2021-12-16 13:36:21 +01:00
|
|
|
import { Directive } from "@angular/core";
|
|
|
|
|
import { ActivatedRoute, Router } from "@angular/router";
|
|
|
|
|
import { first } from "rxjs/operators";
|
2021-10-14 02:27:52 +02:00
|
|
|
|
2022-06-14 17:10:53 +02:00
|
|
|
import { ApiService } from "@bitwarden/common/abstractions/api.service";
|
|
|
|
|
import { CryptoService } from "@bitwarden/common/abstractions/crypto.service";
|
|
|
|
|
import { I18nService } from "@bitwarden/common/abstractions/i18n.service";
|
|
|
|
|
import { MessagingService } from "@bitwarden/common/abstractions/messaging.service";
|
2022-12-19 19:56:16 +01:00
|
|
|
import { OrganizationUserService } from "@bitwarden/common/abstractions/organization-user/organization-user.service";
|
|
|
|
|
import { OrganizationUserResetPasswordEnrollmentRequest } from "@bitwarden/common/abstractions/organization-user/requests";
|
2022-08-24 18:33:05 +02:00
|
|
|
import { OrganizationApiServiceAbstraction } from "@bitwarden/common/abstractions/organization/organization-api.service.abstraction";
|
2022-06-14 17:10:53 +02:00
|
|
|
import { PasswordGenerationService } from "@bitwarden/common/abstractions/passwordGeneration.service";
|
|
|
|
|
import { PlatformUtilsService } from "@bitwarden/common/abstractions/platformUtils.service";
|
2022-08-08 11:04:36 +02:00
|
|
|
import { PolicyApiServiceAbstraction } from "@bitwarden/common/abstractions/policy/policy-api.service.abstraction";
|
|
|
|
|
import { PolicyService } from "@bitwarden/common/abstractions/policy/policy.service.abstraction";
|
2022-06-14 17:10:53 +02:00
|
|
|
import { StateService } from "@bitwarden/common/abstractions/state.service";
|
|
|
|
|
import { HashPurpose } from "@bitwarden/common/enums/hashPurpose";
|
2023-01-30 15:07:51 +01:00
|
|
|
import { DEFAULT_KDF_TYPE, DEFAULT_KDF_CONFIG } from "@bitwarden/common/enums/kdfType";
|
2022-06-14 17:10:53 +02:00
|
|
|
import { Utils } from "@bitwarden/common/misc/utils";
|
2022-10-14 18:25:50 +02:00
|
|
|
import { EncString } from "@bitwarden/common/models/domain/enc-string";
|
|
|
|
|
import { SymmetricCryptoKey } from "@bitwarden/common/models/domain/symmetric-crypto-key";
|
2022-10-18 19:01:42 +02:00
|
|
|
import { KeysRequest } from "@bitwarden/common/models/request/keys.request";
|
|
|
|
|
import { SetPasswordRequest } from "@bitwarden/common/models/request/set-password.request";
|
2023-01-31 22:08:37 +01:00
|
|
|
import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
|
2020-08-19 16:57:35 +02:00
|
|
|
|
2021-12-16 13:36:21 +01:00
|
|
|
import { ChangePasswordComponent as BaseChangePasswordComponent } from "./change-password.component";
|
2020-08-19 16:57:35 +02:00
|
|
|
|
2021-04-22 21:17:14 +02:00
|
|
|
@Directive()
|
2020-08-19 16:57:35 +02:00
|
|
|
export class SetPasswordComponent extends BaseChangePasswordComponent {
|
2022-02-22 15:39:11 +01:00
|
|
|
syncLoading = true;
|
|
|
|
|
showPassword = false;
|
|
|
|
|
hint = "";
|
2021-12-16 13:36:21 +01:00
|
|
|
identifier: string = null;
|
|
|
|
|
orgId: string;
|
|
|
|
|
resetPasswordAutoEnroll = false;
|
|
|
|
|
|
2022-08-24 18:33:05 +02:00
|
|
|
onSuccessfulChangePassword: () => Promise<void>;
|
2021-12-16 13:36:21 +01:00
|
|
|
successRoute = "vault";
|
|
|
|
|
|
|
|
|
|
constructor(
|
|
|
|
|
i18nService: I18nService,
|
|
|
|
|
