src/Core/Services/Implementations/OrganizationService.cs

using System;
using System.Linq;
using System.Threading.Tasks;
using Bit.Core.Repositories;
using Bit.Core.Models.Business;
using Bit.Core.Models.Table;
using Bit.Core.Utilities;
using Bit.Core.Exceptions;
using System.Collections.Generic;
using Microsoft.AspNetCore.DataProtection;
using Stripe;
using Bit.Core.Enums;

namespace Bit.Core.Services
{
    public class OrganizationService : IOrganizationService
    {
        private readonly IOrganizationRepository _organizationRepository;
        private readonly IOrganizationUserRepository _organizationUserRepository;
        private readonly ISubvaultRepository _subvaultRepository;
        private readonly ISubvaultUserRepository _subvaultUserRepository;
        private readonly IUserRepository _userRepository;
        private readonly IDataProtector _dataProtector;
        private readonly IMailService _mailService;

        public OrganizationService(
            IOrganizationRepository organizationRepository,
            IOrganizationUserRepository organizationUserRepository,
            ISubvaultRepository subvaultRepository,
            ISubvaultUserRepository subvaultUserRepository,
            IUserRepository userRepository,
            IDataProtectionProvider dataProtectionProvider,
            IMailService mailService)
        {
            _organizationRepository = organizationRepository;
            _organizationUserRepository = organizationUserRepository;
            _subvaultRepository = subvaultRepository;
            _subvaultUserRepository = subvaultUserRepository;
            _userRepository = userRepository;
            _dataProtector = dataProtectionProvider.CreateProtector("OrganizationServiceDataProtector");
            _mailService = mailService;
        }
        public async Task<OrganizationBilling> GetBillingAsync(Organization organization)
        {
            var orgBilling = new OrganizationBilling();
            var customerService = new StripeCustomerService();
            var subscriptionService = new StripeSubscriptionService();
            var chargeService = new StripeChargeService();
            var invoiceService = new StripeInvoiceService();

            if(!string.IsNullOrWhiteSpace(organization.StripeCustomerId))
            {
                var customer = await customerService.GetAsync(organization.StripeCustomerId);
                if(customer != null)
                {
                    if(!string.IsNullOrWhiteSpace(customer.DefaultSourceId) && customer.Sources?.Data != null)
                    {
                        if(customer.DefaultSourceId.StartsWith("card_"))
                        {
                            orgBilling.PaymentSource =
                                customer.Sources.Data.FirstOrDefault(s => s.Card?.Id == customer.DefaultSourceId);
                        }
                        else if(customer.DefaultSourceId.StartsWith("ba_"))
                        {
                            orgBilling.PaymentSource =
                                customer.Sources.Data.FirstOrDefault(s => s.BankAccount?.Id == customer.DefaultSourceId);
                        }
                    }

                    var charges = await chargeService.ListAsync(new StripeChargeListOptions
                    {
                        CustomerId = customer.Id,
                        Limit = 20
                    });
                    orgBilling.Charges = charges.OrderByDescending(c => c.Created);

                    if(!string.IsNullOrWhiteSpace(organization.StripeSubscriptionId))
                    {
                        try
                        {
                            var upcomingInvoice = await invoiceService.UpcomingAsync(organization.StripeCustomerId);
                            if(upcomingInvoice != null)
                            {
                                orgBilling.UpcomingInvoice = upcomingInvoice;
                            }
                        }
                        catch(StripeException) { }
                    }
                }
            }

            if(!string.IsNullOrWhiteSpace(organization.StripeSubscriptionId))
            {
                var sub = await subscriptionService.GetAsync(organization.StripeSubscriptionId);
                if(sub != null)
                {
                    orgBilling.Subscription = sub;
                }
            }

            return orgBilling;
        }

        public async Task ReplacePaymentMethodAsync(Guid organizationId, string paymentToken)
        {
            var organization = await _organizationRepository.GetByIdAsync(organizationId);
            if(organization == null)
            {
                throw new NotFoundException();
            }

            var cardService = new StripeCardService();
            var customerService = new StripeCustomerService();
            StripeCustomer customer = null;

            if(!string.IsNullOrWhiteSpace(organization.StripeCustomerId))
            {
                customer = await customerService.GetAsync(organization.StripeCustomerId);
            }

            if(customer == null)
            {
                customer = await customerService.CreateAsync(new StripeCustomerCreateOptions
                {
                    Description = organization.BusinessName,
                    Email = organization.BillingEmail,
                    SourceToken = paymentToken
                });

                organization.StripeCustomerId = customer.Id;
                await _organizationRepository.ReplaceAsync(organization);
            }

            await cardService.CreateAsync(customer.Id, new StripeCardCreateOptions
            {
                SourceToken = paymentToken
            });

            if(!string.IsNullOrWhiteSpace(customer.DefaultSourceId))
            {
                await cardService.DeleteAsync(customer.Id, customer.DefaultSourceId);
            }
        }

        public async Task CancelSubscriptionAsync(Guid organizationId, bool endOfPeriod = false)
        {
            var organization = await _organizationRepository.GetByIdAsync(organizationId);
            if(organization == null)
            {
                throw new NotFoundException();
            }

            if(string.IsNullOrWhiteSpace(organization.StripeSubscriptionId))
            {
                throw new BadRequestException("Organization has no subscription.");
            }

            var subscriptionService = new StripeSubscriptionService();
            var sub = await subscriptionService.GetAsync(organization.StripeCustomerId);

            if(sub == null)
            {
                throw new BadRequestException("Organization subscription was not found.");
            }

            if(sub.Status == "canceled")
            {
                throw new BadRequestException("Organization subscription is already canceled.");
            }

            var canceledSub = await subscriptionService.CancelAsync(sub.Id, endOfPeriod);
            if(canceledSub?.Status != "canceled")
            {
                throw new BadRequestException("Unable to cancel subscription.");
            }
        }

        public async Task UpgradePlanAsync(Guid organizationId, PlanType plan, int additionalSeats)
        {
            var organization = await _organizationRepository.GetByIdAsync(organizationId);
            if(organization == null)
            {
                throw new NotFoundException();
            }

            if(string.IsNullOrWhiteSpace(organization.StripeCustomerId))
            {
                throw new BadRequestException("No payment method found.");
            }

            var existingPlan = StaticStore.Plans.FirstOrDefault(p => p.Type == organization.PlanType);
            if(existingPlan == null)
            {
                throw new BadRequestException("Existing plan not found.");
            }

            var newPlan = StaticStore.Plans.FirstOrDefault(p => p.Type == plan && !p.Disabled);
            if(newPlan == null)
            {
                throw new BadRequestException("Plan not found.");
            }

            if(existingPlan.Type == newPlan.Type)
            {
                throw new BadRequestException("Organization is already on this plan.");
            }

            if(existingPlan.UpgradeSortOrder >= newPlan.UpgradeSortOrder)
            {
                throw new BadRequestException("You cannot upgrade to this plan.");
            }

            if(!newPlan.CanBuyAdditionalSeats && additionalSeats > 0)
            {
                throw new BadRequestException("Plan does not allow additional seats.");
            }

            if(newPlan.CanBuyAdditionalSeats && newPlan.MaxAdditionalSeats.HasValue &&
                additionalSeats > newPlan.MaxAdditionalSeats.Value)
            {
                throw new BadRequestException($"Selected plan allows a maximum of " +
                    $"{newPlan.MaxAdditionalSeats.Value} additional seats.");
            }

            var newPlanSeats = (short)(newPlan.BaseSeats + (newPlan.CanBuyAdditionalSeats ? additionalSeats : 0));
            if(!organization.Seats.HasValue || organization.Seats.Value > newPlanSeats)
            {
                var userCount = await _organizationUserRepository.GetCountByOrganizationIdAsync(organization.Id);
                if(userCount >= newPlanSeats)
                {
                    throw new BadRequestException($"Your organization currently has {userCount} seats filled. Your new plan " +
                        $"only has ({newPlanSeats}) seats. Remove some users.");
                }
            }

            if(newPlan.MaxSubvaults.HasValue &&
                (!organization.MaxSubvaults.HasValue || organization.MaxSubvaults.Value > newPlan.MaxSubvaults.Value))
            {
                var subvaultCount = await _subvaultRepository.GetCountByOrganizationIdAsync(organization.Id);
                if(subvaultCount > newPlan.MaxSubvaults.Value)
                {
                    throw new BadRequestException($"Your organization currently has {subvaultCount} subvaults. " +
                        $"Your new plan allows for a maximum of ({newPlan.MaxSubvaults.Value}) subvaults. " +
                        "Remove some subvaults.");
                }
            }

            var subscriptionService = new StripeSubscriptionService();
            if(string.IsNullOrWhiteSpace(organization.StripeSubscriptionId))
            {
                // They must have been on a free plan. Create new sub.
                var subCreateOptions = new StripeSubscriptionCreateOptions
                {
                    Items = new List<StripeSubscriptionItemOption>
                    {
                        new StripeSubscriptionItemOption
                        {
                            PlanId = newPlan.StripePlanId,
                            Quantity = 1
                        }
                    }
                };

