src/Infrastructure.Dapper/Tools/Repositories/SendRepository.cs

#nullable enable

using System.Data;
using Bit.Core;
using Bit.Core.KeyManagement.UserKey;
using Bit.Core.Settings;
using Bit.Core.Tools.Entities;
using Bit.Core.Tools.Repositories;
using Bit.Infrastructure.Dapper.Repositories;
using Bit.Infrastructure.Dapper.Tools.Helpers;
using Dapper;
using Microsoft.AspNetCore.DataProtection;
using Microsoft.Data.SqlClient;

namespace Bit.Infrastructure.Dapper.Tools.Repositories;

/// <inheritdoc cref="ISendRepository" />
public class SendRepository : Repository<Send, Guid>, ISendRepository
{
    private readonly IDataProtector _dataProtector;

    public SendRepository(GlobalSettings globalSettings, IDataProtectionProvider dataProtectionProvider)
        : this(globalSettings.SqlServer.ConnectionString, globalSettings.SqlServer.ReadOnlyConnectionString, dataProtectionProvider)
    { }

    public SendRepository(string connectionString, string readOnlyConnectionString, IDataProtectionProvider dataProtectionProvider)
        : base(connectionString, readOnlyConnectionString)
    {
        _dataProtector = dataProtectionProvider.CreateProtector(Constants.DatabaseFieldProtectorPurpose);
    }

    public override async Task<Send?> GetByIdAsync(Guid id)
    {
        var send = await base.GetByIdAsync(id);
        UnprotectData(send);
        return send;
    }

    /// <inheritdoc />
    public async Task<ICollection<Send>> GetManyByUserIdAsync(Guid userId)
    {
        using (var connection = new SqlConnection(ConnectionString))
        {
            var results = await connection.QueryAsync<Send>(
                $"[{Schema}].[Send_ReadByUserId]",
                new { UserId = userId },
                commandType: CommandType.StoredProcedure);

            var sends = results.ToList();
            UnprotectData(sends);
            return sends;
        }
    }

    /// <inheritdoc />
    public async Task<ICollection<Send>> GetManyByDeletionDateAsync(DateTime deletionDateBefore)
    {
        using (var connection = new SqlConnection(ConnectionString))
        {
            var results = await connection.QueryAsync<Send>(
                $"[{Schema}].[Send_ReadByDeletionDateBefore]",
                new { DeletionDate = deletionDateBefore },
                commandType: CommandType.StoredProcedure);

            var sends = results.ToList();
            UnprotectData(sends);
            return sends;
        }
    }

    public override async Task<Send> CreateAsync(Send send)
    {
        await ProtectDataAndSaveAsync(send, async () => await base.CreateAsync(send));
        return send;
    }

    public override async Task ReplaceAsync(Send send)
    {
        await ProtectDataAndSaveAsync(send, async () => await base.ReplaceAsync(send));
    }

    /// <inheritdoc />
    public UpdateEncryptedDataForKeyRotation UpdateForKeyRotation(Guid userId, IEnumerable<Send> sends)
    {
        return async (connection, transaction) =>
        {
            // Protect all sends before bulk update
            var sendsList = sends.ToList();
            foreach (var send in sendsList)
            {
                ProtectData(send);
            }

            // Create temp table
            var sqlCreateTemp = @"
                            SELECT TOP 0 *
                            INTO #TempSend
                            FROM [dbo].[Send]";

            await using (var cmd = new SqlCommand(sqlCreateTemp, connection, transaction))
            {
                cmd.ExecuteNonQuery();
            }

            // Bulk copy data into temp table
            using (var bulkCopy = new SqlBulkCopy(connection, SqlBulkCopyOptions.KeepIdentity, transaction))
            {
                bulkCopy.DestinationTableName = "#TempSend";
                var sendsTable = sendsList.ToDataTable();
                foreach (DataColumn col in sendsTable.Columns)
                {
                    bulkCopy.ColumnMappings.Add(col.ColumnName, col.ColumnName);
                }

                sendsTable.PrimaryKey = new DataColumn[] { sendsTable.Columns[0] };
                await bulkCopy.WriteToServerAsync(sendsTable);
            }

