[AC-1330] [AC-1816] Deprecate AccessAll in CollectionCipher sprocs (#3480)

2026-02-03 23:53:19 +08:00 · 2023-12-06 11:10:39 +10:00
parent 59879f913b
commit dbf8907bfc
16 changed files with 582 additions and 42 deletions
--- a/src/Infrastructure.EntityFramework/Repositories/Queries/CollectionCipherReadByUserIdCipherIdQuery.cs
+++ b/src/Infrastructure.EntityFramework/Repositories/Queries/CollectionCipherReadByUserIdCipherIdQuery.cs
@@ -6,7 +6,7 @@ public class CollectionCipherReadByUserIdCipherIdQuery : CollectionCipherReadByU
 {
    private readonly Guid _cipherId;

-    public CollectionCipherReadByUserIdCipherIdQuery(Guid userId, Guid cipherId) : base(userId)
+    public CollectionCipherReadByUserIdCipherIdQuery(Guid userId, Guid cipherId, bool useFlexibleCollections) : base(userId, useFlexibleCollections)
    {
        _cipherId = cipherId;
    }
--- a/src/Infrastructure.EntityFramework/Repositories/Queries/CollectionCipherReadByUserIdQuery.cs
+++ b/src/Infrastructure.EntityFramework/Repositories/Queries/CollectionCipherReadByUserIdQuery.cs
@@ -6,13 +6,58 @@ namespace Bit.Infrastructure.EntityFramework.Repositories.Queries;
 public class CollectionCipherReadByUserIdQuery : IQuery<CollectionCipher>
 {
    private readonly Guid _userId;
+    private readonly bool _useFlexibleCollections;

-    public CollectionCipherReadByUserIdQuery(Guid userId)
+    public CollectionCipherReadByUserIdQuery(Guid userId, bool useFlexibleCollections)
    {
        _userId = userId;
+        _useFlexibleCollections = useFlexibleCollections;
    }

    public virtual IQueryable<CollectionCipher> Run(DatabaseContext dbContext)
+    {
+        return _useFlexibleCollections
+            ? Run_VNext(dbContext)
+            : Run_VCurrent(dbContext);
+    }
+
+    private IQueryable<CollectionCipher> Run_VNext(DatabaseContext dbContext)
+    {
+        var query = from cc in dbContext.CollectionCiphers
+
+                    join c in dbContext.Collections
+                        on cc.CollectionId equals c.Id
+
+                    join ou in dbContext.OrganizationUsers
+                        on new { c.OrganizationId, UserId = (Guid?)_userId } equals
+                           new { ou.OrganizationId, ou.UserId }
+
+                    join cu in dbContext.CollectionUsers
+                        on new { CollectionId = c.Id, OrganizationUserId = ou.Id } equals
+                           new { cu.CollectionId, cu.OrganizationUserId } into cu_g
+                    from cu in cu_g.DefaultIfEmpty()
+
+                    join gu in dbContext.GroupUsers
+                        on new { CollectionId = (Guid?)cu.CollectionId, OrganizationUserId = ou.Id } equals
+                           new { CollectionId = (Guid?)null, gu.OrganizationUserId } into gu_g
+                    from gu in gu_g.DefaultIfEmpty()
+
+                    join g in dbContext.Groups
+                        on gu.GroupId equals g.Id into g_g
+                    from g in g_g.DefaultIfEmpty()
+
+                    join cg in dbContext.CollectionGroups
+                        on new { CollectionId = c.Id, gu.GroupId } equals
+                           new { cg.CollectionId, cg.GroupId } into cg_g
+                    from cg in cg_g.DefaultIfEmpty()
+
+                    where ou.Status == OrganizationUserStatusType.Confirmed &&
+                        (cu.CollectionId != null || cg.CollectionId != null)
+                    select cc;
+        return query;
+    }
+
+    private IQueryable<CollectionCipher> Run_VCurrent(DatabaseContext dbContext)
    {
        var query = from cc in dbContext.CollectionCiphers

--- a/src/Infrastructure.EntityFramework/Repositories/Queries/CollectionsReadByOrganizationIdUserIdQuery.cs
+++ b/src/Infrastructure.EntityFramework/Repositories/Queries/CollectionsReadByOrganizationIdUserIdQuery.cs
@@ -0,0 +1,44 @@
+using Bit.Core.Enums;
+using Bit.Infrastructure.EntityFramework.Models;
+
+namespace Bit.Infrastructure.EntityFramework.Repositories.Queries;
+
+public class CollectionsReadByOrganizationIdUserIdQuery : IQuery<Collection>
+{
+    private readonly Guid? _organizationId;
+    private readonly Guid _userId;
+
+    public CollectionsReadByOrganizationIdUserIdQuery(Guid? organizationId, Guid userId)
+    {
+        _organizationId = organizationId;
+        _userId = userId;
+    }
+
+    public virtual IQueryable<Collection> Run(DatabaseContext dbContext)
+    {
+        var query = from c in dbContext.Collections
+                    join o in dbContext.Organizations on c.OrganizationId equals o.Id
+                    join ou in dbContext.OrganizationUsers
+                        on new { OrganizationId = o.Id, UserId = (Guid?)_userId } equals
+                        new { ou.OrganizationId, ou.UserId }
+                    join cu in dbContext.CollectionUsers
+                        on new { CollectionId = c.Id, OrganizationUserId = ou.Id } equals
+                        new { cu.CollectionId, cu.OrganizationUserId } into cu_g
+                    from cu in cu_g.DefaultIfEmpty()
+                    join gu in dbContext.GroupUsers
+                        on new { CollectionId = (Guid?)cu.CollectionId, OrganizationUserId = ou.Id } equals
+                        new { CollectionId = (Guid?)null, gu.OrganizationUserId } into gu_g
+                    from gu in gu_g.DefaultIfEmpty()
+                    join g in dbContext.Groups on gu.GroupId equals g.Id into g_g
+                    from g in g_g.DefaultIfEmpty()
+                    join cg in dbContext.CollectionGroups
+                        on new { CollectionId = c.Id, gu.GroupId } equals
+                        new { cg.CollectionId, cg.GroupId } into cg_g
+                    from cg in cg_g.DefaultIfEmpty()
+                    where o.Id == _organizationId && o.Enabled && ou.Status == OrganizationUserStatusType.Confirmed
+                          && (!cu.ReadOnly || !cg.ReadOnly)
+                    select c;
+
+        return query;
+    }
+}