From 84b179f53a5b4fa38d70a50c4f597f8d942c89e8 Mon Sep 17 00:00:00 2001
From: Alec Rippberger <127791530+alec-livefront@users.noreply.github.com>
Date: Tue, 1 Apr 2025 18:46:40 -0500
Subject: [PATCH 1/6] refactor(auth): [PM-9698] remove deprecated SSO
 components

Removes v1 SSO components in favor of new implementation as well as related orphaned styles/translations.

Refs: PM-9698
---
 .../src/auth/popup/sso-v1.component.html      |   0
 .../src/auth/popup/sso-v1.component.ts        | 105 ----------
 apps/browser/src/popup/app.module.ts          |   2 -
 apps/desktop/src/app/app.module.ts            |   2 -
 apps/desktop/src/auth/sso-v1.component.html   |   9 -
 apps/desktop/src/auth/sso-v1.component.ts     |  83 --------
 apps/desktop/src/scss/pages.scss              |  13 --
 apps/web/src/app/auth/sso-v1.component.html   |  22 ---
 apps/web/src/app/auth/sso-v1.component.ts     | 186 ------------------
 .../src/app/shared/loose-components.module.ts |   3 -
 10 files changed, 425 deletions(-)
 delete mode 100644 apps/browser/src/auth/popup/sso-v1.component.html
 delete mode 100644 apps/browser/src/auth/popup/sso-v1.component.ts
 delete mode 100644 apps/desktop/src/auth/sso-v1.component.html
 delete mode 100644 apps/desktop/src/auth/sso-v1.component.ts
 delete mode 100644 apps/web/src/app/auth/sso-v1.component.html
 delete mode 100644 apps/web/src/app/auth/sso-v1.component.ts

diff --git a/apps/browser/src/auth/popup/sso-v1.component.html b/apps/browser/src/auth/popup/sso-v1.component.html
deleted file mode 100644
index e69de29bb2d..00000000000
diff --git a/apps/browser/src/auth/popup/sso-v1.component.ts b/apps/browser/src/auth/popup/sso-v1.component.ts
deleted file mode 100644
index f56fe697e70..00000000000
--- a/apps/browser/src/auth/popup/sso-v1.component.ts
+++ /dev/null
@@ -1,105 +0,0 @@
-import { Component, Inject } from "@angular/core";
-import { takeUntilDestroyed } from "@angular/core/rxjs-interop";
-import { ActivatedRoute, Router } from "@angular/router";
-
-import { SsoComponent as BaseSsoComponent } from "@bitwarden/angular/auth/components/sso.component";
-import { WINDOW } from "@bitwarden/angular/services/injection-tokens";
-import {
-  LoginStrategyServiceAbstraction,
-  UserDecryptionOptionsServiceAbstraction,
-} from "@bitwarden/auth/common";
-import { ApiService } from "@bitwarden/common/abstractions/api.service";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
-import { SsoLoginServiceAbstraction } from "@bitwarden/common/auth/abstractions/sso-login.service.abstraction";
-import { AuthenticationStatus } from "@bitwarden/common/auth/enums/authentication-status";
-import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
-import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
-import { CryptoFunctionService } from "@bitwarden/common/platform/abstractions/crypto-function.service";
-import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
-import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
-import { ToastService } from "@bitwarden/components";
-import { PasswordGenerationServiceAbstraction } from "@bitwarden/generator-legacy";
-
-import { BrowserApi } from "../../platform/browser/browser-api";
-
-@Component({
-  selector: "app-sso",
-  templateUrl: "sso-v1.component.html",
-})
-export class SsoComponentV1 extends BaseSsoComponent {
-  constructor(
-    ssoLoginService: SsoLoginServiceAbstraction,
-    loginStrategyService: LoginStrategyServiceAbstraction,
-    router: Router,
-    i18nService: I18nService,
-    route: ActivatedRoute,
-    stateService: StateService,
-    platformUtilsService: PlatformUtilsService,
-    apiService: ApiService,
-    cryptoFunctionService: CryptoFunctionService,
-    passwordGenerationService: PasswordGenerationServiceAbstraction,
-    syncService: SyncService,
-    environmentService: EnvironmentService,
-    logService: LogService,
-    userDecryptionOptionsService: UserDecryptionOptionsServiceAbstraction,
-    configService: ConfigService,
-    masterPasswordService: InternalMasterPasswordServiceAbstraction,
-    accountService: AccountService,
-    private authService: AuthService,
-    @Inject(WINDOW) private win: Window,
-    toastService: ToastService,
-  ) {
-    super(
-      ssoLoginService,
-      loginStrategyService,
-      router,
-      i18nService,
-      route,
-      stateService,
-      platformUtilsService,
-      apiService,
-      cryptoFunctionService,
-      environmentService,
-      passwordGenerationService,
-      logService,
-      userDecryptionOptionsService,
-      configService,
-      masterPasswordService,
-      accountService,
-      toastService,
-    );
-
-    environmentService.environment$.pipe(takeUntilDestroyed()).subscribe((env) => {
-      this.redirectUri = env.getWebVaultUrl() + "/sso-connector.html";
-    });
-    this.clientId = "browser";
-
-    this.onSuccessfulLogin = async () => {
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      syncService.fullSync(true);
-
-      // If the vault is unlocked then this will clear keys from memory, which we don't want to do
-      if ((await this.authService.getAuthStatus()) !== AuthenticationStatus.Unlocked) {
-        BrowserApi.reloadOpenWindows();
-      }
-
-      this.win.close();
-    };
-
-    this.onSuccessfulLoginTde = async () => {
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      syncService.fullSync(true);
-    };
-
-    this.onSuccessfulLoginTdeNavigate = async () => {
-      this.win.close();
-    };
-  }
-}
diff --git a/apps/browser/src/popup/app.module.ts b/apps/browser/src/popup/app.module.ts
index b2542679e06..71e310ad335 100644
--- a/apps/browser/src/popup/app.module.ts
+++ b/apps/browser/src/popup/app.module.ts
@@ -24,7 +24,6 @@ import { RemovePasswordComponent } from "../auth/popup/remove-password.component
 import { SetPasswordComponent } from "../auth/popup/set-password.component";
 import { AccountSecurityComponent } from "../auth/popup/settings/account-security.component";
 import { VaultTimeoutInputComponent } from "../auth/popup/settings/vault-timeout-input.component";
-import { SsoComponentV1 } from "../auth/popup/sso-v1.component";
 import { UpdateTempPasswordComponent } from "../auth/popup/update-temp-password.component";
 import { AutofillComponent } from "../autofill/popup/settings/autofill.component";
 import { NotificationsSettingsComponent } from "../autofill/popup/settings/notifications.component";
@@ -89,7 +88,6 @@ import "../platform/popup/locales";
     ColorPasswordPipe,
     ColorPasswordCountPipe,
     SetPasswordComponent,
-    SsoComponentV1,
     TabsV2Component,
     UpdateTempPasswordComponent,
     UserVerificationComponent,
diff --git a/apps/desktop/src/app/app.module.ts b/apps/desktop/src/app/app.module.ts
index b717afe4a41..fdc25ed642e 100644
--- a/apps/desktop/src/app/app.module.ts
+++ b/apps/desktop/src/app/app.module.ts
@@ -15,7 +15,6 @@ import { DeleteAccountComponent } from "../auth/delete-account.component";
 import { LoginModule } from "../auth/login/login.module";
 import { RemovePasswordComponent } from "../auth/remove-password.component";
 import { SetPasswordComponent } from "../auth/set-password.component";
-import { SsoComponentV1 } from "../auth/sso-v1.component";
 import { UpdateTempPasswordComponent } from "../auth/update-temp-password.component";
 import { SshAgentService } from "../autofill/services/ssh-agent.service";
 import { PremiumComponent } from "../billing/app/accounts/premium.component";
@@ -76,7 +75,6 @@ import { SharedModule } from "./shared/shared.module";
     SetPasswordComponent,
     SettingsComponent,
     ShareComponent,
-    SsoComponentV1,
     UpdateTempPasswordComponent,
     VaultComponent,
     VaultTimeoutInputComponent,
diff --git a/apps/desktop/src/auth/sso-v1.component.html b/apps/desktop/src/auth/sso-v1.component.html
deleted file mode 100644
index cb5bba9dc66..00000000000
--- a/apps/desktop/src/auth/sso-v1.component.html
+++ /dev/null
@@ -1,9 +0,0 @@
-<form id="sso-page" (ngSubmit)="submit()">
-  <div class="content">
-    <img class="logo-image" alt="Bitwarden" />
-    <div class="box">
-      <i class="bwi bwi-spinner bwi-spin" title="{{ 'loading' | i18n }}" aria-hidden="true"></i>
-      {{ "loading" | i18n }}
-    </div>
-  </div>
-</form>
diff --git a/apps/desktop/src/auth/sso-v1.component.ts b/apps/desktop/src/auth/sso-v1.component.ts
deleted file mode 100644
index 1bb6d8362a1..00000000000
--- a/apps/desktop/src/auth/sso-v1.component.ts
+++ /dev/null
@@ -1,83 +0,0 @@
-import { Component } from "@angular/core";
-import { ActivatedRoute, Router } from "@angular/router";
-
-import { SsoComponent as BaseSsoComponent } from "@bitwarden/angular/auth/components/sso.component";
-import {
-  LoginStrategyServiceAbstraction,
-  UserDecryptionOptionsServiceAbstraction,
-} from "@bitwarden/auth/common";
-import { ApiService } from "@bitwarden/common/abstractions/api.service";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { SsoLoginServiceAbstraction } from "@bitwarden/common/auth/abstractions/sso-login.service.abstraction";
-import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
-import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
-import { CryptoFunctionService } from "@bitwarden/common/platform/abstractions/crypto-function.service";
-import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
-import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
-import { ToastService } from "@bitwarden/components";
-import { PasswordGenerationServiceAbstraction } from "@bitwarden/generator-legacy";
-
-@Component({
-  selector: "app-sso",
-  templateUrl: "sso-v1.component.html",
-})
-export class SsoComponentV1 extends BaseSsoComponent {
-  constructor(
-    ssoLoginService: SsoLoginServiceAbstraction,
-    loginStrategyService: LoginStrategyServiceAbstraction,
-    router: Router,
-    i18nService: I18nService,
-    syncService: SyncService,
-    route: ActivatedRoute,
-    stateService: StateService,
-    platformUtilsService: PlatformUtilsService,
-    apiService: ApiService,
-    cryptoFunctionService: CryptoFunctionService,
-    environmentService: EnvironmentService,
-    passwordGenerationService: PasswordGenerationServiceAbstraction,
-    logService: LogService,
-    userDecryptionOptionsService: UserDecryptionOptionsServiceAbstraction,
-    configService: ConfigService,
-    masterPasswordService: InternalMasterPasswordServiceAbstraction,
-    accountService: AccountService,
-    toastService: ToastService,
-  ) {
-    super(
-      ssoLoginService,
-      loginStrategyService,
-      router,
-      i18nService,
-      route,
-      stateService,
-      platformUtilsService,
-      apiService,
-      cryptoFunctionService,
-      environmentService,
-      passwordGenerationService,
-      logService,
-      userDecryptionOptionsService,
-      configService,
-      masterPasswordService,
-      accountService,
-      toastService,
-    );
-    this.onSuccessfulLogin = async () => {
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      syncService.fullSync(true);
-    };
-
-    this.onSuccessfulLoginTde = async () => {
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      syncService.fullSync(true);
-    };
-
-    this.redirectUri = "bitwarden://sso-callback";
-    this.clientId = "desktop";
-  }
-}
diff --git a/apps/desktop/src/scss/pages.scss b/apps/desktop/src/scss/pages.scss
index ecb36aae662..155ffaf0ad1 100644
--- a/apps/desktop/src/scss/pages.scss
+++ b/apps/desktop/src/scss/pages.scss
@@ -1,7 +1,6 @@
 @import "variables.scss";
 
 #lock-page,
-#sso-page,
 #set-password-page,
 #remove-password-page {
   display: flex;
@@ -106,18 +105,6 @@
   }
 }
 
