mirror of
https://github.com/bitwarden/browser
synced 2025-12-27 21:53:25 +00:00
780a563ce0
* refactor: move SCIM component to admin-console, refs EC-1011 * refactor: move scimProviderType to admin-console, refs EC-1011 * refactor: move scim-config.api to admin-console, refs EC-1011 * refactor: create models folder and nest existing api contents, refs EC-1011 * refactor: move scim-config to admin-console models, refs EC-1011 * refactor: move billing.component to billing, refs EC-1011 * refactor: remove nested app folder from new billing structure, refs EC-1011 * refactor: move organizations/billing to billing, refs EC-1011 * refactor: move add-credit and adjust-payment to billing/settings, refs EC-1011 * refactor: billing history/sync to billing, refs EC-1011 * refactor: move org plans, payment/method to billing/settings, refs EC-1011 * fix: update legacy file paths for payment-method and tax-info, refs EC-1011 * fix: update imports for scim component, refs EC-1011 * refactor: move subscription and tax-info into billing, refs EC-1011 * refactor: move user-subscription to billing, refs EC-1011 * refactor: move images/cards to billing and update base path, refs EC-1011 * refactor: move payment-method, plan subscription, and plan to billing, refs EC-1011 * refactor: move transaction-type to billing, refs EC-1011 * refactor: move billing-sync-config to billing, refs EC-1011 * refactor: move billing-sync and bit-pay-invoice request to billing, refs EC-1011 * refactor: move org subscription and tax info update requests to billing, refs EC-1011 * fix: broken paths to billing, refs EC-1011 * refactor: move payment request to billing, refs EC-1011 * fix: update remaining imports for payment-request, refs EC-1011 * refactor: move tax-info-update to billing, refs EC-1011 * refactor: move billing-payment, billing-history, and billing responses to billing, refs EC-1011 * refactor: move organization-subscription-responset to billing, refs EC-1011 * refactor: move payment and plan responses to billing, refs EC-1011 * refactor: move subscription response to billing ,refs EC-1011 * refactor: move tax info and rate responses to billing, refs EC-1011 * fix: update remaining path to base response for tax-rate response, refs EC-1011 * refactor: (browser) move organization-service to admin-console, refs EC-1011 * refactor: (browser) move organizaiton-service to admin-console, refs EC-1011 * refactor: (cli) move share command to admin-console, refs EC-1011 * refactor: move organization-collect request model to admin-console, refs EC-1011 * refactor: (web) move organization, collection/user responses to admin-console, refs EC-1011 * refactor: (cli) move selection-read-only to admin-console, refs EC-1011 * refactor: (desktop) move organization-filter to admin-console, refs EC-1011 * refactor: (web) move organization-switcher to admin-console, refs EC-1011 * refactor: (web) move access-selector to admin-console, refs EC-1011 * refactor: (web) move create folder to admin-console, refs EC-1011 * refactor: (web) move org guards folder to admin-console, refs EC-1011 * refactor: (web) move org layout to admin-console, refs EC-1011 * refactor: move manage collections to admin console, refs EC-1011 * refactor: (web) move collection-dialog to admin-console, refs EC-1011 * refactor: (web) move entity users/events and events component to admin-console, refs EC-1011 * refactor: (web) move groups/group-add-edit to admin-console, refs EC-1011 * refactor: (web) move manage, org-manage module, and user-confirm to admin-console, refs EC-1011 * refactor: (web) move people to admin-console, refs EC-1011 * refactor: (web) move reset-password to admin-console, refs EC-1011 * refactor: (web) move organization-routing and module to admin-console, refs EC-1011 * refactor: move admin-console and billing within app scope, refs EC-1011 * fix: update leftover