src/Core/Services/Implementations/CipherService.cs

using System;
using System.Linq;
using System.Collections.Generic;
using System.Threading.Tasks;
using Bit.Core.Models.Table;
using Bit.Core.Repositories;
using Core.Models.Data;
using Bit.Core.Exceptions;

namespace Bit.Core.Services
{
    public class CipherService : ICipherService
    {
        private readonly ICipherRepository _cipherRepository;
        private readonly IFolderRepository _folderRepository;
        private readonly IUserRepository _userRepository;
        private readonly IOrganizationRepository _organizationRepository;
        private readonly IOrganizationUserRepository _organizationUserRepository;
        private readonly ISubvaultUserRepository _subvaultUserRepository;
        private readonly ISubvaultCipherRepository _subvaultCipherRepository;
        private readonly IPushService _pushService;

        public CipherService(
            ICipherRepository cipherRepository,
            IFolderRepository folderRepository,
            IUserRepository userRepository,
            IOrganizationRepository organizationRepository,
            IOrganizationUserRepository organizationUserRepository,
            ISubvaultUserRepository subvaultUserRepository,
            ISubvaultCipherRepository subvaultCipherRepository,
            IPushService pushService)
        {
            _cipherRepository = cipherRepository;
            _folderRepository = folderRepository;
            _userRepository = userRepository;
            _organizationRepository = organizationRepository;
            _organizationUserRepository = organizationUserRepository;
            _subvaultUserRepository = subvaultUserRepository;
            _subvaultCipherRepository = subvaultCipherRepository;
            _pushService = pushService;
        }

        public async Task SaveAsync(CipherDetails cipher, Guid savingUserId)
        {
            if(!(await UserCanEditAsync(cipher, savingUserId)))
            {
                throw new BadRequestException("You do not have permissions to edit this.");
            }

            cipher.UserId = savingUserId;
            if(cipher.Id == default(Guid))
            {
                await _cipherRepository.CreateAsync(cipher);

                // push
                //await _pushService.PushSyncCipherCreateAsync(cipher);
            }
            else
            {
                cipher.RevisionDate = DateTime.UtcNow;
                await _cipherRepository.ReplaceAsync(cipher);

                // push
                //await _pushService.PushSyncCipherUpdateAsync(cipher);
            }
        }

        public async Task DeleteAsync(Cipher cipher, Guid deletingUserId, bool orgAdmin = false)
        {
            if(!orgAdmin && !(await UserCanEditAsync(cipher, deletingUserId)))
            {
                throw new BadRequestException("You do not have permissions to delete this.");
            }

            await _cipherRepository.DeleteAsync(cipher);

            // push
            //await _pushService.PushSyncCipherDeleteAsync(cipher);
        }

        public async Task SaveFolderAsync(Folder folder)
        {
            if(folder.Id == default(Guid))
            {
                await _folderRepository.CreateAsync(folder);

                // push
                //await _pushService.PushSyncCipherCreateAsync(cipher);
            }
            else
            {
                folder.RevisionDate = DateTime.UtcNow;
                await _folderRepository.UpsertAsync(folder);

                // push
                //await _pushService.PushSyncCipherUpdateAsync(cipher);
            }
        }

        public async Task DeleteFolderAsync(Folder folder)
        {
            await _folderRepository.DeleteAsync(folder);

            // push
            //await _pushService.PushSyncCipherDeleteAsync(cipher);
        }

        public async Task ShareAsync(Cipher cipher, Guid organizationId, IEnumerable<Guid> subvaultIds, Guid sharingUserId)
        {
            if(cipher.Id == default(Guid))
            {
                throw new BadRequestException(nameof(cipher.Id));
            }

            if(cipher.OrganizationId.HasValue)
            {
                throw new BadRequestException("Already belongs to an organization.");
            }

            if(!cipher.UserId.HasValue || cipher.UserId.Value != sharingUserId)
            {
                throw new NotFoundException();
            }

            // Sproc will not save this UserId on the cipher. It is used limit scope of the subvaultIds.
            cipher.UserId = sharingUserId;
            cipher.OrganizationId = organizationId;
            cipher.RevisionDate = DateTime.UtcNow;
            await _cipherRepository.ReplaceAsync(cipher, subvaultIds);

