bitwarden-server/src/Core/Utilities/CoreHelpers.cs

using Bit.Core.Models.Data;
using Newtonsoft.Json;
using System;
using System.Collections.Generic;
using System.Data;
using System.IO;
using System.Linq;
using System.Reflection;
using System.Security.Cryptography;
using System.Security.Cryptography.X509Certificates;
using System.Text;
using System.Text.RegularExpressions;
using Dapper;
using System.Globalization;
using System.Web;
using Microsoft.AspNetCore.DataProtection;
using Bit.Core.Enums;
using System.Threading.Tasks;
using Microsoft.WindowsAzure.Storage;

namespace Bit.Core.Utilities
{
    public static class CoreHelpers
    {
        private static readonly long _baseDateTicks = new DateTime(1900, 1, 1).Ticks;
        private static readonly DateTime _epoc = new DateTime(1970, 1, 1, 0, 0, 0, DateTimeKind.Utc);
        private static readonly DateTime _max = new DateTime(9999, 1, 1, 0, 0, 0, DateTimeKind.Utc);
        private static readonly Random _random = new Random();
        private static string _version;
        private static readonly string _qwertyDvorakMap = "-=qwertyuiop[]asdfghjkl;'zxcvbnm,./_+QWERTYUIO" +
            "P{}ASDFGHJKL:\"ZXCVBNM<>?";
        private static readonly string _dvorakMap = "[]',.pyfgcrl/=aoeuidhtns-;qjkxbmwvz{}\"<>PYFGC" +
            "RL?+AOEUIDHTNS_:QJKXBMWVZ";
        private static readonly string _qwertyColemakMap = "qwertyuiopasdfghjkl;zxcvbnmQWERTYUIOPASDFGHJKL:ZXCVBNM";
        private static readonly string _colemakMap = "qwfpgjluy;arstdhneiozxcvbkmQWFPGJLUY:ARSTDHNEIOZXCVBKM";

        /// <summary>
        /// Generate sequential Guid for Sql Server.
        /// ref: https://github.com/nhibernate/nhibernate-core/blob/master/src/NHibernate/Id/GuidCombGenerator.cs
        /// </summary>
        /// <returns>A comb Guid.</returns>
        public static Guid GenerateComb()
        {
            var guidArray = Guid.NewGuid().ToByteArray();

            var now = DateTime.UtcNow;

            // Get the days and milliseconds which will be used to build the byte string 
            var days = new TimeSpan(now.Ticks - _baseDateTicks);
            var msecs = now.TimeOfDay;

            // Convert to a byte array 
            // Note that SQL Server is accurate to 1/300th of a millisecond so we divide by 3.333333 
            var daysArray = BitConverter.GetBytes(days.Days);
            var msecsArray = BitConverter.GetBytes((long)(msecs.TotalMilliseconds / 3.333333));

            // Reverse the bytes to match SQL Servers ordering 
            Array.Reverse(daysArray);
            Array.Reverse(msecsArray);

            // Copy the bytes into the guid 
            Array.Copy(daysArray, daysArray.Length - 2, guidArray, guidArray.Length - 6, 2);
            Array.Copy(msecsArray, msecsArray.Length - 4, guidArray, guidArray.Length - 4, 4);

            return new Guid(guidArray);
        }

        public static DataTable ToGuidIdArrayTVP(this IEnumerable<Guid> ids)
        {
            return ids.ToArrayTVP("GuidId");
        }

        public static DataTable ToArrayTVP<T>(this IEnumerable<T> values, string columnName)
        {
            var table = new DataTable();
            table.SetTypeName($"[dbo].[{columnName}Array]");
            table.Columns.Add(columnName, typeof(T));

            if(values != null)
            {
                foreach(var value in values)
                {
                    table.Rows.Add(value);
                }
            }

            return table;
        }

        public static DataTable ToArrayTVP(this IEnumerable<SelectionReadOnly> values)
        {
            var table = new DataTable();
            table.SetTypeName("[dbo].[SelectionReadOnlyArray]");

            var idColumn = new DataColumn("Id", typeof(Guid));
            table.Columns.Add(idColumn);
            var readOnlyColumn = new DataColumn("ReadOnly", typeof(bool));
            table.Columns.Add(readOnlyColumn);

            if(values != null)
            {
                foreach(var value in values)
                {
                    var row = table.NewRow();
                    row[idColumn] = value.Id;
                    row[readOnlyColumn] = value.ReadOnly;
                    table.Rows.Add(row);
                }
            }

            return table;
        }

        public static string CleanCertificateThumbprint(string thumbprint)
        {
            // Clean possible garbage characters from thumbprint copy/paste
            // ref http://stackoverflow.com/questions/8448147/problems-with-x509store-certificates-find-findbythumbprint
            return Regex.Replace(thumbprint, @"[^\da-fA-F]", string.Empty).ToUpper();
        }

        public static X509Certificate2 GetCertificate(string thumbprint)
        {
            thumbprint = CleanCertificateThumbprint(thumbprint);

