admin/server
1
0
Fork 0
mirror of https://github.com/bitwarden/server.git synced 2026-02-05 00:23:24 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
982e26cbfdb26b294872cfe4c23d0bbc9b14d086
server/src/Api/Controllers/CiphersController.cs

809 lines
34 KiB
C#
Raw Normal View History

created ciphers API controller. Moved import to ciphers controller.
2016-06-07 20:05:27 -04:00
using System;
using System.Linq;
using System.Threading.Tasks;
using Microsoft.AspNetCore.Mvc;
using Bit.Core.Repositories;
using Microsoft.AspNetCore.Authorization;
move all models into core
2017-03-08 21:55:08 -05:00
using Bit.Core.Models.Api;
created ciphers API controller. Moved import to ciphers controller.
2016-06-07 20:05:27 -04:00
using Bit.Core.Exceptions;
using Bit.Core.Services;
Add disable send policy (#1130) * Add Disable Send policy * Test DisableSend policy * PR Review * Update tests for using CurrentContext This required making an interface for CurrentContext and mocking out the members used. The interface can be expanded as needed for tests. I moved CurrentContext to a folder, which changes the namespace and causes a lot of file touches, but most are just adding a reference * Fix failing test * Update exemption to include all exempt users * Move all CurrentContext usages to ICurrentContext * PR review. Match messaging with Web
2021-02-04 12:54:21 -06:00
using Bit.Core.Context;
attachment apis and azure storage service
2017-06-15 15:34:12 -04:00
using Bit.Api.Utilities;
deprecated logins api and moved to ciphers
2017-09-20 23:52:45 -04:00
using System.Collections.Generic;
validate master password on purge
2017-10-25 21:38:54 -04:00
using Bit.Core.Models.Table;
Use sas token for attachment downloads (#1153) * Get limited life attachment download URL This change limits url download to a 1min lifetime. This requires moving to a new container to allow for non-public blob access. Clients will have to call GetAttachmentData api function to receive the download URL. For backwards compatibility, attachment URLs are still present, but will not work for attachments stored in non-public access blobs. * Make GlobalSettings interface for testing * Test LocalAttachmentStorageService equivalence * Remove comment * Add missing globalSettings using * Simplify default attachment container * Default to attachments containe for existing methods A new upload method will be made for uploading to attachments-v2. For compatibility for clients which don't use these new methods, we need to still use the old container. The new container will be used only for new uploads * Remove Default MetaData fixture. * Keep attachments container blob-level security for all instances * Close unclosed FileStream * Favor default value for noop services
2021-02-22 15:35:16 -06:00
using Bit.Core.Settings;
Attachment blob upload (#1229) * Add Cipher attachment upload endpoints * Add validation bool to attachment storage data This bool is used to determine whether or not to renew upload links * Add model to request a new attachment to be made for later upload * Add model to respond with created attachment. The two cipher properties represent the two different cipher model types that can be returned. Cipher Response from personal items and mini response from organizations * Create Azure SAS-authorized upload links for both one-shot and block uploads * Add service methods to handle delayed upload and file size validation * Add emergency access method for downloading attachments direct from Azure * Add new attachment storage methods to other services * Update service interfaces * Log event grid exceptions * Limit Send and Attachment Size to 500MB * capitalize Key property * Add key validation to Azure Event Grid endpoint * Delete blob for unexpected blob creation events * Set Event Grid key at API startup * Change renew attachment upload url request path to match Send * Shore up attachment cleanup method. As long as we have the required information, we should always delete attachments from each the Repository, the cipher in memory, and the file storage service to ensure they're all synched.
2021-03-30 18:41:14 -05:00
using Core.Models.Data;
using Microsoft.Azure.EventGrid.Models;
using Bit.Core.Models.Data;
using Microsoft.Extensions.Logging;
using Newtonsoft.Json;
created ciphers API controller. Moved import to ciphers controller.
2016-06-07 20:05:27 -04:00
namespace Bit.Api.Controllers
{
[Route("ciphers")]
[Authorize("Application")]
public class CiphersController : Controller
{
private readonly ICipherRepository _cipherRepository;
renaming subvault => collection
2017-04-27 09:19:30 -04:00
private readonly ICollectionCipherRepository _collectionCipherRepository;
created ciphers API controller. Moved import to ciphers controller.
2016-06-07 20:05:27 -04:00
private readonly ICipherService _cipherService;
react to contact changes not being set from identity
2017-01-24 22:46:54 -05:00
private readonly IUserService _userService;
Use sas token for attachment downloads (#1153) * Get limited life attachment download URL This change limits url download to a 1min lifetime. This requires moving to a new container to allow for non-public blob access. Clients will have to call GetAttachmentData api function to receive the download URL. For backwards compatibility, attachment URLs are still present, but will not work for attachments stored in non-public access blobs. * Make GlobalSettings interface for testing * Test LocalAttachmentStorageService equivalence * Remove comment * Add missing globalSettings using * Simplify default attachment container * Default to attachments containe for existing methods A new upload method will be made for uploading to attachments-v2. For compatibility for clients which don't use these new methods, we need to still use the old container. The new container will be used only for new uploads * Remove Default MetaData fixture. * Keep attachments container blob-level security for all instances * Close unclosed FileStream * Favor default value for noop services
2021-02-22 15:35:16 -06:00
private readonly IAttachmentStorageService _attachmentStorageService;
Add disable send policy (#1130) * Add Disable Send policy * Test DisableSend policy * PR Review * Update tests for using CurrentContext This required making an interface for CurrentContext and mocking out the members used. The interface can be expanded as needed for tests. I moved CurrentContext to a folder, which changes the namespace and causes a lot of file touches, but most are just adding a reference * Fix failing test * Update exemption to include all exempt users * Move all CurrentContext usages to ICurrentContext * PR review. Match messaging with Web
2021-02-04 12:54:21 -06:00
private readonly ICurrentContext _currentContext;
Attachment blob upload (#1229) * Add Cipher attachment upload endpoints * Add validation bool to attachment storage data This bool is used to determine whether or not to renew upload links * Add model to request a new attachment to be made for later upload * Add model to respond with created attachment. The two cipher properties represent the two different cipher model types that can be returned. Cipher Response from personal items and mini response from organizations * Create Azure SAS-authorized upload links for both one-shot and block uploads * Add service methods to handle delayed upload and file size validation * Add emergency access method for downloading attachments direct from Azure * Add new attachment storage methods to other services * Update service interfaces * Log event grid exceptions * Limit Send and Attachment Size to 500MB * capitalize Key property * Add key validation to Azure Event Grid endpoint * Delete blob for unexpected blob creation events * Set Event Grid key at API startup * Change renew attachment upload url request path to match Send * Shore up attachment cleanup method. As long as we have the required information, we should always delete attachments from each the Repository, the cipher in memory, and the file storage service to ensure they're all synched.
2021-03-30 18:41:14 -05:00
private readonly ILogger<CiphersController> _logger;
return attachments from API
2017-06-30 23:01:41 -04:00
private readonly GlobalSettings _globalSettings;
created ciphers API controller. Moved import to ciphers controller.
2016-06-07 20:05:27 -04:00
public CiphersController(
ICipherRepository cipherRepository,
renaming subvault => collection
2017-04-27 09:19:30 -04:00
ICollectionCipherRepository collectionCipherRepository,
created ciphers API controller. Moved import to ciphers controller.
2016-06-07 20:05:27 -04:00
ICipherService cipherService,
update cipher subvaults
2017-04-12 12:42:00 -04:00
IUserService userService,
Use sas token for attachment downloads (#1153) * Get limited life attachment download URL This change limits url download to a 1min lifetime. This requires moving to a new container to allow for non-public blob access. Clients will have to call GetAttachmentData api function to receive the download URL. For backwards compatibility, attachment URLs are still present, but will not work for attachments stored in non-public access blobs. * Make GlobalSettings interface for testing * Test LocalAttachmentStorageService equivalence * Remove comment * Add missing globalSettings using * Simplify default attachment container * Default to attachments containe for existing methods A new upload method will be made for uploading to attachments-v2. For compatibility for clients which don't use these new methods, we need to still use the old container. The new container will be used only for new uploads * Remove Default MetaData fixture. * Keep attachments container blob-level security for all instances * Close unclosed FileStream * Favor default value for noop services
2021-02-22 15:35:16 -06:00
IAttachmentStorageService attachmentStorageService,
Add disable send policy (#1130) * Add Disable Send policy * Test DisableSend policy * PR Review * Update tests for using CurrentContext This required making an interface for CurrentContext and mocking out the members used. The interface can be expanded as needed for tests. I moved CurrentContext to a folder, which changes the namespace and causes a lot of file touches, but most are just adding a reference * Fix failing test * Update exemption to include all exempt users * Move all CurrentContext usages to ICurrentContext * PR review. Match messaging with Web
2021-02-04 12:54:21 -06:00
ICurrentContext currentContext,
Attachment blob upload (#1229) * Add Cipher attachment upload endpoints * Add validation bool to attachment storage data This bool is used to determine whether or not to renew upload links * Add model to request a new attachment to be made for later upload * Add model to respond with created attachment. The two cipher properties represent the two different cipher model types that can be returned. Cipher Response from personal items and mini response from organizations * Create Azure SAS-authorized upload links for both one-shot and block uploads * Add service methods to handle delayed upload and file size validation * Add emergency access method for downloading attachments direct from Azure * Add new attachment storage methods to other services * Update service interfaces * Log event grid exceptions * Limit Send and Attachment Size to 500MB * capitalize Key property * Add key validation to Azure Event Grid endpoint * Delete blob for unexpected blob creation events * Set Event Grid key at API startup * Change renew attachment upload url request path to match Send * Shore up attachment cleanup method. As long as we have the required information, we should always delete attachments from each the Repository, the cipher in memory, and the file storage service to ensure they're all synched.
2021-03-30 18:41:14 -05:00
ILogger<CiphersController> logger,
return attachments from API
2017-06-30 23:01:41 -04:00
GlobalSettings globalSettings)
created ciphers API controller. Moved import to ciphers controller.
2016-06-07 20:05:27 -04:00
{
_cipherRepository = cipherRepository;
renaming subvault => collection
2017-04-27 09:19:30 -04:00
_collectionCipherRepository = collectionCipherRepository;
created ciphers API controller. Moved import to ciphers controller.
