mirror of
https://github.com/bitwarden/server.git
synced 2025-04-25 23:02:17 -05:00
c182b37347
* WIP * WIP * WIP * WIP * WIP * WIP * WIP * WIP * WIP * WIP * WIP * WIP * WIP * WIP * WIP * WIP * WIP * WIP * WIP * WIP * Add `Notes` column to `OrganizationSponsorships` table * Add feature flag to `CreateAdminInitiatedSponsorshipHandler` * Unit tests for `CreateSponsorshipHandler` * More tests for `CreateSponsorshipHandler` * Forgot to add `Notes` column to `OrganizationSponsorships` table in the migration script * `CreateAdminInitiatedSponsorshipHandler` unit tests * Fix `CreateSponsorshipCommandTests` * Encrypt the notes field * Wrong business logic checking for invalid permissions. * Wrong business logic checking for invalid permissions. * Remove design patterns * duplicate definition in Constants.cs * Allow rollback * Fix stored procedures & type * Fix stored procedures & type * Properly encapsulating this PR behind its feature flag * Removed comments * Updated ValidateSponsorshipCommand to validate admin initiated requirements --------- Co-authored-by: Conner Turnbull <133619638+cturnbull-bitwarden@users.noreply.github.com> Co-authored-by: Conner Turnbull <cturnbull@bitwarden.com>
84 lines
3.5 KiB
C#
84 lines
3.5 KiB
C#
using Bit.Api.Models.Request.Organizations;
|
|
using Bit.Core.Context;
|
|
using Bit.Core.Exceptions;
|
|
using Bit.Core.OrganizationFeatures.OrganizationSponsorships.FamiliesForEnterprise.Interfaces;
|
|
using Bit.Core.Repositories;
|
|
using Bit.Core.Services;
|
|
using Bit.Core.Utilities;
|
|
using Microsoft.AspNetCore.Authorization;
|
|
using Microsoft.AspNetCore.Mvc;
|
|
|
|
namespace Bit.Api.Controllers.SelfHosted;
|
|
|
|
[Route("organization/sponsorship/self-hosted")]
|
|
[Authorize("Application")]
|
|
[SelfHosted(SelfHostedOnly = true)]
|
|
public class SelfHostedOrganizationSponsorshipsController : Controller
|
|
{
|
|
private readonly IOrganizationRepository _organizationRepository;
|
|
private readonly IOrganizationUserRepository _organizationUserRepository;
|
|
private readonly IOrganizationSponsorshipRepository _organizationSponsorshipRepository;
|
|
private readonly ICreateSponsorshipCommand _offerSponsorshipCommand;
|
|
private readonly IRevokeSponsorshipCommand _revokeSponsorshipCommand;
|
|
private readonly ICurrentContext _currentContext;
|
|
private readonly IFeatureService _featureService;
|
|
|
|
public SelfHostedOrganizationSponsorshipsController(
|
|
ICreateSponsorshipCommand offerSponsorshipCommand,
|
|
IRevokeSponsorshipCommand revokeSponsorshipCommand,
|
|
IOrganizationRepository organizationRepository,
|
|
IOrganizationSponsorshipRepository organizationSponsorshipRepository,
|
|
IOrganizationUserRepository organizationUserRepository,
|
|
ICurrentContext currentContext,
|
|
IFeatureService featureService
|
|
)
|
|
{
|
|
_offerSponsorshipCommand = offerSponsorshipCommand;
|
|
_revokeSponsorshipCommand = revokeSponsorshipCommand;
|
|
_organizationRepository = organizationRepository;
|
|
_organizationSponsorshipRepository = organizationSponsorshipRepository;
|
|
_organizationUserRepository = organizationUserRepository;
|
|
_currentContext = currentContext;
|
|
_featureService = featureService;
|
|
}
|
|
|
|
[HttpPost("{sponsoringOrgId}/families-for-enterprise")]
|
|
public async Task CreateSponsorship(Guid sponsoringOrgId, [FromBody] OrganizationSponsorshipCreateRequestModel model)
|
|
{
|
|
if (!_featureService.IsEnabled(Bit.Core.FeatureFlagKeys.PM17772_AdminInitiatedSponsorships))
|
|
{
|
|
if (model.SponsoringUserId.HasValue)
|
|
{
|
|
throw new NotFoundException();
|
|
}
|
|
|
|
if (!string.IsNullOrWhiteSpace(model.Notes))
|
|
{
|
|
model.Notes = null;
|
|
}
|
|
}
|
|
|
|
await _offerSponsorshipCommand.CreateSponsorshipAsync(
|
|
await _organizationRepository.GetByIdAsync(sponsoringOrgId),
|
|
await _organizationUserRepository.GetByOrganizationAsync(sponsoringOrgId, model.SponsoringUserId ?? _currentContext.UserId ?? default),
|
|
model.PlanSponsorshipType, model.SponsoredEmail, model.FriendlyName, model.Notes);
|
|
}
|
|
|
|
[HttpDelete("{sponsoringOrgId}")]
|
|
[HttpPost("{sponsoringOrgId}/delete")]
|
|
public async Task RevokeSponsorship(Guid sponsoringOrgId)
|
|
{
|
|
var orgUser = await _organizationUserRepository.GetByOrganizationAsync(sponsoringOrgId, _currentContext.UserId ?? default);
|
|
|
|
if (orgUser == null)
|
|
{
|
|
throw new BadRequestException("Unknown Organization User");
|
|
}
|
|
|
|
var existingOrgSponsorship = await _organizationSponsorshipRepository
|
|
.GetBySponsoringOrganizationUserIdAsync(orgUser.Id);
|
|
|
|
await _revokeSponsorshipCommand.RevokeSponsorshipAsync(existingOrgSponsorship);
|
|
}
|
|
}
|