                if(additionalSeats > 0)
                {
                    subCreateOptions.Items.Add(new StripeSubscriptionItemOption
                    {
                        PlanId = newPlan.StripeSeatPlanId,
                        Quantity = additionalSeats
                    });
                }

                await subscriptionService.CreateAsync(organization.StripeCustomerId, subCreateOptions);
            }
            else
            {
                // Update existing sub.
                var subUpdateOptions = new StripeSubscriptionUpdateOptions
                {
                    Items = new List<StripeSubscriptionItemUpdateOption>
                    {
                        new StripeSubscriptionItemUpdateOption
                        {
                            PlanId = newPlan.StripePlanId,
                            Quantity = 1
                        }
                    }
                };

                if(additionalSeats > 0)
                {
                    subUpdateOptions.Items.Add(new StripeSubscriptionItemUpdateOption
                    {
                        PlanId = newPlan.StripeSeatPlanId,
                        Quantity = additionalSeats
                    });
                }

                await subscriptionService.UpdateAsync(organization.StripeSubscriptionId, subUpdateOptions);
            }
        }

        public async Task AdjustSeatsAsync(Guid organizationId, int seatAdjustment)
        {
            var organization = await _organizationRepository.GetByIdAsync(organizationId);
            if(organization == null)
            {
                throw new NotFoundException();
            }

            if(string.IsNullOrWhiteSpace(organization.StripeCustomerId))
            {
                throw new BadRequestException("No payment method found.");
            }

            if(!string.IsNullOrWhiteSpace(organization.StripeSubscriptionId))
            {
                throw new BadRequestException("No subscription found.");
            }

            var plan = StaticStore.Plans.FirstOrDefault(p => p.Type == organization.PlanType);
            if(plan == null)
            {
                throw new BadRequestException("Existing plan not found.");
            }

            if(!plan.CanBuyAdditionalSeats)
            {
                throw new BadRequestException("Plan does not allow additional seats.");
            }

            var newSeatTotal = organization.Seats + seatAdjustment;
            if(plan.BaseSeats > newSeatTotal)
            {
                throw new BadRequestException($"Plan has a minimum of {plan.BaseSeats} seats.");
            }

            var additionalSeats = newSeatTotal - plan.BaseSeats;
            if(plan.MaxAdditionalSeats.HasValue && additionalSeats > plan.MaxAdditionalSeats.Value)
            {
                throw new BadRequestException($"Organization plan allows a maximum of " +
                    $"{plan.MaxAdditionalSeats.Value} additional seats.");
            }

            if(!organization.Seats.HasValue || organization.Seats.Value > newSeatTotal)
            {
                var userCount = await _organizationUserRepository.GetCountByOrganizationIdAsync(organization.Id);
                if(userCount > newSeatTotal)
                {
                    throw new BadRequestException($"Your organization currently has {userCount} seats filled. Your new plan " +
                        $"only has ({newSeatTotal}) seats. Remove some users.");
                }
            }

            var subscriptionService = new StripeSubscriptionService();
            var subUpdateOptions = new StripeSubscriptionUpdateOptions
            {
                Items = new List<StripeSubscriptionItemUpdateOption>
                {
                    new StripeSubscriptionItemUpdateOption
                    {
                        PlanId = plan.StripePlanId,
                        Quantity = 1
                    }
                }
            };

            if(additionalSeats > 0)
            {
                subUpdateOptions.Items.Add(new StripeSubscriptionItemUpdateOption
                {
                    PlanId = plan.StripeSeatPlanId,
                    Quantity = additionalSeats
                });
            }

            await subscriptionService.UpdateAsync(organization.StripeSubscriptionId, subUpdateOptions);
        }

        public async Task<Tuple<Organization, OrganizationUser>> SignUpAsync(OrganizationSignup signup)
        {
            var plan = StaticStore.Plans.FirstOrDefault(p => p.Type == signup.Plan && !p.Disabled);
            if(plan == null)
            {
                throw new BadRequestException("Plan not found.");
            }

            var customerService = new StripeCustomerService();
            var subscriptionService = new StripeSubscriptionService();
            StripeCustomer customer = null;
            StripeSubscription subscription = null;

            if(!plan.CanBuyAdditionalSeats && signup.AdditionalSeats > 0)
            {
                throw new BadRequestException("Plan does not allow additional users.");
            }

            if(plan.CanBuyAdditionalSeats && plan.MaxAdditionalSeats.HasValue &&
                signup.AdditionalSeats > plan.MaxAdditionalSeats.Value)
            {
                throw new BadRequestException($"Selected plan allows a maximum of " +
                    $"{plan.MaxAdditionalSeats.GetValueOrDefault(0)} additional users.");
            }

            if(plan.Type == Enums.PlanType.Free)
            {
                var ownerExistingOrgCount =
                    await _organizationUserRepository.GetCountByFreeOrganizationAdminUserAsync(signup.Owner.Id);
                if(ownerExistingOrgCount > 0)
                {
                    throw new BadRequestException("You can only be an admin of one free organization.");
                }
            }
            else
            {
                customer = await customerService.CreateAsync(new StripeCustomerCreateOptions
                {
                    Description = signup.BusinessName,
                    Email = signup.BillingEmail,
                    SourceToken = signup.PaymentToken
                });

                var subCreateOptions = new StripeSubscriptionCreateOptions
                {
                    Items = new List<StripeSubscriptionItemOption>
                    {
                        new StripeSubscriptionItemOption
                        {
                            PlanId = plan.StripePlanId,
                            Quantity = 1
                        }
                    }
                };

                if(signup.AdditionalSeats > 0)
                {
                    subCreateOptions.Items.Add(new StripeSubscriptionItemOption
                    {
                        PlanId = plan.StripeSeatPlanId,
                        Quantity = signup.AdditionalSeats
                    });
                }

                subscription = await subscriptionService.CreateAsync(customer.Id, subCreateOptions);
            }

            var organization = new Organization
            {
                Name = signup.Name,
                BillingEmail = signup.BillingEmail,
                BusinessName = signup.BusinessName,
                PlanType = plan.Type,
                Seats = (short)(plan.BaseSeats + signup.AdditionalSeats),
                MaxSubvaults = plan.MaxSubvaults,
                Plan = plan.Name,
                StripeCustomerId = customer?.Id,
                StripeSubscriptionId = subscription?.Id,
                CreationDate = DateTime.UtcNow,
                RevisionDate = DateTime.UtcNow
            };

            try
            {
                await _organizationRepository.CreateAsync(organization);

                var orgUser = new OrganizationUser
                {
                    OrganizationId = organization.Id,
                    UserId = signup.Owner.Id,
                    Email = signup.Owner.Email,
                    Key = signup.OwnerKey,
                    Type = Enums.OrganizationUserType.Owner,
                    Status = Enums.OrganizationUserStatusType.Confirmed,
                    CreationDate = DateTime.UtcNow,
                    RevisionDate = DateTime.UtcNow
                };

                await _organizationUserRepository.CreateAsync(orgUser);

                return new Tuple<Organization, OrganizationUser>(organization, orgUser);
            }
            catch
            {
                if(subscription != null)
                {
                    await subscriptionService.CancelAsync(subscription.Id);
                }

                // TODO: reverse payments

                if(organization.Id != default(Guid))
                {
                    await _organizationRepository.DeleteAsync(organization);
                }

                throw;
            }
        }

        public async Task<OrganizationUser> InviteUserAsync(Guid organizationId, Guid invitingUserId, string email,
            Enums.OrganizationUserType type, IEnumerable<SubvaultUser> subvaults)
        {
            var organization = await _organizationRepository.GetByIdAsync(organizationId);
            if(organization == null)
            {
                throw new NotFoundException();
            }

            if(organization.Seats.HasValue)
            {
                var userCount = await _organizationUserRepository.GetCountByOrganizationIdAsync(organizationId);
                if(userCount >= organization.Seats.Value)
                {
                    throw new BadRequestException("You have reached the maximum number of users " +
                        $"({organization.Seats.Value}) for this organization.");
                }
            }