-#sso-page {
-  .content {
-    width: 325px;
-
-    .box {
-      margin-top: 30px;
-      margin-bottom: 30px;
-      text-align: center;
-    }
-  }
-}
-
 #set-password-page,
 #remove-password-page {
   .content {
diff --git a/apps/web/src/app/auth/sso-v1.component.html b/apps/web/src/app/auth/sso-v1.component.html
deleted file mode 100644
index 59abc92e872..00000000000
--- a/apps/web/src/app/auth/sso-v1.component.html
+++ /dev/null
@@ -1,22 +0,0 @@
-<form [formGroup]="formGroup" [bitSubmit]="submit" class="tw-container">
-  <div *ngIf="loggingIn">
-    <i class="bwi bwi-spinner bwi-spin" title="{{ 'loading' | i18n }}" aria-hidden="true"></i>
-    {{ "loading" | i18n }}
-  </div>
-  <div *ngIf="!loggingIn">
-    <p bitTypography="body1">{{ "ssoLogInWithOrgIdentifier" | i18n }}</p>
-    <bit-form-field>
-      <bit-label>{{ "ssoIdentifier" | i18n }}</bit-label>
-      <input bitInput type="text" formControlName="identifier" appAutofocus />
-    </bit-form-field>
-    <hr />
-    <div class="tw-flex tw-gap-2">
-      <button type="submit" bitButton bitFormButton buttonType="primary" [block]="true">
-        {{ "logIn" | i18n }}
-      </button>
-      <a bitButton buttonType="secondary" routerLink="/login" [block]="true">
-        {{ "cancel" | i18n }}
-      </a>
-    </div>
-  </div>
-</form>
diff --git a/apps/web/src/app/auth/sso-v1.component.ts b/apps/web/src/app/auth/sso-v1.component.ts
deleted file mode 100644
index d664f5b890b..00000000000
--- a/apps/web/src/app/auth/sso-v1.component.ts
+++ /dev/null
@@ -1,186 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { Component, OnInit } from "@angular/core";
-import { FormControl, FormGroup, Validators } from "@angular/forms";
-import { ActivatedRoute, Router } from "@angular/router";
-import { firstValueFrom } from "rxjs";
-import { first } from "rxjs/operators";
-
-import { SsoComponent as BaseSsoComponent } from "@bitwarden/angular/auth/components/sso.component";
-import {
-  LoginStrategyServiceAbstraction,
-  UserDecryptionOptionsServiceAbstraction,
-} from "@bitwarden/auth/common";
-import { ApiService } from "@bitwarden/common/abstractions/api.service";
-import { OrgDomainApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization-domain/org-domain-api.service.abstraction";
-import { OrganizationDomainSsoDetailsResponse } from "@bitwarden/common/admin-console/abstractions/organization-domain/responses/organization-domain-sso-details.response";
-import { VerifiedOrganizationDomainSsoDetailsResponse } from "@bitwarden/common/admin-console/abstractions/organization-domain/responses/verified-organization-domain-sso-details.response";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { SsoLoginServiceAbstraction } from "@bitwarden/common/auth/abstractions/sso-login.service.abstraction";
-import { HttpStatusCode } from "@bitwarden/common/enums";
-import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
-import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/key-management/master-password/abstractions/master-password.service.abstraction";
-import { ErrorResponse } from "@bitwarden/common/models/response/error.response";
-import { ListResponse } from "@bitwarden/common/models/response/list.response";
-import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
-import { CryptoFunctionService } from "@bitwarden/common/platform/abstractions/crypto-function.service";
-import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
-import { ValidationService } from "@bitwarden/common/platform/abstractions/validation.service";
-import { ToastService } from "@bitwarden/components";
-import { PasswordGenerationServiceAbstraction } from "@bitwarden/generator-legacy";
-
-@Component({
-  selector: "app-sso",
-  templateUrl: "sso-v1.component.html",
-})
-export class SsoComponentV1 extends BaseSsoComponent implements OnInit {
-  protected formGroup = new FormGroup({
-    identifier: new FormControl(null, [Validators.required]),
-  });
-
-  get identifierFormControl() {
-    return this.formGroup.controls.identifier;
-  }
-
-  constructor(
-    ssoLoginService: SsoLoginServiceAbstraction,
-    loginStrategyService: LoginStrategyServiceAbstraction,
-    router: Router,
-    i18nService: I18nService,
-    route: ActivatedRoute,
-    stateService: StateService,
-    platformUtilsService: PlatformUtilsService,
-    apiService: ApiService,
-    cryptoFunctionService: CryptoFunctionService,
-    environmentService: EnvironmentService,
-    passwordGenerationService: PasswordGenerationServiceAbstraction,
-    logService: LogService,
-    private orgDomainApiService: OrgDomainApiServiceAbstraction,
-    private validationService: ValidationService,
-    userDecryptionOptionsService: UserDecryptionOptionsServiceAbstraction,
-    configService: ConfigService,
-    masterPasswordService: InternalMasterPasswordServiceAbstraction,
-    accountService: AccountService,
-    toastService: ToastService,
-  ) {
-    super(
-      ssoLoginService,
-      loginStrategyService,
-      router,
-      i18nService,
-      route,
-      stateService,
-      platformUtilsService,
-      apiService,
-      cryptoFunctionService,
-      environmentService,
-      passwordGenerationService,
-      logService,
-      userDecryptionOptionsService,
-      configService,
-      masterPasswordService,
-      accountService,
-      toastService,
-    );
-    this.redirectUri = window.location.origin + "/sso-connector.html";
-    this.clientId = "web";
-  }
-
-  async ngOnInit() {
-    // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-    // eslint-disable-next-line @typescript-eslint/no-floating-promises
-    super.ngOnInit();
-
-    // eslint-disable-next-line rxjs-angular/prefer-takeuntil, rxjs/no-async-subscribe
-    this.route.queryParams.pipe(first()).subscribe(async (qParams) => {
-      if (qParams.identifier != null) {
-        // SSO Org Identifier in query params takes precedence over claimed domains
-        this.identifierFormControl.setValue(qParams.identifier);
-        this.loggingIn = true;
-        await this.submit();
-      } else {
-        // Note: this flow is written for web but both browser and desktop
-        // redirect here on SSO button click.
-
-        // Check if email matches any claimed domains
-        if (qParams.email) {
-          // show loading spinner
-          this.loggingIn = true;
-          try {
-            if (await this.configService.getFeatureFlag(FeatureFlag.VerifiedSsoDomainEndpoint)) {
-              const response: ListResponse<VerifiedOrganizationDomainSsoDetailsResponse> =
-                await this.orgDomainApiService.getVerifiedOrgDomainsByEmail(qParams.email);
-
-              if (response.data.length > 0) {
-                this.identifierFormControl.setValue(response.data[0].organizationIdentifier);
-                await this.submit();
-                return;
-              }
-            } else {
-              const response: OrganizationDomainSsoDetailsResponse =
-                await this.orgDomainApiService.getClaimedOrgDomainByEmail(qParams.email);
-
-              if (response?.ssoAvailable && response?.verifiedDate) {
-                this.identifierFormControl.setValue(response.organizationIdentifier);
-                await this.submit();
-                return;
-              }
-            }
-          } catch (error) {
-            this.handleGetClaimedDomainByEmailError(error);
-          }
-
-          this.loggingIn = false;
-        }
-
-        // Fallback to state svc if domain is unclaimed
-        const storedIdentifier = await this.ssoLoginService.getOrganizationSsoIdentifier();
-        if (storedIdentifier != null) {
-          this.identifierFormControl.setValue(storedIdentifier);
-        }
-      }
-    });
-  }
-
-  private handleGetClaimedDomainByEmailError(error: any): void {
-    if (error instanceof ErrorResponse) {
-      const errorResponse: ErrorResponse = error as ErrorResponse;
-      switch (errorResponse.statusCode) {
-        case HttpStatusCode.NotFound:
-          //this is a valid case for a domain not found
-          return;
-
-        default:
-          this.validationService.showError(errorResponse);
-          break;
-      }
-    }
-  }
-
-  submit = async () => {
-    if (this.formGroup.invalid) {
-      return;
-    }
-
-    const autoSubmit = (await firstValueFrom(this.route.queryParams)).identifier != null;
-
-    this.identifier = this.identifierFormControl.value;
-    await this.ssoLoginService.setOrganizationSsoIdentifier(this.identifier);
-    if (this.clientId === "browser") {
-      document.cookie = `ssoHandOffMessage=${this.i18nService.t("ssoHandOff")};SameSite=strict`;
-    }
-    try {
-      await Object.getPrototypeOf(this).submit.call(this);
-    } catch (error) {
-      if (autoSubmit) {
-        await this.router.navigate(["/login"]);
-      } else {
-        this.validationService.showError(error);
-      }
-    }
-  };
-}
diff --git a/apps/web/src/app/shared/loose-components.module.ts b/apps/web/src/app/shared/loose-components.module.ts
index 70dbf63f1f8..41347c3f082 100644
--- a/apps/web/src/app/shared/loose-components.module.ts
+++ b/apps/web/src/app/shared/loose-components.module.ts
@@ -42,7 +42,6 @@ import { TwoFactorSetupYubiKeyComponent } from "../auth/settings/two-factor/two-
 import { TwoFactorSetupComponent } from "../auth/settings/two-factor/two-factor-setup.component";
 import { TwoFactorVerifyComponent } from "../auth/settings/two-factor/two-factor-verify.component";
 import { UserVerificationModule } from "../auth/shared/components/user-verification";
-import { SsoComponentV1 } from "../auth/sso-v1.component";
 import { UpdatePasswordComponent } from "../auth/update-password.component";
 import { UpdateTempPasswordComponent } from "../auth/update-temp-password.component";
 import { VerifyEmailTokenComponent } from "../auth/verify-email-token.component";
@@ -146,7 +145,6 @@ import { SharedModule } from "./shared.module";
     SetPasswordComponent,
     SponsoredFamiliesComponent,
     SponsoringOrgRowComponent,
-    SsoComponentV1,
     TwoFactorSetupAuthenticatorComponent,
     TwoFactorSetupDuoComponent,
     TwoFactorSetupEmailComponent,
@@ -206,7 +204,6 @@ import { SharedModule } from "./shared.module";
     SetPasswordComponent,
     SponsoredFamiliesComponent,
     SponsoringOrgRowComponent,
-    SsoComponentV1,
     TwoFactorSetupAuthenticatorComponent,
     TwoFactorSetupDuoComponent,
     TwoFactorSetupEmailComponent,

From afcb656d128d8f301eea090cee9de83fe95b55d9 Mon Sep 17 00:00:00 2001
From: Jordan Aasen <166539328+jaasen-livefront@users.noreply.github.com>
Date: Tue, 1 Apr 2025 16:48:41 -0700
Subject: [PATCH 2/6] [PM-17747] - remove emergency access attachments dialog.
 fix 404 (#13854)

* remove emergency access attachments dialog. fix 404

* fix types

* fix type issue
---
 .../emergency-access-attachments.component.ts | 66 -------------------
 .../view/emergency-access-view.component.html | 22 -------
 .../view/emergency-access-view.component.ts   | 50 ++++----------
 .../view/emergency-view-dialog.component.html |  2 +-
 .../view/emergency-view-dialog.component.ts   |  6 ++
 .../src/app/shared/loose-components.module.ts |  3 -
 libs/common/src/types/guid.ts                 |  1 +
 .../attachments-v2-view.component.html        |  1 +
 .../attachments-v2-view.component.ts          |  5 +-
 .../cipher-view/cipher-view.component.html    |  3 +-
 .../src/cipher-view/cipher-view.component.ts  |  5 +-
 .../download-attachment.component.ts          |  6 +-
 12 files changed, 37 insertions(+), 133 deletions(-)
 delete mode 100644 apps/web/src/app/auth/settings/emergency-access/attachments/emergency-access-attachments.component.ts

diff --git a/apps/web/src/app/auth/settings/emergency-access/attachments/emergency-access-attachments.component.ts b/apps/web/src/app/auth/settings/emergency-access/attachments/emergency-access-attachments.component.ts
deleted file mode 100644
index 73191e1539e..00000000000
--- a/apps/web/src/app/auth/settings/emergency-access/attachments/emergency-access-attachments.component.ts
+++ /dev/null
@@ -1,66 +0,0 @@
-import { Component } from "@angular/core";
-
-import { AttachmentsComponent as BaseAttachmentsComponent } from "@bitwarden/angular/vault/components/attachments.component";
-import { ApiService } from "@bitwarden/common/abstractions/api.service";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { BillingAccountProfileStateService } from "@bitwarden/common/billing/abstractions/account/billing-account-profile-state.service";
-import { EncryptService } from "@bitwarden/common/key-management/crypto/abstractions/encrypt.service";
-import { FileDownloadService } from "@bitwarden/common/platform/abstractions/file-download/file-download.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
-import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
-import { AttachmentView } from "@bitwarden/common/vault/models/view/attachment.view";
-import { DialogService, ToastService } from "@bitwarden/components";
-import { KeyService } from "@bitwarden/key-management";
-
-@Component({
-  selector: "emergency-access-attachments",
-  templateUrl: "../../../../vault/individual-vault/attachments.component.html",
-})
-export class EmergencyAccessAttachmentsComponent extends BaseAttachmentsComponent {
-  viewOnly = true;
-  canAccessAttachments = true;
-
-  constructor(
-    cipherService: CipherService,
-    i18nService: I18nService,
-    keyService: KeyService,
-    encryptService: EncryptService,
-    stateService: StateService,
-    platformUtilsService: PlatformUtilsService,
-    apiService: ApiService,
-    logService: LogService,
-    fileDownloadService: FileDownloadService,
-    dialogService: DialogService,
-    billingAccountProfileStateService: BillingAccountProfileStateService,
-    accountService: AccountService,
-    toastService: ToastService,
-  ) {
-    super(
-      cipherService,
-      i18nService,
-      keyService,
-      encryptService,
-      platformUtilsService,
-      apiService,
-      window,
-      logService,
-      stateService,
-      fileDownloadService,
-      dialogService,
-      billingAccountProfileStateService,
-      accountService,
-      toastService,
-    );
-  }
-
-  protected async init() {
-    // Do nothing since cipher is already decoded
-  }
-
-  protected showFixOldAttachments(attachment: AttachmentView) {
-    return false;
-  }
-}
diff --git a/apps/web/src/app/auth/settings/emergency-access/view/emergency-access-view.component.html b/apps/web/src/app/auth/settings/emergency-access/view/emergency-access-view.component.html
index a936e3a427d..87e2643c178 100644
--- a/apps/web/src/app/auth/settings/emergency-access/view/emergency-access-view.component.html
+++ b/apps/web/src/app/auth/settings/emergency-access/view/emergency-access-view.component.html
@@ -38,28 +38,6 @@
             <br />
             <small class="tw-text-xs">{{ currentCipher.subTitle }}</small>
           </td>
-          <td bitCell>
-            <div *ngIf="currentCipher.hasAttachments">
-              <button
-                [bitMenuTriggerFor]="optionsMenu"
-                type="button"
-                buttonType="main"
-                bitIconButton="bwi-ellipsis-v"
-                appA11yTitle="{{ 'options' | i18n }}"
-              ></button>
-              <bit-menu #optionsMenu>
-                <button
-                  type="button"
-                  bitMenuItem
-                  appStopClick
-                  (click)="viewAttachments(currentCipher)"
-                >
-                  <i class="bwi bwi-fw bwi-paperclip" aria-hidden="true"></i>
-                  {{ "attachments" | i18n }}
-                </button>
-              </bit-menu>
-            </div>
-          </td>
         </tr>
       </ng-template>
     </bit-table>
diff --git a/apps/web/src/app/auth/settings/emergency-access/view/emergency-access-view.component.ts b/apps/web/src/app/auth/settings/emergency-access/view/emergency-access-view.component.ts
index 1e3d0cf705f..bf7ca29da9b 100644
--- a/apps/web/src/app/auth/settings/emergency-access/view/emergency-access-view.component.ts
+++ b/apps/web/src/app/auth/settings/emergency-access/view/emergency-access-view.component.ts
@@ -1,15 +1,13 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
 import { Component, OnInit, ViewChild, ViewContainerRef } from "@angular/core";
 import { ActivatedRoute, Router } from "@angular/router";
+import { firstValueFrom } from "rxjs";
 
-import { ModalService } from "@bitwarden/angular/services/modal.service";
+import { EmergencyAccessId } from "@bitwarden/common/types/guid";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 import { DialogService } from "@bitwarden/components";
 import { CipherFormConfigService, DefaultCipherFormConfigService } from "@bitwarden/vault";
 
 import { EmergencyAccessService } from "../../../emergency-access";
-import { EmergencyAccessAttachmentsComponent } from "../attachments/emergency-access-attachments.component";
 
 import { EmergencyViewDialogComponent } from "./emergency-view-dialog.component";
 
@@ -20,56 +18,34 @@ import { EmergencyViewDialogComponent } from "./emergency-view-dialog.component"
 })
 export class EmergencyAccessViewComponent implements OnInit {
   @ViewChild("attachments", { read: ViewContainerRef, static: true })
-  attachmentsModalRef: ViewContainerRef;
-
-  id: string;
+  id: EmergencyAccessId | null = null;
   ciphers: CipherView[] = [];
   loaded = false;
 
   constructor(
-    private modalService: ModalService,
     private router: Router,
     private route: ActivatedRoute,
     private emergencyAccessService: EmergencyAccessService,
     private dialogService: DialogService,
   ) {}
 
-  ngOnInit() {
-    // eslint-disable-next-line rxjs-angular/prefer-takeuntil
-    this.route.params.subscribe((qParams) => {
-      if (qParams.id == null) {
-        return this.router.navigate(["settings/emergency-access"]);
-      }
+  async ngOnInit() {
+    const qParams = await firstValueFrom(this.route.params);
+    if (qParams.id == null) {
+      await this.router.navigate(["settings/emergency-access"]);
+      return;
+    }
 
-      this.id = qParams.id;
-
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.load();
-    });
+    this.id = qParams.id;
+    this.ciphers = await this.emergencyAccessService.getViewOnlyCiphers(qParams.id);
+    this.loaded = true;
   }
 
   async selectCipher(cipher: CipherView) {
     EmergencyViewDialogComponent.open(this.dialogService, {
       cipher,
+      emergencyAccessId: this.id!,
     });
     return;
   }
-
-  async load() {
-    this.ciphers = await this.emergencyAccessService.getViewOnlyCiphers(this.id);
-    this.loaded = true;
-  }
-
-  // FIXME PM-17747: This will also need to be replaced with the new AttachmentViewDialog
-  async viewAttachments(cipher: CipherView) {
-    await this.modalService.openViewRef(
-      EmergencyAccessAttachmentsComponent,
-      this.attachmentsModalRef,
-      (comp) => {
-        comp.cipher = cipher;
-        comp.emergencyAccessId = this.id;
-      },
-    );
-  }
 }
diff --git a/apps/web/src/app/auth/settings/emergency-access/view/emergency-view-dialog.component.html b/apps/web/src/app/auth/settings/emergency-access/view/emergency-view-dialog.component.html
index be38e1d9505..b3d8e48260a 100644
--- a/apps/web/src/app/auth/settings/emergency-access/view/emergency-view-dialog.component.html
+++ b/apps/web/src/app/auth/settings/emergency-access/view/emergency-view-dialog.component.html
@@ -3,7 +3,7 @@
     {{ title }}
   </span>
   <div bitDialogContent #dialogContent>
-    <app-cipher-view [cipher]="cipher"></app-cipher-view>
+    <app-cipher-view [emergencyAccessId]="emergencyAccessId" [cipher]="cipher"></app-cipher-view>
   </div>
   <ng-container bitDialogFooter>
     <button bitButton type="button" buttonType="secondary" (click)="cancel()">
diff --git a/apps/web/src/app/auth/settings/emergency-access/view/emergency-view-dialog.component.ts b/apps/web/src/app/auth/settings/emergency-access/view/emergency-view-dialog.component.ts
index 387d7b5b177..87095d4abce 100644
--- a/apps/web/src/app/auth/settings/emergency-access/view/emergency-view-dialog.component.ts
+++ b/apps/web/src/app/auth/settings/emergency-access/view/emergency-view-dialog.component.ts
@@ -4,6 +4,7 @@ import { Component, Inject } from "@angular/core";
 
 import { JslibModule } from "@bitwarden/angular/jslib.module";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { EmergencyAccessId } from "@bitwarden/common/types/guid";
 import { PremiumUpgradePromptService } from "@bitwarden/common/vault/abstractions/premium-upgrade-prompt.service";
 import { ViewPasswordHistoryService } from "@bitwarden/common/vault/abstractions/view-password-history.service";
 import { CipherType } from "@bitwarden/common/vault/enums";
@@ -20,6 +21,7 @@ import { WebViewPasswordHistoryService } from "../../../../vault/services/web-vi
 export interface EmergencyViewDialogParams {
   /** The cipher being viewed. */
   cipher: CipherView;
+  emergencyAccessId: EmergencyAccessId;
 }
 