            // Update send table from temp table
            var sql = @"
                UPDATE
                    [dbo].[Send]
                SET
                    [Key] = TS.[Key],
                    [RevisionDate] = TS.[RevisionDate]
                FROM
                    [dbo].[Send] S
                INNER JOIN
                    #TempSend TS ON S.Id = TS.Id
                WHERE
                    S.[UserId] = @UserId
                DROP TABLE #TempSend";

            await using (var cmd = new SqlCommand(sql, connection, transaction))
            {
                cmd.Parameters.Add("@UserId", SqlDbType.UniqueIdentifier).Value = userId;
                cmd.ExecuteNonQuery();
            }

            // Unprotect after save
            foreach (var send in sendsList)
            {
                UnprotectData(send);
            }
        };
    }

    private async Task ProtectDataAndSaveAsync(Send send, Func<Task> saveTask)
    {
        if (send == null)
        {
            await saveTask();
            return;
        }

        // Capture original value
        var originalEmailHashes = send.EmailHashes;

        // Protect value
        ProtectData(send);

        // Save
        await saveTask();

        // Restore original value
        send.EmailHashes = originalEmailHashes;
    }

    private void ProtectData(Send send)
    {
        if (!send.EmailHashes?.StartsWith(Constants.DatabaseFieldProtectedPrefix) ?? false)
        {
            send.EmailHashes = string.Concat(Constants.DatabaseFieldProtectedPrefix,
                _dataProtector.Protect(send.EmailHashes!));
        }
    }

    private void UnprotectData(Send? send)
    {
        if (send == null)
        {
            return;
        }

        if (send.EmailHashes?.StartsWith(Constants.DatabaseFieldProtectedPrefix) ?? false)
        {
            send.EmailHashes = _dataProtector.Unprotect(
                send.EmailHashes.Substring(Constants.DatabaseFieldProtectedPrefix.Length));
        }
    }

    private void UnprotectData(IEnumerable<Send> sends)
    {
        if (sends == null)
        {
            return;
        }

        foreach (var send in sends)
        {
            UnprotectData(send);
        }
    }
}
-												Tools - Make Entities and Repositories nullable (#3313)

* support nullability in tools' entities and repositories

* enables C# nullability checks in these files
* includes documentation for affected files

* refine documentation per code review

* improve comments on SendFileData structure

* fix ReferenceEvent.MaxAccessCount documentation

* add value notation to SendFileData.FileName
											
										
										
											2023-11-22 15:44:25 -05:00
+								#nullable enable
 								using System.Data;
-												[PM-30920] Server changes to encrypt send access email list (#6867)

* models, entity, and stored procs updated to work with EmailHashes with migrations

* configure data protection for EmailHashes

* update SendAuthenticationQuery to use EmailHashes and perform validation

* respond to Claude's comments and update tests

* fix send.sql alignment

Co-authored-by: mkincaid-bw <mkincaid@bitwarden.com>

---------

Co-authored-by: Alex Dragovich <46065570+itsadrago@users.noreply.github.com>
Co-authored-by: mkincaid-bw <mkincaid@bitwarden.com>
											
										
										
											2026-01-28 07:13:25 -07:00
+								using Bit.Core;
-												[PM-12607] Move key rotation & validators to km ownership (#4941)

* Move key rotation & validators to km ownership

* Fix build errors

* Fix build errors

* Fix import ordering

* Update validator namespace

* Move key rotation data to km ownership

* Fix linting

* Fix namespaces

* Fix namespace

* Fix namespaces

* Move rotateuserkeycommandtests to km ownership
											
										
										
											2024-11-21 10:17:04 -08:00
+								using Bit.Core.KeyManagement.UserKey;
-												Use sas token for attachment downloads (#1153)

* Get limited life attachment download URL

This change limits url download to a 1min lifetime.
This requires moving to a new container to allow for non-public blob
access.

Clients will have to call GetAttachmentData api function to receive the download
URL. For backwards compatibility, attachment URLs are still present, but will not
work for attachments stored in non-public access blobs.

* Make GlobalSettings interface for testing

* Test LocalAttachmentStorageService equivalence

* Remove comment

* Add missing globalSettings using

* Simplify default attachment container

* Default to attachments containe for existing methods

A new upload method will be made for uploading to attachments-v2.
For compatibility for clients which don't use these new methods, we need
to still use the old container. The new container will be used only for
new uploads

* Remove Default MetaData fixture.

