2016-06-07 20:05:27 -04:00
|
|
|
|
using System;
|
|
|
|
|
|
using System.Linq;
|
|
|
|
|
|
using System.Threading.Tasks;
|
|
|
|
|
|
using Microsoft.AspNetCore.Mvc;
|
|
|
|
|
|
using Bit.Core.Repositories;
|
|
|
|
|
|
using Microsoft.AspNetCore.Authorization;
|
2017-03-08 21:55:08 -05:00
|
|
|
|
using Bit.Core.Models.Api;
|
2016-06-07 20:05:27 -04:00
|
|
|
|
using Bit.Core.Exceptions;
|
|
|
|
|
|
using Bit.Core.Services;
|
2017-04-12 12:42:00 -04:00
|
|
|
|
using Bit.Core;
|
2016-06-07 20:05:27 -04:00
|
|
|
|
|
|
|
|
|
|
namespace Bit.Api.Controllers
|
|
|
|
|
|
{
|
|
|
|
|
|
[Route("ciphers")]
|
|
|
|
|
|
[Authorize("Application")]
|
|
|
|
|
|
public class CiphersController : Controller
|
|
|
|
|
|
{
|
|
|
|
|
|
private readonly ICipherRepository _cipherRepository;
|
2017-03-23 17:43:12 -04:00
|
|
|
|
private readonly ISubvaultCipherRepository _subvaultCipherRepository;
|
2016-06-07 20:05:27 -04:00
|
|
|
|
private readonly ICipherService _cipherService;
|
2017-01-24 22:46:54 -05:00
|
|
|
|
private readonly IUserService _userService;
|
2017-04-12 12:42:00 -04:00
|
|
|
|
private readonly CurrentContext _currentContext;
|
2016-06-07 20:05:27 -04:00
|
|
|
|
|
|
|
|
|
|
public CiphersController(
|
|
|
|
|
|
ICipherRepository cipherRepository,
|
2017-03-23 17:43:12 -04:00
|
|
|
|
ISubvaultCipherRepository subvaultCipherRepository,
|
2016-06-07 20:05:27 -04:00
|
|
|
|
ICipherService cipherService,
|
2017-04-12 12:42:00 -04:00
|
|
|
|
IUserService userService,
|
|
|
|
|
|
CurrentContext currentContext)
|
2016-06-07 20:05:27 -04:00
|
|
|
|
{
|
|
|
|
|
|
_cipherRepository = cipherRepository;
|
2017-03-23 17:43:12 -04:00
|
|
|
|
_subvaultCipherRepository = subvaultCipherRepository;
|
2016-06-07 20:05:27 -04:00
|
|
|
|
_cipherService = cipherService;
|
2017-01-24 22:46:54 -05:00
|
|
|
|
_userService = userService;
|
2017-04-12 12:42:00 -04:00
|
|
|
|
_currentContext = currentContext;
|
2016-06-07 20:05:27 -04:00
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
[HttpGet("{id}")]
|
2017-02-28 22:51:29 -05:00
|
|
|
|
public async Task<CipherResponseModel> Get(string id)
|
2016-06-07 20:05:27 -04:00
|
|
|
|
{
|
2017-02-18 01:17:09 -05:00
|
|
|
|
var userId = _userService.GetProperUserId(User).Value;
|
2017-02-28 22:51:29 -05:00
|
|
|
|
var cipher = await _cipherRepository.GetByIdAsync(new Guid(id), userId);
|
2016-06-07 20:05:27 -04:00
|
|
|
|
if(cipher == null)
|
|
|
|
|
|
{
|
|
|
|
|
|
throw new NotFoundException();
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2017-03-18 11:58:02 -04:00
|
|
|
|
return new CipherResponseModel(cipher);
|
2016-06-07 20:05:27 -04:00
|
|
|
|
}
|
|
|
|
|
|
|
2017-04-04 17:22:47 -04:00
|
|
|
|
[HttpGet("{id}/full-details")]
|
|
|
|
|
|
public async Task<CipherFullDetailsResponseModel> GetDetails(string id)
|
|
|
|
|
|
{
|
|
|
|
|
|
var userId = _userService.GetProperUserId(User).Value;
|
|
|
|
|
|
var cipherId = new Guid(id);
|
|
|
|
|
|
var cipher = await _cipherRepository.GetFullDetailsByIdAsync(cipherId, userId);
|
|
|
|
|
|
if(cipher == null)
|
|
|
|
|
|
{
|
|
|
|
|
|
throw new NotFoundException();
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
var subvaultCiphers = await _subvaultCipherRepository.GetManyByUserIdCipherIdAsync(userId, cipherId);