 /** Stubbed class, premium upgrade is not applicable for emergency viewing */
@@ -59,6 +61,10 @@ export class EmergencyViewDialogComponent {
     return this.params.cipher;
   }
 
+  get emergencyAccessId(): EmergencyAccessId {
+    return this.params.emergencyAccessId;
+  }
+
   cancel = () => {
     this.dialogRef.close();
   };
diff --git a/apps/web/src/app/shared/loose-components.module.ts b/apps/web/src/app/shared/loose-components.module.ts
index 41347c3f082..0f1a4c5b6ef 100644
--- a/apps/web/src/app/shared/loose-components.module.ts
+++ b/apps/web/src/app/shared/loose-components.module.ts
@@ -23,7 +23,6 @@ import { DangerZoneComponent } from "../auth/settings/account/danger-zone.compon
 import { DeauthorizeSessionsComponent } from "../auth/settings/account/deauthorize-sessions.component";
 import { DeleteAccountDialogComponent } from "../auth/settings/account/delete-account-dialog.component";
 import { ProfileComponent } from "../auth/settings/account/profile.component";
-import { EmergencyAccessAttachmentsComponent } from "../auth/settings/emergency-access/attachments/emergency-access-attachments.component";
 import { EmergencyAccessConfirmComponent } from "../auth/settings/emergency-access/confirm/emergency-access-confirm.component";
 import { EmergencyAccessAddEditComponent } from "../auth/settings/emergency-access/emergency-access-add-edit.component";
 import { EmergencyAccessComponent } from "../auth/settings/emergency-access/emergency-access.component";
@@ -115,7 +114,6 @@ import { SharedModule } from "./shared.module";
     DeleteAccountDialogComponent,
     DomainRulesComponent,
     EmergencyAccessAddEditComponent,
-    EmergencyAccessAttachmentsComponent,
     EmergencyAccessComponent,
     EmergencyAccessConfirmComponent,
     EmergencyAccessTakeoverComponent,
@@ -173,7 +171,6 @@ import { SharedModule } from "./shared.module";
     DomainRulesComponent,
     DynamicAvatarComponent,
     EmergencyAccessAddEditComponent,
-    EmergencyAccessAttachmentsComponent,
     EmergencyAccessComponent,
     EmergencyAccessConfirmComponent,
     EmergencyAccessTakeoverComponent,
diff --git a/libs/common/src/types/guid.ts b/libs/common/src/types/guid.ts
index 7a0ec4c1d58..bf891b55691 100644
--- a/libs/common/src/types/guid.ts
+++ b/libs/common/src/types/guid.ts
@@ -12,3 +12,4 @@ export type SendId = Opaque<string, "SendId">;
 export type IndexedEntityId = Opaque<string, "IndexedEntityId">;
 export type SecurityTaskId = Opaque<string, "SecurityTaskId">;
 export type NotificationId = Opaque<string, "NotificationId">;
+export type EmergencyAccessId = Opaque<string, "EmergencyAccessId">;
diff --git a/libs/vault/src/cipher-view/attachments/attachments-v2-view.component.html b/libs/vault/src/cipher-view/attachments/attachments-v2-view.component.html
index 59d97f07f20..c1224f4c7a8 100644
--- a/libs/vault/src/cipher-view/attachments/attachments-v2-view.component.html
+++ b/libs/vault/src/cipher-view/attachments/attachments-v2-view.component.html
@@ -14,6 +14,7 @@
             [cipher]="cipher"
             [attachment]="attachment"
             [checkPwReprompt]="true"
+            [emergencyAccessId]="emergencyAccessId"
           ></app-download-attachment>
         </bit-item-action>
       </ng-container>
diff --git a/libs/vault/src/cipher-view/attachments/attachments-v2-view.component.ts b/libs/vault/src/cipher-view/attachments/attachments-v2-view.component.ts
index 0c2ca35cbbc..8e4a1ac952c 100644
--- a/libs/vault/src/cipher-view/attachments/attachments-v2-view.component.ts
+++ b/libs/vault/src/cipher-view/attachments/attachments-v2-view.component.ts
@@ -9,7 +9,7 @@ import { JslibModule } from "@bitwarden/angular/jslib.module";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { BillingAccountProfileStateService } from "@bitwarden/common/billing/abstractions";
 import { StateProvider } from "@bitwarden/common/platform/state";
-import { OrganizationId } from "@bitwarden/common/types/guid";
+import { EmergencyAccessId, OrganizationId } from "@bitwarden/common/types/guid";
 import { OrgKey } from "@bitwarden/common/types/key";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 import {
@@ -41,6 +41,9 @@ import { DownloadAttachmentComponent } from "../../components/download-attachmen
 export class AttachmentsV2ViewComponent {
   @Input() cipher: CipherView;
 
+  // Required for fetching attachment data when viewed from cipher via emergency access
+  @Input() emergencyAccessId?: EmergencyAccessId;
+
   canAccessPremium: boolean;
   orgKey: OrgKey;
 
diff --git a/libs/vault/src/cipher-view/cipher-view.component.html b/libs/vault/src/cipher-view/cipher-view.component.html
index b2e747aa2fe..c441c921c39 100644
--- a/libs/vault/src/cipher-view/cipher-view.component.html
+++ b/libs/vault/src/cipher-view/cipher-view.component.html
@@ -76,7 +76,8 @@
 
   <!-- ATTACHMENTS SECTION -->
   <ng-container *ngIf="cipher.attachments">
-    <app-attachments-v2-view [cipher]="cipher"> </app-attachments-v2-view>
+    <app-attachments-v2-view [emergencyAccessId]="emergencyAccessId" [cipher]="cipher">
+    </app-attachments-v2-view>
   </ng-container>
 
   <!-- ITEM HISTORY SECTION -->
diff --git a/libs/vault/src/cipher-view/cipher-view.component.ts b/libs/vault/src/cipher-view/cipher-view.component.ts
index 657c0d11527..48b70271e43 100644
--- a/libs/vault/src/cipher-view/cipher-view.component.ts
+++ b/libs/vault/src/cipher-view/cipher-view.component.ts
@@ -15,7 +15,7 @@ import { isCardExpired } from "@bitwarden/common/autofill/utils";
 import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { CipherId, CollectionId, UserId } from "@bitwarden/common/types/guid";
+import { CipherId, CollectionId, EmergencyAccessId, UserId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { FolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
@@ -61,6 +61,9 @@ import { ViewIdentitySectionsComponent } from "./view-identity-sections/view-ide
 export class CipherViewComponent implements OnChanges, OnDestroy {
   @Input({ required: true }) cipher: CipherView | null = null;
 
+  // Required for fetching attachment data when viewed from cipher via emergency access
+  @Input() emergencyAccessId?: EmergencyAccessId;
+
   activeUserId$ = getUserId(this.accountService.activeAccount$);
 
   /**
diff --git a/libs/vault/src/components/download-attachment/download-attachment.component.ts b/libs/vault/src/components/download-attachment/download-attachment.component.ts
index 1445ca557cf..812051775f8 100644
--- a/libs/vault/src/components/download-attachment/download-attachment.component.ts
+++ b/libs/vault/src/components/download-attachment/download-attachment.component.ts
@@ -13,7 +13,7 @@ import { FileDownloadService } from "@bitwarden/common/platform/abstractions/fil
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { EncArrayBuffer } from "@bitwarden/common/platform/models/domain/enc-array-buffer";
 import { StateProvider } from "@bitwarden/common/platform/state";
-import { OrganizationId } from "@bitwarden/common/types/guid";
+import { EmergencyAccessId, OrganizationId } from "@bitwarden/common/types/guid";
 import { OrgKey } from "@bitwarden/common/types/key";
 import { AttachmentView } from "@bitwarden/common/vault/models/view/attachment.view";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
@@ -36,6 +36,9 @@ export class DownloadAttachmentComponent {
   // When in view mode, we will want to check for the master password reprompt
   @Input() checkPwReprompt?: boolean = false;
 
+  // Required for fetching attachment data when viewed from cipher via emergency access
+  @Input() emergencyAccessId?: EmergencyAccessId;
+
   /** The organization key if the cipher is associated with one */
   private orgKey: OrgKey | null = null;
 
@@ -68,6 +71,7 @@ export class DownloadAttachmentComponent {
       const attachmentDownloadResponse = await this.apiService.getAttachmentData(
         this.cipher.id,
         this.attachment.id,
+        this.emergencyAccessId,
       );
       url = attachmentDownloadResponse.url;
     } catch (e) {

From d0606922ce6394f8dcc1473e681be29af2c89cb6 Mon Sep 17 00:00:00 2001
From: cyprain-okeke <108260115+cyprain-okeke@users.noreply.github.com>
Date: Wed, 2 Apr 2025 09:23:18 +0100
Subject: [PATCH 3/6] make the mode dark mode compatible (#14073)

---
 .../admin-console/organizations/manage/events.component.html  | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/apps/web/src/app/admin-console/organizations/manage/events.component.html b/apps/web/src/app/admin-console/organizations/manage/events.component.html
index adadec5075a..80d22467123 100644
--- a/apps/web/src/app/admin-console/organizations/manage/events.component.html
+++ b/apps/web/src/app/admin-console/organizations/manage/events.component.html
@@ -111,10 +111,10 @@
 
 <ng-container *ngIf="loaded && usePlaceHolderEvents">
   <div
-    class="tw-relative tw--top-72 tw-bg-[#ffffff] tw-bg-opacity-90 tw-pb-5 tw-flex tw-items-center tw-justify-center tw-h-[19rem]"
+    class="tw-relative tw--top-72 tw-bg-background tw-bg-opacity-90 tw-pb-5 tw-flex tw-items-center tw-justify-center tw-h-[19rem]"
   >
     <div
-      class="tw-bg-[#ffffff] tw-max-w-xl tw-flex-col tw-justify-center tw-text-center tw-p-5 tw-px-10 tw-rounded tw-border-0 tw-border-b tw-border-secondary-300 tw-border-solid tw-mt-5"
+      class="tw-bg-background tw-max-w-xl tw-flex-col tw-justify-center tw-text-center tw-p-5 tw-px-10 tw-rounded tw-border-0 tw-border-b tw-border-secondary-300 tw-border-solid tw-mt-5"
     >
       <i class="bwi bwi-2x bwi-business tw-text-primary-600"></i>
 

From f13bc2766b37ddc9c8f7d4c80bf9c981e4662c5c Mon Sep 17 00:00:00 2001
From: Daniel James Smith <2670567+djsmith85@users.noreply.github.com>
Date: Wed, 2 Apr 2025 15:28:40 +0200
Subject: [PATCH 4/6] Set selected format to json, when the zip format option
 is removed (#14092)

Co-authored-by: Daniel James Smith <djsmith85@users.noreply.github.com>
---
 .../vault-export-ui/src/components/export.component.ts           | 1 +
 1 file changed, 1 insertion(+)

diff --git a/libs/tools/export/vault-export/vault-export-ui/src/components/export.component.ts b/libs/tools/export/vault-export/vault-export-ui/src/components/export.component.ts
index c8efe093762..69f77c6ca32 100644
--- a/libs/tools/export/vault-export/vault-export-ui/src/components/export.component.ts
+++ b/libs/tools/export/vault-export/vault-export-ui/src/components/export.component.ts
@@ -234,6 +234,7 @@ export class ExportComponent implements OnInit, OnDestroy, AfterViewInit {
         this.organizationId = value !== "myVault" ? value : undefined;
 
         this.formatOptions = this.formatOptions.filter((option) => option.value !== "zip");
+        this.exportForm.get("format").setValue("json");
         if (value === "myVault" && isExportAttachmentsEnabled) {
           this.formatOptions.push({ name: ".zip (with attachments)", value: "zip" });
         }

From 9080a5a024219e810119fe99968e02f8b73b7710 Mon Sep 17 00:00:00 2001
From: Daniel Riera <driera@livefront.com>
Date: Wed, 2 Apr 2025 09:30:47 -0400
Subject: [PATCH 5/6] PM-19378 remove v1 notification bar path (#13973)

* PM-19378
- Remove NotificationBarAddLoginImproments flag
- Remove divergent paths in various files
- Fix tests to reflect new singular path

* PM-19378
- Remove applyRedesign from relevant files
- Update styling to reflect changes

* remove notification-bar

* edit styling for to accodmmodate v3 in iframe
---
 .../overlay-notifications.background.spec.ts  |   31 -
 .../overlay-notifications.background.ts       |   42 +-
 .../src/autofill/content/notification-bar.ts  | 1082 -----------------
 .../abstractions/notification-bar.ts          |    1 -
 .../src/autofill/notification/bar.html        |    2 +-
 .../src/autofill/notification/bar.scss        |  272 ++---
 apps/browser/src/autofill/notification/bar.ts |    4 -
 .../overlay-notifications-content.service.ts  |   19 +-
 .../services/autofill.service.spec.ts         |   25 +-
 .../src/autofill/services/autofill.service.ts |   16 +-
 .../browser/src/background/main.background.ts |    1 -
 apps/browser/webpack.config.js                |    1 -
 libs/common/src/enums/feature-flag.enum.ts    |    2 -
 13 files changed, 147 insertions(+), 1351 deletions(-)
 delete mode 100644 apps/browser/src/autofill/content/notification-bar.ts

diff --git a/apps/browser/src/autofill/background/overlay-notifications.background.spec.ts b/apps/browser/src/autofill/background/overlay-notifications.background.spec.ts
index 57930496978..a51757dabea 100644
--- a/apps/browser/src/autofill/background/overlay-notifications.background.spec.ts
+++ b/apps/browser/src/autofill/background/overlay-notifications.background.spec.ts
@@ -1,8 +1,6 @@
 import { mock, MockProxy } from "jest-mock-extended";
-import { BehaviorSubject } from "rxjs";
 
 import { CLEAR_NOTIFICATION_LOGIN_DATA_DURATION } from "@bitwarden/common/autofill/constants";
-import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { ServerConfig } from "@bitwarden/common/platform/abstractions/config/server-config";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { EnvironmentServerConfigData } from "@bitwarden/common/platform/models/data/server-config.data";
@@ -25,8 +23,6 @@ import { OverlayNotificationsBackground } from "./overlay-notifications.backgrou
 
 describe("OverlayNotificationsBackground", () => {
   let logService: MockProxy<LogService>;
-  let getFeatureFlagMock$: BehaviorSubject<boolean>;
-  let configService: MockProxy<ConfigService>;
   let notificationBackground: NotificationBackground;
   let getEnableChangedPasswordPromptSpy: jest.SpyInstance;
   let getEnableAddedLoginPromptSpy: jest.SpyInstance;
@@ -35,10 +31,6 @@ describe("OverlayNotificationsBackground", () => {
   beforeEach(async () => {
     jest.useFakeTimers();
     logService = mock<LogService>();
-    getFeatureFlagMock$ = new BehaviorSubject(true);
-    configService = mock<ConfigService>({
-      getFeatureFlag$: jest.fn().mockReturnValue(getFeatureFlagMock$),
-    });
     notificationBackground = mock<NotificationBackground>();
     getEnableChangedPasswordPromptSpy = jest
       .spyOn(notificationBackground, "getEnableChangedPasswordPrompt")
@@ -48,10 +40,8 @@ describe("OverlayNotificationsBackground", () => {
       .mockResolvedValue(true);
     overlayNotificationsBackground = new OverlayNotificationsBackground(
       logService,
-      configService,
       notificationBackground,
     );
-    configService.getFeatureFlag.mockResolvedValue(true);
     await overlayNotificationsBackground.init();
   });
 
@@ -60,27 +50,6 @@ describe("OverlayNotificationsBackground", () => {
     jest.clearAllTimers();
   });
 
