[SM-706] Extract Authorization From Create/Update Secret Commands (#2896)

* Extract authorization from commands * Swap to request model validation. * Swap to pattern detection
2025-12-19 01:33:20 +00:00 · 2023-06-08 16:40:35 -05:00
parent 6a9e7a1d0a
commit 05f11a8ee1
15 changed files with 674 additions and 231 deletions
--- a/src/Core/SecretsManager/AuthorizationRequirements/SecretOperationRequirement.cs
+++ b/src/Core/SecretsManager/AuthorizationRequirements/SecretOperationRequirement.cs
@@ -0,0 +1,13 @@
+using Microsoft.AspNetCore.Authorization.Infrastructure;
+
+namespace Bit.Core.SecretsManager.AuthorizationRequirements;
+
+public class SecretOperationRequirement : OperationAuthorizationRequirement
+{
+}
+
+public static class SecretOperations
+{
+    public static readonly SecretOperationRequirement Create = new() { Name = nameof(Create) };
+    public static readonly SecretOperationRequirement Update = new() { Name = nameof(Update) };
+}
--- a/src/Core/SecretsManager/Commands/Secrets/Interfaces/ICreateSecretCommand.cs
+++ b/src/Core/SecretsManager/Commands/Secrets/Interfaces/ICreateSecretCommand.cs
@@ -4,5 +4,5 @@ namespace Bit.Core.SecretsManager.Commands.Secrets.Interfaces;

 public interface ICreateSecretCommand
 {
-    Task<Secret> CreateAsync(Secret secret, Guid userId);
+    Task<Secret> CreateAsync(Secret secret);
 }
--- a/src/Core/SecretsManager/Commands/Secrets/Interfaces/IUpdateSecretCommand.cs
+++ b/src/Core/SecretsManager/Commands/Secrets/Interfaces/IUpdateSecretCommand.cs
@@ -4,5 +4,5 @@ namespace Bit.Core.SecretsManager.Commands.Secrets.Interfaces;

 public interface IUpdateSecretCommand
 {
-    Task<Secret> UpdateAsync(Secret secret, Guid userId);
+    Task<Secret> UpdateAsync(Secret secret);
 }