Revert "[PM-11200] Move delete item permission to Can Manage (#10890)" (#11155)

* Revert "[PM-11200] Move delete item permission to Can Manage (#10890)" This reverts commit 8921230b4f. * Removed provider access
2024-09-23 03:22:50 +02:00 · 2024-09-19 13:27:08 -04:00 · 2024-09-19 13:27:08 -04:00 · 7ae427e713
commit 7ae427e713
parent 01e530d02b
5 changed files with 8 additions and 38 deletions
--- a/apps/web/src/app/vault/components/vault-items/vault-cipher-row.component.html
+++ b/apps/web/src/app/vault/components/vault-items/vault-cipher-row.component.html
@ -157,7 +157,7 @@
    </button>
    <button
      bitMenuItem
-      *ngIf="canManageCollection || !vaultBulkManagementActionEnabled"
+      *ngIf="canEditCipher || !vaultBulkManagementActionEnabled"
      (click)="deleteCipher()"
      type="button"
    >
--- a/apps/web/src/app/vault/components/vault-items/vault-cipher-row.component.ts
+++ b/apps/web/src/app/vault/components/vault-items/vault-cipher-row.component.ts
@ -36,7 +36,6 @@ export class VaultCipherRowComponent implements OnInit {
  @Input() viewingOrgVault: boolean;
  @Input() canEditCipher: boolean;
  @Input() vaultBulkManagementActionEnabled: boolean;
-  @Input() canManageCollection: boolean;

  @Output() onEvent = new EventEmitter<VaultItemEvent>();

--- a/apps/web/src/app/vault/components/vault-items/vault-items.component.html
+++ b/apps/web/src/app/vault/components/vault-items/vault-items.component.html
@ -132,9 +132,6 @@
          [collections]="allCollections"
          [checked]="selection.isSelected(item)"
          [canEditCipher]="canEditCipher(item.cipher) && vaultBulkManagementActionEnabled"
-          [canManageCollection]="
-            canManageCollection(item.cipher) && vaultBulkManagementActionEnabled
-          "
          [vaultBulkManagementActionEnabled]="vaultBulkManagementActionEnabled"
          (checkedToggled)="selection.toggle(item)"
          (onEvent)="event($event)"
--- a/apps/web/src/app/vault/components/vault-items/vault-items.component.ts
+++ b/apps/web/src/app/vault/components/vault-items/vault-items.component.ts
@ -47,7 +47,6 @@ export class VaultItemsComponent {
  @Input() addAccessStatus: number;
  @Input() addAccessToggle: boolean;
  @Input() vaultBulkManagementActionEnabled = false;
-  @Input() activeCollection: CollectionView | undefined;

  private _ciphers?: CipherView[] = [];
  @Input() get ciphers(): CipherView[] {
@ -215,33 +214,6 @@ export class VaultItemsComponent {
    return (organization.canEditAllCiphers && this.viewingOrgVault) || cipher.edit;
  }

-  protected canManageCollection(cipher: CipherView) {
-    if (cipher.organizationId == null) {
-      return true;
-    }
-
-    // Check for admin access in AC vault
-    if (this.showAdminActions) {
-      const organization = this.allOrganizations.find((o) => o.id === cipher.organizationId);
-
-      if (organization?.permissions.editAnyCollection) {
-        return true;
-      }
-
-      if (organization?.allowAdminAccessToAllCollectionItems && organization.isAdmin) {
-        return true;
-      }
-    }
-
-    if (this.activeCollection) {
-      return this.activeCollection.manage;
-    }
-
-    return this.allCollections
-      .filter((c) => cipher.collectionIds.includes(c.id))
-      .some((collection) => collection.manage);
-  }
-
  private refreshItems() {
    const collections: VaultItem[] = this.collections.map((collection) => ({ collection }));
    const ciphers: VaultItem[] = this.ciphers.map((cipher) => ({ cipher }));
@ -317,16 +289,19 @@ export class VaultItemsComponent {

    const hasPersonalItems = this.hasPersonalItems();
    const uniqueCipherOrgIds = this.getUniqueOrganizationIds();
+    const organizations = Array.from(uniqueCipherOrgIds, (orgId) =>
+      this.allOrganizations.find((o) => o.id === orgId),
+    );

-    const canManageCollectionCiphers = this.selection.selected
-      .filter((item) => item.cipher)
-      .every(({ cipher }) => this.canManageCollection(cipher));
+    const canEditOrManageAllCiphers =
+      organizations.length > 0 && organizations.every((org) => org?.canEditAllCiphers);

    const canDeleteCollections = this.selection.selected
      .filter((item) => item.collection)
      .every((item) => item.collection && this.canDeleteCollection(item.collection));

-    const userCanDeleteAccess = canManageCollectionCiphers && canDeleteCollections;
+    const userCanDeleteAccess =
+      (canEditOrManageAllCiphers || this.allCiphersHaveEditAccess()) && canDeleteCollections;

    if (
      userCanDeleteAccess ||
--- a/apps/web/src/app/vault/individual-vault/vault.component.html
+++ b/apps/web/src/app/vault/individual-vault/vault.component.html
@ -57,7 +57,6 @@
      [showBulkAddToCollections]="vaultBulkManagementActionEnabled$ | async"
      (onEvent)="onVaultItemsEvent($event)"
      [vaultBulkManagementActionEnabled]="vaultBulkManagementActionEnabled$ | async"
-      [activeCollection]="selectedCollection?.node"
    >
    </app-vault-items>
    <div