bitwarden-browser/apps/web/src/app/accounts/accept-organization.component.ts

import { Component } from "@angular/core";
import { ActivatedRoute, Params, Router } from "@angular/router";

import { ApiService } from "@bitwarden/common/abstractions/api.service";
import { CryptoService } from "@bitwarden/common/abstractions/crypto.service";
import { I18nService } from "@bitwarden/common/abstractions/i18n.service";
import { LogService } from "@bitwarden/common/abstractions/log.service";
import { OrganizationUserService } from "@bitwarden/common/abstractions/organization-user/organization-user.service";
import { OrganizationUserAcceptRequest } from "@bitwarden/common/abstractions/organization-user/requests";
import { OrganizationApiServiceAbstraction } from "@bitwarden/common/abstractions/organization/organization-api.service.abstraction";
import { PlatformUtilsService } from "@bitwarden/common/abstractions/platformUtils.service";
import { PolicyApiServiceAbstraction } from "@bitwarden/common/abstractions/policy/policy-api.service.abstraction";
import { PolicyService } from "@bitwarden/common/abstractions/policy/policy.service.abstraction";
import { StateService } from "@bitwarden/common/abstractions/state.service";
import { Utils } from "@bitwarden/common/misc/utils";
import { Policy } from "@bitwarden/common/models/domain/policy";

import { BaseAcceptComponent } from "../common/base.accept.component";

@Component({
  selector: "app-accept-organization",
  templateUrl: "accept-organization.component.html",
})
export class AcceptOrganizationComponent extends BaseAcceptComponent {
  orgName: string;

  protected requiredParameters: string[] = ["organizationId", "organizationUserId", "token"];

  constructor(
    router: Router,
    platformUtilsService: PlatformUtilsService,
    i18nService: I18nService,
    route: ActivatedRoute,
    private apiService: ApiService,
    stateService: StateService,
    private cryptoService: CryptoService,
    private policyApiService: PolicyApiServiceAbstraction,
    private policyService: PolicyService,
    private logService: LogService,
    private organizationApiService: OrganizationApiServiceAbstraction,
    private organizationUserService: OrganizationUserService
  ) {
    super(router, platformUtilsService, i18nService, route, stateService);
  }

  async authedHandler(qParams: Params): Promise<void> {
    this.actionPromise = this.prepareAcceptRequest(qParams).then(async (request) => {
      await this.organizationUserService.postOrganizationUserAccept(
        qParams.organizationId,
        qParams.organizationUserId,
        request
      );
    });

    await this.actionPromise;
    this.platformUtilService.showToast(
      "success",
      this.i18nService.t("inviteAccepted"),
      this.i18nService.t("inviteAcceptedDesc"),
      { timeout: 10000 }
    );

    await this.stateService.setOrganizationInvitation(null);
    this.router.navigate(["/vault"]);
  }

  async unauthedHandler(qParams: Params): Promise<void> {
    this.orgName = qParams.organizationName;
    if (this.orgName != null) {
      // Fix URL encoding of space issue with Angular
      this.orgName = this.orgName.replace(/\+/g, " ");
    }
    await this.stateService.setOrganizationInvitation(qParams);
  }

  private async prepareAcceptRequest(qParams: Params): Promise<OrganizationUserAcceptRequest> {
    const request = new OrganizationUserAcceptRequest();
    request.token = qParams.token;

    if (await this.performResetPasswordAutoEnroll(qParams)) {
      const response = await this.organizationApiService.getKeys(qParams.organizationId);

      if (response == null) {
        throw new Error(this.i18nService.t("resetPasswordOrgKeysError"));
      }

      const publicKey = Utils.fromB64ToArray(response.publicKey);

      // RSA Encrypt user's encKey.key with organization public key
      const encKey = await this.cryptoService.getEncKey();
      const encryptedKey = await this.cryptoService.rsaEncrypt(encKey.key, publicKey.buffer);

