDate);
|
|
|
|
await cipherRepository.Received().ReplaceAsync(Arg.Is<Cipher>(c =>
|
|
c.GetAttachments()[v0AttachmentId].Key == "NewAttachmentKey"
|
|
&&
|
|
c.GetAttachments()[v0AttachmentId].FileName == "AFileNameRe-EncryptedWithOrgKey")
|
|
, collectionIds);
|
|
|
|
await pushNotificationService.Received(1).PushSyncCipherUpdateAsync(cipher, collectionIds);
|
|
}
|
|
|
|
[Theory]
|
|
[BitAutoData("Correct Time")]
|
|
public async Task ShareAsync_HasV0Attachments_StartSharingThoseAttachments(string revisionDateString,
|
|
SutProvider<CipherService> sutProvider, Cipher cipher, Organization organization, List<Guid> collectionIds)
|
|
{
|
|
var lastKnownRevisionDate = string.IsNullOrEmpty(revisionDateString) ? (DateTime?)null : cipher.RevisionDate;
|
|
var originalCipher = CoreHelpers.CloneObject(cipher);
|
|
var cipherRepository = sutProvider.GetDependency<ICipherRepository>();
|
|
cipherRepository.ReplaceAsync(cipher, collectionIds).Returns(true);
|
|
sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organization.Id).Returns(organization);
|
|
var attachmentStorageService = sutProvider.GetDependency<IAttachmentStorageService>();
|
|
|
|
var v0AttachmentId = Guid.NewGuid().ToString();
|
|
var anotherAttachmentId = Guid.NewGuid().ToString();
|
|
cipher.SetAttachments(new Dictionary<string, CipherAttachment.MetaData>
|
|
{
|
|
[v0AttachmentId] = new CipherAttachment.MetaData
|
|
{
|
|
AttachmentId = v0AttachmentId,
|
|
ContainerName = "attachments",
|
|
FileName = "AFileNameEncrypted",
|
|
TempMetadata = new CipherAttachment.MetaData
|
|
{
|
|
AttachmentId = v0AttachmentId,
|
|
ContainerName = "attachments",
|
|
FileName = "AFileNameRe-EncryptedWithOrgKey",
|
|
Key = "NewAttachmentKey"
|
|
}
|
|
},
|
|
[anotherAttachmentId] = new CipherAttachment.MetaData
|
|
{
|
|
AttachmentId = anotherAttachmentId,
|
|
Key = "AwesomeKey",
|
|
FileName = "AnotherFilename",
|
|
ContainerName = "attachments",
|
|
Size = 300,
|
|
Validated = true
|
|
}
|
|
});
|
|
|
|
originalCipher.SetAttachments(new Dictionary<string, CipherAttachment.MetaData>
|
|
{
|
|
[v0AttachmentId] = new CipherAttachment.MetaData
|
|
{
|
|
AttachmentId = v0AttachmentId,
|
|
ContainerName = "attachments",
|
|
FileName = "AFileNameEncrypted",
|
|
TempMetadata = new CipherAttachment.MetaData
|
|
{
|
|
AttachmentId = v0AttachmentId,
|
|
ContainerName = "attachments",
|
|
FileName = "AFileNameRe-EncryptedWithOrgKey",
|
|
Key = "NewAttachmentKey"
|
|
}
|
|
},
|
|
[anotherAttachmentId] = new CipherAttachment.MetaData
|
|
{
|
|
AttachmentId = anotherAttachmentId,
|
|
Key = "AwesomeKey",
|
|
FileName = "AnotherFilename",
|
|
ContainerName = "attachments",
|
|
Size = 300,
|
|
Validated = true
|
|
}
|
|
});
|
|
|
|
await sutProvider.Sut.ShareAsync(originalCipher, cipher, organization.Id, collectionIds, cipher.UserId.Value,
|
|
lastKnownRevisionDate);
|
|
|
|
await attachmentStorageService.Received().StartShareAttachmentAsync(cipher.Id,
|
|
organization.Id,
|
|
Arg.Is<CipherAttachment.MetaData>(m => m.Key == "NewAttachmentKey" && m.FileName == "AFileNameRe-EncryptedWithOrgKey"));
|
|
|
|
await attachmentStorageService.Received(0).StartShareAttachmentAsync(cipher.Id,
|
|
organization.Id,
|
|
Arg.Is<CipherAttachment.MetaData>(m => m.Key == "AwesomeKey" && m.FileName == "AnotherFilename"));
|
|
|
|
await attachmentStorageService.Received().CleanupAsync(cipher.Id);
|
|
}
|
|
|
|
[Theory]
|
|
[BitAutoData("Correct Time")]
|
|
public async Task ShareAsync_HasV0Attachments_StartShareThrows_PerformsRollback_Rethrows(string revisionDateString,
|
|
SutProvider<CipherService> sutProvider, Cipher cipher, Organization organization, List<Guid> collectionIds)
|
|
{
|
|
var lastKnownRevisionDate = string.IsNullOrEmpty(revisionDateString) ? (DateTime?)null : cipher.RevisionDate;
|
|
var originalCipher = CoreHelpers.CloneObject(cipher);
|
|
var cipherRepository = sutProvider.GetDependency<ICipherRepository>();
|
|
cipherRepository.ReplaceAsync(cipher, collectionIds).Returns(true);
|
|
sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organization.Id).Returns(organization);
|
|
var attachmentStorageService = sutProvider.GetDependency<IAttachmentStorageService>();
|
|
var collectionCipherRepository = sutProvider.GetDependency<ICollectionCipherRepository>();
|
|
collectionCipherRepository.GetManyByUserIdCipherIdAsync(cipher.UserId.Value, cipher.Id).Returns(
|
|
Task.FromResult((ICollection<CollectionCipher>)new List<CollectionCipher>
|
|
{
|
|
new CollectionCipher
|
|
{
|
|
CipherId = cipher.Id,
|
|
CollectionId = collectionIds[0]
|
|
},
|
|
new CollectionCipher
|
|
{
|
|
CipherId = cipher.Id,
|
|
CollectionId = Guid.NewGuid()
|
|
}
|
|
}));
|
|
|
|
var v0AttachmentId = Guid.NewGuid().ToString();
|
|
var anotherAttachmentId = Guid.NewGuid().ToString();
|
|
cipher.SetAttachments(new Dictionary<string, CipherAttachment.MetaData>
|
|
{
|
|
[v0AttachmentId] = new CipherAttachment.MetaData
|
|
{
|
|
AttachmentId = v0AttachmentId,
|
|
ContainerName = "attachments",
|
|
FileName = "AFileNameEncrypted",
|
|
TempMetadata = new CipherAttachment.MetaData
|
|
{
|
|
AttachmentId = v0AttachmentId,
|
|
ContainerName = "attachments",
|
|
FileName = "AFileNameRe-EncryptedWithOrgKey",
|
|
Key = "NewAttachmentKey"
|
|
}
|
|
},
|
|
[anotherAttachmentId] = new CipherAttachment.MetaData
|
|
{
|
|
AttachmentId = anotherAttachmentId,