2016-06-07 20:05:27 -04:00
_cipherService = cipherService;
react to contact changes not being set from identity
2017-01-24 22:46:54 -05:00
_userService = userService;
Use sas token for attachment downloads (#1153) * Get limited life attachment download URL This change limits url download to a 1min lifetime. This requires moving to a new container to allow for non-public blob access. Clients will have to call GetAttachmentData api function to receive the download URL. For backwards compatibility, attachment URLs are still present, but will not work for attachments stored in non-public access blobs. * Make GlobalSettings interface for testing * Test LocalAttachmentStorageService equivalence * Remove comment * Add missing globalSettings using * Simplify default attachment container * Default to attachments containe for existing methods A new upload method will be made for uploading to attachments-v2. For compatibility for clients which don't use these new methods, we need to still use the old container. The new container will be used only for new uploads * Remove Default MetaData fixture. * Keep attachments container blob-level security for all instances * Close unclosed FileStream * Favor default value for noop services
2021-02-22 15:35:16 -06:00
_attachmentStorageService = attachmentStorageService;
update cipher subvaults
2017-04-12 12:42:00 -04:00
_currentContext = currentContext;
Attachment blob upload (#1229) * Add Cipher attachment upload endpoints * Add validation bool to attachment storage data This bool is used to determine whether or not to renew upload links * Add model to request a new attachment to be made for later upload * Add model to respond with created attachment. The two cipher properties represent the two different cipher model types that can be returned. Cipher Response from personal items and mini response from organizations * Create Azure SAS-authorized upload links for both one-shot and block uploads * Add service methods to handle delayed upload and file size validation * Add emergency access method for downloading attachments direct from Azure * Add new attachment storage methods to other services * Update service interfaces * Log event grid exceptions * Limit Send and Attachment Size to 500MB * capitalize Key property * Add key validation to Azure Event Grid endpoint * Delete blob for unexpected blob creation events * Set Event Grid key at API startup * Change renew attachment upload url request path to match Send * Shore up attachment cleanup method. As long as we have the required information, we should always delete attachments from each the Repository, the cipher in memory, and the file storage service to ensure they're all synched.
2021-03-30 18:41:14 -05:00
_logger = logger;
return attachments from API
2017-06-30 23:01:41 -04:00
_globalSettings = globalSettings;
created ciphers API controller. Moved import to ciphers controller.
2016-06-07 20:05:27 -04:00
}
[HttpGet("{id}")]
remove old share solution code
2017-02-28 22:51:29 -05:00
public async Task<CipherResponseModel> Get(string id)
created ciphers API controller. Moved import to ciphers controller.
2016-06-07 20:05:27 -04:00
{
cipher share data and key response
2017-02-18 01:17:09 -05:00
var userId = _userService.GetProperUserId(User).Value;
remove old share solution code
2017-02-28 22:51:29 -05:00
var cipher = await _cipherRepository.GetByIdAsync(new Guid(id), userId);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (cipher == null)
created ciphers API controller. Moved import to ciphers controller.
2016-06-07 20:05:27 -04:00
{
throw new NotFoundException();
}
return attachments from API
2017-06-30 23:01:41 -04:00
return new CipherResponseModel(cipher, _globalSettings);
created ciphers API controller. Moved import to ciphers controller.
2016-06-07 20:05:27 -04:00
}
deprecated logins api and moved to ciphers
2017-09-20 23:52:45 -04:00
[HttpGet("{id}/admin")]
fix issues on cipher admin endpoints
2019-05-01 09:38:13 -04:00
public async Task<CipherMiniResponseModel> GetAdmin(string id)
deprecated logins api and moved to ciphers
2017-09-20 23:52:45 -04:00
{
fix issues on cipher admin endpoints
2019-05-01 09:38:13 -04:00
var cipher = await _cipherRepository.GetOrganizationDetailsByIdAsync(new Guid(id));
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (cipher == null || !cipher.OrganizationId.HasValue ||
Implemented Custom role and permissions (#1057) * Implemented Custom role and permissions * Converted permissions columns to a json blob * Code review fixes for Permissions * sql build fix * Update Permissions.cs * formatting * Update IOrganizationService.cs * reworked a conditional * built out tests for relevant organization service methods * removed unused usings * fixed a broken test and a bad empty string init * removed 'Attribute' from some attribute instances
2021-01-12 11:02:39 -05:00
!_currentContext.ManageAllCollections(cipher.OrganizationId.Value))
deprecated logins api and moved to ciphers
2017-09-20 23:52:45 -04:00
{
throw new NotFoundException();
}
fix issues on cipher admin endpoints
2019-05-01 09:38:13 -04:00
return new CipherMiniResponseModel(cipher, _globalSettings, cipher.OrganizationUseTotp);
deprecated logins api and moved to ciphers
2017-09-20 23:52:45 -04:00
}
cipher details with subvaults api
2017-04-04 17:22:47 -04:00
[HttpGet("{id}/full-details")]
CipherDetails Edit property
2017-05-06 23:23:01 -04:00
[HttpGet("{id}/details")]
public async Task<CipherDetailsResponseModel> GetDetails(string id)
cipher details with subvaults api
2017-04-04 17:22:47 -04:00
{
var userId = _userService.GetProperUserId(User).Value;
var cipherId = new Guid(id);
CipherDetails Edit property
2017-05-06 23:23:01 -04:00
var cipher = await _cipherRepository.GetByIdAsync(cipherId, userId);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (cipher == null)
cipher details with subvaults api
2017-04-04 17:22:47 -04:00
{
throw new NotFoundException();
}
renaming subvault => collection
2017-04-27 09:19:30 -04:00
var collectionCiphers = await _collectionCipherRepository.GetManyByUserIdCipherIdAsync(userId, cipherId);
return attachments from API
2017-06-30 23:01:41 -04:00
return new CipherDetailsResponseModel(cipher, _globalSettings, collectionCiphers);
cipher details with subvaults api
2017-04-04 17:22:47 -04:00
}
created ciphers API controller. Moved import to ciphers controller.
2016-06-07 20:05:27 -04:00
[HttpGet("")]
refactor cipher queries by user. tuned indexing.
2018-04-24 12:48:43 -04:00
public async Task<ListResponseModel<CipherDetailsResponseModel>> Get()
created ciphers API controller. Moved import to ciphers controller.
2016-06-07 20:05:27 -04:00
{
cipher share data and key response
2017-02-18 01:17:09 -05:00
var userId = _userService.GetProperUserId(User).Value;
reference OrganizationMembership instead
2018-08-31 17:05:27 -04:00
var hasOrgs = _currentContext.Organizations?.Any() ?? false;
use withOrganizations sproc
2018-04-24 20:19:23 -04:00
// TODO: Use hasOrgs proper for cipher listing here?
var ciphers = await _cipherRepository.GetManyByUserIdAsync(userId, true || hasOrgs);
only get collection info when in an org
2017-11-24 09:28:38 -05:00
Dictionary<Guid, IGrouping<Guid, CollectionCipher>> collectionCiphersGroupDict = null;
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (hasOrgs)
only get collection info when in an org
2017-11-24 09:28:38 -05:00
{
var collectionCiphers = await _collectionCipherRepository.GetManyByUserIdAsync(userId);
Resolved PR comments, spacing and controller code-line reversion
2020-04-01 14:55:14 -04:00
collectionCiphersGroupDict = collectionCiphers.GroupBy(c => c.CipherId).ToDictionary(s => s.Key);
only get collection info when in an org
2017-11-24 09:28:38 -05:00
}
var responses = ciphers.Select(c => new CipherDetailsResponseModel(c, _globalSettings,
collectionCiphersGroupDict)).ToList();
return new ListResponseModel<CipherDetailsResponseModel>(responses);
created ciphers API controller. Moved import to ciphers controller.