merge conflicts, refs EC-1011 * refactor: (web) member-dialog to admin-console, refs EC-1011 * refactor: (web) move policies to admin-console, refs EC-1011 * refactor: (web) move reporting to admin-console, refs EC-1011 * refactor: (web) move settings to admin-console, refs EC-1011 * refactor: (web) move sponsorships to admin-console, refs EC-1011 * refactor: (web) move tools to admin-console, refs EC-1011 * refactor: (web) move users to admin-console, refs EC-1011 * refactor: (web) move collections to admin-console, refs EC-1011 * refactor: (web) move create-organization to admin-console, refs EC-1011 * refactor: (web) move licensed components to admin-console, refs EC-1011 * refactor: (web) move bit organization modules to admin-console, refs EC-1011 * fix: update leftover import statements for organizations.module, refs EC-1011 * refactor: (web) move personal vault and max timeout to admin-console, refs EC-1011 * refactor: (web) move providers to admin-console, refs EC-1011 * refactor: (libs) move organization service to admin-console, refs EC-1011 * refactor: (libs) move profile org/provider responses and other misc org responses to admin-console, refs EC-1011 * refactor: (libs) move provider request and selectionion-read-only request to admin-console, refs EC-1011 * fix: update missed import path for provider-user-update request, refs EC-1011 * refactor: (libs) move abstractions to admin-console, refs EC-1011 * refactor: (libs) move org/provider enums to admin-console, refs EC-1011 * fix: update downstream import statements from libs changes, refs EC-1011 * refactor: (libs) move data files to admin-console, refs EC-1011 * refactor: (libs) move domain to admin-console, refs EC-1011 * refactor: (libs) move request objects to admin-console, refs EC-1011 * fix: update downstream import changes from libs, refs EC-1011 * refactor: move leftover provider files to admin-console, refs EC-1011 * refactor: (browser) move group policy environment to admin-console, refs EC-1011 * fix: (browser) update downstream import statements, refs EC-1011 * fix: (desktop) update downstream libs moves, refs EC-1011 * fix: (cli) update downstream import changes from libs, refs EC-1011 * refactor: move org-auth related files to admin-console, refs EC-1011 * refactor: (libs) move request objects to admin-console, refs EC-1011 * refactor: move persmissions to admin-console, refs EC-1011 * refactor: move sponsored families to admin-console and fix libs changes, refs EC-1011 * refactor: move collections to admin-console, refs EC-1011 * refactor: move spec file back to spec scope, refs EC-1011 * fix: update downstream imports due to libs changes, refs EC-1011 * fix: udpate downstream import changes due to libs, refs EC-1011 * fix: update downstream imports due to libs changes, refs EC-1011 * fix: update downstream imports from libs changes, refs EC-1011 * fix: update path malformation in jslib-services.module, refs EC-1011 * fix: lint errors from improper casing, refs AC-1011 * fix: update downstream filename changes, refs AC-1011 * fix: (cli) update downstream filename changes, refs AC-1011 * fix: (desktop) update downstream filename changes, refs AC-1011 * fix: (browser) update downstream filename changes, refs AC-1011 * fix: lint errors, refs AC-1011 * fix: prettier, refs AC-1011 * fix: lint fixes for import order, refs AC-1011 * fix: update import path for provider user type, refs AC-1011 * fix: update new codes import paths for admin console structure, refs AC-1011 * fix: lint/prettier, refs AC-1011 * fix: update layout stories path, refs AC-1011 * fix: update comoponents card icons base variable in styles, refs AC-1011 * fix: update provider service path in permissions guard spec, refs AC-1011 * fix: update provider permission guard path, refs AC-1011 * fix: remove unecessary TODO for shared index export statement, refs AC-1011 * refactor: move browser-organization service and cli organization-user response out of admin-console, refs AC-1011 * refactor: move web/browser/desktop collections component to vault domain, refs AC-1011 * refactor: move organization.module out of admin-console scope, refs AC-1011 * fix: prettier, refs AC-1011 * refactor: move organizations-api-key.request out of admin-console scope, refs AC-1011
