mirror of
https://github.com/bitwarden/server
synced 2025-12-16 08:13:33 +00:00
202dce3459
Final removal of AccessAll logic in CollectionCipher sprocs. We had v2 sprocs already containing this updated logic that were never used; copy the v2 logic back to the original sprocs so that we start using it. v2 sprocs will be dropped later.
232 lines
10 KiB
C#
232 lines
10 KiB
C#
using AutoMapper;
|
|
using Bit.Core.Repositories;
|
|
using Bit.Infrastructure.EntityFramework.Repositories.Queries;
|
|
using Microsoft.EntityFrameworkCore;
|
|
using Microsoft.Extensions.DependencyInjection;
|
|
using CollectionCipher = Bit.Core.Entities.CollectionCipher;
|
|
|
|
namespace Bit.Infrastructure.EntityFramework.Repositories;
|
|
|
|
public class CollectionCipherRepository : BaseEntityFrameworkRepository, ICollectionCipherRepository
|
|
{
|
|
public CollectionCipherRepository(IServiceScopeFactory serviceScopeFactory, IMapper mapper)
|
|
: base(serviceScopeFactory, mapper)
|
|
{ }
|
|
|
|
public async Task<CollectionCipher> CreateAsync(CollectionCipher obj)
|
|
{
|
|
using (var scope = ServiceScopeFactory.CreateScope())
|
|
{
|
|
var dbContext = GetDatabaseContext(scope);
|
|
var entity = Mapper.Map<Models.CollectionCipher>(obj);
|
|
dbContext.Add(entity);
|
|
await dbContext.SaveChangesAsync();
|
|
var organizationId = (await dbContext.Ciphers.FirstOrDefaultAsync(c => c.Id.Equals(obj.CipherId))).OrganizationId;
|
|
if (organizationId.HasValue)
|
|
{
|
|
await dbContext.UserBumpAccountRevisionDateByCollectionIdAsync(obj.CollectionId, organizationId.Value);
|
|
await dbContext.SaveChangesAsync();
|
|
}
|
|
return obj;
|
|
}
|
|
}
|
|
|
|
public async Task<ICollection<CollectionCipher>> GetManyByOrganizationIdAsync(Guid organizationId)
|
|
{
|
|
using (var scope = ServiceScopeFactory.CreateScope())
|
|
{
|
|
var dbContext = GetDatabaseContext(scope);
|
|
var data = await (from cc in dbContext.CollectionCiphers
|
|
join c in dbContext.Collections
|
|
on cc.CollectionId equals c.Id
|
|
where c.OrganizationId == organizationId
|
|
select cc).ToArrayAsync();
|
|
return data;
|
|
}
|
|
}
|
|
|
|
public async Task<ICollection<CollectionCipher>> GetManyByUserIdAsync(Guid userId)
|
|
{
|
|
using (var scope = ServiceScopeFactory.CreateScope())
|
|
{
|
|
var dbContext = GetDatabaseContext(scope);
|
|
var data = await new CollectionCipherReadByUserIdQuery(userId)
|
|
.Run(dbContext)
|
|
.ToArrayAsync();
|
|
return data;
|
|
}
|
|
}
|
|
|
|
public async Task<ICollection<CollectionCipher>> GetManyByUserIdCipherIdAsync(Guid userId, Guid cipherId)
|
|
{
|
|
using (var scope = ServiceScopeFactory.CreateScope())
|
|
{
|
|
var dbContext = GetDatabaseContext(scope);
|
|
var data = await new CollectionCipherReadByUserIdCipherIdQuery(userId, cipherId)
|
|
.Run(dbContext)
|
|
.ToArrayAsync();
|
|
return data;
|
|
}
|
|
}
|
|
|
|
public async Task UpdateCollectionsAsync(Guid cipherId, Guid userId, IEnumerable<Guid> collectionIds)
|
|
{
|
|
using (var scope = ServiceScopeFactory.CreateScope())
|
|
{
|
|
var dbContext = GetDatabaseContext(scope);
|
|
|
|
var organizationId = await dbContext.Ciphers
|
|
.Where(c => c.Id == cipherId)
|
|
.Select(c => c.OrganizationId)
|
|
.FirstAsync();
|
|
|
|
var availableCollectionsQuery = new CollectionsReadByOrganizationIdUserIdQuery(organizationId, userId);
|
|
var availableCollections = await availableCollectionsQuery
|
|
.Run(dbContext)
|
|
.Select(c => c.Id).ToListAsync();
|
|
|
|
var collectionCiphers = await (from cc in dbContext.CollectionCiphers
|
|
where cc.CipherId == cipherId
|
|
select cc).ToListAsync();
|
|
|
|
foreach (var requestedCollectionId in collectionIds)
|
|
{
|
|
// I don't totally agree with t.CipherId = cipherId here because that should have been guaranteed by
|
|
// the WHERE above but the SQL Server CTE has it
|
|
var existingCollectionCipher = collectionCiphers
|
|
.FirstOrDefault(t => t.CollectionId == requestedCollectionId && t.CipherId == cipherId);
|
|
// requestedCollectionId = SOURCE
|
|
// existingCollectionCipher = TARGET
|
|
|
|
// They have to want it selected and it has to exist
|
|
if (existingCollectionCipher == null && availableCollections.Contains(requestedCollectionId))
|
|
{
|
|
// WHEN NOT MATCHED BY TARGET AND ...