-  describe("feature flag behavior", () => {
-    let runtimeRemoveListenerSpy: jest.SpyInstance;
-
-    beforeEach(() => {
-      runtimeRemoveListenerSpy = jest.spyOn(chrome.runtime.onMessage, "removeListener");
-    });
-
-    it("removes the extension listeners if the current flag value is set to `false`", () => {
-      getFeatureFlagMock$.next(false);
-
-      expect(runtimeRemoveListenerSpy).toHaveBeenCalled();
-    });
-
-    it("ignores the feature flag change if the previous flag value is equal to the current flag value", () => {
-      getFeatureFlagMock$.next(false);
-      getFeatureFlagMock$.next(false);
-
-      expect(runtimeRemoveListenerSpy).toHaveBeenCalledTimes(1);
-    });
-  });
-
   describe("setting up the form submission listeners", () => {
     let fields: MockProxy<AutofillField>[];
     let details: MockProxy<AutofillPageDetails>;
diff --git a/apps/browser/src/autofill/background/overlay-notifications.background.ts b/apps/browser/src/autofill/background/overlay-notifications.background.ts
index ce30dd462b3..5c85ce132d7 100644
--- a/apps/browser/src/autofill/background/overlay-notifications.background.ts
+++ b/apps/browser/src/autofill/background/overlay-notifications.background.ts
@@ -1,11 +1,8 @@
 // FIXME: Update this file to be type safe and remove this and next line
 // @ts-strict-ignore
-import { startWith, Subject, Subscription, switchMap, timer } from "rxjs";
-import { pairwise } from "rxjs/operators";
+import { Subject, switchMap, timer } from "rxjs";
 
 import { CLEAR_NOTIFICATION_LOGIN_DATA_DURATION } from "@bitwarden/common/autofill/constants";
-import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
-import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 
 import { BrowserApi } from "../../platform/browser/browser-api";
@@ -26,7 +23,6 @@ export class OverlayNotificationsBackground implements OverlayNotificationsBackg
   private websiteOriginsWithFields: WebsiteOriginsWithFields = new Map();
   private activeFormSubmissionRequests: ActiveFormSubmissionRequests = new Set();
   private modifyLoginCipherFormData: ModifyLoginCipherFormDataForTab = new Map();
-  private featureFlagState$: Subscription;
   private clearLoginCipherFormDataSubject: Subject<void> = new Subject();
   private notificationFallbackTimeout: number | NodeJS.Timeout | null;
   private readonly formSubmissionRequestMethods: Set<string> = new Set(["POST", "PUT", "PATCH"]);
@@ -38,7 +34,6 @@ export class OverlayNotificationsBackground implements OverlayNotificationsBackg
 
   constructor(
     private logService: LogService,
-    private configService: ConfigService,
     private notificationBackground: NotificationBackground,
   ) {}
 
@@ -46,35 +41,13 @@ export class OverlayNotificationsBackground implements OverlayNotificationsBackg
    * Initialize the overlay notifications background service.
    */
   async init() {
-    this.featureFlagState$ = this.configService
-      .getFeatureFlag$(FeatureFlag.NotificationBarAddLoginImprovements)
-      .pipe(startWith(undefined), pairwise())
-      .subscribe(([prev, current]) => this.handleInitFeatureFlagChange(prev, current));
+    this.setupExtensionListeners();
+
     this.clearLoginCipherFormDataSubject
       .pipe(switchMap(() => timer(CLEAR_NOTIFICATION_LOGIN_DATA_DURATION)))
       .subscribe(() => this.modifyLoginCipherFormData.clear());
   }
 
-  /**
-   * Handles enabling/disabling the extension listeners that trigger the
-   * overlay notifications based on the feature flag state.
-   *
-   * @param previousValue - The previous value of the feature flag
-   * @param currentValue - The current value of the feature flag
-   */
-  private handleInitFeatureFlagChange = (previousValue: boolean, currentValue: boolean) => {
-    if (previousValue === currentValue) {
-      return;
-    }
-
-    if (currentValue) {
-      this.setupExtensionListeners();
-      return;
-    }
-
-    this.removeExtensionListeners();
-  };
-
   /**
    * Handles the response from the content script with the page details. Triggers an initialization
    * of the add login or change password notification if the conditions are met.
@@ -520,15 +493,6 @@ export class OverlayNotificationsBackground implements OverlayNotificationsBackg
     chrome.tabs.onUpdated.addListener(this.handleTabUpdated);
   }
 