            // Make sure user is not already invited
            var existingOrgUser = await _organizationUserRepository.GetByOrganizationAsync(organizationId, email);
            if(existingOrgUser != null)
            {
                throw new BadRequestException("User already invited.");
            }

            var orgSubvaults = await _subvaultRepository.GetManyByOrganizationIdAsync(organizationId);
            var filteredSubvaults = subvaults.Where(s => orgSubvaults.Any(os => os.Id == s.SubvaultId));

            var orgUser = new OrganizationUser
            {
                OrganizationId = organizationId,
                UserId = null,
                Email = email,
                Key = null,
                Type = type,
                Status = Enums.OrganizationUserStatusType.Invited,
                CreationDate = DateTime.UtcNow,
                RevisionDate = DateTime.UtcNow
            };

            await _organizationUserRepository.CreateAsync(orgUser);
            await SaveUserSubvaultsAsync(orgUser, filteredSubvaults, true);
            await SendInviteAsync(orgUser);

            return orgUser;
        }

        public async Task ResendInviteAsync(Guid organizationId, Guid invitingUserId, Guid organizationUserId)
        {
            var orgUser = await _organizationUserRepository.GetByIdAsync(organizationUserId);
            if(orgUser == null || orgUser.OrganizationId != organizationId ||
                orgUser.Status != Enums.OrganizationUserStatusType.Invited)
            {
                throw new BadRequestException("User invalid.");
            }

            await SendInviteAsync(orgUser);
        }

        private async Task SendInviteAsync(OrganizationUser orgUser)
        {
            var org = await _organizationRepository.GetByIdAsync(orgUser.OrganizationId);
            var nowMillis = CoreHelpers.ToEpocMilliseconds(DateTime.UtcNow);
            var token = _dataProtector.Protect(
                $"OrganizationUserInvite {orgUser.Id} {orgUser.Email} {nowMillis}");
            await _mailService.SendOrganizationInviteEmailAsync(org.Name, orgUser, token);
        }

        public async Task<OrganizationUser> AcceptUserAsync(Guid organizationUserId, User user, string token)
        {
            var orgUser = await _organizationUserRepository.GetByIdAsync(organizationUserId);
            if(orgUser == null || orgUser.Email != user.Email)
            {
                throw new BadRequestException("User invalid.");
            }

            if(orgUser.Status != Enums.OrganizationUserStatusType.Invited)
            {
                throw new BadRequestException("Already accepted.");
            }

            var ownerExistingOrgCount = await _organizationUserRepository.GetCountByFreeOrganizationAdminUserAsync(user.Id);
            if(ownerExistingOrgCount > 0)
            {
                throw new BadRequestException("You can only be an admin of one free organization.");
            }

            var tokenValidationFailed = true;
            try
            {
                var unprotectedData = _dataProtector.Unprotect(token);
                var dataParts = unprotectedData.Split(' ');
                if(dataParts.Length == 4 && dataParts[0] == "OrganizationUserInvite" &&
                    new Guid(dataParts[1]) == orgUser.Id && dataParts[2] == user.Email)
                {
                    var creationTime = CoreHelpers.FromEpocMilliseconds(Convert.ToInt64(dataParts[3]));
                    tokenValidationFailed = creationTime.AddDays(5) < DateTime.UtcNow;
                }
            }
            catch
            {
                tokenValidationFailed = true;
            }

            if(tokenValidationFailed)
            {
                throw new BadRequestException("Invalid token.");
            }

            orgUser.Status = Enums.OrganizationUserStatusType.Accepted;
            orgUser.UserId = user.Id;
            orgUser.Email = null;
            await _organizationUserRepository.ReplaceAsync(orgUser);

            // TODO: send email

            return orgUser;
        }

        public async Task<OrganizationUser> ConfirmUserAsync(Guid organizationId, Guid organizationUserId, string key,
            Guid confirmingUserId)
        {
            var orgUser = await _organizationUserRepository.GetByIdAsync(organizationUserId);
            if(orgUser == null || orgUser.Status != Enums.OrganizationUserStatusType.Accepted ||
                orgUser.OrganizationId != organizationId)
            {
                throw new BadRequestException("User not valid.");
            }

            orgUser.Status = Enums.OrganizationUserStatusType.Confirmed;
            orgUser.Key = key;
            orgUser.Email = null;
            await _organizationUserRepository.ReplaceAsync(orgUser);

            // TODO: send email

            return orgUser;
        }

        public async Task SaveUserAsync(OrganizationUser user, Guid savingUserId, IEnumerable<SubvaultUser> subvaults)
        {
            if(user.Id.Equals(default(Guid)))
            {
                throw new BadRequestException("Invite the user first.");
            }

            var confirmedOwners = (await GetConfirmedOwnersAsync(user.OrganizationId)).ToList();
            if(user.Type != Enums.OrganizationUserType.Owner && confirmedOwners.Count == 1 && confirmedOwners[0].Id == user.Id)
            {
                throw new BadRequestException("Organization must have at least one confirmed owner.");
            }

            var orgSubvaults = await _subvaultRepository.GetManyByOrganizationIdAsync(user.OrganizationId);
            var filteredSubvaults = subvaults.Where(s => orgSubvaults.Any(os => os.Id == s.SubvaultId));

            await _organizationUserRepository.ReplaceAsync(user);
            await SaveUserSubvaultsAsync(user, filteredSubvaults, false);
        }

        public async Task DeleteUserAsync(Guid organizationId, Guid organizationUserId, Guid deletingUserId)
        {
            var orgUser = await _organizationUserRepository.GetByIdAsync(organizationUserId);
            if(orgUser == null || orgUser.OrganizationId != organizationId)
            {
                throw new BadRequestException("User not valid.");
            }

            var confirmedOwners = (await GetConfirmedOwnersAsync(organizationId)).ToList();
            if(confirmedOwners.Count == 1 && confirmedOwners[0].Id == organizationUserId)
            {
                throw new BadRequestException("Organization must have at least one confirmed owner.");
            }

            await _organizationUserRepository.DeleteAsync(orgUser);
        }

        private async Task<IEnumerable<OrganizationUser>> GetConfirmedOwnersAsync(Guid organizationId)
        {
            var owners = await _organizationUserRepository.GetManyByOrganizationAsync(organizationId,
                Enums.OrganizationUserType.Owner);
            return owners.Where(o => o.Status == Enums.OrganizationUserStatusType.Confirmed);
        }

        private async Task SaveUserSubvaultsAsync(OrganizationUser user, IEnumerable<SubvaultUser> subvaults, bool newUser)
        {
            if(subvaults == null)
            {
                subvaults = new List<SubvaultUser>();
            }

            var orgSubvaults = await _subvaultRepository.GetManyByOrganizationIdAsync(user.OrganizationId);
            var currentUserSubvaults = newUser ? null : await _subvaultUserRepository.GetManyByOrganizationUserIdAsync(user.Id);

            // Let's make sure all these belong to this user and organization.
            var filteredSubvaults = subvaults.Where(s => orgSubvaults.Any(os => os.Id == s.SubvaultId));
            foreach(var subvault in filteredSubvaults)
            {
                var existingSubvaultUser = currentUserSubvaults?.FirstOrDefault(cs => cs.SubvaultId == subvault.SubvaultId);
                if(existingSubvaultUser != null)
                {
                    subvault.Id = existingSubvaultUser.Id;
                    subvault.CreationDate = existingSubvaultUser.CreationDate;
                }

                subvault.OrganizationUserId = user.Id;
                await _subvaultUserRepository.UpsertAsync(subvault);
            }

            if(!newUser)
            {
                var subvaultsToDelete = currentUserSubvaults.Where(cs =>
                    !filteredSubvaults.Any(s => s.SubvaultId == cs.SubvaultId));
                foreach(var subvault in subvaultsToDelete)
                {
                    await _subvaultUserRepository.DeleteAsync(subvault);
                }
            }
        }
    }
}
-												organization signup apis and data model changes

											
										
										
											2017-03-03 00:07:11 -05:00
+								using System;
 								using System.Linq;
 								using System.Threading.Tasks;
 								using Bit.Core.Repositories;
 								using Bit.Core.Models.Business;
-												move domains to Models.Table

											
										
										
											2017-03-08 21:45:08 -05:00
+								using Bit.Core.Models.Table;
-												organization signup apis and data model changes

											
										
										
											2017-03-03 00:07:11 -05:00
+								using Bit.Core.Utilities;
 								using Bit.Core.Exceptions;
-												SubvaultUser APIs and services

											
										
										
											2017-03-09 23:58:43 -05:00
+								using System.Collections.Generic;
-												organization user apis, hardening, completeness

											
										
										
											2017-03-23 00:17:34 -04:00
+								using Microsoft.AspNetCore.DataProtection;
-												stripe subscription creation

											
										
										
											2017-04-04 10:13:16 -04:00
+								using Stripe;
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								using Bit.Core.Enums;
-												organization signup apis and data model changes

											
										
										
											2017-03-03 00:07:11 -05:00
 								namespace Bit.Core.Services
 								{
 								    public class OrganizationService : IOrganizationService
 								    {
 								        private readonly IOrganizationRepository _organizationRepository;
 								        private readonly IOrganizationUserRepository _organizationUserRepository;
-												SubvaultUser APIs and services

											
										
										
											2017-03-09 23:58:43 -05:00
+								        private readonly ISubvaultRepository _subvaultRepository;
 								        private readonly ISubvaultUserRepository _subvaultUserRepository;
-												org user management apis

											
										
										
											2017-03-04 21:28:41 -05:00
+								        private readonly IUserRepository _userRepository;
-												organization user apis, hardening, completeness

											
										
										
											2017-03-23 00:17:34 -04:00
+								        private readonly IDataProtector _dataProtector;
 								        private readonly IMailService _mailService;
-												organization signup apis and data model changes