* Keep attachments container blob-level security for all instances

* Close unclosed FileStream

* Favor default value for noop services
											
										
										
											2021-02-22 15:35:16 -06:00
+								using Bit.Core.Settings;
-												[PM-328] Move files for team-tools (#2857)

* Extract Import-Api endpoints into separate controller

Moved ciphers/import and ciphers/import-organization into new ImportController
Paths have been kept intact for now (no changes on clients needed)
Moved request-models used for import into tools-subfolder

* Update CODEOWNERS for team-tools-dev

* Move HibpController (reports) to tools

* Moving files related to Send

* Moving files related to ReferenceEvent

* Removed unneeded newline
											
										
										
											2023-04-18 14:05:17 +02:00
+								using Bit.Core.Tools.Entities;
 								using Bit.Core.Tools.Repositories;
 								using Bit.Infrastructure.Dapper.Repositories;
-												[PM-3797 Part 4] Add Sends to new Key Rotation (#3442)

* add send validation

* add send repo methods

* add send rotation to delegate list

* add success test
											
										
										
											2023-12-12 11:58:34 -05:00
+								using Bit.Infrastructure.Dapper.Tools.Helpers;
-												Send APIs (#979)

* send work

* fix sql proj file

* update

* updates

* access id

* delete job

* fix delete job

* local send storage

* update sprocs for null checks
											
										
										
											2020-11-02 15:55:49 -05:00
+								using Dapper;
-												[PM-30920] Server changes to encrypt send access email list (#6867)

* models, entity, and stored procs updated to work with EmailHashes with migrations

* configure data protection for EmailHashes

* update SendAuthenticationQuery to use EmailHashes and perform validation

* respond to Claude's comments and update tests

* fix send.sql alignment

Co-authored-by: mkincaid-bw <mkincaid@bitwarden.com>

---------

Co-authored-by: Alex Dragovich <46065570+itsadrago@users.noreply.github.com>
Co-authored-by: mkincaid-bw <mkincaid@bitwarden.com>
											
										
										
											2026-01-28 07:13:25 -07:00
+								using Microsoft.AspNetCore.DataProtection;
-												Migrate to Microsoft.Data.SqlClient (#2548)


											
										
										
											2023-01-10 15:58:41 -05:00
+								using Microsoft.Data.SqlClient;
-												Send APIs (#979)

* send work

* fix sql proj file

* update

* updates

* access id

* delete job

* fix delete job

* local send storage

* update sprocs for null checks
											
										
										
											2020-11-02 15:55:49 -05:00
-												[PM-328] Move files for team-tools (#2857)

* Extract Import-Api endpoints into separate controller

Moved ciphers/import and ciphers/import-organization into new ImportController
Paths have been kept intact for now (no changes on clients needed)
Moved request-models used for import into tools-subfolder

* Update CODEOWNERS for team-tools-dev

* Move HibpController (reports) to tools

* Moving files related to Send

* Moving files related to ReferenceEvent

* Removed unneeded newline
											
										
										
											2023-04-18 14:05:17 +02:00
+								namespace Bit.Infrastructure.Dapper.Tools.Repositories;
-												Run formatting (#2230)


											
										
										
											2022-08-29 16:06:55 -04:00
-												Tools - Make Entities and Repositories nullable (#3313)

* support nullability in tools' entities and repositories

* enables C# nullability checks in these files
* includes documentation for affected files

* refine documentation per code review

* improve comments on SendFileData structure

* fix ReferenceEvent.MaxAccessCount documentation

* add value notation to SendFileData.FileName
											
										
										
											2023-11-22 15:44:25 -05:00
+								/// <inheritdoc cref="ISendRepository" />
-												Split out repositories to Infrastructure.Dapper / EntityFramework (#1759)


											
										
										
											2022-01-11 10:40:51 +01:00
+								public class SendRepository : Repository<Send, Guid>, ISendRepository
-												Send APIs (#979)

* send work

* fix sql proj file

* update

* updates

* access id

* delete job

* fix delete job

* local send storage

* update sprocs for null checks
											
										
										
											2020-11-02 15:55:49 -05:00
+								{
-												[PM-30920] Server changes to encrypt send access email list (#6867)

* models, entity, and stored procs updated to work with EmailHashes with migrations