-  /**
-   * Removes the listeners for the extension messages and the tab events.
-   */
-  private removeExtensionListeners() {
-    BrowserApi.removeListener(chrome.runtime.onMessage, this.handleExtensionMessage);
-    chrome.tabs.onRemoved.removeListener(this.handleTabRemoved);
-    chrome.tabs.onUpdated.removeListener(this.handleTabUpdated);
-  }
-
   /**
    * Handles messages that are sent to the extension background.
    *
diff --git a/apps/browser/src/autofill/content/notification-bar.ts b/apps/browser/src/autofill/content/notification-bar.ts
deleted file mode 100644
index bf3d562a0ef..00000000000
--- a/apps/browser/src/autofill/content/notification-bar.ts
+++ /dev/null
@@ -1,1082 +0,0 @@
-// FIXME: Update this file to be type safe and remove this and next line
-// @ts-strict-ignore
-import { ServerConfig } from "@bitwarden/common/platform/abstractions/config/server-config";
-
-import {
-  AddLoginMessageData,
-  ChangePasswordMessageData,
-} from "../background/abstractions/notification.background";
-import AutofillField from "../models/autofill-field";
-import { WatchedForm } from "../models/watched-form";
-import { NotificationBarIframeInitData } from "../notification/abstractions/notification-bar";
-import { NotificationTypeData } from "../overlay/notifications/abstractions/overlay-notifications-content.service";
-import { FormData } from "../services/abstractions/autofill.service";
-import { sendExtensionMessage, setupExtensionDisconnectAction } from "../utils";
-
-interface HTMLElementWithFormOpId extends HTMLElement {
-  formOpId: string;
-}
-
-/**
- * @fileoverview This file contains the code for the Bitwarden Notification Bar content script.
- * The notification bar is used to notify logged in users that they can
- * save a new login, change a existing password on a password change screen,
- * or update an existing login after detecting a different password on login.
- *
- * Note: content scripts are reloaded on non-SPA page change.
- */
-
-/*
- * Run content script when the DOM is fully loaded
- *
- * The DOMContentLoaded event fires when the HTML document has been completely parsed,
- * and all deferred scripts (<script defer src="…"> and <script type="module">) have
- * downloaded and executed. It doesn't wait for other things like images, subframes,
- * and async scripts to finish loading.
- * https://developer.mozilla.org/en-US/docs/Web/API/Window/DOMContentLoaded_event
- */
-let notificationBarIframe: HTMLIFrameElement = null;
-
-if (document.readyState === "loading") {
-  document.addEventListener("DOMContentLoaded", loadNotificationBar);
-} else {
-  // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-  // eslint-disable-next-line @typescript-eslint/no-floating-promises
-  loadNotificationBar();
-}
-
-async function loadNotificationBar() {
-  // Initialize required variables and set default values
-  const watchedForms: WatchedForm[] = [];
-  let barType: string = null;
-  let pageHref: string = null;
-
-  // Provides the ability to watch for changes being made to the DOM tree.
-  let observer: MutationObserver = null;
-  const observeIgnoredElements = new Set([
-    "a",
-    "i",
-    "b",
-    "strong",
-    "span",
-    "code",
-    "br",
-    "img",
-    "small",
-    "em",
-    "hr",
-  ]);
-  let domObservationCollectTimeoutId: number = null;
-  let collectPageDetailsTimeoutId: number = null;
-  let handlePageChangeTimeoutId: number = null;
-
-  const inIframe = isInIframe();
-  const cancelButtonNames = new Set(["cancel", "close", "back"]);
-  const logInButtonNames = new Set([
-    "log in",
-    "sign in",
-    "login",
-    "go",
-    "submit",
-    "continue",
-    "next",
-  ]);
-  const changePasswordButtonNames = new Set([
-    "save password",
-    "update password",
-    "change password",
-    "change",
-    "save",
-  ]);
-  const changePasswordButtonContainsNames = new Set(["pass", "change", "contras", "senha"]);
-
-  const enableChangedPasswordPrompt = await sendExtensionMessage(
-    "bgGetEnableChangedPasswordPrompt",
-  );
-  const enableAddedLoginPrompt = await sendExtensionMessage("bgGetEnableAddedLoginPrompt");
-  const excludedDomains = await sendExtensionMessage("bgGetExcludedDomains");
-  const activeUserServerConfig: ServerConfig = await sendExtensionMessage(
-    "bgGetActiveUserServerConfig",
-  );
-  const activeUserVault = activeUserServerConfig?.environment?.vault;
-
-  let showNotificationBar = true;
-
-  if (activeUserVault) {
-    // Do not show the notification bar on the Bitwarden vault
-    // because they can add logins and change passwords there
-    if (window.location.origin === activeUserVault) {
-      showNotificationBar = false;
-    } else {
-      // NeverDomains is a dictionary of domains that the user has chosen to never
-      // show the notification bar on (for login detail collection or password change).
-      // It is managed in the Settings > Excluded Domains page in the browser extension.
-      // Example: '{"bitwarden.com":null}'
-
-      if (!excludedDomains || !(window.location.hostname in excludedDomains)) {
-        if (enableAddedLoginPrompt || enableChangedPasswordPrompt) {
-          // If the user has not disabled both notifications, then handle the initial page change (null -> actual page)
-          handlePageChange();
-        }
-      }
-    }
-  }
-
-  setupExtensionDisconnectAction(handleExtensionDisconnection);
-
-  if (!showNotificationBar) {
-    return;
-  }
-
-  // Message Processing
-
-  // Listen for messages from the background script
-  // Note: onMessage events are fired when a message is sent from either an extension process
-  // (by runtime.sendMessage) or a content script (by tabs.sendMessage).
-  // https://developer.chrome.com/docs/extensions/reference/runtime/#event-onMessage
-  chrome.runtime.onMessage.addListener((msg, sender, sendResponse) => {
-    processMessages(msg, sendResponse);
-  });
-
-  /**
-   * Processes messages received from the background script via the `chrome.runtime.onMessage` event.
-   * @param {Object} msg - The received message.
-   * @param {Function} sendResponse - The function used to send a response back to the background script.
-   * @returns {boolean} - Returns `true` if a response was sent, `false` otherwise.
-   */
-  function processMessages(msg: any, sendResponse: (response?: any) => void) {
-    if (msg.command === "openNotificationBar") {
-      // `notification.background.ts : doNotificationQueueCheck(...)` sends
-      // a message to the content script to open the notification bar
-      // on Login Add or Password Change
-      if (inIframe) {
-        return;
-      }
-      closeExistingAndOpenBar(msg.data.type, msg.data.typeData);
-      sendResponse();
-      return true;
-    } else if (msg.command === "closeNotificationBar") {
-      // The following methods send a message to the content script to close the notification bar:
-      // `bar.js : closeButton click` > `notification.background.ts : processMessage(...)`
-      // `notification.background.ts : saveNever(...)`
-      // `notification.background.ts : saveOrUpdateCredentials(...)`
-      if (inIframe) {
-        return;
-      }
-      closeBar(true);
-      sendResponse();
-      return true;
-    } else if (msg.command === "adjustNotificationBar") {
-      // `bar.js : window resize` > `notification.background.ts : processMessage(...)`
-      // sends a message to the content script to adjust the notification bar
-      if (inIframe) {
-        return;
-      }
-      adjustBar(msg.data);
-      sendResponse();
-      return true;
-    } else if (msg.command === "notificationBarPageDetails") {
-      // Note: we deliberately do not check for inIframe here because a lot of websites
-      // embed their login forms into iframes
-      // Ex: icloud.com uses a login form in an iframe from apple.com
-
-      // See method collectPageDetails() for full call itinerary that leads to this message
-      watchForms(msg.data.forms);
-      sendResponse();
-      return true;
-    } else if (msg.command === "saveCipherAttemptCompleted") {
-      if (!notificationBarIframe) {
-        return;
-      }
-
-      notificationBarIframe.contentWindow?.postMessage(
-        {
-          command: "saveCipherAttemptCompleted",
-          error: msg.data?.error,
-          username: msg.data?.username,
-          cipherId: msg.data?.cipherId,
-        },
-        "*",
-      );
-    }
-  }
-  // End Message Processing
-
-  /**
-   * Observe the DOM for changes and collect page details if forms are added to the page
-   */
-  function observeDom() {
-    const bodies = document.querySelectorAll("body");
-    if (bodies && bodies.length > 0) {
-      observer = new MutationObserver((mutations: MutationRecord[]) => {
-        // If mutation observer detects a change in the page URL, collect page details
-        // which will reset the observer and start watching for new forms on the new page
-        if (pageHref !== window.location.href) {
-          handlePageChange();
-          return;
-        }
-
-        // If mutations are not found, return
-        if (mutations == null || mutations.length === 0) {
-          return;
-        }
-
-        let doCollectPageDetails = false;
-
-        for (let i = 0; i < mutations.length; i++) {
-          const mutation: MutationRecord = mutations[i];
-
-          // If there are no added nodes, continue to next mutation
-          if (mutation.addedNodes == null || mutation.addedNodes.length === 0) {
-            continue;
-          }
-
-          for (let j = 0; j < mutation.addedNodes.length; j++) {
-            // https://developer.mozilla.org/en-US/docs/Web/API/HTMLElement
-            const addedNode: any = mutation.addedNodes[j];
-
-            // If the added node is null, continue to next added node
-            if (addedNode == null) {
-              continue;
-            }
-
-            // Get the lowercase tag name of the added node (if it exists)
-            const tagName = addedNode.tagName != null ? addedNode.tagName.toLowerCase() : null;
-
-            // If tag name exists & is a form &
-            // (either the dataset is null or it does not have the custom data attribute: "data-bitwarden-watching"),
-            // then collect page details and break
-            // Note: The dataset read-only property of the HTMLElement interface provides
-            // read/write access to custom data attributes (data-*) on elements
-            // https://developer.mozilla.org/en-US/docs/Web/API/HTMLElement/dataset
-            if (
-              tagName != null &&
-              tagName === "form" &&
-              (addedNode.dataset == null || !addedNode.dataset.bitwardenWatching)
-            ) {
-              doCollectPageDetails = true;
-              break;
-            }
-
-            // If tag name exists & is in the observeIgnoredElements set
-            // or if the added node does not have the querySelectorAll method, continue to next added node
-            // Note: querySelectorAll(...) exists on the Element & Document interfaces
-            // It doesn't exist for nodes that are not elements, such as text nodes
-            // Text Node examples: https://developer.mozilla.org/en-US/docs/Web/API/Node/nodeName#example
-            if (
-              (tagName != null && observeIgnoredElements.has(tagName)) ||
-              addedNode.querySelectorAll == null
-            ) {
-              continue;
-            }
-
-            // If the added node has any descendent form elements that are not yet being watched, collect page details and break
-            const forms = addedNode.querySelectorAll("form:not([data-bitwarden-watching])");
-            if (forms != null && forms.length > 0) {
-              doCollectPageDetails = true;
-              break;
-            }
-          }
-
-          if (doCollectPageDetails) {
-            break;
-          }
-        }
-
-        // If page details need to be collected, clear any existing timeout and schedule a new one
-        if (doCollectPageDetails) {
-          if (domObservationCollectTimeoutId != null) {
-            window.clearTimeout(domObservationCollectTimeoutId);
-            domObservationCollectTimeoutId = null;
-          }
-
-          // The timeout is used to avoid collecting page details too often on page mutation while also
-          // giving the DOM time to settle down after a change (ex: multi-part forms being rendered)
-          domObservationCollectTimeoutId = window.setTimeout(collectPageDetails, 1000);
-        }
-      });
-
-      // Watch all mutations to the body element and all of its children & descendants
-      observer.observe(bodies[0], { childList: true, subtree: true });
-    }
-  }
-
-  /**
-   * Handles initial page load and page changes
-   * 3 ways this method is called:
-   *
-   * (1) On initial content script load
-   *
-   * (2) On page change (detected by observer)
-   *
-   * (3) On after scheduled delay setup in `scheduleHandlePageChange()
-   *
-   * On page change, we update the page href, empty the watched forms array, call collectPageDetails (w/ 1 second timeout), and reset the observer
-   */
-  function handlePageChange() {
-    // On first load the content script or any time the page changes, we need to collect the page details and setup the mutation observer
-    if (pageHref !== window.location.href) {
-      // update href
-      pageHref = window.location.href;
-
-      // Empty watched forms so it doesn't carry over between SPA page changes
-      // This allows formOpIds to be unique for each page so that we can
-      // associate submit buttons with their respective forms in the getSubmitButton logic.
-      watchedForms.length = 0;
-
-      // collect the page details after a timeout
-      // The timeout is used to allow more time for the page to load before collecting the page details
-      // as there are some cases where SPAs do not load the entire page on initial load, so we need to wait
-      if (collectPageDetailsTimeoutId != null) {
-        window.clearTimeout(collectPageDetailsTimeoutId);
-        collectPageDetailsTimeoutId = null;
-      }
-      collectPageDetailsTimeoutId = window.setTimeout(collectPageDetails, 1000);
-
-      if (observer) {
-        // reset existing DOM mutation observer so it can listen for changes to the new page body
-        observer.disconnect();
-        observer = null;
-      }
-
-      // On first load or page change, start observing the DOM as early as possible
-      // to avoid missing any forms that are added after the page loads
-      observeDom();
-
-      void sendExtensionMessage("checkNotificationQueue");
-    }
-
-    // This is a safeguard in case the observer misses a SPA page change.
-    scheduleHandlePageChange();
-  }
-
-  /**
-   * Set up a timeout to call handlePageChange after 1 second
-   */
-  function scheduleHandlePageChange() {
-    // Check again in 1 second (but clear any existing timeout first)
-    if (handlePageChangeTimeoutId != null) {
-      window.clearTimeout(handlePageChangeTimeoutId);
-      handlePageChangeTimeoutId = null;
-    }
-    handlePageChangeTimeoutId = window.setTimeout(handlePageChange, 1000);
-  }
-
-  /** *
-   * Tell the background script to collect the page details.
-   *
-   * (1) Sends a message with command `bgCollectPageDetails` to `runtime.background.ts : processMessage(...)`
-   *
-   * (2) `runtime.background.ts : processMessage(...)` calls
-   * `main.background.ts : collectPageDetailsForContentScript`
-   *
-   * (3) `main.background.ts : collectPageDetailsForContentScript`
-   * sends a message with command `collectPageDetails` to the `autofill-init.js` content script
-   *
-   * (4) `autofill-init.js` content script runs a `collect(document)` method.
-   * The result is sent via message with command `collectPageDetailsResponse` to `notification.background.ts : processMessage(...)`
-   *
-   * (5) `notification.background.ts : processMessage(...)` gathers forms with password fields and passes them and the page details
-   * via message with command `notificationBarPageDetails` back to the `processMessages` method in this content script.
-   *
-   * */
-  function collectPageDetails() {
-    void sendExtensionMessage("bgCollectPageDetails", { sender: "notificationBar" });
-  }
-
-  // End Page Detail Collection Methods
-
-  // Form Detection and Submission Handling
-
-  /**
-   * Iterates through the given array of forms and adds an event listener to each form.
-   * The purpose of the event listener is to detect changes in form data and store the changes.
-   *
-   * Note: The forms were gathered in the `notification.background.ts : processMessage(...)`
-   * method with command `collectPageDetailsResponse` by the `autofillService.getFormsWithPasswordFields(...)` method
-   * and passed to the `processMessages` method in this content script.
-   *
-   * @param {FormData[]} forms - The array of forms to be watched.
-   */
-  function watchForms(forms: FormData[]) {
-    // If there are no forms, return
-    if (forms == null || forms.length === 0) {
-      return;
-    }
-
-    forms.forEach((f: FormData) => {
-      // Get the form element by id
-      const formId: string = f.form != null ? f.form.htmlID : null;
-      let formEl: HTMLFormElement = null;
-      if (formId != null && formId !== "") {
-        formEl = document.getElementById(formId) as HTMLFormElement;
-      }
-
-      // If the form could not be retrieved by its HTML ID, retrieve it by its index pulled from the opid
-      if (formEl == null) {
-        // opid stands for OnePassword ID - uniquely ID's an element on a page
-        // and is generated in `autofill-init.js`
-        // Each form has an opid and each element has an opid and its parent form opid
-        const index = parseInt(f.form.opid.split("__")[2], null);
-        formEl = document.getElementsByTagName("form")[index];
-      }
-
-      // If the form element exists and is not yet being watched, start watching it and set it as watched
-      if (formEl != null && formEl.dataset.bitwardenWatching !== "1") {
-        const watchedForm: WatchedForm = {
-          data: f,
-          formEl: formEl,
-          usernameEl: null,
-          passwordEl: null,
-          passwordEls: null,
-        };
-        // Locate the username and password fields
-        locateFields(watchedForm);
-        // Add the form data to the array of watched forms
-        watchedForms.push(watchedForm);
-        // Add an event listener to the form
-        listenToForm(formEl);
-        // Set the form as watched
-        formEl.dataset.bitwardenWatching = "1";
-      }
-    });
-  }
-
-  function listenToForm(form: HTMLFormElement) {
-    // Remove any existing event listeners and re-add them
-    // for form submission and submit button click
-    form.removeEventListener("submit", formSubmitted, false);
-    form.addEventListener("submit", formSubmitted, false);
-
-    findAndListenToSubmitButton(form);
-  }
-
-  function findAndListenToSubmitButton(form: HTMLFormElement) {
-    // Use login button names and change password names since we don't
-    // know what type of form we are watching
-    const submitButton = getSubmitButton(
-      form,
-      unionSets(logInButtonNames, changePasswordButtonNames),
-    );
-
-    if (submitButton != null) {
-      submitButton.removeEventListener("click", formSubmitted, false);
-      submitButton.addEventListener("click", formSubmitted, false);
-
-      // Associate the form opid with the submit button so we can find the form on submit.
-      (submitButton as HTMLElementWithFormOpId).formOpId = form.opid;
-    }
-  }
-
-  /**
-   * Locate the fields within a form element given form data.
-   * @param {Object} watchedForm - The object containing form data and the form element to search within.
-   */
-  function locateFields(watchedForm: WatchedForm) {
-    // Get all input elements
-    const inputs = Array.from(document.getElementsByTagName("input"));
-
-    // Locate the username field
-    watchedForm.usernameEl = locateField(watchedForm.formEl, watchedForm.data.username, inputs);
-
-    // if we found a username field, try to locate a single password field
-    if (watchedForm.usernameEl != null && watchedForm.data.password != null) {
-      // This is most likely a login or create account form b/c we have a username and password
-      watchedForm.passwordEl = locatePassword(
-        watchedForm.formEl,
-        watchedForm.data.password,
-        inputs,
-        true, // Only do fallback if we have expect to find a single password field
-      );
-    } else if (watchedForm.data.passwords != null) {
-      // if we didn't find a username field, try to locate multiple password fields
-      // This is most likely a change password form b/c we have multiple password fields
-      watchedForm.passwordEls = [];
-      watchedForm.data.passwords.forEach((passwordData: AutofillField) => {
-        // Note: do not do fallback here b/c we expect to find multiple password fields
-        // and form.querySelector always returns the first element it finds
-        const passwordEl = locatePassword(watchedForm.formEl, passwordData, inputs, false);
-        if (passwordEl != null) {
-          watchedForm.passwordEls.push(passwordEl);
-        }
-      });
-      if (watchedForm.passwordEls.length === 0) {
-        watchedForm.passwordEls = null;
-      }
-    }
-  }
-
-  function locatePassword(
-    form: HTMLFormElement,
-    passwordData: AutofillField,
-    inputs: HTMLInputElement[],
-    doLastFallback: boolean,
-  ): HTMLInputElement {
-    let el = locateField(form, passwordData, inputs);
-    if (el != null && el.type !== "password") {
-      el = null;
-    }
-    if (doLastFallback && el == null) {
-      el = form.querySelector('input[type="password"]');
-    }
-    return el;
-  }
-
-  /**
-   * Locate a field within a form element given field data.
-   * @param {Object} form - The form element to search within.
-   * @param {Object} fieldData - The field data to search for.
-   * @param {Object[]} inputs - The array of input elements to search within.
-   * @returns {Object} The located field element.
-   */
-  function locateField(
-    form: HTMLFormElement,
-    fieldData: AutofillField,
-    inputs: HTMLInputElement[],
-  ): HTMLInputElement | null {
-    // If we have no field data, we cannot locate the field
-    if (fieldData == null) {
-      return;
-    }
-    // Try to locate the field by its HTML ID, by its HTML name, or finally by its element number
-    let el: HTMLInputElement = null;
-    if (fieldData.htmlID != null && fieldData.htmlID !== "") {
-      try {
-        el = form.querySelector("#" + fieldData.htmlID);
-      } catch {
-        // Ignore error, we perform fallbacks below.
-      }
-    }
-    if (el == null && fieldData.htmlName != null && fieldData.htmlName !== "") {
-      el = form.querySelector('input[name="' + fieldData.htmlName + '"]');
-    }
-    if (el == null && fieldData.elementNumber != null) {
-      el = inputs[fieldData.elementNumber];
-    }
-    return el;
-  }
-
-  /*
-   * Event handler for form submission (submit button click or form submit)
-   */
-  function formSubmitted(e: Event) {
-    let form: HTMLFormElement = null;
-    // If the event is a click event, we need to find the closest form element
-    let clickedElement: HTMLElement = null;
-    if (e.type === "click") {
-      clickedElement = e.target as HTMLElement;
-
-      // Set a flag on the clicked element so we don't set it as a submit button again
-      if (clickedElement?.dataset?.bitwardenClicked !== "1") {
-        clickedElement.dataset.bitwardenClicked = "1";
-      }
-
-      form = clickedElement.closest("form");
-      // If we didn't find a form element, check if the click was within a modal
-      if (form == null) {
-        const parentModal = clickedElement.closest("div.modal");
-        // If we found a modal, check if it has a single form element
-        if (parentModal != null) {
-          const modalForms = parentModal.querySelectorAll("form");
-          if (modalForms.length === 1) {
-            form = modalForms[0];
-          }
-        }
-      }
-
-      // see if the event target is a submit button with a formOpId
-      const formOpId = (clickedElement as HTMLElementWithFormOpId).formOpId;
-      if (form == null && formOpId != null) {
-        // Find form in watched forms array via form op id
-        form = watchedForms.find((wf: WatchedForm) => wf.formEl.opid === formOpId).formEl;
-      }
-    } else {
-      // If the event is a submit event, we can get the form element from the event target
-      form = e.target as HTMLFormElement;
-    }
-
-    // if we didn't find a form element or we've already processed this form, return
-    if (form == null || form.dataset.bitwardenProcessed === "1") {
-      return;
-    }
-
-    // Find the form in the watched forms array
-    for (let i = 0; i < watchedForms.length; i++) {
-      if (watchedForms[i].formEl !== form) {
-        continue;
-      }
-
-      // if user has enabled either add login or change password notification, and we have a username and password field
-      if (
-        (enableChangedPasswordPrompt || enableAddedLoginPrompt) &&
-        watchedForms[i].usernameEl != null &&
-        watchedForms[i].passwordEl != null
-      ) {
-        // Create a login object from the form data
-        const login: AddLoginMessageData = {
-          username: watchedForms[i].usernameEl.value,
-          password: watchedForms[i].passwordEl.value,
-          url: document.URL,
-        };
-
-        // if we have values for username and password, send a message to the background script to add the login
-        const userNamePopulated = login.username != null && login.username !== "";
-        const passwordPopulated = login.password != null && login.password !== "";
-        if (userNamePopulated && passwordPopulated) {
-          processedForm(form);
-          void sendExtensionMessage("bgAddLogin", { login });
-          break;
-        } else if (
-          userNamePopulated &&
-          !passwordPopulated &&
-          clickedElement !== null &&
-          !isElementVisible(clickedElement)
-        ) {
-          // Likely a multi step login form with password missing and next button no longer visible
-          // Remove click listener from previous "submit" button (next button)
-          clickedElement.removeEventListener("click", formSubmitted);
-          findAndListenToSubmitButton(form);
-        }
-      }
-
-      // if user has not disabled the password changed notification and we have multiple password fields,
-      // then check if the user has changed their password
-      if (enableChangedPasswordPrompt && watchedForms[i].passwordEls != null) {
-        // Get the values of the password fields
-        const passwords: string[] = watchedForms[i].passwordEls
-          .filter((el: HTMLInputElement) => el.value != null && el.value !== "")
-          .map((el: HTMLInputElement) => el.value);
-
-        let curPass: string = null;
-        let newPass: string = null;
-        let newPassOnly = false;
-
-        if (watchedForms[i].passwordEls.length === 3 && passwords.length === 3) {
-          // we have 3 password fields and all 3 have values
-          // Assume second field is new password.
-          newPass = passwords[1];
-          if (passwords[0] !== newPass && newPass === passwords[2]) {
-            // first field is the current password, the second field is the new password, and the third field is the new password confirmation
-            curPass = passwords[0];
-          } else if (newPass !== passwords[2] && passwords[0] === newPass) {
-            // first field is the new password, second field is the new password confirmation, and third field is the current password
-            curPass = passwords[2];
-          }
-        } else if (watchedForms[i].passwordEls.length === 2 && passwords.length === 2) {
-          // we have 2 password fields and both have values
-          if (passwords[0] === passwords[1]) {
-            // both fields have the same value, assume this is a new password
-            newPassOnly = true;
-            newPass = passwords[0];
-            curPass = null;
-          } else {
-            // both fields have different values
-            // Check if the submit button contains any of the change password button names as a safeguard
-            const buttonText = getButtonText(getSubmitButton(form, changePasswordButtonNames));
-            const matches = Array.from(changePasswordButtonContainsNames).filter(
-              (n) => buttonText.indexOf(n) > -1,
-            );
-
-            if (matches.length > 0) {
-              // If there is a change password button, then
-              // assume first field is current password and second field is new password
-              curPass = passwords[0];
-              newPass = passwords[1];
-            }
-          }
-        }
-
-        // if we have a new password and a current password or we only have a new password
-        if ((newPass != null && curPass != null) || (newPassOnly && newPass != null)) {
-          // Flag the form as processed so we don't process it again
-          processedForm(form);
-
-          // Send a message to the `notification.background.ts` background script to notify the user that their password has changed
-          // which eventually calls the `processMessage(...)` method in this script with command `openNotificationBar`
-          const data: ChangePasswordMessageData = {
-            newPassword: newPass,
-            currentPassword: curPass,
-            url: document.URL,
-          };
-          void sendExtensionMessage("bgChangedPassword", { data });
-          break;
-        }
-      }
-    }
-  }
-
-  /**
-   * Gets a submit button element from a form or enclosing element
-   * @param wrappingEl - the form or enclosing element
-   * @param buttonNames - login button names to match against
-   * @returns the submit button element
-   */
-  function getSubmitButton(wrappingEl: HTMLElement, buttonNames: Set<string>): HTMLElement {
-    // If wrapping element doesn't exist we can't get a submit button
-    if (wrappingEl == null) {
-      return null;
-    }
-
-    const wrappingElIsForm = wrappingEl.tagName.toLowerCase() === "form";
-
-    // query for submit button
-    const possibleSubmitBtnSelectors = [
-      'input[type="submit"]',
-      'input[type="image"]',
-      'button[type="submit"]',
-    ];
-    const submitBtnSelector = possibleSubmitBtnSelectors
-      .map((btnSelector) => `${btnSelector}:not([data-bitwarden-clicked])`)
-      .join(", ");
-    let submitButton = wrappingEl.querySelector(submitBtnSelector) as HTMLElement;
-
-    // if we didn't find a submit button and we are in a form:
-    if (submitButton == null && wrappingElIsForm) {
-      // query for a button that doesn't have the type attribute
-      submitButton = wrappingEl.querySelector("button:not([type]):not([data-bitwarden-clicked])");
-      if (submitButton != null) {
-        // Retrieve "submit" button text because it might be a cancel button instead of a submit button.
-        // If it is a cancel button, then we don't want to use it.
-        const buttonText = getButtonText(submitButton);
-        if (buttonText != null && cancelButtonNames.has(buttonText.trim().toLowerCase())) {
-          submitButton = null;
-        }
-      }
-    }
-
-    // If we still don't have a submit button, then try to find a button that looks like a submit button
-    if (submitButton == null) {
-      const possibleSubmitButtons = Array.from(
-        wrappingEl.querySelectorAll(
-          'a, span, button[type="button"], ' + 'input[type="button"], button:not([type])',
-        ),
-      ) as HTMLElement[];
-      let typelessButton: HTMLElement = null;
-      // Loop through all possible submit buttons and find the first one that matches a submit button name
-      possibleSubmitButtons.forEach((button) => {
-        if (submitButton != null || button == null || button.tagName == null) {
-          // Continue if we already found a submit button or if the button is null or doesn't have a tag name
-          // Return in a forEach(...) is equivalent to continue
-          return;
-        }
-        // Retrieve button text
-        const buttonText = getButtonText(button);
-        if (buttonText != null) {
-          // if we have a button that doesn't have a type attribute & isn't a cancel btn,
-          // then save it in case we don't find a submit button
-          if (
-            typelessButton != null &&
-            button.tagName.toLowerCase() === "button" &&
-            button.getAttribute("type") == null &&
-            !cancelButtonNames.has(buttonText.trim().toLowerCase())
-          ) {
-            typelessButton = button;
-          } else if (buttonNames.has(buttonText.trim().toLowerCase())) {
-            // If the button text matches a submit button name, then use it
-            submitButton = button;
-          }
-        }
-      });
-      // Fallback to typeless button if it exists and we didn't find a submit button
-      if (submitButton == null && typelessButton != null) {
-        submitButton = typelessButton;
-      }
-    }
-
-    // If we still don't have a submit button, then try to find a submit button in a modal
-    if (submitButton == null && wrappingElIsForm) {
-      // Maybe it's in a modal?
-      // Find closest modal and check if it has only one form
-      const parentModal = wrappingEl.closest("div.modal") as HTMLElement;
-      if (parentModal != null) {
-        const modalForms = parentModal.querySelectorAll("form");
-        if (modalForms.length === 1) {
-          submitButton = getSubmitButton(parentModal, buttonNames);
-        }
-      }
-
-      // If we still don't have a submit button, then try to find a submit button by using the form's
-      // parent element as the wrapping element
-      if (submitButton == null) {
-        const parentElement = wrappingEl.parentElement;
-
-        // Going up a level and looking for loginButtonNames
-        if (parentElement != null) {
-          submitButton = getSubmitButton(parentElement, buttonNames);
-        }
-      }
-    }
-    return submitButton;
-  }
-
-  /**
-   * Returns the text of a given button element.
-   * @param button - The button element to get the text from.
-   * @returns - The text of the button.
-   */
-  function getButtonText(button: HTMLElement) {
-    let buttonText: string = null;
-    if (button.tagName.toLowerCase() === "input") {
-      buttonText = (button as HTMLInputElement).value;
-    } else {
-      buttonText = button.innerText;
-    }
-    return buttonText;
-  }
-
-  /**
-   * Mark form as processed so we don't try to process it again.
-   * @param {Object} form - The form element to mark as processed.
-   */
-  function processedForm(form: HTMLFormElement) {
-    form.dataset.bitwardenProcessed = "1";
-    window.setTimeout(() => {
-      form.dataset.bitwardenProcessed = "0";
-    }, 500);
-  }
-
-  // End Form Detection and Submission Handling
-
-  // Notification Bar Functions (open, close, height adjustment, etc.)
-  function closeExistingAndOpenBar(type: string, typeData: NotificationTypeData) {
-    const notificationBarInitData: NotificationBarIframeInitData = {
-      type,
-      isVaultLocked: typeData.isVaultLocked,
-      theme: typeData.theme,
-      removeIndividualVault: typeData.removeIndividualVault,
-      importType: typeData.importType,
-      launchTimestamp: typeData.launchTimestamp,
-    };
-    const notificationBarUrl = "notification/bar.html";
-
-    const frame = document.getElementById("bit-notification-bar-iframe") as HTMLIFrameElement;
-    if (frame != null && frame.src.indexOf(notificationBarUrl) >= 0) {
-      return;
-    }
-
-    closeBar(false);
-    void openBar(type, notificationBarUrl, notificationBarInitData);
-  }
-
-  async function openBar(
-    type: string,
-    barPage: string,
-    notificationBarInitData: NotificationBarIframeInitData,
-  ) {
-    barType = type;
-
-    if (document.body == null) {
-      return;
-    }
-    const useComponentBar: boolean = await sendExtensionMessage("notificationRefreshFlagValue");
-
-    setupInitNotificationBarMessageListener(notificationBarInitData);
-    const barPageUrl: string = chrome.runtime.getURL(barPage);
-
-    function getIframeStyle(useComponentBar: boolean): string {
-      const isNotificationFresh =
-        notificationBarInitData.launchTimestamp &&
-        Date.now() - notificationBarInitData.launchTimestamp < 500;
-
-      const baseStyle = useComponentBar
-        ? isNotificationFresh
-          ? "height: calc(276px + 50px); width: 450px; right: 0; transform:translateX(100%); opacity:0;"
-          : "height: calc(276px + 25px); width: 450px; right: 0; transform:translateX(0%); opacity:1;"
-        : "height: 42px; width: 100%;";
-
-      const transitionStyle =
-        isNotificationFresh && useComponentBar
-          ? "transition: transform 0.15s ease-in, opacity 0.15s ease; transform:translateX(0%); opacity:1; transition-delay: 0.25s;"
-          : "";
-
-      notificationBarIframe.style.cssText = baseStyle + " border: 0; min-height: initial;";
-
-      if (isNotificationFresh && useComponentBar) {
-        requestAnimationFrame(() => {
-          requestAnimationFrame(() => {
-            notificationBarIframe.style.cssText += transitionStyle;
-          });
-        });
-      }
-
-      return baseStyle + " border: 0; min-height: initial;";
-    }
-
-    notificationBarIframe = document.createElement("iframe");
-    notificationBarIframe.style.cssText = getIframeStyle(useComponentBar);
-    notificationBarIframe.id = "bit-notification-bar-iframe";
-    notificationBarIframe.src = barPageUrl;
-
-    function getFrameStyle(useComponentBar: boolean): string {
-      return (
-        (useComponentBar
-          ? "height: calc(276px + 50px); width: 450px; right: 0;"
-          : "height: 42px; width: 100%; left: 0;") +
-        " top: 0; padding: 0; position: fixed;" +
-        " z-index: 2147483647; visibility: visible;"
-      );
-    }
-
-    const frameDiv = document.createElement("div");
-    frameDiv.setAttribute("aria-live", "polite");
-    frameDiv.id = "bit-notification-bar";
-    frameDiv.style.cssText = getFrameStyle(useComponentBar);
-    frameDiv.appendChild(notificationBarIframe);
-    document.body.appendChild(frameDiv);
-
-    (notificationBarIframe.contentWindow.location as any) = barPageUrl;
-  }
-
-  function setupInitNotificationBarMessageListener(initData: NotificationBarIframeInitData) {
-    const handleInitNotificationBarMessage = (event: MessageEvent) => {
-      const { source, data } = event;
-      if (
-        source !== notificationBarIframe.contentWindow ||
-        data?.command !== "initNotificationBar"
-      ) {
-        return;
-      }
-
-      notificationBarIframe.contentWindow.postMessage(
-        { command: "initNotificationBar", initData },
-        "*",
-      );
-      injectSpacer();
-      window.removeEventListener("message", handleInitNotificationBarMessage);
-    };
-
-    window.addEventListener("message", handleInitNotificationBarMessage);
-  }
-
-  function injectSpacer() {
-    const spacer = document.createElement("div");
-    spacer.id = "bit-notification-bar-spacer";
-    spacer.style.cssText = "height: 42px;";
-    document.body.insertBefore(spacer, document.body.firstChild);
-  }
-
-  function closeBar(explicitClose: boolean) {
-    const barEl = document.getElementById("bit-notification-bar");
-    if (barEl != null) {
-      barEl.parentElement.removeChild(barEl);
-      notificationBarIframe = null;
-    }
-
-    const spacerEl = document.getElementById("bit-notification-bar-spacer");
-    if (spacerEl) {
-      spacerEl.parentElement.removeChild(spacerEl);
-    }
-
-    if (!explicitClose) {
-      return;
-    }
-
-    switch (barType) {
-      case "add":
-      case "change":
-        void sendExtensionMessage("bgRemoveTabFromNotificationQueue");
-        break;
-      default:
-        break;
-    }
-  }
-
-  function adjustBar(data: any) {
-    if (data != null && data.height !== 42) {
-      const newHeight = data.height + "px";
-      doHeightAdjustment("bit-notification-bar-iframe", newHeight);
-      doHeightAdjustment("bit-notification-bar", newHeight);
-      doHeightAdjustment("bit-notification-bar-spacer", newHeight);
-    }
-  }
-
-  function doHeightAdjustment(elId: string, heightStyle: string) {
-    const el = document.getElementById(elId);
-    if (el != null) {
-      el.style.height = heightStyle;
-    }
-  }
-  // End Notification Bar Functions (open, close, height adjustment, etc.)
-
-  // Helper Functions
-  function isInIframe() {
-    try {
-      return window.self !== window.top;
-    } catch {
-      return true;
-    }
-  }
-
-  // https://stackoverflow.com/a/41328397/20715409 - most efficient of the answers there
-  function unionSets(...iterables: Set<any>[]): Set<any> {
-    const set = new Set();
-
-    for (const iterable of iterables) {
-      for (const item of iterable) {
-        set.add(item);
-      }
-    }
-
-    return set;
-  }
-
-  /**
-   * Determine if the element is visible.
-   * Visible is define as not having `display: none` or `visibility: hidden`.
-   * @param {HTMLElement} el
-   * @returns {boolean} Returns `true` if the element is visible and `false` otherwise
-   *
-   * Copied from autofill-init.js and converted to TypeScript;
-   * TODO: could be refactored to be in a shared location if autofill-init.js is converted to TS
-   */
-  function isElementVisible(el: HTMLElement): boolean {
-    let theEl: Node | null = el;
-    // Get the top level document
-    const elDocument = el.ownerDocument;
-    const elWindow = elDocument ? elDocument.defaultView : undefined;
-
-    // walk the dom tree until we reach the top
-    while (theEl && theEl !== document) {
-      // Calculate the style of the element
-      const elStyle = elWindow?.getComputedStyle
-        ? elWindow.getComputedStyle(theEl as HTMLElement, null)
-        : (theEl as HTMLElement).style;
-
-      // If there's no computed style at all, we're done, as we know that it's not hidden
-      if (!elStyle) {
-        return true;
-      }
-
-      // If the element's computed style includes `display: none` or `visibility: hidden`, we know it's hidden
-      if ("none" === elStyle.display || "hidden" === elStyle.visibility) {
-        return false;
-      }
-
-      // At this point, we aren't sure if the element is hidden or not, so we need to keep walking up the tree
-      theEl = theEl.parentNode;
-    }
-
-    // If we've reached the top of the tree, we know that the element is visible
-    return theEl === document;
-  }
-
-  function handleExtensionDisconnection(port: chrome.runtime.Port) {
-    closeBar(false);
-    clearTimeout(domObservationCollectTimeoutId);
-    clearTimeout(collectPageDetailsTimeoutId);
-    clearTimeout(handlePageChangeTimeoutId);
-    observer?.disconnect();
-    observer = null;
-    watchedForms.forEach((wf: WatchedForm) => {
-      const form = wf.formEl;
-      form.removeEventListener("submit", formSubmitted, false);
-      const submitButton = getSubmitButton(
-        form,
-        unionSets(logInButtonNames, changePasswordButtonNames),
-      );
-      submitButton?.removeEventListener("click", formSubmitted, false);
-    });
-  }
-
-  // End Helper Functions
-}
diff --git a/apps/browser/src/autofill/notification/abstractions/notification-bar.ts b/apps/browser/src/autofill/notification/abstractions/notification-bar.ts
index 6e7427e3a38..c138776ed0e 100644
--- a/apps/browser/src/autofill/notification/abstractions/notification-bar.ts
+++ b/apps/browser/src/autofill/notification/abstractions/notification-bar.ts
@@ -12,7 +12,6 @@ const NotificationTypes = {
 type NotificationType = (typeof NotificationTypes)[keyof typeof NotificationTypes];
 
