1
0
mirror of https://github.com/bitwarden/browser.git synced 2024-10-30 08:10:34 +01:00
bitwarden-browser/src/commands/edit.command.ts

Ignoring revisions in .git-blame-ignore-revs. Click here to bypass and see the normal blame view.

195 lines
6.5 KiB
TypeScript
Raw Normal View History

2018-05-15 17:30:56 +02:00
import * as program from "commander";
import { ApiService } from "jslib-common/abstractions/api.service";
import { CipherService } from "jslib-common/abstractions/cipher.service";
import { CryptoService } from "jslib-common/abstractions/crypto.service";
import { FolderService } from "jslib-common/abstractions/folder.service";
2018-05-15 17:30:56 +02:00
import { Cipher } from "jslib-common/models/export/cipher";
import { Collection } from "jslib-common/models/export/collection";
import { Folder } from "jslib-common/models/export/folder";
2018-12-17 16:30:06 +01:00
import { CollectionRequest } from "jslib-common/models/request/collectionRequest";
import { SelectionReadOnlyRequest } from "jslib-common/models/request/selectionReadOnlyRequest";
2019-10-01 17:16:24 +02:00
import { Response } from "jslib-node/cli/models/response";
2019-03-16 03:34:59 +01:00
import { CipherResponse } from "../models/response/cipherResponse";
import { FolderResponse } from "../models/response/folderResponse";
2019-10-01 17:16:24 +02:00
import { OrganizationCollectionResponse } from "../models/response/organizationCollectionResponse";
import { OrganizationCollectionRequest } from "../models/request/organizationCollectionRequest";
2018-05-15 17:30:56 +02:00
2018-05-17 05:23:12 +02:00
import { CliUtils } from "../utils";
import { Utils } from "jslib-common/misc/utils";
2019-10-01 17:16:24 +02:00
2018-05-15 17:30:56 +02:00
export class EditCommand {
2019-10-01 17:16:24 +02:00
constructor(
private cipherService: CipherService,
2018-05-15 17:30:56 +02:00
private folderService: FolderService,
2018-05-15 18:18:47 +02:00
private cryptoService: CryptoService,
2018-05-15 17:30:56 +02:00
private apiService: ApiService
2018-10-23 23:31:59 +02:00
) {}
2021-12-20 18:04:00 +01:00
2018-10-23 23:31:59 +02:00
async run(
2018-10-24 04:56:15 +02:00
object: string,
2018-05-15 18:18:47 +02:00
id: string,
2022-01-19 16:45:14 +01:00
requestJson: any,
cmdOptions: Record<string, any>
2019-10-01 17:16:24 +02:00
): Promise<Response> {
2022-01-19 16:45:14 +01:00
if (process.env.BW_SERVE !== "true" && (requestJson == null || requestJson === "")) {
requestJson = await CliUtils.readStdin();
2019-10-01 17:16:24 +02:00
}
2021-12-20 18:04:00 +01:00
if (requestJson == null || requestJson === "") {
return Response.badRequest("`requestJson` was not provided.");
2021-12-20 18:04:00 +01:00
}
2018-05-15 17:30:56 +02:00
let req: any = null;
2022-01-19 16:45:14 +01:00
if (typeof requestJson !== "string") {
req = requestJson;
} else {
try {
const reqJson = Buffer.from(requestJson, "base64").toString();
req = JSON.parse(reqJson);
} catch (e) {
return Response.badRequest("Error parsing the encoded request data.");
}
2021-12-20 18:04:00 +01:00
}
2018-05-16 17:54:59 +02:00
if (id != null) {
id = id.toLowerCase();
2021-12-20 18:04:00 +01:00
}
2022-01-19 16:45:14 +01:00
const normalizedOptions = new Options(cmdOptions);
2018-05-15 17:30:56 +02:00
switch (object.toLowerCase()) {
2021-12-20 18:04:00 +01:00
case "item":
2018-05-15 17:30:56 +02:00
return await this.editCipher(id, req);
2018-10-23 23:31:59 +02:00
case "item-collections":
return await this.editCipherCollections(id, req);
2021-12-20 18:04:00 +01:00
case "folder":
2018-05-15 17:30:56 +02:00
return await this.editFolder(id, req);
2019-10-01 17:16:24 +02:00
case "org-collection":
2022-01-19 16:45:14 +01:00
return await this.editOrganizationCollection(id, req, normalizedOptions);
2021-12-20 18:04:00 +01:00
default:
2018-05-15 17:30:56 +02:00
return Response.badRequest("Unknown object.");
2021-12-20 18:04:00 +01:00
}
}
2018-05-15 18:18:47 +02:00
private async editCipher(id: string, req: Cipher) {
2018-05-15 17:30:56 +02:00
const cipher = await this.cipherService.get(id);
if (cipher == null) {
return Response.notFound();
2021-12-20 18:04:00 +01:00
}
2018-05-15 17:30:56 +02:00
let cipherView = await cipher.decrypt();
if (cipherView.isDeleted) {
2022-01-19 16:45:14 +01:00
