[PM-11406] Account Management: Prevent a verified user from deleting their account (#11505)

* Update AccountService to include a method for setting the managedByOrganizationId * Update AccountComponent to conditionally show the purgeVault button based on a feature flag and if the user is managed by an organization * Add missing method to FakeAccountService * Remove the setAccountManagedByOrganizationId method from the AccountService abstract class. * Refactor AccountComponent to use OrganizationService to check for managing organization * Rename managesActiveUser to userIsManagedByOrganization * Hide the change email section if the user is managed by an organization * Refactor userIsManagedByOrganization property to be non-nullable in organization data and response models * Refactor organization.data.spec.ts to include non-nullable userIsManagedByOrganization property * Refactor account component to conditionally show delete account button based on user's organization management status * Add showDeleteAccount$ observable to AccountComponent
2024-12-21 16:18:28 +01:00 · 2024-11-04 16:37:24 +00:00 · 2024-11-04 16:37:24 +00:00 · d804a78bfb
commit d804a78bfb
parent d669d2003f
2 changed files with 18 additions and 1 deletions
--- a/apps/web/src/app/auth/settings/account/account.component.html
+++ b/apps/web/src/app/auth/settings/account/account.component.html
@ -21,7 +21,13 @@
    >
      {{ "purgeVault" | i18n }}
    </button>
-    <button type="button" bitButton buttonType="danger" [bitAction]="deleteAccount">
+    <button
+      *ngIf="showDeleteAccount$ | async"
+      type="button"
+      bitButton
+      buttonType="danger"
+      [bitAction]="deleteAccount"
+    >
      {{ "deleteAccount" | i18n }}
    </button>
  </app-danger-zone>
--- a/apps/web/src/app/auth/settings/account/account.component.ts
+++ b/apps/web/src/app/auth/settings/account/account.component.ts
@ -23,6 +23,7 @@ export class AccountComponent implements OnInit {

  showChangeEmail$: Observable<boolean>;
  showPurgeVault$: Observable<boolean>;
+  showDeleteAccount$: Observable<boolean>;

  constructor(
    private modalService: ModalService,
@ -63,6 +64,16 @@ export class AccountComponent implements OnInit {
          !isAccountDeprovisioningEnabled || !userIsManagedByOrganization,
      ),
    );
+
+    this.showDeleteAccount$ = combineLatest([
+      isAccountDeprovisioningEnabled$,
+      userIsManagedByOrganization$,
+    ]).pipe(
+      map(
+        ([isAccountDeprovisioningEnabled, userIsManagedByOrganization]) =>
+          !isAccountDeprovisioningEnabled || !userIsManagedByOrganization,
+      ),
+    );
  }

  async deauthorizeSessions() {