bitwarden/server
1
0
Fork 0
mirror of https://github.com/bitwarden/server synced 2026-01-01 16:13:33 +00:00
Code Issues Releases Wiki Activity

[PM-20592] [PM-22737] [PM-22738] Send grant validator (#6151)

Browse Source 
**feat**: create `SendGrantValidator` and initial `SendPasswordValidator` for Send access grants  
**feat**: add feature flag to toggle Send grant validation logic  
**feat**: add Send client to Identity and update `ApiClient` to generic `Client`  
**feat**: register Send services in DI pipeline  
**feat**: add claims management support to `ProfileService`  
**feat**: distinguish between invalid grant and invalid request in `SendAccessGrantValidator`

**fix**: update parsing of `send_id` from request  
**fix**: add early return when feature flag is disabled  
**fix**: rename and organize Send access scope and grant type  
**fix**: dotnet format

**test**: add unit and integration tests for `SendGrantValidator`  
**test**: update OpenID configuration and API resource claims

**doc**: move documentation to interfaces and update inline comments  

**chore**: add TODO for future support of `CustomGrantTypes`
This commit is contained in:
Ike
2025-08-13 18:38:00 -04:00
committed by GitHub
parent 87877aeb3d
commit 43d753dcb1
24 changed files with 961 additions and 19 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
src/Core/KeyManagement/KeyManagementServiceCollectionExtensions.cs
View File

@@ -9,6 +9,7 @@ public static class KeyManagementServiceCollectionExtensions
public static void AddKeyManagementServices(this IServiceCollection services)
{
services.AddKeyManagementCommands();
services.AddSendPasswordServices();
}
private static void AddKeyManagementCommands(this IServiceCollection services)

1
src/Core/KeyManagement/Sends/ISendPasswordHasher.cs
View File

@@ -9,7 +9,6 @@ public interface ISendPasswordHasher
/// <param name="sendPasswordHash">The send password that is hashed by the server.</param>
/// <param name="clientPasswordHash">The user provided password hash that has not yet been hashed by the server for comparison.</param>
/// <returns>true if hashes match false otherwise</returns>
/// <exception cref="InvalidOperationException">Thrown if the server password hash or client password hash is null or empty.</exception>
bool PasswordHashMatches(string sendPasswordHash, string clientPasswordHash);
/// <summary>