[PM-22516] Fix cipher key decryption to handle new error-based API instead of null returns (#15124)

* Replace null check in cipher key decryption * Handle decryption error properly in user asymmetric key regeneration service
2025-12-06 00:13:28 +00:00 · 2025-06-23 09:11:52 -04:00
parent 54d7d27221
commit e253e05c45
3 changed files with 83 additions and 11 deletions
--- a/libs/key-management/src/user-asymmetric-key-regeneration/services/default-user-asymmetric-key-regeneration.service.ts
+++ b/libs/key-management/src/user-asymmetric-key-regeneration/services/default-user-asymmetric-key-regeneration.service.ts
@@ -162,17 +162,26 @@ export class DefaultUserAsymmetricKeysRegenerationService
    const ciphers = await this.cipherService.getAll(userId);
    const cipher = ciphers.find((cipher) => cipher.organizationId == null);

-    if (cipher != null) {
-      try {
-        await cipher.decrypt(userKey);
-        return true;
-      } catch (error) {
+    if (!cipher) {
+      return false;
+    }
+
+    try {
+      const cipherView = await cipher.decrypt(userKey);
+
+      if (cipherView.decryptionFailure) {
        this.logService.error(
-          "[UserAsymmetricKeyRegeneration] User Symmetric Key validation error: " + error,
+          "[UserAsymmetricKeyRegeneration] User Symmetric Key validation error: Cipher decryption failed",
        );
        return false;
      }
+
+      return true;
+    } catch (error) {
+      this.logService.error(
+        "[UserAsymmetricKeyRegeneration] User Symmetric Key validation error: " + error,
+      );
+      return false;
    }
-    return false;
  }
 }