            // push
            //await _pushService.PushSyncCipherUpdateAsync(cipher);
        }

        public async Task SaveSubvaultsAsync(Cipher cipher, IEnumerable<Guid> subvaultIds, Guid savingUserId, bool orgAdmin)
        {
            if(cipher.Id == default(Guid))
            {
                throw new BadRequestException(nameof(cipher.Id));
            }

            if(!cipher.OrganizationId.HasValue)
            {
                throw new BadRequestException("Cipher must belong to an organization.");
            }

            // The sprocs will validate that all subvaults belong to this org/user and that they have proper write permissions.
            if(orgAdmin)
            {
                await _subvaultCipherRepository.UpdateSubvaultsForAdminAsync(cipher.Id, cipher.OrganizationId.Value,
                    subvaultIds);
            }
            else
            {
                await _subvaultCipherRepository.UpdateSubvaultsAsync(cipher.Id, savingUserId, subvaultIds);
            }

            // push
            //await _pushService.PushSyncCipherUpdateAsync(cipher);
        }

        public async Task ImportCiphersAsync(
            List<Folder> folders,
            List<CipherDetails> ciphers,
            IEnumerable<KeyValuePair<int, int>> folderRelationships)
        {
            foreach(var cipher in ciphers)
            {
                cipher.SetNewId();

                if(cipher.UserId.HasValue && cipher.Favorite)
                {
                    cipher.Favorites = $"{{\"{cipher.UserId.ToString().ToUpperInvariant()}\":\"true\"}}";
                }
            }

            // Init. ids for folders
            foreach(var folder in folders)
            {
                folder.SetNewId();
            }

            // Create the folder associations based on the newly created folder ids
            foreach(var relationship in folderRelationships)
            {
                var cipher = ciphers.ElementAtOrDefault(relationship.Key);
                var folder = folders.ElementAtOrDefault(relationship.Value);

                if(cipher == null || folder == null)
                {
                    continue;
                }

                cipher.Folders = $"{{\"{cipher.UserId.ToString().ToUpperInvariant()}\":" +
                    $"\"{folder.Id.ToString().ToUpperInvariant()}\"}}";
            }

            // Create it all
            await _cipherRepository.CreateAsync(ciphers, folders);

            // push
            var userId = folders.FirstOrDefault()?.UserId ?? ciphers.FirstOrDefault()?.UserId;
            if(userId.HasValue)
            {
                await _pushService.PushSyncCiphersAsync(userId.Value);
            }
        }

        private async Task<bool> UserCanEditAsync(Cipher cipher, Guid userId)
        {
            if(!cipher.OrganizationId.HasValue && cipher.UserId.HasValue && cipher.UserId.Value == userId)
            {
                return true;
            }

            return await _subvaultUserRepository.GetCanEditByUserIdCipherIdAsync(userId, cipher.Id);
        }
    }
}
-												Added cipher service with bulk import to account controller

											
										
										
											2015-12-26 23:09:53 -05:00
+								using System;
 								using System.Linq;
 								using System.Collections.Generic;
 								using System.Threading.Tasks;
-												move domains to Models.Table

											
										
										
											2017-03-08 21:45:08 -05:00
+								using Bit.Core.Models.Table;
-												Added cipher service with bulk import to account controller

											
										
										
											2015-12-26 23:09:53 -05:00
+								using Bit.Core.Repositories;
-												refactor for cipher details, folders, favorites

											
										
										
											2017-03-18 11:58:02 -04:00
+								using Core.Models.Data;
-												Move into and read ciphers from org subvaults

											
										
										
											2017-03-21 00:04:39 -04:00
+								using Bit.Core.Exceptions;
-												Added cipher service with bulk import to account controller

											
										
										
											2015-12-26 23:09:53 -05:00
 								namespace Bit.Core.Services
 								{
 								    public class CipherService : ICipherService
 								    {
 								        private readonly ICipherRepository _cipherRepository;
-												refactor for cipher details, folders, favorites

											
										
										
											2017-03-18 11:58:02 -04:00
+								        private readonly IFolderRepository _folderRepository;
-												share service setup

											
										
										
											2017-02-25 23:38:24 -05:00
+								        private readonly IUserRepository _userRepository;
-												Move into and read ciphers from org subvaults

											
										
										
											2017-03-21 00:04:39 -04:00
+								        private readonly IOrganizationRepository _organizationRepository;
 								        private readonly IOrganizationUserRepository _organizationUserRepository;
 								        private readonly ISubvaultUserRepository _subvaultUserRepository;
-												update cipher subvaults

											
										
										
											2017-04-12 12:42:00 -04:00
+								        private readonly ISubvaultCipherRepository _subvaultCipherRepository;
-												added push events and moved cipher writing to cipher service.

