admin/server
1
0
Fork 0
mirror of https://github.com/bitwarden/server.git synced 2026-01-31 22:23:18 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
3ae573bd8d48b21db035edd2e5be25b4bcaeeb7e
server/src/Api/Controllers/AccountsController.cs

884 lines
30 KiB
C#
Raw Normal View History

Create sso user api (#886) * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * Update AccountsController.cs * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * added a token to the existing user sso link flow * added a token to the existing user sso link flow * fixed a typo * added an event log for unlink ssoUser records * fixed a merge issue * fixed a busted test * fixed a busted test * ran a formatter over everything & changed .vscode settings in .gitignore * chagned a variable to use string interpolation * removed a blank line * Changed TokenPurpose enum to a static class of strings * code review cleanups * formatting fix * Changed parameters & logging for delete sso user * changed th method used to get organization user for deleting sso user records Co-authored-by: Kyle Spearrin <kspearrin@users.noreply.github.com>
2020-08-26 14:12:04 -04:00
using Bit.Api.Utilities;
refactor for addtnl. payment service (braintree)
2017-07-28 12:09:12 -04:00
using Bit.Core;
Create sso user api (#886) * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * Update AccountsController.cs * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * added a token to the existing user sso link flow * added a token to the existing user sso link flow * fixed a typo * added an event log for unlink ssoUser records * fixed a merge issue * fixed a busted test * fixed a busted test * ran a formatter over everything & changed .vscode settings in .gitignore * chagned a variable to use string interpolation * removed a blank line * Changed TokenPurpose enum to a static class of strings * code review cleanups * formatting fix * Changed parameters & logging for delete sso user * changed th method used to get organization user for deleting sso user records Co-authored-by: Kyle Spearrin <kspearrin@users.noreply.github.com>
2020-08-26 14:12:04 -04:00
using Bit.Core.Enums;
using Bit.Core.Exceptions;
using Bit.Core.Models.Api;
using Bit.Core.Models.Api.Request.Accounts;
premium signup with license file
2017-08-11 17:06:31 -04:00
using Bit.Core.Models.Business;
Create sso user api (#886) * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * Update AccountsController.cs * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * added a token to the existing user sso link flow * added a token to the existing user sso link flow * fixed a typo * added an event log for unlink ssoUser records * fixed a merge issue * fixed a busted test * fixed a busted test * ran a formatter over everything & changed .vscode settings in .gitignore * chagned a variable to use string interpolation * removed a blank line * Changed TokenPurpose enum to a static class of strings * code review cleanups * formatting fix * Changed parameters & logging for delete sso user * changed th method used to get organization user for deleting sso user records Co-authored-by: Kyle Spearrin <kspearrin@users.noreply.github.com>
2020-08-26 14:12:04 -04:00
using Bit.Core.Models.Data;
support for attachments keys load existing items and set attachments on key update
2018-11-14 17:19:04 -05:00
using Bit.Core.Models.Table;
Create sso user api (#886) * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * Update AccountsController.cs * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * added a token to the existing user sso link flow * added a token to the existing user sso link flow * fixed a typo * added an event log for unlink ssoUser records * fixed a merge issue * fixed a busted test * fixed a busted test * ran a formatter over everything & changed .vscode settings in .gitignore * chagned a variable to use string interpolation * removed a blank line * Changed TokenPurpose enum to a static class of strings * code review cleanups * formatting fix * Changed parameters & logging for delete sso user * changed th method used to get organization user for deleting sso user records Co-authored-by: Kyle Spearrin <kspearrin@users.noreply.github.com>
2020-08-26 14:12:04 -04:00
using Bit.Core.Repositories;
using Bit.Core.Services;
Use sas token for attachment downloads (#1153) * Get limited life attachment download URL This change limits url download to a 1min lifetime. This requires moving to a new container to allow for non-public blob access. Clients will have to call GetAttachmentData api function to receive the download URL. For backwards compatibility, attachment URLs are still present, but will not work for attachments stored in non-public access blobs. * Make GlobalSettings interface for testing * Test LocalAttachmentStorageService equivalence * Remove comment * Add missing globalSettings using * Simplify default attachment container * Default to attachments containe for existing methods A new upload method will be made for uploading to attachments-v2. For compatibility for clients which don't use these new methods, we need to still use the old container. The new container will be used only for new uploads * Remove Default MetaData fixture. * Keep attachments container blob-level security for all instances * Close unclosed FileStream * Favor default value for noop services
2021-02-22 15:35:16 -06:00
using Bit.Core.Settings;
Create sso user api (#886) * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * Update AccountsController.cs * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * added a token to the existing user sso link flow * added a token to the existing user sso link flow * fixed a typo * added an event log for unlink ssoUser records * fixed a merge issue * fixed a busted test * fixed a busted test * ran a formatter over everything & changed .vscode settings in .gitignore * chagned a variable to use string interpolation * removed a blank line * Changed TokenPurpose enum to a static class of strings * code review cleanups * formatting fix * Changed parameters & logging for delete sso user * changed th method used to get organization user for deleting sso user records Co-authored-by: Kyle Spearrin <kspearrin@users.noreply.github.com>
2020-08-26 14:12:04 -04:00
using Bit.Core.Utilities;
using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Mvc;
using System;
support for attachments keys load existing items and set attachments on key update
2018-11-14 17:19:04 -05:00
using System.Collections.Generic;
Create sso user api (#886) * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * Update AccountsController.cs * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * added a token to the existing user sso link flow * added a token to the existing user sso link flow * fixed a typo * added an event log for unlink ssoUser records * fixed a merge issue * fixed a busted test * fixed a busted test * ran a formatter over everything & changed .vscode settings in .gitignore * chagned a variable to use string interpolation * removed a blank line * Changed TokenPurpose enum to a static class of strings * code review cleanups * formatting fix * Changed parameters & logging for delete sso user * changed th method used to get organization user for deleting sso user records Co-authored-by: Kyle Spearrin <kspearrin@users.noreply.github.com>
2020-08-26 14:12:04 -04:00
using System.Linq;
using System.Threading.Tasks;
[Provider] Setup provider (#1378)
2021-06-30 09:35:26 +02:00
using Bit.Core.Enums.Provider;
initial commit of source
2015-12-08 22:57:38 -05:00
namespace Bit.Api.Controllers
{
[Route("accounts")]
[Authorize("Application")]
public class AccountsController : Controller
{
Create sso user api (#886) * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * Update AccountsController.cs * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * added a token to the existing user sso link flow * added a token to the existing user sso link flow * fixed a typo * added an event log for unlink ssoUser records * fixed a merge issue * fixed a busted test * fixed a busted test * ran a formatter over everything & changed .vscode settings in .gitignore * chagned a variable to use string interpolation * removed a blank line * Changed TokenPurpose enum to a static class of strings * code review cleanups * formatting fix * Changed parameters & logging for delete sso user * changed th method used to get organization user for deleting sso user records Co-authored-by: Kyle Spearrin <kspearrin@users.noreply.github.com>
2020-08-26 14:12:04 -04:00
private readonly GlobalSettings _globalSettings;
support for attachments keys load existing items and set attachments on key update
2018-11-14 17:19:04 -05:00
private readonly ICipherRepository _cipherRepository;
private readonly IFolderRepository _folderRepository;
Create sso user api (#886) * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * Update AccountsController.cs * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * added a token to the existing user sso link flow * added a token to the existing user sso link flow * fixed a typo * added an event log for unlink ssoUser records * fixed a merge issue * fixed a busted test * fixed a busted test * ran a formatter over everything & changed .vscode settings in .gitignore * chagned a variable to use string interpolation * removed a blank line * Changed TokenPurpose enum to a static class of strings * code review cleanups * formatting fix * Changed parameters & logging for delete sso user * changed th method used to get organization user for deleting sso user records Co-authored-by: Kyle Spearrin <kspearrin@users.noreply.github.com>
2020-08-26 14:12:04 -04:00
private readonly IOrganizationService _organizationService;
org user details apis
2017-03-06 20:51:13 -05:00
private readonly IOrganizationUserRepository _organizationUserRepository;
[Provider] Setup provider (#1378)
2021-06-30 09:35:26 +02:00
private readonly IProviderUserRepository _providerUserRepository;
inject stripepaymentservice
2019-02-08 23:53:09 -05:00
private readonly IPaymentService _paymentService;
Create sso user api (#886) * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * Update AccountsController.cs * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * added a token to the existing user sso link flow * added a token to the existing user sso link flow * fixed a typo * added an event log for unlink ssoUser records * fixed a merge issue * fixed a busted test * fixed a busted test * ran a formatter over everything & changed .vscode settings in .gitignore * chagned a variable to use string interpolation * removed a blank line * Changed TokenPurpose enum to a static class of strings * code review cleanups * formatting fix * Changed parameters & logging for delete sso user * changed th method used to get organization user for deleting sso user records Co-authored-by: Kyle Spearrin <kspearrin@users.noreply.github.com>
