mirror of
https://github.com/bitwarden/server
synced 2025-12-13 06:43:45 +00:00
Refactor TwoFactorIsEnabledQuery to incorporate PremiumAccessQuery and feature flag for premium access checks. Enhanced user premium status retrieval logic and improved handling of user details based on feature flag state.
This commit is contained in:
Rui Tome
@@ -3,14 +3,30 @@
|
|||||||
|
|
||||||
using Bit.Core.Auth.Enums;
|
using Bit.Core.Auth.Enums;
|
||||||
using Bit.Core.Auth.Models;
|
using Bit.Core.Auth.Models;
|
||||||
|
using Bit.Core.Auth.UserFeatures.PremiumAccess;
|
||||||
using Bit.Core.Auth.UserFeatures.TwoFactorAuth.Interfaces;
|
using Bit.Core.Auth.UserFeatures.TwoFactorAuth.Interfaces;
|
||||||
|
using Bit.Core.Entities;
|
||||||
|
using Bit.Core.Models.Data.Organizations.OrganizationUsers;
|
||||||
using Bit.Core.Repositories;
|
using Bit.Core.Repositories;
|
||||||
|
using Bit.Core.Services;
|
||||||
|
|
||||||
namespace Bit.Core.Auth.UserFeatures.TwoFactorAuth;
|
namespace Bit.Core.Auth.UserFeatures.TwoFactorAuth;
|
||||||
|
|
||||||
public class TwoFactorIsEnabledQuery(IUserRepository userRepository) : ITwoFactorIsEnabledQuery
|
public class TwoFactorIsEnabledQuery : ITwoFactorIsEnabledQuery
|
||||||
{
|
{
|
||||||
private readonly IUserRepository _userRepository = userRepository;
|
private readonly IUserRepository _userRepository;
|
||||||
|
private readonly IPremiumAccessQuery _premiumAccessQuery;
|
||||||
|
private readonly IFeatureService _featureService;
|
||||||
|
|
||||||
|
public TwoFactorIsEnabledQuery(
|
||||||
|
IUserRepository userRepository,
|
||||||
|
IPremiumAccessQuery premiumAccessQuery,
|
||||||
|
IFeatureService featureService)
|
||||||
|
{
|
||||||
|
_userRepository = userRepository;
|
||||||
|
_premiumAccessQuery = premiumAccessQuery;
|
||||||
|
_featureService = featureService;
|
||||||
|
}
|
||||||
|
|
||||||
public async Task<IEnumerable<(Guid userId, bool twoFactorIsEnabled)>> TwoFactorIsEnabledAsync(IEnumerable<Guid> userIds)
|
public async Task<IEnumerable<(Guid userId, bool twoFactorIsEnabled)>> TwoFactorIsEnabledAsync(IEnumerable<Guid> userIds)
|
||||||
{
|
{
|
||||||
@@ -20,15 +36,34 @@ public class TwoFactorIsEnabledQuery(IUserRepository userRepository) : ITwoFacto
|
|||||||
return result;
|
return result;
|
||||||
}
|
}
|
||||||
|
|
||||||
var userDetails = await _userRepository.GetManyWithCalculatedPremiumAsync([.. userIds]);
|
if (_featureService.IsEnabled(FeatureFlagKeys.PremiumAccessCacheCheck))
|
||||||
foreach (var userDetail in userDetails)
|
|
||||||
{
|
{
|
||||||
result.Add(
|
var users = await _userRepository.GetManyAsync([.. userIds]);
|
||||||
(userDetail.Id,
|
var premiumStatus = await _premiumAccessQuery.CanAccessPremiumBulkAsync(users);
|
||||||
await TwoFactorEnabledAsync(userDetail.GetTwoFactorProviders(),
|
|
||||||
() => Task.FromResult(userDetail.HasPremiumAccess))
|
foreach (var user in users)
|
||||||
)
|
{
|
||||||
);
|
result.Add(
|
||||||
|
(user.Id,
|
||||||
|
await TwoFactorEnabledAsync(
|
||||||
|
user.GetTwoFactorProviders(),
|
||||||
|
() => Task.FromResult(premiumStatus.GetValueOrDefault(user.Id, false))
|
||||||
|
))
|
||||||
|
);
|
||||||
|
}
|
||||||
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
var userDetails = await _userRepository.GetManyWithCalculatedPremiumAsync([.. userIds]);
|
||||||
|
foreach (var userDetail in userDetails)
|
||||||
|
{
|
||||||
|
result.Add(
|
||||||
|
(userDetail.Id,
|
||||||
|
await TwoFactorEnabledAsync(userDetail.GetTwoFactorProviders(),
|
||||||
|
() => Task.FromResult(userDetail.HasPremiumAccess))
|
||||||
|
)
|
||||||
|
);
|
||||||
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
return result;
|
return result;
|
||||||
@@ -71,13 +106,43 @@ public class TwoFactorIsEnabledQuery(IUserRepository userRepository) : ITwoFacto
|
|||||||
return false;
|
return false;
|
||||||
}
|
}
|
||||||
|
|
||||||
return await TwoFactorEnabledAsync(
|
if (_featureService.IsEnabled(FeatureFlagKeys.PremiumAccessCacheCheck))
|
||||||
user.GetTwoFactorProviders(),
|
{
|
||||||
async () =>
|
// Try to get premium status without fetching User entity if possible
|
||||||
{
|
bool hasPersonalPremium;
|
||||||
var calcUser = await _userRepository.GetCalculatedPremiumAsync(userId.Value);
|
if (user is User userEntity)
|
||||||
return calcUser?.HasPremiumAccess ?? false;
|
{
|
||||||
});
|
hasPersonalPremium = userEntity.Premium;
|
||||||
|
}
|
||||||
|
else if (user is OrganizationUserUserDetails orgUserDetails)
|
||||||
|
{
|
||||||
|
hasPersonalPremium = orgUserDetails.Premium.GetValueOrDefault(false);
|
||||||
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
// Fallback: fetch the User entity
|
||||||
|
var fetchedUser = await _userRepository.GetByIdAsync(userId.Value);
|
||||||
|
if (fetchedUser == null)
|
||||||
|
{
|
||||||
|
return false;
|
||||||
|
}
|
||||||
|
hasPersonalPremium = fetchedUser.Premium;
|
||||||
|
}
|
||||||
|
|
||||||
|
return await TwoFactorEnabledAsync(
|
||||||
|
user.GetTwoFactorProviders(),
|
||||||
|
async () => await _premiumAccessQuery.CanAccessPremiumAsync(userId.Value, hasPersonalPremium));
|
||||||
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
return await TwoFactorEnabledAsync(
|
||||||
|
user.GetTwoFactorProviders(),
|
||||||
|
async () =>
|
||||||
|
{
|
||||||
|
var calcUser = await _userRepository.GetCalculatedPremiumAsync(userId.Value);
|
||||||
|
return calcUser?.HasPremiumAccess ?? false;
|
||||||
|
});
|
||||||
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
/// <summary>
|
/// <summary>
|
||||||
|
|||||||
Reference in New Issue
Block a user