											
										
										
											2016-06-29 01:15:37 -04:00
+								        private readonly IPushService _pushService;
-												Added cipher service with bulk import to account controller

											
										
										
											2015-12-26 23:09:53 -05:00
 								        public CipherService(
-												added push events and moved cipher writing to cipher service.

											
										
										
											2016-06-29 01:15:37 -04:00
+								            ICipherRepository cipherRepository,
-												refactor for cipher details, folders, favorites

											
										
										
											2017-03-18 11:58:02 -04:00
+								            IFolderRepository folderRepository,
-												share service setup

											
										
										
											2017-02-25 23:38:24 -05:00
+								            IUserRepository userRepository,
-												Move into and read ciphers from org subvaults

											
										
										
											2017-03-21 00:04:39 -04:00
+								            IOrganizationRepository organizationRepository,
 								            IOrganizationUserRepository organizationUserRepository,
 								            ISubvaultUserRepository subvaultUserRepository,
-												update cipher subvaults

											
										
										
											2017-04-12 12:42:00 -04:00
+								            ISubvaultCipherRepository subvaultCipherRepository,
-												added push events and moved cipher writing to cipher service.

											
										
										
											2016-06-29 01:15:37 -04:00
+								            IPushService pushService)
-												Added cipher service with bulk import to account controller

											
										
										
											2015-12-26 23:09:53 -05:00
+								        {
 								            _cipherRepository = cipherRepository;
-												refactor for cipher details, folders, favorites

											
										
										
											2017-03-18 11:58:02 -04:00
+								            _folderRepository = folderRepository;
-												share service setup

											
										
										
											2017-02-25 23:38:24 -05:00
+								            _userRepository = userRepository;
-												Move into and read ciphers from org subvaults

											
										
										
											2017-03-21 00:04:39 -04:00
+								            _organizationRepository = organizationRepository;
 								            _organizationUserRepository = organizationUserRepository;
 								            _subvaultUserRepository = subvaultUserRepository;
-												update cipher subvaults

											
										
										
											2017-04-12 12:42:00 -04:00
+								            _subvaultCipherRepository = subvaultCipherRepository;
-												added push events and moved cipher writing to cipher service.

											
										
										
											2016-06-29 01:15:37 -04:00
+								            _pushService = pushService;
 								        }
-												permission checks for cipher crud operations

											
										
										
											2017-03-24 09:27:15 -04:00
+								        public async Task SaveAsync(CipherDetails cipher, Guid savingUserId)
-												added push events and moved cipher writing to cipher service.

											
										
										
											2016-06-29 01:15:37 -04:00
+								        {
-												user can edit responses and cipher partial updates

											
										
										
											2017-03-24 16:15:50 -04:00
+								            if(!(await UserCanEditAsync(cipher, savingUserId)))
-												permission checks for cipher crud operations

											
										
										
											2017-03-24 09:27:15 -04:00
+								            {
-												more user friendly error message for no access.

											
										
										
											2017-04-20 16:19:23 -04:00
+								                throw new BadRequestException("You do not have permissions to edit this.");
-												permission checks for cipher crud operations

											
										
										
											2017-03-24 09:27:15 -04:00
+								            }
 								            cipher.UserId = savingUserId;
-												added push events and moved cipher writing to cipher service.

											
										
										
											2016-06-29 01:15:37 -04:00
+								            if(cipher.Id == default(Guid))
 								            {
 								                await _cipherRepository.CreateAsync(cipher);
 								                // push
-												dont send pushes for now since they depend on user

											
										
										
											2017-03-21 21:21:28 -04:00
+								                //await _pushService.PushSyncCipherCreateAsync(cipher);
-												added push events and moved cipher writing to cipher service.