|
|
Key = "AwesomeKey",
|
|
FileName = "AnotherFilename",
|
|
ContainerName = "attachments",
|
|
Size = 300,
|
|
Validated = true
|
|
}
|
|
});
|
|
|
|
originalCipher.SetAttachments(new Dictionary<string, CipherAttachment.MetaData>
|
|
{
|
|
[v0AttachmentId] = new CipherAttachment.MetaData
|
|
{
|
|
AttachmentId = v0AttachmentId,
|
|
ContainerName = "attachments",
|
|
FileName = "AFileNameEncrypted",
|
|
TempMetadata = new CipherAttachment.MetaData
|
|
{
|
|
AttachmentId = v0AttachmentId,
|
|
ContainerName = "attachments",
|
|
FileName = "AFileNameRe-EncryptedWithOrgKey",
|
|
Key = "NewAttachmentKey"
|
|
}
|
|
},
|
|
[anotherAttachmentId] = new CipherAttachment.MetaData
|
|
{
|
|
AttachmentId = anotherAttachmentId,
|
|
Key = "AwesomeKey",
|
|
FileName = "AnotherFilename",
|
|
ContainerName = "attachments",
|
|
Size = 300,
|
|
Validated = true
|
|
}
|
|
});
|
|
|
|
attachmentStorageService.StartShareAttachmentAsync(cipher.Id,
|
|
organization.Id,
|
|
Arg.Is<CipherAttachment.MetaData>(m => m.AttachmentId == v0AttachmentId))
|
|
.Returns(Task.FromException(new InvalidOperationException("ex from StartShareAttachmentAsync")));
|
|
|
|
var exception = await Assert.ThrowsAsync<InvalidOperationException>(
|
|
() => sutProvider.Sut.ShareAsync(cipher, cipher, organization.Id, collectionIds, cipher.UserId.Value,
|
|
lastKnownRevisionDate));
|
|
Assert.Contains("ex from StartShareAttachmentAsync", exception.Message);
|
|
|
|
await collectionCipherRepository.Received().UpdateCollectionsAsync(cipher.Id, cipher.UserId.Value,
|
|
Arg.Is<List<Guid>>(ids => ids.Count == 1 && ids[0] != collectionIds[0]));
|
|
|
|
await cipherRepository.Received().ReplaceAsync(Arg.Is<Cipher>(c =>
|
|
c.GetAttachments()[v0AttachmentId].Key == null
|
|
&&
|
|
c.GetAttachments()[v0AttachmentId].FileName == "AFileNameEncrypted"
|
|
&&
|
|
c.GetAttachments()[v0AttachmentId].TempMetadata == null)
|
|
);
|
|
}
|
|
|
|
[Theory]
|
|
[BitAutoData("Correct Time")]
|
|
public async Task ShareAsync_HasSeveralV0Attachments_StartShareThrowsOnSecondOne_PerformsRollback_Rethrows(string revisionDateString,
|
|
SutProvider<CipherService> sutProvider, Cipher cipher, Organization organization, List<Guid> collectionIds)
|
|
{
|
|
var lastKnownRevisionDate = string.IsNullOrEmpty(revisionDateString) ? (DateTime?)null : cipher.RevisionDate;
|
|
var originalCipher = CoreHelpers.CloneObject(cipher);
|
|
var cipherRepository = sutProvider.GetDependency<ICipherRepository>();
|
|
cipherRepository.ReplaceAsync(cipher, collectionIds).Returns(true);
|
|
var organizationRepository = sutProvider.GetDependency<IOrganizationRepository>();
|
|
organizationRepository.GetByIdAsync(organization.Id).Returns(organization);
|
|
var attachmentStorageService = sutProvider.GetDependency<IAttachmentStorageService>();
|
|
var userRepository = sutProvider.GetDependency<IUserRepository>();
|
|
var collectionCipherRepository = sutProvider.GetDependency<ICollectionCipherRepository>();
|
|
collectionCipherRepository.GetManyByUserIdCipherIdAsync(cipher.UserId.Value, cipher.Id).Returns(
|
|
Task.FromResult((ICollection<CollectionCipher>)new List<CollectionCipher>
|
|
{
|
|
new CollectionCipher
|
|
{
|
|
CipherId = cipher.Id,
|
|
CollectionId = collectionIds[0]
|
|
},
|
|
new CollectionCipher
|
|
{
|
|
CipherId = cipher.Id,
|
|
CollectionId = Guid.NewGuid()
|
|
}
|
|
}));
|
|
|
|
var v0AttachmentId1 = Guid.NewGuid().ToString();
|
|
var v0AttachmentId2 = Guid.NewGuid().ToString();
|
|
var anotherAttachmentId = Guid.NewGuid().ToString();
|
|
cipher.SetAttachments(new Dictionary<string, CipherAttachment.MetaData>
|
|
{
|
|
[v0AttachmentId1] = new CipherAttachment.MetaData
|
|
{
|
|
AttachmentId = v0AttachmentId1,
|
|
ContainerName = "attachments",
|
|
FileName = "AFileNameEncrypted",
|
|
TempMetadata = new CipherAttachment.MetaData
|
|
{
|
|
AttachmentId = v0AttachmentId1,
|
|
ContainerName = "attachments",
|
|
FileName = "AFileNameRe-EncryptedWithOrgKey",
|
|
Key = "NewAttachmentKey"
|
|
}
|
|
},
|
|
[v0AttachmentId2] = new CipherAttachment.MetaData
|
|
{
|
|
AttachmentId = v0AttachmentId2,
|
|
ContainerName = "attachments",
|
|
FileName = "AFileNameEncrypted2",
|
|
TempMetadata = new CipherAttachment.MetaData
|
|
{
|
|
AttachmentId = v0AttachmentId2,
|
|
ContainerName = "attachments",
|
|
FileName = "AFileNameRe-EncryptedWithOrgKey2",
|
|
Key = "NewAttachmentKey2"
|
|
}
|
|
},
|
|
[anotherAttachmentId] = new CipherAttachment.MetaData
|
|
{
|
|
AttachmentId = anotherAttachmentId,
|
|
Key = "AwesomeKey",
|
|
FileName = "AnotherFilename",
|
|
ContainerName = "attachments",
|
|
Size = 300,
|
|
Validated = true
|
|
}
|
|
});
|
|
|
|
originalCipher.SetAttachments(new Dictionary<string, CipherAttachment.MetaData>
|
|
{
|
|
[v0AttachmentId1] = new CipherAttachment.MetaData
|
|
{
|
|
AttachmentId = v0AttachmentId1,
|
|
ContainerName = "attachments",
|
|
FileName = "AFileNameEncrypted",
|
|
TempMetadata = new CipherAttachment.MetaData
|
|
{
|
|
AttachmentId = v0AttachmentId1,
|
|
ContainerName = "attachments",
|
|
FileName = "AFileNameRe-EncryptedWithOrgKey",
|
|
Key = "NewAttachmentKey"
|
|
}
|
|
},
|
|
[v0AttachmentId2] = new CipherAttachment.MetaData
|
|
{
|
|
AttachmentId = v0AttachmentId2,
|
|
ContainerName = "attachments",
|
|
FileName = "AFileNameEncrypted2",
|
|
TempMetadata = new CipherAttachment.MetaData
