[SM-394] Secrets Manager (#2164)

Long lived feature branch for Secrets Manager

Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>
Co-authored-by: cd-bitwarden <106776772+cd-bitwarden@users.noreply.github.com>
Co-authored-by: CarleyDiaz-Bitwarden <103955722+CarleyDiaz-Bitwarden@users.noreply.github.com>
Co-authored-by: Thomas Avery <tavery@bitwarden.com>
Co-authored-by: Colton Hurst <colton@coltonhurst.com>

src/Core/Entities/AccessPolicy.cs

@@ -0,0 +1,76 @@
+using Bit.Core.Utilities;
+
+namespace Bit.Core.Entities;
+
+public class AccessPolicy : ITableObject<Guid>
+{
+    public Guid Id { get; set; }
+
+    // Object to grant access from
+    public Guid? OrganizationUserId { get; set; }
+    public Guid? GroupId { get; set; }
+    public Guid? ServiceAccountId { get; set; }
+
+    // Object to grant access to
+    public Guid? GrantedProjectId { get; set; }
+    public Guid? GrantedServiceAccountId { get; set; }
+
+    // Access
+    public bool Read { get; set; }
+    public bool Write { get; set; }
+
+    public DateTime CreationDate { get; set; }
+    public DateTime RevisionDate { get; set; }
+
+    public void SetNewId()
+    {
+        Id = CoreHelpers.GenerateComb();
+    }
+}
+
+public abstract class BaseAccessPolicy
+{
+    public Guid Id { get; set; }
+
+    // Access
+    public bool Read { get; set; }
+    public bool Write { get; set; }
+
+    public DateTime CreationDate { get; set; }
+    public DateTime RevisionDate { get; set; }
+
+    public void SetNewId()
+    {
+        Id = CoreHelpers.GenerateComb();
+    }
+}
+
+public class UserProjectAccessPolicy : BaseAccessPolicy
+{
+    public Guid? OrganizationUserId { get; set; }
+    public Guid? GrantedProjectId { get; set; }
+}
+
+public class UserServiceAccountAccessPolicy : BaseAccessPolicy
+{
+    public Guid? OrganizationUserId { get; set; }
+    public Guid? GrantedServiceAccountId { get; set; }
+}
+
+public class GroupProjectAccessPolicy : BaseAccessPolicy
+{
+    public Guid? GroupId { get; set; }
+    public Guid? GrantedProjectId { get; set; }
+}
+
+public class GroupServiceAccountAccessPolicy : BaseAccessPolicy
+{
+    public Guid? GroupId { get; set; }
+    public Guid? GrantedServiceAccountId { get; set; }
+}
+
+public class ServiceAccountProjectAccessPolicy : BaseAccessPolicy
+{
+    public Guid? ServiceAccountId { get; set; }
+    public Guid? GrantedProjectId { get; set; }
+}

src/Core/Entities/ApiKey.cs

@@ -0,0 +1,33 @@
+using System.ComponentModel.DataAnnotations;
+using Bit.Core.Utilities;
+
+namespace Bit.Core.Entities;
+
+public class ApiKey : ITableObject<Guid>
+{
+    public Guid Id { get; set; }
+    public Guid? ServiceAccountId { get; set; }
+    [MaxLength(200)]
+    public string Name { get; set; }
+    [MaxLength(30)]
+    public string ClientSecret { get; set; }
+    [MaxLength(4000)]
+    public string Scope { get; set; }
+    [MaxLength(4000)]
+    public string EncryptedPayload { get; set; }
+    // Key for decrypting `EncryptedPayload`. Encrypted using the organization key.
+    public string Key { get; set; }
+    public DateTime? ExpireAt { get; set; }
+    public DateTime CreationDate { get; internal set; } = DateTime.UtcNow;
+    public DateTime RevisionDate { get; internal set; } = DateTime.UtcNow;
+
+    public void SetNewId()
+    {
+        Id = CoreHelpers.GenerateComb();
+    }
+
+    public ICollection<string> GetScopes()
+    {
+        return CoreHelpers.LoadClassFromJsonData<List<string>>(Scope);
+    }
+}

src/Core/Entities/Organization.cs

@@ -45,6 +45,7 @@ public class Organization : ITableObject<Guid>, ISubscriber, IStorable, IStorabl
     public bool Use2fa { get; set; }
     public bool UseApi { get; set; }
     public bool UseResetPassword { get; set; }
+    public bool UseSecretsManager { get; set; }
     public bool SelfHost { get; set; }
     public bool UsersGetPremium { get; set; }
     public bool UseCustomPermissions { get; set; }

src/Core/Entities/Project.cs

@@ -0,0 +1,29 @@
+#nullable enable
+using Bit.Core.Utilities;
+
+namespace Bit.Core.Entities;
+
+public class Project : ITableObject<Guid>
+{
+    public Guid Id { get; set; }
+
+    public Guid OrganizationId { get; set; }
+
+    public string? Name { get; set; }
+
+    public DateTime CreationDate { get; set; } = DateTime.UtcNow;
+
+    public DateTime RevisionDate { get; set; } = DateTime.UtcNow;
+
+    public DateTime? DeletedDate { get; set; }
+
+    public virtual ICollection<Secret>? Secrets { get; set; }
+
+    public void SetNewId()
+    {
+        if (Id == default(Guid))
+        {
+            Id = CoreHelpers.GenerateComb();
+        }
+    }
+}

src/Core/Entities/Secret.cs

@@ -0,0 +1,33 @@
+#nullable enable
+using Bit.Core.Utilities;
+
+namespace Bit.Core.Entities;
+
+public class Secret : ITableObject<Guid>
+{
+    public Guid Id { get; set; }
+
+    public Guid OrganizationId { get; set; }
+
+    public string? Key { get; set; }
+
+    public string? Value { get; set; }
+
+    public string? Note { get; set; }
+
+    public DateTime CreationDate { get; set; } = DateTime.UtcNow;
+
+    public DateTime RevisionDate { get; set; } = DateTime.UtcNow;
+
+    public DateTime? DeletedDate { get; set; }
+
+    public ICollection<Project>? Projects { get; set; }
+
+    public void SetNewId()
+    {
+        if (Id == default(Guid))
+        {
+            Id = CoreHelpers.GenerateComb();
+        }
+    }
+}

src/Core/Entities/ServiceAccount.cs

@@ -0,0 +1,26 @@
+#nullable enable
+using Bit.Core.Utilities;
+
+namespace Bit.Core.Entities;
+
+public class ServiceAccount : ITableObject<Guid>
+{
+    public Guid Id { get; set; }
+
+    public Guid OrganizationId { get; set; }
+
+    public string? Name { get; set; }
+
+    public DateTime CreationDate { get; set; } = DateTime.UtcNow;
+
+    public DateTime RevisionDate { get; set; } = DateTime.UtcNow;
+
+    public void SetNewId()
+    {
+        if (Id == default(Guid))
+        {
+            Id = CoreHelpers.GenerateComb();
+        }
+    }
+
+}