											
										
										
											2016-06-29 01:15:37 -04:00
+								            }
 								            else
 								            {
-												cipher revision update. fixed exception handler logging issue. added logger to push service.

											
										
										
											2016-06-30 21:31:12 -04:00
+								                cipher.RevisionDate = DateTime.UtcNow;
-												added push events and moved cipher writing to cipher service.

											
										
										
											2016-06-29 01:15:37 -04:00
+								                await _cipherRepository.ReplaceAsync(cipher);
 								                // push
-												dont send pushes for now since they depend on user

											
										
										
											2017-03-21 21:21:28 -04:00
+								                //await _pushService.PushSyncCipherUpdateAsync(cipher);
-												added push events and moved cipher writing to cipher service.

											
										
										
											2016-06-29 01:15:37 -04:00
+								            }
 								        }
-												cipher delete for admin

											
										
										
											2017-04-19 16:00:47 -04:00
+								        public async Task DeleteAsync(Cipher cipher, Guid deletingUserId, bool orgAdmin = false)
-												added push events and moved cipher writing to cipher service.

											
										
										
											2016-06-29 01:15:37 -04:00
+								        {
-												cipher delete for admin

											
										
										
											2017-04-19 16:00:47 -04:00
+								            if(!orgAdmin && !(await UserCanEditAsync(cipher, deletingUserId)))
-												permission checks for cipher crud operations

											
										
										
											2017-03-24 09:27:15 -04:00
+								            {
-												more user friendly error message for no access.

											
										
										
											2017-04-20 16:19:23 -04:00
+								                throw new BadRequestException("You do not have permissions to delete this.");
-												permission checks for cipher crud operations

											
										
										
											2017-03-24 09:27:15 -04:00
+								            }
-												added push events and moved cipher writing to cipher service.

											
										
										
											2016-06-29 01:15:37 -04:00
+								            await _cipherRepository.DeleteAsync(cipher);
 								            // push
-												dont send pushes for now since they depend on user

											
										
										
											2017-03-21 21:21:28 -04:00
+								            //await _pushService.PushSyncCipherDeleteAsync(cipher);
-												Added cipher service with bulk import to account controller

											
										
										
											2015-12-26 23:09:53 -05:00
+								        }
-												refactor for cipher details, folders, favorites

											
										
										
											2017-03-18 11:58:02 -04:00
+								        public async Task SaveFolderAsync(Folder folder)
 								        {
 								            if(folder.Id == default(Guid))
 								            {
 								                await _folderRepository.CreateAsync(folder);
 								                // push
 								                //await _pushService.PushSyncCipherCreateAsync(cipher);
 								            }
 								            else
 								            {
 								                folder.RevisionDate = DateTime.UtcNow;
 								                await _folderRepository.UpsertAsync(folder);
 								                // push
 								                //await _pushService.PushSyncCipherUpdateAsync(cipher);
 								            }
 								        }
 								        public async Task DeleteFolderAsync(Folder folder)
 								        {
 								            await _folderRepository.DeleteAsync(folder);
 								            // push
 								            //await _pushService.PushSyncCipherDeleteAsync(cipher);
 								        }
-												update cipher subvaults

											
										
										
											2017-04-12 12:42:00 -04:00
+								        public async Task ShareAsync(Cipher cipher, Guid organizationId, IEnumerable<Guid> subvaultIds, Guid sharingUserId)
-												Move into and read ciphers from org subvaults

											
										
										
											2017-03-21 00:04:39 -04:00
+								        {
 								            if(cipher.Id == default(Guid))
 								            {
 								                throw new BadRequestException(nameof(cipher.Id));
 								            }
-												permissions validation

											
										
										
											2017-04-04 22:07:30 -04:00
+								            if(cipher.OrganizationId.HasValue)
-												Move into and read ciphers from org subvaults

											
										
										
											2017-03-21 00:04:39 -04:00
+								            {
-												permissions validation

											
										
										
											2017-04-04 22:07:30 -04:00
+								                throw new BadRequestException("Already belongs to an organization.");
-												Move into and read ciphers from org subvaults

											
										
