mirror of
https://github.com/bitwarden/server.git
synced 2025-04-05 05:00:19 -05:00
1234 lines
55 KiB
C#
1234 lines
55 KiB
C#
using System.Net;
|
|
using System.Reflection;
|
|
using Bit.Core.AdminConsole.Entities;
|
|
using Bit.Core.AdminConsole.Entities.Provider;
|
|
using Bit.Core.AdminConsole.Models.Mail;
|
|
using Bit.Core.Auth.Entities;
|
|
using Bit.Core.Auth.Models.Mail;
|
|
using Bit.Core.Billing.Enums;
|
|
using Bit.Core.Billing.Models.Mail;
|
|
using Bit.Core.Entities;
|
|
using Bit.Core.Models.Data.Organizations;
|
|
using Bit.Core.Models.Mail;
|
|
using Bit.Core.Models.Mail.FamiliesForEnterprise;
|
|
using Bit.Core.Models.Mail.Provider;
|
|
using Bit.Core.SecretsManager.Models.Mail;
|
|
using Bit.Core.Settings;
|
|
using Bit.Core.Utilities;
|
|
using Bit.Core.Vault.Models.Data;
|
|
using HandlebarsDotNet;
|
|
|
|
namespace Bit.Core.Services;
|
|
|
|
public class HandlebarsMailService : IMailService
|
|
{
|
|
private const string Namespace = "Bit.Core.MailTemplates.Handlebars";
|
|
private const string _utcTimeZoneDisplay = "UTC";
|
|
|
|
private readonly GlobalSettings _globalSettings;
|
|
private readonly IMailDeliveryService _mailDeliveryService;
|
|
private readonly IMailEnqueuingService _mailEnqueuingService;
|
|
private readonly Dictionary<string, HandlebarsTemplate<object, object>> _templateCache = new();
|
|
|
|
private bool _registeredHelpersAndPartials = false;
|
|
|
|
public HandlebarsMailService(
|
|
GlobalSettings globalSettings,
|
|
IMailDeliveryService mailDeliveryService,
|
|
IMailEnqueuingService mailEnqueuingService)
|
|
{
|
|
_globalSettings = globalSettings;
|
|
_mailDeliveryService = mailDeliveryService;
|
|
_mailEnqueuingService = mailEnqueuingService;
|
|
}
|
|
|
|
public async Task SendVerifyEmailEmailAsync(string email, Guid userId, string token)
|
|
{
|
|
var message = CreateDefaultMessage("Verify Your Email", email);
|
|
var model = new VerifyEmailModel
|
|
{
|
|
Token = WebUtility.UrlEncode(token),
|
|
UserId = userId,
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName
|
|
};
|
|
await AddMessageContentAsync(message, "Auth.VerifyEmail", model);
|
|
message.MetaData.Add("SendGridBypassListManagement", true);
|
|
message.Category = "VerifyEmail";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendRegistrationVerificationEmailAsync(string email, string token)
|
|
{
|
|
var message = CreateDefaultMessage("Verify Your Email", email);
|
|
var model = new RegisterVerifyEmail
|
|
{
|
|
Token = WebUtility.UrlEncode(token),
|
|
Email = WebUtility.UrlEncode(email),
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.Vault,
|
|
SiteName = _globalSettings.SiteName
|
|
};
|
|
await AddMessageContentAsync(message, "Auth.RegistrationVerifyEmail", model);
|
|
message.MetaData.Add("SendGridBypassListManagement", true);
|
|
message.Category = "VerifyEmail";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendTrialInitiationSignupEmailAsync(
|
|
bool isExistingUser,
|
|
string email,
|
|
string token,
|
|
ProductTierType productTier,
|
|
IEnumerable<ProductType> products)
|
|
{
|
|
var message = CreateDefaultMessage("Verify your email", email);
|
|
var model = new TrialInitiationVerifyEmail
|
|
{
|
|
IsExistingUser = isExistingUser,
|
|
Token = WebUtility.UrlEncode(token),
|
|
Email = WebUtility.UrlEncode(email),
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName,
|
|
ProductTier = productTier,
|
|
Product = products
|
|
};
|
|
await AddMessageContentAsync(message, "Billing.TrialInitiationVerifyEmail", model);
|
|
message.MetaData.Add("SendGridBypassListManagement", true);
|
|
message.Category = "VerifyEmail";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendVerifyDeleteEmailAsync(string email, Guid userId, string token)
|
|
{
|
|
var message = CreateDefaultMessage("Delete Your Account", email);
|
|
var model = new VerifyDeleteModel
|
|
{
|
|
Token = WebUtility.UrlEncode(token),
|
|
UserId = userId,
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName,
|
|
Email = email,
|
|
EmailEncoded = WebUtility.UrlEncode(email)
|
|
};
|
|
await AddMessageContentAsync(message, "Auth.VerifyDelete", model);
|
|
message.MetaData.Add("SendGridBypassListManagement", true);
|
|
message.Category = "VerifyDelete";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendCannotDeleteManagedAccountEmailAsync(string email)
|
|
{
|
|
var message = CreateDefaultMessage("Delete Your Account", email);
|
|
var model = new CannotDeleteManagedAccountViewModel
|
|
{
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName,
|
|
};
|
|
await AddMessageContentAsync(message, "AdminConsole.CannotDeleteManagedAccount", model);
|
|
message.Category = "CannotDeleteManagedAccount";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendChangeEmailAlreadyExistsEmailAsync(string fromEmail, string toEmail)
|
|
{
|
|
var message = CreateDefaultMessage("Your Email Change", toEmail);
|
|
var model = new ChangeEmailExistsViewModel
|
|
{
|
|
FromEmail = fromEmail,
|
|
ToEmail = toEmail,
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName
|
|
};
|
|
await AddMessageContentAsync(message, "ChangeEmailAlreadyExists", model);
|
|
message.Category = "ChangeEmailAlreadyExists";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendChangeEmailEmailAsync(string newEmailAddress, string token)
|
|
{
|
|
var message = CreateDefaultMessage("Your Email Change", newEmailAddress);
|
|
var model = new UserVerificationEmailTokenViewModel
|
|
{
|
|
Token = token,
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName
|
|
};
|
|
await AddMessageContentAsync(message, "ChangeEmail", model);
|
|
message.MetaData.Add("SendGridBypassListManagement", true);
|
|
message.Category = "ChangeEmail";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendTwoFactorEmailAsync(string email, string accountEmail, string token, string deviceIp, string deviceType, bool authentication = true)
|
|
{
|
|
var message = CreateDefaultMessage("Your Bitwarden Verification Code", email);
|
|
var requestDateTime = DateTime.UtcNow;
|
|
var model = new TwoFactorEmailTokenViewModel
|
|
{
|
|
Token = token,
|
|
EmailTotpAction = authentication ? "logging in" : "setting up two-step login",
|
|
AccountEmail = accountEmail,
|
|
