[PM-11450] Move organization-user domain to admin-console lib (#10785)

- move organization-user files from libs/common/src/admin-console into libs/admin-console/src/common
- add barrel files and update imports to use barrel files
- rename OrganizationUserService to OrganizationUserApiService
- rename OrganizationUserServiceImplementation to DefaultOrganizationUserApiService

libs/common/src/admin-console/abstractions/organization-user/organization-user.service.ts

@@ -1,265 +0,0 @@
-import { ListResponse } from "../../../models/response/list.response";
-
-import {
-  OrganizationUserAcceptInitRequest,
-  OrganizationUserAcceptRequest,
-  OrganizationUserBulkConfirmRequest,
-  OrganizationUserConfirmRequest,
-  OrganizationUserInviteRequest,
-  OrganizationUserResetPasswordEnrollmentRequest,
-  OrganizationUserResetPasswordRequest,
-  OrganizationUserUpdateRequest,
-} from "./requests";
-import {
-  OrganizationUserBulkPublicKeyResponse,
-  OrganizationUserBulkResponse,
-  OrganizationUserDetailsResponse,
-  OrganizationUserResetPasswordDetailsResponse,
-  OrganizationUserUserDetailsResponse,
-} from "./responses";
-
-/**
- * Service for interacting with Organization Users via the API
- */
-export abstract class OrganizationUserService {
-  /**
-   * Retrieve a single organization user by Id
-   * @param organizationId - Identifier for the user's organization
-   * @param id - Organization user identifier
-   * @param options - Options for the request
-   */
-  abstract getOrganizationUser(
-    organizationId: string,
-    id: string,
-    options?: {
-      includeGroups?: boolean;
-    },
-  ): Promise<OrganizationUserDetailsResponse>;
-
-  /**
-   * Retrieve a list of groups Ids the specified organization user belongs to
-   * @param organizationId - Identifier for the user's organization
-   * @param id - Organization user identifier
-   */
-  abstract getOrganizationUserGroups(organizationId: string, id: string): Promise<string[]>;
-
-  /**
-   * Retrieve a list of all users that belong to the specified organization
-   * @param organizationId - Identifier for the organization
-   * @param options - Options for the request
-   */
-  abstract getAllUsers(
-    organizationId: string,
-    options?: {
-      includeCollections?: boolean;
-      includeGroups?: boolean;
-    },
-  ): Promise<ListResponse<OrganizationUserUserDetailsResponse>>;
-
-  /**
-   * Retrieve reset password details for the specified organization user
-   * @param organizationId - Identifier for the user's organization
-   * @param id - Organization user identifier
-   */
-  abstract getOrganizationUserResetPasswordDetails(
-    organizationId: string,
-    id: string,
-  ): Promise<OrganizationUserResetPasswordDetailsResponse>;
-
-  /**
-   * Retrieve reset password details for many organization users
-   * @param organizationId - Identifier for the organization
-   * @param ids - A list of organization user identifiers
-   */
-  abstract getManyOrganizationUserAccountRecoveryDetails(
-    organizationId: string,
-    ids: string[],
-  ): Promise<ListResponse<OrganizationUserResetPasswordDetailsResponse>>;
-
-  /**
-   * Create new organization user invite(s) for the specified organization
-   * @param organizationId - Identifier for the organization
-   * @param request - New user invitation request details
-   */
-  abstract postOrganizationUserInvite(
-    organizationId: string,
-    request: OrganizationUserInviteRequest,
-  ): Promise<void>;
-
-  /**
-   * Re-invite the specified organization user
-   * @param organizationId - Identifier for the user's organization
-   * @param id - Organization user identifier
-   */
-  abstract postOrganizationUserReinvite(organizationId: string, id: string): Promise<any>;
-
-  /**
-   * Re-invite many organization users for the specified organization
-   * @param organizationId - Identifier for the organization
-   * @param ids - A list of organization user identifiers
-   * @return List of user ids, including both those that were successfully re-invited and those that had an error
-   */
-  abstract postManyOrganizationUserReinvite(
-    organizationId: string,
-    ids: string[],
-  ): Promise<ListResponse<OrganizationUserBulkResponse>>;
-
-  /**
-   * Accept an invitation to initialize and join an organization created via the Admin Portal **only**.
-   * This is only used once for the initial Owner, because it also creates the organization's encryption keys.
-   * This should not be used for organizations created via the Web client.
-   * @param organizationId - Identifier for the organization to accept
-   * @param id - Organization user identifier
-   * @param request - Request details for accepting the invitation
-   */
-  abstract postOrganizationUserAcceptInit(
-    organizationId: string,
-    id: string,
-    request: OrganizationUserAcceptInitRequest,
-  ): Promise<void>;
-
-  /**
-   * Accept an organization user invitation
-   * @param organizationId - Identifier for the organization to accept
-   * @param id - Organization user identifier
-   * @param request - Request details for accepting the invitation
-   */
-  abstract postOrganizationUserAccept(
-    organizationId: string,
-    id: string,
-    request: OrganizationUserAcceptRequest,