										
											2017-03-21 00:04:39 -04:00
+								            }
-												update cipher subvaults

											
										
										
											2017-04-12 12:42:00 -04:00
+								            if(!cipher.UserId.HasValue || cipher.UserId.Value != sharingUserId)
-												validation checks on cipher move

											
										
										
											2017-03-25 16:25:10 -04:00
+								            {
 								                throw new NotFoundException();
 								            }
-												admin subvault updates for cipher

											
										
										
											2017-04-17 23:12:48 -04:00
+								            // Sproc will not save this UserId on the cipher. It is used limit scope of the subvaultIds.
 								            cipher.UserId = sharingUserId;
-												validation checks on cipher move

											
										
										
											2017-03-25 16:25:10 -04:00
+								            cipher.OrganizationId = organizationId;
-												Move into and read ciphers from org subvaults

											
										
										
											2017-03-21 00:04:39 -04:00
+								            cipher.RevisionDate = DateTime.UtcNow;
-												admin subvault updates for cipher

											
										
										
											2017-04-17 23:12:48 -04:00
+								            await _cipherRepository.ReplaceAsync(cipher, subvaultIds);
-												Move into and read ciphers from org subvaults

											
										
										
											2017-03-21 00:04:39 -04:00
 								            // push
-												update cipher subvaults

											
										
										
											2017-04-12 12:42:00 -04:00
+								            //await _pushService.PushSyncCipherUpdateAsync(cipher);
 								        }
-												admin subvault updates for cipher

											
										
										
											2017-04-17 23:12:48 -04:00
+								        public async Task SaveSubvaultsAsync(Cipher cipher, IEnumerable<Guid> subvaultIds, Guid savingUserId, bool orgAdmin)
-												update cipher subvaults

											
										
										
											2017-04-12 12:42:00 -04:00
+								        {
 								            if(cipher.Id == default(Guid))
 								            {
 								                throw new BadRequestException(nameof(cipher.Id));
 								            }
 								            if(!cipher.OrganizationId.HasValue)
 								            {
 								                throw new BadRequestException("Cipher must belong to an organization.");
 								            }
-												admin subvault updates for cipher

											
										
										
											2017-04-17 23:12:48 -04:00
+								            // The sprocs will validate that all subvaults belong to this org/user and that they have proper write permissions.
 								            if(orgAdmin)
-												update cipher subvaults

											
										
										
											2017-04-12 12:42:00 -04:00
+								            {
-												admin subvault updates for cipher

											
										
										
											2017-04-17 23:12:48 -04:00
+								                await _subvaultCipherRepository.UpdateSubvaultsForAdminAsync(cipher.Id, cipher.OrganizationId.Value,
 								                    subvaultIds);
 								            }
 								            else
 								            {
 								                await _subvaultCipherRepository.UpdateSubvaultsAsync(cipher.Id, savingUserId, subvaultIds);
-												update cipher subvaults

											
										
										
											2017-04-12 12:42:00 -04:00
+								            }
 								            // push
-												user checks on read procs

											
										
										
											2017-03-21 21:13:20 -04:00
+								            //await _pushService.PushSyncCipherUpdateAsync(cipher);
-												Move into and read ciphers from org subvaults

											
										
										
											2017-03-21 00:04:39 -04:00
+								        }
-												Added cipher service with bulk import to account controller

											
										
										
											2015-12-26 23:09:53 -05:00
+								        public async Task ImportCiphersAsync(
-												refactor for cipher details, folders, favorites

											
										
										
											2017-03-18 11:58:02 -04:00
+								            List<Folder> folders,
 								            List<CipherDetails> ciphers,
-												refactored data storage to use cipher table. added history table and insert triggers.