            X509Certificate2 cert = null;
            var certStore = new X509Store(StoreName.My, StoreLocation.CurrentUser);
            certStore.Open(OpenFlags.ReadOnly);
            var certCollection = certStore.Certificates.Find(X509FindType.FindByThumbprint, thumbprint, false);
            if(certCollection.Count > 0)
            {
                cert = certCollection[0];
            }

            certStore.Close();
            return cert;
        }

        public static X509Certificate2 GetCertificate(string file, string password)
        {
            return new X509Certificate2(file, password);
        }

        public static X509Certificate2 GetEmbeddedCertificate(string file, string password)
        {
            var assembly = typeof(CoreHelpers).GetTypeInfo().Assembly;
            using(var s = assembly.GetManifestResourceStream($"Bit.Core.{file}"))
            using(var ms = new MemoryStream())
            {
                s.CopyTo(ms);
                return new X509Certificate2(ms.ToArray(), password);
            }
        }

        public async static Task<X509Certificate2> GetBlobCertificateAsync(CloudStorageAccount cloudStorageAccount,
            string container, string file, string password)
        {
            var blobClient = cloudStorageAccount.CreateCloudBlobClient();
            var containerRef = blobClient.GetContainerReference(container);
            if(await containerRef.ExistsAsync())
            {
                var blobRef = containerRef.GetBlobReference(file);
                if(await blobRef.ExistsAsync())
                {
                    var blobBytes = new byte[blobRef.Properties.Length];
                    await blobRef.DownloadToByteArrayAsync(blobBytes, 0);
                    return new X509Certificate2(blobBytes, password);
                }
            }
            return null;
        }

        public static long ToEpocMilliseconds(DateTime date)
        {
            return (long)Math.Round((date - _epoc).TotalMilliseconds, 0);
        }

        public static DateTime FromEpocMilliseconds(long milliseconds)
        {
            return _epoc.AddMilliseconds(milliseconds);
        }

        public static long ToEpocSeconds(DateTime date)
        {
            return (long)Math.Round((date - _epoc).TotalSeconds, 0);
        }

        public static DateTime FromEpocSeconds(long seconds)
        {
            return _epoc.AddSeconds(seconds);
        }

        public static string U2fAppIdUrl(GlobalSettings globalSettings)
        {
            return string.Concat(globalSettings.BaseServiceUri.Vault, "/app-id.json");
        }

        public static string RandomString(int length, bool alpha = true, bool upper = true, bool lower = true,
            bool numeric = true, bool special = false)
        {
            return RandomString(length, RandomStringCharacters(alpha, upper, lower, numeric, special));
        }

        public static string RandomString(int length, string characters)
        {
            return new string(Enumerable.Repeat(characters, length).Select(s => s[_random.Next(s.Length)]).ToArray());
        }

        public static string SecureRandomString(int length, bool alpha = true, bool upper = true, bool lower = true,
            bool numeric = true, bool special = false)
        {
            return SecureRandomString(length, RandomStringCharacters(alpha, upper, lower, numeric, special));
        }

        // ref https://stackoverflow.com/a/8996788/1090359 with modifications
        public static string SecureRandomString(int length, string characters)
        {
            if(length < 0)
            {
                throw new ArgumentOutOfRangeException(nameof(length), "length cannot be less than zero.");
            }

            if((characters?.Length ?? 0) == 0)
            {
                throw new ArgumentOutOfRangeException(nameof(characters), "characters invalid.");
            }

            const int byteSize = 0x100;
            if(byteSize < characters.Length)
            {
                throw new ArgumentException(
                    string.Format("{0} may contain no more than {1} characters.", nameof(characters), byteSize),
                    nameof(characters));
            }

            var outOfRangeStart = byteSize - (byteSize % characters.Length);
            using(var rng = RandomNumberGenerator.Create())
            {
                var sb = new StringBuilder();
                var buffer = new byte[128];
                while(sb.Length < length)
                {
                    rng.GetBytes(buffer);
                    for(var i = 0; i < buffer.Length && sb.Length < length; ++i)
                    {
                        // Divide the byte into charSet-sized groups. If the random value falls into the last group and the
                        // last group is too small to choose from the entire allowedCharSet, ignore the value in order to
                        // avoid biasing the result.
                        if(outOfRangeStart <= buffer[i])
                        {
                            continue;
                        }

                        sb.Append(characters[buffer[i] % characters.Length]);
                    }
                }

                return sb.ToString();
            }
        }

        private static string RandomStringCharacters(bool alpha, bool upper, bool lower, bool numeric, bool special)
        {
            var characters = string.Empty;
            if(alpha)
            {
                if(upper)
                {
                    characters += "ABCDEFGHIJKLMNOPQRSTUVWXYZ";
                }

                if(lower)
                {
                    characters += "abcdefghijklmnopqrstuvwxyz";
                }
            }

            if(numeric)
            {
                characters += "0123456789";
            }

            if(special)
            {
                characters += "!@#$%^*&";
            }

            return characters;
        }

        // ref: https://stackoverflow.com/a/11124118/1090359
        // Returns the human-readable file size for an arbitrary 64-bit file size .
        // The format is "0.## XB", ex: "4.2 KB" or "1.43 GB"
        public static string ReadableBytesSize(long size)
        {
            // Get absolute value
            var absoluteSize = (size < 0 ? -size : size);

            // Determine the suffix and readable value
            string suffix;
            double readable;
            if(absoluteSize >= 0x40000000) // 1 Gigabyte
            {
                suffix = "GB";
                readable = (size >> 20);
            }
            else if(absoluteSize >= 0x100000) // 1 Megabyte
            {
                suffix = "MB";
                readable = (size >> 10);
            }
            else if(absoluteSize >= 0x400) // 1 Kilobyte
            {
                suffix = "KB";
                readable = size;
            }
            else
            {
                return absoluteSize.ToString("0 Bytes"); // Byte
            }

            // Divide by 1024 to get fractional value
            readable = (readable / 1024);