TheDate = requestDateTime.ToLongDateString(),
|
|
TheTime = requestDateTime.ToShortTimeString(),
|
|
TimeZone = _utcTimeZoneDisplay,
|
|
DeviceIp = deviceIp,
|
|
DeviceType = deviceType,
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName,
|
|
};
|
|
await AddMessageContentAsync(message, "Auth.TwoFactorEmail", model);
|
|
message.MetaData.Add("SendGridBypassListManagement", true);
|
|
message.Category = "TwoFactorEmail";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendMasterPasswordHintEmailAsync(string email, string hint)
|
|
{
|
|
var message = CreateDefaultMessage("Your Master Password Hint", email);
|
|
var model = new MasterPasswordHintViewModel
|
|
{
|
|
Hint = CoreHelpers.SanitizeForEmail(hint, false),
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName
|
|
};
|
|
await AddMessageContentAsync(message, "Auth.MasterPasswordHint", model);
|
|
message.Category = "MasterPasswordHint";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendNoMasterPasswordHintEmailAsync(string email)
|
|
{
|
|
var message = CreateDefaultMessage("Your Master Password Hint", email);
|
|
var model = new BaseMailModel
|
|
{
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName
|
|
};
|
|
await AddMessageContentAsync(message, "Auth.NoMasterPasswordHint", model);
|
|
message.Category = "NoMasterPasswordHint";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendOrganizationAutoscaledEmailAsync(Organization organization, int initialSeatCount, IEnumerable<string> ownerEmails)
|
|
{
|
|
var message = CreateDefaultMessage($"{organization.DisplayName()} Seat Count Has Increased", ownerEmails);
|
|
var model = new OrganizationSeatsAutoscaledViewModel
|
|
{
|
|
InitialSeatCount = initialSeatCount,
|
|
CurrentSeatCount = organization.Seats.Value,
|
|
VaultSubscriptionUrl = GetCloudVaultSubscriptionUrl(organization.Id)
|
|
};
|
|
|
|
await AddMessageContentAsync(message, "OrganizationSeatsAutoscaled", model);
|
|
message.Category = "OrganizationSeatsAutoscaled";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendOrganizationMaxSeatLimitReachedEmailAsync(Organization organization, int maxSeatCount, IEnumerable<string> ownerEmails)
|
|
{
|
|
var message = CreateDefaultMessage($"{organization.DisplayName()} Seat Limit Reached", ownerEmails);
|
|
var model = new OrganizationSeatsMaxReachedViewModel
|
|
{
|
|
MaxSeatCount = maxSeatCount,
|
|
VaultSubscriptionUrl = GetCloudVaultSubscriptionUrl(organization.Id)
|
|
};
|
|
|
|
await AddMessageContentAsync(message, "OrganizationSeatsMaxReached", model);
|
|
message.Category = "OrganizationSeatsMaxReached";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendOrganizationAcceptedEmailAsync(Organization organization, string userIdentifier,
|
|
IEnumerable<string> adminEmails, bool hasAccessSecretsManager = false)
|
|
{
|
|
var message = CreateDefaultMessage($"Action Required: {userIdentifier} Needs to Be Confirmed", adminEmails);
|
|
var model = new OrganizationUserAcceptedViewModel
|
|
{
|
|
OrganizationId = organization.Id,
|
|
OrganizationName = CoreHelpers.SanitizeForEmail(organization.DisplayName(), false),
|
|
UserIdentifier = userIdentifier,
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName
|
|
};
|
|
await AddMessageContentAsync(message, "OrganizationUserAccepted", model);
|
|
message.Category = "OrganizationUserAccepted";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendOrganizationConfirmedEmailAsync(string organizationName, string email, bool hasAccessSecretsManager = false)
|
|
{
|
|
var message = CreateDefaultMessage($"You Have Been Confirmed To {organizationName}", email);
|
|
var model = new OrganizationUserConfirmedViewModel
|
|
{
|
|
TitleFirst = "You're confirmed as a member of ",
|
|
TitleSecondBold = CoreHelpers.SanitizeForEmail(organizationName, false),
|
|
TitleThird = "!",
|
|
OrganizationName = CoreHelpers.SanitizeForEmail(organizationName, false),
|
|
WebVaultUrl = hasAccessSecretsManager
|
|
? _globalSettings.BaseServiceUri.VaultWithHashAndSecretManagerProduct
|
|
: _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName
|
|
};
|
|
await AddMessageContentAsync(message, "OrganizationUserConfirmed", model);
|
|
message.Category = "OrganizationUserConfirmed";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendOrganizationInviteEmailsAsync(OrganizationInvitesInfo orgInvitesInfo)
|
|
{
|
|
MailQueueMessage CreateMessage(string email, object model)
|
|
{
|
|
var message = CreateDefaultMessage($"Join {orgInvitesInfo.OrganizationName}", email);
|
|
return new MailQueueMessage(message, "OrganizationUserInvited", model);
|
|
}
|
|
|
|
var messageModels = orgInvitesInfo.OrgUserTokenPairs.Select(orgUserTokenPair =>
|
|
{
|
|
|
|
var orgUserInviteViewModel = OrganizationUserInvitedViewModel.CreateFromInviteInfo(
|
|
orgInvitesInfo, orgUserTokenPair.OrgUser, orgUserTokenPair.Token, _globalSettings);
|
|
return CreateMessage(orgUserTokenPair.OrgUser.Email, orgUserInviteViewModel);
|
|
});
|
|
|
|
await EnqueueMailAsync(messageModels);
|
|
}
|
|
|
|
public async Task SendOrganizationUserRemovedForPolicyTwoStepEmailAsync(string organizationName, string email)
|
|
{
|
|
var message = CreateDefaultMessage($"You have been removed from {organizationName}", email);
|
|
var model = new OrganizationUserRemovedForPolicyTwoStepViewModel
|
|
{
|
|
OrganizationName = CoreHelpers.SanitizeForEmail(organizationName, false),
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName
|
|
};
|
|
await AddMessageContentAsync(message, "OrganizationUserRemovedForPolicyTwoStep", model);
|
|
message.Category = "OrganizationUserRemovedForPolicyTwoStep";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendOrganizationUserRevokedForTwoFactorPolicyEmailAsync(string organizationName, string email)
|
|
{
|
|
var message = CreateDefaultMessage($"You have been revoked from {organizationName}", email);
|
|
var model = new OrganizationUserRevokedForPolicyTwoFactorViewModel
|
|
{
|
|
OrganizationName = CoreHelpers.SanitizeForEmail(organizationName, false),
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName
|
|
};
|
|
await AddMessageContentAsync(message, "AdminConsole.OrganizationUserRevokedForTwoFactorPolicy", model);
|
|
