[PM-1188] Server owner auth migration (#2825)

* [PM-1188] add sso project to auth * [PM-1188] move sso api models to auth * [PM-1188] fix sso api model namespace & imports * [PM-1188] move core files to auth * [PM-1188] fix core sso namespace & models * [PM-1188] move sso repository files to auth * [PM-1188] fix sso repo files namespace & imports * [PM-1188] move sso sql files to auth folder * [PM-1188] move sso test files to auth folders * [PM-1188] fix sso tests namespace & imports * [PM-1188] move auth api files to auth folder * [PM-1188] fix auth api files namespace & imports * [PM-1188] move auth core files to auth folder * [PM-1188] fix auth core files namespace & imports * [PM-1188] move auth email templates to auth folder * [PM-1188] move auth email folder back into shared directory * [PM-1188] fix auth email names * [PM-1188] move auth core models to auth folder * [PM-1188] fix auth model namespace & imports * [PM-1188] add entire Identity project to auth codeowners * [PM-1188] fix auth orm files namespace & imports * [PM-1188] move auth orm files to auth folder * [PM-1188] move auth sql files to auth folder * [PM-1188] move auth tests to auth folder * [PM-1188] fix auth test files namespace & imports * [PM-1188] move emergency access api files to auth folder * [PM-1188] fix emergencyaccess api files namespace & imports * [PM-1188] move emergency access core files to auth folder * [PM-1188] fix emergency access core files namespace & imports * [PM-1188] move emergency access orm files to auth folder * [PM-1188] fix emergency access orm files namespace & imports * [PM-1188] move emergency access sql files to auth folder * [PM-1188] move emergencyaccess test files to auth folder * [PM-1188] fix emergency access test files namespace & imports * [PM-1188] move captcha files to auth folder * [PM-1188] fix captcha files namespace & imports * [PM-1188] move auth admin files into auth folder * [PM-1188] fix admin auth files namespace & imports - configure mvc to look in auth folders for views * [PM-1188] remove extra imports and formatting * [PM-1188] fix ef auth model imports * [PM-1188] fix DatabaseContextModelSnapshot paths * [PM-1188] fix grant import in ef * [PM-1188] update sqlproj * [PM-1188] move missed sqlproj files * [PM-1188] move auth ef models out of auth folder * [PM-1188] fix auth ef models namespace * [PM-1188] remove auth ef models unused imports * [PM-1188] fix imports for auth ef models * [PM-1188] fix more ef model imports * [PM-1188] fix file encodings
2025-12-26 21:23:39 +00:00 · 2023-04-14 13:25:56 -04:00
parent 2529c5b36f
commit 88dd745070
332 changed files with 704 additions and 522 deletions
--- a/src/Core/Auth/Models/TwoFactorProvider.cs
+++ b/src/Core/Auth/Models/TwoFactorProvider.cs
@@ -0,0 +1,66 @@
+using System.Text.Json;
+using Bit.Core.Auth.Enums;
+using Fido2NetLib.Objects;
+
+namespace Bit.Core.Auth.Models;
+
+public class TwoFactorProvider
+{
+    public bool Enabled { get; set; }
+    public Dictionary<string, object> MetaData { get; set; } = new Dictionary<string, object>();
+
+    public class WebAuthnData
+    {
+        public WebAuthnData() { }
+
+        public WebAuthnData(dynamic o)
+        {
+            Name = o.Name;
+            try
+            {
+                Descriptor = o.Descriptor;
+            }
+            catch
+            {
+                // Fallback for older newtonsoft serialized tokens.
+                if (o.Descriptor.Type == 0)
+                {
+                    o.Descriptor.Type = "public-key";
+                }
+                Descriptor = JsonSerializer.Deserialize<PublicKeyCredentialDescriptor>(o.Descriptor.ToString(),
+                    new JsonSerializerOptions { PropertyNameCaseInsensitive = true });
+            }
+            PublicKey = o.PublicKey;
+            UserHandle = o.UserHandle;
+            SignatureCounter = o.SignatureCounter;
+            CredType = o.CredType;
+            RegDate = o.RegDate;
+            AaGuid = o.AaGuid;
+            Migrated = o.Migrated;
+        }
+
+        public string Name { get; set; }
+        public PublicKeyCredentialDescriptor Descriptor { get; internal set; }
+        public byte[] PublicKey { get; internal set; }
+        public byte[] UserHandle { get; internal set; }
+        public uint SignatureCounter { get; set; }
+        public string CredType { get; internal set; }
+        public DateTime RegDate { get; internal set; }
+        public Guid AaGuid { get; internal set; }
+        public bool Migrated { get; internal set; }
+    }
+
+    public static bool RequiresPremium(TwoFactorProviderType type)
+    {
+        switch (type)
+        {
+            case TwoFactorProviderType.Duo:
+            case TwoFactorProviderType.YubiKey:
+            case TwoFactorProviderType.U2f: // Keep to ensure old U2f keys are considered premium
+            case TwoFactorProviderType.WebAuthn:
+                return true;
+            default:
+                return false;
+        }
+    }
+}