            // Return formatted number with suffix
            return readable.ToString("0.## ") + suffix;
        }

        public static T CloneObject<T>(T obj)
        {
            return JsonConvert.DeserializeObject<T>(JsonConvert.SerializeObject(obj));
        }

        public static bool SettingHasValue(string setting)
        {
            var normalizedSetting = setting?.ToLowerInvariant();
            return !string.IsNullOrWhiteSpace(normalizedSetting) && !normalizedSetting.Equals("secret") &&
                !normalizedSetting.Equals("replace");
        }

        public static string Base64EncodeString(string input)
        {
            return Convert.ToBase64String(Encoding.UTF8.GetBytes(input));
        }

        public static string Base64DecodeString(string input)
        {
            return Encoding.UTF8.GetString(Convert.FromBase64String(input));
        }

        public static string Base64UrlEncodeString(string input)
        {
            return Base64UrlEncode(Encoding.UTF8.GetBytes(input));
        }

        public static string Base64UrlDecodeString(string input)
        {
            return Encoding.UTF8.GetString(Base64UrlDecode(input));
        }

        public static string Base64UrlEncode(byte[] input)
        {
            var output = Convert.ToBase64String(input)
                .Replace('+', '-')
                .Replace('/', '_')
                .Replace("=", string.Empty);
            return output;
        }

        public static byte[] Base64UrlDecode(string input)
        {
            var output = input;
            // 62nd char of encoding
            output = output.Replace('-', '+');
            // 63rd char of encoding
            output = output.Replace('_', '/');
            // Pad with trailing '='s
            switch(output.Length % 4)
            {
                case 0:
                    // No pad chars in this case
                    break;
                case 2:
                    // Two pad chars
                    output += "=="; break;
                case 3:
                    // One pad char
                    output += "="; break;
                default:
                    throw new InvalidOperationException("Illegal base64url string!");
            }

            // Standard base64 decoder
            return Convert.FromBase64String(output);
        }

        public static string FormatLicenseSignatureValue(object val)
        {
            if(val == null)
            {
                return string.Empty;
            }

            if(val.GetType() == typeof(DateTime))
            {
                return ToEpocSeconds((DateTime)val).ToString();
            }

            if(val.GetType() == typeof(bool))
            {
                return val.ToString().ToLowerInvariant();
            }

            return val.ToString();
        }

        public static string GetVersion()
        {
            if(string.IsNullOrWhiteSpace(_version))
            {
                _version = Assembly.GetEntryAssembly()
                    .GetCustomAttribute<AssemblyInformationalVersionAttribute>()
                    .InformationalVersion;
            }

            return _version;
        }

        public static string Dvorak2Qwerty(string value)
        {
            return Other2Qwerty(value, _dvorakMap, _qwertyDvorakMap);
        }

        public static string Colemak2Qwerty(string value)
        {
            return Other2Qwerty(value, _colemakMap, _qwertyColemakMap);
        }

        private static string Other2Qwerty(string value, string otherMap, string qwertyMap)
        {
            var sb = new StringBuilder();
            foreach(var c in value)
            {
                sb.Append(otherMap.IndexOf(c) > -1 ? qwertyMap[otherMap.IndexOf(c)] : c);
            }
            return sb.ToString();
        }

        public static string SanitizeForEmail(string value)
        {
            return value.Replace("@", "[at]")
                .Replace("http://", string.Empty)
                .Replace("https://", string.Empty);
        }

        public static string DateTimeToTableStorageKey(DateTime? date = null)
        {
            if(date.HasValue)
            {
                date = date.Value.ToUniversalTime();
            }
            else
            {
                date = DateTime.UtcNow;
            }

            return _max.Subtract(date.Value).TotalMilliseconds.ToString(CultureInfo.InvariantCulture);
        }

        // ref: https://stackoverflow.com/a/27545010/1090359
        public static Uri ExtendQuery(Uri uri, IDictionary<string, string> values)
        {
            var baseUri = uri.ToString();
            var queryString = string.Empty;
            if(baseUri.Contains("?"))
            {
                var urlSplit = baseUri.Split('?');
                baseUri = urlSplit[0];
                queryString = urlSplit.Length > 1 ? urlSplit[1] : string.Empty;
            }

            var queryCollection = HttpUtility.ParseQueryString(queryString);
            foreach(var kvp in values ?? new Dictionary<string, string>())
            {
                queryCollection[kvp.Key] = kvp.Value;
            }

            var uriKind = uri.IsAbsoluteUri ? UriKind.Absolute : UriKind.Relative;
            if(queryCollection.Count == 0)
            {
                return new Uri(baseUri, uriKind);
            }
            return new Uri(string.Format("{0}?{1}", baseUri, queryCollection), uriKind);
        }

        public static string CustomProviderName(TwoFactorProviderType type)
        {
            return string.Concat("Custom_", type.ToString());
        }

        public static bool UserInviteTokenIsValid(IDataProtector protector, string token, string userEmail, Guid orgUserId,
            GlobalSettings globalSettings)
        {
            var invalid = true;
            try
            {
                var unprotectedData = protector.Unprotect(token);
                var dataParts = unprotectedData.Split(' ');
                if(dataParts.Length == 4 && dataParts[0] == "OrganizationUserInvite" &&
                    new Guid(dataParts[1]) == orgUserId &&
                    dataParts[2].Equals(userEmail, StringComparison.InvariantCultureIgnoreCase))
                {
                    var creationTime = FromEpocMilliseconds(Convert.ToInt64(dataParts[3]));
                    var expTime = creationTime.AddHours(globalSettings.OrganizationInviteExpirationHours);
                    invalid = expTime < DateTime.UtcNow;
                }
            }
            catch
            {
                invalid = true;
            }

            return !invalid;
        }

        public static string GetApplicationCacheServiceBusSubcriptionName(GlobalSettings globalSettings)
        {
            var subName = globalSettings.ServiceBus.ApplicationCacheSubscriptionName;
            if(string.IsNullOrWhiteSpace(subName))
            {
                var websiteInstanceId = Environment.GetEnvironmentVariable("WEBSITE_INSTANCE_ID");
                if(string.IsNullOrWhiteSpace(websiteInstanceId))
                {
                    throw new Exception("No service bus subscription name available.");
                }
                else
                {
                    subName = $"{globalSettings.ProjectName.ToLower()}_{websiteInstanceId}";
                    if(subName.Length > 50)
                    {
                        subName = subName.Substring(0, 50);
                    }
                }
            }
            return subName;
        }
    }
}
-												SelectionReadOnly MERGE to CollectionGroup

