Provider qa feedback (#1501)

* Title case buttons * Throw if provider tries to add a non-business organization * Allow only one admin OR owner roll in a free org per user Boolean operators were not properly assocated and ownership of an org was precluding confirmation into any other organization * Limit email length * Require email domain with top level domain * Do not allow email domains to end in invalid characters * Fix free org tests
2025-12-18 01:03:17 +00:00 · 2021-08-10 12:16:10 -04:00
parent b726b08ea1
commit 5dc6013e37
7 changed files with 103 additions and 25 deletions
--- a/bitwarden_license/src/CommCore/Services/ProviderService.cs
+++ b/bitwarden_license/src/CommCore/Services/ProviderService.cs
@@ -21,6 +21,8 @@ namespace Bit.CommCore.Services
 {
    public class ProviderService : IProviderService
    {
+        public static PlanType[] ProviderDisllowedOrganizationTypes = new[] { PlanType.Free, PlanType.FamiliesAnnually, PlanType.FamiliesAnnually2019 };
+
        private readonly IDataProtector _dataProtector;
        private readonly IMailService _mailService;
        private readonly IEventService _eventService;
@@ -380,6 +382,9 @@ namespace Bit.CommCore.Services
                throw new BadRequestException("Organization already belongs to a provider.");
            }

+            var organization = await _organizationRepository.GetByIdAsync(organizationId);
+            ThrowOnInvalidPlanType(organization.PlanType);
+
            var providerOrganization = new ProviderOrganization
            {
                ProviderId = providerId,
@@ -394,6 +399,8 @@ namespace Bit.CommCore.Services
        public async Task<ProviderOrganization> CreateOrganizationAsync(Guid providerId,
            OrganizationSignup organizationSignup, string clientOwnerEmail, User user)
        {
+            ThrowOnInvalidPlanType(organizationSignup.Plan);
+
            var (organization, _) = await _organizationService.SignUpAsync(organizationSignup, true);

            var providerOrganization = new ProviderOrganization
@@ -487,5 +494,13 @@ namespace Bit.CommCore.Services
            var confirmedOwnersIds = confirmedOwners.Select(u => u.Id);
            return confirmedOwnersIds.Except(providerUserIds).Any();
        }
+
+        private void ThrowOnInvalidPlanType(PlanType requestedType)
+        {
+            if (ProviderDisllowedOrganizationTypes.Contains(requestedType))
+            {
+                throw new BadRequestException($"Providers cannot manage organizations with the requested plan type ({requestedType}). Only Teams and Enterprise accounts are allowed.");
+            }
+        }
    }
 }