return Response.badRequest("You may not edit a deleted item. Use the restore command first.");
2021-12-20 18:04:00 +01:00
}
2018-05-15 18:18:47 +02:00
cipherView = Cipher.toView(req, cipherView);
2018-05-15 17:30:56 +02:00
const encCipher = await this.cipherService.encrypt(cipherView);
2021-12-20 18:04:00 +01:00
try {
2018-05-15 17:30:56 +02:00
await this.cipherService.saveWithServer(encCipher);
2018-10-23 23:31:59 +02:00
const updatedCipher = await this.cipherService.get(cipher.id);
const decCipher = await updatedCipher.decrypt();
const res = new CipherResponse(decCipher);
return Response.success(res);
2018-05-15 17:30:56 +02:00
} catch (e) {
return Response.error(e);
2021-12-20 18:04:00 +01:00
}
}
2018-10-23 23:31:59 +02:00
private async editCipherCollections(id: string, req: string[]) {
const cipher = await this.cipherService.get(id);
if (cipher == null) {
2018-05-15 17:30:56 +02:00
return Response.notFound();
2021-12-20 18:04:00 +01:00
}
2018-10-24 01:04:32 +02:00
if (cipher.organizationId == null) {
2018-10-24 04:56:15 +02:00
return Response.badRequest(
2022-01-19 16:45:14 +01:00
"Item does not belong to an organization. Consider moving it first."
2021-12-20 18:04:00 +01:00
);
}
2018-10-23 23:31:59 +02:00
cipher.collectionIds = req;
2021-12-20 18:04:00 +01:00
try {
2018-10-23 23:31:59 +02:00
await this.cipherService.saveCollectionsWithServer(cipher);
const updatedCipher = await this.cipherService.get(cipher.id);
const decCipher = await updatedCipher.decrypt();
const res = new CipherResponse(decCipher);
return Response.success(res);
2018-05-15 17:30:56 +02:00
} catch (e) {
return Response.error(e);
2021-12-20 18:04:00 +01:00
}
}
2018-05-15 18:18:47 +02:00
private async editFolder(id: string, req: Folder) {
2018-05-15 17:30:56 +02:00
const folder = await this.folderService.get(id);
if (folder == null) {
return Response.notFound();
2021-12-20 18:04:00 +01:00
}
2018-05-15 17:30:56 +02:00
let folderView = await folder.decrypt();
2018-05-15 18:18:47 +02:00
folderView = Folder.toView(req, folderView);
2018-05-15 17:30:56 +02:00
const encFolder = await this.folderService.encrypt(folderView);
2021-12-20 18:04:00 +01:00
try {
2018-05-15 17:30:56 +02:00
await this.folderService.saveWithServer(encFolder);
const updatedFolder = await this.folderService.get(folder.id);
const decFolder = await updatedFolder.decrypt();
const res = new FolderResponse(decFolder);
return Response.success(res);
2018-05-15 17:30:56 +02:00
} catch (e) {
return Response.error(e);
2021-12-20 18:04:00 +01:00
}
}
Add send to cli (#222) * Add list all sends and filter by search term * Add get send templates * Add AccessUrl to send responses * Add Send to Get command * Add missing command options to login These options are already coded to work in the command, but commander did not know about the options. * Upgrade Commander to 7.0.0 This is needed to enable the subcommand chaining required by Send. This commit also adds get send and send receive functionality. get send will be moved to send get along with send list and any other send commands. * Use api url for send access url * Move send commands to send subcommands * Use webvault access url everywhere Production instances all have api url located at `baseUrl/api`. Receive command will parse the webvault url and alter it to an api url. * Move create and receive commands to send directory * Separate program concerns program holds authentication/general program concerns vault.program holds commands related to the vault send.program holds commands related to Bitwarden Send * Fix up imports and lint items * Add edit command * Use browser-hrtime * Add send examples to help text * Clean up receive help text * correct help text * Add delete command * Code review Cleanup * Scheme on send receive help text * PR review items Move buffer to array buffer to jslib delete with server some formatting fixes * Add remove password command This is the simplest way to enable removing passwords without resorting to weird type parsing of piped in Send JSONs in edit * Default hidden to false like web * Do not allow password updates that aren't strings or are empty * Delete appveyor.yml.flagged-for-delete * Correctly order imports and include tslint rule * fix npm globbing problem https://stackoverflow.com/a/34594501 globs work differently in package.json. Encasing the globs in single quotes expands them in shell rather than in npm * Remove double slash in path * Trigger github rebuild