 type NotificationBarIframeInitData = {
-  applyRedesign?: boolean;
   ciphers?: NotificationCipherData[];
   folders?: FolderView[];
   importType?: string;
diff --git a/apps/browser/src/autofill/notification/bar.html b/apps/browser/src/autofill/notification/bar.html
index b686e1ec2f5..796601057d8 100644
--- a/apps/browser/src/autofill/notification/bar.html
+++ b/apps/browser/src/autofill/notification/bar.html
@@ -7,7 +7,7 @@
 
   <body>
     <div id="notification-bar-outer-wrapper" class="outer-wrapper">
-      <div class="logo">
+      <div class="logo-wrapper">
         <a href="https://vault.bitwarden.com" target="_blank" id="logo-link" rel="noreferrer">
           <img id="logo" alt="Bitwarden" />
         </a>
diff --git a/apps/browser/src/autofill/notification/bar.scss b/apps/browser/src/autofill/notification/bar.scss
index 2f1a7f1d318..c91c5f3ebac 100644
--- a/apps/browser/src/autofill/notification/bar.scss
+++ b/apps/browser/src/autofill/notification/bar.scss
@@ -1,8 +1,8 @@
 @import "../shared/styles/variables";
 
 body {
-  padding: 0;
   margin: 0;
+  padding: 0;
   height: 100%;
   font-size: 14px;
   line-height: 16px;
@@ -14,16 +14,30 @@ body {
   }
 }
 
+img {
+  margin: 0;
+  padding: 0;
+  border: 0;
+}
+
+button,
+select {
+  font-size: $font-size-base;
+  font-family: $font-family-sans-serif;
+}
+
 .outer-wrapper {
-  padding: 0 10px;
-  border-bottom: 2px solid transparent;
-  display: grid;
-  grid-template-columns: 24px auto 55px;
-  grid-column-gap: 10px;
-  box-sizing: border-box;
+  display: block;
+  position: relative;
+  padding: 8px;
   min-height: 42px;
+  border: 1px solid transparent;
+  border-bottom: 2px solid transparent;
+  border-radius: 4px;
+  box-sizing: border-box;
 
   @include themify($themes) {
+    border-color: themed("borderColor");
     border-bottom-color: themed("primaryColor");
   }
 
@@ -50,20 +64,34 @@ body {
   align-self: center;
 }
 
-img {
-  border: 0;
-  margin: 0;
-  padding: 0;
-}
-
 #logo {
   width: 24px;
   height: 24px;
   display: block;
 }
 
+.logo-wrapper {
+  position: absolute;
+  top: 8px;
+  left: 10px;
+  overflow: hidden;
+}
+
 #close-button {
+  display: flex;
+  align-items: center;
+  justify-content: center;
+  width: 30px;
+  height: 30px;
   margin-right: 10px;
+  padding: 0;
+
+  &:hover {
+    @include themify($themes) {
+      border-color: rgba(themed("textColor"), 0.2);
+      background-color: rgba(themed("textColor"), 0.2);
+    }
+  }
 }
 
 #close {
@@ -78,15 +106,79 @@ img {
   }
 }
 
-#close-button:hover {
-  @include themify($themes) {
-    border-color: rgba(themed("textColor"), 0.2);
-    background-color: rgba(themed("textColor"), 0.2);
+.notification-close {
+  position: absolute;
+  top: 6px;
+  right: 6px;
+}
+
+#content .inner-wrapper {
+  display: flex;
+  flex-wrap: wrap;
+  align-items: flex-start;
+
+  .notification-body {
+    width: 100%;
+    padding: 4px 38px 24px 42px;
+    font-weight: 400;
+  }
+
+  .notification-actions {
+    display: flex;
+    width: 100%;
+    align-items: stretch;
+    justify-content: flex-end;
+
+    #never-save {
+      margin-right: auto;
+      padding: 0;
+      font-size: 16px;
+      font-weight: 500;
+      letter-spacing: 0.5px;
+    }
+
+    #select-folder {
+      width: 125px;
+      margin-right: 6px;
+      font-size: 12px;
+      appearance: none;
+      background-repeat: no-repeat;
+      background-position: center right 4px;
+      background-size: 16px;
+
+      @include themify($themes) {
+        color: themed("mutedTextColor");
+        border-color: themed("mutedTextColor");
+      }
+
+      &:not([disabled]) {
+        display: block;
+      }
+    }
+
+    .primary,
+    .secondary {
+      font-size: 12px;
+    }
+
+    .secondary {
+      margin-right: 6px;
+      border-width: 1px;
+    }
+
+    .primary {
+      margin-right: 2px;
+    }
+
+    &.success-message,
+    &.error-message {
+      padding: 4px 36px 6px 42px;
+    }
   }
 }
 
 button {
-  padding: 0.35rem 15px;
+  padding: 4px 8px;
   border-radius: $border-radius;
   border: 1px solid transparent;
   cursor: pointer;
@@ -133,14 +225,13 @@ button.neutral {
     text-decoration: underline;
 