2020-08-26 14:12:04 -04:00
private readonly IUserRepository _userRepository;
private readonly IUserService _userService;
[send.key] Update send.key when account encryption key is rotated (#1417) * Rotate send.key with account encryption key * Update tests * Improve and refactor style, fix typo * Use null instead of empty lists * Revert "Use null instead of empty lists" This reverts commit 775a52ca568ce7eb2b5dd85a33a3b38dcab339e4. * Fix style (use AddRange instead of reassignment)
2021-07-02 06:27:03 +10:00
private readonly ISendRepository _sendRepository;
private readonly ISendService _sendService;
initial commit of source
2015-12-08 22:57:38 -05:00
public AccountsController(
Create sso user api (#886) * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * Update AccountsController.cs * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * added a token to the existing user sso link flow * added a token to the existing user sso link flow * fixed a typo * added an event log for unlink ssoUser records * fixed a merge issue * fixed a busted test * fixed a busted test * ran a formatter over everything & changed .vscode settings in .gitignore * chagned a variable to use string interpolation * removed a blank line * Changed TokenPurpose enum to a static class of strings * code review cleanups * formatting fix * Changed parameters & logging for delete sso user * changed th method used to get organization user for deleting sso user records Co-authored-by: Kyle Spearrin <kspearrin@users.noreply.github.com>
2020-08-26 14:12:04 -04:00
GlobalSettings globalSettings,
support for attachments keys load existing items and set attachments on key update
2018-11-14 17:19:04 -05:00
ICipherRepository cipherRepository,
IFolderRepository folderRepository,
Create sso user api (#886) * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * Update AccountsController.cs * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * added a token to the existing user sso link flow * added a token to the existing user sso link flow * fixed a typo * added an event log for unlink ssoUser records * fixed a merge issue * fixed a busted test * fixed a busted test * ran a formatter over everything & changed .vscode settings in .gitignore * chagned a variable to use string interpolation * removed a blank line * Changed TokenPurpose enum to a static class of strings * code review cleanups * formatting fix * Changed parameters & logging for delete sso user * changed th method used to get organization user for deleting sso user records Co-authored-by: Kyle Spearrin <kspearrin@users.noreply.github.com>
2020-08-26 14:12:04 -04:00
IOrganizationService organizationService,
org user details apis
2017-03-06 20:51:13 -05:00
IOrganizationUserRepository organizationUserRepository,
[Provider] Setup provider (#1378)
2021-06-30 09:35:26 +02:00
IProviderUserRepository providerUserRepository,
inject stripepaymentservice
2019-02-08 23:53:09 -05:00
IPaymentService paymentService,
Create sso user api (#886) * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * Update AccountsController.cs * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * added a token to the existing user sso link flow * added a token to the existing user sso link flow * fixed a typo * added an event log for unlink ssoUser records * fixed a merge issue * fixed a busted test * fixed a busted test * ran a formatter over everything & changed .vscode settings in .gitignore * chagned a variable to use string interpolation * removed a blank line * Changed TokenPurpose enum to a static class of strings * code review cleanups * formatting fix * Changed parameters & logging for delete sso user * changed th method used to get organization user for deleting sso user records Co-authored-by: Kyle Spearrin <kspearrin@users.noreply.github.com>
2020-08-26 14:12:04 -04:00
IUserRepository userRepository,
[send.key] Update send.key when account encryption key is rotated (#1417) * Rotate send.key with account encryption key * Update tests * Improve and refactor style, fix typo * Use null instead of empty lists * Revert "Use null instead of empty lists" This reverts commit 775a52ca568ce7eb2b5dd85a33a3b38dcab339e4. * Fix style (use AddRange instead of reassignment)
2021-07-02 06:27:03 +10:00
IUserService userService,
ISendRepository sendRepository,
ISendService sendService)
initial commit of source
2015-12-08 22:57:38 -05:00
{
support for attachments keys load existing items and set attachments on key update
2018-11-14 17:19:04 -05:00
_cipherRepository = cipherRepository;
_folderRepository = folderRepository;
Create sso user api (#886) * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * Update AccountsController.cs * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * added a token to the existing user sso link flow * added a token to the existing user sso link flow * fixed a typo * added an event log for unlink ssoUser records * fixed a merge issue * fixed a busted test * fixed a busted test * ran a formatter over everything & changed .vscode settings in .gitignore * chagned a variable to use string interpolation * removed a blank line * Changed TokenPurpose enum to a static class of strings * code review cleanups * formatting fix * Changed parameters & logging for delete sso user * changed th method used to get organization user for deleting sso user records Co-authored-by: Kyle Spearrin <kspearrin@users.noreply.github.com>
2020-08-26 14:12:04 -04:00
_globalSettings = globalSettings;
_organizationService = organizationService;
org user details apis
2017-03-06 20:51:13 -05:00
_organizationUserRepository = organizationUserRepository;
[Provider] Setup provider (#1378)
2021-06-30 09:35:26 +02:00
_providerUserRepository = providerUserRepository;
inject stripepaymentservice
2019-02-08 23:53:09 -05:00
_paymentService = paymentService;
Create sso user api (#886) * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * Update AccountsController.cs * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * added a token to the existing user sso link flow * added a token to the existing user sso link flow * fixed a typo * added an event log for unlink ssoUser records * fixed a merge issue * fixed a busted test * fixed a busted test * ran a formatter over everything & changed .vscode settings in .gitignore * chagned a variable to use string interpolation * removed a blank line * Changed TokenPurpose enum to a static class of strings * code review cleanups * formatting fix * Changed parameters & logging for delete sso user * changed th method used to get organization user for deleting sso user records Co-authored-by: Kyle Spearrin <kspearrin@users.noreply.github.com>
2020-08-26 14:12:04 -04:00
_userRepository = userRepository;
_userService = userService;
[send.key] Update send.key when account encryption key is rotated (#1417) * Rotate send.key with account encryption key * Update tests * Improve and refactor style, fix typo * Use null instead of empty lists * Revert "Use null instead of empty lists" This reverts commit 775a52ca568ce7eb2b5dd85a33a3b38dcab339e4. * Fix style (use AddRange instead of reassignment)
2021-07-02 06:27:03 +10:00
_sendRepository = sendRepository;
_sendService = sendService;
initial commit of source
2015-12-08 22:57:38 -05:00
}
support for user defined kdf parameters
2018-08-14 15:30:04 -04:00
[HttpPost("prelogin")]
[AllowAnonymous]
public async Task<PreloginResponseModel> PostPrelogin([FromBody]PreloginRequestModel model)
{
var kdfInformation = await _userRepository.GetKdfInformationByEmailAsync(model.Email);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (kdfInformation == null)
support for user defined kdf parameters
2018-08-14 15:30:04 -04:00
{
return default kdf info
2019-09-07 14:08:19 -04:00
kdfInformation = new UserKdfInformation
{
Kdf = KdfType.PBKDF2_SHA256,
KdfIterations = 100000
};
support for user defined kdf parameters
2018-08-14 15:30:04 -04:00
}
return new PreloginResponseModel(kdfInformation);
}
initial commit of source
2015-12-08 22:57:38 -05:00
[HttpPost("register")]
[AllowAnonymous]
Protect user registration with captcha (#1480) * Protect user registration with captcha * PR feedback
2021-07-22 12:29:06 -05:00
[CaptchaProtected]
initial commit of source
2015-12-08 22:57:38 -05:00
public async Task PostRegister([FromBody]RegisterRequestModel model)
{
allow org user reg. when reg. is disabled
2018-05-24 16:53:07 -04:00
var result = await _userService.RegisterUserAsync(model.ToUser(), model.MasterPasswordHash,
model.Token, model.OrganizationUserId);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (result.Succeeded)
initial commit of source
2015-12-08 22:57:38 -05:00
{
return;
}
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
foreach (var error in result.Errors.Where(e => e.Code != "DuplicateUserName"))
initial commit of source
2015-12-08 22:57:38 -05:00
{
ModelState.AddModelError(string.Empty, error.Description);
}
await Task.Delay(2000);
throw new BadRequestException(ModelState);
}
[HttpPost("password-hint")]
[AllowAnonymous]
public async Task PostPasswordHint([FromBody]PasswordHintRequestModel model)
{
await _userService.SendMasterPasswordHintAsync(model.Email);
}
[HttpPost("email-token")]
public async Task PostEmailToken([FromBody]EmailTokenRequestModel model)
{
react to contact changes not being set from identity
2017-01-24 22:46:54 -05:00
var user = await _userService.GetUserByPrincipalAsync(User);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (user == null)
user null checks for unauthorized
2017-06-02 13:17:46 -04:00
{
throw new UnauthorizedAccessException();
}
Add support for Key Connector OTP and account migration (#1663) Co-authored-by: Thomas Rittson <trittson@bitwarden.com>
2021-11-09 16:37:32 +01:00
if (user.UsesKeyConnector)
{
throw new BadRequestException("You cannot change your email when using Key Connector.");
}
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (!await _userService.CheckPasswordAsync(user, model.MasterPasswordHash))
initial commit of source
2015-12-08 22:57:38 -05:00
{
await Task.Delay(2000);
throw new BadRequestException("MasterPasswordHash", "Invalid password.");
}
react to contact changes not being set from identity
2017-01-24 22:46:54 -05:00
await _userService.InitiateEmailChangeAsync(user, model.NewEmail);
initial commit of source
2015-12-08 22:57:38 -05:00
}
Added POST route endpoints for all PUT and DELETE operations to allow for vault to avoid preflight.