|
|
{
|
|
AttachmentId = v0AttachmentId2,
|
|
ContainerName = "attachments",
|
|
FileName = "AFileNameRe-EncryptedWithOrgKey2",
|
|
Key = "NewAttachmentKey2"
|
|
}
|
|
},
|
|
[anotherAttachmentId] = new CipherAttachment.MetaData
|
|
{
|
|
AttachmentId = anotherAttachmentId,
|
|
Key = "AwesomeKey",
|
|
FileName = "AnotherFilename",
|
|
ContainerName = "attachments",
|
|
Size = 300,
|
|
Validated = true
|
|
}
|
|
});
|
|
|
|
attachmentStorageService.StartShareAttachmentAsync(cipher.Id,
|
|
organization.Id,
|
|
Arg.Is<CipherAttachment.MetaData>(m => m.AttachmentId == v0AttachmentId2))
|
|
.Returns(Task.FromException(new InvalidOperationException("ex from StartShareAttachmentAsync")));
|
|
|
|
var exception = await Assert.ThrowsAsync<InvalidOperationException>(
|
|
() => sutProvider.Sut.ShareAsync(cipher, cipher, organization.Id, collectionIds, cipher.UserId.Value,
|
|
lastKnownRevisionDate));
|
|
Assert.Contains("ex from StartShareAttachmentAsync", exception.Message);
|
|
|
|
await collectionCipherRepository.Received().UpdateCollectionsAsync(cipher.Id, cipher.UserId.Value,
|
|
Arg.Is<List<Guid>>(ids => ids.Count == 1 && ids[0] != collectionIds[0]));
|
|
|
|
await cipherRepository.Received().ReplaceAsync(Arg.Is<Cipher>(c =>
|
|
c.GetAttachments()[v0AttachmentId1].Key == null
|
|
&&
|
|
c.GetAttachments()[v0AttachmentId1].FileName == "AFileNameEncrypted"
|
|
&&
|
|
c.GetAttachments()[v0AttachmentId1].TempMetadata == null)
|
|
);
|
|
|
|
await cipherRepository.Received().ReplaceAsync(Arg.Is<Cipher>(c =>
|
|
c.GetAttachments()[v0AttachmentId2].Key == null
|
|
&&
|
|
c.GetAttachments()[v0AttachmentId2].FileName == "AFileNameEncrypted2"
|
|
&&
|
|
c.GetAttachments()[v0AttachmentId2].TempMetadata == null)
|
|
);
|
|
|
|
await userRepository.UpdateStorageAsync(cipher.UserId.Value);
|
|
await organizationRepository.UpdateStorageAsync(organization.Id);
|
|
|
|
await attachmentStorageService.Received().RollbackShareAttachmentAsync(cipher.Id, organization.Id,
|
|
Arg.Is<CipherAttachment.MetaData>(m => m.AttachmentId == v0AttachmentId1), Arg.Any<string>());
|
|
|
|
await attachmentStorageService.Received().CleanupAsync(cipher.Id);
|
|
}
|
|
|
|
[Theory]
|
|
[BitAutoData("")]
|
|
[BitAutoData("Correct Time")]
|
|
public async Task ShareManyAsync_CorrectRevisionDate_Passes(string revisionDateString,
|
|
SutProvider<CipherService> sutProvider, IEnumerable<Cipher> ciphers, Organization organization, List<Guid> collectionIds)
|
|
{
|
|
sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organization.Id)
|
|
.Returns(new Organization
|
|
{
|
|
PlanType = PlanType.EnterpriseAnnually,
|
|
MaxStorageGb = 100
|
|
});
|
|
|
|
var cipherInfos = ciphers.Select(c => (c,
|
|
string.IsNullOrEmpty(revisionDateString) ? null : (DateTime?)c.RevisionDate));
|
|
var sharingUserId = ciphers.First().UserId.Value;
|
|
|
|
await sutProvider.Sut.ShareManyAsync(cipherInfos, organization.Id, collectionIds, sharingUserId);
|
|
await sutProvider.GetDependency<ICipherRepository>().Received(1).UpdateCiphersAsync(sharingUserId,
|
|
Arg.Is<IEnumerable<Cipher>>(arg => !arg.Except(ciphers).Any()));
|
|
}
|
|
|
|
[Theory]
|
|
[BitAutoData]
|
|
public async Task RestoreAsync_UpdatesUserCipher(Guid restoringUserId, Cipher cipher, SutProvider<CipherService> sutProvider)
|
|
{
|
|
sutProvider.GetDependency<ICipherRepository>().GetCanEditByIdAsync(restoringUserId, cipher.Id).Returns(true);
|
|
|
|
var initialRevisionDate = new DateTime(1970, 1, 1, 0, 0, 0);
|
|
cipher.DeletedDate = initialRevisionDate;
|
|
cipher.RevisionDate = initialRevisionDate;
|
|
|
|
await sutProvider.Sut.RestoreAsync(cipher, restoringUserId, cipher.OrganizationId.HasValue);
|
|
|
|
Assert.Null(cipher.DeletedDate);
|
|
Assert.NotEqual(initialRevisionDate, cipher.RevisionDate);
|
|
}
|
|
|
|
[Theory]
|
|
[OrganizationCipherCustomize]
|
|
[BitAutoData]
|
|
public async Task RestoreAsync_UpdatesOrganizationCipher(Guid restoringUserId, Cipher cipher, SutProvider<CipherService> sutProvider)
|
|
{
|
|
sutProvider.GetDependency<ICipherRepository>().GetCanEditByIdAsync(restoringUserId, cipher.Id).Returns(true);
|
|
|
|
var initialRevisionDate = new DateTime(1970, 1, 1, 0, 0, 0);
|
|
cipher.DeletedDate = initialRevisionDate;
|
|
cipher.RevisionDate = initialRevisionDate;
|
|
|
|
await sutProvider.Sut.RestoreAsync(cipher, restoringUserId, cipher.OrganizationId.HasValue);
|
|
|
|
Assert.Null(cipher.DeletedDate);
|
|
Assert.NotEqual(initialRevisionDate, cipher.RevisionDate);
|
|
}
|
|
|
|
[Theory]
|
|
[BitAutoData]
|
|
public async Task RestoreAsync_WithAlreadyRestoredCipher_SkipsOperation(
|
|
Guid restoringUserId, Cipher cipher, SutProvider<CipherService> sutProvider)
|
|
{
|
|
cipher.DeletedDate = null;
|
|
|
|
await sutProvider.Sut.RestoreAsync(cipher, restoringUserId, true);
|
|
|
|
await sutProvider.GetDependency<ICipherRepository>().DidNotReceiveWithAnyArgs().UpsertAsync(default);
|
|
await sutProvider.GetDependency<IEventService>().DidNotReceiveWithAnyArgs().LogCipherEventAsync(default, default);
|
|
await sutProvider.GetDependency<IPushNotificationService>().DidNotReceiveWithAnyArgs().PushSyncCipherUpdateAsync(default, default);
|
|
}
|
|
|
|
[Theory]
|
|
[BitAutoData]
|
|
public async Task RestoreAsync_WithPersonalCipherBelongingToDifferentUser_ThrowsBadRequestException(
|
|