     @include themify($themes) {
-      background-color: transparent;
       color: darken(themed("primaryColor"), 6%);
     }
   }
 }
 
 select {
-  padding: 0.35rem;
+  padding: 4px 6px;
   border: 1px solid #000000;
   border-radius: $border-radius;
 
@@ -151,16 +242,9 @@ select {
   }
 }
 
-select,
-button {
-  font-size: $font-size-base;
-  font-family: $font-family-sans-serif;
-}
-
 .success-message {
   display: flex;
   align-items: center;
-  align-content: center;
   justify-content: center;
 
   @include themify($themes) {
@@ -184,6 +268,13 @@ button {
   }
 }
 
+.success-event,
+.error-event {
+  .notification-body {
+    display: none;
+  }
+}
+
 @media screen and (max-width: 768px) {
   #select-folder {
     display: none;
@@ -196,131 +287,8 @@ button {
   }
 }
 
-.notification-bar-redesign {
-  button {
-    padding: 4px 8px;
-  }
-
-  select {
-    padding: 4px 6px;
-  }
-
-  .outer-wrapper {
-    display: block;
-    position: relative;
-    padding: 8px;
-    border-top: 1px solid transparent;
-    border-left: 1px solid transparent;
-    border-right: 1px solid transparent;
-    border-radius: 4px;
-
-    @include themify($themes) {
-      border-top-color: themed("borderColor");
-      border-left-color: themed("borderColor");
-      border-right-color: themed("borderColor");
-    }
-  }
-
-  .logo {
-    position: absolute;
-    top: 8px;
-    left: 10px;
-    overflow: hidden;
-  }
-
-  .notification-close {
-    position: absolute;
-    top: 6px;
-    right: 6px;
-
-    #close-button {
-      display: flex;
-      align-content: center;
-      align-items: center;
-      justify-content: center;
-      width: 30px;
-      height: 30px;
-      padding: 0;
-      margin: 0;
-    }
-  }
-
-  #content .inner-wrapper {
-    display: flex;
-    align-items: flex-start;
-    align-content: flex-start;
-    flex-wrap: wrap;
-
-    .notification-body {
-      width: 100%;
-      padding: 4px 38px 24px 42px;
-      font-weight: 400;
-    }
-    .notification-actions {
-      display: flex;
-      align-items: stretch;
-      align-content: stretch;
-      justify-content: flex-end;
-      width: 100%;
-
-      #never-save {
-        margin-right: auto;
-        padding: 0;
-        font-size: 16px;
-        font-weight: 500;
-        letter-spacing: 0.5px;
-      }
-
-      #select-folder {
-        width: 125px;
-        margin-right: 6px;
-        font-size: 12px;
-        appearance: none;
-        background-size: 16px;
-        background-position: center right 4px;
-        background-repeat: no-repeat;
-
-        @include themify($themes) {
-          color: themed("mutedTextColor");
-          border-color: themed("mutedTextColor");
-        }
-
-        &:not([disabled]) {
-          display: block;
-        }
-      }
-
-      .primary,
-      .secondary {
-        font-size: 12px;
-      }
-
-      .secondary {
-        margin-right: 6px;
-        border-width: 1px;
-      }
-
-      .primary {
-        margin-right: 2px;
-      }
-
-      &.success-message,
-      &.error-message {
-        padding: 4px 36px 6px 42px;
-      }
-    }
-  }
-
-  .success-event,
-  .error-event {
-    .notification-body {
-      display: none;
-    }
-  }
-}
-
 .theme_light {
-  .notification-bar-redesign #content .inner-wrapper {
+  #content .inner-wrapper {
     #select-folder {
       background-image: url("data:image/svg+xml;base64,PHN2ZyB4bWxucz0naHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmcnIHhtbG5zOnhsaW5rPSdodHRwOi8vd3d3LnczLm9yZy8xOTk5L3hsaW5rJyB3aWR0aD0nMTYnIGhlaWdodD0nMTYnIGZpbGw9J25vbmUnPjxwYXRoIHN0cm9rZT0nIzIxMjUyOScgZD0nbTUgNiAzIDMgMy0zJy8+PC9zdmc+");
     }
@@ -328,7 +296,7 @@ button {
 }
 
 .theme_dark {
-  .notification-bar-redesign #content .inner-wrapper {
+  #content .inner-wrapper {
     #select-folder {
       background-image: url("data:image/svg+xml;base64,PHN2ZyB4bWxucz0naHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmcnIHdpZHRoPScxNicgaGVpZ2h0PScxNicgZmlsbD0nbm9uZSc+PHBhdGggc3Ryb2tlPScjZmZmZmZmJyBkPSdtNSA2IDMgMyAzLTMnLz48L3N2Zz4=");
     }
diff --git a/apps/browser/src/autofill/notification/bar.ts b/apps/browser/src/autofill/notification/bar.ts
index d17c008372d..139b4551a24 100644
--- a/apps/browser/src/autofill/notification/bar.ts
+++ b/apps/browser/src/autofill/notification/bar.ts
@@ -507,10 +507,6 @@ function setNotificationBarTheme() {
   const theme = getTheme(globalThis, notificationBarIframeInitData.theme);
 
   document.documentElement.classList.add(`theme_${theme}`);
-
-  if (notificationBarIframeInitData.applyRedesign) {
-    document.body.classList.add("notification-bar-redesign");
-  }
 }
 
 function postMessageToParent(message: NotificationBarWindowMessage) {
diff --git a/apps/browser/src/autofill/overlay/notifications/content/overlay-notifications-content.service.ts b/apps/browser/src/autofill/overlay/notifications/content/overlay-notifications-content.service.ts
index 43a966dc4b6..662ec624dc4 100644
--- a/apps/browser/src/autofill/overlay/notifications/content/overlay-notifications-content.service.ts
+++ b/apps/browser/src/autofill/overlay/notifications/content/overlay-notifications-content.service.ts
@@ -17,6 +17,7 @@ export class OverlayNotificationsContentService
   private notificationBarIframeElement: HTMLIFrameElement | null = null;
   private currentNotificationBarType: string | null = null;
   private removeTabFromNotificationQueueTypes = new Set(["add", "change"]);
+  private notificationRefreshFlag: boolean;
   private notificationBarElementStyles: Partial<CSSStyleDeclaration> = {
     height: "82px",
     width: "430px",
@@ -54,6 +55,9 @@ export class OverlayNotificationsContentService
 
   constructor() {
     void sendExtensionMessage("checkNotificationQueue");
+    void sendExtensionMessage("notificationRefreshFlagValue").then((notificationRefreshFlag) => {
+      this.notificationRefreshFlag = !!notificationRefreshFlag;
+    });
   }
 
   /**
@@ -84,7 +88,6 @@ export class OverlayNotificationsContentService
       theme: typeData.theme,
       removeIndividualVault: typeData.removeIndividualVault,
       importType: typeData.importType,
-      applyRedesign: true,
       launchTimestamp: typeData.launchTimestamp,
     };
 
@@ -192,7 +195,13 @@ export class OverlayNotificationsContentService
       { transform: "translateX(0)", opacity: "1" },
       true,
     );
-    setElementStyles(this.notificationBarElement, { boxShadow: "2px 4px 6px 0px #0000001A" }, true);
+    if (!this.notificationRefreshFlag) {
+      setElementStyles(
+        this.notificationBarElement,
+        { boxShadow: "2px 4px 6px 0px #0000001A" },
+        true,
+      );
+    }
     this.notificationBarIframeElement.removeEventListener(
       EVENTS.LOAD,
       this.handleNotificationBarIframeOnLoad,
@@ -206,7 +215,13 @@ export class OverlayNotificationsContentService
     if (this.notificationBarIframeElement) {
       this.notificationBarElement = globalThis.document.createElement("div");
       this.notificationBarElement.id = "bit-notification-bar";
+
       setElementStyles(this.notificationBarElement, this.notificationBarElementStyles, true);
+
+      if (this.notificationRefreshFlag) {
+        setElementStyles(this.notificationBarElement, { height: "400px", right: "0" }, true);
+      }
+
       this.notificationBarElement.appendChild(this.notificationBarIframeElement);
     }
   }
diff --git a/apps/browser/src/autofill/services/autofill.service.spec.ts b/apps/browser/src/autofill/services/autofill.service.spec.ts
index 7bc66ea322c..ef7a7ed47d4 100644
--- a/apps/browser/src/autofill/services/autofill.service.spec.ts
+++ b/apps/browser/src/autofill/services/autofill.service.spec.ts
@@ -380,7 +380,7 @@ describe("AutofillService", () => {
     const autofillOverlayMenuBootstrapScript = "bootstrap-autofill-overlay-menu.js";
     const autofillOverlayNotificationsBootstrapScript =
       "bootstrap-autofill-overlay-notifications.js";
-    const defaultAutofillScripts = ["autofiller.js", "notificationBar.js", "contextMenuHandler.js"];
+    const defaultAutofillScripts = ["autofiller.js", "contextMenuHandler.js"];
     const defaultExecuteScriptOptions = { runAt: "document_start" };
     let tabMock: chrome.tabs.Tab;
     let sender: chrome.runtime.MessageSender;
@@ -400,13 +400,9 @@ describe("AutofillService", () => {
     });
 
     it("accepts an extension message sender and injects the autofill scripts into the tab of the sender", async () => {
-      configService.getFeatureFlag.mockImplementation(async (_feature) => {
-        if (_feature === FeatureFlag.NotificationBarAddLoginImprovements) {
-          return false as FeatureFlagValueType<any>;
-        }
+      enableChangedPasswordPromptMock$.next(false);
+      enableAddedLoginPromptMock$.next(false);
 
-        return true as FeatureFlagValueType<any>;
-      });
       await autofillService.injectAutofillScripts(sender.tab, sender.frameId, true);
 
       [autofillOverlayMenuBootstrapScript, ...defaultAutofillScripts].forEach((scriptName) => {
@@ -457,25 +453,12 @@ describe("AutofillService", () => {
       });
     });
 
-    it("will inject the bootstrap-autofill script if the user does not have the autofill overlay enabled", async () => {
+    it("will inject the overlay script if the user does not have the autofill overlay enabled", async () => {
       jest
         .spyOn(autofillService, "getInlineMenuVisibility")
         .mockResolvedValue(AutofillOverlayVisibility.Off);
-      configService.getFeatureFlag.mockImplementation(async (_feature) => {
-        if (_feature === FeatureFlag.NotificationBarAddLoginImprovements) {
-          return false as FeatureFlagValueType<any>;
-        }
-
-        return true as FeatureFlagValueType<any>;
-      });
 
       await autofillService.injectAutofillScripts(sender.tab, sender.frameId);
-
-      expect(BrowserApi.executeScriptInTab).toHaveBeenCalledWith(tabMock.id, {
-        file: `content/${autofillBootstrapScript}`,
-        frameId: sender.frameId,
-        ...defaultExecuteScriptOptions,
-      });
       expect(BrowserApi.executeScriptInTab).not.toHaveBeenCalledWith(tabMock.id, {
         file: `content/${autofillOverlayBootstrapScript}`,
         frameId: sender.frameId,
diff --git a/apps/browser/src/autofill/services/autofill.service.ts b/apps/browser/src/autofill/services/autofill.service.ts
index ed8b2033209..ad3f4cc15eb 100644
--- a/apps/browser/src/autofill/services/autofill.service.ts
+++ b/apps/browser/src/autofill/services/autofill.service.ts
@@ -236,13 +236,8 @@ export default class AutofillService implements AutofillServiceInterface {
     const authStatus = await firstValueFrom(this.authService.activeAccountStatus$);
     const accountIsUnlocked = authStatus === AuthenticationStatus.Unlocked;
     let autoFillOnPageLoadIsEnabled = false;
-    const addLoginImprovementsFlagActive = await this.configService.getFeatureFlag(
-      FeatureFlag.NotificationBarAddLoginImprovements,
-    );
 
-    const injectedScripts = [
-      await this.getBootstrapAutofillContentScript(activeAccount, addLoginImprovementsFlagActive),
-    ];
+    const injectedScripts = [await this.getBootstrapAutofillContentScript(activeAccount)];
 
     if (activeAccount && accountIsUnlocked) {
       autoFillOnPageLoadIsEnabled = await this.getAutofillOnPageLoad();
@@ -259,10 +254,6 @@ export default class AutofillService implements AutofillServiceInterface {
       });
     }
 
-    if (!addLoginImprovementsFlagActive) {
-      injectedScripts.push("notificationBar.js");
-    }
-
     injectedScripts.push("contextMenuHandler.js");
 
     for (const injectedScript of injectedScripts) {
@@ -283,11 +274,9 @@ export default class AutofillService implements AutofillServiceInterface {
    * enabled.
    *
    * @param activeAccount - The active account
-   * @param addLoginImprovementsFlagActive - Whether the add login improvements feature flag is active
    */
   private async getBootstrapAutofillContentScript(
     activeAccount: { id: UserId | undefined } & AccountInfo,
-    addLoginImprovementsFlagActive = false,
   ): Promise<string> {
     let inlineMenuVisibility: InlineMenuVisibilitySetting = AutofillOverlayVisibility.Off;
 
@@ -310,8 +299,7 @@ export default class AutofillService implements AutofillServiceInterface {
     const enableAddedLoginPrompt = await firstValueFrom(
       this.userNotificationSettingsService.enableAddedLoginPrompt$,
     );
-    const isNotificationBarEnabled =
-      addLoginImprovementsFlagActive && (enableChangedPasswordPrompt || enableAddedLoginPrompt);
+    const isNotificationBarEnabled = enableChangedPasswordPrompt || enableAddedLoginPrompt;
 
     if (!inlineMenuVisibility && !isNotificationBarEnabled) {
       return "bootstrap-autofill.js";
diff --git a/apps/browser/src/background/main.background.ts b/apps/browser/src/background/main.background.ts
index ac62ad1c9a8..56df1db9133 100644
--- a/apps/browser/src/background/main.background.ts
+++ b/apps/browser/src/background/main.background.ts
@@ -1195,7 +1195,6 @@ export default class MainBackground {
 
     this.overlayNotificationsBackground = new OverlayNotificationsBackground(
       this.logService,
-      this.configService,
       this.notificationBackground,
     );
 
diff --git a/apps/browser/webpack.config.js b/apps/browser/webpack.config.js
index ff5331ae459..f386a3167ec 100644
--- a/apps/browser/webpack.config.js
+++ b/apps/browser/webpack.config.js
@@ -201,7 +201,6 @@ const mainConfig = {
       "./src/autofill/deprecated/content/bootstrap-legacy-autofill-overlay.ts",
     "content/autofiller": "./src/autofill/content/autofiller.ts",
     "content/auto-submit-login": "./src/autofill/content/auto-submit-login.ts",
-    "content/notificationBar": "./src/autofill/content/notification-bar.ts",
     "content/contextMenuHandler": "./src/autofill/content/context-menu-handler.ts",
     "content/content-message-handler": "./src/autofill/content/content-message-handler.ts",
     "content/fido2-content-script": "./src/autofill/fido2/content/fido2-content-script.ts",
diff --git a/libs/common/src/enums/feature-flag.enum.ts b/libs/common/src/enums/feature-flag.enum.ts
index 59efbee8760..cd88a415caf 100644
--- a/libs/common/src/enums/feature-flag.enum.ts
+++ b/libs/common/src/enums/feature-flag.enum.ts
@@ -25,7 +25,6 @@ export enum FeatureFlag {
   GenerateIdentityFillScriptRefactor = "generate-identity-fill-script-refactor",
   IdpAutoSubmitLogin = "idp-auto-submit-login",
   InlineMenuPositioningImprovements = "inline-menu-positioning-improvements",
-  NotificationBarAddLoginImprovements = "notification-bar-add-login-improvements",
   NotificationRefresh = "notification-refresh",
   UseTreeWalkerApiForPageDetailsCollection = "use-tree-walker-api-for-page-details-collection",
   MacOsNativeCredentialSync = "macos-native-credential-sync",
@@ -86,7 +85,6 @@ export const DefaultFeatureFlagValue = {
   [FeatureFlag.GenerateIdentityFillScriptRefactor]: FALSE,
   [FeatureFlag.IdpAutoSubmitLogin]: FALSE,
   [FeatureFlag.InlineMenuPositioningImprovements]: FALSE,
-  [FeatureFlag.NotificationBarAddLoginImprovements]: FALSE,
   [FeatureFlag.NotificationRefresh]: FALSE,
   [FeatureFlag.UseTreeWalkerApiForPageDetailsCollection]: FALSE,
   [FeatureFlag.MacOsNativeCredentialSync]: FALSE,