* configure data protection for EmailHashes

* update SendAuthenticationQuery to use EmailHashes and perform validation

* respond to Claude's comments and update tests

* fix send.sql alignment

Co-authored-by: mkincaid-bw <mkincaid@bitwarden.com>

---------

Co-authored-by: Alex Dragovich <46065570+itsadrago@users.noreply.github.com>
Co-authored-by: mkincaid-bw <mkincaid@bitwarden.com>
											
										
										
											2026-01-28 07:13:25 -07:00
+								    private readonly IDataProtector _dataProtector;
 								    public SendRepository(GlobalSettings globalSettings, IDataProtectionProvider dataProtectionProvider)
 								        : this(globalSettings.SqlServer.ConnectionString, globalSettings.SqlServer.ReadOnlyConnectionString, dataProtectionProvider)
-												Send APIs (#979)

* send work

* fix sql proj file

* update

* updates

* access id

* delete job

* fix delete job

* local send storage

* update sprocs for null checks
											
										
										
											2020-11-02 15:55:49 -05:00
+								    { }
-												[PM-30920] Server changes to encrypt send access email list (#6867)

* models, entity, and stored procs updated to work with EmailHashes with migrations

* configure data protection for EmailHashes

* update SendAuthenticationQuery to use EmailHashes and perform validation

* respond to Claude's comments and update tests

* fix send.sql alignment

Co-authored-by: mkincaid-bw <mkincaid@bitwarden.com>

---------

Co-authored-by: Alex Dragovich <46065570+itsadrago@users.noreply.github.com>
Co-authored-by: mkincaid-bw <mkincaid@bitwarden.com>
											
										
										
											2026-01-28 07:13:25 -07:00
+								    public SendRepository(string connectionString, string readOnlyConnectionString, IDataProtectionProvider dataProtectionProvider)
-												Send APIs (#979)

* send work

* fix sql proj file

* update

* updates

* access id

* delete job

* fix delete job

* local send storage

* update sprocs for null checks
											
										
										
											2020-11-02 15:55:49 -05:00
+								        : base(connectionString, readOnlyConnectionString)
-												[PM-30920] Server changes to encrypt send access email list (#6867)

* models, entity, and stored procs updated to work with EmailHashes with migrations

* configure data protection for EmailHashes

* update SendAuthenticationQuery to use EmailHashes and perform validation

* respond to Claude's comments and update tests

* fix send.sql alignment

Co-authored-by: mkincaid-bw <mkincaid@bitwarden.com>

---------

Co-authored-by: Alex Dragovich <46065570+itsadrago@users.noreply.github.com>
Co-authored-by: mkincaid-bw <mkincaid@bitwarden.com>
											
										
										
											2026-01-28 07:13:25 -07:00
+								    {
 								        _dataProtector = dataProtectionProvider.CreateProtector(Constants.DatabaseFieldProtectorPurpose);
 								    }
 								    public override async Task<Send?> GetByIdAsync(Guid id)
 								    {
 								        var send = await base.GetByIdAsync(id);
 								        UnprotectData(send);
 								        return send;
 								    }
-												Send APIs (#979)

* send work

* fix sql proj file

* update

* updates

* access id

* delete job

* fix delete job

* local send storage

* update sprocs for null checks
											
										
										
											2020-11-02 15:55:49 -05:00
-												Tools - Make Entities and Repositories nullable (#3313)

* support nullability in tools' entities and repositories

* enables C# nullability checks in these files
* includes documentation for affected files

* refine documentation per code review

* improve comments on SendFileData structure

* fix ReferenceEvent.MaxAccessCount documentation

* add value notation to SendFileData.FileName
											
										
										
											2023-11-22 15:44:25 -05:00
+								    /// <inheritdoc />
-												Send APIs (#979)

* send work

* fix sql proj file

* update

* updates

* access id

* delete job

* fix delete job

* local send storage

* update sprocs for null checks
											
										
										
											2020-11-02 15:55:49 -05:00
+								    public async Task<ICollection<Send>> GetManyByUserIdAsync(Guid userId)
-												Run formatting (#2230)


											
										
										
											2022-08-29 16:06:55 -04:00
+								    {
-												Send APIs (#979)

* send work

* fix sql proj file

* update

* updates

* access id

* delete job

* fix delete job

* local send storage

* update sprocs for null checks
											
										
										