      // Add reset password key to accept request
      request.resetPasswordKey = encryptedKey.encryptedString;
    }
    return request;
  }

  private async performResetPasswordAutoEnroll(qParams: Params): Promise<boolean> {
    let policyList: Policy[] = null;
    try {
      const policies = await this.policyApiService.getPoliciesByToken(
        qParams.organizationId,
        qParams.token,
        qParams.email,
        qParams.organizationUserId
      );
      policyList = this.policyService.mapPoliciesFromToken(policies);
    } catch (e) {
      this.logService.error(e);
    }

    if (policyList != null) {
      const result = this.policyService.getResetPasswordPolicyOptions(
        policyList,
        qParams.organizationId
      );
      // Return true if policy enabled and auto-enroll enabled
      return result[1] && result[0].autoEnrollEnabled;
    }

    return false;
  }
}
Apply Prettier (#1347) 2021-12-17 15:57:11 +01:00			`import { Component } from "@angular/core";`
[PS-616] [PS-795] Fix/withdraw master password reset without user verification (#2845) * Limit enroll MPR modal to enrolling * Withdraw from MPR directly from org options * [PS-795] Fix Automatic mpr enrollment. Add reset password key to the accept request * Linter * Specify params type in accept components 2022-06-08 21:56:26 +02:00			`import { ActivatedRoute, Params, Router } from "@angular/router";`
Apply Prettier (#1347) 2021-12-17 15:57:11 +01:00
Use NPM workspace (#2874) 2022-06-14 17:10:53 +02:00			`import { ApiService } from "@bitwarden/common/abstractions/api.service";`
			`import { CryptoService } from "@bitwarden/common/abstractions/crypto.service";`
			`import { I18nService } from "@bitwarden/common/abstractions/i18n.service";`
			`import { LogService } from "@bitwarden/common/abstractions/log.service";`
[EC 784] Refactor organization user service (#4163) * [EC-784] Introduce OrganizationUserService and abstraction * [EC-784] Move API response models into abstraction folder * [EC-784] Register OrganizationUserService in JsLib * [EC-784] Add OrganizationUserService to CLI Main * [EC-784] Move getOrganizationUser() - Move getOrganizationUser() implementation to OrganizationUserService - Update any references to the API service in the CLI and Web projects * [EC-784] Move getOrganizationUserGroups() * [EC-784] Move and rename getOrganizationUsers() * [EC-784] Move getOrganizationUserResetPasswordDetails() * [EC-784] Move OrganizationUser API request models into abstraction folder * [EC-784] Move postOrganizationUserInvite() * [EC-784] Move postOrganizationUserReinvite() * [EC-784] Move postManyOrganizationUserReinvite() Also tweak the signature to avoid exposing the API request model * [EC-784] Move postOrganizationUserAccept() * [EC-784] Move postOrganizationUserConfirm() * [EC-784] Move postOrganizationUsersPublicKey() Also modify signature to avoid exposing API request model * [EC-784] Move postOrganizationUserBulkConfirm() * [EC-784] Move putOrganizationUser() * [EC-784] Move putOrganizationUserGroups() * [EC-784] Update abstraction method definitions to use abstract