2016-07-13 21:43:48 -04:00
[HttpPost("email")]
additional rate limiting on email endpoints
2017-09-27 20:53:29 -04:00
public async Task PostEmail([FromBody]EmailRequestModel model)
initial commit of source
2015-12-08 22:57:38 -05:00
{
react to contact changes not being set from identity
2017-01-24 22:46:54 -05:00
var user = await _userService.GetUserByPrincipalAsync(User);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (user == null)
user null checks for unauthorized
2017-06-02 13:17:46 -04:00
{
throw new UnauthorizedAccessException();
}
Add support for Key Connector OTP and account migration (#1663) Co-authored-by: Thomas Rittson <trittson@bitwarden.com>
2021-11-09 16:37:32 +01:00
if (user.UsesKeyConnector)
{
throw new BadRequestException("You cannot change your email when using Key Connector.");
}
"user key" schema and api changes
2017-05-31 09:54:32 -04:00
var result = await _userService.ChangeEmailAsync(user, model.MasterPasswordHash, model.NewEmail,
model.NewMasterPasswordHash, model.Token, model.Key);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (result.Succeeded)
initial commit of source
2015-12-08 22:57:38 -05:00
{
return;
}
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
foreach (var error in result.Errors)
initial commit of source
2015-12-08 22:57:38 -05:00
{
ModelState.AddModelError(string.Empty, error.Description);
}
await Task.Delay(2000);
throw new BadRequestException(ModelState);
}
verify email apis
2017-07-05 15:35:46 -04:00
verify email apis and emails
2017-07-01 23:20:19 -04:00
[HttpPost("verify-email")]
public async Task PostVerifyEmail()
{
var user = await _userService.GetUserByPrincipalAsync(User);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (user == null)
verify email apis and emails
2017-07-01 23:20:19 -04:00
{
throw new UnauthorizedAccessException();
}
await _userService.SendEmailVerificationAsync(user);
}
[HttpPost("verify-email-token")]
[AllowAnonymous]
verify email apis
2017-07-05 15:35:46 -04:00
public async Task PostVerifyEmailToken([FromBody]VerifyEmailRequestModel model)
verify email apis and emails
2017-07-01 23:20:19 -04:00
{
verify email apis
2017-07-05 15:35:46 -04:00
var user = await _userService.GetUserByIdAsync(new Guid(model.UserId));
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (user == null)
verify email apis and emails
2017-07-01 23:20:19 -04:00
{
throw new UnauthorizedAccessException();
}
verify email apis
2017-07-05 15:35:46 -04:00
var result = await _userService.ConfirmEmailAsync(user, model.Token);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (result.Succeeded)
verify email apis
2017-07-05 15:35:46 -04:00
{
return;
}
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
foreach (var error in result.Errors)
verify email apis
2017-07-05 15:35:46 -04:00
{
ModelState.AddModelError(string.Empty, error.Description);
}
await Task.Delay(2000);
throw new BadRequestException(ModelState);
verify email apis and emails
2017-07-01 23:20:19 -04:00
}
initial commit of source
2015-12-08 22:57:38 -05:00
Added POST route endpoints for all PUT and DELETE operations to allow for vault to avoid preflight.
2016-07-13 21:43:48 -04:00
[HttpPost("password")]
additional rate limiting on email endpoints
2017-09-27 20:53:29 -04:00
public async Task PostPassword([FromBody]PasswordRequestModel model)
"user key" schema and api changes
2017-05-31 09:54:32 -04:00
{
var user = await _userService.GetUserByPrincipalAsync(User);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (user == null)
user null checks for unauthorized
2017-06-02 13:17:46 -04:00
{
throw new UnauthorizedAccessException();
}
"user key" schema and api changes
2017-05-31 09:54:32 -04:00
var result = await _userService.ChangePasswordAsync(user, model.MasterPasswordHash,
model.NewMasterPasswordHash, model.Key);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (result.Succeeded)
"user key" schema and api changes
2017-05-31 09:54:32 -04:00
{
return;
}
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
foreach (var error in result.Errors)
"user key" schema and api changes
2017-05-31 09:54:32 -04:00
{
ModelState.AddModelError(string.Empty, error.Description);
}
await Task.Delay(2000);
throw new BadRequestException(ModelState);
}
Create sso user api (#886) * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * Update AccountsController.cs * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * added a token to the existing user sso link flow * added a token to the existing user sso link flow * fixed a typo * added an event log for unlink ssoUser records * fixed a merge issue * fixed a busted test * fixed a busted test * ran a formatter over everything & changed .vscode settings in .gitignore * chagned a variable to use string interpolation * removed a blank line * Changed TokenPurpose enum to a static class of strings * code review cleanups * formatting fix * Changed parameters & logging for delete sso user * changed th method used to get organization user for deleting sso user records Co-authored-by: Kyle Spearrin <kspearrin@users.noreply.github.com>
2020-08-26 14:12:04 -04:00
SSO support (#862) * [SSO] Added change password API (#836) * Created API for updating password with no current comparison * Changed name of method and request // Added user has password error flow * Updated user service method name // Updated string null/empty check * Replaced hardcoded sso domain hints with config loader (#850) * Replaced hardcoded sso domain hints with config loader * use async/await for sso config loader * Update AccountsController.cs Co-authored-by: Vincent Salucci <26154748+vincentsalucci@users.noreply.github.com> Co-authored-by: Matt Portune <mportune@bitwarden.com> Co-authored-by: Matt Portune <59324545+mportune-bw@users.noreply.github.com>
2020-08-12 17:03:09 -04:00
[HttpPost("set-password")]
Update APIs to collect other set password info (#870)
2020-08-17 10:40:35 -04:00
public async Task PostSetPasswordAsync([FromBody]SetPasswordRequestModel model)
SSO support (#862) * [SSO] Added change password API (#836) * Created API for updating password with no current comparison * Changed name of method and request // Added user has password error flow * Updated user service method name // Updated string null/empty check * Replaced hardcoded sso domain hints with config loader (#850) * Replaced hardcoded sso domain hints with config loader * use async/await for sso config loader * Update AccountsController.cs Co-authored-by: Vincent Salucci <26154748+vincentsalucci@users.noreply.github.com> Co-authored-by: Matt Portune <mportune@bitwarden.com> Co-authored-by: Matt Portune <59324545+mportune-bw@users.noreply.github.com>
2020-08-12 17:03:09 -04:00
{
var user = await _userService.GetUserByPrincipalAsync(User);
if (user == null)
{
throw new UnauthorizedAccessException();
}
Added OrgIdentifer to SetPasswordAsync // Added jit user two factor provider (#1009)
2020-11-22 08:46:44 -06:00
var result = await _userService.SetPasswordAsync(model.ToUser(user), model.MasterPasswordHash, model.Key,
model.OrgIdentifier);
SSO support (#862) * [SSO] Added change password API (#836) * Created API for updating password with no current comparison * Changed name of method and request // Added user has password error flow * Updated user service method name // Updated string null/empty check * Replaced hardcoded sso domain hints with config loader (#850) * Replaced hardcoded sso domain hints with config loader * use async/await for sso config loader * Update AccountsController.cs Co-authored-by: Vincent Salucci <26154748+vincentsalucci@users.noreply.github.com> Co-authored-by: Matt Portune <mportune@bitwarden.com> Co-authored-by: Matt Portune <59324545+mportune-bw@users.noreply.github.com>
2020-08-12 17:03:09 -04:00
if (result.Succeeded)
{
return;
}
foreach (var error in result.Errors)
{
ModelState.AddModelError(string.Empty, error.Description);
}
throw new BadRequestException(ModelState);
}
"user key" schema and api changes
2017-05-31 09:54:32 -04:00
sso integrations (#822) * stub out hybrid sso * support for PKCE authorization_code clients * sso service urls * sso client key * abstract request validator * support for verifying password * custom AuthorizationCodeStore that does not remove codes * cleanup * comment * created master password * ResetMasterPassword * rename Sso client to OidcIdentity * update env builder * bitwarden sso project in docker-compose * sso path in nginx config
2020-07-16 08:01:39 -04:00
[HttpPost("verify-password")]
Add support for Key Connector OTP and account migration (#1663) Co-authored-by: Thomas Rittson <trittson@bitwarden.com>