cryptoService: CryptoService,
|
|
|
|
|
messagingService: MessagingService,
|
|
|
|
|
passwordGenerationService: PasswordGenerationService,
|
|
|
|
|
platformUtilsService: PlatformUtilsService,
|
2022-08-08 11:04:36 +02:00
|
|
|
private policyApiService: PolicyApiServiceAbstraction,
|
2021-12-16 13:36:21 +01:00
|
|
|
policyService: PolicyService,
|
|
|
|
|
protected router: Router,
|
|
|
|
|
private apiService: ApiService,
|
|
|
|
|
private syncService: SyncService,
|
|
|
|
|
private route: ActivatedRoute,
|
2022-08-24 18:33:05 +02:00
|
|
|
stateService: StateService,
|
2022-12-19 19:56:16 +01:00
|
|
|
private organizationApiService: OrganizationApiServiceAbstraction,
|
|
|
|
|
private organizationUserService: OrganizationUserService
|
2021-12-16 13:36:21 +01:00
|
|
|
) {
|
|
|
|
|
super(
|
|
|
|
|
i18nService,
|
|
|
|
|
cryptoService,
|
|
|
|
|
messagingService,
|
|
|
|
|
passwordGenerationService,
|
|
|
|
|
platformUtilsService,
|
|
|
|
|
policyService,
|
|
|
|
|
stateService
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
async ngOnInit() {
|
|
|
|
|
await this.syncService.fullSync(true);
|
|
|
|
|
this.syncLoading = false;
|
|
|
|
|
|
2022-08-26 18:09:28 +02:00
|
|
|
// eslint-disable-next-line rxjs/no-async-subscribe
|
2021-12-16 13:36:21 +01:00
|
|
|
this.route.queryParams.pipe(first()).subscribe(async (qParams) => {
|
|
|
|
|
if (qParams.identifier != null) {
|
|
|
|
|
this.identifier = qParams.identifier;
|
|
|
|
|
}
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
// Automatic Enrollment Detection
|
|
|
|
|
if (this.identifier != null) {
|
|
|
|
|
try {
|
2022-08-24 18:33:05 +02:00
|
|
|
const response = await this.organizationApiService.getAutoEnrollStatus(this.identifier);
|
2021-12-16 13:36:21 +01:00
|
|
|
this.orgId = response.id;
|
|
|
|
|
this.resetPasswordAutoEnroll = response.resetPasswordEnabled;
|
2021-12-21 18:02:56 +01:00
|
|
|
this.enforcedPolicyOptions =
|
2022-08-08 11:04:36 +02:00
|
|
|
await this.policyApiService.getMasterPasswordPoliciesForInvitedUsers(this.orgId);
|
2021-12-16 13:36:21 +01:00
|
|
|
} catch {
|
|
|
|
|
this.platformUtilsService.showToast("error", null, this.i18nService.t("errorOccurred"));
|
|
|
|
|
}
|
2020-08-19 16:57:35 +02:00
|
|
|
}
|
|
|
|
|
|
2021-12-16 13:36:21 +01:00
|
|
|
super.ngOnInit();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
async setupSubmitActions() {
|
2022-03-24 10:42:11 +01:00
|
|
|
this.kdf = DEFAULT_KDF_TYPE;
|
2023-01-30 15:07:51 +01:00
|
|
|
this.kdfConfig = DEFAULT_KDF_CONFIG;
|
2021-12-16 13:36:21 +01:00
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
async performSubmitActions(
|
|
|
|
|
masterPasswordHash: string,
|
|
|
|
|
key: SymmetricCryptoKey,
|
|
|
|
|
encKey: [SymmetricCryptoKey, EncString]
|
|
|
|
|
) {
|
|
|
|
|
const keys = await this.cryptoService.makeKeyPair(encKey[0]);
|
|
|
|
|
const request = new SetPasswordRequest(
|
|
|
|
|
masterPasswordHash,
|
|
|
|
|
encKey[1].encryptedString,
|
|
|
|
|
this.hint,
|
|
|
|
|
this.identifier,
|
2023-01-30 15:07:51 +01:00
|
|
|
new KeysRequest(keys[0], keys[1].encryptedString),
|
|
|
|
|
this.kdf,
|
|
|
|
|
this.kdfConfig.iterations,
|
|
|
|
|
this.kdfConfig.memory,
|
|
|
|
|
this.kdfConfig.parallelism
|
2021-12-16 13:36:21 +01:00
|
|
|
);
|
|
|
|
|
try {
|
|
|
|
|
if (this.resetPasswordAutoEnroll) {
|
|
|
|
|