											2020-11-02 15:55:49 -05:00
+								        using (var connection = new SqlConnection(ConnectionString))
 								        {
 								            var results = await connection.QueryAsync<Send>(
 								                $"[{Schema}].[Send_ReadByUserId]",
 								                new { UserId = userId },
 								                commandType: CommandType.StoredProcedure);
-												[PM-30920] Server changes to encrypt send access email list (#6867)

* models, entity, and stored procs updated to work with EmailHashes with migrations

* configure data protection for EmailHashes

* update SendAuthenticationQuery to use EmailHashes and perform validation

* respond to Claude's comments and update tests

* fix send.sql alignment

Co-authored-by: mkincaid-bw <mkincaid@bitwarden.com>

---------

Co-authored-by: Alex Dragovich <46065570+itsadrago@users.noreply.github.com>
Co-authored-by: mkincaid-bw <mkincaid@bitwarden.com>
											
										
										
											2026-01-28 07:13:25 -07:00
+								            var sends = results.ToList();
 								            UnprotectData(sends);
 								            return sends;
-												Send APIs (#979)

* send work

* fix sql proj file

* update

* updates

* access id

* delete job

* fix delete job

* local send storage

* update sprocs for null checks
											
										
										
											2020-11-02 15:55:49 -05:00
+								        }
-												Run formatting (#2230)


											
										
										
											2022-08-29 16:06:55 -04:00
+								    }
-												Send APIs (#979)

* send work

* fix sql proj file

* update

* updates

* access id

* delete job

* fix delete job

* local send storage

* update sprocs for null checks
											
										
										
											2020-11-02 15:55:49 -05:00
-												Tools - Make Entities and Repositories nullable (#3313)

* support nullability in tools' entities and repositories

* enables C# nullability checks in these files
* includes documentation for affected files

* refine documentation per code review

* improve comments on SendFileData structure

* fix ReferenceEvent.MaxAccessCount documentation

* add value notation to SendFileData.FileName
											
										
										
											2023-11-22 15:44:25 -05:00
+								    /// <inheritdoc />
-												Send APIs (#979)

* send work

* fix sql proj file

* update

* updates

* access id

* delete job

* fix delete job

* local send storage

* update sprocs for null checks
											
										
										
											2020-11-02 15:55:49 -05:00
+								    public async Task<ICollection<Send>> GetManyByDeletionDateAsync(DateTime deletionDateBefore)
-												Run formatting (#2230)


											
										
										
											2022-08-29 16:06:55 -04:00
+								    {
-												Send APIs (#979)

* send work

* fix sql proj file

* update

* updates

* access id

* delete job

* fix delete job

* local send storage

* update sprocs for null checks
											
										
										
											2020-11-02 15:55:49 -05:00
+								        using (var connection = new SqlConnection(ConnectionString))
 								        {
 								            var results = await connection.QueryAsync<Send>(
 								                $"[{Schema}].[Send_ReadByDeletionDateBefore]",
 								                new { DeletionDate = deletionDateBefore },
 								                commandType: CommandType.StoredProcedure);
-												[PM-30920] Server changes to encrypt send access email list (#6867)

* models, entity, and stored procs updated to work with EmailHashes with migrations

* configure data protection for EmailHashes

* update SendAuthenticationQuery to use EmailHashes and perform validation

* respond to Claude's comments and update tests

* fix send.sql alignment

Co-authored-by: mkincaid-bw <mkincaid@bitwarden.com>

---------

Co-authored-by: Alex Dragovich <46065570+itsadrago@users.noreply.github.com>
Co-authored-by: mkincaid-bw <mkincaid@bitwarden.com>
											
										
										
											2026-01-28 07:13:25 -07:00
+								            var sends = results.ToList();
 								            UnprotectData(sends);
 								            return sends;
-												Send APIs (#979)

* send work

* fix sql proj file

* update

* updates

* access id

* delete job

* fix delete job

* local send storage

* update sprocs for null checks
											
										
										
											2020-11-02 15:55:49 -05:00
+								        }
 								    }
-												[PM-3797 Part 4] Add Sends to new Key Rotation (#3442)

* add send validation

* add send repo methods

* add send rotation to delegate list

* add success test
											
										
										