											
										
										
											2017-03-03 00:07:11 -05:00
 								        public OrganizationService(
 								            IOrganizationRepository organizationRepository,
-												org user management apis

											
										
										
											2017-03-04 21:28:41 -05:00
+								            IOrganizationUserRepository organizationUserRepository,
-												SubvaultUser APIs and services

											
										
										
											2017-03-09 23:58:43 -05:00
+								            ISubvaultRepository subvaultRepository,
 								            ISubvaultUserRepository subvaultUserRepository,
-												organization user apis, hardening, completeness

											
										
										
											2017-03-23 00:17:34 -04:00
+								            IUserRepository userRepository,
 								            IDataProtectionProvider dataProtectionProvider,
 								            IMailService mailService)
-												organization signup apis and data model changes

											
										
										
											2017-03-03 00:07:11 -05:00
+								        {
 								            _organizationRepository = organizationRepository;
 								            _organizationUserRepository = organizationUserRepository;
-												SubvaultUser APIs and services

											
										
										
											2017-03-09 23:58:43 -05:00
+								            _subvaultRepository = subvaultRepository;
 								            _subvaultUserRepository = subvaultUserRepository;
-												org user management apis

											
										
										
											2017-03-04 21:28:41 -05:00
+								            _userRepository = userRepository;
-												organization user apis, hardening, completeness

											
										
										
											2017-03-23 00:17:34 -04:00
+								            _dataProtector = dataProtectionProvider.CreateProtector("OrganizationServiceDataProtector");
 								            _mailService = mailService;
-												organization signup apis and data model changes

											
										
										
											2017-03-03 00:07:11 -05:00
+								        }
-												apis for org settings & billing

											
										
										
											2017-04-06 16:52:39 -04:00
+								        public async Task<OrganizationBilling> GetBillingAsync(Organization organization)
 								        {
 								            var orgBilling = new OrganizationBilling();
 								            var customerService = new StripeCustomerService();
 								            var subscriptionService = new StripeSubscriptionService();
 								            var chargeService = new StripeChargeService();
-												upcoming invoice info

											
										
										
											2017-04-10 11:30:36 -04:00
+								            var invoiceService = new StripeInvoiceService();
-												apis for org settings & billing

											
										
										
											2017-04-06 16:52:39 -04:00
 								            if(!string.IsNullOrWhiteSpace(organization.StripeCustomerId))
 								            {
 								                var customer = await customerService.GetAsync(organization.StripeCustomerId);
 								                if(customer != null)
 								                {
-												change payment API

											
										
										
											2017-04-08 16:41:40 -04:00
+								                    if(!string.IsNullOrWhiteSpace(customer.DefaultSourceId) && customer.Sources?.Data != null)
 								                    {
 								                        if(customer.DefaultSourceId.StartsWith("card_"))
 								                        {
 								                            orgBilling.PaymentSource =
 								                                customer.Sources.Data.FirstOrDefault(s => s.Card?.Id == customer.DefaultSourceId);
 								                        }
 								                        else if(customer.DefaultSourceId.StartsWith("ba_"))
 								                        {
 								                            orgBilling.PaymentSource =
 								                                customer.Sources.Data.FirstOrDefault(s => s.BankAccount?.Id == customer.DefaultSourceId);
 								                        }
 								                    }
-												apis for org settings & billing

											
										
										
											2017-04-06 16:52:39 -04:00
 								                    var charges = await chargeService.ListAsync(new StripeChargeListOptions
 								                    {
 								                        CustomerId = customer.Id,
 								                        Limit = 20
 								                    });
 								                    orgBilling.Charges = charges.OrderByDescending(c => c.Created);
-												upcoming invoice info

											
										
										
											2017-04-10 11:30:36 -04:00
 								                    if(!string.IsNullOrWhiteSpace(organization.StripeSubscriptionId))
 								                    {
 								                        try
 								                        {
 								                            var upcomingInvoice = await invoiceService.UpcomingAsync(organization.StripeCustomerId);
 								                            if(upcomingInvoice != null)
 								                            {
 								                                orgBilling.UpcomingInvoice = upcomingInvoice;
 								                            }
 								                        }
 								                        catch(StripeException) { }
 								                    }
-												apis for org settings & billing

											
										
										
											2017-04-06 16:52:39 -04:00
+								                }
 								            }
 								            if(!string.IsNullOrWhiteSpace(organization.StripeSubscriptionId))
 								            {
 								                var sub = await subscriptionService.GetAsync(organization.StripeSubscriptionId);
 								                if(sub != null)
 								                {
 								                    orgBilling.Subscription = sub;
 								                }
 								            }
 								            return orgBilling;
 								        }
-												organization signup apis and data model changes

											
										
										
											2017-03-03 00:07:11 -05:00
-												change payment API

											
										
										
											2017-04-08 16:41:40 -04:00
+								        public async Task ReplacePaymentMethodAsync(Guid organizationId, string paymentToken)
 								        {
 								            var organization = await _organizationRepository.GetByIdAsync(organizationId);
 								            if(organization == null)
 								            {
 								                throw new NotFoundException();
 								            }
 								            var cardService = new StripeCardService();
 								            var customerService = new StripeCustomerService();
 								            StripeCustomer customer = null;
 								            if(!string.IsNullOrWhiteSpace(organization.StripeCustomerId))
 								            {
 								                customer = await customerService.GetAsync(organization.StripeCustomerId);
 								            }
 								            if(customer == null)
 								            {
 								                customer = await customerService.CreateAsync(new StripeCustomerCreateOptions
 								                {
 								                    Description = organization.BusinessName,
 								                    Email = organization.BillingEmail,
 								                    SourceToken = paymentToken
 								                });
 								                organization.StripeCustomerId = customer.Id;
 								                await _organizationRepository.ReplaceAsync(organization);
 								            }
 								            await cardService.CreateAsync(customer.Id, new StripeCardCreateOptions
 								            {
 								                SourceToken = paymentToken
 								            });
 								            if(!string.IsNullOrWhiteSpace(customer.DefaultSourceId))
 								            {
 								                await cardService.DeleteAsync(customer.Id, customer.DefaultSourceId);
 								            }
 								        }
-												cancel subscription service

											
										
										
											2017-04-08 18:15:20 -04:00
+								        public async Task CancelSubscriptionAsync(Guid organizationId, bool endOfPeriod = false)
 								        {
 								            var organization = await _organizationRepository.GetByIdAsync(organizationId);
 								            if(organization == null)
 								            {
 								                throw new NotFoundException();
 								            }
 								            if(string.IsNullOrWhiteSpace(organization.StripeSubscriptionId))
 								            {
 								                throw new BadRequestException("Organization has no subscription.");
 								            }
 								            var subscriptionService = new StripeSubscriptionService();
 								            var sub = await subscriptionService.GetAsync(organization.StripeCustomerId);
 								            if(sub == null)
 								            {
 								                throw new BadRequestException("Organization subscription was not found.");
 								            }
 								            if(sub.Status == "canceled")
 								            {
 								                throw new BadRequestException("Organization subscription is already canceled.");
 								            }
 								            var canceledSub = await subscriptionService.CancelAsync(sub.Id, endOfPeriod);
 								            if(canceledSub?.Status != "canceled")
 								            {
 								                throw new BadRequestException("Unable to cancel subscription.");
 								            }
 								        }
-												api endpoints for seats, upgrade, and cancel org

											
										
										
											2017-04-10 11:49:53 -04:00
+								        public async Task UpgradePlanAsync(Guid organizationId, PlanType plan, int additionalSeats)
-												Billing updates

- Break monthly and annual plans into two.
- Add upgrade and adjust additional users

											
										
										
											2017-04-10 09:36:21 -04:00
+								        {
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								            var organization = await _organizationRepository.GetByIdAsync(organizationId);
-												Billing updates

- Break monthly and annual plans into two.
- Add upgrade and adjust additional users

											
										
										
											2017-04-10 09:36:21 -04:00
+								            if(organization == null)
 								            {
 								                throw new NotFoundException();
 								            }
 								            if(string.IsNullOrWhiteSpace(organization.StripeCustomerId))
 								            {
 								                throw new BadRequestException("No payment method found.");
 								            }
 								            var existingPlan = StaticStore.Plans.FirstOrDefault(p => p.Type == organization.PlanType);
 								            if(existingPlan == null)
 								            {
 								                throw new BadRequestException("Existing plan not found.");
 								            }
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								            var newPlan = StaticStore.Plans.FirstOrDefault(p => p.Type == plan && !p.Disabled);
-												Billing updates

- Break monthly and annual plans into two.
- Add upgrade and adjust additional users

											
										