											
										
										
											2016-05-21 17:16:22 -04:00
+								            IEnumerable<KeyValuePair<int, int>> folderRelationships)
-												Added cipher service with bulk import to account controller

											
										
										
											2015-12-26 23:09:53 -05:00
+								        {
-												import fixes for new folder/favorite schema

											
										
										
											2017-04-12 16:48:38 -04:00
+								            foreach(var cipher in ciphers)
 								            {
 								                cipher.SetNewId();
 								                if(cipher.UserId.HasValue && cipher.Favorite)
 								                {
-												convert fav and folder json to userid object

											
										
										
											2017-04-17 11:44:09 -04:00
+								                    cipher.Favorites = $"{{\"{cipher.UserId.ToString().ToUpperInvariant()}\":\"true\"}}";
-												import fixes for new folder/favorite schema

											
										
										
											2017-04-12 16:48:38 -04:00
+								                }
 								            }
 								            // Init. ids for folders
-												Added cipher service with bulk import to account controller

											
										
										
											2015-12-26 23:09:53 -05:00
+								            foreach(var folder in folders)
 								            {
-												import fixes for new folder/favorite schema

											
										
										
											2017-04-12 16:48:38 -04:00
+								                folder.SetNewId();
-												Added cipher service with bulk import to account controller

											
										
										
											2015-12-26 23:09:53 -05:00
+								            }
-												import fixes for new folder/favorite schema

											
										
										
											2017-04-12 16:48:38 -04:00
+								            // Create the folder associations based on the newly created folder ids
-												refactored data storage to use cipher table. added history table and insert triggers.

											
										
										
											2016-05-21 17:16:22 -04:00
+								            foreach(var relationship in folderRelationships)
-												Added cipher service with bulk import to account controller

											
										
										
											2015-12-26 23:09:53 -05:00
+								            {
-												refactored data storage to use cipher table. added history table and insert triggers.

											
										
										
											2016-05-21 17:16:22 -04:00
+								                var cipher = ciphers.ElementAtOrDefault(relationship.Key);
-												Added cipher service with bulk import to account controller

											
										
										
											2015-12-26 23:09:53 -05:00
+								                var folder = folders.ElementAtOrDefault(relationship.Value);
-												refactored data storage to use cipher table. added history table and insert triggers.

											
										
										
											2016-05-21 17:16:22 -04:00
+								                if(cipher == null || folder == null)
-												Added cipher service with bulk import to account controller

											
										
										
											2015-12-26 23:09:53 -05:00
+								                {
 								                    continue;
 								                }
-												convert fav and folder json to userid object

											
										
										
											2017-04-17 11:44:09 -04:00
+								                cipher.Folders = $"{{\"{cipher.UserId.ToString().ToUpperInvariant()}\":" +
 								                    $"\"{folder.Id.ToString().ToUpperInvariant()}\"}}";
-												Added cipher service with bulk import to account controller

											
										
										
											2015-12-26 23:09:53 -05:00
+								            }
-												import fixes for new folder/favorite schema

											
										
										
											2017-04-12 16:48:38 -04:00
+								            // Create it all
-												refactored cipherfolder and fav to JSON columns

											
										
										
											2017-04-15 22:26:45 -04:00
+								            await _cipherRepository.CreateAsync(ciphers, folders);
-												added push events and moved cipher writing to cipher service.

											
										
										
											2016-06-29 01:15:37 -04:00
 								            // push
 								            var userId = folders.FirstOrDefault()?.UserId ?? ciphers.FirstOrDefault()?.UserId;
 								            if(userId.HasValue)
 								            {
 								                await _pushService.PushSyncCiphersAsync(userId.Value);
 								            }
-												Added cipher service with bulk import to account controller

											
										
										
											2015-12-26 23:09:53 -05:00
+								        }
-												permission checks for cipher crud operations

											
										
										
											2017-03-24 09:27:15 -04:00
-												validation checks on cipher move

											
										
										
											2017-03-25 16:25:10 -04:00
+								        private async Task<bool> UserCanEditAsync(Cipher cipher, Guid userId)
-												permission checks for cipher crud operations

											
										
										
											2017-03-24 09:27:15 -04:00
+								        {
 								            if(!cipher.OrganizationId.HasValue && cipher.UserId.HasValue && cipher.UserId.Value == userId)
 								            {
 								                return true;
 								            }
-												user can edit responses and cipher partial updates

											
										
										
											2017-03-24 16:15:50 -04:00
+								            return await _subvaultUserRepository.GetCanEditByUserIdCipherIdAsync(userId, cipher.Id);
 								        }
-												Added cipher service with bulk import to account controller

											
										
										
											2015-12-26 23:09:53 -05:00
+								    }
 								}