this.formPromise = this.apiService
|
|
|
|
|
.setPassword(request)
|
|
|
|
|
.then(async () => {
|
|
|
|
|
await this.onSetPasswordSuccess(key, encKey, keys);
|
2022-08-24 18:33:05 +02:00
|
|
|
return this.organizationApiService.getKeys(this.orgId);
|
2021-12-16 13:36:21 +01:00
|
|
|
})
|
|
|
|
|
.then(async (response) => {
|
|
|
|
|
if (response == null) {
|
|
|
|
|
throw new Error(this.i18nService.t("resetPasswordOrgKeysError"));
|
2020-10-13 22:21:03 +02:00
|
|
|
}
|
2021-12-16 13:36:21 +01:00
|
|
|
const userId = await this.stateService.getUserId();
|
|
|
|
|
const publicKey = Utils.fromB64ToArray(response.publicKey);
|
|
|
|
|
|
|
|
|
|
// RSA Encrypt user's encKey.key with organization public key
|
|
|
|
|
const userEncKey = await this.cryptoService.getEncKey();
|
|
|
|
|
const encryptedKey = await this.cryptoService.rsaEncrypt(
|
|
|
|
|
userEncKey.key,
|
|
|
|
|
publicKey.buffer
|
|
|
|
|
);
|
|
|
|
|
|
|
|
|
|
const resetRequest = new OrganizationUserResetPasswordEnrollmentRequest();
|
2022-07-06 21:19:58 +02:00
|
|
|
resetRequest.masterPasswordHash = masterPasswordHash;
|
2021-12-16 13:36:21 +01:00
|
|
|
resetRequest.resetPasswordKey = encryptedKey.encryptedString;
|
|
|
|
|
|
2022-12-19 19:56:16 +01:00
|
|
|
return this.organizationUserService.putOrganizationUserResetPasswordEnrollment(
|
2021-12-16 13:36:21 +01:00
|
|
|
this.orgId,
|
|
|
|
|
userId,
|
|
|
|
|
resetRequest
|
|
|
|
|
);
|
|
|
|
|
});
|
|
|
|
|
} else {
|
|
|
|
|
this.formPromise = this.apiService.setPassword(request).then(async () => {
|
|
|
|
|
await this.onSetPasswordSuccess(key, encKey, keys);
|
2020-10-13 22:21:03 +02:00
|
|
|
});
|
2021-12-16 13:36:21 +01:00
|
|
|
}
|
2020-10-13 22:21:03 +02:00
|
|
|
|
2021-12-16 13:36:21 +01:00
|
|
|
await this.formPromise;
|
2021-09-03 21:49:03 +02:00
|
|
|
|
2021-12-16 13:36:21 +01:00
|
|
|
if (this.onSuccessfulChangePassword != null) {
|
|
|
|
|
this.onSuccessfulChangePassword();
|
|
|
|
|
} else {
|
|
|
|
|
this.router.navigate([this.successRoute]);
|
|
|
|
|
}
|
|
|
|
|
} catch {
|
|
|
|
|
this.platformUtilsService.showToast("error", null, this.i18nService.t("errorOccurred"));
|
2021-09-03 21:49:03 +02:00
|
|
|
}
|
2021-12-16 13:36:21 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
togglePassword(confirmField: boolean) {
|
|
|
|
|
this.showPassword = !this.showPassword;
|
|
|
|
|
document.getElementById(confirmField ? "masterPasswordRetype" : "masterPassword").focus();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
private async onSetPasswordSuccess(
|
|
|
|
|
key: SymmetricCryptoKey,
|
|
|
|
|
encKey: [SymmetricCryptoKey, EncString],
|
|
|
|
|
keys: [string, EncString]
|
|
|
|
|
) {
|
|
|
|
|
await this.stateService.setKdfType(this.kdf);
|
2023-01-30 15:07:51 +01:00
|
|
|
await this.stateService.setKdfConfig(this.kdfConfig);
|
2021-12-16 13:36:21 +01:00
|
|
|
await this.cryptoService.setKey(key);
|
|
|
|
|
await this.cryptoService.setEncKey(encKey[1].encryptedString);
|
|
|
|
|
await this.cryptoService.setEncPrivateKey(keys[1].encryptedString);
|
|
|
|
|
|
|
|
|
|
const localKeyHash = await this.cryptoService.hashPassword(
|
|
|
|
|
this.masterPassword,
|
|
|
|
|
key,
|
|
|
|
|
HashPurpose.LocalAuthorization
|
|
|
|
|
);
|
|
|
|
|
await this.cryptoService.setKeyHash(localKeyHash);
|
|
|
|
|
}
|
2020-08-19 16:57:35 +02:00
|
|
|
}
|