Guid restoringUserId, Cipher cipher, SutProvider<CipherService> sutProvider)
|
|
{
|
|
cipher.UserId = Guid.NewGuid();
|
|
cipher.OrganizationId = null;
|
|
|
|
var exception = await Assert.ThrowsAsync<BadRequestException>(
|
|
() => sutProvider.Sut.RestoreAsync(cipher, restoringUserId));
|
|
|
|
Assert.Contains("do not have permissions", exception.Message);
|
|
await sutProvider.GetDependency<ICipherRepository>().DidNotReceiveWithAnyArgs().UpsertAsync(default);
|
|
await sutProvider.GetDependency<IEventService>().DidNotReceiveWithAnyArgs().LogCipherEventAsync(default, default);
|
|
await sutProvider.GetDependency<IPushNotificationService>().DidNotReceiveWithAnyArgs().PushSyncCipherUpdateAsync(default, default);
|
|
}
|
|
|
|
[Theory]
|
|
[OrganizationCipherCustomize]
|
|
[BitAutoData]
|
|
public async Task RestoreAsync_WithOrgCipherLackingEditPermission_ThrowsBadRequestException(
|
|
Guid restoringUserId, Cipher cipher, SutProvider<CipherService> sutProvider)
|
|
{
|
|
sutProvider.GetDependency<ICipherRepository>()
|
|
.GetCanEditByIdAsync(restoringUserId, cipher.Id)
|
|
.Returns(false);
|
|
|
|
var exception = await Assert.ThrowsAsync<BadRequestException>(
|
|
() => sutProvider.Sut.RestoreAsync(cipher, restoringUserId));
|
|
|
|
Assert.Contains("do not have permissions", exception.Message);
|
|
await sutProvider.GetDependency<ICipherRepository>().DidNotReceiveWithAnyArgs().UpsertAsync(default);
|
|
await sutProvider.GetDependency<IEventService>().DidNotReceiveWithAnyArgs().LogCipherEventAsync(default, default);
|
|
await sutProvider.GetDependency<IPushNotificationService>().DidNotReceiveWithAnyArgs().PushSyncCipherUpdateAsync(default, default);
|
|
}
|
|
|
|
[Theory]
|
|
[BitAutoData]
|
|
public async Task RestoreAsync_WithCipherDetailsType_RestoresCipherDetails(
|
|
Guid restoringUserId, CipherDetails cipherDetails, SutProvider<CipherService> sutProvider)
|
|
{
|
|
sutProvider.GetDependency<ICipherRepository>()
|
|
.GetCanEditByIdAsync(restoringUserId, cipherDetails.Id)
|
|
.Returns(true);
|
|
|
|
var initialRevisionDate = new DateTime(1970, 1, 1, 0, 0, 0);
|
|
cipherDetails.DeletedDate = initialRevisionDate;
|
|
cipherDetails.RevisionDate = initialRevisionDate;
|
|
|
|
await sutProvider.Sut.RestoreAsync(cipherDetails, restoringUserId);
|
|
|
|
Assert.Null(cipherDetails.DeletedDate);
|
|
Assert.NotEqual(initialRevisionDate, cipherDetails.RevisionDate);
|
|
await sutProvider.GetDependency<ICipherRepository>().Received(1).UpsertAsync(cipherDetails);
|
|
await sutProvider.GetDependency<IEventService>().Received(1).LogCipherEventAsync(cipherDetails, EventType.Cipher_Restored);
|
|
await sutProvider.GetDependency<IPushNotificationService>().Received(1).PushSyncCipherUpdateAsync(cipherDetails, null);
|
|
}
|
|
|
|
[Theory]
|
|
[BitAutoData]
|
|
public async Task RestoreManyAsync_UpdatesCiphers(ICollection<CipherDetails> ciphers,
|
|
SutProvider<CipherService> sutProvider)
|
|
{
|
|
var cipherIds = ciphers.Select(c => c.Id).ToArray();
|
|
var restoringUserId = ciphers.First().UserId.Value;
|
|
var previousRevisionDate = DateTime.UtcNow;
|
|
foreach (var cipher in ciphers)
|
|
{
|
|
cipher.Edit = true;
|
|
cipher.RevisionDate = previousRevisionDate;
|
|
}
|
|
|
|
sutProvider.GetDependency<ICipherRepository>().GetManyByUserIdAsync(restoringUserId).Returns(ciphers);
|
|
var revisionDate = previousRevisionDate + TimeSpan.FromMinutes(1);
|
|
sutProvider.GetDependency<ICipherRepository>().RestoreAsync(Arg.Any<IEnumerable<Guid>>(), restoringUserId).Returns(revisionDate);
|
|
|
|
await sutProvider.Sut.RestoreManyAsync(cipherIds, restoringUserId);
|
|
|
|
foreach (var cipher in ciphers)
|
|
{
|
|
Assert.Null(cipher.DeletedDate);
|
|
Assert.Equal(revisionDate, cipher.RevisionDate);
|
|
}
|
|
}
|
|
|
|
[Theory]
|
|
[BitAutoData]
|
|
public async Task RestoreManyAsync_WithOrgAdmin_UpdatesCiphers(Guid organizationId, ICollection<CipherOrganizationDetails> ciphers,
|
|
SutProvider<CipherService> sutProvider)
|
|
{
|
|
var cipherIds = ciphers.Select(c => c.Id).ToArray();
|
|
var restoringUserId = ciphers.First().UserId.Value;
|
|
var previousRevisionDate = DateTime.UtcNow;
|
|
foreach (var cipher in ciphers)
|
|
{
|
|
cipher.RevisionDate = previousRevisionDate;
|
|
cipher.OrganizationId = organizationId;
|
|
}
|
|
|
|
sutProvider.GetDependency<ICipherRepository>().GetManyOrganizationDetailsByOrganizationIdAsync(organizationId).Returns(ciphers);
|
|
var revisionDate = previousRevisionDate + TimeSpan.FromMinutes(1);
|
|
sutProvider.GetDependency<ICipherRepository>().RestoreByIdsOrganizationIdAsync(Arg.Is<IEnumerable<Guid>>(ids => ids.All(i => cipherIds.Contains(i))), organizationId).Returns(revisionDate);
|
|
|
|
await sutProvider.Sut.RestoreManyAsync(cipherIds, restoringUserId, organizationId, true);
|
|
|
|
foreach (var cipher in ciphers)
|
|
{
|
|
Assert.Null(cipher.DeletedDate);
|
|
Assert.Equal(revisionDate, cipher.RevisionDate);
|
|
}
|
|
|
|
await sutProvider.GetDependency<IEventService>().Received(1).LogCipherEventsAsync(Arg.Is<IEnumerable<Tuple<Cipher, EventType, DateTime?>>>(events => events.All(e => cipherIds.Contains(e.Item1.Id))));
|
|
await sutProvider.GetDependency<IPushNotificationService>().Received(1).PushSyncCiphersAsync(restoringUserId);
|
|
}
|
|
|
|
[Theory]
|
|
[BitAutoData]
|
|
public async Task RestoreManyAsync_WithEmptyCipherIdsArray_DoesNothing(Guid restoringUserId,