2021-11-09 16:37:32 +01:00
public async Task PostVerifyPassword([FromBody]SecretVerificationRequestModel model)
sso integrations (#822) * stub out hybrid sso * support for PKCE authorization_code clients * sso service urls * sso client key * abstract request validator * support for verifying password * custom AuthorizationCodeStore that does not remove codes * cleanup * comment * created master password * ResetMasterPassword * rename Sso client to OidcIdentity * update env builder * bitwarden sso project in docker-compose * sso path in nginx config
2020-07-16 08:01:39 -04:00
{
var user = await _userService.GetUserByPrincipalAsync(User);
if (user == null)
{
throw new UnauthorizedAccessException();
}
if (await _userService.CheckPasswordAsync(user, model.MasterPasswordHash))
{
return;
}
ModelState.AddModelError(nameof(model.MasterPasswordHash), "Invalid password.");
await Task.Delay(2000);
throw new BadRequestException(ModelState);
}
Add support for Key Connector OTP and account migration (#1663) Co-authored-by: Thomas Rittson <trittson@bitwarden.com>
2021-11-09 16:37:32 +01:00
[HttpPost("set-key-connector-key")]
public async Task PostSetKeyConnectorKeyAsync([FromBody]SetKeyConnectorKeyRequestModel model)
{
var user = await _userService.GetUserByPrincipalAsync(User);
if (user == null)
{
throw new UnauthorizedAccessException();
}
var result = await _userService.SetKeyConnectorKeyAsync(model.ToUser(user), model.Key, model.OrgIdentifier);
if (result.Succeeded)
{
return;
}
foreach (var error in result.Errors)
{
ModelState.AddModelError(string.Empty, error.Description);
}
throw new BadRequestException(ModelState);
}
[HttpPost("convert-to-key-connector")]
public async Task PostConvertToKeyConnector()
Add support for crypto agent (#1623)
2021-10-25 15:09:14 +02:00
{
var user = await _userService.GetUserByPrincipalAsync(User);
if (user == null)
{
throw new UnauthorizedAccessException();
}
Add support for Key Connector OTP and account migration (#1663) Co-authored-by: Thomas Rittson <trittson@bitwarden.com>
2021-11-09 16:37:32 +01:00
var result = await _userService.ConvertToKeyConnectorAsync(user);
Add support for crypto agent (#1623)
2021-10-25 15:09:14 +02:00
if (result.Succeeded)
{
return;
}
foreach (var error in result.Errors)
{
ModelState.AddModelError(string.Empty, error.Description);
}
throw new BadRequestException(ModelState);
}
support for user defined kdf parameters
2018-08-14 15:30:04 -04:00
[HttpPost("kdf")]
public async Task PostKdf([FromBody]KdfRequestModel model)
{
var user = await _userService.GetUserByPrincipalAsync(User);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (user == null)
support for user defined kdf parameters
2018-08-14 15:30:04 -04:00
{
throw new UnauthorizedAccessException();
}
var result = await _userService.ChangeKdfAsync(user, model.MasterPasswordHash,
model.NewMasterPasswordHash, model.Key, model.Kdf.Value, model.KdfIterations.Value);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (result.Succeeded)
support for user defined kdf parameters
2018-08-14 15:30:04 -04:00
{
return;
}
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
foreach (var error in result.Errors)
support for user defined kdf parameters
2018-08-14 15:30:04 -04:00
{
ModelState.AddModelError(string.Empty, error.Description);
}
await Task.Delay(2000);
throw new BadRequestException(ModelState);
}
"user key" schema and api changes
2017-05-31 09:54:32 -04:00
[HttpPost("key")]
additional rate limiting on email endpoints
2017-09-27 20:53:29 -04:00
public async Task PostKey([FromBody]UpdateKeyRequestModel model)
initial commit of source
2015-12-08 22:57:38 -05:00
{
react to contact changes not being set from identity
2017-01-24 22:46:54 -05:00
var user = await _userService.GetUserByPrincipalAsync(User);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (user == null)
user null checks for unauthorized
2017-06-02 13:17:46 -04:00
{
throw new UnauthorizedAccessException();
}
react to contact changes not being set from identity
2017-01-24 22:46:54 -05:00
support for attachments keys load existing items and set attachments on key update
2018-11-14 17:19:04 -05:00
var ciphers = new List<Cipher>();
[send.key] Update send.key when account encryption key is rotated (#1417) * Rotate send.key with account encryption key * Update tests * Improve and refactor style, fix typo * Use null instead of empty lists * Revert "Use null instead of empty lists" This reverts commit 775a52ca568ce7eb2b5dd85a33a3b38dcab339e4. * Fix style (use AddRange instead of reassignment)
2021-07-02 06:27:03 +10:00
if (model.Ciphers.Any())
support for attachments keys load existing items and set attachments on key update
2018-11-14 17:19:04 -05:00
{
[send.key] Update send.key when account encryption key is rotated (#1417) * Rotate send.key with account encryption key * Update tests * Improve and refactor style, fix typo * Use null instead of empty lists * Revert "Use null instead of empty lists" This reverts commit 775a52ca568ce7eb2b5dd85a33a3b38dcab339e4. * Fix style (use AddRange instead of reassignment)
2021-07-02 06:27:03 +10:00
var existingCiphers = await _cipherRepository.GetManyByUserIdAsync(user.Id);
ciphers.AddRange(existingCiphers
.Join(model.Ciphers, c => c.Id, c => c.Id, (existing, c) => c.ToCipher(existing)));
support for attachments keys load existing items and set attachments on key update
2018-11-14 17:19:04 -05:00
}
initial commit of source
2015-12-08 22:57:38 -05:00
support for attachments keys load existing items and set attachments on key update
2018-11-14 17:19:04 -05:00
var folders = new List<Folder>();
[send.key] Update send.key when account encryption key is rotated (#1417) * Rotate send.key with account encryption key * Update tests * Improve and refactor style, fix typo * Use null instead of empty lists * Revert "Use null instead of empty lists" This reverts commit 775a52ca568ce7eb2b5dd85a33a3b38dcab339e4. * Fix style (use AddRange instead of reassignment)
2021-07-02 06:27:03 +10:00
if (model.Folders.Any())
support for attachments keys load existing items and set attachments on key update
2018-11-14 17:19:04 -05:00
{
[send.key] Update send.key when account encryption key is rotated (#1417) * Rotate send.key with account encryption key * Update tests * Improve and refactor style, fix typo * Use null instead of empty lists * Revert "Use null instead of empty lists" This reverts commit 775a52ca568ce7eb2b5dd85a33a3b38dcab339e4. * Fix style (use AddRange instead of reassignment)
2021-07-02 06:27:03 +10:00
var existingFolders = await _folderRepository.GetManyByUserIdAsync(user.Id);
folders.AddRange(existingFolders
.Join(model.Folders, f => f.Id, f => f.Id, (existing, f) => f.ToFolder(existing)));
}
var sends = new List<Send>();
if (model.Sends?.Any() == true)
{
var existingSends = await _sendRepository.GetManyByUserIdAsync(user.Id);
sends.AddRange(existingSends
.Join(model.Sends, s => s.Id, s => s.Id, (existing, s) => s.ToSend(existing, _sendService)));
support for attachments keys load existing items and set attachments on key update
2018-11-14 17:19:04 -05:00
}
backwards compat issues with change email/password
2017-04-28 16:49:40 -04:00
"user key" schema and api changes
2017-05-31 09:54:32 -04:00
var result = await _userService.UpdateKeyAsync(
react to contact changes not being set from identity
2017-01-24 22:46:54 -05:00
user,
initial commit of source
2015-12-08 22:57:38 -05:00
model.MasterPasswordHash,
"user key" schema and api changes
2017-05-31 09:54:32 -04:00
model.Key,
model.PrivateKey,
change email/password adjustments
2017-04-17 14:53:07 -04:00
ciphers,
[send.key] Update send.key when account encryption key is rotated (#1417) * Rotate send.key with account encryption key * Update tests * Improve and refactor style, fix typo * Use null instead of empty lists * Revert "Use null instead of empty lists" This reverts commit 775a52ca568ce7eb2b5dd85a33a3b38dcab339e4. * Fix style (use AddRange instead of reassignment)
2021-07-02 06:27:03 +10:00
folders,
sends);
initial commit of source
2015-12-08 22:57:38 -05:00
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (result.Succeeded)
initial commit of source
2015-12-08 22:57:38 -05:00
{
return;
}
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
foreach (var error in result.Errors)
initial commit of source
2015-12-08 22:57:38 -05:00
{
ModelState.AddModelError(string.Empty, error.Description);
}
await Task.Delay(2000);
throw new BadRequestException(ModelState);
}
Added POST route endpoints for all PUT and DELETE operations to allow for vault to avoid preflight.
