mirror of
https://github.com/bitwarden/browser.git
synced 2025-01-02 18:17:46 +01:00
Modifying the unsecured reports to check for proper permissions (#10038)
This commit is contained in:
parent
1cdc701328
commit
bc1ee0a169
@ -5,6 +5,7 @@ import { ModalService } from "@bitwarden/angular/services/modal.service";
|
|||||||
import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
|
import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
|
||||||
import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
|
import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
|
||||||
import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
|
import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
|
||||||
|
import { CollectionService } from "@bitwarden/common/vault/abstractions/collection.service";
|
||||||
import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
|
import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
|
||||||
import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
|
import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
|
||||||
import { PasswordRepromptService } from "@bitwarden/vault";
|
import { PasswordRepromptService } from "@bitwarden/vault";
|
||||||
@ -29,6 +30,7 @@ export class UnsecuredWebsitesReportComponent
|
|||||||
passwordRepromptService: PasswordRepromptService,
|
passwordRepromptService: PasswordRepromptService,
|
||||||
i18nService: I18nService,
|
i18nService: I18nService,
|
||||||
syncService: SyncService,
|
syncService: SyncService,
|
||||||
|
collectionService: CollectionService,
|
||||||
) {
|
) {
|
||||||
super(
|
super(
|
||||||
cipherService,
|
cipherService,
|
||||||
@ -37,6 +39,7 @@ export class UnsecuredWebsitesReportComponent
|
|||||||
passwordRepromptService,
|
passwordRepromptService,
|
||||||
i18nService,
|
i18nService,
|
||||||
syncService,
|
syncService,
|
||||||
|
collectionService,
|
||||||
);
|
);
|
||||||
}
|
}
|
||||||
|
|
||||||
|
@ -4,8 +4,11 @@ import { ModalService } from "@bitwarden/angular/services/modal.service";
|
|||||||
import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
|
import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
|
||||||
import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
|
import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
|
||||||
import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
|
import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
|
||||||
|
import { CollectionService } from "@bitwarden/common/vault/abstractions/collection.service";
|
||||||
import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
|
import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
|
||||||
import { CipherType } from "@bitwarden/common/vault/enums";
|
import { CipherType } from "@bitwarden/common/vault/enums";
|
||||||
|
import { Collection } from "@bitwarden/common/vault/models/domain/collection";
|
||||||
|
import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
|
||||||
import { PasswordRepromptService } from "@bitwarden/vault";
|
import { PasswordRepromptService } from "@bitwarden/vault";
|
||||||
|
|
||||||
import { CipherReportComponent } from "./cipher-report.component";
|
import { CipherReportComponent } from "./cipher-report.component";
|
||||||
@ -24,6 +27,7 @@ export class UnsecuredWebsitesReportComponent extends CipherReportComponent impl
|
|||||||
passwordRepromptService: PasswordRepromptService,
|
passwordRepromptService: PasswordRepromptService,
|
||||||
i18nService: I18nService,
|
i18nService: I18nService,
|
||||||
syncService: SyncService,
|
syncService: SyncService,
|
||||||
|
private collectionService: CollectionService,
|
||||||
) {
|
) {
|
||||||
super(
|
super(
|
||||||
cipherService,
|
cipherService,
|
||||||
@ -41,15 +45,51 @@ export class UnsecuredWebsitesReportComponent extends CipherReportComponent impl
|
|||||||
|
|
||||||
async setCiphers() {
|
async setCiphers() {
|
||||||
const allCiphers = await this.getAllCiphers();
|
const allCiphers = await this.getAllCiphers();
|
||||||
|
const allCollections = await this.collectionService.getAll();
|
||||||
this.filterStatus = [0];
|
this.filterStatus = [0];
|
||||||
|
|
||||||
const unsecuredCiphers = allCiphers.filter((c) => {
|
const unsecuredCiphers = allCiphers.filter((c) => {
|
||||||
if (c.type !== CipherType.Login || !c.login.hasUris || c.isDeleted) {
|
const containsUnsecured = this.cipherContainsUnsecured(c);
|
||||||
|
if (containsUnsecured === false) {
|
||||||
return false;
|
return false;
|
||||||
}
|
}
|
||||||
|
|
||||||
return c.login.uris.some((u: any) => u.uri != null && u.uri.indexOf("http://") === 0);
|
const canView = this.canView(c, allCollections);
|
||||||
|
return canView;
|
||||||
});
|
});
|
||||||
|
|
||||||
this.filterCiphersByOrg(unsecuredCiphers);
|
this.filterCiphersByOrg(unsecuredCiphers);
|
||||||
}
|
}
|
||||||
|
|
||||||
|
/**
|
||||||
|
* Cipher needs to be a Login type, contain Uris, and not be deleted
|
||||||
|
* @param cipher Current cipher with unsecured uri
|
||||||
|
*/
|
||||||
|
private cipherContainsUnsecured(cipher: CipherView): boolean {
|
||||||
|
if (cipher.type !== CipherType.Login || !cipher.login.hasUris || cipher.isDeleted) {
|
||||||
|
return false;
|
||||||
|
}
|
||||||
|
|
||||||
|
const containsUnsecured = cipher.login.uris.some(
|
||||||
|
(u: any) => u.uri != null && u.uri.indexOf("http://") === 0,
|
||||||
|
);
|
||||||
|
return containsUnsecured;
|
||||||
|
}
|
||||||
|
|
||||||
|
/**
|
||||||
|
* If the user does not have readonly set or it's false they have the ability to edit
|
||||||
|
* @param cipher Current cipher with unsecured uri
|
||||||
|
* @param allCollections The collections for the user
|
||||||
|
*/
|
||||||
|
private canView(cipher: CipherView, allCollections: Collection[]): boolean {
|
||||||
|
if (!cipher.organizationId) {
|
||||||
|
return true;
|
||||||
|
}
|
||||||
|
|
||||||
|
return (
|
||||||
|
allCollections.filter(
|
||||||
|
(item) => cipher.collectionIds.indexOf(item.id) > -1 && !(item.readOnly ?? false),
|
||||||
|
).length > 0
|
||||||
|
);
|
||||||
|
}
|
||||||
}
|
}
|
||||||
|
Loading…
Reference in New Issue
Block a user