										
											2017-04-10 09:36:21 -04:00
+								            if(newPlan == null)
 								            {
 								                throw new BadRequestException("Plan not found.");
 								            }
 								            if(existingPlan.Type == newPlan.Type)
 								            {
 								                throw new BadRequestException("Organization is already on this plan.");
 								            }
 								            if(existingPlan.UpgradeSortOrder >= newPlan.UpgradeSortOrder)
 								            {
 								                throw new BadRequestException("You cannot upgrade to this plan.");
 								            }
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								            if(!newPlan.CanBuyAdditionalSeats && additionalSeats > 0)
-												Billing updates

- Break monthly and annual plans into two.
- Add upgrade and adjust additional users

											
										
										
											2017-04-10 09:36:21 -04:00
+								            {
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								                throw new BadRequestException("Plan does not allow additional seats.");
-												Billing updates

- Break monthly and annual plans into two.
- Add upgrade and adjust additional users

											
										
										
											2017-04-10 09:36:21 -04:00
+								            }
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								            if(newPlan.CanBuyAdditionalSeats && newPlan.MaxAdditionalSeats.HasValue &&
 								                additionalSeats > newPlan.MaxAdditionalSeats.Value)
-												Billing updates

- Break monthly and annual plans into two.
- Add upgrade and adjust additional users

											
										
										
											2017-04-10 09:36:21 -04:00
+								            {
 								                throw new BadRequestException($"Selected plan allows a maximum of " +
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								                    $"{newPlan.MaxAdditionalSeats.Value} additional seats.");
-												Billing updates

- Break monthly and annual plans into two.
- Add upgrade and adjust additional users

											
										
										
											2017-04-10 09:36:21 -04:00
+								            }
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								            var newPlanSeats = (short)(newPlan.BaseSeats + (newPlan.CanBuyAdditionalSeats ? additionalSeats : 0));
 								            if(!organization.Seats.HasValue || organization.Seats.Value > newPlanSeats)
-												Billing updates

- Break monthly and annual plans into two.
- Add upgrade and adjust additional users

											
										
										
											2017-04-10 09:36:21 -04:00
+								            {
 								                var userCount = await _organizationUserRepository.GetCountByOrganizationIdAsync(organization.Id);
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								                if(userCount >= newPlanSeats)
-												Billing updates

- Break monthly and annual plans into two.
- Add upgrade and adjust additional users

											
										
										
											2017-04-10 09:36:21 -04:00
+								                {
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								                    throw new BadRequestException($"Your organization currently has {userCount} seats filled. Your new plan " +
 								                        $"only has ({newPlanSeats}) seats. Remove some users.");
-												Billing updates

- Break monthly and annual plans into two.
- Add upgrade and adjust additional users

											
										
										
											2017-04-10 09:36:21 -04:00
+								                }
 								            }
 								            if(newPlan.MaxSubvaults.HasValue &&
 								                (!organization.MaxSubvaults.HasValue || organization.MaxSubvaults.Value > newPlan.MaxSubvaults.Value))
 								            {
 								                var subvaultCount = await _subvaultRepository.GetCountByOrganizationIdAsync(organization.Id);
 								                if(subvaultCount > newPlan.MaxSubvaults.Value)
 								                {
 								                    throw new BadRequestException($"Your organization currently has {subvaultCount} subvaults. " +
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								                        $"Your new plan allows for a maximum of ({newPlan.MaxSubvaults.Value}) subvaults. " +
 								                        "Remove some subvaults.");
-												Billing updates

- Break monthly and annual plans into two.
- Add upgrade and adjust additional users

											
										
										
											2017-04-10 09:36:21 -04:00
+								                }
 								            }
 								            var subscriptionService = new StripeSubscriptionService();
 								            if(string.IsNullOrWhiteSpace(organization.StripeSubscriptionId))
 								            {
 								                // They must have been on a free plan. Create new sub.
 								                var subCreateOptions = new StripeSubscriptionCreateOptions
 								                {
 								                    Items = new List<StripeSubscriptionItemOption>
 								                    {
 								                        new StripeSubscriptionItemOption
 								                        {
 								                            PlanId = newPlan.StripePlanId,
 								                            Quantity = 1
 								                        }
 								                    }
 								                };
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								                if(additionalSeats > 0)
-												Billing updates

- Break monthly and annual plans into two.
- Add upgrade and adjust additional users

											
										
										
											2017-04-10 09:36:21 -04:00
+								                {
 								                    subCreateOptions.Items.Add(new StripeSubscriptionItemOption
 								                    {
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								                        PlanId = newPlan.StripeSeatPlanId,
 								                        Quantity = additionalSeats
-												Billing updates

- Break monthly and annual plans into two.
- Add upgrade and adjust additional users

											
										
										
											2017-04-10 09:36:21 -04:00
+								                    });
 								                }
 								                await subscriptionService.CreateAsync(organization.StripeCustomerId, subCreateOptions);
 								            }
 								            else
 								            {
 								                // Update existing sub.
 								                var subUpdateOptions = new StripeSubscriptionUpdateOptions
 								                {
 								                    Items = new List<StripeSubscriptionItemUpdateOption>
 								                    {
 								                        new StripeSubscriptionItemUpdateOption
 								                        {
 								                            PlanId = newPlan.StripePlanId,
 								                            Quantity = 1
 								                        }
 								                    }
 								                };
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								                if(additionalSeats > 0)
-												Billing updates

- Break monthly and annual plans into two.
- Add upgrade and adjust additional users

											
										
										
											2017-04-10 09:36:21 -04:00
+								                {
 								                    subUpdateOptions.Items.Add(new StripeSubscriptionItemUpdateOption
 								                    {
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								                        PlanId = newPlan.StripeSeatPlanId,
 								                        Quantity = additionalSeats
-												Billing updates

- Break monthly and annual plans into two.
- Add upgrade and adjust additional users

											
										
										
											2017-04-10 09:36:21 -04:00
+								                    });
 								                }
 								                await subscriptionService.UpdateAsync(organization.StripeSubscriptionId, subUpdateOptions);
 								            }
 								        }
-												api endpoints for seats, upgrade, and cancel org

											
										
										
											2017-04-10 11:49:53 -04:00
+								        public async Task AdjustSeatsAsync(Guid organizationId, int seatAdjustment)
-												Billing updates

- Break monthly and annual plans into two.
- Add upgrade and adjust additional users

											
										
										
											2017-04-10 09:36:21 -04:00
+								        {
 								            var organization = await _organizationRepository.GetByIdAsync(organizationId);
 								            if(organization == null)
 								            {
 								                throw new NotFoundException();
 								            }
 								            if(string.IsNullOrWhiteSpace(organization.StripeCustomerId))
 								            {
 								                throw new BadRequestException("No payment method found.");
 								            }
 								            if(!string.IsNullOrWhiteSpace(organization.StripeSubscriptionId))
 								            {
 								                throw new BadRequestException("No subscription found.");
 								            }
 								            var plan = StaticStore.Plans.FirstOrDefault(p => p.Type == organization.PlanType);
 								            if(plan == null)
 								            {
 								                throw new BadRequestException("Existing plan not found.");
 								            }
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								            if(!plan.CanBuyAdditionalSeats)
-												Billing updates

- Break monthly and annual plans into two.
- Add upgrade and adjust additional users

											
										
										
											2017-04-10 09:36:21 -04:00
+								            {
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								                throw new BadRequestException("Plan does not allow additional seats.");
-												Billing updates

- Break monthly and annual plans into two.
- Add upgrade and adjust additional users

											
										
										
											2017-04-10 09:36:21 -04:00
+								            }
-												api endpoints for seats, upgrade, and cancel org

											
										
										
											2017-04-10 11:49:53 -04:00
+								            var newSeatTotal = organization.Seats + seatAdjustment;
 								            if(plan.BaseSeats > newSeatTotal)
 								            {
 								                throw new BadRequestException($"Plan has a minimum of {plan.BaseSeats} seats.");
 								            }
 								            var additionalSeats = newSeatTotal - plan.BaseSeats;
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								            if(plan.MaxAdditionalSeats.HasValue && additionalSeats > plan.MaxAdditionalSeats.Value)
-												Billing updates

- Break monthly and annual plans into two.
- Add upgrade and adjust additional users

											
										
										
											2017-04-10 09:36:21 -04:00
+								            {
 								                throw new BadRequestException($"Organization plan allows a maximum of " +
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								                    $"{plan.MaxAdditionalSeats.Value} additional seats.");
-												Billing updates

- Break monthly and annual plans into two.
- Add upgrade and adjust additional users

											
										
										
											2017-04-10 09:36:21 -04:00
+								            }
-												api endpoints for seats, upgrade, and cancel org

											
										
										
											2017-04-10 11:49:53 -04:00
+								            if(!organization.Seats.HasValue || organization.Seats.Value > newSeatTotal)
-												Billing updates

- Break monthly and annual plans into two.
- Add upgrade and adjust additional users

											
										
										
											2017-04-10 09:36:21 -04:00
+								            {
 								                var userCount = await _organizationUserRepository.GetCountByOrganizationIdAsync(organization.Id);
-												api endpoints for seats, upgrade, and cancel org

											
										