2016-07-13 21:43:48 -04:00
[HttpPost("security-stamp")]
Add support for Key Connector OTP and account migration (#1663) Co-authored-by: Thomas Rittson <trittson@bitwarden.com>
2021-11-09 16:37:32 +01:00
public async Task PostSecurityStamp([FromBody]SecretVerificationRequestModel model)
initial commit of source
2015-12-08 22:57:38 -05:00
{
react to contact changes not being set from identity
2017-01-24 22:46:54 -05:00
var user = await _userService.GetUserByPrincipalAsync(User);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (user == null)
user null checks for unauthorized
2017-06-02 13:17:46 -04:00
{
throw new UnauthorizedAccessException();
}
Add support for Key Connector OTP and account migration (#1663) Co-authored-by: Thomas Rittson <trittson@bitwarden.com>
2021-11-09 16:37:32 +01:00
var result = await _userService.RefreshSecurityStampAsync(user, model.Secret);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (result.Succeeded)
initial commit of source
2015-12-08 22:57:38 -05:00
{
return;
}
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
foreach (var error in result.Errors)
initial commit of source
2015-12-08 22:57:38 -05:00
{
ModelState.AddModelError(string.Empty, error.Description);
}
await Task.Delay(2000);
throw new BadRequestException(ModelState);
}
[HttpGet("profile")]
react to contact changes not being set from identity
2017-01-24 22:46:54 -05:00
public async Task<ProfileResponseModel> GetProfile()
initial commit of source
2015-12-08 22:57:38 -05:00
{
react to contact changes not being set from identity
2017-01-24 22:46:54 -05:00
var user = await _userService.GetUserByPrincipalAsync(User);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (user == null)
user null checks for unauthorized
2017-06-02 13:17:46 -04:00
{
throw new UnauthorizedAccessException();
}
filter status
2017-03-25 21:53:32 -04:00
var organizationUserDetails = await _organizationUserRepository.GetManyDetailsByUserAsync(user.Id,
OrganizationUserStatusType.Confirmed);
[Provider] Setup provider (#1378)
2021-06-30 09:35:26 +02:00
var providerUserDetails = await _providerUserRepository.GetManyDetailsByUserAsync(user.Id,
ProviderUserStatusType.Confirmed);
[Provider] Create and access child organizations (#1427)
2021-07-08 17:05:32 +02:00
var providerUserOrganizationDetails =
await _providerUserRepository.GetManyOrganizationDetailsByUserAsync(user.Id,
ProviderUserStatusType.Confirmed);
[Provider] Setup provider (#1378)
2021-06-30 09:35:26 +02:00
var response = new ProfileResponseModel(user, organizationUserDetails, providerUserDetails,
[Provider] Create and access child organizations (#1427)
2021-07-08 17:05:32 +02:00
providerUserOrganizationDetails, await _userService.TwoFactorIsEnabledAsync(user));
re-working claims for aspnet core identity integration and backwards compat
2017-01-11 21:46:36 -05:00
return response;
initial commit of source
2015-12-08 22:57:38 -05:00
}
org user details apis
2017-03-06 20:51:13 -05:00
[HttpGet("organizations")]
public async Task<ListResponseModel<ProfileOrganizationResponseModel>> GetOrganizations()
{
var userId = _userService.GetProperUserId(User);
filter status
2017-03-25 21:53:32 -04:00
var organizationUserDetails = await _organizationUserRepository.GetManyDetailsByUserAsync(userId.Value,
OrganizationUserStatusType.Confirmed);
org user details apis
2017-03-06 20:51:13 -05:00
var responseData = organizationUserDetails.Select(o => new ProfileOrganizationResponseModel(o));
return new ListResponseModel<ProfileOrganizationResponseModel>(responseData);
}
initial commit of source
2015-12-08 22:57:38 -05:00
[HttpPut("profile")]
Added POST route endpoints for all PUT and DELETE operations to allow for vault to avoid preflight.
2016-07-13 21:43:48 -04:00
[HttpPost("profile")]
initial commit of source
2015-12-08 22:57:38 -05:00
public async Task<ProfileResponseModel> PutProfile([FromBody]UpdateProfileRequestModel model)
{
react to contact changes not being set from identity
2017-01-24 22:46:54 -05:00
var user = await _userService.GetUserByPrincipalAsync(User);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (user == null)
user null checks for unauthorized
2017-06-02 13:17:46 -04:00
{
throw new UnauthorizedAccessException();
}
react to contact changes not being set from identity
2017-01-24 22:46:54 -05:00
await _userService.SaveUserAsync(model.ToUser(user));
[Provider] Create and access child organizations (#1427)
2021-07-08 17:05:32 +02:00
var response = new ProfileResponseModel(user, null, null, null, await _userService.TwoFactorIsEnabledAsync(user));
initial commit of source
2015-12-08 22:57:38 -05:00
return response;
re-working claims for aspnet core identity integration and backwards compat
2017-01-11 21:46:36 -05:00
}
Added API for getting the current user's account revision date
2017-01-14 10:02:37 -05:00
[HttpGet("revision-date")]
react to contact changes not being set from identity
2017-01-24 22:46:54 -05:00
public async Task<long?> GetAccountRevisionDate()
Added API for getting the current user's account revision date
2017-01-14 10:02:37 -05:00
{
change revision date API to query only for data needed
2017-01-28 02:15:07 -05:00
var userId = _userService.GetProperUserId(User);
long? revisionDate = null;
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (userId.HasValue)
change revision date API to query only for data needed
2017-01-28 02:15:07 -05:00
{
var date = await _userService.GetAccountRevisionDateByIdAsync(userId.Value);
update libs and cleanup
2017-07-14 09:05:15 -04:00
revisionDate = CoreHelpers.ToEpocMilliseconds(date);
change revision date API to query only for data needed
2017-01-28 02:15:07 -05:00
}
fire up events for identityserver validation scheme
2017-01-16 22:02:12 -05:00
change revision date API to query only for data needed
2017-01-28 02:15:07 -05:00
return revisionDate;
Added API for getting the current user's account revision date
2017-01-14 10:02:37 -05:00
}
equivalent domains APIs and data models
2017-01-09 22:20:34 -05:00
public and private keys added to db and user domain. added account APIs got getting and putting keys.
2017-02-11 23:00:55 -05:00
[HttpPost("keys")]
additional rate limiting on email endpoints
2017-09-27 20:53:29 -04:00
public async Task<KeysResponseModel> PostKeys([FromBody]KeysRequestModel model)
public and private keys added to db and user domain. added account APIs got getting and putting keys.
2017-02-11 23:00:55 -05:00
{
var user = await _userService.GetUserByPrincipalAsync(User);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (user == null)
user null checks for unauthorized
2017-06-02 13:17:46 -04:00
{
throw new UnauthorizedAccessException();
}
public and private keys added to db and user domain. added account APIs got getting and putting keys.
2017-02-11 23:00:55 -05:00
await _userService.SaveUserAsync(model.ToUser(user));
return new KeysResponseModel(user);
}
[HttpGet("keys")]
public async Task<KeysResponseModel> GetKeys()
{
var user = await _userService.GetUserByPrincipalAsync(User);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (user == null)
user null checks for unauthorized
2017-06-02 13:17:46 -04:00
{
throw new UnauthorizedAccessException();
}
public and private keys added to db and user domain. added account APIs got getting and putting keys.
2017-02-11 23:00:55 -05:00
return new KeysResponseModel(user);
}
allow delete verb
2018-07-20 13:09:50 -04:00
[HttpDelete]
Added account delete.
2015-12-27 00:14:56 -05:00
[HttpPost("delete")]
Add support for Key Connector OTP and account migration (#1663) Co-authored-by: Thomas Rittson <trittson@bitwarden.com>
2021-11-09 16:37:32 +01:00
public async Task Delete([FromBody]SecretVerificationRequestModel model)
Added account delete.
2015-12-27 00:14:56 -05:00
{
react to contact changes not being set from identity
2017-01-24 22:46:54 -05:00
var user = await _userService.GetUserByPrincipalAsync(User);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (user == null)
user null checks for unauthorized
2017-06-02 13:17:46 -04:00
{
throw new UnauthorizedAccessException();
}
Add support for Key Connector OTP and account migration (#1663) Co-authored-by: Thomas Rittson <trittson@bitwarden.com>
2021-11-09 16:37:32 +01:00
if (!await _userService.VerifySecretAsync(user, model.Secret))
Added account delete.
2015-12-27 00:14:56 -05:00
{
Add support for Key Connector OTP and account migration (#1663) Co-authored-by: Thomas Rittson <trittson@bitwarden.com>
2021-11-09 16:37:32 +01:00
ModelState.AddModelError(string.Empty, "User verification failed.");
Added account delete.
2015-12-27 00:14:56 -05:00
await Task.Delay(2000);
}
else
{
var result = await _userService.DeleteAsync(user);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (result.Succeeded)
Added account delete.
2015-12-27 00:14:56 -05:00
{
return;
}
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
foreach (var error in result.Errors)
Added account delete.
2015-12-27 00:14:56 -05:00
{
ModelState.AddModelError(string.Empty, error.Description);
}
}
throw new BadRequestException(ModelState);
}
APIs for premium. Billing helpers.