2021-02-03 18:44:33 +01:00
private async editOrganizationCollection(
id: string,
Add send to cli (#222) * Add list all sends and filter by search term * Add get send templates * Add AccessUrl to send responses * Add Send to Get command * Add missing command options to login These options are already coded to work in the command, but commander did not know about the options. * Upgrade Commander to 7.0.0 This is needed to enable the subcommand chaining required by Send. This commit also adds get send and send receive functionality. get send will be moved to send get along with send list and any other send commands. * Use api url for send access url * Move send commands to send subcommands * Use webvault access url everywhere Production instances all have api url located at `baseUrl/api`. Receive command will parse the webvault url and alter it to an api url. * Move create and receive commands to send directory * Separate program concerns program holds authentication/general program concerns vault.program holds commands related to the vault send.program holds commands related to Bitwarden Send * Fix up imports and lint items * Add edit command * Use browser-hrtime * Add send examples to help text * Clean up receive help text * correct help text * Add delete command * Code review Cleanup * Scheme on send receive help text * PR review items Move buffer to array buffer to jslib delete with server some formatting fixes * Add remove password command This is the simplest way to enable removing passwords without resorting to weird type parsing of piped in Send JSONs in edit * Default hidden to false like web * Do not allow password updates that aren't strings or are empty * Delete appveyor.yml.flagged-for-delete * Correctly order imports and include tslint rule * fix npm globbing problem https://stackoverflow.com/a/34594501 globs work differently in package.json. Encasing the globs in single quotes expands them in shell rather than in npm * Remove double slash in path * Trigger github rebuild
2021-02-03 18:44:33 +01:00
req: OrganizationCollectionRequest,
2022-01-19 16:45:14 +01:00
options: Options
2021-12-20 18:04:00 +01:00
) {
2022-01-19 16:45:14 +01:00
if (options.organizationId == null || options.organizationId === "") {
return Response.badRequest("`organizationid` option is required.");
2021-12-20 18:04:00 +01:00
}
2019-10-01 17:16:24 +02:00
if (!Utils.isGuid(id)) {
2022-01-19 16:45:14 +01:00
return Response.badRequest("`" + id + "` is not a GUID.");
2021-12-20 18:04:00 +01:00
}
2022-01-19 16:45:14 +01:00
if (!Utils.isGuid(options.organizationId)) {
return Response.badRequest("`" + options.organizationId + "` is not a GUID.");
2021-12-20 18:04:00 +01:00
}
2022-01-19 16:45:14 +01:00
if (options.organizationId !== req.organizationId) {
return Response.badRequest("`organizationid` option does not match request object.");
2021-12-20 18:04:00 +01:00
}
try {
2019-10-01 17:16:24 +02:00
const orgKey = await this.cryptoService.getOrgKey(req.organizationId);
if (orgKey == null) {
throw new Error("No encryption key for this organization.");
2021-12-20 18:04:00 +01:00
}
const groups =
2019-10-01 17:16:24 +02:00
req.groups == null
2021-12-20 18:04:00 +01:00
? null
: req.groups.map((g) => new SelectionReadOnlyRequest(g.id, g.readOnly, g.hidePasswords));
const request = new CollectionRequest();
2019-10-01 17:16:24 +02:00
request.name = (await this.cryptoService.encrypt(req.name, orgKey)).encryptedString;
request.externalId = req.externalId;
request.groups = groups;
const response = await this.apiService.putCollection(req.organizationId, id, request);
const view = Collection.toView(req);
view.id = response.id;
const res = new OrganizationCollectionResponse(view, groups);
2019-10-01 17:16:24 +02:00
return Response.success(res);
} catch (e) {
return Response.error(e);
2021-12-20 18:04:00 +01:00
}
}
2018-05-15 17:30:56 +02:00
}
2022-01-19 16:45:14 +01:00
class Options {
organizationId: string;
constructor(passedOptions: Record<string, any>) {
this.organizationId = passedOptions?.organizationid || passedOptions?.organizationId;
2022-01-19 16:45:14 +01:00
}
}