2016-06-07 20:05:27 -04:00
}
deprecated logins api and moved to ciphers
2017-09-20 23:52:45 -04:00
[HttpPost("")]
public async Task<CipherResponseModel> Post([FromBody]CipherRequestModel model)
{
var userId = _userService.GetProperUserId(User).Value;
var cipher = model.ToCipherDetails(userId);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (cipher.OrganizationId.HasValue && !_currentContext.OrganizationUser(cipher.OrganizationId.Value))
apis for creating ciphers with org & collections
2018-10-19 12:07:31 -04:00
{
throw new NotFoundException();
}
Validate cipher updates with revision date (#994) * Add last updated validation to cipher replacements * Add AutoFixture scaffolding. AutoDataAttributes and ICustomizations are meant to automatically produce valid test input. Examples are the Cipher customizations, which enforce the model's mutual exclusivity of UserId and OrganizationId. FixtureExtensions create a fluent way to generate SUTs. We currently use parameter injection to fascilitate service testing, which is nicely handled by AutoNSubstitute. However, in order to gain access to the substitutions, we need to Freeze them onto the Fixture. The For fluent method allows specifying a Freeze to a specific type's constructor and optionally to a parameter name in that constructor. * Unit tests for single Cipher update version checks * Fix test runner Test runner requires Microsoft.NET.Test.Sdk * Move to provider model for SUT generation This model differs from previous in that you no longer need to specify which dependencies you would like access to. Instead, all are remembered and can be queried through the sutProvider. * User cipher provided by Put method reads Every put method already reads all relevant ciphers from database, there's no need to re-read them. JSON serialization of datetimes seems to leave truncate at second precision. Verify last known date time is within one second rather than exact. * validate revision date for share many requests * Update build script to use Github environment path Co-authored-by: Matt Gibson <mdgibson@Matts-MBP.lan>
2020-11-23 08:48:05 -06:00
await _cipherService.SaveDetailsAsync(cipher, userId, model.LastKnownRevisionDate, null, cipher.OrganizationId.HasValue);
apis for creating ciphers with org & collections
2018-10-19 12:07:31 -04:00
var response = new CipherResponseModel(cipher, _globalSettings);
return response;
}
[HttpPost("create")]
public async Task<CipherResponseModel> PostCreate([FromBody]CipherCreateRequestModel model)
{
var userId = _userService.GetProperUserId(User).Value;
var cipher = model.Cipher.ToCipherDetails(userId);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (cipher.OrganizationId.HasValue && !_currentContext.OrganizationUser(cipher.OrganizationId.Value))
apis for creating ciphers with org & collections
2018-10-19 12:07:31 -04:00
{
throw new NotFoundException();
}
deprecated logins api and moved to ciphers
2017-09-20 23:52:45 -04:00
Validate cipher updates with revision date (#994) * Add last updated validation to cipher replacements * Add AutoFixture scaffolding. AutoDataAttributes and ICustomizations are meant to automatically produce valid test input. Examples are the Cipher customizations, which enforce the model's mutual exclusivity of UserId and OrganizationId. FixtureExtensions create a fluent way to generate SUTs. We currently use parameter injection to fascilitate service testing, which is nicely handled by AutoNSubstitute. However, in order to gain access to the substitutions, we need to Freeze them onto the Fixture. The For fluent method allows specifying a Freeze to a specific type's constructor and optionally to a parameter name in that constructor. * Unit tests for single Cipher update version checks * Fix test runner Test runner requires Microsoft.NET.Test.Sdk * Move to provider model for SUT generation This model differs from previous in that you no longer need to specify which dependencies you would like access to. Instead, all are remembered and can be queried through the sutProvider. * User cipher provided by Put method reads Every put method already reads all relevant ciphers from database, there's no need to re-read them. JSON serialization of datetimes seems to leave truncate at second precision. Verify last known date time is within one second rather than exact. * validate revision date for share many requests * Update build script to use Github environment path Co-authored-by: Matt Gibson <mdgibson@Matts-MBP.lan>
2020-11-23 08:48:05 -06:00
await _cipherService.SaveDetailsAsync(cipher, userId, model.Cipher.LastKnownRevisionDate, model.CollectionIds, cipher.OrganizationId.HasValue);
deprecated logins api and moved to ciphers
2017-09-20 23:52:45 -04:00
var response = new CipherResponseModel(cipher, _globalSettings);
return response;
}
[HttpPost("admin")]
apis for creating ciphers with org & collections
2018-10-19 12:07:31 -04:00
public async Task<CipherMiniResponseModel> PostAdmin([FromBody]CipherCreateRequestModel model)
deprecated logins api and moved to ciphers
2017-09-20 23:52:45 -04:00
{
apis for creating ciphers with org & collections
2018-10-19 12:07:31 -04:00
var cipher = model.Cipher.ToOrganizationCipher();
Implemented Custom role and permissions (#1057) * Implemented Custom role and permissions * Converted permissions columns to a json blob * Code review fixes for Permissions * sql build fix * Update Permissions.cs * formatting * Update IOrganizationService.cs * reworked a conditional * built out tests for relevant organization service methods * removed unused usings * fixed a broken test and a bad empty string init * removed 'Attribute' from some attribute instances
2021-01-12 11:02:39 -05:00
if (!_currentContext.ManageAllCollections(cipher.OrganizationId.Value))
deprecated logins api and moved to ciphers
2017-09-20 23:52:45 -04:00
{
throw new NotFoundException();
}
var userId = _userService.GetProperUserId(User).Value;
Validate cipher updates with revision date (#994) * Add last updated validation to cipher replacements * Add AutoFixture scaffolding. AutoDataAttributes and ICustomizations are meant to automatically produce valid test input. Examples are the Cipher customizations, which enforce the model's mutual exclusivity of UserId and OrganizationId. FixtureExtensions create a fluent way to generate SUTs. We currently use parameter injection to fascilitate service testing, which is nicely handled by AutoNSubstitute. However, in order to gain access to the substitutions, we need to Freeze them onto the Fixture. The For fluent method allows specifying a Freeze to a specific type's constructor and optionally to a parameter name in that constructor. * Unit tests for single Cipher update version checks * Fix test runner Test runner requires Microsoft.NET.Test.Sdk * Move to provider model for SUT generation This model differs from previous in that you no longer need to specify which dependencies you would like access to. Instead, all are remembered and can be queried through the sutProvider. * User cipher provided by Put method reads Every put method already reads all relevant ciphers from database, there's no need to re-read them. JSON serialization of datetimes seems to leave truncate at second precision. Verify last known date time is within one second rather than exact. * validate revision date for share many requests * Update build script to use Github environment path Co-authored-by: Matt Gibson <mdgibson@Matts-MBP.lan>
2020-11-23 08:48:05 -06:00
await _cipherService.SaveAsync(cipher, userId, model.Cipher.LastKnownRevisionDate, model.CollectionIds, true, false);
deprecated logins api and moved to ciphers
2017-09-20 23:52:45 -04:00
var response = new CipherMiniResponseModel(cipher, _globalSettings, false);
return response;
}
[HttpPut("{id}")]
[HttpPost("{id}")]
public async Task<CipherResponseModel> Put(string id, [FromBody]CipherRequestModel model)
{
var userId = _userService.GetProperUserId(User).Value;
var cipher = await _cipherRepository.GetByIdAsync(new Guid(id), userId);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (cipher == null)
deprecated logins api and moved to ciphers
2017-09-20 23:52:45 -04:00
{
throw new NotFoundException();
}
formatting
2018-10-22 14:07:17 -04:00
var modelOrgId = string.IsNullOrWhiteSpace(model.OrganizationId) ?
(Guid?)null : new Guid(model.OrganizationId);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (cipher.OrganizationId != modelOrgId)
deprecated logins api and moved to ciphers
2017-09-20 23:52:45 -04:00
{
refactor api models for other cipher types
2017-09-21 10:52:23 -04:00
throw new BadRequestException("Organization mismatch. Re-sync if you recently shared this item, " +
deprecated logins api and moved to ciphers
2017-09-20 23:52:45 -04:00
"then try again.");
}
Validate cipher updates with revision date (#994) * Add last updated validation to cipher replacements * Add AutoFixture scaffolding. AutoDataAttributes and ICustomizations are meant to automatically produce valid test input. Examples are the Cipher customizations, which enforce the model's mutual exclusivity of UserId and OrganizationId. FixtureExtensions create a fluent way to generate SUTs. We currently use parameter injection to fascilitate service testing, which is nicely handled by AutoNSubstitute. However, in order to gain access to the substitutions, we need to Freeze them onto the Fixture. The For fluent method allows specifying a Freeze to a specific type's constructor and optionally to a parameter name in that constructor. * Unit tests for single Cipher update version checks * Fix test runner Test runner requires Microsoft.NET.Test.Sdk * Move to provider model for SUT generation This model differs from previous in that you no longer need to specify which dependencies you would like access to. Instead, all are remembered and can be queried through the sutProvider. * User cipher provided by Put method reads Every put method already reads all relevant ciphers from database, there's no need to re-read them. JSON serialization of datetimes seems to leave truncate at second precision. Verify last known date time is within one second rather than exact. * validate revision date for share many requests * Update build script to use Github environment path Co-authored-by: Matt Gibson <mdgibson@Matts-MBP.lan>
2020-11-23 08:48:05 -06:00
await _cipherService.SaveDetailsAsync(model.ToCipherDetails(cipher), userId, model.LastKnownRevisionDate);
deprecated logins api and moved to ciphers
2017-09-20 23:52:45 -04:00
var response = new CipherResponseModel(cipher, _globalSettings);
return response;
}
[HttpPut("{id}/admin")]
[HttpPost("{id}/admin")]
public async Task<CipherMiniResponseModel> PutAdmin(string id, [FromBody]CipherRequestModel model)
{
var userId = _userService.GetProperUserId(User).Value;
fix issues on cipher admin endpoints
2019-05-01 09:38:13 -04:00
var cipher = await _cipherRepository.GetOrganizationDetailsByIdAsync(new Guid(id));
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (cipher == null || !cipher.OrganizationId.HasValue ||
Implemented Custom role and permissions (#1057) * Implemented Custom role and permissions * Converted permissions columns to a json blob * Code review fixes for Permissions * sql build fix * Update Permissions.cs * formatting * Update IOrganizationService.cs * reworked a conditional * built out tests for relevant organization service methods * removed unused usings * fixed a broken test and a bad empty string init * removed 'Attribute' from some attribute instances
2021-01-12 11:02:39 -05:00
!_currentContext.ManageAllCollections(cipher.OrganizationId.Value))
deprecated logins api and moved to ciphers
2017-09-20 23:52:45 -04:00
{
throw new NotFoundException();
}
// object cannot be a descendant of CipherDetails, so let's clone it.
Fix Organization put drops cipher updates (#1044)
2020-12-17 11:19:14 -06:00
var cipherClone = model.ToCipher(cipher).Clone();
Validate cipher updates with revision date (#994) * Add last updated validation to cipher replacements * Add AutoFixture scaffolding. AutoDataAttributes and ICustomizations are meant to automatically produce valid test input. Examples are the Cipher customizations, which enforce the model's mutual exclusivity of UserId and OrganizationId. FixtureExtensions create a fluent way to generate SUTs. We currently use parameter injection to fascilitate service testing, which is nicely handled by AutoNSubstitute. However, in order to gain access to the substitutions, we need to Freeze them onto the Fixture. The For fluent method allows specifying a Freeze to a specific type's constructor and optionally to a parameter name in that constructor. * Unit tests for single Cipher update version checks * Fix test runner Test runner requires Microsoft.NET.Test.Sdk * Move to provider model for SUT generation This model differs from previous in that you no longer need to specify which dependencies you would like access to. Instead, all are remembered and can be queried through the sutProvider. * User cipher provided by Put method reads Every put method already reads all relevant ciphers from database, there's no need to re-read them. JSON serialization of datetimes seems to leave truncate at second precision. Verify last known date time is within one second rather than exact. * validate revision date for share many requests * Update build script to use Github environment path Co-authored-by: Matt Gibson <mdgibson@Matts-MBP.lan>
2020-11-23 08:48:05 -06:00
await _cipherService.SaveAsync(cipherClone, userId, model.LastKnownRevisionDate, null, true, false);
deprecated logins api and moved to ciphers
2017-09-20 23:52:45 -04:00
var response = new CipherMiniResponseModel(cipherClone, _globalSettings, cipher.OrganizationUseTotp);
return response;
}
apis for org vault listing
2017-04-17 17:01:23 -04:00
[HttpGet("organization-details")]
formatting
2018-10-22 14:07:17 -04:00
public async Task<ListResponseModel<CipherMiniDetailsResponseModel>> GetOrganizationCollections(
string organizationId)
apis for org vault listing
2017-04-17 17:01:23 -04:00
{
var userId = _userService.GetProperUserId(User).Value;
var orgIdGuid = new Guid(organizationId);
Implemented Custom role and permissions (#1057) * Implemented Custom role and permissions * Converted permissions columns to a json blob * Code review fixes for Permissions * sql build fix * Update Permissions.cs * formatting * Update IOrganizationService.cs * reworked a conditional * built out tests for relevant organization service methods * removed unused usings * fixed a broken test and a bad empty string init * removed 'Attribute' from some attribute instances
2021-01-12 11:02:39 -05:00
if (!_currentContext.ManageAllCollections(orgIdGuid) && !_currentContext.AccessReports(orgIdGuid))
apis for org vault listing
2017-04-17 17:01:23 -04:00
{
throw new NotFoundException();
}
var ciphers = await _cipherRepository.GetManyByOrganizationIdAsync(orgIdGuid);
renaming subvault => collection
2017-04-27 09:19:30 -04:00
var collectionCiphers = await _collectionCipherRepository.GetManyByOrganizationIdAsync(orgIdGuid);
Missed one other PR comment fix
2020-04-01 15:47:10 -04:00
var collectionCiphersGroupDict = collectionCiphers.GroupBy(c => c.CipherId).ToDictionary(s => s.Key);
apis for org vault listing
2017-04-17 17:01:23 -04:00
return attachments from API
2017-06-30 23:01:41 -04:00
var responses = ciphers.Select(c => new CipherMiniDetailsResponseModel(c, _globalSettings,
collectionCiphersGroupDict));
apis for org vault listing
2017-04-17 17:01:23 -04:00
return new ListResponseModel<CipherMiniDetailsResponseModel>(responses);
}
created ciphers API controller. Moved import to ciphers controller.