|
|
|
|
|
|
return new CipherFullDetailsResponseModel(cipher, subvaultCiphers);
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2016-06-07 20:05:27 -04:00
|
|
|
|
[HttpGet("")]
|
2017-02-28 22:51:29 -05:00
|
|
|
|
public async Task<ListResponseModel<CipherResponseModel>> Get()
|
2016-06-07 20:05:27 -04:00
|
|
|
|
{
|
2017-02-18 01:17:09 -05:00
|
|
|
|
var userId = _userService.GetProperUserId(User).Value;
|
2017-02-28 22:51:29 -05:00
|
|
|
|
var ciphers = await _cipherRepository.GetManyByUserIdAsync(userId);
|
2017-03-18 11:58:02 -04:00
|
|
|
|
var responses = ciphers.Select(c => new CipherResponseModel(c));
|
2017-02-28 22:51:29 -05:00
|
|
|
|
return new ListResponseModel<CipherResponseModel>(responses);
|
2016-06-07 20:05:27 -04:00
|
|
|
|
}
|
|
|
|
|
|
|
2017-04-04 17:22:47 -04:00
|
|
|
|
[HttpGet("details")]
|
2017-03-23 17:43:12 -04:00
|
|
|
|
public async Task<ListResponseModel<CipherDetailsResponseModel>> GetSubvaults()
|
|
|
|
|
|
{
|
|
|
|
|
|
var userId = _userService.GetProperUserId(User).Value;
|
|
|
|
|
|
var ciphers = await _cipherRepository.GetManyByUserIdHasSubvaultsAsync(userId);
|
2017-03-24 09:42:06 -04:00
|
|
|
|
|
2017-03-23 17:43:12 -04:00
|
|
|
|
var subvaultCiphers = await _subvaultCipherRepository.GetManyByUserIdAsync(userId);
|
2017-03-24 09:42:06 -04:00
|
|
|
|
var subvaultCiphersGroupDict = subvaultCiphers.GroupBy(s => s.CipherId).ToDictionary(s => s.Key);
|
|
|
|
|
|
|
|
|
|
|
|
var responses = ciphers.Select(c => new CipherDetailsResponseModel(c, subvaultCiphersGroupDict));
|
2017-03-23 17:43:12 -04:00
|
|
|
|
return new ListResponseModel<CipherDetailsResponseModel>(responses);
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2017-04-12 14:42:19 -04:00
|
|
|
|
[Obsolete]
|
|
|
|
|
|
[HttpGet("history")]
|
|
|
|
|
|
public Task<CipherHistoryResponseModel> Get(DateTime since)
|
|
|
|
|
|
{
|
|
|
|
|
|
return Task.FromResult(new CipherHistoryResponseModel());
|
|
|
|
|
|
}
|
2016-06-08 20:40:20 -04:00
|
|
|
|
|
2016-06-07 20:05:27 -04:00
|
|
|
|
[HttpPost("import")]
|
|
|
|
|
|
public async Task PostImport([FromBody]ImportRequestModel model)
|
|
|
|
|
|
{
|
2017-01-24 22:46:54 -05:00
|
|
|
|
var userId = _userService.GetProperUserId(User).Value;
|
2017-03-18 11:58:02 -04:00
|
|
|
|
var folderCiphers = model.Folders.Select(f => f.ToFolder(userId)).ToList();
|
2017-03-18 23:41:46 -04:00
|
|
|
|
var otherCiphers = model.Logins.Select(s => s.ToCipherDetails(userId)).ToList();
|
2016-06-07 20:05:27 -04:00
|
|
|
|
|
|
|
|
|
|
await _cipherService.ImportCiphersAsync(
|
|
|
|
|
|
folderCiphers,
|
|
|
|
|
|
otherCiphers,
|
|
|
|
|
|
model.FolderRelationships);
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2017-04-12 14:42:19 -04:00
|
|
|
|
[Obsolete]
|
|
|
|
|
|
[HttpPut("{id}/favorite")]
|
|
|
|
|
|
[HttpPost("{id}/favorite")]
|
|
|
|
|
|
public async Task Favorite(string id)
|
|
|
|
|
|
{
|
|
|
|
|
|
var userId = _userService.GetProperUserId(User).Value;
|
|
|
|
|
|
var cipher = await _cipherRepository.GetByIdAsync(new Guid(id), userId);
|
|
|
|
|
|
if(cipher == null)
|
|
|
|
|
|
{
|
|
|
|
|
|
throw new NotFoundException();
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
