mirror of
https://github.com/bitwarden/server.git
synced 2025-04-05 05:00:19 -05:00
9d59e4dc9e
* [AC-1637] Added HtmlEncodingStringConverter to encode/decode special chars on JSON serialization/deserialization * [AC-1637] Added unit tests for HtmlEncodingStringConverter * [AC-1637] Moved expected values on unit tests to the arrange phase * [AC-1637] Added HtmlEncodingStringConverter to properties that are for input/output of Org Name and Business name * [AC-1637] Modified views in Admin project to decode values to display * [AC-1637] Replaced Html.Raw with HttpUtility.HtmlDecode * [AC-1637] Added JsonConverter to Provider DTOs * [AC-1637] Modified HandlebarsMailService to decode organization name before sending emails * Revert "[AC-1637] Added JsonConverter to Provider DTOs" This reverts commit 94d507cf93e4c9f7f02890b9286dba90bad3f516. * [AC-1637] Fixed Admin panel organization search * [AC-1637] Sanitizing Organization name and business name on creation in Admin panel * [AC-1637] Sanitizing organization name and business name on creation by a provider * [AC-1637] Sanitizing provider name on creation and on viewing in admin panel * [AC-1637] Added sanitization to more places where Org name is used * [AC-1637] Swapped using HttpUtility for WebUtility since the later is part of the dotnet framework * [AC-1637] Updated error messages * [AC-1637] Decoding on Admin panel add existing organization * [AC-1637] Fix HTML decoding issues * [AC-1637] Refactor HTML decoding in View and Model classes on Admin panel * [AC-1637] Refactor provider name and business name usages to use methods that output decoded values * [AC-1637] Fixed typo * [AC-1637] Renamed Provider methods to retrieve Decoded Name and BusinessName * [AC-1637] Renamed Organization methods to retrieve Decoded Name and BusinessName * [AC-1637] Update the display name method in the `ProviderOrganizationOrganizationDetails` class to `DisplayName()`
156 lines
7.2 KiB
C#
156 lines
7.2 KiB
C#
using System.Text.Json.Serialization;
|
|
using Bit.Core.AdminConsole.Enums.Provider;
|
|
using Bit.Core.Auth.Enums;
|
|
using Bit.Core.Auth.Models.Data;
|
|
using Bit.Core.Enums;
|
|
using Bit.Core.Models.Api;
|
|
using Bit.Core.Models.Data;
|
|
using Bit.Core.Models.Data.Organizations.OrganizationUsers;
|
|
using Bit.Core.Utilities;
|
|
|
|
namespace Bit.Api.AdminConsole.Models.Response;
|
|
|
|
public class ProfileOrganizationResponseModel : ResponseModel
|
|
{
|
|
public ProfileOrganizationResponseModel(string str) : base(str) { }
|
|
|
|
public ProfileOrganizationResponseModel(OrganizationUserOrganizationDetails organization) : this("profileOrganization")
|
|
{
|
|
Id = organization.OrganizationId;
|
|
Name = organization.Name;
|
|
UsePolicies = organization.UsePolicies;
|
|
UseSso = organization.UseSso;
|
|
UseKeyConnector = organization.UseKeyConnector;
|
|
UseScim = organization.UseScim;
|
|
UseGroups = organization.UseGroups;
|
|
UseDirectory = organization.UseDirectory;
|
|
UseEvents = organization.UseEvents;
|
|
UseTotp = organization.UseTotp;
|
|
Use2fa = organization.Use2fa;
|
|
UseApi = organization.UseApi;
|
|
UseResetPassword = organization.UseResetPassword;
|
|
UseSecretsManager = organization.UseSecretsManager;
|
|
UsePasswordManager = organization.UsePasswordManager;
|
|
UsersGetPremium = organization.UsersGetPremium;
|
|
UseCustomPermissions = organization.UseCustomPermissions;
|
|
UseActivateAutofillPolicy = StaticStore.GetPlan(organization.PlanType).Product == ProductType.Enterprise;
|
|
SelfHost = organization.SelfHost;
|
|
Seats = organization.Seats;
|
|
MaxCollections = organization.MaxCollections;
|
|
MaxStorageGb = organization.MaxStorageGb;
|
|
Key = organization.Key;
|
|
HasPublicAndPrivateKeys = organization.PublicKey != null && organization.PrivateKey != null;
|
|
Status = organization.Status;
|
|
Type = organization.Type;
|
|
Enabled = organization.Enabled;
|
|
SsoBound = !string.IsNullOrWhiteSpace(organization.SsoExternalId);
|
|
Identifier = organization.Identifier;
|
|
Permissions = CoreHelpers.LoadClassFromJsonData<Permissions>(organization.Permissions);
|
|
ResetPasswordEnrolled = organization.ResetPasswordKey != null;
|
|
UserId = organization.UserId;
|
|
ProviderId = organization.ProviderId;
|
|
ProviderName = organization.ProviderName;
|
|
ProviderType = organization.ProviderType;
|
|
FamilySponsorshipFriendlyName = organization.FamilySponsorshipFriendlyName;