213 lines
7.2 KiB
TypeScript
213 lines
7.2 KiB
TypeScript
import { Component, OnDestroy, OnInit, Type, ViewChild, ViewContainerRef } from "@angular/core";
|
|
import { Subject, takeUntil } from "rxjs";
|
|
|
|
import { ModalRef } from "@bitwarden/angular/components/modal/modal.ref";
|
|
import { ModalService } from "@bitwarden/angular/services/modal.service";
|
|
import { ApiService } from "@bitwarden/common/abstractions/api.service";
|
|
import { MessagingService } from "@bitwarden/common/abstractions/messaging.service";
|
|
import { StateService } from "@bitwarden/common/abstractions/state.service";
|
|
import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
|
|
import { PolicyType } from "@bitwarden/common/admin-console/enums/policy-type";
|
|
import { TwoFactorProviderType } from "@bitwarden/common/auth/enums/two-factor-provider-type";
|
|
import { TwoFactorProviders } from "@bitwarden/common/auth/services/two-factor.service";
|
|
|
|
import { TwoFactorAuthenticatorComponent } from "./two-factor-authenticator.component";
|
|
import { TwoFactorDuoComponent } from "./two-factor-duo.component";
|
|
import { TwoFactorEmailComponent } from "./two-factor-email.component";
|
|
import { TwoFactorRecoveryComponent } from "./two-factor-recovery.component";
|
|
import { TwoFactorWebAuthnComponent } from "./two-factor-webauthn.component";
|
|
import { TwoFactorYubiKeyComponent } from "./two-factor-yubikey.component";
|
|
|
|
@Component({
|
|
selector: "app-two-factor-setup",
|
|
templateUrl: "two-factor-setup.component.html",
|
|
})
|
|
export class TwoFactorSetupComponent implements OnInit, OnDestroy {
|
|
@ViewChild("recoveryTemplate", { read: ViewContainerRef, static: true })
|
|
recoveryModalRef: ViewContainerRef;
|
|
@ViewChild("authenticatorTemplate", { read: ViewContainerRef, static: true })
|
|
authenticatorModalRef: ViewContainerRef;
|
|
@ViewChild("yubikeyTemplate", { read: ViewContainerRef, static: true })
|
|
yubikeyModalRef: ViewContainerRef;
|
|
@ViewChild("duoTemplate", { read: ViewContainerRef, static: true }) duoModalRef: ViewContainerRef;
|
|
@ViewChild("emailTemplate", { read: ViewContainerRef, static: true })
|
|
emailModalRef: ViewContainerRef;
|
|
@ViewChild("webAuthnTemplate", { read: ViewContainerRef, static: true })
|
|
webAuthnModalRef: ViewContainerRef;
|
|
|
|
organizationId: string;
|
|
providers: any[] = [];
|
|
canAccessPremium: boolean;
|
|
showPolicyWarning = false;
|
|
loading = true;
|
|
modal: ModalRef;
|
|
formPromise: Promise<any>;
|
|
|
|
tabbedHeader = true;
|
|
|
|
private destroy$ = new Subject<void>();
|
|
private twoFactorAuthPolicyAppliesToActiveUser: boolean;
|
|
|
|
constructor(
|
|
protected apiService: ApiService,
|
|
protected modalService: ModalService,
|
|
protected messagingService: MessagingService,
|
|
protected policyService: PolicyService,
|
|
private stateService: StateService
|
|
) {}
|
|
|
|
async ngOnInit() {
|
|
this.canAccessPremium = await this.stateService.getCanAccessPremium();
|
|
|
|
for (const key in TwoFactorProviders) {
|
|
// eslint-disable-next-line
|
|
if (!TwoFactorProviders.hasOwnProperty(key)) {
|
|
continue;
|
|
}
|
|
|
|
const p = (TwoFactorProviders as any)[key];
|
|
if (this.filterProvider(p.type)) {
|
|
continue;
|
|
}
|
|
|
|
this.providers.push({
|
|
type: p.type,
|
|
name: p.name,
|
|
description: p.description,
|
|
enabled: false,
|
|
premium: p.premium,
|
|
sort: p.sort,
|
|
});
|
|
}
|
|
|
|
this.providers.sort((a: any, b: any) => a.sort - b.sort);
