mirror of
https://github.com/bitwarden/server
synced 2025-12-11 13:53:40 +00:00
3c5de319d1
* Added email on failed 2FA attempt. * Added tests. * Adjusted email verbiage. * Added feature flag. * Undid accidental change. * Undid unintentional change to clean up PR. * Linting * Added attempted method to email. * Changes to email templates. * Linting. * Email format changes. * Email formatting changes.
146 lines
4.8 KiB
C#
146 lines
4.8 KiB
C#
using System.Security.Claims;
|
|
using Bit.Core.AdminConsole.OrganizationFeatures.Policies;
|
|
using Bit.Core.AdminConsole.Services;
|
|
using Bit.Core.Auth.Repositories;
|
|
using Bit.Core.Context;
|
|
using Bit.Core.Entities;
|
|
using Bit.Core.Repositories;
|
|
using Bit.Core.Services;
|
|
using Bit.Core.Settings;
|
|
using Bit.Identity.IdentityServer;
|
|
using Bit.Identity.IdentityServer.RequestValidators;
|
|
using Duende.IdentityServer.Models;
|
|
using Duende.IdentityServer.Validation;
|
|
using Microsoft.AspNetCore.Identity;
|
|
using Microsoft.Extensions.Logging;
|
|
|
|
namespace Bit.Identity.Test.Wrappers;
|
|
|
|
public class BaseRequestValidationContextFake
|
|
{
|
|
public ValidatedTokenRequest ValidatedTokenRequest;
|
|
public CustomValidatorRequestContext CustomValidatorRequestContext;
|
|
public GrantValidationResult GrantResult;
|
|
|
|
public BaseRequestValidationContextFake(
|
|
ValidatedTokenRequest tokenRequest,
|
|
CustomValidatorRequestContext customValidatorRequestContext,
|
|
GrantValidationResult grantResult)
|
|
{
|
|
ValidatedTokenRequest = tokenRequest;
|
|
CustomValidatorRequestContext = customValidatorRequestContext;
|
|
GrantResult = grantResult;
|
|
}
|
|
}
|
|
|
|
interface IBaseRequestValidatorTestWrapper
|
|
{
|
|
Task ValidateAsync(BaseRequestValidationContextFake context);
|
|
}
|
|
|
|
public class BaseRequestValidatorTestWrapper : BaseRequestValidator<BaseRequestValidationContextFake>,
|
|
IBaseRequestValidatorTestWrapper
|
|
{
|
|
|
|
/*
|
|
* Some of the logic trees call `ValidateContextAsync`. Since this is a test wrapper, we set the return value
|
|
* of ValidateContextAsync() to whatever we need for the specific test case.
|
|
*/
|
|
public bool isValid { get; set; }
|
|
public BaseRequestValidatorTestWrapper(
|
|
UserManager<User> userManager,
|
|
IUserService userService,
|
|
IEventService eventService,
|
|
IDeviceValidator deviceValidator,
|
|
ITwoFactorAuthenticationValidator twoFactorAuthenticationValidator,
|
|
IOrganizationUserRepository organizationUserRepository,
|
|
ILogger logger,
|
|
ICurrentContext currentContext,
|
|
GlobalSettings globalSettings,
|
|
IUserRepository userRepository,
|
|
IPolicyService policyService,
|
|
IFeatureService featureService,
|
|
ISsoConfigRepository ssoConfigRepository,
|
|
IUserDecryptionOptionsBuilder userDecryptionOptionsBuilder,
|
|
IPolicyRequirementQuery policyRequirementQuery,
|
|
IAuthRequestRepository authRequestRepository,
|
|
IMailService mailService) :
|
|
base(
|
|
userManager,
|
|
userService,
|
|
eventService,
|
|
deviceValidator,
|
|
twoFactorAuthenticationValidator,
|
|
organizationUserRepository,
|
|
logger,
|
|
currentContext,
|
|
globalSettings,
|
|
userRepository,
|
|
policyService,
|
|
featureService,
|
|
ssoConfigRepository,
|
|
userDecryptionOptionsBuilder,
|
|
policyRequirementQuery,
|
|
authRequestRepository,
|
|
mailService)
|
|
{
|
|
}
|
|
|
|
public async Task ValidateAsync(
|
|
BaseRequestValidationContextFake context)
|
|
{
|
|
await ValidateAsync(context, context.ValidatedTokenRequest, context.CustomValidatorRequestContext);
|
|
}
|
|
|
|
protected override ClaimsPrincipal GetSubject(
|
|
BaseRequestValidationContextFake context)
|
|
{
|
|
return context.ValidatedTokenRequest.Subject ?? new ClaimsPrincipal();
|
|
}
|
|
|
|
[Obsolete]
|
|
protected override void SetErrorResult(
|
|
BaseRequestValidationContextFake context,
|
|
Dictionary<string, object> customResponse)
|
|
{
|
|
context.GrantResult = new GrantValidationResult(TokenRequestErrors.InvalidGrant, customResponse: customResponse);
|
|
}
|
|
|
|
[Obsolete]
|
|
protected override void SetSsoResult(
|
|
BaseRequestValidationContextFake context,
|
|
Dictionary<string, object> customResponse)
|
|
{
|
|
context.GrantResult = new GrantValidationResult(
|
|
TokenRequestErrors.InvalidGrant, "Sso authentication required.", customResponse);
|
|
}
|
|
|
|
protected override Task SetSuccessResult(
|
|
BaseRequestValidationContextFake context,
|
|
User user,
|
|
List<Claim> claims,
|
|
Dictionary<string, object> customResponse)
|
|
{
|
|
context.GrantResult = new GrantValidationResult(customResponse: customResponse);
|
|
return Task.CompletedTask;
|
|
}
|
|
|
|
[Obsolete]
|
|
protected override void SetTwoFactorResult(
|
|
BaseRequestValidationContextFake context,
|
|
Dictionary<string, object> customResponse)
|
|
{ }
|
|
|
|
protected override void SetValidationErrorResult(
|
|
BaseRequestValidationContextFake context,
|
|
CustomValidatorRequestContext requestContext)
|
|
{ }
|
|
|
|
protected override Task<bool> ValidateContextAsync(
|
|
BaseRequestValidationContextFake context,
|
|
CustomValidatorRequestContext validatorContext)
|
|
{
|
|
return Task.FromResult(isValid);
|
|
}
|
|
}
|