2016-06-07 20:05:27 -04:00
[HttpPost("import")]
organization cipher import with collections
2017-09-05 17:49:34 -04:00
public async Task PostImport([FromBody]ImportCiphersRequestModel model)
created ciphers API controller. Moved import to ciphers controller.
2016-06-07 20:05:27 -04:00
{
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (!_globalSettings.SelfHosted &&
increase import limits
2019-03-15 11:29:07 -04:00
(model.Ciphers.Count() > 6000 || model.FolderRelationships.Count() > 6000 ||
increase folder limits on imports
2019-01-23 22:40:19 -05:00
model.Folders.Count() > 1000))
abuse limits on bulk apis
2017-10-09 16:58:37 -04:00
{
throw new BadRequestException("You cannot import this much data at once.");
}
react to contact changes not being set from identity
2017-01-24 22:46:54 -05:00
var userId = _userService.GetProperUserId(User).Value;
ignore edit param
2017-05-06 23:45:29 -04:00
var folders = model.Folders.Select(f => f.ToFolder(userId)).ToList();
apis for creating ciphers with org & collections
2018-10-19 12:07:31 -04:00
var ciphers = model.Ciphers.Select(c => c.ToCipherDetails(userId, false)).ToList();
remove deprecated code
2017-06-13 09:12:00 -04:00
await _cipherService.ImportCiphersAsync(folders, ciphers, model.FolderRelationships);
dep. history and favorites apis. backwards compat
2017-04-12 14:42:19 -04:00
}
Added favorites to ciphers and exposed PUT favorite cipher API
2016-06-08 22:19:08 -04:00
change routing for org import
2017-09-06 09:06:13 -04:00
[HttpPost("import-organization")]
formatting
2018-10-22 14:07:17 -04:00
public async Task PostImport([FromQuery]string organizationId,
[FromBody]ImportOrganizationCiphersRequestModel model)
organization cipher import with collections
2017-09-05 17:49:34 -04:00
{
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (!_globalSettings.SelfHosted &&
increase import limits
2019-03-15 11:29:07 -04:00
(model.Ciphers.Count() > 6000 || model.CollectionRelationships.Count() > 12000 ||
increase folder limits on imports
2019-01-23 22:40:19 -05:00
model.Collections.Count() > 1000))
abuse limits on bulk apis
2017-10-09 16:58:37 -04:00
{
throw new BadRequestException("You cannot import this much data at once.");
}
change routing for org import
2017-09-06 09:06:13 -04:00
var orgId = new Guid(organizationId);
Implemented Custom role and permissions (#1057) * Implemented Custom role and permissions * Converted permissions columns to a json blob * Code review fixes for Permissions * sql build fix * Update Permissions.cs * formatting * Update IOrganizationService.cs * reworked a conditional * built out tests for relevant organization service methods * removed unused usings * fixed a broken test and a bad empty string init * removed 'Attribute' from some attribute instances
2021-01-12 11:02:39 -05:00
if (!_currentContext.AccessImportExport(orgId))
organization cipher import with collections
2017-09-05 17:49:34 -04:00
{
throw new NotFoundException();
}
var userId = _userService.GetProperUserId(User).Value;
change routing for org import
2017-09-06 09:06:13 -04:00
var collections = model.Collections.Select(c => c.ToCollection(orgId)).ToList();
import ciphers, not logins
2017-09-28 13:11:56 -04:00
var ciphers = model.Ciphers.Select(l => l.ToOrganizationCipherDetails(orgId)).ToList();
organization cipher import with collections
2017-09-05 17:49:34 -04:00
await _cipherService.ImportCiphersAsync(collections, ciphers, model.CollectionRelationships, userId);
}
user can edit responses and cipher partial updates
2017-03-24 16:15:50 -04:00
[HttpPut("{id}/partial")]
[HttpPost("{id}/partial")]
public async Task PutPartial(string id, [FromBody]CipherPartialRequestModel model)
{
var userId = _userService.GetProperUserId(User).Value;
var folderId = string.IsNullOrWhiteSpace(model.FolderId) ? null : (Guid?)new Guid(model.FolderId);
remove unnecessary update partial cipher service
2017-04-17 23:16:35 -04:00
await _cipherRepository.UpdatePartialAsync(new Guid(id), userId, folderId, model.Favorite);
user can edit responses and cipher partial updates
2017-03-24 16:15:50 -04:00
}
update cipher subvaults
2017-04-12 12:42:00 -04:00
[HttpPut("{id}/share")]
[HttpPost("{id}/share")]
return cipher model with share put
2018-10-23 16:12:31 -04:00
public async Task<CipherResponseModel> PutShare(string id, [FromBody]CipherShareRequestModel model)
Move into and read ciphers from org subvaults
2017-03-21 00:04:39 -04:00
{
var userId = _userService.GetProperUserId(User).Value;
return cipher model with share put
2018-10-23 16:12:31 -04:00
var cipherId = new Guid(id);
var cipher = await _cipherRepository.GetByIdAsync(cipherId);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (cipher == null || cipher.UserId != userId ||
update cipher subvaults
2017-04-12 12:42:00 -04:00
!_currentContext.OrganizationUser(new Guid(model.Cipher.OrganizationId)))
Move into and read ciphers from org subvaults
2017-03-21 00:04:39 -04:00
{
throw new NotFoundException();
}
[Bug] Fix cipher clone yielding incorrect RevisionDate (#1031) * Fix cipher clone yielding incorrect RevisionDate * PR fixes Co-authored-by: Matt Gibson <mdgibson@Matts-MBP.lan>
2020-12-07 19:35:34 -06:00
var original = cipher.Clone();
Validate cipher updates with revision date (#994) * Add last updated validation to cipher replacements * Add AutoFixture scaffolding. AutoDataAttributes and ICustomizations are meant to automatically produce valid test input. Examples are the Cipher customizations, which enforce the model's mutual exclusivity of UserId and OrganizationId. FixtureExtensions create a fluent way to generate SUTs. We currently use parameter injection to fascilitate service testing, which is nicely handled by AutoNSubstitute. However, in order to gain access to the substitutions, we need to Freeze them onto the Fixture. The For fluent method allows specifying a Freeze to a specific type's constructor and optionally to a parameter name in that constructor. * Unit tests for single Cipher update version checks * Fix test runner Test runner requires Microsoft.NET.Test.Sdk * Move to provider model for SUT generation This model differs from previous in that you no longer need to specify which dependencies you would like access to. Instead, all are remembered and can be queried through the sutProvider. * User cipher provided by Put method reads Every put method already reads all relevant ciphers from database, there's no need to re-read them. JSON serialization of datetimes seems to leave truncate at second precision. Verify last known date time is within one second rather than exact. * validate revision date for share many requests * Update build script to use Github environment path Co-authored-by: Matt Gibson <mdgibson@Matts-MBP.lan>
2020-11-23 08:48:05 -06:00
await _cipherService.ShareAsync(original, model.Cipher.ToCipher(cipher), new Guid(model.Cipher.OrganizationId),
model.CollectionIds.Select(c => new Guid(c)), userId, model.Cipher.LastKnownRevisionDate);
return cipher model with share put
2018-10-23 16:12:31 -04:00
var sharedCipher = await _cipherRepository.GetByIdAsync(cipherId, userId);
var response = new CipherResponseModel(sharedCipher, _globalSettings);
return response;
Move into and read ciphers from org subvaults
2017-03-21 00:04:39 -04:00
}
renaming subvault => collection
2017-04-27 09:19:30 -04:00
[HttpPut("{id}/collections")]
[HttpPost("{id}/collections")]
public async Task PutCollections(string id, [FromBody]CipherCollectionsRequestModel model)
update cipher subvaults
2017-04-12 12:42:00 -04:00
{
var userId = _userService.GetProperUserId(User).Value;
var cipher = await _cipherRepository.GetByIdAsync(new Guid(id), userId);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (cipher == null || !cipher.OrganizationId.HasValue ||
update cipher subvaults
2017-04-12 12:42:00 -04:00
!_currentContext.OrganizationUser(cipher.OrganizationId.Value))
{
throw new NotFoundException();
}
formatting
2018-10-22 14:07:17 -04:00
await _cipherService.SaveCollectionsAsync(cipher,
model.CollectionIds.Select(c => new Guid(c)), userId, false);
admin subvault updates for cipher
2017-04-17 23:12:48 -04:00
}
renaming subvault => collection
2017-04-27 09:19:30 -04:00
[HttpPut("{id}/collections-admin")]
[HttpPost("{id}/collections-admin")]
public async Task PutCollectionsAdmin(string id, [FromBody]CipherCollectionsRequestModel model)
admin subvault updates for cipher
2017-04-17 23:12:48 -04:00
{
var userId = _userService.GetProperUserId(User).Value;
var cipher = await _cipherRepository.GetByIdAsync(new Guid(id));
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (cipher == null || !cipher.OrganizationId.HasValue ||
Implemented Custom role and permissions (#1057) * Implemented Custom role and permissions * Converted permissions columns to a json blob * Code review fixes for Permissions * sql build fix * Update Permissions.cs * formatting * Update IOrganizationService.cs * reworked a conditional * built out tests for relevant organization service methods * removed unused usings * fixed a broken test and a bad empty string init * removed 'Attribute' from some attribute instances
2021-01-12 11:02:39 -05:00
!_currentContext.ManageAllCollections(cipher.OrganizationId.Value))
admin subvault updates for cipher
2017-04-17 23:12:48 -04:00
{
throw new NotFoundException();
}
formatting
2018-10-22 14:07:17 -04:00
await _cipherService.SaveCollectionsAsync(cipher,
model.CollectionIds.Select(c => new Guid(c)), userId, true);
update cipher subvaults
2017-04-12 12:42:00 -04:00
}
created ciphers API controller. Moved import to ciphers controller.