|
|
FamilySponsorshipAvailable = FamilySponsorshipFriendlyName == null &&
|
|
StaticStore.GetSponsoredPlan(PlanSponsorshipType.FamiliesForEnterprise)
|
|
.UsersCanSponsor(organization);
|
|
PlanProductType = StaticStore.GetPlan(organization.PlanType).Product;
|
|
FamilySponsorshipLastSyncDate = organization.FamilySponsorshipLastSyncDate;
|
|
FamilySponsorshipToDelete = organization.FamilySponsorshipToDelete;
|
|
FamilySponsorshipValidUntil = organization.FamilySponsorshipValidUntil;
|
|
AccessSecretsManager = organization.AccessSecretsManager;
|
|
LimitCollectionCreationDeletion = organization.LimitCollectionCreationDeletion;
|
|
AllowAdminAccessToAllCollectionItems = organization.AllowAdminAccessToAllCollectionItems;
|
|
FlexibleCollections = organization.FlexibleCollections;
|
|
|
|
if (organization.SsoConfig != null)
|
|
{
|
|
var ssoConfigData = SsoConfigurationData.Deserialize(organization.SsoConfig);
|
|
KeyConnectorEnabled = ssoConfigData.MemberDecryptionType == MemberDecryptionType.KeyConnector && !string.IsNullOrEmpty(ssoConfigData.KeyConnectorUrl);
|
|
KeyConnectorUrl = ssoConfigData.KeyConnectorUrl;
|
|
}
|
|
|
|
if (FlexibleCollections)
|
|
{
|
|
// Downgrade Custom users with no other permissions than 'Edit/Delete Assigned Collections' to User
|
|
if (Type == OrganizationUserType.Custom)
|
|
{
|
|
if ((Permissions.EditAssignedCollections || Permissions.DeleteAssignedCollections) &&
|
|
Permissions is
|
|
{
|
|
AccessEventLogs: false,
|
|
AccessImportExport: false,
|
|
AccessReports: false,
|
|
CreateNewCollections: false,
|
|
EditAnyCollection: false,
|
|
DeleteAnyCollection: false,
|
|
ManageGroups: false,
|
|
ManagePolicies: false,
|
|
ManageSso: false,
|
|
ManageUsers: false,
|
|
ManageResetPassword: false,
|
|
ManageScim: false
|
|
})
|
|
{
|
|
organization.Type = OrganizationUserType.User;
|
|
}
|
|
}
|
|
|
|
// Set 'Edit/Delete Assigned Collections' custom permissions to false
|
|
Permissions.EditAssignedCollections = false;
|
|
Permissions.DeleteAssignedCollections = false;
|
|
}
|
|
}
|
|
|
|
public Guid Id { get; set; }
|
|
[JsonConverter(typeof(HtmlEncodingStringConverter))]
|
|
public string Name { get; set; }
|
|
public bool UsePolicies { get; set; }
|
|
public bool UseSso { get; set; }
|
|
public bool UseKeyConnector { get; set; }
|
|
public bool UseScim { get; set; }
|
|
public bool UseGroups { get; set; }
|
|
public bool UseDirectory { get; set; }
|
|
public bool UseEvents { get; set; }
|
|
public bool UseTotp { get; set; }
|
|
public bool Use2fa { get; set; }
|
|
public bool UseApi { get; set; }
|
|
public bool UseResetPassword { get; set; }
|
|
public bool UseSecretsManager { get; set; }
|
|
public bool UsePasswordManager { get; set; }
|
|
public bool UsersGetPremium { get; set; }
|
|
public bool UseCustomPermissions { get; set; }
|
|
public bool UseActivateAutofillPolicy { get; set; }
|
|
public bool SelfHost { get; set; }
|
|
public int? Seats { get; set; }
|
|
public short? MaxCollections { get; set; }
|
|
public short? MaxStorageGb { get; set; }
|
|
public string Key { get; set; }
|
|
public OrganizationUserStatusType Status { get; set; }
|
|
public OrganizationUserType Type { get; set; }
|
|
public bool Enabled { get; set; }
|
|
public bool SsoBound { get; set; }
|
|
public string Identifier { get; set; }
|
|
public Permissions Permissions { get; set; }
|
|
public bool ResetPasswordEnrolled { get; set; }
|
|
public Guid? UserId { get; set; }
|
|
public bool HasPublicAndPrivateKeys { get; set; }
|
|
public Guid? ProviderId { get; set; }
|
|
[JsonConverter(typeof(HtmlEncodingStringConverter))]
|
|
public string ProviderName { get; set; }
|
|
public ProviderType? ProviderType { get; set; }
|
|
public string FamilySponsorshipFriendlyName { get; set; }
|
|
public bool FamilySponsorshipAvailable { get; set; }
|
|
public ProductType PlanProductType { get; set; }
|
|
public bool KeyConnectorEnabled { get; set; }
|
|
public string KeyConnectorUrl { get; set; }
|
|
public DateTime? FamilySponsorshipLastSyncDate { get; set; }
|
|
public DateTime? FamilySponsorshipValidUntil { get; set; }
|
|
public bool? FamilySponsorshipToDelete { get; set; }
|
|
public bool AccessSecretsManager { get; set; }
|
|
public bool LimitCollectionCreationDeletion { get; set; }
|
|
public bool AllowAdminAccessToAllCollectionItems { get; set; }
|
|
public bool FlexibleCollections { get; set; }
|
|
}
|