message.Category = "OrganizationUserRevokedForTwoFactorPolicy";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendWelcomeEmailAsync(User user)
|
|
{
|
|
var message = CreateDefaultMessage("Welcome to Bitwarden!", user.Email);
|
|
var model = new BaseMailModel
|
|
{
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName
|
|
};
|
|
await AddMessageContentAsync(message, "Welcome", model);
|
|
message.Category = "Welcome";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendTrialInitiationEmailAsync(string userEmail)
|
|
{
|
|
var message = CreateDefaultMessage("Welcome to Bitwarden; 3 steps to get started!", userEmail);
|
|
var model = new BaseMailModel
|
|
{
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHashAndSecretManagerProduct,
|
|
SiteName = _globalSettings.SiteName
|
|
};
|
|
await AddMessageContentAsync(message, "TrialInitiation", model);
|
|
message.Category = "Welcome";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendInitiateDeletProviderEmailAsync(string email, Provider provider, string token)
|
|
{
|
|
var message = CreateDefaultMessage("Request to Delete Your Provider", email);
|
|
var model = new ProviderInitiateDeleteModel
|
|
{
|
|
Token = WebUtility.UrlEncode(token),
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName,
|
|
ProviderId = provider.Id,
|
|
ProviderName = CoreHelpers.SanitizeForEmail(provider.DisplayName(), false),
|
|
ProviderNameUrlEncoded = WebUtility.UrlEncode(provider.Name),
|
|
ProviderBillingEmail = provider.BillingEmail,
|
|
ProviderCreationDate = provider.CreationDate.ToLongDateString(),
|
|
ProviderCreationTime = provider.CreationDate.ToShortTimeString(),
|
|
TimeZone = _utcTimeZoneDisplay,
|
|
};
|
|
await AddMessageContentAsync(message, "Provider.InitiateDeleteProvider", model);
|
|
message.MetaData.Add("SendGridBypassListManagement", true);
|
|
message.Category = "InitiateDeleteProvider";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendPasswordlessSignInAsync(string returnUrl, string token, string email)
|
|
{
|
|
var message = CreateDefaultMessage("[Admin] Continue Logging In", email);
|
|
var url = CoreHelpers.ExtendQuery(new Uri($"{_globalSettings.BaseServiceUri.Admin}/login/confirm"),
|
|
new Dictionary<string, string>
|
|
{
|
|
["returnUrl"] = returnUrl,
|
|
["email"] = email,
|
|
["token"] = token,
|
|
});
|
|
var model = new PasswordlessSignInModel
|
|
{
|
|
Url = url.OriginalString
|
|
};
|
|
await AddMessageContentAsync(message, "Auth.PasswordlessSignIn", model);
|
|
message.Category = "PasswordlessSignIn";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendInvoiceUpcoming(
|
|
string email,
|
|
decimal amount,
|
|
DateTime dueDate,
|
|
List<string> items,
|
|
bool mentionInvoices) => await SendInvoiceUpcoming(new List<string> { email }, amount, dueDate, items, mentionInvoices);
|
|
|
|
public async Task SendInvoiceUpcoming(
|
|
IEnumerable<string> emails,
|
|
decimal amount,
|
|
DateTime dueDate,
|
|
List<string> items,
|
|
bool mentionInvoices)
|
|
{
|
|
var message = CreateDefaultMessage("Your Subscription Will Renew Soon", emails);
|
|
var model = new InvoiceUpcomingViewModel
|
|
{
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName,
|
|
AmountDue = amount,
|
|
DueDate = dueDate,
|
|
Items = items,
|
|
MentionInvoices = mentionInvoices
|
|
};
|
|
await AddMessageContentAsync(message, "InvoiceUpcoming", model);
|
|
message.Category = "InvoiceUpcoming";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendPaymentFailedAsync(string email, decimal amount, bool mentionInvoices)
|
|
{
|
|
var message = CreateDefaultMessage("Payment Failed", email);
|
|
var model = new PaymentFailedViewModel
|
|
{
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName,
|
|
Amount = amount,
|
|
MentionInvoices = mentionInvoices
|
|
};
|
|
await AddMessageContentAsync(message, "PaymentFailed", model);
|
|
message.Category = "PaymentFailed";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendAddedCreditAsync(string email, decimal amount)
|
|
{
|
|
var message = CreateDefaultMessage("Account Credit Payment Processed", email);
|
|
var model = new AddedCreditViewModel
|
|
{
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName,
|
|
Amount = amount
|
|
};
|
|
await AddMessageContentAsync(message, "AddedCredit", model);
|
|
message.Category = "AddedCredit";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendLicenseExpiredAsync(IEnumerable<string> emails, string organizationName = null)
|
|
{
|
|
var message = CreateDefaultMessage("License Expired", emails);
|
|
var model = new LicenseExpiredViewModel();
|
|
if (organizationName != null)
|
|
{
|
|
model.OrganizationName = CoreHelpers.SanitizeForEmail(organizationName, false);
|
|
}
|
|
await AddMessageContentAsync(message, "LicenseExpired", model);
|
|
message.Category = "LicenseExpired";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendRequestSMAccessToAdminEmailAsync(IEnumerable<string> emails, string organizationName, string requestingUserName, string emailContent)
|
|
{
|
|
var message = CreateDefaultMessage("Access Requested for Secrets Manager", emails);
|
|
var model = new RequestSecretsManagerAccessViewModel
|
|
{
|
|
OrgName = CoreHelpers.SanitizeForEmail(organizationName, false),
|
|
UserNameRequestingAccess = CoreHelpers.SanitizeForEmail(requestingUserName, false),
|
|
EmailContent = CoreHelpers.SanitizeForEmail(emailContent, false),
|
|
};
|
|
await AddMessageContentAsync(message, "SecretsManagerAccessRequest", model);
|
|
message.Category = "SecretsManagerAccessRequest";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendClaimedDomainUserEmailAsync(ManagedUserDomainClaimedEmails emailList)
|
|
{
|
|
await EnqueueMailAsync(emailList.EmailList.Select(email =>
|
|
CreateMessage(email, emailList.Organization)));
|
|
return;
|
|
|
|
MailQueueMessage CreateMessage(string emailAddress, Organization org) =>
|
|
new(CreateDefaultMessage($"Your Bitwarden account is claimed by {org.DisplayName()}", emailAddress),
|
|
"AdminConsole.DomainClaimedByOrganization",
|
|
new ClaimedDomainUserNotificationViewModel
|
|
{
|
|
TitleFirst = $"Your Bitwarden account is claimed by {org.DisplayName()}",
|
|
OrganizationName = CoreHelpers.SanitizeForEmail(org.DisplayName(), false)
|
|
});
|
|
}
|
|
|
|