2017-07-06 14:55:58 -04:00
account recovery to delete via email
2017-08-09 10:53:42 -04:00
[AllowAnonymous]
[HttpPost("delete-recover")]
public async Task PostDeleteRecover([FromBody]DeleteRecoverRequestModel model)
{
await _userService.SendDeleteConfirmationAsync(model.Email);
}
[HttpPost("delete-recover-token")]
[AllowAnonymous]
public async Task PostDeleteRecoverToken([FromBody]VerifyDeleteRecoverRequestModel model)
{
var user = await _userService.GetUserByIdAsync(new Guid(model.UserId));
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (user == null)
account recovery to delete via email
2017-08-09 10:53:42 -04:00
{
throw new UnauthorizedAccessException();
}
var result = await _userService.DeleteAsync(user, model.Token);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (result.Succeeded)
account recovery to delete via email
2017-08-09 10:53:42 -04:00
{
return;
}
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
foreach (var error in result.Errors)
account recovery to delete via email
2017-08-09 10:53:42 -04:00
{
ModelState.AddModelError(string.Empty, error.Description);
}
await Task.Delay(2000);
throw new BadRequestException(ModelState);
}
iap pre-check
2019-09-19 08:53:33 -04:00
[HttpPost("iap-check")]
fixes for meta repo and iapcheck model
2019-09-19 09:23:48 -04:00
public async Task PostIapCheck([FromBody]IapCheckRequestModel model)
iap pre-check
2019-09-19 08:53:33 -04:00
{
var user = await _userService.GetUserByPrincipalAsync(User);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (user == null)
iap pre-check
2019-09-19 08:53:33 -04:00
{
throw new UnauthorizedAccessException();
}
await _userService.IapCheckAsync(user, model.PaymentMethodType.Value);
}
APIs for premium. Billing helpers.
2017-07-06 14:55:58 -04:00
[HttpPost("premium")]
payment intent/method support for incomplete status
2019-08-09 23:56:26 -04:00
public async Task<PaymentResponseModel> PostPremium(PremiumRequestModel model)
APIs for premium. Billing helpers.
2017-07-06 14:55:58 -04:00
{
var user = await _userService.GetUserByPrincipalAsync(User);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (user == null)
APIs for premium. Billing helpers.
2017-07-06 14:55:58 -04:00
{
throw new UnauthorizedAccessException();
}
premium signup with license file
2017-08-11 17:06:31 -04:00
var valid = model.Validate(_globalSettings);
UserLicense license = null;
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (valid && _globalSettings.SelfHosted)
premium signup with license file
2017-08-11 17:06:31 -04:00
{
create org with license file
2017-08-14 20:57:45 -04:00
license = await ApiHelpers.ReadJsonFileFromBody<UserLicense>(HttpContext, model.License);
premium signup with license file
2017-08-11 17:06:31 -04:00
}
Consistency on TaxInfo use in service params
2020-06-18 10:41:55 -04:00
if (!valid && !_globalSettings.SelfHosted && string.IsNullOrWhiteSpace(model.Country))
combined tax updates with other operations
2020-06-17 19:49:27 -04:00
{
throw new BadRequestException("Country is required.");
}
premium signup with license file
2017-08-11 17:06:31 -04:00
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (!valid || (_globalSettings.SelfHosted && license == null))
premium signup with license file
2017-08-11 17:06:31 -04:00
{
throw new BadRequestException("Invalid license.");
}
payment intent/method support for incomplete status
2019-08-09 23:56:26 -04:00
var result = await _userService.SignUpPremiumAsync(user, model.PaymentToken,
combined tax updates with other operations
2020-06-17 19:49:27 -04:00
model.PaymentMethodType.Value, model.AdditionalStorageGb.GetValueOrDefault(0), license,
Consistency on TaxInfo use in service params
2020-06-18 10:41:55 -04:00
new TaxInfo
{
BillingAddressCountry = model.Country,
BillingAddressPostalCode = model.PostalCode,
});
[Provider] Create and access child organizations (#1427)
2021-07-08 17:05:32 +02:00
var profile = new ProfileResponseModel(user, null, null, null, await _userService.TwoFactorIsEnabledAsync(user));
payment intent/method support for incomplete status
2019-08-09 23:56:26 -04:00
return new PaymentResponseModel
{
UserProfile = profile,
PaymentIntentClientSecret = result.Item2,
Success = result.Item1
};
APIs for premium. Billing helpers.
2017-07-06 14:55:58 -04:00
}
[HttpGet("billing")]
apis for subscription vs billing
2019-02-18 15:40:47 -05:00
[SelfHosted(NotSelfHostedOnly = true)]
APIs for premium. Billing helpers.
2017-07-06 14:55:58 -04:00
public async Task<BillingResponseModel> GetBilling()
{
var user = await _userService.GetUserByPrincipalAsync(User);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (user == null)
APIs for premium. Billing helpers.
2017-07-06 14:55:58 -04:00
{
throw new UnauthorizedAccessException();
}
apis for subscription vs billing
2019-02-18 15:40:47 -05:00
var billingInfo = await _paymentService.GetBillingAsync(user);
return new BillingResponseModel(billingInfo);
}
[HttpGet("subscription")]
public async Task<SubscriptionResponseModel> GetSubscription()
{
var user = await _userService.GetUserByPrincipalAsync(User);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (user == null)
apis for subscription vs billing
2019-02-18 15:40:47 -05:00
{
throw new UnauthorizedAccessException();
}
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (!_globalSettings.SelfHosted && user.Gateway != null)
APIs for premium. Billing helpers.
2017-07-06 14:55:58 -04:00
{
apis for subscription vs billing
2019-02-18 15:40:47 -05:00
var subscriptionInfo = await _paymentService.GetSubscriptionAsync(user);
var license = await _userService.GenerateLicenseAsync(user, subscriptionInfo);
return new SubscriptionResponseModel(user, subscriptionInfo, license);
billing info when self hosted with no gateway info
2017-08-11 23:23:50 -04:00
}
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
else if (!_globalSettings.SelfHosted)
billing info when self hosted with no gateway info
2017-08-11 23:23:50 -04:00
{
license when no billing info
2017-09-18 17:57:37 -04:00
var license = await _userService.GenerateLicenseAsync(user);
apis for subscription vs billing
2019-02-18 15:40:47 -05:00
return new SubscriptionResponseModel(user, license);
APIs for premium. Billing helpers.
2017-07-06 14:55:58 -04:00
}
user BillingResponseModel without licensing
2017-11-07 11:58:15 -05:00
else
{
apis for subscription vs billing
2019-02-18 15:40:47 -05:00
return new SubscriptionResponseModel(user);
user BillingResponseModel without licensing
2017-11-07 11:58:15 -05:00
}
APIs for premium. Billing helpers.
2017-07-06 14:55:58 -04:00
}
[HttpPost("payment")]
update premium license and self host attr checks
2017-08-14 12:08:57 -04:00
[SelfHosted(NotSelfHostedOnly = true)]
additional rate limiting on email endpoints
2017-09-27 20:53:29 -04:00
public async Task PostPayment([FromBody]PaymentRequestModel model)
APIs for premium. Billing helpers.
2017-07-06 14:55:58 -04:00
{
var user = await _userService.GetUserByPrincipalAsync(User);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (user == null)
APIs for premium. Billing helpers.
2017-07-06 14:55:58 -04:00
{
throw new UnauthorizedAccessException();
}
Consistency on TaxInfo use in service params
2020-06-18 10:41:55 -04:00
await _userService.ReplacePaymentMethodAsync(user, model.PaymentToken, model.PaymentMethodType.Value,
new TaxInfo
{
BillingAddressCountry = model.Country,
BillingAddressPostalCode = model.PostalCode,
});
APIs for premium. Billing helpers.
2017-07-06 14:55:58 -04:00
}
[HttpPost("storage")]
update premium license and self host attr checks
2017-08-14 12:08:57 -04:00
[SelfHosted(NotSelfHostedOnly = true)]
adjust storage with payment intent/method handling
2019-08-10 12:59:32 -04:00
public async Task<PaymentResponseModel> PostStorage([FromBody]StorageRequestModel model)
APIs for premium. Billing helpers.
2017-07-06 14:55:58 -04:00
{
var user = await _userService.GetUserByPrincipalAsync(User);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (user == null)
APIs for premium. Billing helpers.
2017-07-06 14:55:58 -04:00
{
throw new UnauthorizedAccessException();
}
adjust storage with payment intent/method handling
2019-08-10 12:59:32 -04:00
var result = await _userService.AdjustStorageAsync(user, model.StorageGbAdjustment.Value);
return new PaymentResponseModel
{
Success = true,
PaymentIntentClientSecret = result
};
APIs for premium. Billing helpers.
2017-07-06 14:55:58 -04:00
}
update premium license and self host attr checks
2017-08-14 12:08:57 -04:00
[HttpPost("license")]
[SelfHosted(SelfHostedOnly = true)]
additional rate limiting on email endpoints
2017-09-27 20:53:29 -04:00
public async Task PostLicense(LicenseRequestModel model)
update premium license and self host attr checks
2017-08-14 12:08:57 -04:00
{
var user = await _userService.GetUserByPrincipalAsync(User);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (user == null)
update premium license and self host attr checks
2017-08-14 12:08:57 -04:00
{
throw new UnauthorizedAccessException();
}
create org with license file
2017-08-14 20:57:45 -04:00
var license = await ApiHelpers.ReadJsonFileFromBody<UserLicense>(HttpContext, model.License);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (license == null)
update premium license and self host attr checks
2017-08-14 12:08:57 -04:00
{
throw new BadRequestException("Invalid license");
}
await _userService.UpdateLicenseAsync(user, license);
}
APIs for premium. Billing helpers.
2017-07-06 14:55:58 -04:00
[HttpPost("cancel-premium")]
update premium license and self host attr checks
2017-08-14 12:08:57 -04:00
[SelfHosted(NotSelfHostedOnly = true)]
additional rate limiting on email endpoints
2017-09-27 20:53:29 -04:00
public async Task PostCancel()
APIs for premium. Billing helpers.