keyword * [EC-784] Move putOrganizationUserResetPasswordEnrollment() * [EC-784] Move putOrganizationUserResetPassword() * [EC-784] Move deleteOrganizationUser() * [EC-784] Move deleteManyOrganizationUsers() * [EC-784] Move revokeOrganizationUser() * [EC-784] Move revokeManyOrganizationUsers() * [EC-784] Move restoreOrganizationUser() * [EC-784] Move restoreManyOrganizationUsers() * [EC-784] Move internal OrganizationUserBulkRequest model out of service abstraction * [EC-784] Rename organizationUser folder to organization-user 2022-12-19 19:56:16 +01:00			`import { OrganizationUserService } from "@bitwarden/common/abstractions/organization-user/organization-user.service";`
			`import { OrganizationUserAcceptRequest } from "@bitwarden/common/abstractions/organization-user/requests";`
[PS-1093] Move Organization Api Calls (#3243) * Move organization api calls into seperate service * Remove unneeded unknown * Address PR feedback 2022-08-24 18:33:05 +02:00			`import { OrganizationApiServiceAbstraction } from "@bitwarden/common/abstractions/organization/organization-api.service.abstraction";`
Use NPM workspace (#2874) 2022-06-14 17:10:53 +02:00			`import { PlatformUtilsService } from "@bitwarden/common/abstractions/platformUtils.service";`
[EC-376] Extract API logic from PolicyService to PolicyApiService (#3203) * Added abstractions for PolicyApiService and PolicyService * Added implementations for PolicyApiService and PolicyService * Updated all references to new PolicyApiService and PolicyService * Deleted old PolicyService abstraction and implementation * Fixed CLI import path for policy.service * Fixed main.background.ts policyApiService dependency for policyService * Updated policy-api.service with the correct imports * [EC-376] Sorted methods order in PolicyApiService * [EC-376] Removed unused clearCache method from PolicyService * [EC-376] Added upsert method to PolicyService * [EC-376] PolicyApiService putPolicy method now upserts data to PolicyService 2022-08-08 11:04:36 +02:00			`import { PolicyApiServiceAbstraction } from "@bitwarden/common/abstractions/policy/policy-api.service.abstraction";`
			`import { PolicyService } from "@bitwarden/common/abstractions/policy/policy.service.abstraction";`
Use NPM workspace (#2874) 2022-06-14 17:10:53 +02:00			`import { StateService } from "@bitwarden/common/abstractions/state.service";`
			`import { Utils } from "@bitwarden/common/misc/utils";`
			`import { Policy } from "@bitwarden/common/models/domain/policy";`
Apply Prettier (#1347) 2021-12-17 15:57:11 +01:00
			`import { BaseAcceptComponent } from "../common/base.accept.component";`
accept org invite 2018-07-12 22:05:42 +02:00
			`@Component({`
Apply Prettier (#1347) 2021-12-17 15:57:11 +01:00			`selector: "app-accept-organization",`
			`templateUrl: "accept-organization.component.html",`
accept org invite 2018-07-12 22:05:42 +02:00			`})`
Refactor accept-organization and accept-emergency (#1026) 2021-06-15 21:02:04 +02:00			`export class AcceptOrganizationComponent extends BaseAcceptComponent {`
Apply Prettier (#1347) 2021-12-17 15:57:11 +01:00			`orgName: string;`