2016-06-07 20:05:27 -04:00
[HttpDelete("{id}")]
Added POST route endpoints for all PUT and DELETE operations to allow for vault to avoid preflight.
2016-07-13 21:43:48 -04:00
[HttpPost("{id}/delete")]
created ciphers API controller. Moved import to ciphers controller.
2016-06-07 20:05:27 -04:00
public async Task Delete(string id)
{
user checks on read procs
2017-03-21 21:13:20 -04:00
var userId = _userService.GetProperUserId(User).Value;
var cipher = await _cipherRepository.GetByIdAsync(new Guid(id), userId);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (cipher == null)
created ciphers API controller. Moved import to ciphers controller.
2016-06-07 20:05:27 -04:00
{
throw new NotFoundException();
}
permission checks for cipher crud operations
2017-03-24 09:27:15 -04:00
await _cipherService.DeleteAsync(cipher, userId);
created ciphers API controller. Moved import to ciphers controller.
2016-06-07 20:05:27 -04:00
}
cipher delete for admin
2017-04-19 16:00:47 -04:00
[HttpDelete("{id}/admin")]
[HttpPost("{id}/delete-admin")]
public async Task DeleteAdmin(string id)
{
var userId = _userService.GetProperUserId(User).Value;
var cipher = await _cipherRepository.GetByIdAsync(new Guid(id));
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (cipher == null || !cipher.OrganizationId.HasValue ||
Implemented Custom role and permissions (#1057) * Implemented Custom role and permissions * Converted permissions columns to a json blob * Code review fixes for Permissions * sql build fix * Update Permissions.cs * formatting * Update IOrganizationService.cs * reworked a conditional * built out tests for relevant organization service methods * removed unused usings * fixed a broken test and a bad empty string init * removed 'Attribute' from some attribute instances
2021-01-12 11:02:39 -05:00
!_currentContext.ManageAllCollections(cipher.OrganizationId.Value))
cipher delete for admin
2017-04-19 16:00:47 -04:00
{
throw new NotFoundException();
}
await _cipherService.DeleteAsync(cipher, userId, true);
}
bulk action apis for delete and move
2017-06-09 00:30:59 -04:00
[HttpDelete("")]
[HttpPost("delete")]
public async Task DeleteMany([FromBody]CipherBulkDeleteRequestModel model)
{
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (!_globalSettings.SelfHosted && model.Ids.Count() > 500)
abuse limits on bulk apis
2017-10-09 16:58:37 -04:00
{
update error message
2017-11-28 09:21:32 -05:00
throw new BadRequestException("You can only delete up to 500 items at a time. " +
"Consider using the \"Purge Vault\" option instead.");
abuse limits on bulk apis
2017-10-09 16:58:37 -04:00
}
bulk action apis for delete and move
2017-06-09 00:30:59 -04:00
var userId = _userService.GetProperUserId(User).Value;
await _cipherService.DeleteManyAsync(model.Ids.Select(i => new Guid(i)), userId);
}
Feature.web.534.allow multi select in org vault (#830) * Set up API methods for bulk admin delete
2020-07-22 11:38:53 -05:00
[HttpDelete("admin")]
[HttpPost("delete-admin")]
public async Task DeleteManyAdmin([FromBody]CipherBulkDeleteRequestModel model)
{
if (!_globalSettings.SelfHosted && model.Ids.Count() > 500)
{
throw new BadRequestException("You can only delete up to 500 items at a time. " +
"Consider using the \"Purge Vault\" option instead.");
}
if (model == null || string.IsNullOrWhiteSpace(model.OrganizationId) ||
Implemented Custom role and permissions (#1057) * Implemented Custom role and permissions * Converted permissions columns to a json blob * Code review fixes for Permissions * sql build fix * Update Permissions.cs * formatting * Update IOrganizationService.cs * reworked a conditional * built out tests for relevant organization service methods * removed unused usings * fixed a broken test and a bad empty string init * removed 'Attribute' from some attribute instances
2021-01-12 11:02:39 -05:00
!_currentContext.ManageAllCollections(new Guid(model.OrganizationId)))
Feature.web.534.allow multi select in org vault (#830) * Set up API methods for bulk admin delete
2020-07-22 11:38:53 -05:00
{
throw new NotFoundException();
}
var userId = _userService.GetProperUserId(User).Value;
await _cipherService.DeleteManyAsync(model.Ids.Select(i => new Guid(i)), userId, new Guid(model.OrganizationId), true);
}
[Soft Delete] - API updates for soft delete + retrieval
2020-04-01 13:00:25 -04:00
[HttpPut("{id}/delete")]
public async Task PutDelete(string id)
{
var userId = _userService.GetProperUserId(User).Value;
var cipher = await _cipherRepository.GetByIdAsync(new Guid(id), userId);
if (cipher == null)
{
throw new NotFoundException();
}
await _cipherService.SoftDeleteAsync(cipher, userId);
}
[HttpPut("{id}/delete-admin")]
public async Task PutDeleteAdmin(string id)
{
var userId = _userService.GetProperUserId(User).Value;
var cipher = await _cipherRepository.GetByIdAsync(new Guid(id));
if (cipher == null || !cipher.OrganizationId.HasValue ||
Implemented Custom role and permissions (#1057) * Implemented Custom role and permissions * Converted permissions columns to a json blob * Code review fixes for Permissions * sql build fix * Update Permissions.cs * formatting * Update IOrganizationService.cs * reworked a conditional * built out tests for relevant organization service methods * removed unused usings * fixed a broken test and a bad empty string init * removed 'Attribute' from some attribute instances
2021-01-12 11:02:39 -05:00
!_currentContext.ManageAllCollections(cipher.OrganizationId.Value))
[Soft Delete] - API updates for soft delete + retrieval
2020-04-01 13:00:25 -04:00
{
throw new NotFoundException();
}
await _cipherService.SoftDeleteAsync(cipher, userId, true);
}
[HttpPut("delete")]
Feature.web.534.allow multi select in org vault (#830) * Set up API methods for bulk admin delete
2020-07-22 11:38:53 -05:00
public async Task PutDeleteMany([FromBody]CipherBulkDeleteRequestModel model)
[Soft Delete] - API updates for soft delete + retrieval
2020-04-01 13:00:25 -04:00
{
if (!_globalSettings.SelfHosted && model.Ids.Count() > 500)
{
Feature.web.534.allow multi select in org vault (#830) * Set up API methods for bulk admin delete
2020-07-22 11:38:53 -05:00
throw new BadRequestException("You can only delete up to 500 items at a time.");
[Soft Delete] - API updates for soft delete + retrieval
2020-04-01 13:00:25 -04:00
}
var userId = _userService.GetProperUserId(User).Value;
await _cipherService.SoftDeleteManyAsync(model.Ids.Select(i => new Guid(i)), userId);
}
Feature.web.534.allow multi select in org vault (#830) * Set up API methods for bulk admin delete
2020-07-22 11:38:53 -05:00
[HttpPut("delete-admin")]
public async Task PutDeleteManyAdmin([FromBody]CipherBulkDeleteRequestModel model)
{
if (!_globalSettings.SelfHosted && model.Ids.Count() > 500)
{
throw new BadRequestException("You can only delete up to 500 items at a time.");
}
if (model == null || string.IsNullOrWhiteSpace(model.OrganizationId) ||
Implemented Custom role and permissions (#1057) * Implemented Custom role and permissions * Converted permissions columns to a json blob * Code review fixes for Permissions * sql build fix * Update Permissions.cs * formatting * Update IOrganizationService.cs * reworked a conditional * built out tests for relevant organization service methods * removed unused usings * fixed a broken test and a bad empty string init * removed 'Attribute' from some attribute instances
2021-01-12 11:02:39 -05:00
!_currentContext.ManageAllCollections(new Guid(model.OrganizationId)))
Feature.web.534.allow multi select in org vault (#830) * Set up API methods for bulk admin delete
2020-07-22 11:38:53 -05:00
{
throw new NotFoundException();
}
var userId = _userService.GetProperUserId(User).Value;
await _cipherService.SoftDeleteManyAsync(model.Ids.Select(i => new Guid(i)), userId, new Guid(model.OrganizationId), true);
}
[Soft Delete] - API updates for soft delete + retrieval
2020-04-01 13:00:25 -04:00
[HttpPut("{id}/restore")]
Add cipher response to restore (#1072) * Return revised ciphers on restore api call * Return restored date from restore sproc * Test Restore updates passed in ciphers This is necessary for CipherController to appropriately return the up-to-date ciphers without an extra db call to read them. * Add missing SELECT
2021-01-08 08:52:42 -06:00
public async Task<CipherResponseModel> PutRestore(string id)
[Soft Delete] - API updates for soft delete + retrieval
2020-04-01 13:00:25 -04:00
{
var userId = _userService.GetProperUserId(User).Value;
var cipher = await _cipherRepository.GetByIdAsync(new Guid(id), userId);
if (cipher == null)
{
throw new NotFoundException();
}
await _cipherService.RestoreAsync(cipher, userId);
Add cipher response to restore (#1072) * Return revised ciphers on restore api call * Return restored date from restore sproc * Test Restore updates passed in ciphers This is necessary for CipherController to appropriately return the up-to-date ciphers without an extra db call to read them. * Add missing SELECT
2021-01-08 08:52:42 -06:00
return new CipherResponseModel(cipher, _globalSettings);
[Soft Delete] - API updates for soft delete + retrieval
2020-04-01 13:00:25 -04:00
}
[HttpPut("{id}/restore-admin")]
Add cipher response to restore (#1072) * Return revised ciphers on restore api call * Return restored date from restore sproc * Test Restore updates passed in ciphers This is necessary for CipherController to appropriately return the up-to-date ciphers without an extra db call to read them. * Add missing SELECT
2021-01-08 08:52:42 -06:00
public async Task<CipherMiniResponseModel> PutRestoreAdmin(string id)
[Soft Delete] - API updates for soft delete + retrieval
2020-04-01 13:00:25 -04:00
{
var userId = _userService.GetProperUserId(User).Value;
Add cipher response to restore (#1072) * Return revised ciphers on restore api call * Return restored date from restore sproc * Test Restore updates passed in ciphers This is necessary for CipherController to appropriately return the up-to-date ciphers without an extra db call to read them. * Add missing SELECT
2021-01-08 08:52:42 -06:00
var cipher = await _cipherRepository.GetOrganizationDetailsByIdAsync(new Guid(id));
[Soft Delete] - API updates for soft delete + retrieval
2020-04-01 13:00:25 -04:00
if (cipher == null || !cipher.OrganizationId.HasValue ||
Implemented Custom role and permissions (#1057) * Implemented Custom role and permissions * Converted permissions columns to a json blob * Code review fixes for Permissions * sql build fix * Update Permissions.cs * formatting * Update IOrganizationService.cs * reworked a conditional * built out tests for relevant organization service methods * removed unused usings * fixed a broken test and a bad empty string init * removed 'Attribute' from some attribute instances
2021-01-12 11:02:39 -05:00
!_currentContext.ManageAllCollections(cipher.OrganizationId.Value))
[Soft Delete] - API updates for soft delete + retrieval