-  ): Promise<void>;
-
-  /**
-   * Confirm an organization user that has accepted their invitation
-   * @param organizationId - Identifier for the organization to confirm
-   * @param id - Organization user identifier
-   * @param request - Request details for confirming the user
-   */
-  abstract postOrganizationUserConfirm(
-    organizationId: string,
-    id: string,
-    request: OrganizationUserConfirmRequest,
-  ): Promise<void>;
-
-  /**
-   * Retrieve a list of the specified users' public keys
-   * @param organizationId - Identifier for the organization to accept
-   * @param ids - A list of organization user identifiers to retrieve public keys for
-   */
-  abstract postOrganizationUsersPublicKey(
-    organizationId: string,
-    ids: string[],
-  ): Promise<ListResponse<OrganizationUserBulkPublicKeyResponse>>;
-
-  /**
-   * Confirm many organization users that have accepted their invitations
-   * @param organizationId - Identifier for the organization to confirm users
-   * @param request - Bulk request details for confirming the user
-   */
-  abstract postOrganizationUserBulkConfirm(
-    organizationId: string,
-    request: OrganizationUserBulkConfirmRequest,
-  ): Promise<ListResponse<OrganizationUserBulkResponse>>;
-
-  /**
-   * Update an organization users
-   * @param organizationId - Identifier for the organization the user belongs to
-   * @param id - Organization user identifier
-   * @param request - Request details for updating the user
-   */
-  abstract putOrganizationUser(
-    organizationId: string,
-    id: string,
-    request: OrganizationUserUpdateRequest,
-  ): Promise<void>;
-
-  /**
-   * Update an organization user's reset password enrollment
-   * @param organizationId - Identifier for the organization the user belongs to
-   * @param userId - Organization user identifier
-   * @param request - Reset password enrollment details
-   */
-  abstract putOrganizationUserResetPasswordEnrollment(
-    organizationId: string,
-    userId: string,
-    request: OrganizationUserResetPasswordEnrollmentRequest,
-  ): Promise<void>;
-
-  /**
-   * Reset an organization user's password
-   * @param organizationId - Identifier for the organization the user belongs to
-   * @param id - Organization user identifier
-   * @param request - Reset password details
-   */
-  abstract putOrganizationUserResetPassword(
-    organizationId: string,
-    id: string,
-    request: OrganizationUserResetPasswordRequest,
-  ): Promise<void>;
-
-  /**
-   * Enable Secrets Manager for many users
-   * @param organizationId - Identifier for the organization the user belongs to
-   * @param ids - List of organization user identifiers to enable
-   * @return List of user ids, including both those that were successfully enabled and those that had an error
-   */
-  abstract putOrganizationUserBulkEnableSecretsManager(
-    organizationId: string,
-    ids: string[],
-  ): Promise<void>;
-
-  /**
-   * Remove an organization user
-   * @param organizationId - Identifier for the organization the user belongs to
-   * @param id - Organization user identifier
-   */
-  abstract removeOrganizationUser(organizationId: string, id: string): Promise<void>;
-
-  /**
-   * Remove many organization users
-   * @param organizationId - Identifier for the organization the users belongs to
-   * @param ids - List of organization user identifiers to remove
-   * @return List of user ids, including both those that were successfully removed and those that had an error
-   */
-  abstract removeManyOrganizationUsers(
-    organizationId: string,
-    ids: string[],
-  ): Promise<ListResponse<OrganizationUserBulkResponse>>;
-
-  /**
-   * Revoke an organization user's access to the organization
-   * @param organizationId - Identifier for the organization the user belongs to
-   * @param id - Organization user identifier
-   */
-  abstract revokeOrganizationUser(organizationId: string, id: string): Promise<void>;
-
-  /**
-   * Revoke many organization users' access to the organization
-   * @param organizationId - Identifier for the organization the users belongs to
-   * @param ids - List of organization user identifiers to revoke
-   * @return List of user ids, including both those that were successfully revoked and those that had an error
-   */
-  abstract revokeManyOrganizationUsers(
-    organizationId: string,
-    ids: string[],
-  ): Promise<ListResponse<OrganizationUserBulkResponse>>;
-
-  /**
-   * Restore an organization user's access to the organization
-   * @param organizationId - Identifier for the organization the user belongs to
-   * @param id - Organization user identifier
-   */
-  abstract restoreOrganizationUser(organizationId: string, id: string): Promise<void>;
-
-  /**
-   * Restore many organization users' access to the organization
-   * @param organizationId - Identifier for the organization the users belongs to
-   * @param ids - List of organization user identifiers to restore
-   * @return List of user ids, including both those that were successfully restored and those that had an error
-   */
-  abstract restoreManyOrganizationUsers(
-    organizationId: string,
-    ids: string[],
-  ): Promise<ListResponse<OrganizationUserBulkResponse>>;
-}