			`protected requiredParameters: string[] = ["organizationId", "organizationUserId", "token"];`

			`constructor(`
			`router: Router,`
			`platformUtilsService: PlatformUtilsService,`
			`i18nService: I18nService,`
			`route: ActivatedRoute,`
			`private apiService: ApiService,`
			`stateService: StateService,`
			`private cryptoService: CryptoService,`
[EC-376] Extract API logic from PolicyService to PolicyApiService (#3203) * Added abstractions for PolicyApiService and PolicyService * Added implementations for PolicyApiService and PolicyService * Updated all references to new PolicyApiService and PolicyService * Deleted old PolicyService abstraction and implementation * Fixed CLI import path for policy.service * Fixed main.background.ts policyApiService dependency for policyService * Updated policy-api.service with the correct imports * [EC-376] Sorted methods order in PolicyApiService * [EC-376] Removed unused clearCache method from PolicyService * [EC-376] Added upsert method to PolicyService * [EC-376] PolicyApiService putPolicy method now upserts data to PolicyService 2022-08-08 11:04:36 +02:00			`private policyApiService: PolicyApiServiceAbstraction,`
Apply Prettier (#1347) 2021-12-17 15:57:11 +01:00			`private policyService: PolicyService,`
[PS-1093] Move Organization Api Calls (#3243) * Move organization api calls into seperate service * Remove unneeded unknown * Address PR feedback 2022-08-24 18:33:05 +02:00			`private logService: LogService,`
[EC 784] Refactor organization user service (#4163) * [EC-784] Introduce OrganizationUserService and abstraction * [EC-784] Move API response models into abstraction folder * [EC-784] Register OrganizationUserService in JsLib * [EC-784] Add OrganizationUserService to CLI Main * [EC-784] Move getOrganizationUser() - Move getOrganizationUser() implementation to OrganizationUserService - Update any references to the API service in the CLI and Web projects * [EC-784] Move getOrganizationUserGroups() * [EC-784] Move and rename getOrganizationUsers() * [EC-784] Move getOrganizationUserResetPasswordDetails() * [EC-784] Move OrganizationUser API request models into abstraction folder * [EC-784] Move postOrganizationUserInvite() * [EC-784] Move postOrganizationUserReinvite() * [EC-784] Move postManyOrganizationUserReinvite() Also tweak the signature to avoid exposing the API request model * [EC-784] Move postOrganizationUserAccept() * [EC-784] Move postOrganizationUserConfirm() * [EC-784] Move postOrganizationUsersPublicKey() Also modify signature to avoid exposing API request model * [EC-784] Move postOrganizationUserBulkConfirm() * [EC-784] Move putOrganizationUser() * [EC-784] Move putOrganizationUserGroups() * [EC-784] Update abstraction method definitions to use abstract keyword * [EC-784] Move putOrganizationUserResetPasswordEnrollment() * [EC-784] Move putOrganizationUserResetPassword() * [EC-784] Move deleteOrganizationUser() * [EC-784] Move deleteManyOrganizationUsers() * [EC-784] Move revokeOrganizationUser() * [EC-784] Move revokeManyOrganizationUsers() * [EC-784] Move restoreOrganizationUser() * [EC-784] Move restoreManyOrganizationUsers() * [EC-784] Move internal OrganizationUserBulkRequest model out of service abstraction * [EC-784] Rename organizationUser folder to organization-user 2022-12-19 19:56:16 +01:00			`private organizationApiService: OrganizationApiServiceAbstraction,`
			`private organizationUserService: OrganizationUserService`
Apply Prettier (#1347) 2021-12-17 15:57:11 +01:00			`) {`
			`super(router, platformUtilsService, i18nService, route, stateService);`
			`}`