public async Task SendNewDeviceLoggedInEmail(string email, string deviceType, DateTime timestamp, string ip)
|
|
{
|
|
var message = CreateDefaultMessage($"New Device Logged In From {deviceType}", email);
|
|
var model = new NewDeviceLoggedInModel
|
|
{
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName,
|
|
DeviceType = deviceType,
|
|
TheDate = timestamp.ToLongDateString(),
|
|
TheTime = timestamp.ToShortTimeString(),
|
|
TimeZone = _utcTimeZoneDisplay,
|
|
IpAddress = ip
|
|
};
|
|
await AddMessageContentAsync(message, "NewDeviceLoggedIn", model);
|
|
message.Category = "NewDeviceLoggedIn";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendRecoverTwoFactorEmail(string email, DateTime timestamp, string ip)
|
|
{
|
|
var message = CreateDefaultMessage($"Recover 2FA From {ip}", email);
|
|
var model = new RecoverTwoFactorModel
|
|
{
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName,
|
|
TheDate = timestamp.ToLongDateString(),
|
|
TheTime = timestamp.ToShortTimeString(),
|
|
TimeZone = _utcTimeZoneDisplay,
|
|
IpAddress = ip
|
|
};
|
|
await AddMessageContentAsync(message, "Auth.RecoverTwoFactor", model);
|
|
message.Category = "RecoverTwoFactor";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendOrganizationUserRemovedForPolicySingleOrgEmailAsync(string organizationName, string email)
|
|
{
|
|
var message = CreateDefaultMessage($"You have been removed from {organizationName}", email);
|
|
var model = new OrganizationUserRemovedForPolicySingleOrgViewModel
|
|
{
|
|
OrganizationName = CoreHelpers.SanitizeForEmail(organizationName, false),
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName
|
|
};
|
|
await AddMessageContentAsync(message, "OrganizationUserRemovedForPolicySingleOrg", model);
|
|
message.Category = "OrganizationUserRemovedForPolicySingleOrg";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendOrganizationUserRevokedForPolicySingleOrgEmailAsync(string organizationName, string email)
|
|
{
|
|
var message = CreateDefaultMessage($"You have been revoked from {organizationName}", email);
|
|
var model = new OrganizationUserRevokedForPolicySingleOrgViewModel
|
|
{
|
|
OrganizationName = CoreHelpers.SanitizeForEmail(organizationName, false),
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName
|
|
};
|
|
await AddMessageContentAsync(message, "AdminConsole.OrganizationUserRevokedForSingleOrgPolicy", model);
|
|
message.Category = "OrganizationUserRevokedForSingleOrgPolicy";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendEnqueuedMailMessageAsync(IMailQueueMessage queueMessage)
|
|
{
|
|
var message = CreateDefaultMessage(queueMessage.Subject, queueMessage.ToEmails);
|
|
message.BccEmails = queueMessage.BccEmails;
|
|
message.Category = queueMessage.Category;
|
|
await AddMessageContentAsync(message, queueMessage.TemplateName, queueMessage.Model);
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendAdminResetPasswordEmailAsync(string email, string userName, string orgName)
|
|
{
|
|
var message = CreateDefaultMessage("Your admin has initiated account recovery", email);
|
|
var model = new AdminResetPasswordViewModel()
|
|
{
|
|
UserName = GetUserIdentifier(email, userName),
|
|
OrgName = CoreHelpers.SanitizeForEmail(orgName, false),
|
|
};
|
|
await AddMessageContentAsync(message, "AdminResetPassword", model);
|
|
message.Category = "AdminResetPassword";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
private Task EnqueueMailAsync(IMailQueueMessage queueMessage) =>
|
|
_mailEnqueuingService.EnqueueAsync(queueMessage, SendEnqueuedMailMessageAsync);
|
|
|
|
private Task EnqueueMailAsync(IEnumerable<IMailQueueMessage> queueMessages) =>
|
|
_mailEnqueuingService.EnqueueManyAsync(queueMessages, SendEnqueuedMailMessageAsync);
|
|
|
|
private MailMessage CreateDefaultMessage(string subject, string toEmail)
|
|
{
|
|
return CreateDefaultMessage(subject, new List<string> { toEmail });
|
|
}
|
|
|
|
private static MailMessage CreateDefaultMessage(string subject, IEnumerable<string> toEmails)
|
|
{
|
|
return new MailMessage
|
|
{
|
|
ToEmails = toEmails,
|
|
Subject = subject,
|
|
MetaData = new Dictionary<string, object>()
|
|
};
|
|
}
|
|
|
|
private async Task AddMessageContentAsync<T>(MailMessage message, string templateName, T model)
|
|
{
|
|
message.HtmlContent = await RenderAsync($"{templateName}.html", model);
|
|
message.TextContent = await RenderAsync($"{templateName}.text", model);
|
|
}
|
|
|
|
private async Task<string> RenderAsync<T>(string templateName, T model)
|
|
{
|
|
await RegisterHelpersAndPartialsAsync();
|
|
if (!_templateCache.TryGetValue(templateName, out var template))
|
|
{
|
|
var source = await ReadSourceAsync(templateName);
|
|
if (source != null)
|
|
{
|
|
template = Handlebars.Compile(source);
|
|
_templateCache.Add(templateName, template);
|
|
}
|
|
}
|
|
return template != null ? template(model) : null;
|
|
}
|
|
|
|
private async Task<string> ReadSourceAsync(string templateName)
|
|
{
|
|
var assembly = typeof(HandlebarsMailService).GetTypeInfo().Assembly;
|
|
var fullTemplateName = $"{Namespace}.{templateName}.hbs";
|
|
if (!assembly.GetManifestResourceNames().Any(f => f == fullTemplateName))
|
|
{
|
|
return null;
|
|
}
|
|
using (var s = assembly.GetManifestResourceStream(fullTemplateName))
|
|
using (var sr = new StreamReader(s))
|
|
{
|
|
return await sr.ReadToEndAsync();
|
|
}
|
|
}
|
|
|
|
private async Task RegisterHelpersAndPartialsAsync()
|
|
{
|
|
if (_registeredHelpersAndPartials)
|
|
{
|
|
return;
|
|
}
|
|
_registeredHelpersAndPartials = true;
|
|
|
|
var basicHtmlLayoutSource = await ReadSourceAsync("Layouts.Basic.html");
|
|
Handlebars.RegisterTemplate("BasicHtmlLayout", basicHtmlLayoutSource);
|
|
var basicTextLayoutSource = await ReadSourceAsync("Layouts.Basic.text");
|
|
Handlebars.RegisterTemplate("BasicTextLayout", basicTextLayoutSource);
|
|
var fullHtmlLayoutSource = await ReadSourceAsync("Layouts.Full.html");
|
|
Handlebars.RegisterTemplate("FullHtmlLayout", fullHtmlLayoutSource);
|
|
var fullTextLayoutSource = await ReadSourceAsync("Layouts.Full.text");
|
|
Handlebars.RegisterTemplate("FullTextLayout", fullTextLayoutSource);
|
|
var fullUpdatedHtmlLayoutSource = await ReadSourceAsync("Layouts.FullUpdated.html");
|
|