2017-07-06 14:55:58 -04:00
{
var user = await _userService.GetUserByPrincipalAsync(User);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (user == null)
APIs for premium. Billing helpers.
2017-07-06 14:55:58 -04:00
{
throw new UnauthorizedAccessException();
}
cancel sub completely if past exp date
2018-12-31 13:34:02 -05:00
await _userService.CancelPremiumAsync(user);
APIs for premium. Billing helpers.
2017-07-06 14:55:58 -04:00
}
[HttpPost("reinstate-premium")]
update premium license and self host attr checks
2017-08-14 12:08:57 -04:00
[SelfHosted(NotSelfHostedOnly = true)]
additional rate limiting on email endpoints
2017-09-27 20:53:29 -04:00
public async Task PostReinstate()
APIs for premium. Billing helpers.
2017-07-06 14:55:58 -04:00
{
var user = await _userService.GetUserByPrincipalAsync(User);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (user == null)
APIs for premium. Billing helpers.
2017-07-06 14:55:58 -04:00
{
throw new UnauthorizedAccessException();
}
await _userService.ReinstatePremiumAsync(user);
}
generate signin token for enterprise portal (#728)
2020-05-12 15:36:33 -04:00
API updates for tax info collection
2020-06-08 17:40:18 -04:00
[HttpGet("tax")]
[SelfHosted(NotSelfHostedOnly = true)]
public async Task<TaxInfoResponseModel> GetTaxInfo()
{
var user = await _userService.GetUserByPrincipalAsync(User);
if (user == null)
{
throw new UnauthorizedAccessException();
}
var taxInfo = await _paymentService.GetTaxInfoAsync(user);
return new TaxInfoResponseModel(taxInfo);
}
sso integrations (#822) * stub out hybrid sso * support for PKCE authorization_code clients * sso service urls * sso client key * abstract request validator * support for verifying password * custom AuthorizationCodeStore that does not remove codes * cleanup * comment * created master password * ResetMasterPassword * rename Sso client to OidcIdentity * update env builder * bitwarden sso project in docker-compose * sso path in nginx config
2020-07-16 08:01:39 -04:00
API updates for tax info collection
2020-06-08 17:40:18 -04:00
[HttpPut("tax")]
[SelfHosted(NotSelfHostedOnly = true)]
public async Task PutTaxInfo([FromBody]TaxInfoUpdateRequestModel model)
{
var user = await _userService.GetUserByPrincipalAsync(User);
if (user == null)
{
throw new UnauthorizedAccessException();
}
var taxInfo = new TaxInfo
{
BillingAddressPostalCode = model.PostalCode,
BillingAddressCountry = model.Country,
};
await _paymentService.SaveTaxInfoAsync(user, taxInfo);
}
Create sso user api (#886) * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * Update AccountsController.cs * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * added a token to the existing user sso link flow * added a token to the existing user sso link flow * fixed a typo * added an event log for unlink ssoUser records * fixed a merge issue * fixed a busted test * fixed a busted test * ran a formatter over everything & changed .vscode settings in .gitignore * chagned a variable to use string interpolation * removed a blank line * Changed TokenPurpose enum to a static class of strings * code review cleanups * formatting fix * Changed parameters & logging for delete sso user * changed th method used to get organization user for deleting sso user records Co-authored-by: Kyle Spearrin <kspearrin@users.noreply.github.com>
2020-08-26 14:12:04 -04:00
[HttpDelete("sso/{organizationId}")]
public async Task DeleteSsoUser(string organizationId)
{
var userId = _userService.GetProperUserId(User);
if (!userId.HasValue)
{
throw new NotFoundException();
}
await _organizationService.DeleteSsoUserAsync(userId.Value, new Guid(organizationId));
}
[HttpGet("sso/user-identifier")]
public async Task<string> GetSsoUserIdentifier()
{
var user = await _userService.GetUserByPrincipalAsync(User);
var token = await _userService.GenerateSignInTokenAsync(user, TokenPurposes.LinkSso);
stopped manually encoding the SSO user_identifier (#913)
2020-09-04 14:16:49 -04:00
var userIdentifier = $"{user.Id},{token}";
Create sso user api (#886) * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * Update AccountsController.cs * facilitate linking/unlinking existing users from an sso enabled org * added user_identifier to identity methods for sso * moved sso user delete method to account controller * fixed a broken test * added a token to the existing user sso link flow * added a token to the existing user sso link flow * fixed a typo * added an event log for unlink ssoUser records * fixed a merge issue * fixed a busted test * fixed a busted test * ran a formatter over everything & changed .vscode settings in .gitignore * chagned a variable to use string interpolation * removed a blank line * Changed TokenPurpose enum to a static class of strings * code review cleanups * formatting fix * Changed parameters & logging for delete sso user * changed th method used to get organization user for deleting sso user records Co-authored-by: Kyle Spearrin <kspearrin@users.noreply.github.com>
2020-08-26 14:12:04 -04:00
return userIdentifier;
}
Implement User-based API Keys (#981) * added column ApiKey to dbo.User * added dbo.User.ApiKey to User_Update * added dbo.User.ApiKey to User_Create * wrote migration script for implementing dbo.User.ApiKey * Added ApiKey prop to the User table model * Created AccountsController method for getting a user's API Key * Created AccountsController method for rotating a user API key * Added support to ApiClient for passed-through ClientSecrets when the request comes from the cli * Added a new conditional to ClientStore to account for user API keys * Wrote unit tests for new user API Key methods * Added a refresh of dbo.UserView to new migration script for ApiKey * Let client_credentials grants into the custom token logic * Cleanup for ApiKey auth in the CLI feature * Created user API key on registration * Removed uneeded code for user API keys * Changed a .Contains() to a .StartsWith() in ClientStore * Changed index that an array is searched on * Added more claims to the user apikey clients * Moved some claim finding logic to a helper method
2020-11-10 15:15:29 -05:00
[HttpPost("api-key")]
Add support for Key Connector OTP and account migration (#1663) Co-authored-by: Thomas Rittson <trittson@bitwarden.com>
2021-11-09 16:37:32 +01:00
public async Task<ApiKeyResponseModel> ApiKey([FromBody]SecretVerificationRequestModel model)
Implement User-based API Keys (#981) * added column ApiKey to dbo.User * added dbo.User.ApiKey to User_Update * added dbo.User.ApiKey to User_Create * wrote migration script for implementing dbo.User.ApiKey * Added ApiKey prop to the User table model * Created AccountsController method for getting a user's API Key * Created AccountsController method for rotating a user API key * Added support to ApiClient for passed-through ClientSecrets when the request comes from the cli * Added a new conditional to ClientStore to account for user API keys * Wrote unit tests for new user API Key methods * Added a refresh of dbo.UserView to new migration script for ApiKey * Let client_credentials grants into the custom token logic * Cleanup for ApiKey auth in the CLI feature * Created user API key on registration * Removed uneeded code for user API keys * Changed a .Contains() to a .StartsWith() in ClientStore * Changed index that an array is searched on * Added more claims to the user apikey clients * Moved some claim finding logic to a helper method
2020-11-10 15:15:29 -05:00
{
var user = await _userService.GetUserByPrincipalAsync(User);
if (user == null)
{
throw new UnauthorizedAccessException();
}
Add support for Key Connector OTP and account migration (#1663) Co-authored-by: Thomas Rittson <trittson@bitwarden.com>
2021-11-09 16:37:32 +01:00
if (!await _userService.VerifySecretAsync(user, model.Secret))
Implement User-based API Keys (#981) * added column ApiKey to dbo.User * added dbo.User.ApiKey to User_Update * added dbo.User.ApiKey to User_Create * wrote migration script for implementing dbo.User.ApiKey * Added ApiKey prop to the User table model * Created AccountsController method for getting a user's API Key * Created AccountsController method for rotating a user API key * Added support to ApiClient for passed-through ClientSecrets when the request comes from the cli * Added a new conditional to ClientStore to account for user API keys * Wrote unit tests for new user API Key methods * Added a refresh of dbo.UserView to new migration script for ApiKey * Let client_credentials grants into the custom token logic * Cleanup for ApiKey auth in the CLI feature * Created user API key on registration * Removed uneeded code for user API keys * Changed a .Contains() to a .StartsWith() in ClientStore * Changed index that an array is searched on * Added more claims to the user apikey clients * Moved some claim finding logic to a helper method
2020-11-10 15:15:29 -05:00
{
await Task.Delay(2000);
Add support for Key Connector OTP and account migration (#1663) Co-authored-by: Thomas Rittson <trittson@bitwarden.com>
2021-11-09 16:37:32 +01:00
throw new BadRequestException(string.Empty, "User verification failed.");
