[AC-1707] Restrict provider access to items (#8265)

* [AC-1707] Add feature flag * [AC-1707] Prevent loading ciphers for provider users in the org vault when the feature flag is enabled * [AC-1707] Ensure new canEditAllCiphers logic only applies to organizations that have FC enabled * [AC-1707] Update editAllCiphers helper to check for restrictProviderAccess feature flag * [AC-1707] Remove un-used vaultFilterComponent reference * [AC-1707] Hide vault filter for providers * [AC-1707] Add search to vault header for provider users * [AC-1707] Hide New Item button for Providers when restrict provider access feature flag is enabled * [AC-1707] Remove leftover debug statement * [AC-1707] Update canEditAllCiphers references to consider the restrictProviderAccessFlag * [AC-1707] Fix collections component changes from main * [AC-1707] Fix some feature flag issues from merge with main * [AC-1707] Avoid 'readonly' collection dialog for providers * [AC-1707] Fix broken Browser component * [AC-1707] Fix broken Desktop component * [AC-1707] Add restrict provider flag to add access badge logic
2025-12-18 01:03:35 +00:00 · 2024-05-07 12:35:28 -07:00
parent 27d4178287
commit 3a71322510
18 changed files with 273 additions and 57 deletions
--- a/apps/web/src/app/vault/org-vault/add-edit.component.ts
+++ b/apps/web/src/app/vault/org-vault/add-edit.component.ts
@@ -82,7 +82,12 @@ export class AddEditComponent extends BaseAddEditComponent {
  }

  protected loadCollections() {
-    if (!this.organization.canEditAllCiphers(this.flexibleCollectionsV1Enabled)) {
+    if (
+      !this.organization.canEditAllCiphers(
+        this.flexibleCollectionsV1Enabled,
+        this.restrictProviderAccess,
+      )
+    ) {
      return super.loadCollections();
    }
    return Promise.resolve(this.collections);
@@ -93,7 +98,10 @@ export class AddEditComponent extends BaseAddEditComponent {
    const firstCipherCheck = await super.loadCipher();

    if (
-      !this.organization.canEditAllCiphers(this.flexibleCollectionsV1Enabled) &&
+      !this.organization.canEditAllCiphers(
+        this.flexibleCollectionsV1Enabled,
+        this.restrictProviderAccess,
+      ) &&
      firstCipherCheck != null
    ) {
      return firstCipherCheck;
@@ -108,14 +116,24 @@ export class AddEditComponent extends BaseAddEditComponent {
  }

  protected encryptCipher() {
-    if (!this.organization.canEditAllCiphers(this.flexibleCollectionsV1Enabled)) {
+    if (
+      !this.organization.canEditAllCiphers(
+        this.flexibleCollectionsV1Enabled,
+        this.restrictProviderAccess,
+      )
+    ) {
      return super.encryptCipher();
    }
    return this.cipherService.encrypt(this.cipher, null, null, this.originalCipher);
  }

  protected async deleteCipher() {
-    if (!this.organization.canEditAllCiphers(this.flexibleCollectionsV1Enabled)) {
+    if (
+      !this.organization.canEditAllCiphers(
+        this.flexibleCollectionsV1Enabled,
+        this.restrictProviderAccess,
+      )
+    ) {
      return super.deleteCipher();
    }
    return this.cipher.isDeleted