libs/common/src/admin-console/abstractions/organization-user/requests/index.ts

@@ -1,8 +0,0 @@
-export * from "./organization-user-accept-init.request";
-export * from "./organization-user-accept.request";
-export * from "./organization-user-bulk-confirm.request";
-export * from "./organization-user-confirm.request";
-export * from "./organization-user-invite.request";
-export * from "./organization-user-reset-password.request";
-export * from "./organization-user-reset-password-enrollment.request";
-export * from "./organization-user-update.request";

libs/common/src/admin-console/abstractions/organization-user/requests/organization-user-accept-init.request.ts

@@ -1,8 +0,0 @@
-import { OrganizationKeysRequest } from "../../../models/request/organization-keys.request";
-
-export class OrganizationUserAcceptInitRequest {
-  token: string;
-  key: string;
-  keys: OrganizationKeysRequest;
-  collectionName: string;
-}

libs/common/src/admin-console/abstractions/organization-user/requests/organization-user-accept.request.ts

@@ -1,5 +0,0 @@
-export class OrganizationUserAcceptRequest {
-  token: string;
-  // Used to auto-enroll in master password reset
-  resetPasswordKey: string;
-}

libs/common/src/admin-console/abstractions/organization-user/requests/organization-user-bulk-confirm.request.ts

@@ -1,12 +0,0 @@
-type OrganizationUserBulkRequestEntry = {
-  id: string;
-  key: string;
-};
-
-export class OrganizationUserBulkConfirmRequest {
-  keys: OrganizationUserBulkRequestEntry[];
-
-  constructor(keys: OrganizationUserBulkRequestEntry[]) {
-    this.keys = keys;
-  }
-}

libs/common/src/admin-console/abstractions/organization-user/requests/organization-user-confirm.request.ts

@@ -1,3 +0,0 @@
-export class OrganizationUserConfirmRequest {
-  key: string;
-}

libs/common/src/admin-console/abstractions/organization-user/requests/organization-user-invite.request.ts

@@ -1,12 +0,0 @@
-import { OrganizationUserType } from "../../../enums";
-import { PermissionsApi } from "../../../models/api/permissions.api";
-import { SelectionReadOnlyRequest } from "../../../models/request/selection-read-only.request";
-
-export class OrganizationUserInviteRequest {
-  emails: string[] = [];
-  type: OrganizationUserType;
-  accessSecretsManager: boolean;
-  collections: SelectionReadOnlyRequest[] = [];
-  groups: string[];
-  permissions: PermissionsApi;
-}

libs/common/src/admin-console/abstractions/organization-user/requests/organization-user-reset-password-enrollment.request.ts

@@ -1,9 +0,0 @@
-import { SecretVerificationRequest } from "../../../../auth/models/request/secret-verification.request";
-
-export class OrganizationUserResetPasswordEnrollmentRequest extends SecretVerificationRequest {
-  resetPasswordKey: string;
-}
-
-export class OrganizationUserResetPasswordWithIdRequest extends OrganizationUserResetPasswordEnrollmentRequest {
-  organizationId: string;
-}

libs/common/src/admin-console/abstractions/organization-user/requests/organization-user-reset-password.request.ts

@@ -1,4 +0,0 @@
-export class OrganizationUserResetPasswordRequest {
-  newMasterPasswordHash: string;
-  key: string;
-}

libs/common/src/admin-console/abstractions/organization-user/requests/organization-user-update.request.ts

@@ -1,11 +0,0 @@
-import { OrganizationUserType } from "../../../enums";
-import { PermissionsApi } from "../../../models/api/permissions.api";
-import { SelectionReadOnlyRequest } from "../../../models/request/selection-read-only.request";
-
-export class OrganizationUserUpdateRequest {
-  type: OrganizationUserType;
-  accessSecretsManager: boolean;
-  collections: SelectionReadOnlyRequest[] = [];
-  groups: string[] = [];
-  permissions: PermissionsApi;
-}

libs/common/src/admin-console/abstractions/organization-user/responses/index.ts

@@ -1,3 +0,0 @@
-export * from "./organization-user.response";
-export * from "./organization-user-bulk.response";
-export * from "./organization-user-bulk-public-key.response";

libs/common/src/admin-console/abstractions/organization-user/responses/organization-user-bulk-public-key.response.ts