Handlebars.RegisterTemplate("FullUpdatedHtmlLayout", fullUpdatedHtmlLayoutSource);
|
|
var fullUpdatedTextLayoutSource = await ReadSourceAsync("Layouts.FullUpdated.text");
|
|
Handlebars.RegisterTemplate("FullUpdatedTextLayout", fullUpdatedTextLayoutSource);
|
|
var titleContactUsHtmlLayoutSource = await ReadSourceAsync("Layouts.TitleContactUs.html");
|
|
Handlebars.RegisterTemplate("TitleContactUsHtmlLayout", titleContactUsHtmlLayoutSource);
|
|
var titleContactUsTextLayoutSource = await ReadSourceAsync("Layouts.TitleContactUs.text");
|
|
Handlebars.RegisterTemplate("TitleContactUsTextLayout", titleContactUsTextLayoutSource);
|
|
var securityTasksHtmlLayoutSource = await ReadSourceAsync("Layouts.SecurityTasks.html");
|
|
Handlebars.RegisterTemplate("SecurityTasksHtmlLayout", securityTasksHtmlLayoutSource);
|
|
var securityTasksTextLayoutSource = await ReadSourceAsync("Layouts.SecurityTasks.text");
|
|
Handlebars.RegisterTemplate("SecurityTasksTextLayout", securityTasksTextLayoutSource);
|
|
|
|
Handlebars.RegisterHelper("date", (writer, context, parameters) =>
|
|
{
|
|
if (parameters.Length == 0 || !(parameters[0] is DateTime))
|
|
{
|
|
writer.WriteSafeString(string.Empty);
|
|
return;
|
|
}
|
|
if (parameters.Length > 0 && parameters[1] is string)
|
|
{
|
|
writer.WriteSafeString(((DateTime)parameters[0]).ToString(parameters[1].ToString()));
|
|
}
|
|
else
|
|
{
|
|
writer.WriteSafeString(((DateTime)parameters[0]).ToString());
|
|
}
|
|
});
|
|
|
|
Handlebars.RegisterHelper("usd", (writer, context, parameters) =>
|
|
{
|
|
if (parameters.Length == 0 || !(parameters[0] is decimal))
|
|
{
|
|
writer.WriteSafeString(string.Empty);
|
|
return;
|
|
}
|
|
writer.WriteSafeString(((decimal)parameters[0]).ToString("C"));
|
|
});
|
|
|
|
Handlebars.RegisterHelper("link", (writer, context, parameters) =>
|
|
{
|
|
if (parameters.Length == 0)
|
|
{
|
|
writer.WriteSafeString(string.Empty);
|
|
return;
|
|
}
|
|
|
|
var text = parameters[0].ToString();
|
|
var href = text;
|
|
var clickTrackingOff = false;
|
|
if (parameters.Length == 2)
|
|
{
|
|
if (parameters[1] is string)
|
|
{
|
|
var p1 = parameters[1].ToString();
|
|
if (p1 == "true" || p1 == "false")
|
|
{
|
|
clickTrackingOff = p1 == "true";
|
|
}
|
|
else
|
|
{
|
|
href = p1;
|
|
}
|
|
}
|
|
else if (parameters[1] is bool)
|
|
{
|
|
clickTrackingOff = (bool)parameters[1];
|
|
}
|
|
}
|
|
else if (parameters.Length > 2)
|
|
{
|
|
if (parameters[1] is string)
|
|
{
|
|
href = parameters[1].ToString();
|
|
}
|
|
if (parameters[2] is string)
|
|
{
|
|
var p2 = parameters[2].ToString();
|
|
if (p2 == "true" || p2 == "false")
|
|
{
|
|
clickTrackingOff = p2 == "true";
|
|
}
|
|
}
|
|
else if (parameters[2] is bool)
|
|
{
|
|
clickTrackingOff = (bool)parameters[2];
|
|
}
|
|
}
|
|
|
|
var clickTrackingText = (clickTrackingOff ? "clicktracking=off" : string.Empty);
|
|
writer.WriteSafeString($"<a href=\"{href}\" target=\"_blank\" {clickTrackingText}>{text}</a>");
|
|
});
|
|
}
|
|
|
|
public async Task SendEmergencyAccessInviteEmailAsync(EmergencyAccess emergencyAccess, string name, string token)
|
|
{
|
|
var message = CreateDefaultMessage($"Emergency Access Contact Invite", emergencyAccess.Email);
|
|
var model = new EmergencyAccessInvitedViewModel
|
|
{
|
|
Name = CoreHelpers.SanitizeForEmail(name),
|
|
Email = WebUtility.UrlEncode(emergencyAccess.Email),
|
|
Id = emergencyAccess.Id.ToString(),
|
|
Token = WebUtility.UrlEncode(token),
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName
|
|
};
|
|
await AddMessageContentAsync(message, "Auth.EmergencyAccessInvited", model);
|
|
message.Category = "EmergencyAccessInvited";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendEmergencyAccessAcceptedEmailAsync(string granteeEmail, string email)
|
|
{
|
|
var message = CreateDefaultMessage($"Accepted Emergency Access", email);
|
|
var model = new EmergencyAccessAcceptedViewModel
|
|
{
|
|
GranteeEmail = granteeEmail,
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName
|
|
};
|
|
await AddMessageContentAsync(message, "Auth.EmergencyAccessAccepted", model);
|
|
message.Category = "EmergencyAccessAccepted";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendEmergencyAccessConfirmedEmailAsync(string grantorName, string email)
|
|
{
|
|
var message = CreateDefaultMessage($"You Have Been Confirmed as Emergency Access Contact", email);
|
|
var model = new EmergencyAccessConfirmedViewModel
|
|
{
|
|
Name = CoreHelpers.SanitizeForEmail(grantorName),
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName
|
|
};
|
|
await AddMessageContentAsync(message, "Auth.EmergencyAccessConfirmed", model);
|
|
message.Category = "EmergencyAccessConfirmed";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendEmergencyAccessRecoveryInitiated(EmergencyAccess emergencyAccess, string initiatingName, string email)
|
|
{
|
|
var message = CreateDefaultMessage("Emergency Access Initiated", email);
|
|
|
|
var remainingTime = DateTime.UtcNow - emergencyAccess.RecoveryInitiatedDate.GetValueOrDefault();
|
|
|
|
var model = new EmergencyAccessRecoveryViewModel
|
|
{
|
|
Name = CoreHelpers.SanitizeForEmail(initiatingName),
|
|
Action = emergencyAccess.Type.ToString(),
|
|
DaysLeft = emergencyAccess.WaitTimeDays - Convert.ToInt32((remainingTime).TotalDays),
|
|
};
|
|
await AddMessageContentAsync(message, "Auth.EmergencyAccessRecovery", model);
|
|
message.Category = "EmergencyAccessRecovery";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendEmergencyAccessRecoveryApproved(EmergencyAccess emergencyAccess, string approvingName, string email)
|
|
{
|
|
var message = CreateDefaultMessage("Emergency Access Approved", email);
|
|
var model = new EmergencyAccessApprovedViewModel
|
|
{
|
|
Name = CoreHelpers.SanitizeForEmail(approvingName),
|
|
};
|
|
await AddMessageContentAsync(message, "Auth.EmergencyAccessApproved", model);
|
|
message.Category = "EmergencyAccessApproved";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendEmergencyAccessRecoveryRejected(EmergencyAccess emergencyAccess, string rejectingName, string email)
|
|
{
|
|
var message = CreateDefaultMessage("Emergency Access Rejected", email);
|
|
var model = new EmergencyAccessRejectedViewModel
|
|
{
|
|
Name = CoreHelpers.SanitizeForEmail(rejectingName),