|
|
SutProvider<CipherService> sutProvider)
|
|
{
|
|
var cipherIds = Array.Empty<Guid>();
|
|
|
|
await sutProvider.Sut.RestoreManyAsync(cipherIds, restoringUserId);
|
|
|
|
await AssertNoActionsAsync(sutProvider);
|
|
}
|
|
|
|
[Theory]
|
|
[BitAutoData]
|
|
public async Task RestoreManyAsync_WithNullCipherIdsArray_DoesNothing(Guid restoringUserId,
|
|
SutProvider<CipherService> sutProvider)
|
|
{
|
|
await sutProvider.Sut.RestoreManyAsync(null, restoringUserId);
|
|
|
|
await AssertNoActionsAsync(sutProvider);
|
|
}
|
|
|
|
[Theory, BitAutoData]
|
|
public async Task ShareManyAsync_FreeOrgWithAttachment_Throws(SutProvider<CipherService> sutProvider,
|
|
IEnumerable<Cipher> ciphers, Guid organizationId, List<Guid> collectionIds)
|
|
{
|
|
sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organizationId).Returns(new Organization
|
|
{
|
|
PlanType = PlanType.Free
|
|
});
|
|
ciphers.FirstOrDefault().Attachments =
|
|
"{\"attachment1\":{\"Size\":\"250\",\"FileName\":\"superCoolFile\","
|
|
+ "\"Key\":\"superCoolFile\",\"ContainerName\":\"testContainer\",\"Validated\":false}}";
|
|
|
|
var cipherInfos = ciphers.Select(c => (c,
|
|
(DateTime?)c.RevisionDate));
|
|
var sharingUserId = ciphers.First().UserId.Value;
|
|
|
|
var exception = await Assert.ThrowsAsync<BadRequestException>(
|
|
() => sutProvider.Sut.ShareManyAsync(cipherInfos, organizationId, collectionIds, sharingUserId));
|
|
Assert.Contains("This organization cannot use attachments", exception.Message);
|
|
}
|
|
|
|
[Theory, BitAutoData]
|
|
public async Task ShareManyAsync_PaidOrgWithAttachment_Passes(SutProvider<CipherService> sutProvider,
|
|
IEnumerable<Cipher> ciphers, Guid organizationId, List<Guid> collectionIds)
|
|
{
|
|
sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organizationId)
|
|
.Returns(new Organization
|
|
{
|
|
PlanType = PlanType.EnterpriseAnnually,
|
|
MaxStorageGb = 100
|
|
});
|
|
ciphers.FirstOrDefault().Attachments =
|
|
"{\"attachment1\":{\"Size\":\"250\",\"FileName\":\"superCoolFile\","
|
|
+ "\"Key\":\"superCoolFile\",\"ContainerName\":\"testContainer\",\"Validated\":false}}";
|
|
|
|
var cipherInfos = ciphers.Select(c => (c,
|
|
(DateTime?)c.RevisionDate));
|
|
var sharingUserId = ciphers.First().UserId.Value;
|
|
|
|
await sutProvider.Sut.ShareManyAsync(cipherInfos, organizationId, collectionIds, sharingUserId);
|
|
await sutProvider.GetDependency<ICipherRepository>().Received(1).UpdateCiphersAsync(sharingUserId,
|
|
Arg.Is<IEnumerable<Cipher>>(arg => !arg.Except(ciphers).Any()));
|
|
}
|
|
|
|
private class SaveDetailsAsyncDependencies
|
|
{
|
|
public CipherDetails CipherDetails { get; set; }
|
|
public SutProvider<CipherService> SutProvider { get; set; }
|
|
}
|
|
|
|
private static SaveDetailsAsyncDependencies GetSaveDetailsAsyncDependencies(
|
|
SutProvider<CipherService> sutProvider,
|
|
string newPassword,
|
|
bool viewPassword,
|
|
bool editPermission,
|
|
string? key = null,
|
|
string? totp = null,
|
|
CipherLoginFido2CredentialData[]? passkeys = null,
|
|
CipherFieldData[]? fields = null
|
|
)
|
|
{
|
|
var cipherDetails = new CipherDetails
|
|
{
|
|
Id = Guid.NewGuid(),
|
|
OrganizationId = Guid.NewGuid(),
|
|
Type = CipherType.Login,
|
|
UserId = Guid.NewGuid(),
|
|
RevisionDate = DateTime.UtcNow,
|
|
Key = key,
|
|
};
|
|
|
|
var newLoginData = new CipherLoginData { Username = "user", Password = newPassword, Totp = totp, Fido2Credentials = passkeys, Fields = fields };
|
|
cipherDetails.Data = JsonSerializer.Serialize(newLoginData);
|
|
|
|
var existingCipher = new Cipher
|
|
{
|
|
Id = cipherDetails.Id,
|
|
Data = JsonSerializer.Serialize(
|
|
new CipherLoginData
|
|
{
|
|
Username = "user",
|
|
Password = "OriginalPassword",
|
|
Totp = "OriginalTotp",
|
|
Fido2Credentials = []
|
|
}
|
|
),
|
|
};
|
|
|
|
sutProvider.GetDependency<ICipherRepository>()
|
|
.GetByIdAsync(cipherDetails.Id)
|
|
.Returns(existingCipher);
|
|
|
|
sutProvider.GetDependency<ICipherRepository>()
|
|
.ReplaceAsync(Arg.Any<CipherDetails>())
|
|
.Returns(Task.CompletedTask);
|
|
|
|
var permissions = new Dictionary<Guid, OrganizationCipherPermission>
|
|
{
|
|
{ cipherDetails.Id, new OrganizationCipherPermission { ViewPassword = viewPassword, Edit = editPermission } }
|
|
};
|
|
|
|
sutProvider.GetDependency<IGetCipherPermissionsForUserQuery>()
|
|
.GetByOrganization(cipherDetails.OrganizationId.Value)
|
|
.Returns(permissions);
|
|
|
|
return new SaveDetailsAsyncDependencies
|
|
{
|
|
CipherDetails = cipherDetails,
|
|
SutProvider = sutProvider,
|
|
};
|
|
}
|
|
|
|
[Theory, BitAutoData]
|
|
public async Task SaveDetailsAsync_PasswordNotChangedWithoutViewPasswordPermission(string _, SutProvider<CipherService> sutProvider)
|
|
{
|
|
var deps = GetSaveDetailsAsyncDependencies(sutProvider, "NewPassword", viewPassword: false, editPermission: true);
|
|
|
|
await deps.SutProvider.Sut.SaveDetailsAsync(
|
|
deps.CipherDetails,
|
|
deps.CipherDetails.UserId.Value,
|
|
deps.CipherDetails.RevisionDate,
|
|
null,
|
|
true);
|
|
|
|
var updatedLoginData = JsonSerializer.Deserialize<CipherLoginData>(deps.CipherDetails.Data);
|
|
Assert.Equal("OriginalPassword", updatedLoginData.Password);
|
|
}
|
|
|
|
[Theory, BitAutoData]
|
|
public async Task SaveDetailsAsync_PasswordNotChangedWithoutEditPermission(string _, SutProvider<CipherService> sutProvider)