@@ -1,14 +0,0 @@
-import { BaseResponse } from "../../../../models/response/base.response";
-
-export class OrganizationUserBulkPublicKeyResponse extends BaseResponse {
-  id: string;
-  userId: string;
-  key: string;
-
-  constructor(response: any) {
-    super(response);
-    this.id = this.getResponseProperty("Id");
-    this.userId = this.getResponseProperty("UserId");
-    this.key = this.getResponseProperty("Key");
-  }
-}

libs/common/src/admin-console/abstractions/organization-user/responses/organization-user-bulk.response.ts

@@ -1,12 +0,0 @@
-import { BaseResponse } from "../../../../models/response/base.response";
-
-export class OrganizationUserBulkResponse extends BaseResponse {
-  id: string;
-  error: string;
-
-  constructor(response: any) {
-    super(response);
-    this.id = this.getResponseProperty("Id");
-    this.error = this.getResponseProperty("Error");
-  }
-}

libs/common/src/admin-console/abstractions/organization-user/responses/organization-user.response.ts

@@ -1,85 +0,0 @@
-import { BaseResponse } from "../../../../models/response/base.response";
-import { KdfType } from "../../../../platform/enums";
-import { OrganizationUserStatusType, OrganizationUserType } from "../../../enums";
-import { PermissionsApi } from "../../../models/api/permissions.api";
-import { SelectionReadOnlyResponse } from "../../../models/response/selection-read-only.response";
-
-export class OrganizationUserResponse extends BaseResponse {
-  id: string;
-  userId: string;
-  type: OrganizationUserType;
-  status: OrganizationUserStatusType;
-  externalId: string;
-  accessSecretsManager: boolean;
-  permissions: PermissionsApi;
-  resetPasswordEnrolled: boolean;
-  hasMasterPassword: boolean;
-  collections: SelectionReadOnlyResponse[] = [];
-  groups: string[] = [];
-
-  constructor(response: any) {
-    super(response);
-    this.id = this.getResponseProperty("Id");
-    this.userId = this.getResponseProperty("UserId");
-    this.type = this.getResponseProperty("Type");
-    this.status = this.getResponseProperty("Status");
-    this.permissions = new PermissionsApi(this.getResponseProperty("Permissions"));
-    this.externalId = this.getResponseProperty("ExternalId");
-    this.accessSecretsManager = this.getResponseProperty("AccessSecretsManager");
-    this.resetPasswordEnrolled = this.getResponseProperty("ResetPasswordEnrolled");
-    this.hasMasterPassword = this.getResponseProperty("HasMasterPassword");
-
-    const collections = this.getResponseProperty("Collections");
-    if (collections != null) {
-      this.collections = collections.map((c: any) => new SelectionReadOnlyResponse(c));
-    }
-    const groups = this.getResponseProperty("Groups");
-    if (groups != null) {
-      this.groups = groups;
-    }
-  }
-}
-
-export class OrganizationUserUserDetailsResponse extends OrganizationUserResponse {
-  name: string;
-  email: string;
-  avatarColor: string;
-  twoFactorEnabled: boolean;
-  usesKeyConnector: boolean;
-
-  constructor(response: any) {
-    super(response);
-    this.name = this.getResponseProperty("Name");
-    this.email = this.getResponseProperty("Email");
-    this.avatarColor = this.getResponseProperty("AvatarColor");
-    this.twoFactorEnabled = this.getResponseProperty("TwoFactorEnabled");
-    this.usesKeyConnector = this.getResponseProperty("UsesKeyConnector") ?? false;
-  }
-}
-
-export class OrganizationUserDetailsResponse extends OrganizationUserResponse {
-  constructor(response: any) {
-    super(response);
-  }
-}
-
-export class OrganizationUserResetPasswordDetailsResponse extends BaseResponse {
-  organizationUserId: string;
-  kdf: KdfType;
-  kdfIterations: number;
-  kdfMemory?: number;
-  kdfParallelism?: number;
-  resetPasswordKey: string;
-  encryptedPrivateKey: string;
-
-  constructor(response: any) {
-    super(response);
-    this.organizationUserId = this.getResponseProperty("OrganizationUserId");
-    this.kdf = this.getResponseProperty("Kdf");
-    this.kdfIterations = this.getResponseProperty("KdfIterations");
-    this.kdfMemory = this.getResponseProperty("KdfMemory");
-    this.kdfParallelism = this.getResponseProperty("KdfParallelism");
-    this.resetPasswordKey = this.getResponseProperty("ResetPasswordKey");
-    this.encryptedPrivateKey = this.getResponseProperty("EncryptedPrivateKey");
-  }
-}