											
										
										
											2017-05-11 17:41:13 +02:00
+								using Bit.Core.Models.Data;
-												share login with attachments

											
										
										
											2017-07-10 20:30:12 +02:00
+								using Newtonsoft.Json;
-												Move into and read ciphers from org subvaults

											
										
										
											2017-03-21 05:04:39 +01:00
+								using System;
 								using System.Collections.Generic;
 								using System.Data;
-												premium signup with license file

											
										
										
											2017-08-11 23:06:31 +02:00
+								using System.IO;
-												paymentservice with stripe & braintree implem.

											
										
										
											2017-07-28 06:17:31 +02:00
+								using System.Linq;
-												premium signup with license file

											
										
										
											2017-08-11 23:06:31 +02:00
+								using System.Reflection;
-												random string helper

											
										
										
											2017-06-29 21:55:39 +02:00
+								using System.Security.Cryptography;
-												added identity server real cert loading

											
										
										
											2017-01-13 00:35:26 +01:00
+								using System.Security.Cryptography.X509Certificates;
-												random string helper

											
										
										
											2017-06-29 21:55:39 +02:00
+								using System.Text;
-												added identity server real cert loading

											
										
										
											2017-01-13 00:35:26 +01:00
+								using System.Text.RegularExpressions;
-												local dapper build

											
										
										
											2017-08-22 18:38:48 +02:00
+								using Dapper;
-												event paging

											
										
										
											2017-12-15 21:23:57 +01:00
+								using System.Globalization;
-												respect return url on sign in link

											
										
										
											2018-03-22 18:18:18 +01:00
+								using System.Web;
-												allow org user reg. when reg. is disabled

											
										
										
											2018-05-24 22:53:07 +02:00
+								using Microsoft.AspNetCore.DataProtection;
-												email token provider

											
										
										
											2018-12-20 04:27:45 +01:00
+								using Bit.Core.Enums;
-												load certs from azure storage

											
										
										
											2019-07-11 02:05:07 +02:00
+								using System.Threading.Tasks;
 								using Microsoft.WindowsAzure.Storage;
-												refactored data storage to use cipher table. added history table and insert triggers.

											
										
										
											2016-05-21 23:16:22 +02:00
 								namespace Bit.Core.Utilities
 								{
 								    public static class CoreHelpers
 								    {
 								        private static readonly long _baseDateTicks = new DateTime(1900, 1, 1).Ticks;
-												update libs and cleanup

											
										
										
											2017-07-14 15:05:15 +02:00
+								        private static readonly DateTime _epoc = new DateTime(1970, 1, 1, 0, 0, 0, DateTimeKind.Utc);
-												event paging

											
										
										
											2017-12-15 21:23:57 +01:00
+								        private static readonly DateTime _max = new DateTime(9999, 1, 1, 0, 0, 0, DateTimeKind.Utc);
-												paymentservice with stripe & braintree implem.

											
										
										
											2017-07-28 06:17:31 +02:00
+								        private static readonly Random _random = new Random();
-												version info in response headers

											
										
										
											2017-08-25 14:57:43 +02:00
+								        private static string _version;
-												dvorak and colemak 2 qwerty helper

											
										
										
											2017-09-12 05:08:08 +02:00
+								        private static readonly string _qwertyDvorakMap = "-=qwertyuiop[]asdfghjkl;'zxcvbnm,./_+QWERTYUIO" +
 								            "P{}ASDFGHJKL:\"ZXCVBNM<>?";
 								        private static readonly string _dvorakMap = "[]',.pyfgcrl/=aoeuidhtns-;qjkxbmwvz{}\"<>PYFGC" +
 								            "RL?+AOEUIDHTNS_:QJKXBMWVZ";
-												colemak typo

											
										
										
											2017-09-12 05:25:11 +02:00
+								        private static readonly string _qwertyColemakMap = "qwertyuiopasdfghjkl;zxcvbnmQWERTYUIOPASDFGHJKL:ZXCVBNM";
 								        private static readonly string _colemakMap = "qwfpgjluy;arstdhneiozxcvbkmQWFPGJLUY:ARSTDHNEIOZXCVBKM";
-												refactored data storage to use cipher table. added history table and insert triggers.

											
										
										
											2016-05-21 23:16:22 +02:00
 								        /// <summary>
 								        /// Generate sequential Guid for Sql Server.
 								        /// ref: https://github.com/nhibernate/nhibernate-core/blob/master/src/NHibernate/Id/GuidCombGenerator.cs
 								        /// </summary>
 								        /// <returns>A comb Guid.</returns>
 								        public static Guid GenerateComb()
 								        {
 								            var guidArray = Guid.NewGuid().ToByteArray();
 								            var now = DateTime.UtcNow;
 								            // Get the days and milliseconds which will be used to build the byte string
 								            var days = new TimeSpan(now.Ticks - _baseDateTicks);
 								            var msecs = now.TimeOfDay;
 								            // Convert to a byte array
 								            // Note that SQL Server is accurate to 1/300th of a millisecond so we divide by 3.333333
 								            var daysArray = BitConverter.GetBytes(days.Days);
 								            var msecsArray = BitConverter.GetBytes((long)(msecs.TotalMilliseconds / 3.333333));
 								            // Reverse the bytes to match SQL Servers ordering
 								            Array.Reverse(daysArray);
 								            Array.Reverse(msecsArray);
 								            // Copy the bytes into the guid
 								            Array.Copy(daysArray, daysArray.Length - 2, guidArray, guidArray.Length - 6, 2);
 								            Array.Copy(msecsArray, msecsArray.Length - 4, guidArray, guidArray.Length - 4, 4);
 								            return new Guid(guidArray);
 								        }
-												added identity server real cert loading