|
|
};
|
|
await AddMessageContentAsync(message, "Auth.EmergencyAccessRejected", model);
|
|
message.Category = "EmergencyAccessRejected";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendEmergencyAccessRecoveryReminder(EmergencyAccess emergencyAccess, string initiatingName, string email)
|
|
{
|
|
var message = CreateDefaultMessage("Pending Emergency Access Request", email);
|
|
|
|
var remainingTime = DateTime.UtcNow - emergencyAccess.RecoveryInitiatedDate.GetValueOrDefault();
|
|
|
|
var model = new EmergencyAccessRecoveryViewModel
|
|
{
|
|
Name = CoreHelpers.SanitizeForEmail(initiatingName),
|
|
Action = emergencyAccess.Type.ToString(),
|
|
DaysLeft = emergencyAccess.WaitTimeDays - Convert.ToInt32((remainingTime).TotalDays),
|
|
};
|
|
await AddMessageContentAsync(message, "Auth.EmergencyAccessRecoveryReminder", model);
|
|
message.Category = "EmergencyAccessRecoveryReminder";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendEmergencyAccessRecoveryTimedOut(EmergencyAccess emergencyAccess, string initiatingName, string email)
|
|
{
|
|
var message = CreateDefaultMessage("Emergency Access Granted", email);
|
|
var model = new EmergencyAccessRecoveryTimedOutViewModel
|
|
{
|
|
Name = CoreHelpers.SanitizeForEmail(initiatingName),
|
|
Action = emergencyAccess.Type.ToString(),
|
|
};
|
|
await AddMessageContentAsync(message, "Auth.EmergencyAccessRecoveryTimedOut", model);
|
|
message.Category = "EmergencyAccessRecoveryTimedOut";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendProviderSetupInviteEmailAsync(Provider provider, string token, string email)
|
|
{
|
|
var message = CreateDefaultMessage($"Create a Provider", email);
|
|
var model = new ProviderSetupInviteViewModel
|
|
{
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName,
|
|
ProviderId = provider.Id.ToString(),
|
|
Email = WebUtility.UrlEncode(email),
|
|
Token = WebUtility.UrlEncode(token),
|
|
};
|
|
await AddMessageContentAsync(message, "Provider.ProviderSetupInvite", model);
|
|
message.Category = "ProviderSetupInvite";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendProviderInviteEmailAsync(string providerName, ProviderUser providerUser, string token, string email)
|
|
{
|
|
var message = CreateDefaultMessage($"Join {providerName}", email);
|
|
var model = new ProviderUserInvitedViewModel
|
|
{
|
|
ProviderName = CoreHelpers.SanitizeForEmail(providerName, false),
|
|
Email = WebUtility.UrlEncode(providerUser.Email),
|
|
ProviderId = providerUser.ProviderId.ToString(),
|
|
ProviderUserId = providerUser.Id.ToString(),
|
|
ProviderNameUrlEncoded = WebUtility.UrlEncode(providerName),
|
|
Token = WebUtility.UrlEncode(token),
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName,
|
|
};
|
|
await AddMessageContentAsync(message, "Provider.ProviderUserInvited", model);
|
|
message.Category = "ProviderSetupInvite";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendProviderConfirmedEmailAsync(string providerName, string email)
|
|
{
|
|
var message = CreateDefaultMessage($"You Have Been Confirmed To {providerName}", email);
|
|
var model = new ProviderUserConfirmedViewModel
|
|
{
|
|
ProviderName = CoreHelpers.SanitizeForEmail(providerName),
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName
|
|
};
|
|
await AddMessageContentAsync(message, "Provider.ProviderUserConfirmed", model);
|
|
message.Category = "ProviderUserConfirmed";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendProviderUserRemoved(string providerName, string email)
|
|
{
|
|
var message = CreateDefaultMessage($"You Have Been Removed from {providerName}", email);
|
|
var model = new ProviderUserRemovedViewModel
|
|
{
|
|
ProviderName = CoreHelpers.SanitizeForEmail(providerName),
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName
|
|
};
|
|
await AddMessageContentAsync(message, "Provider.ProviderUserRemoved", model);
|
|
message.Category = "ProviderUserRemoved";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendProviderUpdatePaymentMethod(
|
|
Guid organizationId,
|
|
string organizationName,
|
|
string providerName,
|
|
IEnumerable<string> emails)
|
|
{
|
|
var message = CreateDefaultMessage("Update your billing information", emails);
|
|
|
|
var model = new ProviderUpdatePaymentMethodViewModel
|
|
{
|
|
OrganizationId = organizationId.ToString(),
|
|
OrganizationName = CoreHelpers.SanitizeForEmail(organizationName),
|
|
ProviderName = CoreHelpers.SanitizeForEmail(providerName),
|
|
SiteName = _globalSettings.SiteName,
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash
|
|
};
|
|
|
|
await AddMessageContentAsync(message, "Provider.ProviderUpdatePaymentMethod", model);
|
|
|
|
message.Category = "ProviderUpdatePaymentMethod";
|
|
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendUpdatedTempPasswordEmailAsync(string email, string userName)
|
|
{
|
|
var message = CreateDefaultMessage("Master Password Has Been Changed", email);
|
|
var model = new UpdateTempPasswordViewModel()
|
|
{
|
|
UserName = GetUserIdentifier(email, userName)
|
|
};
|
|
await AddMessageContentAsync(message, "UpdatedTempPassword", model);
|
|
message.Category = "UpdatedTempPassword";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendFamiliesForEnterpriseOfferEmailAsync(string sponsorOrgName, string email, bool existingAccount, string token) =>
|
|
await BulkSendFamiliesForEnterpriseOfferEmailAsync(sponsorOrgName, new[] { (email, existingAccount, token) });
|
|
|
|
public async Task BulkSendFamiliesForEnterpriseOfferEmailAsync(string sponsorOrgName, IEnumerable<(string Email, bool ExistingAccount, string Token)> invites)
|
|
{
|
|
MailQueueMessage CreateMessage((string Email, bool ExistingAccount, string Token) invite)
|
|
{
|
|
var message = CreateDefaultMessage("Accept Your Free Families Subscription", invite.Email);
|
|
message.Category = "FamiliesForEnterpriseOffer";
|
|
var model = new FamiliesForEnterpriseOfferViewModel
|
|
{
|
|
SponsorOrgName = sponsorOrgName,
|
|
SponsoredEmail = WebUtility.UrlEncode(invite.Email),
|
|
ExistingAccount = invite.ExistingAccount,
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName,
|
|
SponsorshipToken = invite.Token,
|
|
};
|
|
var templateName = invite.ExistingAccount ?
