Add support for requesting and using otp for verifying some requests (#527)

Co-authored-by: Thomas Rittson <trittson@bitwarden.com>
2025-12-17 16:53:34 +00:00 · 2021-11-09 17:01:22 +01:00
parent 99ff3feb53
commit 8f177e2d3a
54 changed files with 746 additions and 223 deletions
--- a/angular/src/services/auth-guard.service.ts
+++ b/angular/src/services/auth-guard.service.ts
@@ -6,6 +6,7 @@ import {
    RouterStateSnapshot,
 } from '@angular/router';

+import { KeyConnectorService } from 'jslib-common/abstractions/keyConnector.service';
 import { MessagingService } from 'jslib-common/abstractions/messaging.service';
 import { UserService } from 'jslib-common/abstractions/user.service';
 import { VaultTimeoutService } from 'jslib-common/abstractions/vaultTimeout.service';
@@ -13,7 +14,7 @@ import { VaultTimeoutService } from 'jslib-common/abstractions/vaultTimeout.serv
@Injectable()
 export class AuthGuardService implements CanActivate {
    constructor(private vaultTimeoutService: VaultTimeoutService, private userService: UserService,
-        private router: Router, private messagingService: MessagingService) { }
+        private router: Router, private messagingService: MessagingService, private keyConnectorService: KeyConnectorService) { }

    async canActivate(route: ActivatedRouteSnapshot, routerState: RouterStateSnapshot) {
        const isAuthed = await this.userService.isAuthenticated();
@@ -31,6 +32,11 @@ export class AuthGuardService implements CanActivate {
            return false;
        }

+        if (!routerState.url.includes('remove-password') && await this.keyConnectorService.getConvertAccountRequired()) {
+            this.router.navigate(['/remove-password']);
+            return false;
+        }
+
        return true;
    }
 }
--- a/angular/src/services/passwordReprompt.service.ts
+++ b/angular/src/services/passwordReprompt.service.ts
@@ -1,5 +1,6 @@
 import { Injectable } from '@angular/core';

+import { KeyConnectorService } from 'jslib-common/abstractions/keyConnector.service';
 import { PasswordRepromptService as PasswordRepromptServiceAbstraction } from 'jslib-common/abstractions/passwordReprompt.service';

 import { PasswordRepromptComponent } from '../components/password-reprompt.component';
@@ -9,13 +10,17 @@ import { ModalService } from './modal.service';
 export class PasswordRepromptService implements PasswordRepromptServiceAbstraction {
    protected component = PasswordRepromptComponent;

-    constructor(private modalService: ModalService) { }
+    constructor(private modalService: ModalService, private keyConnectorService: KeyConnectorService) { }

    protectedFields() {
        return ['TOTP', 'Password', 'H_Field', 'Card Number', 'Security Code'];
    }

    async showPasswordPrompt() {
+        if (!await this.enabled()) {
+            return true;
+        }
+
        const ref = this.modalService.open(this.component, {allowMultipleModals: true});

        if (ref == null) {
@@ -25,4 +30,8 @@ export class PasswordRepromptService implements PasswordRepromptServiceAbstracti
        const result = await ref.onClosedPromise();
        return result === true;
    }
+
+    async enabled() {
+        return !await this.keyConnectorService.getUsesKeyConnector();
+    }
 }