											
										
										
											2017-01-13 00:35:26 +01:00
-												Move into and read ciphers from org subvaults

											
										
										
											2017-03-21 05:04:39 +01:00
+								        public static DataTable ToGuidIdArrayTVP(this IEnumerable<Guid> ids)
 								        {
 								            return ids.ToArrayTVP("GuidId");
 								        }
 								        public static DataTable ToArrayTVP<T>(this IEnumerable<T> values, string columnName)
 								        {
-												TVP type name

											
										
										
											2017-08-09 14:14:45 +02:00
+								            var table = new DataTable();
-												local dapper build

											
										
										
											2017-08-22 18:38:48 +02:00
+								            table.SetTypeName($"[dbo].[{columnName}Array]");
-												Move into and read ciphers from org subvaults

											
										
										
											2017-03-21 05:04:39 +01:00
+								            table.Columns.Add(columnName, typeof(T));
 								            if(values != null)
 								            {
 								                foreach(var value in values)
 								                {
 								                    table.Rows.Add(value);
 								                }
 								            }
 								            return table;
 								        }
-												SelectionReadOnly MERGE to CollectionGroup

											
										
										
											2017-05-11 17:41:13 +02:00
+								        public static DataTable ToArrayTVP(this IEnumerable<SelectionReadOnly> values)
 								        {
-												TVP type name

											
										
										
											2017-08-09 14:14:45 +02:00
+								            var table = new DataTable();
-												local dapper build

											
										
										
											2017-08-22 18:38:48 +02:00
+								            table.SetTypeName("[dbo].[SelectionReadOnlyArray]");
-												SelectionReadOnly MERGE to CollectionGroup

											
										
										
											2017-05-11 17:41:13 +02:00
 								            var idColumn = new DataColumn("Id", typeof(Guid));
 								            table.Columns.Add(idColumn);
 								            var readOnlyColumn = new DataColumn("ReadOnly", typeof(bool));
 								            table.Columns.Add(readOnlyColumn);
 								            if(values != null)
 								            {
 								                foreach(var value in values)
 								                {
 								                    var row = table.NewRow();
 								                    row[idColumn] = value.Id;
 								                    row[readOnlyColumn] = value.ReadOnly;
 								                    table.Rows.Add(row);
 								                }
 								            }
 								            return table;
 								        }
-												premium signup with license file

											
										
										
											2017-08-11 23:06:31 +02:00
+								        public static string CleanCertificateThumbprint(string thumbprint)
-												added identity server real cert loading

											
										
										
											2017-01-13 00:35:26 +01:00
+								        {
 								            // Clean possible garbage characters from thumbprint copy/paste
 								            // ref http://stackoverflow.com/questions/8448147/problems-with-x509store-certificates-find-findbythumbprint
-												premium signup with license file

											
										
										
											2017-08-11 23:06:31 +02:00
+								            return Regex.Replace(thumbprint, @"[^\da-fA-F]", string.Empty).ToUpper();
 								        }
 								        public static X509Certificate2 GetCertificate(string thumbprint)
 								        {
 								            thumbprint = CleanCertificateThumbprint(thumbprint);
-												added identity server real cert loading

											
										
										
											2017-01-13 00:35:26 +01:00
 								            X509Certificate2 cert = null;
 								            var certStore = new X509Store(StoreName.My, StoreLocation.CurrentUser);
 								            certStore.Open(OpenFlags.ReadOnly);
 								            var certCollection = certStore.Certificates.Find(X509FindType.FindByThumbprint, thumbprint, false);
 								            if(certCollection.Count > 0)
 								            {
 								                cert = certCollection[0];
 								            }
 								            certStore.Close();
 								            return cert;
 								        }
-												return epoc milliseconds for revision date

											
										
										
											2017-01-14 18:47:44 +01:00
-												setup, build, and run scripts

											
										
										
											2017-08-07 17:24:16 +02:00
+								        public static X509Certificate2 GetCertificate(string file, string password)
 								        {
 								            return new X509Certificate2(file, password);
 								        }
-												premium signup with license file

											
										
										
											2017-08-11 23:06:31 +02:00
+								        public static X509Certificate2 GetEmbeddedCertificate(string file, string password)
 								        {
 								            var assembly = typeof(CoreHelpers).GetTypeInfo().Assembly;
 								            using(var s = assembly.GetManifestResourceStream($"Bit.Core.{file}"))
 								            using(var ms = new MemoryStream())
 								            {
 								                s.CopyTo(ms);
 								                return new X509Certificate2(ms.ToArray(), password);
 								            }
 								        }
-												load certs from azure storage

											
										
										
											2019-07-11 02:05:07 +02:00
+								        public async static Task<X509Certificate2> GetBlobCertificateAsync(CloudStorageAccount cloudStorageAccount,
 								            string container, string file, string password)
 								        {
 								            var blobClient = cloudStorageAccount.CreateCloudBlobClient();
 								            var containerRef = blobClient.GetContainerReference(container);
 								            if(await containerRef.ExistsAsync())
 								            {
 								                var blobRef = containerRef.GetBlobReference(file);
 								                if(await blobRef.ExistsAsync())
 								                {
 								                    var blobBytes = new byte[blobRef.Properties.Length];
 								                    await blobRef.DownloadToByteArrayAsync(blobBytes, 0);
 								                    return new X509Certificate2(blobBytes, password);
 								                }
 								            }
 								            return null;
 								        }
-												organization user apis, hardening, completeness