											2023-12-12 11:58:34 -05:00
-												[PM-30920] Server changes to encrypt send access email list (#6867)

* models, entity, and stored procs updated to work with EmailHashes with migrations

* configure data protection for EmailHashes

* update SendAuthenticationQuery to use EmailHashes and perform validation

* respond to Claude's comments and update tests

* fix send.sql alignment

Co-authored-by: mkincaid-bw <mkincaid@bitwarden.com>

---------

Co-authored-by: Alex Dragovich <46065570+itsadrago@users.noreply.github.com>
Co-authored-by: mkincaid-bw <mkincaid@bitwarden.com>
											
										
										
											2026-01-28 07:13:25 -07:00
+								    public override async Task<Send> CreateAsync(Send send)
 								    {
 								        await ProtectDataAndSaveAsync(send, async () => await base.CreateAsync(send));
 								        return send;
 								    }
 								    public override async Task ReplaceAsync(Send send)
 								    {
 								        await ProtectDataAndSaveAsync(send, async () => await base.ReplaceAsync(send));
 								    }
-												[PM-3797 Part 4] Add Sends to new Key Rotation (#3442)

* add send validation

* add send repo methods

* add send rotation to delegate list

* add success test
											
										
										
											2023-12-12 11:58:34 -05:00
+								    /// <inheritdoc />
 								    public UpdateEncryptedDataForKeyRotation UpdateForKeyRotation(Guid userId, IEnumerable<Send> sends)
 								    {
 								        return async (connection, transaction) =>
 								        {
-												[PM-30920] Server changes to encrypt send access email list (#6867)

* models, entity, and stored procs updated to work with EmailHashes with migrations

* configure data protection for EmailHashes

* update SendAuthenticationQuery to use EmailHashes and perform validation

* respond to Claude's comments and update tests

* fix send.sql alignment

Co-authored-by: mkincaid-bw <mkincaid@bitwarden.com>

---------

Co-authored-by: Alex Dragovich <46065570+itsadrago@users.noreply.github.com>
Co-authored-by: mkincaid-bw <mkincaid@bitwarden.com>
											
										
										
											2026-01-28 07:13:25 -07:00
+								            // Protect all sends before bulk update
 								            var sendsList = sends.ToList();
 								            foreach (var send in sendsList)
 								            {
 								                ProtectData(send);
 								            }
-												[PM-3797 Part 4] Add Sends to new Key Rotation (#3442)

* add send validation

* add send repo methods

* add send rotation to delegate list

* add success test
											
										
										
											2023-12-12 11:58:34 -05:00
+								            // Create temp table
 								            var sqlCreateTemp = @"
 								                            SELECT TOP 0 *
 								                            INTO #TempSend
 								                            FROM [dbo].[Send]";
 								            await using (var cmd = new SqlCommand(sqlCreateTemp, connection, transaction))
 								            {
 								                cmd.ExecuteNonQuery();
 								            }
 								            // Bulk copy data into temp table
 								            using (var bulkCopy = new SqlBulkCopy(connection, SqlBulkCopyOptions.KeepIdentity, transaction))
 								            {
 								                bulkCopy.DestinationTableName = "#TempSend";
-												[PM-30920] Server changes to encrypt send access email list (#6867)

* models, entity, and stored procs updated to work with EmailHashes with migrations

* configure data protection for EmailHashes

* update SendAuthenticationQuery to use EmailHashes and perform validation

* respond to Claude's comments and update tests

* fix send.sql alignment

Co-authored-by: mkincaid-bw <mkincaid@bitwarden.com>

---------

Co-authored-by: Alex Dragovich <46065570+itsadrago@users.noreply.github.com>
Co-authored-by: mkincaid-bw <mkincaid@bitwarden.com>
											
										
										
											2026-01-28 07:13:25 -07:00
+								                var sendsTable = sendsList.ToDataTable();
-												[PM-3797 Part 4] Add Sends to new Key Rotation (#3442)

* add send validation

* add send repo methods

* add send rotation to delegate list

* add success test
											
										
										
