Add-userid-to-encryption-methods (#5838)

* Add userId to auth success response * Validate user that encrypted a cipher matches the user posting the request * Remove userId from auth success we don't want to expand this response model
2026-01-07 11:03:37 +00:00 · 2025-05-22 12:49:14 -07:00
parent 77865f071a
commit 328b84eea0
2 changed files with 73 additions and 0 deletions
--- a/src/Api/Vault/Models/Request/CipherRequestModel.cs
+++ b/src/Api/Vault/Models/Request/CipherRequestModel.cs
@@ -11,6 +11,10 @@ namespace Bit.Api.Vault.Models.Request;

 public class CipherRequestModel
 {
+    /// <summary>
+    /// The Id of the user that encrypted the cipher. It should always represent a UserId.
+    /// </summary>
+    public Guid? EncryptedFor { get; set; }
    public CipherType Type { get; set; }

    [StringLength(36)]