										
											2017-04-10 11:49:53 -04:00
+								                if(userCount > newSeatTotal)
-												Billing updates

- Break monthly and annual plans into two.
- Add upgrade and adjust additional users

											
										
										
											2017-04-10 09:36:21 -04:00
+								                {
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								                    throw new BadRequestException($"Your organization currently has {userCount} seats filled. Your new plan " +
-												api endpoints for seats, upgrade, and cancel org

											
										
										
											2017-04-10 11:49:53 -04:00
+								                        $"only has ({newSeatTotal}) seats. Remove some users.");
-												Billing updates

- Break monthly and annual plans into two.
- Add upgrade and adjust additional users

											
										
										
											2017-04-10 09:36:21 -04:00
+								                }
 								            }
 								            var subscriptionService = new StripeSubscriptionService();
 								            var subUpdateOptions = new StripeSubscriptionUpdateOptions
 								            {
 								                Items = new List<StripeSubscriptionItemUpdateOption>
 								                {
 								                    new StripeSubscriptionItemUpdateOption
 								                    {
 								                        PlanId = plan.StripePlanId,
 								                        Quantity = 1
 								                    }
 								                }
 								            };
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								            if(additionalSeats > 0)
-												Billing updates

- Break monthly and annual plans into two.
- Add upgrade and adjust additional users

											
										
										
											2017-04-10 09:36:21 -04:00
+								            {
 								                subUpdateOptions.Items.Add(new StripeSubscriptionItemUpdateOption
 								                {
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								                    PlanId = plan.StripeSeatPlanId,
 								                    Quantity = additionalSeats
-												Billing updates

- Break monthly and annual plans into two.
- Add upgrade and adjust additional users

											
										
										
											2017-04-10 09:36:21 -04:00
+								                });
 								            }
 								            await subscriptionService.UpdateAsync(organization.StripeSubscriptionId, subUpdateOptions);
 								        }
-												org user management apis

											
										
										
											2017-03-04 21:28:41 -05:00
+								        public async Task<Tuple<Organization, OrganizationUser>> SignUpAsync(OrganizationSignup signup)
-												organization signup apis and data model changes

											
										
										
											2017-03-03 00:07:11 -05:00
+								        {
-												added max subvault count. check max org users.

											
										
										
											2017-04-07 16:41:04 -04:00
+								            var plan = StaticStore.Plans.FirstOrDefault(p => p.Type == signup.Plan && !p.Disabled);
-												organization signup apis and data model changes

											
										
										
											2017-03-03 00:07:11 -05:00
+								            if(plan == null)
 								            {
 								                throw new BadRequestException("Plan not found.");
 								            }
-												stripe subscription creation

											
										
										
											2017-04-04 10:13:16 -04:00
+								            var customerService = new StripeCustomerService();
-												org signup plan details

											
										
										
											2017-04-04 12:57:50 -04:00
+								            var subscriptionService = new StripeSubscriptionService();
 								            StripeCustomer customer = null;
 								            StripeSubscription subscription = null;
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								            if(!plan.CanBuyAdditionalSeats && signup.AdditionalSeats > 0)
-												Billing updates

- Break monthly and annual plans into two.
- Add upgrade and adjust additional users

											
										
										
											2017-04-10 09:36:21 -04:00
+								            {
 								                throw new BadRequestException("Plan does not allow additional users.");
 								            }
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								            if(plan.CanBuyAdditionalSeats && plan.MaxAdditionalSeats.HasValue &&
 								                signup.AdditionalSeats > plan.MaxAdditionalSeats.Value)
-												max additional users check

											
										
										
											2017-04-08 10:52:10 -04:00
+								            {
 								                throw new BadRequestException($"Selected plan allows a maximum of " +
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								                    $"{plan.MaxAdditionalSeats.GetValueOrDefault(0)} additional users.");
-												max additional users check

											
										
										
											2017-04-08 10:52:10 -04:00
+								            }
-												limit org admins to 1 free organization

											
										
										
											2017-04-07 14:03:36 -04:00
+								            if(plan.Type == Enums.PlanType.Free)
 								            {
-												Org admin cleanup

- Added sproc to check if org admin for free org create
- Removed old proeprties not in user from org and subvault
- Added more cascade deletes

											
										
										
											2017-04-07 14:52:31 -04:00
+								                var ownerExistingOrgCount =
 								                    await _organizationUserRepository.GetCountByFreeOrganizationAdminUserAsync(signup.Owner.Id);
 								                if(ownerExistingOrgCount > 0)
-												limit org admins to 1 free organization

											
										
										
											2017-04-07 14:03:36 -04:00
+								                {
-												use one instead of 1

											
										
										
											2017-04-07 14:14:48 -04:00
+								                    throw new BadRequestException("You can only be an admin of one free organization.");
-												limit org admins to 1 free organization

											
										
										
											2017-04-07 14:03:36 -04:00
+								                }
 								            }
 								            else
-												stripe subscription creation

											
										
										
											2017-04-04 10:13:16 -04:00
+								            {
-												org signup plan details

											
										
										
											2017-04-04 12:57:50 -04:00
+								                customer = await customerService.CreateAsync(new StripeCustomerCreateOptions
 								                {
 								                    Description = signup.BusinessName,
 								                    Email = signup.BillingEmail,
 								                    SourceToken = signup.PaymentToken
 								                });
-												stripe subscription creation

											
										
										
											2017-04-04 10:13:16 -04:00
-												org signup plan details

											
										
										
											2017-04-04 12:57:50 -04:00
+								                var subCreateOptions = new StripeSubscriptionCreateOptions
 								                {
 								                    Items = new List<StripeSubscriptionItemOption>
 								                    {
 								                        new StripeSubscriptionItemOption
 								                        {
-												Billing updates

- Break monthly and annual plans into two.
- Add upgrade and adjust additional users

											
										
										
											2017-04-10 09:36:21 -04:00
+								                            PlanId = plan.StripePlanId,
-												org signup plan details

											
										
										
											2017-04-04 12:57:50 -04:00
+								                            Quantity = 1
 								                        }
 								                    }
 								                };
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								                if(signup.AdditionalSeats > 0)
-												org signup plan details

											
										
										
											2017-04-04 12:57:50 -04:00
+								                {
 								                    subCreateOptions.Items.Add(new StripeSubscriptionItemOption
 								                    {
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								                        PlanId = plan.StripeSeatPlanId,
 								                        Quantity = signup.AdditionalSeats
-												org signup plan details

											
										
										
											2017-04-04 12:57:50 -04:00
+								                    });
 								                }
 								                subscription = await subscriptionService.CreateAsync(customer.Id, subCreateOptions);
 								            }
-												stripe subscription creation

											
										
										
											2017-04-04 10:13:16 -04:00
-												organization signup apis and data model changes

											
										
										
											2017-03-03 00:07:11 -05:00
+								            var organization = new Organization
 								            {
-												org user management apis

											
										
										
											2017-03-04 21:28:41 -05:00
+								                Name = signup.Name,
-												org signup plan details

											
										
										
											2017-04-04 12:57:50 -04:00
+								                BillingEmail = signup.BillingEmail,
 								                BusinessName = signup.BusinessName,
-												organization signup apis and data model changes

											
										
										
											2017-03-03 00:07:11 -05:00
+								                PlanType = plan.Type,
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								                Seats = (short)(plan.BaseSeats + signup.AdditionalSeats),
-												added max subvault count. check max org users.

											
										
										
											2017-04-07 16:41:04 -04:00
+								                MaxSubvaults = plan.MaxSubvaults,
-												change payment API

											
										
										
											2017-04-08 16:41:40 -04:00
+								                Plan = plan.Name,
-												org signup plan details

											
										
										
											2017-04-04 12:57:50 -04:00
+								                StripeCustomerId = customer?.Id,
 								                StripeSubscriptionId = subscription?.Id,
-												organization signup apis and data model changes

											
										
										
											2017-03-03 00:07:11 -05:00
+								                CreationDate = DateTime.UtcNow,
 								                RevisionDate = DateTime.UtcNow
 								            };
 								            try
 								            {
-												org signup plan details

											
										
										
											2017-04-04 12:57:50 -04:00
+								                await _organizationRepository.CreateAsync(organization);
-												organization signup apis and data model changes

											
										
										
											2017-03-03 00:07:11 -05:00
+								                var orgUser = new OrganizationUser
 								                {
 								                    OrganizationId = organization.Id,
-												org user management apis

											
										
										
											2017-03-04 21:28:41 -05:00
+								                    UserId = signup.Owner.Id,
 								                    Email = signup.Owner.Email,
 								                    Key = signup.OwnerKey,
-												organization signup apis and data model changes

											
										
										
											2017-03-03 00:07:11 -05:00
+								                    Type = Enums.OrganizationUserType.Owner,
 								                    Status = Enums.OrganizationUserStatusType.Confirmed,
 								                    CreationDate = DateTime.UtcNow,
 								                    RevisionDate = DateTime.UtcNow
 								                };
 								                await _organizationUserRepository.CreateAsync(orgUser);
 								                return new Tuple<Organization, OrganizationUser>(organization, orgUser);
 								            }
 								            catch
 								            {
-												org signup plan details

											
										
										
											2017-04-04 12:57:50 -04:00
+								                if(subscription != null)
 								                {
 								                    await subscriptionService.CancelAsync(subscription.Id);
 								                }
 								                // TODO: reverse payments
 								                if(organization.Id != default(Guid))
 								                {
 								                    await _organizationRepository.DeleteAsync(organization);
 								                }
-												organization signup apis and data model changes

											
										
										
											2017-03-03 00:07:11 -05:00
+								                throw;
 								            }
 								        }
-												org user management apis

											
										
										
											2017-03-04 21:28:41 -05:00
-												organization user apis, hardening, completeness

											
										
										
											2017-03-23 00:17:34 -04:00
+								        public async Task<OrganizationUser> InviteUserAsync(Guid organizationId, Guid invitingUserId, string email,
 								            Enums.OrganizationUserType type, IEnumerable<SubvaultUser> subvaults)
-												org user management apis

											
										
										
											2017-03-04 21:28:41 -05:00
+								        {
-												added max subvault count. check max org users.