											
										
										
											2017-03-23 05:17:34 +01:00
+								        public static long ToEpocMilliseconds(DateTime date)
-												return epoc milliseconds for revision date

											
										
										
											2017-01-14 18:47:44 +01:00
+								        {
 								            return (long)Math.Round((date - _epoc).TotalMilliseconds, 0);
 								        }
-												organization user apis, hardening, completeness

											
										
										
											2017-03-23 05:17:34 +01:00
 								        public static DateTime FromEpocMilliseconds(long milliseconds)
 								        {
 								            return _epoc.AddMilliseconds(milliseconds);
 								        }
-												fixes for configuring u2f device

											
										
										
											2017-06-22 23:03:35 +02:00
-												more premium licensing

											
										
										
											2017-08-12 04:55:25 +02:00
+								        public static long ToEpocSeconds(DateTime date)
 								        {
 								            return (long)Math.Round((date - _epoc).TotalSeconds, 0);
 								        }
 								        public static DateTime FromEpocSeconds(long seconds)
 								        {
 								            return _epoc.AddSeconds(seconds);
 								        }
-												fixes for configuring u2f device

											
										
										
											2017-06-22 23:03:35 +02:00
+								        public static string U2fAppIdUrl(GlobalSettings globalSettings)
 								        {
-												new uri settings

											
										
										
											2017-08-04 05:12:05 +02:00
+								            return string.Concat(globalSettings.BaseServiceUri.Vault, "/app-id.json");
-												fixes for configuring u2f device

											
										
										
											2017-06-22 23:03:35 +02:00
+								        }
-												random string helper

											
										
										
											2017-06-29 21:55:39 +02:00
-												paymentservice with stripe & braintree implem.

											
										
										
											2017-07-28 06:17:31 +02:00
+								        public static string RandomString(int length, bool alpha = true, bool upper = true, bool lower = true,
-												random string helper

											
										
										
											2017-06-29 21:55:39 +02:00
+								            bool numeric = true, bool special = false)
 								        {
-												paymentservice with stripe & braintree implem.

											
										
										
											2017-07-28 06:17:31 +02:00
+								            return RandomString(length, RandomStringCharacters(alpha, upper, lower, numeric, special));
 								        }
-												random string helper

											
										
										
											2017-06-29 21:55:39 +02:00
-												paymentservice with stripe & braintree implem.

											
										
										
											2017-07-28 06:17:31 +02:00
+								        public static string RandomString(int length, string characters)
 								        {
 								            return new string(Enumerable.Repeat(characters, length).Select(s => s[_random.Next(s.Length)]).ToArray());
 								        }
-												random string helper

											
										
										
											2017-06-29 21:55:39 +02:00
-												paymentservice with stripe & braintree implem.

											
										
										
											2017-07-28 06:17:31 +02:00
+								        public static string SecureRandomString(int length, bool alpha = true, bool upper = true, bool lower = true,
 								            bool numeric = true, bool special = false)
 								        {
 								            return SecureRandomString(length, RandomStringCharacters(alpha, upper, lower, numeric, special));
-												random string helper

											
										
										
											2017-06-29 21:55:39 +02:00
+								        }
 								        // ref https://stackoverflow.com/a/8996788/1090359 with modifications
 								        public static string SecureRandomString(int length, string characters)
 								        {
 								            if(length < 0)
 								            {
 								                throw new ArgumentOutOfRangeException(nameof(length), "length cannot be less than zero.");
 								            }
 								            if((characters?.Length ?? 0) == 0)
 								            {
 								                throw new ArgumentOutOfRangeException(nameof(characters), "characters invalid.");
 								            }
 								            const int byteSize = 0x100;
 								            if(byteSize < characters.Length)
 								            {
 								                throw new ArgumentException(
 								                    string.Format("{0} may contain no more than {1} characters.", nameof(characters), byteSize),
 								                    nameof(characters));
 								            }
 								            var outOfRangeStart = byteSize - (byteSize % characters.Length);
 								            using(var rng = RandomNumberGenerator.Create())
 								            {
 								                var sb = new StringBuilder();
 								                var buffer = new byte[128];
 								                while(sb.Length < length)
 								                {
 								                    rng.GetBytes(buffer);
 								                    for(var i = 0; i < buffer.Length && sb.Length < length; ++i)
 								                    {
 								                        // Divide the byte into charSet-sized groups. If the random value falls into the last group and the
 								                        // last group is too small to choose from the entire allowedCharSet, ignore the value in order to
 								                        // avoid biasing the result.
 								                        if(outOfRangeStart <= buffer[i])
 								                        {
 								                            continue;
 								                        }
 								                        sb.Append(characters[buffer[i] % characters.Length]);
 								                    }
 								                }
 								                return sb.ToString();
 								            }
 								        }
-												return attachments from API

											
										
										
											2017-07-01 05:01:41 +02:00
-												paymentservice with stripe & braintree implem.