[PS-616] [PS-795] Fix/withdraw master password reset without user verification (#2845) * Limit enroll MPR modal to enrolling * Withdraw from MPR directly from org options * [PS-795] Fix Automatic mpr enrollment. Add reset password key to the accept request * Linter * Specify params type in accept components 2022-06-08 21:56:26 +02:00			`async authedHandler(qParams: Params): Promise<void> {`
			`this.actionPromise = this.prepareAcceptRequest(qParams).then(async (request) => {`
[EC 784] Refactor organization user service (#4163) * [EC-784] Introduce OrganizationUserService and abstraction * [EC-784] Move API response models into abstraction folder * [EC-784] Register OrganizationUserService in JsLib * [EC-784] Add OrganizationUserService to CLI Main * [EC-784] Move getOrganizationUser() - Move getOrganizationUser() implementation to OrganizationUserService - Update any references to the API service in the CLI and Web projects * [EC-784] Move getOrganizationUserGroups() * [EC-784] Move and rename getOrganizationUsers() * [EC-784] Move getOrganizationUserResetPasswordDetails() * [EC-784] Move OrganizationUser API request models into abstraction folder * [EC-784] Move postOrganizationUserInvite() * [EC-784] Move postOrganizationUserReinvite() * [EC-784] Move postManyOrganizationUserReinvite() Also tweak the signature to avoid exposing the API request model * [EC-784] Move postOrganizationUserAccept() * [EC-784] Move postOrganizationUserConfirm() * [EC-784] Move postOrganizationUsersPublicKey() Also modify signature to avoid exposing API request model * [EC-784] Move postOrganizationUserBulkConfirm() * [EC-784] Move putOrganizationUser() * [EC-784] Move putOrganizationUserGroups() * [EC-784] Update abstraction method definitions to use abstract keyword * [EC-784] Move putOrganizationUserResetPasswordEnrollment() * [EC-784] Move putOrganizationUserResetPassword() * [EC-784] Move deleteOrganizationUser() * [EC-784] Move deleteManyOrganizationUsers() * [EC-784] Move revokeOrganizationUser() * [EC-784] Move revokeManyOrganizationUsers() * [EC-784] Move restoreOrganizationUser() * [EC-784] Move restoreManyOrganizationUsers() * [EC-784] Move internal OrganizationUserBulkRequest model out of service abstraction * [EC-784] Rename organizationUser folder to organization-user 2022-12-19 19:56:16 +01:00			`await this.organizationUserService.postOrganizationUserAccept(`
Apply Prettier (#1347) 2021-12-17 15:57:11 +01:00			`qParams.organizationId,`
			`qParams.organizationUserId,`
			`request`
			`);`
[PS-616] [PS-795] Fix/withdraw master password reset without user verification (#2845) * Limit enroll MPR modal to enrolling * Withdraw from MPR directly from org options * [PS-795] Fix Automatic mpr enrollment. Add reset password key to the accept request * Linter * Specify params type in accept components 2022-06-08 21:56:26 +02:00			`});`
Refactor accept-organization and accept-emergency (#1026) 2021-06-15 21:02:04 +02:00
Apply Prettier (#1347) 2021-12-17 15:57:11 +01:00			`await this.actionPromise;`
			`this.platformUtilService.showToast(`
			`"success",`
			`this.i18nService.t("inviteAccepted"),`
			`this.i18nService.t("inviteAcceptedDesc"),`
			`{ timeout: 10000 }`
			`);`

			`await this.stateService.setOrganizationInvitation(null);`
			`this.router.navigate(["/vault"]);`
			`}`

[PS-616] [PS-795] Fix/withdraw master password reset without user verification (#2845) * Limit enroll MPR modal to enrolling * Withdraw from MPR directly from org options * [PS-795] Fix Automatic mpr enrollment. Add reset password key to the accept request * Linter * Specify params type in accept components 2022-06-08 21:56:26 +02:00			`async unauthedHandler(qParams: Params): Promise<void> {`
Apply Prettier (#1347) 2021-12-17 15:57:11 +01:00			`this.orgName = qParams.organizationName;`
			`if (this.orgName != null) {`
			`// Fix URL encoding of space issue with Angular`
			`this.orgName = this.orgName.replace(/\+/g, " ");`
Refactor accept-organization and accept-emergency (#1026) 2021-06-15 21:02:04 +02:00			`}`
Apply Prettier (#1347) 2021-12-17 15:57:11 +01:00			`await this.stateService.setOrganizationInvitation(qParams);`
			`}`

[PS-616] [PS-795] Fix/withdraw master password reset without user verification (#2845) * Limit enroll MPR modal to enrolling * Withdraw from MPR directly from org options * [PS-795] Fix Automatic mpr enrollment. Add reset password key to the accept request * Linter * Specify params type in accept components 2022-06-08 21:56:26 +02:00			`private async prepareAcceptRequest(qParams: Params): Promise<OrganizationUserAcceptRequest> {`
			`const request = new OrganizationUserAcceptRequest();`
			`request.token = qParams.token;`

			`if (await this.performResetPasswordAutoEnroll(qParams)) {`
[PS-1093] Move Organization Api Calls (#3243) * Move organization api calls into seperate service * Remove unneeded unknown * Address PR feedback 2022-08-24 18:33:05 +02:00			`const response = await this.organizationApiService.getKeys(qParams.organizationId);`
[PS-616] [PS-795] Fix/withdraw master password reset without user verification (#2845) * Limit enroll MPR modal to enrolling * Withdraw from MPR directly from org options * [PS-795] Fix Automatic mpr enrollment. Add reset password key to the accept request * Linter * Specify params type in accept components 2022-06-08 21:56:26 +02:00
			`if (response == null) {`
			`throw new Error(this.i18nService.t("resetPasswordOrgKeysError"));`
			`}`