											
										
										
											2017-04-07 16:41:04 -04:00
+								            var organization = await _organizationRepository.GetByIdAsync(organizationId);
 								            if(organization == null)
 								            {
 								                throw new NotFoundException();
 								            }
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								            if(organization.Seats.HasValue)
-												added max subvault count. check max org users.

											
										
										
											2017-04-07 16:41:04 -04:00
+								            {
 								                var userCount = await _organizationUserRepository.GetCountByOrganizationIdAsync(organizationId);
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								                if(userCount >= organization.Seats.Value)
-												added max subvault count. check max org users.

											
										
										
											2017-04-07 16:41:04 -04:00
+								                {
 								                    throw new BadRequestException("You have reached the maximum number of users " +
-												separate plans for month vs annual. users => seats

											
										
										
											2017-04-10 10:44:27 -04:00
+								                        $"({organization.Seats.Value}) for this organization.");
-												added max subvault count. check max org users.

											
										
										
											2017-04-07 16:41:04 -04:00
+								                }
 								            }
-												org invite validation and email tweaks

											
										
										
											2017-03-28 21:16:19 -04:00
+								            // Make sure user is not already invited
 								            var existingOrgUser = await _organizationUserRepository.GetByOrganizationAsync(organizationId, email);
 								            if(existingOrgUser != null)
 								            {
 								                throw new BadRequestException("User already invited.");
 								            }
-												organization user apis, hardening, completeness

											
										
										
											2017-03-23 00:17:34 -04:00
-												org invite validation and email tweaks

											
										
										
											2017-03-28 21:16:19 -04:00
+								            var orgSubvaults = await _subvaultRepository.GetManyByOrganizationIdAsync(organizationId);
 								            var filteredSubvaults = subvaults.Where(s => orgSubvaults.Any(os => os.Id == s.SubvaultId));
-												organization user apis, hardening, completeness

											
										
										
											2017-03-23 00:17:34 -04:00
-												org user management apis

											
										
										
											2017-03-04 21:28:41 -05:00
+								            var orgUser = new OrganizationUser
 								            {
 								                OrganizationId = organizationId,
 								                UserId = null,
 								                Email = email,
 								                Key = null,
-												manage user type

											
										
										
											2017-03-13 23:31:17 -04:00
+								                Type = type,
-												org user management apis

											
										
										
											2017-03-04 21:28:41 -05:00
+								                Status = Enums.OrganizationUserStatusType.Invited,
 								                CreationDate = DateTime.UtcNow,
 								                RevisionDate = DateTime.UtcNow
 								            };
 								            await _organizationUserRepository.CreateAsync(orgUser);
-												org invite validation and email tweaks

											
										
										
											2017-03-28 21:16:19 -04:00
+								            await SaveUserSubvaultsAsync(orgUser, filteredSubvaults, true);
-												invite token is org user based

											
										
										
											2017-03-23 11:51:37 -04:00
+								            await SendInviteAsync(orgUser);
-												org user management apis

											
										
										
											2017-03-04 21:28:41 -05:00
 								            return orgUser;
 								        }
-												organization user apis, hardening, completeness

											
										
										
											2017-03-23 00:17:34 -04:00
+								        public async Task ResendInviteAsync(Guid organizationId, Guid invitingUserId, Guid organizationUserId)
 								        {
 								            var orgUser = await _organizationUserRepository.GetByIdAsync(organizationUserId);
 								            if(orgUser == null || orgUser.OrganizationId != organizationId ||
-												small logic fix

											
										
										
											2017-03-23 00:39:55 -04:00
+								                orgUser.Status != Enums.OrganizationUserStatusType.Invited)
-												organization user apis, hardening, completeness

											
										
										
											2017-03-23 00:17:34 -04:00
+								            {
 								                throw new BadRequestException("User invalid.");
 								            }
-												invite token is org user based

											
										
										
											2017-03-23 11:51:37 -04:00
+								            await SendInviteAsync(orgUser);
-												organization user apis, hardening, completeness

											
										
										
											2017-03-23 00:17:34 -04:00
+								        }
-												invite token is org user based

											
										
										
											2017-03-23 11:51:37 -04:00
+								        private async Task SendInviteAsync(OrganizationUser orgUser)
-												organization user apis, hardening, completeness

											
										
										
											2017-03-23 00:17:34 -04:00
+								        {
-												org invite validation and email tweaks

											
										
										
											2017-03-28 21:16:19 -04:00
+								            var org = await _organizationRepository.GetByIdAsync(orgUser.OrganizationId);
-												invite token is org user based

											
										
										
											2017-03-23 11:51:37 -04:00
+								            var nowMillis = CoreHelpers.ToEpocMilliseconds(DateTime.UtcNow);
-												organization user apis, hardening, completeness

											
										
										
											2017-03-23 00:17:34 -04:00
+								            var token = _dataProtector.Protect(
-												invite token is org user based

											
										
										
											2017-03-23 11:51:37 -04:00
+								                $"OrganizationUserInvite {orgUser.Id} {orgUser.Email} {nowMillis}");
-												org invite validation and email tweaks

											
										
										
											2017-03-28 21:16:19 -04:00
+								            await _mailService.SendOrganizationInviteEmailAsync(org.Name, orgUser, token);
-												organization user apis, hardening, completeness

											
										
										
											2017-03-23 00:17:34 -04:00
+								        }
-												org user management apis

											
										
										
											2017-03-04 21:28:41 -05:00
+								        public async Task<OrganizationUser> AcceptUserAsync(Guid organizationUserId, User user, string token)
 								        {
 								            var orgUser = await _organizationUserRepository.GetByIdAsync(organizationUserId);
-												organization user apis, hardening, completeness

											
										
										
											2017-03-23 00:17:34 -04:00
+								            if(orgUser == null || orgUser.Email != user.Email)
-												org user management apis

											
										
										
											2017-03-04 21:28:41 -05:00
+								            {
 								                throw new BadRequestException("User invalid.");
 								            }
-												organization user apis, hardening, completeness

											
										
										
											2017-03-23 00:17:34 -04:00
+								            if(orgUser.Status != Enums.OrganizationUserStatusType.Invited)
 								            {
 								                throw new BadRequestException("Already accepted.");
 								            }
-												Org admin cleanup

- Added sproc to check if org admin for free org create
- Removed old proeprties not in user from org and subvault
- Added more cascade deletes

											
										
										
											2017-04-07 14:52:31 -04:00
+								            var ownerExistingOrgCount = await _organizationUserRepository.GetCountByFreeOrganizationAdminUserAsync(user.Id);
 								            if(ownerExistingOrgCount > 0)
-												limit org admins to 1 free organization

											
										
										
											2017-04-07 14:03:36 -04:00
+								            {
-												use one instead of 1

											
										
										
											2017-04-07 14:14:48 -04:00
+								                throw new BadRequestException("You can only be an admin of one free organization.");
-												limit org admins to 1 free organization

											
										
										
											2017-04-07 14:03:36 -04:00
+								            }
-												organization user apis, hardening, completeness

											
										
										
											2017-03-23 00:17:34 -04:00
+								            var tokenValidationFailed = true;
 								            try
 								            {
 								                var unprotectedData = _dataProtector.Unprotect(token);
 								                var dataParts = unprotectedData.Split(' ');
-												invite token is org user based

											
										
										
											2017-03-23 11:51:37 -04:00
+								                if(dataParts.Length == 4 && dataParts[0] == "OrganizationUserInvite" &&
 								                    new Guid(dataParts[1]) == orgUser.Id && dataParts[2] == user.Email)
-												organization user apis, hardening, completeness

											
										