|
|
|
|
this.policyService
|
|
.policyAppliesToActiveUser$(PolicyType.TwoFactorAuthentication)
|
|
.pipe(takeUntil(this.destroy$))
|
|
.subscribe((policyAppliesToActiveUser) => {
|
|
this.twoFactorAuthPolicyAppliesToActiveUser = policyAppliesToActiveUser;
|
|
});
|
|
|
|
await this.load();
|
|
}
|
|
|
|
ngOnDestroy(): void {
|
|
this.destroy$.next();
|
|
this.destroy$.complete();
|
|
}
|
|
|
|
async load() {
|
|
this.loading = true;
|
|
const providerList = await this.getTwoFactorProviders();
|
|
providerList.data.forEach((p) => {
|
|
this.providers.forEach((p2) => {
|
|
if (p.type === p2.type) {
|
|
p2.enabled = p.enabled;
|
|
}
|
|
});
|
|
});
|
|
this.evaluatePolicies();
|
|
this.loading = false;
|
|
}
|
|
|
|
async manage(type: TwoFactorProviderType) {
|
|
switch (type) {
|
|
case TwoFactorProviderType.Authenticator: {
|
|
const authComp = await this.openModal(
|
|
this.authenticatorModalRef,
|
|
TwoFactorAuthenticatorComponent
|
|
);
|
|
// eslint-disable-next-line rxjs-angular/prefer-takeuntil
|
|
authComp.onUpdated.subscribe((enabled: boolean) => {
|
|
this.updateStatus(enabled, TwoFactorProviderType.Authenticator);
|
|
});
|
|
break;
|
|
}
|
|
case TwoFactorProviderType.Yubikey: {
|
|
const yubiComp = await this.openModal(this.yubikeyModalRef, TwoFactorYubiKeyComponent);
|
|
// eslint-disable-next-line rxjs-angular/prefer-takeuntil
|
|
yubiComp.onUpdated.subscribe((enabled: boolean) => {
|
|
this.updateStatus(enabled, TwoFactorProviderType.Yubikey);
|
|
});
|
|
break;
|
|
}
|
|
case TwoFactorProviderType.Duo: {
|
|
const duoComp = await this.openModal(this.duoModalRef, TwoFactorDuoComponent);
|
|
// eslint-disable-next-line rxjs-angular/prefer-takeuntil
|
|
duoComp.onUpdated.subscribe((enabled: boolean) => {
|
|
this.updateStatus(enabled, TwoFactorProviderType.Duo);
|
|
});
|
|
break;
|
|
}
|
|
case TwoFactorProviderType.Email: {
|
|
const emailComp = await this.openModal(this.emailModalRef, TwoFactorEmailComponent);
|
|
// eslint-disable-next-line rxjs-angular/prefer-takeuntil
|
|
emailComp.onUpdated.subscribe((enabled: boolean) => {
|
|
this.updateStatus(enabled, TwoFactorProviderType.Email);
|
|
});
|
|
break;
|
|
}
|
|
case TwoFactorProviderType.WebAuthn: {
|
|
const webAuthnComp = await this.openModal(
|
|
this.webAuthnModalRef,
|
|
TwoFactorWebAuthnComponent
|
|
);
|
|
// eslint-disable-next-line rxjs-angular/prefer-takeuntil
|
|
webAuthnComp.onUpdated.subscribe((enabled: boolean) => {
|
|
this.updateStatus(enabled, TwoFactorProviderType.WebAuthn);
|
|
});
|
|
break;
|
|
}
|
|
default:
|
|
break;
|
|
}
|
|
}
|
|
|
|
recoveryCode() {
|
|
this.openModal(this.recoveryModalRef, TwoFactorRecoveryComponent);
|
|
}
|
|
|
|
async premiumRequired() {
|
|
if (!this.canAccessPremium) {
|
|
this.messagingService.send("premiumRequired");
|
|
return;
|
|
}
|
|
}
|
|
|
|
protected getTwoFactorProviders() {
|
|
return this.apiService.getTwoFactorProviders();
|
|
}
|
|
|
|
protected filterProvider(type: TwoFactorProviderType) {
|
|
return type === TwoFactorProviderType.OrganizationDuo;
|
|
}
|
|
|
|
protected async openModal<T>(ref: ViewContainerRef, type: Type<T>): Promise<T> {
|
|
const [modal, childComponent] = await this.modalService.openViewRef(type, ref);
|
|
this.modal = modal;
|
|
|
|
return childComponent;
|
|
}
|
|
|
|
protected updateStatus(enabled: boolean, type: TwoFactorProviderType) {
|
|
if (!enabled && this.modal != null) {
|
|
this.modal.close();
|
|
}
|
|
this.providers.forEach((p) => {
|
|
if (p.type === type) {
|
|
p.enabled = enabled;
|
|
}
|
|
});
|
|
this.evaluatePolicies();
|
|
}
|
|
|
|
private async evaluatePolicies() {
|
|
if (this.organizationId == null && this.providers.filter((p) => p.enabled).length === 1) {
|
|
this.showPolicyWarning = this.twoFactorAuthPolicyAppliesToActiveUser;
|
|
} else {
|
|
this.showPolicyWarning = false;
|
|
}
|
|
}
|
|
}
|