|
|
dbContext.CollectionCiphers.Add(new Models.CollectionCipher
|
|
{
|
|
CollectionId = requestedCollectionId,
|
|
CipherId = cipherId,
|
|
});
|
|
}
|
|
|
|
// If it has fallen to here it's requested but not actually available to don't add anything
|
|
}
|
|
|
|
// Now we need to remove collection ciphers that are no longer requested
|
|
dbContext.CollectionCiphers.RemoveRange(collectionCiphers.Where(cc => !collectionIds.Contains(cc.CollectionId) && cc.CipherId == cipherId));
|
|
|
|
if (organizationId.HasValue)
|
|
{
|
|
await dbContext.UserBumpAccountRevisionDateByOrganizationIdAsync(organizationId.Value);
|
|
}
|
|
await dbContext.SaveChangesAsync();
|
|
}
|
|
}
|
|
|
|
public async Task UpdateCollectionsForAdminAsync(Guid cipherId, Guid organizationId, IEnumerable<Guid> collectionIds)
|
|
{
|
|
using (var scope = ServiceScopeFactory.CreateScope())
|
|
{
|
|
var dbContext = GetDatabaseContext(scope);
|
|
var availableCollections = await (from c in dbContext.Collections
|
|
where c.OrganizationId == organizationId
|
|
select c).ToListAsync();
|
|
|
|
var currentCollectionCiphers = await (from cc in dbContext.CollectionCiphers
|
|
where cc.CipherId == cipherId
|
|
select cc).ToListAsync();
|
|
|
|
foreach (var requestedCollectionId in collectionIds)
|
|
{
|
|
var requestedCollectionCipher = currentCollectionCiphers
|
|
.FirstOrDefault(cc => cc.CollectionId == requestedCollectionId);
|
|
|
|
if (requestedCollectionCipher == null)
|
|
{
|
|
dbContext.CollectionCiphers.Add(new Models.CollectionCipher
|
|
{
|
|
CipherId = cipherId,
|
|
CollectionId = requestedCollectionId,
|
|
});
|
|
}
|
|
}
|
|
|
|
dbContext.RemoveRange(currentCollectionCiphers.Where(cc => !collectionIds.Contains(cc.CollectionId)));
|
|
await dbContext.UserBumpAccountRevisionDateByOrganizationIdAsync(organizationId);
|
|
await dbContext.SaveChangesAsync();
|
|
}
|
|
}
|
|
|
|
public async Task UpdateCollectionsForCiphersAsync(IEnumerable<Guid> cipherIds, Guid userId, Guid organizationId, IEnumerable<Guid> collectionIds)
|
|
{
|
|
using (var scope = ServiceScopeFactory.CreateScope())
|
|
{
|
|
var dbContext = GetDatabaseContext(scope);
|
|
|
|
var availableCollectionsQuery = new CollectionsReadByOrganizationIdUserIdQuery(organizationId, userId);
|
|
var availableCollections = availableCollectionsQuery
|
|
.Run(dbContext);
|
|
|
|
if (await availableCollections.CountAsync() < 1)
|
|
{
|
|
return;
|
|
}
|
|
|
|
var insertData = from collectionId in collectionIds
|
|
from cipherId in cipherIds
|
|
where availableCollections.Select(c => c.Id).Contains(collectionId)
|
|
select new Models.CollectionCipher
|
|
{
|
|
CollectionId = collectionId,
|
|
CipherId = cipherId,
|
|
};
|
|
await dbContext.AddRangeAsync(insertData);
|
|
await dbContext.UserBumpAccountRevisionDateByOrganizationIdAsync(organizationId);
|
|
await dbContext.SaveChangesAsync();
|
|
}
|
|
}
|
|
|
|
public async Task AddCollectionsForManyCiphersAsync(Guid organizationId, IEnumerable<Guid> cipherIds,
|
|
IEnumerable<Guid> collectionIds)
|
|
{
|
|
using (var scope = ServiceScopeFactory.CreateScope())
|
|
{
|
|
var dbContext = GetDatabaseContext(scope);
|
|
var availableCollections = await (from c in dbContext.Collections
|
|
join o in dbContext.Organizations on c.OrganizationId equals o.Id
|
|
where o.Id == organizationId && o.Enabled
|
|
select c).ToListAsync();
|
|
|
|
var currentCollectionCiphers = await (from cc in dbContext.CollectionCiphers
|
|
where cipherIds.Contains(cc.CipherId)
|
|
select cc).ToListAsync();
|
|
|
|
var insertData = from collectionId in collectionIds
|
|
from cipherId in cipherIds
|
|
where
|
|
availableCollections.Select(c => c.Id).Contains(collectionId) &&
|
|
!currentCollectionCiphers.Any(cc => cc.CipherId == cipherId && cc.CollectionId == collectionId)
|
|
select new Models.CollectionCipher { CollectionId = collectionId, CipherId = cipherId, };
|
|
|
|
await dbContext.AddRangeAsync(insertData);
|
|
await dbContext.UserBumpAccountRevisionDateByOrganizationIdAsync(organizationId);
|
|
await dbContext.SaveChangesAsync();
|
|
}
|
|
}
|
|
|
|
public async Task RemoveCollectionsForManyCiphersAsync(Guid organizationId, IEnumerable<Guid> cipherIds,
|
|
IEnumerable<Guid> collectionIds)
|
|
{
|
|
using (var scope = ServiceScopeFactory.CreateScope())
|
|
{
|
|
var dbContext = GetDatabaseContext(scope);
|
|
var currentCollectionCiphersToBeRemoved = await (from cc in dbContext.CollectionCiphers
|
|
where cipherIds.Contains(cc.CipherId) && collectionIds.Contains(cc.CollectionId)
|
|
select cc).ToListAsync();
|
|
dbContext.RemoveRange(currentCollectionCiphersToBeRemoved);
|
|
await dbContext.UserBumpAccountRevisionDateByOrganizationIdAsync(organizationId);
|
|
await dbContext.SaveChangesAsync();
|
|
}
|
|
}
|
|
}
|