[AC-1707] Restrict provider access to items (#8265)

* [AC-1707] Add feature flag * [AC-1707] Prevent loading ciphers for provider users in the org vault when the feature flag is enabled * [AC-1707] Ensure new canEditAllCiphers logic only applies to organizations that have FC enabled * [AC-1707] Update editAllCiphers helper to check for restrictProviderAccess feature flag * [AC-1707] Remove un-used vaultFilterComponent reference * [AC-1707] Hide vault filter for providers * [AC-1707] Add search to vault header for provider users * [AC-1707] Hide New Item button for Providers when restrict provider access feature flag is enabled * [AC-1707] Remove leftover debug statement * [AC-1707] Update canEditAllCiphers references to consider the restrictProviderAccessFlag * [AC-1707] Fix collections component changes from main * [AC-1707] Fix some feature flag issues from merge with main * [AC-1707] Avoid 'readonly' collection dialog for providers * [AC-1707] Fix broken Browser component * [AC-1707] Fix broken Desktop component * [AC-1707] Add restrict provider flag to add access badge logic
2025-12-18 09:13:33 +00:00 · 2024-05-07 12:35:28 -07:00
parent 27d4178287
commit 3a71322510
18 changed files with 273 additions and 57 deletions
--- a/apps/web/src/app/vault/org-vault/vault-header/vault-header.component.ts
+++ b/apps/web/src/app/vault/org-vault/vault-header/vault-header.component.ts
@@ -43,6 +43,9 @@ export class VaultHeaderComponent implements OnInit {
  /** Currently selected collection */
  @Input() collection?: TreeNode<CollectionAdminView>;

+  /** The current search text in the header */
+  @Input() searchText: string;
+
  /** Emits an event when the new item button is clicked in the header */
  @Output() onAddCipher = new EventEmitter<void>();

@@ -55,10 +58,14 @@ export class VaultHeaderComponent implements OnInit {
  /** Emits an event when the delete collection button is clicked in the header */
  @Output() onDeleteCollection = new EventEmitter<void>();

+  /** Emits an event when the search text changes in the header*/
+  @Output() searchTextChanged = new EventEmitter<string>();
+
  protected CollectionDialogTabType = CollectionDialogTabType;
  protected organizations$ = this.organizationService.organizations$;

  private flexibleCollectionsV1Enabled = false;
+  private restrictProviderAccessFlag = false;

  constructor(
    private organizationService: OrganizationService,
@@ -73,6 +80,9 @@ export class VaultHeaderComponent implements OnInit {
    this.flexibleCollectionsV1Enabled = await firstValueFrom(
      this.configService.getFeatureFlag$(FeatureFlag.FlexibleCollectionsV1),
    );
+    this.restrictProviderAccessFlag = await this.configService.getFeatureFlag(
+      FeatureFlag.RestrictProviderAccess,
+    );
  }

  get title() {
@@ -197,7 +207,23 @@ export class VaultHeaderComponent implements OnInit {
    return this.collection.node.canDelete(this.organization);
  }

+  get canCreateCollection(): boolean {
+    return this.organization?.canCreateNewCollections;
+  }
+
+  get canCreateCipher(): boolean {
+    if (this.organization?.isProviderUser && this.restrictProviderAccessFlag) {
+      return false;
+    }
+    return true;
+  }
+
  deleteCollection() {
    this.onDeleteCollection.emit();
  }
+
+  onSearchTextChanged(t: string) {
+    this.searchText = t;
+    this.searchTextChanged.emit(t);
+  }
 }