			`const publicKey = Utils.fromB64ToArray(response.publicKey);`

			`// RSA Encrypt user's encKey.key with organization public key`
			`const encKey = await this.cryptoService.getEncKey();`
			`const encryptedKey = await this.cryptoService.rsaEncrypt(encKey.key, publicKey.buffer);`

			`// Add reset password key to accept request`
			`request.resetPasswordKey = encryptedKey.encryptedString;`
			`}`
			`return request;`
			`}`

[PS-1093] Move Organization Api Calls (#3243) * Move organization api calls into seperate service * Remove unneeded unknown * Address PR feedback 2022-08-24 18:33:05 +02:00			`private async performResetPasswordAutoEnroll(qParams: Params): Promise<boolean> {`
Apply Prettier (#1347) 2021-12-17 15:57:11 +01:00			`let policyList: Policy[] = null;`
			`try {`
[EC-376] Extract API logic from PolicyService to PolicyApiService (#3203) * Added abstractions for PolicyApiService and PolicyService * Added implementations for PolicyApiService and PolicyService * Updated all references to new PolicyApiService and PolicyService * Deleted old PolicyService abstraction and implementation * Fixed CLI import path for policy.service * Fixed main.background.ts policyApiService dependency for policyService * Updated policy-api.service with the correct imports * [EC-376] Sorted methods order in PolicyApiService * [EC-376] Removed unused clearCache method from PolicyService * [EC-376] Added upsert method to PolicyService * [EC-376] PolicyApiService putPolicy method now upserts data to PolicyService 2022-08-08 11:04:36 +02:00			`const policies = await this.policyApiService.getPoliciesByToken(`
Apply Prettier (#1347) 2021-12-17 15:57:11 +01:00			`qParams.organizationId,`
			`qParams.token,`
			`qParams.email,`
			`qParams.organizationUserId`
			`);`
			`policyList = this.policyService.mapPoliciesFromToken(policies);`
			`} catch (e) {`
			`this.logService.error(e);`
accept org invite 2018-07-12 22:05:42 +02:00			`}`
[Reset Password] Admin Actions (#935) * [Reset Password] Admin Actions * Updated components to pass orgUser.Id and use within password reset apis * Removed password auto-generation, fixed loading visual bug by chaining promise actions * Update jslib 97ece68 -> 73ec484 * Updated all classes to new reset password flows * Update jslib (73ec484 -> 5f1ad85) * Update jslib (5f1ad85 -> 395ded0) * Update encryption steps for change-password flow * Fixed merge conflicts * Updated based on requested changes 2021-06-02 18:35:49 +02:00
Apply Prettier (#1347) 2021-12-17 15:57:11 +01:00			`if (policyList != null) {`
			`const result = this.policyService.getResetPasswordPolicyOptions(`
			`policyList,`
			`qParams.organizationId`
			`);`
			`// Return true if policy enabled and auto-enroll enabled`
			`return result[1] && result[0].autoEnrollEnabled;`
[Reset Password] Admin Actions (#935) * [Reset Password] Admin Actions * Updated components to pass orgUser.Id and use within password reset apis * Removed password auto-generation, fixed loading visual bug by chaining promise actions * Update jslib 97ece68 -> 73ec484 * Updated all classes to new reset password flows * Update jslib (73ec484 -> 5f1ad85) * Update jslib (5f1ad85 -> 395ded0) * Update encryption steps for change-password flow * Fixed merge conflicts * Updated based on requested changes 2021-06-02 18:35:49 +02:00			`}`
Apply Prettier (#1347) 2021-12-17 15:57:11 +01:00
			`return false;`
			`}`
accept org invite 2018-07-12 22:05:42 +02:00			`}`