[EC-787] Create a method in PolicyService to check if a policy applies to a user (#2537)

* [EC-787] Add new stored procedure OrganizationUser_ReadByUserIdWithPolicyDetails * [EC-787] Add new method IOrganizationUserRepository.GetByUserIdWithPolicyDetailsAsync * [EC-787] Add OrganizationUserPolicyDetails to represent policies applicable to a specific user * [EC-787] Add method IPolicyService.GetPoliciesApplicableToUser to filter the obtained policy data * [EC-787] Returning PolicyData on stored procedures * [EC-787] Changed GetPoliciesApplicableToUserAsync to return ICollection * [EC-787] Switched all usings of IPolicyRepository.GetManyByTypeApplicableToUserIdAsync to IPolicyService.GetPoliciesApplicableToUserAsync * [EC-787] Removed policy logic from BaseRequestValidator and added usage of IPolicyService.GetPoliciesApplicableToUserAsync * [EC-787] Added unit tests for IPolicyService.GetPoliciesApplicableToUserAsync * [EC-787] Added unit tests for OrganizationUserRepository.GetByUserIdWithPolicyDetailsAsync * [EC-787] Changed integration test to check for single result * [EC-787] Marked IPolicyRepository methods GetManyByTypeApplicableToUserIdAsync and GetCountByTypeApplicableToUserIdAsync as obsolete * [EC-787] Returning OrganizationUserId on OrganizationUser_ReadByUserIdWithPolicyDetails * [EC-787] Remove deprecated stored procedures Policy_CountByTypeApplicableToUser, Policy_ReadByTypeApplicableToUser and function PolicyApplicableToUser * [EC-787] Added method IPolicyService.AnyPoliciesApplicableToUserAsync * [EC-787] Removed 'OrganizationUserType' parameter from queries * [EC-787] Formatted OrganizationUserPolicyDetailsCompare * [EC-787] Renamed SQL migration files * [EC-787] Changed OrganizationUser_ReadByUserIdWithPolicyDetails to return Permissions json * [EC-787] Refactored excluded user types for each Policy * [EC-787] Updated dates on dbo_future files * [EC-787] Remove dbo_future files from sql proj * [EC-787] Added parameter PolicyType to IOrganizationUserRepository.GetByUserIdWithPolicyDetailsAsync * [EC-787] Rewrote OrganizationUser_ReadByUserIdWithPolicyDetails and added parameter for PolicyType * Update util/Migrator/DbScripts/2023-03-10_00_OrganizationUserReadByUserIdWithPolicyDetails.sql Co-authored-by: Thomas Rittson <31796059+eliykat@users.noreply.github.com> --------- Co-authored-by: Thomas Rittson <31796059+eliykat@users.noreply.github.com>
2026-02-10 02:43:17 +08:00 · 2023-05-12 08:22:19 +01:00
parent 99b0953acd
commit 8d3fe12170
26 changed files with 560 additions and 319 deletions
--- a/src/Infrastructure.EntityFramework/Repositories/Queries/PolicyReadByTypeApplicableToUserQuery.cs
+++ b/src/Infrastructure.EntityFramework/Repositories/Queries/PolicyReadByTypeApplicableToUserQuery.cs
@@ -1,50 +0,0 @@
-using Bit.Core.Enums;
-using Bit.Infrastructure.EntityFramework.Models;
-
-namespace Bit.Infrastructure.EntityFramework.Repositories.Queries;
-
-public class PolicyReadByTypeApplicableToUserQuery : IQuery<Policy>
-{
-    private readonly Guid _userId;
-    private readonly PolicyType _policyType;
-    private readonly OrganizationUserStatusType _minimumStatus;
-
-    public PolicyReadByTypeApplicableToUserQuery(Guid userId, PolicyType policyType, OrganizationUserStatusType minimumStatus)
-    {
-        _userId = userId;
-        _policyType = policyType;
-        _minimumStatus = minimumStatus;
-    }
-
-    public IQueryable<Policy> Run(DatabaseContext dbContext)
-    {
-        var providerOrganizations = from pu in dbContext.ProviderUsers
-                                    where pu.UserId == _userId
-                                    join po in dbContext.ProviderOrganizations
-                                        on pu.ProviderId equals po.ProviderId
-                                    select po;
-
-        string userEmail = null;
-        if (_minimumStatus == OrganizationUserStatusType.Invited)
-        {
-            // Invited orgUsers do not have a UserId associated with them, so we have to match up their email
-            userEmail = dbContext.Users.Find(_userId)?.Email;
-        }
-
-        var query = from p in dbContext.Policies
-                    join ou in dbContext.OrganizationUsers
-                        on p.OrganizationId equals ou.OrganizationId
-                    where
-                        ((_minimumStatus > OrganizationUserStatusType.Invited && ou.UserId == _userId) ||
-                            (_minimumStatus == OrganizationUserStatusType.Invited && ou.Email == userEmail)) &&
-                        p.Type == _policyType &&
-                        p.Enabled &&
-                        ou.Status >= _minimumStatus &&
-                        ou.Type >= OrganizationUserType.User &&
-                        (ou.Permissions == null ||
-                            ou.Permissions.Contains($"\"managePolicies\":false")) &&
-                        !providerOrganizations.Any(po => po.OrganizationId == p.OrganizationId)
-                    select p;
-        return query;
-    }
-}