|
|
"FamiliesForEnterprise.FamiliesForEnterpriseOfferExistingAccount" :
|
|
"FamiliesForEnterprise.FamiliesForEnterpriseOfferNewAccount";
|
|
|
|
return new MailQueueMessage(message, templateName, model);
|
|
}
|
|
var messageModels = invites.Select(invite => CreateMessage(invite));
|
|
await EnqueueMailAsync(messageModels);
|
|
}
|
|
|
|
public async Task SendFamiliesForEnterpriseRedeemedEmailsAsync(string familyUserEmail, string sponsorEmail)
|
|
{
|
|
// Email family user
|
|
await SendFamiliesForEnterpriseInviteRedeemedToFamilyUserEmailAsync(familyUserEmail);
|
|
|
|
// Email enterprise org user
|
|
await SendFamiliesForEnterpriseInviteRedeemedToEnterpriseUserEmailAsync(sponsorEmail);
|
|
}
|
|
|
|
private async Task SendFamiliesForEnterpriseInviteRedeemedToFamilyUserEmailAsync(string email)
|
|
{
|
|
var message = CreateDefaultMessage("Success! Families Subscription Accepted", email);
|
|
await AddMessageContentAsync(message, "FamiliesForEnterprise.FamiliesForEnterpriseRedeemedToFamilyUser", new BaseMailModel());
|
|
message.Category = "FamilyForEnterpriseRedeemedToFamilyUser";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
private async Task SendFamiliesForEnterpriseInviteRedeemedToEnterpriseUserEmailAsync(string email)
|
|
{
|
|
var message = CreateDefaultMessage("Success! Families Subscription Accepted", email);
|
|
await AddMessageContentAsync(message, "FamiliesForEnterprise.FamiliesForEnterpriseRedeemedToEnterpriseUser", new BaseMailModel());
|
|
message.Category = "FamilyForEnterpriseRedeemedToEnterpriseUser";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendFamiliesForEnterpriseSponsorshipRevertingEmailAsync(string email, DateTime expirationDate)
|
|
{
|
|
var message = CreateDefaultMessage("Your Families Sponsorship was Removed", email);
|
|
var model = new FamiliesForEnterpriseSponsorshipRevertingViewModel
|
|
{
|
|
ExpirationDate = expirationDate,
|
|
};
|
|
await AddMessageContentAsync(message, "FamiliesForEnterprise.FamiliesForEnterpriseSponsorshipReverting", model);
|
|
message.Category = "FamiliesForEnterpriseSponsorshipReverting";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendOTPEmailAsync(string email, string token)
|
|
{
|
|
var message = CreateDefaultMessage("Your Bitwarden Verification Code", email);
|
|
var model = new UserVerificationEmailTokenViewModel
|
|
{
|
|
Token = token,
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName,
|
|
};
|
|
await AddMessageContentAsync(message, "Auth.OTPEmail", model);
|
|
message.MetaData.Add("SendGridBypassListManagement", true);
|
|
message.Category = "OTP";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendFailedLoginAttemptsEmailAsync(string email, DateTime utcNow, string ip)
|
|
{
|
|
var message = CreateDefaultMessage("Failed login attempts detected", email);
|
|
var model = new FailedAuthAttemptsModel()
|
|
{
|
|
TheDate = utcNow.ToLongDateString(),
|
|
TheTime = utcNow.ToShortTimeString(),
|
|
TimeZone = _utcTimeZoneDisplay,
|
|
IpAddress = ip,
|
|
AffectedEmail = email
|
|
|
|
};
|
|
await AddMessageContentAsync(message, "Auth.FailedLoginAttempts", model);
|
|
message.Category = "FailedLoginAttempts";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendFailedTwoFactorAttemptsEmailAsync(string email, DateTime utcNow, string ip)
|
|
{
|
|
var message = CreateDefaultMessage("Failed login attempts detected", email);
|
|
var model = new FailedAuthAttemptsModel()
|
|
{
|
|
TheDate = utcNow.ToLongDateString(),
|
|
TheTime = utcNow.ToShortTimeString(),
|
|
TimeZone = _utcTimeZoneDisplay,
|
|
IpAddress = ip,
|
|
AffectedEmail = email
|
|
|
|
};
|
|
await AddMessageContentAsync(message, "Auth.FailedTwoFactorAttempts", model);
|
|
message.Category = "FailedTwoFactorAttempts";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendUnverifiedOrganizationDomainEmailAsync(IEnumerable<string> adminEmails, string organizationId, string domainName)
|
|
{
|
|
var message = CreateDefaultMessage("Domain not verified", adminEmails);
|
|
var model = new OrganizationDomainUnverifiedViewModel
|
|
{
|
|
Url = $"{_globalSettings.BaseServiceUri.VaultWithHash}/organizations/{organizationId}/settings/domain-verification",
|
|
DomainName = domainName
|
|
};
|
|
await AddMessageContentAsync(message, "OrganizationDomainUnverified", model);
|
|
message.Category = "UnverifiedOrganizationDomain";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendUnclaimedOrganizationDomainEmailAsync(IEnumerable<string> adminEmails, string organizationId, string domainName)
|
|
{
|
|
var message = CreateDefaultMessage("Domain not claimed", adminEmails);
|
|
var model = new OrganizationDomainUnverifiedViewModel
|
|
{
|
|
Url = $"{_globalSettings.BaseServiceUri.VaultWithHash}/organizations/{organizationId}/settings/domain-verification",
|
|
DomainName = domainName
|
|
};
|
|
await AddMessageContentAsync(message, "OrganizationDomainUnclaimed", model);
|
|
message.Category = "UnclaimedOrganizationDomain";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendSecretsManagerMaxSeatLimitReachedEmailAsync(Organization organization, int maxSeatCount,
|
|
IEnumerable<string> ownerEmails)
|
|
{
|
|
var message = CreateDefaultMessage($"{organization.DisplayName()} Secrets Manager Seat Limit Reached", ownerEmails);
|
|
var model = new OrganizationSeatsMaxReachedViewModel
|
|
{
|
|
MaxSeatCount = maxSeatCount,
|
|
VaultSubscriptionUrl = GetCloudVaultSubscriptionUrl(organization.Id)
|
|
};
|
|
|
|
await AddMessageContentAsync(message, "OrganizationSmSeatsMaxReached", model);
|
|