From 0d9794e9686ed607d5fb3e0913a7b0530a3efb3e Mon Sep 17 00:00:00 2001
From: Vince Grassia <593223+vgrassia@users.noreply.github.com>
Date: Wed, 2 Apr 2025 06:50:31 -0700
Subject: [PATCH 6/6] Add Docker arm64 builds (#14025)

---
 .github/workflows/build-web.yml | 236 +++++++++++++-------------------
 apps/web/Dockerfile             |  77 ++++++++++-
 2 files changed, 167 insertions(+), 146 deletions(-)

diff --git a/.github/workflows/build-web.yml b/.github/workflows/build-web.yml
index e91fba2e87a..a0d9026e471 100644
--- a/.github/workflows/build-web.yml
+++ b/.github/workflows/build-web.yml
@@ -42,10 +42,11 @@ on:
 env:
   _AZ_REGISTRY: bitwardenprod.azurecr.io
 
+
 jobs:
   setup:
     name: Setup
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     outputs:
       version: ${{ steps.version.outputs.value }}
       node_version: ${{ steps.retrieve-node-version.outputs.node_version }}
@@ -54,7 +55,7 @@ jobs:
       - name: Check out repo
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
-          ref: ${{  github.event.pull_request.head.sha }}
+          ref: ${{ github.event.pull_request.head.sha }}
 
       - name: Get GitHub sha as version
         id: version
@@ -75,133 +76,61 @@ jobs:
           has_secrets=${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL != '' }}
           echo "has_secrets=$has_secrets" >> $GITHUB_OUTPUT
 
-  build-artifacts:
-    name: Build artifacts
-    runs-on: ubuntu-22.04
-    needs:
-      - setup
-    env:
-      _VERSION: ${{ needs.setup.outputs.version }}
-      _NODE_VERSION: ${{ needs.setup.outputs.node_version }}
-    strategy:
-      matrix:
-        include:
-          - name: "selfhosted-open-source"
-            npm_command: "dist:oss:selfhost"
-          - name: "cloud-COMMERCIAL"
-            npm_command: "dist:bit:cloud"
-          - name: "selfhosted-COMMERCIAL"
-            npm_command: "dist:bit:selfhost"
-          - name: "cloud-QA"
-            npm_command: "build:bit:qa"
-            git_metadata: true
-          - name: "ee"
-            npm_command: "build:bit:ee"
-            git_metadata: true
-          - name: "cloud-euprd"
-            npm_command: "build:bit:euprd"
-          - name: "cloud-euqa"
-            npm_command: "build:bit:euqa"
-            git_metadata: true
-          - name: "cloud-usdev"
-            npm_command: "build:bit:usdev"
-            git_metadata: true
-
-    steps:
-      - name: Check out repo
-        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
-        with:
-          ref: ${{  github.event.pull_request.head.sha }}
-
-      - name: Set up Node
-        uses: actions/setup-node@39370e3970a6d050c480ffad4ff0ed4d3fdee5af # v4.1.0
-        with:
-          cache: 'npm'
-          cache-dependency-path: '**/package-lock.json'
-          node-version: ${{ env._NODE_VERSION }}
-
-      - name: Print environment
-        run: |
-          whoami
-          node --version
-          npm --version
-          docker --version
-          echo "GitHub ref: $GITHUB_REF"
-          echo "GitHub event: $GITHUB_EVENT"
-
-      - name: Install dependencies
-        run: npm ci
-
-      - name: Download SDK Artifacts
-        if: ${{ inputs.sdk_branch != '' && needs.setup.outputs.has_secrets == 'true' }}
-        uses: bitwarden/gh-actions/download-artifacts@main
-        with:
-          github_token: ${{secrets.GITHUB_TOKEN}}
-          workflow: build-wasm-internal.yml
-          workflow_conclusion: success
-          branch: ${{ inputs.sdk_branch }}
-          artifacts: sdk-internal
-          repo: bitwarden/sdk-internal
-          path: ../sdk-internal
-          if_no_artifact_found: fail
-
-      - name: Override SDK
-        if: ${{ inputs.sdk_branch != '' && needs.setup.outputs.has_secrets == 'true' }}
-        working-directory: ./
-        run: |
-          ls -l ../
-          npm link ../sdk-internal
-
-      - name: Add Git metadata to build version
-        working-directory: apps/web
-        if: matrix.git_metadata
-        run: |
-          VERSION=$( jq -r ".version" package.json)
-          jq --arg version "$VERSION+${GITHUB_SHA:0:7}" '.version = $version' package.json > package.json.tmp
-          mv package.json.tmp package.json
-
-      - name: Build ${{ matrix.name }}
-        working-directory: apps/web
-        run: npm run ${{ matrix.npm_command }}
-
-      - name: Package artifact
-        working-directory: apps/web
-        run: zip -r web-${{ env._VERSION }}-${{ matrix.name }}.zip build
-
-      - name: Upload ${{ matrix.name }} artifact
-        uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0
-        with:
-          name: web-${{ env._VERSION }}-${{ matrix.name }}.zip
-          path: apps/web/web-${{ env._VERSION }}-${{ matrix.name }}.zip
-          if-no-files-found: error
-
 
   build-containers:
-    name: Build Docker images
-    runs-on: ubuntu-22.04
+    name: Build artifacts and container images
+    runs-on: ubuntu-24.04
     permissions:
       security-events: write
       id-token: write
-    needs:
-      - setup
-      - build-artifacts
+    needs: setup
     strategy:
       fail-fast: false
       matrix:
         include:
-          - artifact_name: cloud-QA
-            image_name: web-qa-cloud
-          - artifact_name: ee
-            image_name: web-ee
+          - artifact_name: selfhosted-open-source
+            image_name: web-oss
+            npm_command: dist:oss:selfhost
+          - artifact_name: cloud-COMMERCIAL
+            image_name: web-cloud
+            npm_command: dist:bit:cloud
           - artifact_name: selfhosted-COMMERCIAL
             image_name: web
+            npm_command: dist:bit:selfhost
+          - artifact_name: cloud-QA
+            image_name: web-qa-cloud
+            npm_command: build:bit:qa
+            git_metadata: true
+          - artifact_name: ee
+            image_name: web-ee
+            npm_command: build:bit:ee
+            git_metadata: true
+          - artifact_name: cloud-euprd
+            image_name: web-euprd
+            npm_command: build:bit:euprd
+          - artifact_name: cloud-euqa
+            image_name: web-euqa
+            npm_command: build:bit:euqa
+            git_metadata: true
+          - artifact_name: cloud-usdev
+            image_name: web-usdev
+            npm_command: build:bit:usdev
+            git_metadata: true
     env:
+      _NODE_VERSION: ${{ needs.setup.outputs.node_version }}
       _VERSION: ${{ needs.setup.outputs.version }}
     steps:
       - name: Check out repo
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
-          ref: ${{  github.event.pull_request.head.sha }}
+          ref: ${{ github.event.pull_request.head.sha }}
+
+      - name: Check out Server repo
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+        with:
+          path: server
+          repository: bitwarden/server
+          ref: ${{ github.event.pull_request.head.sha && 'main' || github.ref }}
 
       - name: Check Branch to Publish
         env:
@@ -216,6 +145,21 @@ jobs:
             echo "is_publish_branch=false" >> $GITHUB_ENV
           fi
 
+      - name: Add Git metadata to build version
+        working-directory: apps/web
+        if: matrix.git_metadata
+        run: |
+          VERSION=$( jq -r ".version" package.json)
+          jq --arg version "$VERSION+${GITHUB_SHA:0:7}" '.version = $version' package.json > package.json.tmp
+          mv package.json.tmp package.json
+      
+      ########## Set up Docker ##########
+      - name: Set up QEMU emulators
+        uses: docker/setup-qemu-action@68827325e0b33c7199eb31dd4e31fbe9023e06e3 # v3.0.0
+
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@f95db51fddba0c2d1ec667646a06c2ce06100226 # v3.0.0
+
       ########## ACRs ##########
       - name: Login to Prod Azure
         if: ${{ needs.setup.outputs.has_secrets == 'true' }}
@@ -225,7 +169,7 @@ jobs:
 
       - name: Log into Prod container registry
         if: ${{ needs.setup.outputs.has_secrets == 'true' }}
-        run: az acr login -n bitwardenprod
+        run: az acr login -n ${_AZ_REGISTRY%.azurecr.io}
 
       - name: Login to Azure - CI Subscription
         if: ${{ needs.setup.outputs.has_secrets == 'true' }}
@@ -241,14 +185,8 @@ jobs:
           keyvault: "bitwarden-ci"
           secrets: "github-pat-bitwarden-devops-bot-repo-scope"
 
-      - name: Download ${{ matrix.artifact_name }} artifact
-        uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8
-        with:
-          name: web-${{ env._VERSION }}-${{ matrix.artifact_name }}.zip
-          path: apps/web
-
       ########## Generate image tag and build Docker image ##########
-      - name: Generate Docker image tag
+      - name: Generate container image tag
         id: tag
         run: |
           if [[ "${GITHUB_EVENT_NAME}" == "pull_request" ]]; then
@@ -270,10 +208,6 @@ jobs:
           echo "image_tag=$IMAGE_TAG" >> $GITHUB_OUTPUT
 
       ########## Build Image ##########
-      - name: Extract artifact
-        working-directory: apps/web
-        run: unzip web-${{ env._VERSION }}-${{ matrix.artifact_name }}.zip
-
       - name: Generate image full name
         id: image-name
         env:
@@ -283,16 +217,38 @@ jobs:
 
       - name: Build Docker image
         if: ${{ needs.setup.outputs.has_secrets == 'true' }}
-        id: build-docker
+        id: build-container
         uses: docker/build-push-action@67a2d409c0a876cbe6b11854e3e25193efe4e62d # v6.12.0
         with:
-          context: apps/web
+          build-args: |
+            NODE_VERSION=${{ env._NODE_VERSION }}
+            NPM_COMMAND=${{ matrix.npm_command }}
+          context: .
           file: apps/web/Dockerfile
-          platforms: linux/amd64
+          platforms: |
+            linux/amd64,
+            linux/arm/v7,
+            linux/arm64
           push: true
           tags: ${{ steps.image-name.outputs.name }}
-          secrets: |
-            "GH_PAT=${{ steps.retrieve-secret-pat.outputs.github-pat-bitwarden-devops-bot-repo-scope }}"
+
+      - name: Zip project
+        working-directory: apps/web
+        env:
+          IMAGE_NAME: ${{ steps.image-name.outputs.name }}
+        run: |
+          mkdir build
+          docker run --rm --volume $(pwd)/build:/temp --entrypoint bash \
+            $IMAGE_NAME -c "cp -r ./ /temp"
+
+          zip -r web-${{ env._VERSION }}-${{ matrix.artifact_name }}.zip build
+
+      - name: Upload ${{ matrix.artifact_name }} artifact
+        uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0
+        with:
+          name: web-${{ env._VERSION }}-${{ matrix.artifact_name }}.zip
+          path: apps/web/web-${{ env._VERSION }}-${{ matrix.artifact_name }}.zip
+          if-no-files-found: error
 
       - name: Install Cosign
         if: github.event_name != 'pull_request_target' && github.ref == 'refs/heads/main'
@@ -301,7 +257,7 @@ jobs:
       - name: Sign image with Cosign
         if: github.event_name != 'pull_request_target' && github.ref == 'refs/heads/main'
         env:
-          DIGEST: ${{ steps.build-docker.outputs.digest }}
+          DIGEST: ${{ steps.build-container.outputs.digest }}
           TAGS: ${{ steps.image-name.outputs.name }}
         run: |
           IFS="," read -a tags <<< "${TAGS}"
@@ -329,19 +285,19 @@ jobs:
           ref: ${{ contains(github.event_name, 'pull_request') && format('refs/pull/{0}/head', github.event.pull_request.number) || github.ref }}
 
       - name: Log out of Docker
-        run: docker logout
+        run: docker logout $_AZ_REGISTRY
 
+  
   crowdin-push:
     name: Crowdin Push
     if: github.event_name != 'pull_request_target' && github.ref == 'refs/heads/main'
-    needs:
-      - build-artifacts
-    runs-on: ubuntu-22.04
+    needs: build-containers
+    runs-on: ubuntu-24.04
     steps:
       - name: Check out repo
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
-          ref: ${{  github.event.pull_request.head.sha }}
+          ref: ${{ github.event.pull_request.head.sha }}
 
       - name: Login to Azure
         uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
@@ -367,12 +323,12 @@ jobs:
           upload_sources: true
           upload_translations: false
 
+
   trigger-web-vault-deploy:
     name: Trigger web vault deploy
     if: github.event_name != 'pull_request_target' && github.ref == 'refs/heads/main'
-    runs-on: ubuntu-22.04
-    needs:
-      - build-artifacts
+    runs-on: ubuntu-24.04
+    needs: build-containers
     steps:
       - name: Login to Azure - CI Subscription
         uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.6.0
@@ -402,13 +358,13 @@ jobs:
               }
             })
 
+
   check-failures:
     name: Check for failures
     if: always()
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     needs:
       - setup
-      - build-artifacts
       - build-containers
       - crowdin-push
       - trigger-web-vault-deploy
diff --git a/apps/web/Dockerfile b/apps/web/Dockerfile
index 09dac7f4c48..05def421c82 100644
--- a/apps/web/Dockerfile
+++ b/apps/web/Dockerfile
@@ -1,18 +1,83 @@
-FROM ghcr.io/bitwarden/server
+###############################################
+#                Build stage 1                #
+###############################################
+ARG NODE_VERSION=20
+FROM --platform=$BUILDPLATFORM node:${NODE_VERSION} AS node-build
 
+ARG NPM_COMMAND=dist:bit:selfhost
+
+WORKDIR /source
+COPY . .
+
+RUN npm ci
+
+WORKDIR /source/apps/web
+RUN npm run ${NPM_COMMAND}
+
+###############################################
+#                Build stage 2                #
+###############################################
+FROM --platform=$BUILDPLATFORM mcr.microsoft.com/dotnet/sdk:8.0 AS build
+
+# Docker buildx supplies the value for this arg
+ARG TARGETPLATFORM
+
+# Determine proper runtime value for .NET
+# We put the value in a file to be read by later layers.
+RUN if [ "$TARGETPLATFORM" = "linux/amd64" ]; then \
+      RID=linux-x64 ; \
+    elif [ "$TARGETPLATFORM" = "linux/arm64" ]; then \
+      RID=linux-arm64 ; \
+    elif [ "$TARGETPLATFORM" = "linux/arm/v7" ]; then \
+      RID=linux-arm ; \
+    fi \
+    && echo "RID=$RID" > /tmp/rid.txt
+
+# Copy csproj files as distinct layers
+WORKDIR /source
+COPY server/util/Server/*.csproj ./util/Server/
+COPY server/Directory.Build.props .
+COPY server/.editorconfig .
+
+# Restore Server project dependencies and tools
+WORKDIR /source/util/Server
+RUN . /tmp/rid.txt && dotnet restore -r $RID
+
+# Copy required project files
+WORKDIR /source
+COPY server/util/Server/. ./util/Server/
+COPY server/.git/. ./.git/
+
+# Build Server app
+WORKDIR /source/util/Server
+RUN . /tmp/rid.txt && dotnet publish -c release -o /app/Server --no-restore --no-self-contained -r $RID
+
+WORKDIR /app
+
+###############################################
+#                  App stage                  #
+###############################################
+FROM mcr.microsoft.com/dotnet/aspnet:8.0
+
+ARG TARGETPLATFORM
 LABEL com.bitwarden.product="bitwarden"
+ENV ASPNETCORE_ENVIRONMENT=Production
+ENV ASPNETCORE_URLS=http://+:5000
+EXPOSE 5000
 
 RUN apt-get update \
     && apt-get install -y --no-install-recommends \
         gosu \
         curl \
-&& rm -rf /var/lib/apt/lists/*
+    && rm -rf /var/lib/apt/lists/*
+
+# Copy app from the build stage
+WORKDIR /bitwarden_server
+COPY --from=build /app/Server ./
 
-ENV ASPNETCORE_URLS http://+:5000
 WORKDIR /app
-EXPOSE 5000
-COPY ./build .
-COPY entrypoint.sh /
+COPY --from=node-build /source/apps/web/build .
+COPY --from=node-build /source/apps/web/entrypoint.sh /
 RUN chmod +x /entrypoint.sh
 
 HEALTHCHECK CMD curl -f http://localhost:5000 || exit 1