										
											2017-03-23 00:17:34 -04:00
+								                {
 								                    var creationTime = CoreHelpers.FromEpocMilliseconds(Convert.ToInt64(dataParts[3]));
 								                    tokenValidationFailed = creationTime.AddDays(5) < DateTime.UtcNow;
 								                }
 								            }
 								            catch
 								            {
 								                tokenValidationFailed = true;
 								            }
 								            if(tokenValidationFailed)
 								            {
 								                throw new BadRequestException("Invalid token.");
 								            }
-												org user management apis

											
										
										
											2017-03-04 21:28:41 -05:00
 								            orgUser.Status = Enums.OrganizationUserStatusType.Accepted;
-												org user invite emails

											
										
										
											2017-03-23 16:56:25 -04:00
+								            orgUser.UserId = user.Id;
-												org user management apis

											
										
										
											2017-03-04 21:28:41 -05:00
+								            orgUser.Email = null;
 								            await _organizationUserRepository.ReplaceAsync(orgUser);
 								            // TODO: send email
 								            return orgUser;
 								        }
-												organization user apis, hardening, completeness

											
										
										
											2017-03-23 00:17:34 -04:00
+								        public async Task<OrganizationUser> ConfirmUserAsync(Guid organizationId, Guid organizationUserId, string key,
 								            Guid confirmingUserId)
-												org user management apis

											
										
										
											2017-03-04 21:28:41 -05:00
+								        {
 								            var orgUser = await _organizationUserRepository.GetByIdAsync(organizationUserId);
-												organization user apis, hardening, completeness

											
										
										
											2017-03-23 00:17:34 -04:00
+								            if(orgUser == null || orgUser.Status != Enums.OrganizationUserStatusType.Accepted ||
 								                orgUser.OrganizationId != organizationId)
-												org user management apis

											
										
										
											2017-03-04 21:28:41 -05:00
+								            {
-												organization user apis, hardening, completeness

											
										
										
											2017-03-23 00:17:34 -04:00
+								                throw new BadRequestException("User not valid.");
-												org user management apis

											
										
										
											2017-03-04 21:28:41 -05:00
+								            }
 								            orgUser.Status = Enums.OrganizationUserStatusType.Confirmed;
 								            orgUser.Key = key;
 								            orgUser.Email = null;
 								            await _organizationUserRepository.ReplaceAsync(orgUser);
 								            // TODO: send email
 								            return orgUser;
 								        }
-												SubvaultUser APIs and services

											
										
										
											2017-03-09 23:58:43 -05:00
-												organization user apis, hardening, completeness

											
										
										
											2017-03-23 00:17:34 -04:00
+								        public async Task SaveUserAsync(OrganizationUser user, Guid savingUserId, IEnumerable<SubvaultUser> subvaults)
-												SubvaultUser APIs and services

											
										
										
											2017-03-09 23:58:43 -05:00
+								        {
 								            if(user.Id.Equals(default(Guid)))
 								            {
 								                throw new BadRequestException("Invite the user first.");
 								            }
-												orgs must have one owner checks

											
										
										
											2017-03-29 21:26:19 -04:00
+								            var confirmedOwners = (await GetConfirmedOwnersAsync(user.OrganizationId)).ToList();
-												owner check when editing

											
										
										
											2017-04-03 13:24:49 -04:00
+								            if(user.Type != Enums.OrganizationUserType.Owner && confirmedOwners.Count == 1 && confirmedOwners[0].Id == user.Id)
-												orgs must have one owner checks

											
										
										
											2017-03-29 21:26:19 -04:00
+								            {
 								                throw new BadRequestException("Organization must have at least one confirmed owner.");
 								            }
 								            var orgSubvaults = await _subvaultRepository.GetManyByOrganizationIdAsync(user.OrganizationId);
 								            var filteredSubvaults = subvaults.Where(s => orgSubvaults.Any(os => os.Id == s.SubvaultId));
-												organization user apis, hardening, completeness

											
										
										
											2017-03-23 00:17:34 -04:00
-												SubvaultUser APIs and services

											
										
										
											2017-03-09 23:58:43 -05:00
+								            await _organizationUserRepository.ReplaceAsync(user);
-												orgs must have one owner checks

											
										
										
											2017-03-29 21:26:19 -04:00
+								            await SaveUserSubvaultsAsync(user, filteredSubvaults, false);
-												org user subvaults apis

											
										
										
											2017-03-11 22:42:27 -05:00
+								        }
-												SubvaultUser APIs and services

											
										
										
											2017-03-09 23:58:43 -05:00
-												organization user apis, hardening, completeness

											
										
										
											2017-03-23 00:17:34 -04:00
+								        public async Task DeleteUserAsync(Guid organizationId, Guid organizationUserId, Guid deletingUserId)
 								        {
 								            var orgUser = await _organizationUserRepository.GetByIdAsync(organizationUserId);
 								            if(orgUser == null || orgUser.OrganizationId != organizationId)
 								            {
 								                throw new BadRequestException("User not valid.");
 								            }
-												orgs must have one owner checks

											
										
										
											2017-03-29 21:26:19 -04:00
+								            var confirmedOwners = (await GetConfirmedOwnersAsync(organizationId)).ToList();
 								            if(confirmedOwners.Count == 1 && confirmedOwners[0].Id == organizationUserId)
 								            {
 								                throw new BadRequestException("Organization must have at least one confirmed owner.");
 								            }
-												organization user apis, hardening, completeness

											
										
										
											2017-03-23 00:17:34 -04:00
+								            await _organizationUserRepository.DeleteAsync(orgUser);
 								        }
-												orgs must have one owner checks

											
										
										
											2017-03-29 21:26:19 -04:00
+								        private async Task<IEnumerable<OrganizationUser>> GetConfirmedOwnersAsync(Guid organizationId)
 								        {
 								            var owners = await _organizationUserRepository.GetManyByOrganizationAsync(organizationId,
 								                Enums.OrganizationUserType.Owner);
 								            return owners.Where(o => o.Status == Enums.OrganizationUserStatusType.Confirmed);
 								        }
-												org user subvaults apis

											
										
										
											2017-03-11 22:42:27 -05:00
+								        private async Task SaveUserSubvaultsAsync(OrganizationUser user, IEnumerable<SubvaultUser> subvaults, bool newUser)
 								        {
-												user vault associations

											
										
										
											2017-03-13 22:54:24 -04:00
+								            if(subvaults == null)
 								            {
 								                subvaults = new List<SubvaultUser>();
 								            }
-												SubvaultUser APIs and services

											
										
										
											2017-03-09 23:58:43 -05:00
+								            var orgSubvaults = await _subvaultRepository.GetManyByOrganizationIdAsync(user.OrganizationId);
-												org user subvaults apis

											
										
										
											2017-03-11 22:42:27 -05:00
+								            var currentUserSubvaults = newUser ? null : await _subvaultUserRepository.GetManyByOrganizationUserIdAsync(user.Id);
-												SubvaultUser APIs and services

											
										
										
											2017-03-09 23:58:43 -05:00
 								            // Let's make sure all these belong to this user and organization.
-												org user subvaults apis

											
										
										
											2017-03-11 22:42:27 -05:00
+								            var filteredSubvaults = subvaults.Where(s => orgSubvaults.Any(os => os.Id == s.SubvaultId));
-												SubvaultUser APIs and services

											
										
										
											2017-03-09 23:58:43 -05:00
+								            foreach(var subvault in filteredSubvaults)
 								            {
-												user vault associations

											
										
										
											2017-03-13 22:54:24 -04:00
+								                var existingSubvaultUser = currentUserSubvaults?.FirstOrDefault(cs => cs.SubvaultId == subvault.SubvaultId);
 								                if(existingSubvaultUser != null)
 								                {
 								                    subvault.Id = existingSubvaultUser.Id;
 								                    subvault.CreationDate = existingSubvaultUser.CreationDate;
 								                }
-												org user subvaults apis

											
										
										
											2017-03-11 22:42:27 -05:00
+								                subvault.OrganizationUserId = user.Id;
-												SubvaultUser APIs and services

											
										
										
											2017-03-09 23:58:43 -05:00
+								                await _subvaultUserRepository.UpsertAsync(subvault);
 								            }
-												org user subvaults apis

											
										
										
											2017-03-11 22:42:27 -05:00
+								            if(!newUser)
-												SubvaultUser APIs and services

											
										
										
											2017-03-09 23:58:43 -05:00
+								            {
-												user vault associations

											
										
										
											2017-03-13 22:54:24 -04:00
+								                var subvaultsToDelete = currentUserSubvaults.Where(cs =>
 								                    !filteredSubvaults.Any(s => s.SubvaultId == cs.SubvaultId));
-												org user subvaults apis

											
										
										
											2017-03-11 22:42:27 -05:00
+								                foreach(var subvault in subvaultsToDelete)
 								                {
 								                    await _subvaultUserRepository.DeleteAsync(subvault);
 								                }
-												SubvaultUser APIs and services

											
										
										
											2017-03-09 23:58:43 -05:00
+								            }
 								        }
-												organization signup apis and data model changes

											
										
										
											2017-03-03 00:07:11 -05:00
+								    }
 								}