2020-04-01 13:00:25 -04:00
{
throw new NotFoundException();
}
await _cipherService.RestoreAsync(cipher, userId, true);
Add cipher response to restore (#1072) * Return revised ciphers on restore api call * Return restored date from restore sproc * Test Restore updates passed in ciphers This is necessary for CipherController to appropriately return the up-to-date ciphers without an extra db call to read them. * Add missing SELECT
2021-01-08 08:52:42 -06:00
return new CipherMiniResponseModel(cipher, _globalSettings, cipher.OrganizationUseTotp);
[Soft Delete] - API updates for soft delete + retrieval
2020-04-01 13:00:25 -04:00
}
[HttpPut("restore")]
Add cipher response to restore (#1072) * Return revised ciphers on restore api call * Return restored date from restore sproc * Test Restore updates passed in ciphers This is necessary for CipherController to appropriately return the up-to-date ciphers without an extra db call to read them. * Add missing SELECT
2021-01-08 08:52:42 -06:00
public async Task<ListResponseModel<CipherResponseModel>> PutRestoreMany([FromBody] CipherBulkRestoreRequestModel model)
[Soft Delete] - API updates for soft delete + retrieval
2020-04-01 13:00:25 -04:00
{
if (!_globalSettings.SelfHosted && model.Ids.Count() > 500)
{
throw new BadRequestException("You can only restore up to 500 items at a time.");
}
var userId = _userService.GetProperUserId(User).Value;
Add cipher response to restore (#1072) * Return revised ciphers on restore api call * Return restored date from restore sproc * Test Restore updates passed in ciphers This is necessary for CipherController to appropriately return the up-to-date ciphers without an extra db call to read them. * Add missing SELECT
2021-01-08 08:52:42 -06:00
var cipherIdsToRestore = new HashSet<Guid>(model.Ids.Select(i => new Guid(i)));
var ciphers = await _cipherRepository.GetManyByUserIdAsync(userId);
var restoringCiphers = ciphers.Where(c => cipherIdsToRestore.Contains(c.Id) && c.Edit);
await _cipherService.RestoreManyAsync(restoringCiphers, userId);
var responses = restoringCiphers.Select(c => new CipherResponseModel(c, _globalSettings));
return new ListResponseModel<CipherResponseModel>(responses);
[Soft Delete] - API updates for soft delete + retrieval
2020-04-01 13:00:25 -04:00
}
bulk action apis for delete and move
2017-06-09 00:30:59 -04:00
[HttpPut("move")]
[HttpPost("move")]
public async Task MoveMany([FromBody]CipherBulkMoveRequestModel model)
{
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (!_globalSettings.SelfHosted && model.Ids.Count() > 500)
abuse limits on bulk apis
2017-10-09 16:58:37 -04:00
{
limit to 500 on non self-hosted
2017-11-16 20:05:06 -05:00
throw new BadRequestException("You can only move up to 500 items at a time.");
abuse limits on bulk apis
2017-10-09 16:58:37 -04:00
}
bulk action apis for delete and move
2017-06-09 00:30:59 -04:00
var userId = _userService.GetProperUserId(User).Value;
folder permission checks and null folder
2017-06-09 09:48:44 -04:00
await _cipherService.MoveManyAsync(model.Ids.Select(i => new Guid(i)),
string.IsNullOrWhiteSpace(model.FolderId) ? (Guid?)null : new Guid(model.FolderId), userId);
bulk action apis for delete and move
2017-06-09 00:30:59 -04:00
}
attachment apis and azure storage service
2017-06-15 15:34:12 -04:00
apis for bulk sharing
2018-06-13 14:03:44 -04:00
[HttpPut("share")]
[HttpPost("share")]
public async Task PutShareMany([FromBody]CipherBulkShareRequestModel model)
{
var organizationId = new Guid(model.Ciphers.First().OrganizationId);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (!_currentContext.OrganizationUser(organizationId))
apis for bulk sharing
2018-06-13 14:03:44 -04:00
{
throw new NotFoundException();
}
var userId = _userService.GetProperUserId(User).Value;
var ciphers = await _cipherRepository.GetManyByUserIdAsync(userId, false);
var ciphersDict = ciphers.ToDictionary(c => c.Id);
Validate cipher updates with revision date (#994) * Add last updated validation to cipher replacements * Add AutoFixture scaffolding. AutoDataAttributes and ICustomizations are meant to automatically produce valid test input. Examples are the Cipher customizations, which enforce the model's mutual exclusivity of UserId and OrganizationId. FixtureExtensions create a fluent way to generate SUTs. We currently use parameter injection to fascilitate service testing, which is nicely handled by AutoNSubstitute. However, in order to gain access to the substitutions, we need to Freeze them onto the Fixture. The For fluent method allows specifying a Freeze to a specific type's constructor and optionally to a parameter name in that constructor. * Unit tests for single Cipher update version checks * Fix test runner Test runner requires Microsoft.NET.Test.Sdk * Move to provider model for SUT generation This model differs from previous in that you no longer need to specify which dependencies you would like access to. Instead, all are remembered and can be queried through the sutProvider. * User cipher provided by Put method reads Every put method already reads all relevant ciphers from database, there's no need to re-read them. JSON serialization of datetimes seems to leave truncate at second precision. Verify last known date time is within one second rather than exact. * validate revision date for share many requests * Update build script to use Github environment path Co-authored-by: Matt Gibson <mdgibson@Matts-MBP.lan>
2020-11-23 08:48:05 -06:00
var shareCiphers = new List<(Cipher, DateTime?)>();
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
foreach (var cipher in model.Ciphers)
apis for bulk sharing
2018-06-13 14:03:44 -04:00
{
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (!ciphersDict.ContainsKey(cipher.Id.Value))
apis for bulk sharing
2018-06-13 14:03:44 -04:00
{
throw new BadRequestException("Trying to share ciphers that you do not own.");
}
Validate cipher updates with revision date (#994) * Add last updated validation to cipher replacements * Add AutoFixture scaffolding. AutoDataAttributes and ICustomizations are meant to automatically produce valid test input. Examples are the Cipher customizations, which enforce the model's mutual exclusivity of UserId and OrganizationId. FixtureExtensions create a fluent way to generate SUTs. We currently use parameter injection to fascilitate service testing, which is nicely handled by AutoNSubstitute. However, in order to gain access to the substitutions, we need to Freeze them onto the Fixture. The For fluent method allows specifying a Freeze to a specific type's constructor and optionally to a parameter name in that constructor. * Unit tests for single Cipher update version checks * Fix test runner Test runner requires Microsoft.NET.Test.Sdk * Move to provider model for SUT generation This model differs from previous in that you no longer need to specify which dependencies you would like access to. Instead, all are remembered and can be queried through the sutProvider. * User cipher provided by Put method reads Every put method already reads all relevant ciphers from database, there's no need to re-read them. JSON serialization of datetimes seems to leave truncate at second precision. Verify last known date time is within one second rather than exact. * validate revision date for share many requests * Update build script to use Github environment path Co-authored-by: Matt Gibson <mdgibson@Matts-MBP.lan>
2020-11-23 08:48:05 -06:00
shareCiphers.Add((cipher.ToCipher(ciphersDict[cipher.Id.Value]), cipher.LastKnownRevisionDate));
apis for bulk sharing
2018-06-13 14:03:44 -04:00
}
await _cipherService.ShareManyAsync(shareCiphers, organizationId,
model.CollectionIds.Select(c => new Guid(c)), userId);
}
apis for purging user vault
2017-10-25 21:26:09 -04:00
[HttpPost("purge")]
purge org vault
2018-09-25 09:12:50 -04:00
public async Task PostPurge([FromBody]CipherPurgeRequestModel model, string organizationId = null)
apis for purging user vault
2017-10-25 21:26:09 -04:00
{
validate master password on purge
2017-10-25 21:38:54 -04:00
var user = await _userService.GetUserByPrincipalAsync(User);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (user == null)
validate master password on purge
2017-10-25 21:38:54 -04:00
{
throw new UnauthorizedAccessException();
}
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (!await _userService.CheckPasswordAsync(user, model.MasterPasswordHash))
validate master password on purge
2017-10-25 21:38:54 -04:00
{
ModelState.AddModelError("MasterPasswordHash", "Invalid password.");
await Task.Delay(2000);
throw new BadRequestException(ModelState);
}
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (string.IsNullOrWhiteSpace(organizationId))
purge org vault
2018-09-25 09:12:50 -04:00
{
await _cipherRepository.DeleteByUserIdAsync(user.Id);
}
else
{
var orgId = new Guid(organizationId);
Implemented Custom role and permissions (#1057) * Implemented Custom role and permissions * Converted permissions columns to a json blob * Code review fixes for Permissions * sql build fix * Update Permissions.cs * formatting * Update IOrganizationService.cs * reworked a conditional * built out tests for relevant organization service methods * removed unused usings * fixed a broken test and a bad empty string init * removed 'Attribute' from some attribute instances
2021-01-12 11:02:39 -05:00
if (!_currentContext.ManageAllCollections(orgId))
purge org vault
2018-09-25 09:12:50 -04:00
{
throw new NotFoundException();
}
await _cipherService.PurgeAsync(orgId);
}
apis for purging user vault
2017-10-25 21:26:09 -04:00
}
Attachment blob upload (#1229) * Add Cipher attachment upload endpoints * Add validation bool to attachment storage data This bool is used to determine whether or not to renew upload links * Add model to request a new attachment to be made for later upload * Add model to respond with created attachment. The two cipher properties represent the two different cipher model types that can be returned. Cipher Response from personal items and mini response from organizations * Create Azure SAS-authorized upload links for both one-shot and block uploads * Add service methods to handle delayed upload and file size validation * Add emergency access method for downloading attachments direct from Azure * Add new attachment storage methods to other services * Update service interfaces * Log event grid exceptions * Limit Send and Attachment Size to 500MB * capitalize Key property * Add key validation to Azure Event Grid endpoint * Delete blob for unexpected blob creation events * Set Event Grid key at API startup * Change renew attachment upload url request path to match Send * Shore up attachment cleanup method. As long as we have the required information, we should always delete attachments from each the Repository, the cipher in memory, and the file storage service to ensure they're all synched.
