bitwarden/browser
1
0
Fork 0
mirror of https://github.com/bitwarden/browser synced 2025-12-14 07:13:32 +00:00
Code Issues Releases Wiki Activity

[SM-378] Enable SM on a user basis (#4497)

Browse Source 
* Add support for giving individual users access to secrets manager
This commit is contained in:
Oscar Hinton
2023-01-31 19:03:27 +01:00
committed by GitHub
parent 29cc94ed70
commit 2757fcee86
13 changed files with 51 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
libs/common/src/abstractions/organization-user/requests/organization-user-invite.request.ts
View File

@@ -6,6 +6,7 @@ export class OrganizationUserInviteRequest {
emails: string[] = [];
type: OrganizationUserType;
accessAll: boolean;
accessSecretsManager: boolean;
collections: SelectionReadOnlyRequest[] = [];
groups: string[];
permissions: PermissionsApi;

1
libs/common/src/abstractions/organization-user/requests/organization-user-update.request.ts
View File

@@ -5,6 +5,7 @@ import { SelectionReadOnlyRequest } from "../../../models/request/selection-read
export class OrganizationUserUpdateRequest {
type: OrganizationUserType;
accessAll: boolean;
accessSecretsManager: boolean;
collections: SelectionReadOnlyRequest[] = [];
groups: string[] = [];
permissions: PermissionsApi;

2
libs/common/src/abstractions/organization-user/responses/organization-user.response.ts
View File

@@ -11,6 +11,7 @@ export class OrganizationUserResponse extends BaseResponse {
type: OrganizationUserType;
status: OrganizationUserStatusType;
accessAll: boolean;
accessSecretsManager: boolean;
permissions: PermissionsApi;
resetPasswordEnrolled: boolean;
collections: SelectionReadOnlyResponse[] = [];
@@ -24,6 +25,7 @@ export class OrganizationUserResponse extends BaseResponse {
this.status = this.getResponseProperty("Status");
this.permissions = new PermissionsApi(this.getResponseProperty("Permissions"));
this.accessAll = this.getResponseProperty("AccessAll");
this.accessSecretsManager = this.getResponseProperty("AccessSecretsManager");
this.resetPasswordEnrolled = this.getResponseProperty("ResetPasswordEnrolled");
const collections = this.getResponseProperty("Collections");

2
libs/common/src/models/data/organization.data.ts
View File

@@ -45,6 +45,7 @@ export class OrganizationData {
familySponsorshipLastSyncDate?: Date;
familySponsorshipValidUntil?: Date;
familySponsorshipToDelete?: boolean;
accessSecretsManager: boolean;
constructor(response: ProfileOrganizationResponse) {
this.id = response.id;
@@ -86,5 +87,6 @@ export class OrganizationData {
this.familySponsorshipLastSyncDate = response.familySponsorshipLastSyncDate;
this.familySponsorshipValidUntil = response.familySponsorshipValidUntil;
this.familySponsorshipToDelete = response.familySponsorshipToDelete;
this.accessSecretsManager = response.accessSecretsManager;
}
}

4
libs/common/src/models/domain/organization.ts
View File

@@ -47,6 +47,7 @@ export class Organization {
familySponsorshipLastSyncDate?: Date;
familySponsorshipValidUntil?: Date;
familySponsorshipToDelete?: boolean;
accessSecretsManager: boolean;
constructor(obj?: OrganizationData) {
if (obj == null) {
@@ -93,6 +94,7 @@ export class Organization {
this.familySponsorshipLastSyncDate = obj.familySponsorshipLastSyncDate;
this.familySponsorshipValidUntil = obj.familySponsorshipValidUntil;
this.familySponsorshipToDelete = obj.familySponsorshipToDelete;
this.accessSecretsManager = obj.accessSecretsManager;
}
get canAccess() {
@@ -199,7 +201,7 @@ export class Organization {
}
get canAccessSecretsManager() {
return this.useSecretsManager;
return this.useSecretsManager && this.accessSecretsManager;
}
static fromJSON(json: Jsonify<Organization>) {

2
libs/common/src/models/response/profile-organization.response.ts
View File

@@ -46,6 +46,7 @@ export class ProfileOrganizationResponse extends BaseResponse {
familySponsorshipLastSyncDate?: Date;
familySponsorshipValidUntil?: Date;
familySponsorshipToDelete?: boolean;
accessSecretsManager: boolean;
constructor(response: any) {
super(response);
@@ -99,5 +100,6 @@ export class ProfileOrganizationResponse extends BaseResponse {
this.familySponsorshipValidUntil = new Date(familySponsorshipValidUntilString);
}
this.familySponsorshipToDelete = this.getResponseProperty("FamilySponsorshipToDelete");
this.accessSecretsManager = this.getResponseProperty("AccessSecretsManager");
}
}