fix(sso-config): (Auth) [PM-26927] Bugfix for Key Connector URL (#16863)

The Key Connector URL was getting overwritten back to the default URL on `submit()` because `valueChanges` gets triggered during `submit()`. This fix adds a check to make sure we only set the default URL when changing TO Key Connector from a different decryption option. In other words, don't overwrite back to the default URL during `submit()`. Also removes the trailing slash `/` from the default URL.
2025-12-18 09:13:33 +00:00 · 2025-10-15 13:45:05 -07:00
parent 7afc456077
commit df1dd168dc
1 changed files with 23 additions and 6 deletions
--- a/bitwarden_license/bit-web/src/app/auth/sso/sso.component.ts
+++ b/bitwarden_license/bit-web/src/app/auth/sso/sso.component.ts
@@ -9,7 +9,15 @@ import {
  Validators,
 } from "@angular/forms";
 import { ActivatedRoute } from "@angular/router";
-import { concatMap, firstValueFrom, Subject, switchMap, takeUntil } from "rxjs";
+import {
+  concatMap,
+  firstValueFrom,
+  pairwise,
+  startWith,
+  Subject,
+  switchMap,
+  takeUntil,
+} from "rxjs";

 import { ControlsOf } from "@bitwarden/angular/types/controls-of";
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
@@ -263,18 +271,27 @@ export class SsoComponent implements OnInit, OnDestroy {
  }

  listenForKeyConnectorSelection() {
+    const memberDecryptionTypeOnInit = this.ssoConfigForm?.controls?.memberDecryptionType.value;
+
    this.ssoConfigForm?.controls?.memberDecryptionType.valueChanges
      .pipe(
-        switchMap(async (memberDecryptionType) => {
-          if (memberDecryptionType === MemberDecryptionType.KeyConnector) {
+        startWith(memberDecryptionTypeOnInit),
+        pairwise(),
+        switchMap(async ([prevMemberDecryptionType, newMemberDecryptionType]) => {
+          // Only pre-populate a default URL when changing TO Key Connector from a different decryption type.
+          // ValueChanges gets re-triggered during the submit() call, so we need a !== check
+          // to prevent a custom URL from getting overwritten back to the default on a submit().
+          if (
+            prevMemberDecryptionType !== MemberDecryptionType.KeyConnector &&
+            newMemberDecryptionType === MemberDecryptionType.KeyConnector
+          ) {
            // Pre-populate a default key connector URL (user can still change it)
            const env = await firstValueFrom(this.environmentService.environment$);
            const webVaultUrl = env.getWebVaultUrl();
-            const defaultKeyConnectorUrl = webVaultUrl + "/key-connector/";
+            const defaultKeyConnectorUrl = webVaultUrl + "/key-connector";

            this.ssoConfigForm.controls.keyConnectorUrl.setValue(defaultKeyConnectorUrl);
-          } else {
-            // Otherwise clear the key connector URL
+          } else if (newMemberDecryptionType !== MemberDecryptionType.KeyConnector) {
            this.ssoConfigForm.controls.keyConnectorUrl.setValue("");
          }
        }),