Implement User-based API Keys (#981) * added column ApiKey to dbo.User * added dbo.User.ApiKey to User_Update * added dbo.User.ApiKey to User_Create * wrote migration script for implementing dbo.User.ApiKey * Added ApiKey prop to the User table model * Created AccountsController method for getting a user's API Key * Created AccountsController method for rotating a user API key * Added support to ApiClient for passed-through ClientSecrets when the request comes from the cli * Added a new conditional to ClientStore to account for user API keys * Wrote unit tests for new user API Key methods * Added a refresh of dbo.UserView to new migration script for ApiKey * Let client_credentials grants into the custom token logic * Cleanup for ApiKey auth in the CLI feature * Created user API key on registration * Removed uneeded code for user API keys * Changed a .Contains() to a .StartsWith() in ClientStore * Changed index that an array is searched on * Added more claims to the user apikey clients * Moved some claim finding logic to a helper method
2020-11-10 15:15:29 -05:00
}
Add support for Key Connector OTP and account migration (#1663) Co-authored-by: Thomas Rittson <trittson@bitwarden.com>
2021-11-09 16:37:32 +01:00
return new ApiKeyResponseModel(user);
Implement User-based API Keys (#981) * added column ApiKey to dbo.User * added dbo.User.ApiKey to User_Update * added dbo.User.ApiKey to User_Create * wrote migration script for implementing dbo.User.ApiKey * Added ApiKey prop to the User table model * Created AccountsController method for getting a user's API Key * Created AccountsController method for rotating a user API key * Added support to ApiClient for passed-through ClientSecrets when the request comes from the cli * Added a new conditional to ClientStore to account for user API keys * Wrote unit tests for new user API Key methods * Added a refresh of dbo.UserView to new migration script for ApiKey * Let client_credentials grants into the custom token logic * Cleanup for ApiKey auth in the CLI feature * Created user API key on registration * Removed uneeded code for user API keys * Changed a .Contains() to a .StartsWith() in ClientStore * Changed index that an array is searched on * Added more claims to the user apikey clients * Moved some claim finding logic to a helper method
2020-11-10 15:15:29 -05:00
}
[HttpPost("rotate-api-key")]
Add support for Key Connector OTP and account migration (#1663) Co-authored-by: Thomas Rittson <trittson@bitwarden.com>
2021-11-09 16:37:32 +01:00
public async Task<ApiKeyResponseModel> RotateApiKey([FromBody]SecretVerificationRequestModel model)
Implement User-based API Keys (#981) * added column ApiKey to dbo.User * added dbo.User.ApiKey to User_Update * added dbo.User.ApiKey to User_Create * wrote migration script for implementing dbo.User.ApiKey * Added ApiKey prop to the User table model * Created AccountsController method for getting a user's API Key * Created AccountsController method for rotating a user API key * Added support to ApiClient for passed-through ClientSecrets when the request comes from the cli * Added a new conditional to ClientStore to account for user API keys * Wrote unit tests for new user API Key methods * Added a refresh of dbo.UserView to new migration script for ApiKey * Let client_credentials grants into the custom token logic * Cleanup for ApiKey auth in the CLI feature * Created user API key on registration * Removed uneeded code for user API keys * Changed a .Contains() to a .StartsWith() in ClientStore * Changed index that an array is searched on * Added more claims to the user apikey clients * Moved some claim finding logic to a helper method
2020-11-10 15:15:29 -05:00
{
var user = await _userService.GetUserByPrincipalAsync(User);
if (user == null)
{
throw new UnauthorizedAccessException();
}
Add support for Key Connector OTP and account migration (#1663) Co-authored-by: Thomas Rittson <trittson@bitwarden.com>
2021-11-09 16:37:32 +01:00
if (!await _userService.VerifySecretAsync(user, model.Secret))
Implement User-based API Keys (#981) * added column ApiKey to dbo.User * added dbo.User.ApiKey to User_Update * added dbo.User.ApiKey to User_Create * wrote migration script for implementing dbo.User.ApiKey * Added ApiKey prop to the User table model * Created AccountsController method for getting a user's API Key * Created AccountsController method for rotating a user API key * Added support to ApiClient for passed-through ClientSecrets when the request comes from the cli * Added a new conditional to ClientStore to account for user API keys * Wrote unit tests for new user API Key methods * Added a refresh of dbo.UserView to new migration script for ApiKey * Let client_credentials grants into the custom token logic * Cleanup for ApiKey auth in the CLI feature * Created user API key on registration * Removed uneeded code for user API keys * Changed a .Contains() to a .StartsWith() in ClientStore * Changed index that an array is searched on * Added more claims to the user apikey clients * Moved some claim finding logic to a helper method
2020-11-10 15:15:29 -05:00
{
await Task.Delay(2000);
Add support for Key Connector OTP and account migration (#1663) Co-authored-by: Thomas Rittson <trittson@bitwarden.com>
2021-11-09 16:37:32 +01:00
throw new BadRequestException(string.Empty, "User verification failed.");
Implement User-based API Keys (#981) * added column ApiKey to dbo.User * added dbo.User.ApiKey to User_Update * added dbo.User.ApiKey to User_Create * wrote migration script for implementing dbo.User.ApiKey * Added ApiKey prop to the User table model * Created AccountsController method for getting a user's API Key * Created AccountsController method for rotating a user API key * Added support to ApiClient for passed-through ClientSecrets when the request comes from the cli * Added a new conditional to ClientStore to account for user API keys * Wrote unit tests for new user API Key methods * Added a refresh of dbo.UserView to new migration script for ApiKey * Let client_credentials grants into the custom token logic * Cleanup for ApiKey auth in the CLI feature * Created user API key on registration * Removed uneeded code for user API keys * Changed a .Contains() to a .StartsWith() in ClientStore * Changed index that an array is searched on * Added more claims to the user apikey clients * Moved some claim finding logic to a helper method
2020-11-10 15:15:29 -05:00
}
Add support for Key Connector OTP and account migration (#1663) Co-authored-by: Thomas Rittson <trittson@bitwarden.com>
2021-11-09 16:37:32 +01:00
await _userService.RotateApiKeyAsync(user);
var response = new ApiKeyResponseModel(user);
return response;
Implement User-based API Keys (#981) * added column ApiKey to dbo.User * added dbo.User.ApiKey to User_Update * added dbo.User.ApiKey to User_Create * wrote migration script for implementing dbo.User.ApiKey * Added ApiKey prop to the User table model * Created AccountsController method for getting a user's API Key * Created AccountsController method for rotating a user API key * Added support to ApiClient for passed-through ClientSecrets when the request comes from the cli * Added a new conditional to ClientStore to account for user API keys * Wrote unit tests for new user API Key methods * Added a refresh of dbo.UserView to new migration script for ApiKey * Let client_credentials grants into the custom token logic * Cleanup for ApiKey auth in the CLI feature * Created user API key on registration * Removed uneeded code for user API keys * Changed a .Contains() to a .StartsWith() in ClientStore * Changed index that an array is searched on * Added more claims to the user apikey clients * Moved some claim finding logic to a helper method
2020-11-10 15:15:29 -05:00
}
[Reset Password v1] Update Temporary Password API (#1481) * [Reset Password v1] Update Temporary Password API * Fixed Noop interface
2021-07-22 09:20:14 -05:00
[Reset Password v1] Updated force password reset models (#1492)
2021-08-05 13:00:24 -05:00
[HttpPut("update-temp-password")]
public async Task PutUpdateTempPasswordAsync([FromBody]UpdateTempPasswordRequestModel model)
[Reset Password v1] Update Temporary Password API (#1481) * [Reset Password v1] Update Temporary Password API * Fixed Noop interface
2021-07-22 09:20:14 -05:00
{
var user = await _userService.GetUserByPrincipalAsync(User);
if (user == null)
{
throw new UnauthorizedAccessException();
}
[Reset Password v1] Updated force password reset models (#1492)
2021-08-05 13:00:24 -05:00
var result = await _userService.UpdateTempPasswordAsync(user, model.NewMasterPasswordHash, model.Key, model.MasterPasswordHint);
[Reset Password v1] Update Temporary Password API (#1481) * [Reset Password v1] Update Temporary Password API * Fixed Noop interface
2021-07-22 09:20:14 -05:00
if (result.Succeeded)
{
return;
}
foreach (var error in result.Errors)
{
ModelState.AddModelError(string.Empty, error.Description);
}
throw new BadRequestException(ModelState);
}
Add support for Key Connector OTP and account migration (#1663) Co-authored-by: Thomas Rittson <trittson@bitwarden.com>
2021-11-09 16:37:32 +01:00
[HttpPost("request-otp")]
public async Task PostRequestOTP()
{
var user = await _userService.GetUserByPrincipalAsync(User);
if (user is not { UsesKeyConnector: true })
{
throw new UnauthorizedAccessException();
}
await _userService.SendOTPAsync(user);
}
[HttpPost("verify-otp")]
public async Task VerifyOTP([FromBody]VerifyOTPRequestModel model)
{
var user = await _userService.GetUserByPrincipalAsync(User);
if (user is not { UsesKeyConnector: true })
{
throw new UnauthorizedAccessException();
}
if (!await _userService.VerifyOTPAsync(user, model.OTP))
{
await Task.Delay(2000);
throw new BadRequestException("Token", "Invalid token");
}
}
initial commit of source
2015-12-08 22:57:38 -05:00
}
}
Reference in New Issue Copy Permalink