message.Category = "OrganizationSmSeatsMaxReached";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendSecretsManagerMaxServiceAccountLimitReachedEmailAsync(Organization organization, int maxSeatCount,
|
|
IEnumerable<string> ownerEmails)
|
|
{
|
|
var message = CreateDefaultMessage($"{organization.DisplayName()} Secrets Manager Machine Accounts Limit Reached", ownerEmails);
|
|
var model = new OrganizationServiceAccountsMaxReachedViewModel
|
|
{
|
|
MaxServiceAccountsCount = maxSeatCount,
|
|
VaultSubscriptionUrl = GetCloudVaultSubscriptionUrl(organization.Id)
|
|
};
|
|
|
|
await AddMessageContentAsync(message, "OrganizationSmServiceAccountsMaxReached", model);
|
|
message.Category = "OrganizationSmServiceAccountsMaxReached";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendTrustedDeviceAdminApprovalEmailAsync(string email, DateTime utcNow, string ip,
|
|
string deviceTypeAndIdentifier)
|
|
{
|
|
var message = CreateDefaultMessage("Login request approved", email);
|
|
var model = new TrustedDeviceAdminApprovalViewModel
|
|
{
|
|
TheDate = utcNow.ToLongDateString(),
|
|
TheTime = utcNow.ToShortTimeString(),
|
|
TimeZone = _utcTimeZoneDisplay,
|
|
IpAddress = ip,
|
|
DeviceType = deviceTypeAndIdentifier,
|
|
};
|
|
await AddMessageContentAsync(message, "Auth.TrustedDeviceAdminApproval", model);
|
|
message.Category = "TrustedDeviceAdminApproval";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendInitiateDeleteOrganzationEmailAsync(string email, Organization organization, string token)
|
|
{
|
|
var message = CreateDefaultMessage("Request to Delete Your Organization", email);
|
|
var model = new OrganizationInitiateDeleteModel
|
|
{
|
|
Token = WebUtility.UrlEncode(token),
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
SiteName = _globalSettings.SiteName,
|
|
OrganizationId = organization.Id,
|
|
OrganizationName = CoreHelpers.SanitizeForEmail(organization.DisplayName(), false),
|
|
OrganizationNameUrlEncoded = WebUtility.UrlEncode(organization.Name),
|
|
OrganizationBillingEmail = organization.BillingEmail,
|
|
OrganizationPlan = organization.Plan,
|
|
OrganizationSeats = organization.Seats.ToString(),
|
|
OrganizationCreationDate = organization.CreationDate.ToLongDateString(),
|
|
OrganizationCreationTime = organization.CreationDate.ToShortTimeString(),
|
|
TimeZone = _utcTimeZoneDisplay,
|
|
};
|
|
await AddMessageContentAsync(message, "InitiateDeleteOrganzation", model);
|
|
message.MetaData.Add("SendGridBypassListManagement", true);
|
|
message.Category = "InitiateDeleteOrganzation";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendFamiliesForEnterpriseRemoveSponsorshipsEmailAsync(string email, string offerAcceptanceDate, string organizationId,
|
|
string organizationName)
|
|
{
|
|
var message = CreateDefaultMessage("Removal of Free Bitwarden Families plan", email);
|
|
var model = new FamiliesForEnterpriseRemoveOfferViewModel
|
|
{
|
|
SponsoredOrganizationId = organizationId,
|
|
SponsoringOrgName = CoreHelpers.SanitizeForEmail(organizationName),
|
|
OfferAcceptanceDate = offerAcceptanceDate,
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash
|
|
};
|
|
await AddMessageContentAsync(message, "FamiliesForEnterprise.FamiliesForEnterpriseRemovedFromFamilyUser", model);
|
|
message.Category = "FamiliesForEnterpriseRemovedFromFamilyUser";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendDeviceApprovalRequestedNotificationEmailAsync(IEnumerable<string> adminEmails, Guid organizationId, string email, string userName)
|
|
{
|
|
var templateName = _globalSettings.SelfHosted ?
|
|
"AdminConsole.SelfHostNotifyAdminDeviceApprovalRequested" :
|
|
"AdminConsole.NotifyAdminDeviceApprovalRequested";
|
|
var message = CreateDefaultMessage("Review SSO login request for new device", adminEmails);
|
|
var model = new DeviceApprovalRequestedViewModel
|
|
{
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
UserNameRequestingAccess = GetUserIdentifier(email, userName),
|
|
OrganizationId = organizationId,
|
|
};
|
|
await AddMessageContentAsync(message, templateName, model);
|
|
message.Category = "DeviceApprovalRequested";
|
|
await _mailDeliveryService.SendEmailAsync(message);
|
|
}
|
|
|
|
public async Task SendBulkSecurityTaskNotificationsAsync(string orgName, IEnumerable<UserSecurityTasksCount> securityTaskNotificaitons)
|
|
{
|
|
MailQueueMessage CreateMessage(UserSecurityTasksCount notification)
|
|
{
|
|
var message = CreateDefaultMessage($"{orgName} has identified {notification.TaskCount} at-risk password{(notification.TaskCount.Equals(1) ? "" : "s")}", notification.Email);
|
|
var model = new SecurityTaskNotificationViewModel
|
|
{
|
|
OrgName = orgName,
|
|
TaskCount = notification.TaskCount,
|
|
WebVaultUrl = _globalSettings.BaseServiceUri.VaultWithHash,
|
|
};
|
|
message.Category = "SecurityTasksNotification";
|
|
return new MailQueueMessage(message, "SecurityTasksNotification", model);
|
|
}
|
|
var messageModels = securityTaskNotificaitons.Select(CreateMessage);
|
|
await EnqueueMailAsync(messageModels.ToList());
|
|
}
|
|
|
|
private static string GetUserIdentifier(string email, string userName)
|
|
{
|
|
return string.IsNullOrEmpty(userName) ? email : CoreHelpers.SanitizeForEmail(userName, false);
|
|
}
|
|
|
|
private string GetCloudVaultSubscriptionUrl(Guid organizationId)
|
|
=> _globalSettings.BaseServiceUri.CloudRegion?.ToLower() switch
|
|
{
|
|
"eu" => $"https://vault.bitwarden.eu/#/organizations/{organizationId}/billing/subscription",
|
|
_ => $"https://vault.bitwarden.com/#/organizations/{organizationId}/billing/subscription"
|
|
};
|
|
}
|