await _cipherService.UpdatePartialAsync(new Guid(id), userId, cipher.FolderId, !cipher.Favorite);
|
|
|
|
|
|
}
|
2016-06-08 22:19:08 -04:00
|
|
|
|
|
2017-03-24 16:15:50 -04:00
|
|
|
|
[HttpPut("{id}/partial")]
|
|
|
|
|
|
[HttpPost("{id}/partial")]
|
|
|
|
|
|
public async Task PutPartial(string id, [FromBody]CipherPartialRequestModel model)
|
|
|
|
|
|
{
|
|
|
|
|
|
var userId = _userService.GetProperUserId(User).Value;
|
|
|
|
|
|
var folderId = string.IsNullOrWhiteSpace(model.FolderId) ? null : (Guid?)new Guid(model.FolderId);
|
|
|
|
|
|
await _cipherService.UpdatePartialAsync(new Guid(id), userId, folderId, model.Favorite);
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2017-04-12 12:42:00 -04:00
|
|
|
|
[HttpPut("{id}/share")]
|
|
|
|
|
|
[HttpPost("{id}/share")]
|
|
|
|
|
|
public async Task PutShare(string id, [FromBody]CipherShareRequestModel model)
|
2017-03-21 00:04:39 -04:00
|
|
|
|
{
|
|
|
|
|
|
var userId = _userService.GetProperUserId(User).Value;
|
2017-03-21 21:13:20 -04:00
|
|
|
|
var cipher = await _cipherRepository.GetByIdAsync(new Guid(id), userId);
|
2017-04-12 12:42:00 -04:00
|
|
|
|
if(cipher == null || cipher.UserId != userId ||
|
|
|
|
|
|
!_currentContext.OrganizationUser(new Guid(model.Cipher.OrganizationId)))
|
2017-03-21 00:04:39 -04:00
|
|
|
|
{
|
|
|
|
|
|
throw new NotFoundException();
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2017-04-12 12:42:00 -04:00
|
|
|
|
await _cipherService.ShareAsync(model.Cipher.ToCipher(cipher), new Guid(model.Cipher.OrganizationId),
|
2017-03-21 00:04:39 -04:00
|
|
|
|
model.SubvaultIds.Select(s => new Guid(s)), userId);
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2017-04-12 12:42:00 -04:00
|
|
|
|
[HttpPut("{id}/subvaults")]
|
|
|
|
|
|
[HttpPost("{id}/subvaults")]
|
|
|
|
|
|
public async Task PutSubvaults(string id, [FromBody]CipherSubvaultsRequestModel model)
|
|
|
|
|
|
{
|
|
|
|
|
|
var userId = _userService.GetProperUserId(User).Value;
|
|
|
|
|
|
var cipher = await _cipherRepository.GetByIdAsync(new Guid(id), userId);
|
|
|
|
|
|
if(cipher == null || !cipher.OrganizationId.HasValue ||
|
|
|
|
|
|
!_currentContext.OrganizationUser(cipher.OrganizationId.Value))
|
|
|
|
|
|
{
|
|
|
|
|
|
throw new NotFoundException();
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
await _cipherService.SaveSubvaultsAsync(cipher, model.SubvaultIds.Select(s => new Guid(s)), userId);
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2016-06-07 20:05:27 -04:00
|
|
|
|
[HttpDelete("{id}")]
|
2016-07-13 21:43:48 -04:00
|
|
|
|
[HttpPost("{id}/delete")]
|
2016-06-07 20:05:27 -04:00
|
|
|
|
public async Task Delete(string id)
|
|
|
|
|
|
{
|
2017-03-21 21:13:20 -04:00
|
|
|
|
var userId = _userService.GetProperUserId(User).Value;
|
|
|
|
|
|
var cipher = await _cipherRepository.GetByIdAsync(new Guid(id), userId);
|
2016-06-07 20:05:27 -04:00
|
|
|
|
if(cipher == null)
|
|
|
|
|
|
{
|
|
|
|
|
|
throw new NotFoundException();
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2017-03-24 09:27:15 -04:00
|
|
|
|
await _cipherService.DeleteAsync(cipher, userId);
|
2016-06-07 20:05:27 -04:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