2021-03-30 18:41:14 -05:00
[HttpPost("{id}/attachment/v2")]
public async Task<AttachmentUploadDataResponseModel> PostAttachment(string id, [FromBody] AttachmentRequestModel request)
{
var idGuid = new Guid(id);
var userId = _userService.GetProperUserId(User).Value;
var cipher = request.AdminRequest ?
await _cipherRepository.GetOrganizationDetailsByIdAsync(idGuid) :
await _cipherRepository.GetByIdAsync(idGuid, userId);
if (cipher == null || (request.AdminRequest && (!cipher.OrganizationId.HasValue ||
!_currentContext.ManageAllCollections(cipher.OrganizationId.Value))))
{
throw new NotFoundException();
}
if (request.FileSize > CipherService.MAX_FILE_SIZE && !_globalSettings.SelfHosted)
{
throw new BadRequestException($"Max file size is {CipherService.MAX_FILE_SIZE_READABLE}.");
}
var (attachmentId, uploadUrl) = await _cipherService.CreateAttachmentForDelayedUploadAsync(cipher, request, userId);
return new AttachmentUploadDataResponseModel
{
AttachmentId = attachmentId,
Url = uploadUrl,
FileUploadType = _attachmentStorageService.FileUploadType,
CipherResponse = request.AdminRequest ? null : new CipherResponseModel((CipherDetails)cipher, _globalSettings),
CipherMiniResponse = request.AdminRequest ? new CipherMiniResponseModel(cipher, _globalSettings, cipher.OrganizationUseTotp) : null,
};
}
Move renew endpoint to fix overlapping endpoint issue (#1266)
2021-04-12 09:44:45 -05:00
[HttpGet("{id}/attachment/{attachmentId}/renew")]
Attachment blob upload (#1229) * Add Cipher attachment upload endpoints * Add validation bool to attachment storage data This bool is used to determine whether or not to renew upload links * Add model to request a new attachment to be made for later upload * Add model to respond with created attachment. The two cipher properties represent the two different cipher model types that can be returned. Cipher Response from personal items and mini response from organizations * Create Azure SAS-authorized upload links for both one-shot and block uploads * Add service methods to handle delayed upload and file size validation * Add emergency access method for downloading attachments direct from Azure * Add new attachment storage methods to other services * Update service interfaces * Log event grid exceptions * Limit Send and Attachment Size to 500MB * capitalize Key property * Add key validation to Azure Event Grid endpoint * Delete blob for unexpected blob creation events * Set Event Grid key at API startup * Change renew attachment upload url request path to match Send * Shore up attachment cleanup method. As long as we have the required information, we should always delete attachments from each the Repository, the cipher in memory, and the file storage service to ensure they're all synched.
2021-03-30 18:41:14 -05:00
public async Task<AttachmentUploadDataResponseModel> RenewFileUploadUrl(string id, string attachmentId)
{
var userId = _userService.GetProperUserId(User).Value;
var cipherId = new Guid(id);
var cipher = await _cipherRepository.GetByIdAsync(cipherId, userId);
var attachments = cipher?.GetAttachments();
Refuse upload renew if a file is validated (#1284) Download should return regardless of file validation state
2021-04-26 14:36:06 -05:00
if (attachments == null || !attachments.ContainsKey(attachmentId) || attachments[attachmentId].Validated)
Attachment blob upload (#1229) * Add Cipher attachment upload endpoints * Add validation bool to attachment storage data This bool is used to determine whether or not to renew upload links * Add model to request a new attachment to be made for later upload * Add model to respond with created attachment. The two cipher properties represent the two different cipher model types that can be returned. Cipher Response from personal items and mini response from organizations * Create Azure SAS-authorized upload links for both one-shot and block uploads * Add service methods to handle delayed upload and file size validation * Add emergency access method for downloading attachments direct from Azure * Add new attachment storage methods to other services * Update service interfaces * Log event grid exceptions * Limit Send and Attachment Size to 500MB * capitalize Key property * Add key validation to Azure Event Grid endpoint * Delete blob for unexpected blob creation events * Set Event Grid key at API startup * Change renew attachment upload url request path to match Send * Shore up attachment cleanup method. As long as we have the required information, we should always delete attachments from each the Repository, the cipher in memory, and the file storage service to ensure they're all synched.
2021-03-30 18:41:14 -05:00
{
throw new NotFoundException();
}
return new AttachmentUploadDataResponseModel
{
Url = await _attachmentStorageService.GetAttachmentUploadUrlAsync(cipher, attachments[attachmentId]),
FileUploadType = _attachmentStorageService.FileUploadType,
};
}
[HttpPost("{id}/attachment/{attachmentId}")]
[DisableFormValueModelBinding]
public async Task PostFileForExistingAttachment(string id, string attachmentId)
{
if (!Request?.ContentType.Contains("multipart/") ?? true)
{
throw new BadRequestException("Invalid content.");
}
var userId = _userService.GetProperUserId(User).Value;
var cipher = await _cipherRepository.GetByIdAsync(new Guid(id), userId);
var attachments = cipher?.GetAttachments();
if (attachments == null || !attachments.ContainsKey(attachmentId))
{
throw new NotFoundException();
}
var attachmentData = attachments[attachmentId];
await Request.GetFileAsync(async (stream) =>
{
await _cipherService.UploadFileForExistingAttachmentAsync(stream, cipher, attachmentData);
});
}
post, upload, and save cipher attachment
2017-06-30 11:15:58 -04:00
[HttpPost("{id}/attachment")]
RequestSizeLimit for all attachment endpoints
2018-05-21 21:03:52 -04:00
[RequestSizeLimit(105_906_176)]
attachment apis and azure storage service
2017-06-15 15:34:12 -04:00
[DisableFormValueModelBinding]
return CipherResponseModel from attachment post
2017-07-12 14:42:39 -04:00
public async Task<CipherResponseModel> PostAttachment(string id)
attachment apis and azure storage service
2017-06-15 15:34:12 -04:00
{
share login with attachments
2017-07-10 14:30:12 -04:00
ValidateAttachment();
var idGuid = new Guid(id);
var userId = _userService.GetProperUserId(User).Value;
var cipher = await _cipherRepository.GetByIdAsync(idGuid, userId);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (cipher == null)
attachment apis and azure storage service
2017-06-15 15:34:12 -04:00
{
share login with attachments
2017-07-10 14:30:12 -04:00
throw new NotFoundException();
attachment apis and azure storage service
2017-06-15 15:34:12 -04:00
}
support for attachments keys load existing items and set attachments on key update
2018-11-14 17:19:04 -05:00
await Request.GetFileAsync(async (stream, fileName, key) =>
return attachments from API
2017-06-30 23:01:41 -04:00
{
support for attachments keys load existing items and set attachments on key update
2018-11-14 17:19:04 -05:00
await _cipherService.CreateAttachmentAsync(cipher, stream, fileName, key,
share login with attachments
2017-07-10 14:30:12 -04:00
Request.ContentLength.GetValueOrDefault(0), userId);
});
return CipherResponseModel from attachment post
2017-07-12 14:42:39 -04:00
return new CipherResponseModel(cipher, _globalSettings);
share login with attachments
2017-07-10 14:30:12 -04:00
}
admin attachment apis
2018-02-24 14:29:11 -05:00
[HttpPost("{id}/attachment-admin")]
RequestSizeLimit for all attachment endpoints
2018-05-21 21:03:52 -04:00
[RequestSizeLimit(105_906_176)]
admin attachment apis
2018-02-24 14:29:11 -05:00
[DisableFormValueModelBinding]
fix issues on cipher admin endpoints
2019-05-01 09:38:13 -04:00
public async Task<CipherMiniResponseModel> PostAttachmentAdmin(string id)
admin attachment apis
2018-02-24 14:29:11 -05:00
{
ValidateAttachment();
idGuid variable
2018-02-24 14:32:48 -05:00
var idGuid = new Guid(id);
admin attachment apis
2018-02-24 14:29:11 -05:00
var userId = _userService.GetProperUserId(User).Value;
fix issues on cipher admin endpoints
2019-05-01 09:38:13 -04:00
var cipher = await _cipherRepository.GetOrganizationDetailsByIdAsync(idGuid);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (cipher == null || !cipher.OrganizationId.HasValue ||
Implemented Custom role and permissions (#1057) * Implemented Custom role and permissions * Converted permissions columns to a json blob * Code review fixes for Permissions * sql build fix * Update Permissions.cs * formatting * Update IOrganizationService.cs * reworked a conditional * built out tests for relevant organization service methods * removed unused usings * fixed a broken test and a bad empty string init * removed 'Attribute' from some attribute instances
2021-01-12 11:02:39 -05:00
!_currentContext.ManageAllCollections(cipher.OrganizationId.Value))
admin attachment apis
2018-02-24 14:29:11 -05:00
{
throw new NotFoundException();
}
support for attachments keys load existing items and set attachments on key update
2018-11-14 17:19:04 -05:00
await Request.GetFileAsync(async (stream, fileName, key) =>
admin attachment apis
2018-02-24 14:29:11 -05:00
{
support for attachments keys load existing items and set attachments on key update
2018-11-14 17:19:04 -05:00
await _cipherService.CreateAttachmentAsync(cipher, stream, fileName, key,
pass org admin flag for attachment actions
2019-02-12 11:49:35 -05:00
Request.ContentLength.GetValueOrDefault(0), userId, true);
admin attachment apis
2018-02-24 14:29:11 -05:00
});
fix issues on cipher admin endpoints
2019-05-01 09:38:13 -04:00
return new CipherMiniResponseModel(cipher, _globalSettings, cipher.OrganizationUseTotp);
admin attachment apis
2018-02-24 14:29:11 -05:00
}
Use sas token for attachment downloads (#1153) * Get limited life attachment download URL This change limits url download to a 1min lifetime. This requires moving to a new container to allow for non-public blob access. Clients will have to call GetAttachmentData api function to receive the download URL. For backwards compatibility, attachment URLs are still present, but will not work for attachments stored in non-public access blobs. * Make GlobalSettings interface for testing * Test LocalAttachmentStorageService equivalence * Remove comment * Add missing globalSettings using * Simplify default attachment container * Default to attachments containe for existing methods A new upload method will be made for uploading to attachments-v2. For compatibility for clients which don't use these new methods, we need to still use the old container. The new container will be used only for new uploads * Remove Default MetaData fixture. * Keep attachments container blob-level security for all instances * Close unclosed FileStream * Favor default value for noop services
2021-02-22 15:35:16 -06:00
[HttpGet("{id}/attachment/{attachmentId}")]
public async Task<AttachmentResponseModel> GetAttachmentData(string id, string attachmentId)
{
var userId = _userService.GetProperUserId(User).Value;
var cipher = await _cipherRepository.GetByIdAsync(new Guid(id), userId);
Attachment blob upload (#1229) * Add Cipher attachment upload endpoints * Add validation bool to attachment storage data This bool is used to determine whether or not to renew upload links * Add model to request a new attachment to be made for later upload * Add model to respond with created attachment. The two cipher properties represent the two different cipher model types that can be returned. Cipher Response from personal items and mini response from organizations * Create Azure SAS-authorized upload links for both one-shot and block uploads * Add service methods to handle delayed upload and file size validation * Add emergency access method for downloading attachments direct from Azure * Add new attachment storage methods to other services * Update service interfaces * Log event grid exceptions * Limit Send and Attachment Size to 500MB * capitalize Key property * Add key validation to Azure Event Grid endpoint * Delete blob for unexpected blob creation events * Set Event Grid key at API startup * Change renew attachment upload url request path to match Send * Shore up attachment cleanup method. As long as we have the required information, we should always delete attachments from each the Repository, the cipher in memory, and the file storage service to ensure they're all synched.