											
										
										
											2017-07-28 06:17:31 +02:00
+								        private static string RandomStringCharacters(bool alpha, bool upper, bool lower, bool numeric, bool special)
 								        {
 								            var characters = string.Empty;
 								            if(alpha)
 								            {
 								                if(upper)
 								                {
 								                    characters += "ABCDEFGHIJKLMNOPQRSTUVWXYZ";
 								                }
 								                if(lower)
 								                {
 								                    characters += "abcdefghijklmnopqrstuvwxyz";
 								                }
 								            }
 								            if(numeric)
 								            {
 								                characters += "0123456789";
 								            }
 								            if(special)
 								            {
 								                characters += "!@#$%^*&";
 								            }
 								            return characters;
 								        }
-												return attachments from API

											
										
										
											2017-07-01 05:01:41 +02:00
+								        // ref: https://stackoverflow.com/a/11124118/1090359
 								        // Returns the human-readable file size for an arbitrary 64-bit file size .
 								        // The format is "0.## XB", ex: "4.2 KB" or "1.43 GB"
 								        public static string ReadableBytesSize(long size)
 								        {
 								            // Get absolute value
 								            var absoluteSize = (size < 0 ? -size : size);
 								            // Determine the suffix and readable value
 								            string suffix;
 								            double readable;
 								            if(absoluteSize >= 0x40000000) // 1 Gigabyte
 								            {
 								                suffix = "GB";
 								                readable = (size >> 20);
 								            }
 								            else if(absoluteSize >= 0x100000) // 1 Megabyte
 								            {
 								                suffix = "MB";
 								                readable = (size >> 10);
 								            }
 								            else if(absoluteSize >= 0x400) // 1 Kilobyte
 								            {
 								                suffix = "KB";
 								                readable = size;
 								            }
 								            else
 								            {
 								                return absoluteSize.ToString("0 Bytes"); // Byte
 								            }
 								            // Divide by 1024 to get fractional value
 								            readable = (readable / 1024);
 								            // Return formatted number with suffix
 								            return readable.ToString("0.## ") + suffix;
 								        }
-												share login with attachments

											
										
										
											2017-07-10 20:30:12 +02:00
 								        public static T CloneObject<T>(T obj)
 								        {
 								            return JsonConvert.DeserializeObject<T>(JsonConvert.SerializeObject(obj));
 								        }
-												local attachment storage & docker image

											
										
										
											2017-08-08 23:27:01 +02:00
 								        public static bool SettingHasValue(string setting)
 								        {
-												internal identity authorization

											
										
										
											2018-08-16 00:43:26 +02:00
+								            var normalizedSetting = setting?.ToLowerInvariant();
 								            return !string.IsNullOrWhiteSpace(normalizedSetting) && !normalizedSetting.Equals("secret") &&
 								                !normalizedSetting.Equals("replace");
-												local attachment storage & docker image

											
										
										
											2017-08-08 23:27:01 +02:00
+								        }
-												push notification relay service and relay send api

											
										
										
											2017-08-11 16:04:59 +02:00
-												throttle block messages and base64 encode them

											
										
										
											2019-03-12 04:31:45 +01:00
+								        public static string Base64EncodeString(string input)
 								        {
 								            return Convert.ToBase64String(Encoding.UTF8.GetBytes(input));
 								        }
 								        public static string Base64DecodeString(string input)
 								        {
 								            return Encoding.UTF8.GetString(Convert.FromBase64String(input));
 								        }
 								        public static string Base64UrlEncodeString(string input)
 								        {
 								            return Base64UrlEncode(Encoding.UTF8.GetBytes(input));
 								        }
 								        public static string Base64UrlDecodeString(string input)
 								        {
 								            return Encoding.UTF8.GetString(Base64UrlDecode(input));
 								        }
-												push notification relay service and relay send api

											
										
										
											2017-08-11 16:04:59 +02:00
+								        public static string Base64UrlEncode(byte[] input)
 								        {
 								            var output = Convert.ToBase64String(input)
 								                .Replace('+', '-')
 								                .Replace('/', '_')
 								                .Replace("=", string.Empty);
 								            return output;
 								        }
 								        public static byte[] Base64UrlDecode(string input)
 								        {
 								            var output = input;
 								            // 62nd char of encoding
 								            output = output.Replace('-', '+');
 								            // 63rd char of encoding
 								            output = output.Replace('_', '/');
 								            // Pad with trailing '='s
 								            switch(output.Length % 4)
 								            {
 								                case 0:
 								                    // No pad chars in this case
 								                    break;
 								                case 2:
 								                    // Two pad chars
 								                    output += "=="; break;
 								                case 3:
 								                    // One pad char
 								                    output += "="; break;
 								                default:
 								                    throw new InvalidOperationException("Illegal base64url string!");
 								            }
 								            // Standard base64 decoder
 								            return Convert.FromBase64String(output);
 								        }
-												licensing signature refactor

											
										
										
											2017-08-16 19:55:01 +02:00
 								        public static string FormatLicenseSignatureValue(object val)
 								        {
 								            if(val == null)
 								            {
 								                return string.Empty;
 								            }
 								            if(val.GetType() == typeof(DateTime))
 								            {
 								                return ToEpocSeconds((DateTime)val).ToString();
 								            }
 								            if(val.GetType() == typeof(bool))
 								            {
 								                return val.ToString().ToLowerInvariant();
 								            }
 								            return val.ToString();
 								        }
-												version info in response headers

											
										
										
											2017-08-25 14:57:43 +02:00
-												get rid of version weight

											
										
										
											2017-09-07 05:57:14 +02:00
+								        public static string GetVersion()
-												version info in response headers

											
										
										
											2017-08-25 14:57:43 +02:00
+								        {
 								            if(string.IsNullOrWhiteSpace(_version))
 								            {
 								                _version = Assembly.GetEntryAssembly()
 								                    .GetCustomAttribute<AssemblyInformationalVersionAttribute>()
 								                    .InformationalVersion;
 								            }
-												get rid of version weight

											
										
										
											2017-09-07 05:57:14 +02:00
+								            return _version;
-												version info in response headers

											
										
										
											2017-08-25 14:57:43 +02:00
+								        }
-												dvorak and colemak 2 qwerty helper

											
										
										
											2017-09-12 05:08:08 +02:00
 								        public static string Dvorak2Qwerty(string value)
 								        {
 								            return Other2Qwerty(value, _dvorakMap, _qwertyDvorakMap);
 								        }
-												typo

											
										
