feat(change-password-component): Change Password Update [18720] - Org invite is seemingly working, found one bug to iron out.

2026-02-24 00:23:17 +00:00 · 2025-05-30 10:40:27 -04:00
parent 06039927bb
commit bb11db344f
10 changed files with 96 additions and 30 deletions
--- a/libs/auth/src/angular/login/login.component.ts
+++ b/libs/auth/src/angular/login/login.component.ts
@@ -18,9 +18,11 @@ import { Policy } from "@bitwarden/common/admin-console/models/domain/policy";
 import { DevicesApiServiceAbstraction } from "@bitwarden/common/auth/abstractions/devices-api.service.abstraction";
 import { AuthResult } from "@bitwarden/common/auth/models/domain/auth-result";
 import { ClientType, HttpStatusCode } from "@bitwarden/common/enums";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { ErrorResponse } from "@bitwarden/common/models/response/error.response";
 import { AppIdService } from "@bitwarden/common/platform/abstractions/app-id.service";
 import { BroadcasterService } from "@bitwarden/common/platform/abstractions/broadcaster.service";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
@@ -123,6 +125,7 @@ export class LoginComponent implements OnInit, OnDestroy {
    private logService: LogService,
    private validationService: ValidationService,
    private loginSuccessHandlerService: LoginSuccessHandlerService,
+    private configService: ConfigService,
  ) {
    this.clientType = this.platformUtilsService.getClientType();
  }
@@ -226,7 +229,20 @@ export class LoginComponent implements OnInit, OnDestroy {
      return;
    }

-    const credentials = new PasswordLoginCredentials(email, masterPassword);
+    let credentials: PasswordLoginCredentials;
+
+    if (
+      (await this.configService.getFeatureFlag(
+        FeatureFlag.PM16117_ChangeExistingPasswordRefactor,
+      )) &&
+      this.loginComponentService.getOrgPoliciesFromOrgInvite
+    ) {
+      const orgPoliciesFromInvite = await this.loginComponentService.getOrgPoliciesFromOrgInvite();
+      const orgPolicies = orgPoliciesFromInvite?.enforcedPasswordPolicyOptions ?? undefined;
+      credentials = new PasswordLoginCredentials(email, masterPassword, undefined, orgPolicies);
+    } else {
+      credentials = new PasswordLoginCredentials(email, masterPassword);
+    }

    try {
      const authResult = await this.loginStrategyService.logIn(credentials);
@@ -312,26 +328,30 @@ export class LoginComponent implements OnInit, OnDestroy {
    // Determine where to send the user next
    // The AuthGuard will handle routing to update-temp-password based on state

-    // TODO: PM-18269 - evaluate if we can combine this with the
-    // password evaluation done in the password login strategy.
-    // If there's an existing org invite, use it to get the org's password policies
-    // so we can evaluate the MP against the org policies
-    if (this.loginComponentService.getOrgPoliciesFromOrgInvite) {
-      const orgPolicies: PasswordPolicies | null =
-        await this.loginComponentService.getOrgPoliciesFromOrgInvite();
+    if (
+      !(await this.configService.getFeatureFlag(FeatureFlag.PM16117_ChangeExistingPasswordRefactor))
+    ) {
+      // TODO: PM-18269 - evaluate if we can combine this with the
+      // password evaluation done in the password login strategy.
+      // If there's an existing org invite, use it to get the org's password policies
+      // so we can evaluate the MP against the org policies
+      if (this.loginComponentService.getOrgPoliciesFromOrgInvite) {
+        const orgPolicies: PasswordPolicies | null =
+          await this.loginComponentService.getOrgPoliciesFromOrgInvite();

-      if (orgPolicies) {
-        // Since we have retrieved the policies, we can go ahead and set them into state for future use
-        // e.g., the update-password page currently only references state for policy data and
-        // doesn't fallback to pulling them from the server like it should if they are null.
-        await this.setPoliciesIntoState(authResult.userId, orgPolicies.policies);
+        if (orgPolicies) {
+          // Since we have retrieved the policies, we can go ahead and set them into state for future use
+          // e.g., the update-password page currently only references state for policy data and
+          // doesn't fallback to pulling them from the server like it should if they are null.
+          await this.setPoliciesIntoState(authResult.userId, orgPolicies.policies);

-        const isPasswordChangeRequired = await this.isPasswordChangeRequiredByOrgPolicy(
-          orgPolicies.enforcedPasswordPolicyOptions,
-        );
-        if (isPasswordChangeRequired) {
-          await this.router.navigate(["update-password"]);
-          return;
+          const isPasswordChangeRequired = await this.isPasswordChangeRequiredByOrgPolicy(
+            orgPolicies.enforcedPasswordPolicyOptions,
+          );
+          if (isPasswordChangeRequired) {
+            await this.router.navigate(["update-password"]);
+            return;
+          }
        }
      }
    }