|
|
{
|
|
var deps = GetSaveDetailsAsyncDependencies(sutProvider, "NewPassword", viewPassword: true, editPermission: false);
|
|
|
|
await deps.SutProvider.Sut.SaveDetailsAsync(
|
|
deps.CipherDetails,
|
|
deps.CipherDetails.UserId.Value,
|
|
deps.CipherDetails.RevisionDate,
|
|
null,
|
|
true);
|
|
|
|
var updatedLoginData = JsonSerializer.Deserialize<CipherLoginData>(deps.CipherDetails.Data);
|
|
Assert.Equal("OriginalPassword", updatedLoginData.Password);
|
|
}
|
|
|
|
[Theory, BitAutoData]
|
|
public async Task SaveDetailsAsync_PasswordChangedWithPermission(string _, SutProvider<CipherService> sutProvider)
|
|
{
|
|
var deps = GetSaveDetailsAsyncDependencies(sutProvider, "NewPassword", viewPassword: true, editPermission: true);
|
|
|
|
await deps.SutProvider.Sut.SaveDetailsAsync(
|
|
deps.CipherDetails,
|
|
deps.CipherDetails.UserId.Value,
|
|
deps.CipherDetails.RevisionDate,
|
|
null,
|
|
true);
|
|
|
|
var updatedLoginData = JsonSerializer.Deserialize<CipherLoginData>(deps.CipherDetails.Data);
|
|
Assert.Equal("NewPassword", updatedLoginData.Password);
|
|
}
|
|
|
|
[Theory, BitAutoData]
|
|
public async Task SaveDetailsAsync_CipherKeyChangedWithPermission(string _, SutProvider<CipherService> sutProvider)
|
|
{
|
|
var deps = GetSaveDetailsAsyncDependencies(sutProvider, "NewPassword", viewPassword: true, editPermission: true, "NewKey");
|
|
|
|
await deps.SutProvider.Sut.SaveDetailsAsync(
|
|
deps.CipherDetails,
|
|
deps.CipherDetails.UserId.Value,
|
|
deps.CipherDetails.RevisionDate,
|
|
null,
|
|
true);
|
|
|
|
Assert.Equal("NewKey", deps.CipherDetails.Key);
|
|
}
|
|
|
|
[Theory, BitAutoData]
|
|
public async Task SaveDetailsAsync_CipherKeyChangedWithoutPermission(string _, SutProvider<CipherService> sutProvider)
|
|
{
|
|
var deps = GetSaveDetailsAsyncDependencies(sutProvider, "NewPassword", viewPassword: true, editPermission: false, "NewKey");
|
|
|
|
var exception = await Assert.ThrowsAsync<BadRequestException>(() => deps.SutProvider.Sut.SaveDetailsAsync(
|
|
deps.CipherDetails,
|
|
deps.CipherDetails.UserId.Value,
|
|
deps.CipherDetails.RevisionDate,
|
|
null,
|
|
true));
|
|
|
|
Assert.Contains("do not have permission", exception.Message);
|
|
}
|
|
|
|
[Theory, BitAutoData]
|
|
public async Task SaveDetailsAsync_TotpChangedWithoutPermission(string _, SutProvider<CipherService> sutProvider)
|
|
{
|
|
var deps = GetSaveDetailsAsyncDependencies(sutProvider, "NewPassword", viewPassword: true, editPermission: false, totp: "NewTotp");
|
|
|
|
await deps.SutProvider.Sut.SaveDetailsAsync(
|
|
deps.CipherDetails,
|
|
deps.CipherDetails.UserId.Value,
|
|
deps.CipherDetails.RevisionDate,
|
|
null,
|
|
true);
|
|
|
|
var updatedLoginData = JsonSerializer.Deserialize<CipherLoginData>(deps.CipherDetails.Data);
|
|
Assert.Equal("OriginalTotp", updatedLoginData.Totp);
|
|
}
|
|
|
|
[Theory, BitAutoData]
|
|
public async Task SaveDetailsAsync_TotpChangedWithPermission(string _, SutProvider<CipherService> sutProvider)
|
|
{
|
|
var deps = GetSaveDetailsAsyncDependencies(sutProvider, "NewPassword", viewPassword: true, editPermission: true, totp: "NewTotp");
|
|
|
|
await deps.SutProvider.Sut.SaveDetailsAsync(
|
|
deps.CipherDetails,
|
|
deps.CipherDetails.UserId.Value,
|
|
deps.CipherDetails.RevisionDate,
|
|
null,
|
|
true);
|
|
|
|
var updatedLoginData = JsonSerializer.Deserialize<CipherLoginData>(deps.CipherDetails.Data);
|
|
Assert.Equal("NewTotp", updatedLoginData.Totp);
|
|
}
|
|
|
|
[Theory, BitAutoData]
|
|
public async Task SaveDetailsAsync_Fido2CredentialsChangedWithoutPermission(string _, SutProvider<CipherService> sutProvider)
|
|
{
|
|
var passkeys = new[]
|
|
{
|
|
new CipherLoginFido2CredentialData
|
|
{
|
|
CredentialId = "CredentialId",
|
|
UserHandle = "UserHandle",
|
|
}
|
|
};
|
|
|
|
var deps = GetSaveDetailsAsyncDependencies(sutProvider, "NewPassword", viewPassword: true, editPermission: false, passkeys: passkeys);
|
|
|
|
await deps.SutProvider.Sut.SaveDetailsAsync(
|
|
deps.CipherDetails,
|
|
deps.CipherDetails.UserId.Value,
|
|
deps.CipherDetails.RevisionDate,
|
|
null,
|
|
true);
|
|
|
|
var updatedLoginData = JsonSerializer.Deserialize<CipherLoginData>(deps.CipherDetails.Data);
|
|
Assert.Empty(updatedLoginData.Fido2Credentials);
|
|
}
|
|
|
|
[Theory, BitAutoData]
|
|
public async Task SaveDetailsAsync_Fido2CredentialsChangedWithPermission(string _, SutProvider<CipherService> sutProvider)
|
|
{
|
|
var passkeys = new[]
|
|
{
|
|
new CipherLoginFido2CredentialData
|
|
{
|
|
CredentialId = "CredentialId",
|
|
UserHandle = "UserHandle",
|
|
}
|
|
};
|
|
|
|
var deps = GetSaveDetailsAsyncDependencies(sutProvider, "NewPassword", viewPassword: true, editPermission: true, passkeys: passkeys);
|
|
|
|
await deps.SutProvider.Sut.SaveDetailsAsync(
|
|
deps.CipherDetails,
|
|
deps.CipherDetails.UserId.Value,
|
|
deps.CipherDetails.RevisionDate,
|
|
null,
|
|
true);
|
|
|
|
var updatedLoginData = JsonSerializer.Deserialize<CipherLoginData>(deps.CipherDetails.Data);
|
|
Assert.Equal(passkeys.Length, updatedLoginData.Fido2Credentials.Length);
|
|
}
|
|
|
|
[Theory]
|
|
[BitAutoData]
|
|
public async Task SaveDetailsAsync_HiddenFieldsChangedWithoutPermission(string _, SutProvider<CipherService> sutProvider)
|
|
{
|
|
var deps = GetSaveDetailsAsyncDependencies(sutProvider, "NewPassword", viewPassword: false, editPermission: false, fields:
|
|
[
|
|
new CipherFieldData
|
|
{
|
|
Name = "FieldName",
|
|
Value = "FieldValue",
|
|
Type = FieldType.Hidden,
|
|
}
|
|
]);
|
|
|
|
await deps.SutProvider.Sut.SaveDetailsAsync(
|
|
deps.CipherDetails,
|
|
deps.CipherDetails.UserId.Value,
|
|
deps.CipherDetails.RevisionDate,
|
|
null,
|
|
true);
|
|
|
|
var updatedLoginData = JsonSerializer.Deserialize<CipherLoginData>(deps.CipherDetails.Data);
|
|
Assert.Empty(updatedLoginData.Fields);
|
|
}
|
|
|
|
[Theory]
|
|
[BitAutoData]
|
|
public async Task SaveDetailsAsync_HiddenFieldsChangedWithPermission(string _, SutProvider<CipherService> sutProvider)
|
|
{
|
|
var deps = GetSaveDetailsAsyncDependencies(sutProvider, "NewPassword", viewPassword: true, editPermission: true, fields:
|
|
[
|
|
new CipherFieldData
|
|
{
|
|
Name = "FieldName",
|
|
Value = "FieldValue",
|
|
Type = FieldType.Hidden,
|
|
}
|
|
]);
|
|
|
|
await deps.SutProvider.Sut.SaveDetailsAsync(
|
|
deps.CipherDetails,
|
|
deps.CipherDetails.UserId.Value,
|
|
deps.CipherDetails.RevisionDate,
|
|
null,
|
|
true);
|
|
|
|
var updatedLoginData = JsonSerializer.Deserialize<CipherLoginData>(deps.CipherDetails.Data);
|
|
Assert.Single(updatedLoginData.Fields.ToArray());
|
|
}
|
|
|
|
[Theory]
|
|
[BitAutoData]
|
|
public async Task DeleteAsync_WithPersonalCipherOwner_DeletesCipher(
|
|
Guid deletingUserId, Cipher cipher, SutProvider<CipherService> sutProvider)
|
|
{
|
|
cipher.UserId = deletingUserId;
|
|
cipher.OrganizationId = null;
|
|
|
|
await sutProvider.Sut.DeleteAsync(cipher, deletingUserId);
|
|
|
|
await sutProvider.GetDependency<ICipherRepository>().Received(1).DeleteAsync(cipher);
|
|
await sutProvider.GetDependency<IAttachmentStorageService>().Received(1).DeleteAttachmentsForCipherAsync(cipher.Id);
|
|
await sutProvider.GetDependency<IEventService>().Received(1).LogCipherEventAsync(cipher, EventType.Cipher_Deleted);
|
|
await sutProvider.GetDependency<IPushNotificationService>().Received(1).PushSyncCipherDeleteAsync(cipher);
|
|
}
|
|
|
|
[Theory]
|
|
[OrganizationCipherCustomize]
|
|
[BitAutoData]
|
|
public async Task DeleteAsync_WithOrgCipherAndEditPermission_DeletesCipher(
|
|
Guid deletingUserId, Cipher cipher, SutProvider<CipherService> sutProvider)
|
|
{
|
|
sutProvider.GetDependency<ICipherRepository>()
|
|
.GetCanEditByIdAsync(deletingUserId, cipher.Id)
|
|
.Returns(true);
|
|
|
|
await sutProvider.Sut.DeleteAsync(cipher, deletingUserId);
|
|
|
|
await sutProvider.GetDependency<ICipherRepository>().Received(1).DeleteAsync(cipher);
|
|
await sutProvider.GetDependency<IAttachmentStorageService>().Received(1).DeleteAttachmentsForCipherAsync(cipher.Id);
|
|
await sutProvider.GetDependency<IEventService>().Received(1).LogCipherEventAsync(cipher, EventType.Cipher_Deleted);
|
|
await sutProvider.GetDependency<IPushNotificationService>().Received(1).PushSyncCipherDeleteAsync(cipher);
|
|
}
|
|
|
|
[Theory]
|
|
[BitAutoData]
|
|
public async Task DeleteAsync_WithPersonalCipherBelongingToDifferentUser_ThrowsBadRequestException(
|
|
Guid deletingUserId, Cipher cipher, SutProvider<CipherService> sutProvider)
|
|
{
|
|
cipher.UserId = Guid.NewGuid();
|
|
cipher.OrganizationId = null;
|
|
|
|
var exception = await Assert.ThrowsAsync<BadRequestException>(
|
|
() => sutProvider.Sut.DeleteAsync(cipher, deletingUserId));
|
|
|
|
Assert.Contains("do not have permissions", exception.Message);
|
|
await sutProvider.GetDependency<ICipherRepository>().DidNotReceiveWithAnyArgs().DeleteAsync(default);
|
|
await sutProvider.GetDependency<IAttachmentStorageService>().DidNotReceiveWithAnyArgs().DeleteAttachmentsForCipherAsync(default);
|
|
await sutProvider.GetDependency<IEventService>().DidNotReceiveWithAnyArgs().LogCipherEventAsync(default, default);
|
|
await sutProvider.GetDependency<IPushNotificationService>().DidNotReceiveWithAnyArgs().PushSyncCipherDeleteAsync(default);
|
|
}
|
|
|
|
[Theory]
|
|
[OrganizationCipherCustomize]
|
|
[BitAutoData]
|
|
public async Task DeleteAsync_WithOrgCipherLackingEditPermission_ThrowsBadRequestException(
|
|
Guid deletingUserId, Cipher cipher, SutProvider<CipherService> sutProvider)
|
|
{
|
|
sutProvider.GetDependency<ICipherRepository>()
|
|
.GetCanEditByIdAsync(deletingUserId, cipher.Id)
|
|
.Returns(false);
|
|
|
|
var exception = await Assert.ThrowsAsync<BadRequestException>(
|
|
() => sutProvider.Sut.DeleteAsync(cipher, deletingUserId));
|
|
|
|
Assert.Contains("do not have permissions", exception.Message);
|
|
await sutProvider.GetDependency<ICipherRepository>().DidNotReceiveWithAnyArgs().DeleteAsync(default);
|
|
await sutProvider.GetDependency<IAttachmentStorageService>().DidNotReceiveWithAnyArgs().DeleteAttachmentsForCipherAsync(default);
|
|
await sutProvider.GetDependency<IEventService>().DidNotReceiveWithAnyArgs().LogCipherEventAsync(default, default);
|
|
await sutProvider.GetDependency<IPushNotificationService>().DidNotReceiveWithAnyArgs().PushSyncCipherDeleteAsync(default);
|
|
}
|
|
|
|
[Theory]
|
|
[BitAutoData]
|
|
public async Task SoftDeleteAsync_WithPersonalCipherOwner_SoftDeletesCipher(
|
|
Guid deletingUserId, Cipher cipher, SutProvider<CipherService> sutProvider)
|
|
{
|
|
cipher.UserId = deletingUserId;
|
|
cipher.OrganizationId = null;
|
|
cipher.DeletedDate = null;
|
|
|
|
sutProvider.GetDependency<ICipherRepository>()
|
|