										
											2017-09-12 16:11:56 +02:00
+								        public static string Colemak2Qwerty(string value)
-												dvorak and colemak 2 qwerty helper

											
										
										
											2017-09-12 05:08:08 +02:00
+								        {
-												colemak typo

											
										
										
											2017-09-12 05:25:11 +02:00
+								            return Other2Qwerty(value, _colemakMap, _qwertyColemakMap);
-												dvorak and colemak 2 qwerty helper

											
										
										
											2017-09-12 05:08:08 +02:00
+								        }
 								        private static string Other2Qwerty(string value, string otherMap, string qwertyMap)
 								        {
 								            var sb = new StringBuilder();
 								            foreach(var c in value)
 								            {
 								                sb.Append(otherMap.IndexOf(c) > -1 ? qwertyMap[otherMap.IndexOf(c)] : c);
 								            }
 								            return sb.ToString();
 								        }
-												sanitize user provided string for emails

											
										
										
											2017-09-27 18:45:57 +02:00
 								        public static string SanitizeForEmail(string value)
 								        {
 								            return value.Replace("@", "[at]")
 								                .Replace("http://", string.Empty)
 								                .Replace("https://", string.Empty);
 								        }
-												table storage event repo stub

											
										
										
											2017-11-29 04:21:47 +01:00
 								        public static string DateTimeToTableStorageKey(DateTime? date = null)
 								        {
-												event paging

											
										
										
											2017-12-15 21:23:57 +01:00
+								            if(date.HasValue)
 								            {
 								                date = date.Value.ToUniversalTime();
 								            }
 								            else
-												table storage event repo stub

											
										
										
											2017-11-29 04:21:47 +01:00
+								            {
 								                date = DateTime.UtcNow;
 								            }
-												event paging

											
										
										
											2017-12-15 21:23:57 +01:00
+								            return _max.Subtract(date.Value).TotalMilliseconds.ToString(CultureInfo.InvariantCulture);
-												table storage event repo stub

											
										
										
											2017-11-29 04:21:47 +01:00
+								        }
-												respect return url on sign in link

											
										
										
											2018-03-22 18:18:18 +01:00
 								        // ref: https://stackoverflow.com/a/27545010/1090359
 								        public static Uri ExtendQuery(Uri uri, IDictionary<string, string> values)
 								        {
 								            var baseUri = uri.ToString();
 								            var queryString = string.Empty;
 								            if(baseUri.Contains("?"))
 								            {
 								                var urlSplit = baseUri.Split('?');
 								                baseUri = urlSplit[0];
 								                queryString = urlSplit.Length > 1 ? urlSplit[1] : string.Empty;
 								            }
 								            var queryCollection = HttpUtility.ParseQueryString(queryString);
 								            foreach(var kvp in values ?? new Dictionary<string, string>())
 								            {
 								                queryCollection[kvp.Key] = kvp.Value;
 								            }
 								            var uriKind = uri.IsAbsoluteUri ? UriKind.Absolute : UriKind.Relative;
 								            if(queryCollection.Count == 0)
 								            {
 								                return new Uri(baseUri, uriKind);
 								            }
 								            return new Uri(string.Format("{0}?{1}", baseUri, queryCollection), uriKind);
 								        }
-												allow org user reg. when reg. is disabled

											
										
										
											2018-05-24 22:53:07 +02:00
-												email token provider

											
										
										
											2018-12-20 04:27:45 +01:00
+								        public static string CustomProviderName(TwoFactorProviderType type)
 								        {
 								            return string.Concat("Custom_", type.ToString());
 								        }
-												back to corehelpers

											
										
										
											2019-06-11 23:17:23 +02:00
 								        public static bool UserInviteTokenIsValid(IDataProtector protector, string token, string userEmail, Guid orgUserId,
 								            GlobalSettings globalSettings)
 								        {
 								            var invalid = true;
 								            try
 								            {
 								                var unprotectedData = protector.Unprotect(token);
 								                var dataParts = unprotectedData.Split(' ');
 								                if(dataParts.Length == 4 && dataParts[0] == "OrganizationUserInvite" &&
 								                    new Guid(dataParts[1]) == orgUserId &&
 								                    dataParts[2].Equals(userEmail, StringComparison.InvariantCultureIgnoreCase))
 								                {
 								                    var creationTime = FromEpocMilliseconds(Convert.ToInt64(dataParts[3]));
 								                    var expTime = creationTime.AddHours(globalSettings.OrganizationInviteExpirationHours);
 								                    invalid = expTime < DateTime.UtcNow;
 								                }
 								            }
 								            catch
 								            {
 								                invalid = true;
 								            }
 								            return !invalid;
 								        }
-												keep application cache in sync with service bus

											
										
										
											2019-06-13 06:10:37 +02:00
 								        public static string GetApplicationCacheServiceBusSubcriptionName(GlobalSettings globalSettings)
 								        {
 								            var subName = globalSettings.ServiceBus.ApplicationCacheSubscriptionName;
 								            if(string.IsNullOrWhiteSpace(subName))
 								            {
 								                var websiteInstanceId = Environment.GetEnvironmentVariable("WEBSITE_INSTANCE_ID");
 								                if(string.IsNullOrWhiteSpace(websiteInstanceId))
 								                {
 								                    throw new Exception("No service bus subscription name available.");
 								                }
 								                else
 								                {
 								                    subName = $"{globalSettings.ProjectName.ToLower()}_{websiteInstanceId}";
 								                    if(subName.Length > 50)
 								                    {
 								                        subName = subName.Substring(0, 50);
 								                    }
 								                }
 								            }
 								            return subName;
 								        }
-												refactored data storage to use cipher table. added history table and insert triggers.

											
										
										
											2016-05-21 23:16:22 +02:00
+								    }
 								}