											2023-12-12 11:58:34 -05:00
+								                foreach (DataColumn col in sendsTable.Columns)
 								                {
 								                    bulkCopy.ColumnMappings.Add(col.ColumnName, col.ColumnName);
 								                }
 								                sendsTable.PrimaryKey = new DataColumn[] { sendsTable.Columns[0] };
 								                await bulkCopy.WriteToServerAsync(sendsTable);
 								            }
 								            // Update send table from temp table
 								            var sql = @"
 								                UPDATE
 								                    [dbo].[Send]
 								                SET
 								                    [Key] = TS.[Key],
 								                    [RevisionDate] = TS.[RevisionDate]
 								                FROM
 								                    [dbo].[Send] S
 								                INNER JOIN
 								                    #TempSend TS ON S.Id = TS.Id
 								                WHERE
 								                    S.[UserId] = @UserId
 								                DROP TABLE #TempSend";
 								            await using (var cmd = new SqlCommand(sql, connection, transaction))
 								            {
 								                cmd.Parameters.Add("@UserId", SqlDbType.UniqueIdentifier).Value = userId;
 								                cmd.ExecuteNonQuery();
 								            }
-												[PM-30920] Server changes to encrypt send access email list (#6867)

* models, entity, and stored procs updated to work with EmailHashes with migrations

* configure data protection for EmailHashes

* update SendAuthenticationQuery to use EmailHashes and perform validation

* respond to Claude's comments and update tests

* fix send.sql alignment

Co-authored-by: mkincaid-bw <mkincaid@bitwarden.com>

---------

Co-authored-by: Alex Dragovich <46065570+itsadrago@users.noreply.github.com>
Co-authored-by: mkincaid-bw <mkincaid@bitwarden.com>
											
										
										
											2026-01-28 07:13:25 -07:00
 								            // Unprotect after save
 								            foreach (var send in sendsList)
 								            {
 								                UnprotectData(send);
 								            }
-												[PM-3797 Part 4] Add Sends to new Key Rotation (#3442)

* add send validation

* add send repo methods

* add send rotation to delegate list

* add success test
											
										
										
											2023-12-12 11:58:34 -05:00
+								        };
 								    }
-												[PM-30920] Server changes to encrypt send access email list (#6867)

* models, entity, and stored procs updated to work with EmailHashes with migrations

* configure data protection for EmailHashes

* update SendAuthenticationQuery to use EmailHashes and perform validation

* respond to Claude's comments and update tests

* fix send.sql alignment

Co-authored-by: mkincaid-bw <mkincaid@bitwarden.com>

---------

Co-authored-by: Alex Dragovich <46065570+itsadrago@users.noreply.github.com>
Co-authored-by: mkincaid-bw <mkincaid@bitwarden.com>
											
										
										
											2026-01-28 07:13:25 -07:00
 								    private async Task ProtectDataAndSaveAsync(Send send, Func<Task> saveTask)
 								    {
 								        if (send == null)
 								        {
 								            await saveTask();
 								            return;
 								        }
 								        // Capture original value
 								        var originalEmailHashes = send.EmailHashes;
 								        // Protect value
 								        ProtectData(send);
 								        // Save
 								        await saveTask();
 								        // Restore original value
 								        send.EmailHashes = originalEmailHashes;
 								    }
 								    private void ProtectData(Send send)
 								    {
 								        if (!send.EmailHashes?.StartsWith(Constants.DatabaseFieldProtectedPrefix) ?? false)
 								        {
 								            send.EmailHashes = string.Concat(Constants.DatabaseFieldProtectedPrefix,
 								                _dataProtector.Protect(send.EmailHashes!));
 								        }
 								    }
 								    private void UnprotectData(Send? send)
 								    {
 								        if (send == null)
 								        {
 								            return;
 								        }
 								        if (send.EmailHashes?.StartsWith(Constants.DatabaseFieldProtectedPrefix) ?? false)
 								        {
 								            send.EmailHashes = _dataProtector.Unprotect(
 								                send.EmailHashes.Substring(Constants.DatabaseFieldProtectedPrefix.Length));
 								        }
 								    }
 								    private void UnprotectData(IEnumerable<Send> sends)
 								    {
 								        if (sends == null)
 								        {
 								            return;
 								        }
 								        foreach (var send in sends)
 								        {
 								            UnprotectData(send);
 								        }
 								    }
-												Send APIs (#979)

* send work

* fix sql proj file

* update

* updates

* access id

* delete job

* fix delete job

* local send storage

* update sprocs for null checks
											
										
										
											2020-11-02 15:55:49 -05:00
+								}