2021-03-30 18:41:14 -05:00
return await _cipherService.GetAttachmentDownloadDataAsync(cipher, attachmentId);
Use sas token for attachment downloads (#1153) * Get limited life attachment download URL This change limits url download to a 1min lifetime. This requires moving to a new container to allow for non-public blob access. Clients will have to call GetAttachmentData api function to receive the download URL. For backwards compatibility, attachment URLs are still present, but will not work for attachments stored in non-public access blobs. * Make GlobalSettings interface for testing * Test LocalAttachmentStorageService equivalence * Remove comment * Add missing globalSettings using * Simplify default attachment container * Default to attachments containe for existing methods A new upload method will be made for uploading to attachments-v2. For compatibility for clients which don't use these new methods, we need to still use the old container. The new container will be used only for new uploads * Remove Default MetaData fixture. * Keep attachments container blob-level security for all instances * Close unclosed FileStream * Favor default value for noop services
2021-02-22 15:35:16 -06:00
}
share login with attachments
2017-07-10 14:30:12 -04:00
[HttpPost("{id}/attachment/{attachmentId}/share")]
RequestSizeLimit for attachment uploads
2018-02-19 08:20:46 -05:00
[RequestSizeLimit(105_906_176)]
share login with attachments
2017-07-10 14:30:12 -04:00
[DisableFormValueModelBinding]
public async Task PostAttachmentShare(string id, string attachmentId, Guid organizationId)
{
ValidateAttachment();
return attachments from API
2017-06-30 23:01:41 -04:00
attachment apis and azure storage service
2017-06-15 15:34:12 -04:00
var userId = _userService.GetProperUserId(User).Value;
share login with attachments
2017-07-10 14:30:12 -04:00
var cipher = await _cipherRepository.GetByIdAsync(new Guid(id));
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (cipher == null || cipher.UserId != userId || !_currentContext.OrganizationUser(organizationId))
attachment apis and azure storage service
2017-06-15 15:34:12 -04:00
{
throw new NotFoundException();
}
support for attachments keys load existing items and set attachments on key update
2018-11-14 17:19:04 -05:00
await Request.GetFileAsync(async (stream, fileName, key) =>
attachment apis and azure storage service
2017-06-15 15:34:12 -04:00
{
support for attachments keys load existing items and set attachments on key update
2018-11-14 17:19:04 -05:00
await _cipherService.CreateAttachmentShareAsync(cipher, stream,
share login with attachments
2017-07-10 14:30:12 -04:00
Request.ContentLength.GetValueOrDefault(0), attachmentId, organizationId);
attachment apis and azure storage service
2017-06-15 15:34:12 -04:00
});
}
[HttpDelete("{id}/attachment/{attachmentId}")]
[HttpPost("{id}/attachment/{attachmentId}/delete")]
post, upload, and save cipher attachment
2017-06-30 11:15:58 -04:00
public async Task DeleteAttachment(string id, string attachmentId)
attachment apis and azure storage service
2017-06-15 15:34:12 -04:00
{
var idGuid = new Guid(id);
var userId = _userService.GetProperUserId(User).Value;
var cipher = await _cipherRepository.GetByIdAsync(idGuid, userId);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (cipher == null)
attachment apis and azure storage service
2017-06-15 15:34:12 -04:00
{
throw new NotFoundException();
}
delete attachments
2017-07-07 11:07:22 -04:00
await _cipherService.DeleteAttachmentAsync(cipher, attachmentId, userId, false);
attachment apis and azure storage service
2017-06-15 15:34:12 -04:00
}
share login with attachments
2017-07-10 14:30:12 -04:00
admin attachment apis
2018-02-24 14:29:11 -05:00
[HttpDelete("{id}/attachment/{attachmentId}/admin")]
[HttpPost("{id}/attachment/{attachmentId}/delete-admin")]
public async Task DeleteAttachmentAdmin(string id, string attachmentId)
{
var idGuid = new Guid(id);
var userId = _userService.GetProperUserId(User).Value;
var cipher = await _cipherRepository.GetByIdAsync(idGuid);
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (cipher == null || !cipher.OrganizationId.HasValue ||
Implemented Custom role and permissions (#1057) * Implemented Custom role and permissions * Converted permissions columns to a json blob * Code review fixes for Permissions * sql build fix * Update Permissions.cs * formatting * Update IOrganizationService.cs * reworked a conditional * built out tests for relevant organization service methods * removed unused usings * fixed a broken test and a bad empty string init * removed 'Attribute' from some attribute instances
2021-01-12 11:02:39 -05:00
!_currentContext.ManageAllCollections(cipher.OrganizationId.Value))
admin attachment apis
2018-02-24 14:29:11 -05:00
{
throw new NotFoundException();
}
pass org admin flag for attachment actions
2019-02-12 11:49:35 -05:00
await _cipherService.DeleteAttachmentAsync(cipher, attachmentId, userId, true);
admin attachment apis
2018-02-24 14:29:11 -05:00
}
Attachment blob upload (#1229) * Add Cipher attachment upload endpoints * Add validation bool to attachment storage data This bool is used to determine whether or not to renew upload links * Add model to request a new attachment to be made for later upload * Add model to respond with created attachment. The two cipher properties represent the two different cipher model types that can be returned. Cipher Response from personal items and mini response from organizations * Create Azure SAS-authorized upload links for both one-shot and block uploads * Add service methods to handle delayed upload and file size validation * Add emergency access method for downloading attachments direct from Azure * Add new attachment storage methods to other services * Update service interfaces * Log event grid exceptions * Limit Send and Attachment Size to 500MB * capitalize Key property * Add key validation to Azure Event Grid endpoint * Delete blob for unexpected blob creation events * Set Event Grid key at API startup * Change renew attachment upload url request path to match Send * Shore up attachment cleanup method. As long as we have the required information, we should always delete attachments from each the Repository, the cipher in memory, and the file storage service to ensure they're all synched.
2021-03-30 18:41:14 -05:00
[AllowAnonymous]
[HttpPost("attachment/validate/azure")]
public async Task<ObjectResult> AzureValidateFile()
{
return await ApiHelpers.HandleAzureEvents(Request, new Dictionary<string, Func<EventGridEvent, Task>>
{
{
"Microsoft.Storage.BlobCreated", async (eventGridEvent) =>
{
try
{
var blobName = eventGridEvent.Subject.Split($"{AzureAttachmentStorageService.EventGridEnabledContainerName}/blobs/")[1];
var (cipherId, organizationId, attachmentId) = AzureAttachmentStorageService.IdentifiersFromBlobName(blobName);
var cipher = await _cipherRepository.GetByIdAsync(new Guid(cipherId));
var attachments = cipher?.GetAttachments() ?? new Dictionary<string, CipherAttachment.MetaData>();
if (cipher == null || !attachments.ContainsKey(attachmentId) || attachments[attachmentId].Validated)
{
if (_attachmentStorageService is AzureSendFileStorageService azureFileStorageService)
{
await azureFileStorageService.DeleteBlobAsync(blobName);
}
return;
}
await _cipherService.ValidateCipherAttachmentFile(cipher, attachments[attachmentId]);
}
catch (Exception e)
{
_logger.LogError(e, $"Uncaught exception occurred while handling event grid event: {JsonConvert.SerializeObject(eventGridEvent)}");
return;
}
}
}
});
}
share login with attachments
2017-07-10 14:30:12 -04:00
private void ValidateAttachment()
{
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (!Request?.ContentType.Contains("multipart/") ?? true)
share login with attachments
2017-07-10 14:30:12 -04:00
{
throw new BadRequestException("Invalid content.");
}
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
if (Request.ContentLength > 105906176) // 101 MB, give em' 1 extra MB for cushion
share login with attachments
2017-07-10 14:30:12 -04:00
{
throw new BadRequestException("Max file size is 100 MB.");
}
}
created ciphers API controller. Moved import to ciphers controller.
2016-06-07 20:05:27 -04:00
}
}
Reference in New Issue Copy Permalink