encrypted private key and org keys at rest

src/App/Abstractions/Repositories/IAccountsApiRepository.cs

@@ -10,5 +10,6 @@ namespace Bit.App.Abstractions
         Task<ApiResult> PostPasswordHintAsync(PasswordHintRequest requestObj);
         Task<ApiResult<DateTime?>> GetAccountRevisionDateAsync();
         Task<ApiResult<ProfileResponse>> GetProfileAsync();
+        Task<ApiResult<KeysResponse>> GetKeys();
     }
 }

src/App/Abstractions/Services/ICryptoService.cs

@@ -1,4 +1,5 @@
 using Bit.App.Models;
+using Bit.App.Models.Api;
 using System;
 using System.Collections.Generic;
 
@@ -10,13 +11,13 @@ namespace Bit.App.Abstractions
         SymmetricCryptoKey PreviousKey { get; }
         bool KeyChanged { get; }
         byte[] PrivateKey { get; }
-        IDictionary<string, SymmetricCryptoKey> OrgKeys { get; set; }
+        IDictionary<string, SymmetricCryptoKey> OrgKeys { get; }
 
-        void SetPrivateKey(CipherString privateKeyEnc, SymmetricCryptoKey key);
+        void SetPrivateKey(CipherString privateKeyEnc);
+        void SetOrgKeys(ProfileResponse profile);
+        void SetOrgKeys(Dictionary<string, string> orgKeysEncDict);
         SymmetricCryptoKey GetOrgKey(string orgId);
-        void ClearOrgKey(string orgId);
         void ClearKeys();
-        SymmetricCryptoKey AddOrgKey(string orgId, CipherString encOrgKey, byte[] privateKey);
         string Decrypt(CipherString encyptedValue, SymmetricCryptoKey key = null);
         byte[] DecryptToBytes(CipherString encyptedValue, SymmetricCryptoKey key = null);
         byte[] RsaDecryptToBytes(CipherString encyptedValue, byte[] privateKey);