.GetCanEditByIdAsync(deletingUserId, cipher.Id)
|
|
.Returns(true);
|
|
|
|
await sutProvider.Sut.SoftDeleteAsync(cipher, deletingUserId);
|
|
|
|
Assert.NotNull(cipher.DeletedDate);
|
|
Assert.Equal(cipher.RevisionDate, cipher.DeletedDate);
|
|
await sutProvider.GetDependency<ICipherRepository>().Received(1).UpsertAsync(cipher);
|
|
await sutProvider.GetDependency<IEventService>().Received(1).LogCipherEventAsync(cipher, EventType.Cipher_SoftDeleted);
|
|
await sutProvider.GetDependency<IPushNotificationService>().Received(1).PushSyncCipherUpdateAsync(cipher, null);
|
|
}
|
|
|
|
[Theory]
|
|
[OrganizationCipherCustomize]
|
|
[BitAutoData]
|
|
public async Task SoftDeleteAsync_WithOrgCipherAndEditPermission_SoftDeletesCipher(
|
|
Guid deletingUserId, Cipher cipher, SutProvider<CipherService> sutProvider)
|
|
{
|
|
cipher.DeletedDate = null;
|
|
|
|
sutProvider.GetDependency<ICipherRepository>()
|
|
.GetCanEditByIdAsync(deletingUserId, cipher.Id)
|
|
.Returns(true);
|
|
|
|
await sutProvider.Sut.SoftDeleteAsync(cipher, deletingUserId);
|
|
|
|
Assert.NotNull(cipher.DeletedDate);
|
|
Assert.Equal(cipher.DeletedDate, cipher.RevisionDate);
|
|
await sutProvider.GetDependency<ICipherRepository>().Received(1).UpsertAsync(cipher);
|
|
await sutProvider.GetDependency<IEventService>().Received(1).LogCipherEventAsync(cipher, EventType.Cipher_SoftDeleted);
|
|
await sutProvider.GetDependency<IPushNotificationService>().Received(1).PushSyncCipherUpdateAsync(cipher, null);
|
|
}
|
|
|
|
[Theory]
|
|
[BitAutoData]
|
|
public async Task SoftDeleteAsync_WithPersonalCipherBelongingToDifferentUser_ThrowsBadRequestException(
|
|
Guid deletingUserId, Cipher cipher, SutProvider<CipherService> sutProvider)
|
|
{
|
|
cipher.UserId = Guid.NewGuid();
|
|
cipher.OrganizationId = null;
|
|
|
|
sutProvider.GetDependency<ICipherRepository>()
|
|
.GetCanEditByIdAsync(deletingUserId, cipher.Id)
|
|
.Returns(false);
|
|
|
|
var exception = await Assert.ThrowsAsync<BadRequestException>(
|
|
() => sutProvider.Sut.SoftDeleteAsync(cipher, deletingUserId));
|
|
|
|
Assert.Contains("do not have permissions", exception.Message);
|
|
}
|
|
|
|
[Theory]
|
|
[OrganizationCipherCustomize]
|
|
[BitAutoData]
|
|
public async Task SoftDeleteAsync_WithOrgCipherLackingEditPermission_ThrowsBadRequestException(
|
|
Guid deletingUserId, Cipher cipher, SutProvider<CipherService> sutProvider)
|
|
{
|
|
sutProvider.GetDependency<ICipherRepository>()
|
|
.GetCanEditByIdAsync(deletingUserId, cipher.Id)
|
|
.Returns(false);
|
|
|
|
var exception = await Assert.ThrowsAsync<BadRequestException>(
|
|
() => sutProvider.Sut.SoftDeleteAsync(cipher, deletingUserId));
|
|
|
|
Assert.Contains("do not have permissions", exception.Message);
|
|
}
|
|
|
|
[Theory]
|
|
[BitAutoData]
|
|
public async Task SoftDeleteAsync_WithCipherDetailsType_SoftDeletesCipherDetails(
|
|
Guid deletingUserId, CipherDetails cipher, SutProvider<CipherService> sutProvider)
|
|
{
|
|
cipher.DeletedDate = null;
|
|
|
|
await sutProvider.Sut.SoftDeleteAsync(cipher, deletingUserId, true);
|
|
|
|
Assert.NotNull(cipher.DeletedDate);
|
|
Assert.Equal(cipher.DeletedDate, cipher.RevisionDate);
|
|
await sutProvider.GetDependency<ICipherRepository>().Received(1).UpsertAsync(cipher);
|
|
await sutProvider.GetDependency<IEventService>().Received(1).LogCipherEventAsync(cipher, EventType.Cipher_SoftDeleted);
|
|
await sutProvider.GetDependency<IPushNotificationService>().Received(1).PushSyncCipherUpdateAsync(cipher, null);
|
|
}
|
|
|
|
[Theory]
|
|
[BitAutoData]
|
|
public async Task SoftDeleteAsync_WithAlreadySoftDeletedCipher_SkipsOperation(
|
|
Guid deletingUserId, Cipher cipher, SutProvider<CipherService> sutProvider)
|
|
{
|
|
sutProvider.GetDependency<ICipherRepository>()
|
|
.GetCanEditByIdAsync(deletingUserId, cipher.Id)
|
|
.Returns(true);
|
|
cipher.DeletedDate = DateTime.UtcNow.AddDays(-1);
|
|
|
|
await sutProvider.Sut.SoftDeleteAsync(cipher, deletingUserId);
|
|
|
|
await sutProvider.GetDependency<ICipherRepository>().DidNotReceive().UpsertAsync(Arg.Any<Cipher>());
|
|
await sutProvider.GetDependency<IEventService>().DidNotReceive().LogCipherEventAsync(Arg.Any<Cipher>(), Arg.Any<EventType>());
|
|
await sutProvider.GetDependency<IPushNotificationService>().DidNotReceive().PushSyncCipherUpdateAsync(Arg.Any<Cipher>(), Arg.Any<IEnumerable<Guid>>());
|
|
}
|
|
|
|
private async Task AssertNoActionsAsync(SutProvider<CipherService> sutProvider)
|
|
{
|
|
await sutProvider.GetDependency<ICipherRepository>().DidNotReceiveWithAnyArgs().GetManyOrganizationDetailsByOrganizationIdAsync(default);
|
|
await sutProvider.GetDependency<ICipherRepository>().DidNotReceiveWithAnyArgs().RestoreByIdsOrganizationIdAsync(default, default);
|
|
await sutProvider.GetDependency<ICipherRepository>().DidNotReceiveWithAnyArgs().RestoreByIdsOrganizationIdAsync(default, default);
|
|
await sutProvider.GetDependency<ICipherRepository>().DidNotReceiveWithAnyArgs().GetManyByUserIdAsync(default);
|
|
await sutProvider.GetDependency<ICipherRepository>().DidNotReceiveWithAnyArgs().RestoreAsync(default, default);
|
|
await sutProvider.GetDependency<IEventService>().DidNotReceiveWithAnyArgs().LogCipherEventsAsync(default);
|
|
await sutProvider.GetDependency<IPushNotificationService>().DidNotReceiveWithAnyArgs().PushSyncCiphersAsync(default);
|
|
}
|
|
}
|