Use userId to find org users

2025-02-18 02:11:22 +01:00 · 2021-11-09 10:40:31 -05:00 · 2021-11-09 10:40:31 -05:00 · 8480379e32
commit 8480379e32
parent 1516b9dd8e
5 changed files with 11 additions and 41 deletions
--- a/src/Api/Controllers/OrganizationSponsorshipsController.cs
+++ b/src/Api/Controllers/OrganizationSponsorshipsController.cs
@ -51,14 +51,10 @@ namespace Bit.Api.Controllers
                throw new BadRequestException("Specified Organization cannot sponsor other organizations.");
            }

-            var sponsoringOrgUser = await _organizationUserRepository.GetByIdAsync(model.OrganizationUserId);
+            var sponsoringOrgUser = await _organizationUserRepository.GetByOrganizationAsync(sponsoringOrgIdGuid, _currentContext.UserId ?? default);
            if (sponsoringOrgUser == null || sponsoringOrgUser.Status != OrganizationUserStatusType.Confirmed)
            {
-                throw new BadRequestException("Only confirm users can sponsor other organizations.");
-            }
-            if (sponsoringOrgUser.UserId != _currentContext.UserId)
-            {
-                throw new BadRequestException("Can only create organization sponsorships for yourself.");
+                throw new BadRequestException("Only confirmed users can sponsor other organizations.");
            }

            var existingOrgSponsorship = await _organizationSponsorshipRepository.GetBySponsoringOrganizationUserIdAsync(sponsoringOrgUser.Id);
--- a/src/Core/Models/Api/Request/Organizations/OrganizationSponsorshipRequestModel.cs
+++ b/src/Core/Models/Api/Request/Organizations/OrganizationSponsorshipRequestModel.cs
@ -10,9 +10,6 @@ namespace Bit.Core.Models.Api.Request
        [Required]
        public PlanSponsorshipType PlanSponsorshipType { get; set; }

-        [Required]
-        public Guid OrganizationUserId { get; set; }
-
        [Required]
        [StringLength(256)]
        [StrictEmailAddress]
--- a/src/Core/Services/Implementations/OrganizationSponsorshipService.cs
+++ b/src/Core/Services/Implementations/OrganizationSponsorshipService.cs
@ -88,7 +88,7 @@ namespace Bit.Core.Services
                sponsorship = await _organizationSponsorshipRepository.CreateAsync(sponsorship);

                // TODO: send email to sponsoredEmail w/ redemption token link
-                var _ = RedemptionToken(sponsorship.Id, sponsorshipType);
+                // var _ = RedemptionToken(sponsorship.Id, sponsorshipType);
            }
            catch
            {
--- a/test/Api.Test/Controllers/OrganizationSponsorshipsControllerTests.cs
+++ b/test/Api.Test/Controllers/OrganizationSponsorshipsControllerTests.cs
@ -58,45 +58,21 @@ namespace Bit.Api.Test.Controllers
        [Theory]
        [BitMemberAutoData(nameof(NonConfirmedOrganizationUsersStatuses))]
        public async Task CreateSponsorship_BadSponsoringUserStatus_ThrowsBadRequest(
-            OrganizationUserStatusType statusType, Guid userId, Organization org, OrganizationUser orgUser,
+            OrganizationUserStatusType statusType, Organization org, OrganizationUser orgUser,
            OrganizationSponsorshipRequestModel model, SutProvider<OrganizationSponsorshipsController> sutProvider)
        {
            org.PlanType = PlanType.EnterpriseAnnually;
            orgUser.Status = statusType;
-            orgUser.UserId = userId;
-            model.OrganizationUserId = orgUser.Id;

            sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(org.Id).Returns(org);
-            sutProvider.GetDependency<ICurrentContext>().UserId.Returns(userId);
-            sutProvider.GetDependency<IOrganizationUserRepository>().GetByIdAsync(orgUser.Id).Returns(orgUser);
+            sutProvider.GetDependency<ICurrentContext>().UserId.Returns(orgUser.UserId);
+            sutProvider.GetDependency<IOrganizationUserRepository>().GetByOrganizationAsync(org.Id, orgUser.UserId.Value)
+                .Returns(orgUser);

            var exception = await Assert.ThrowsAsync<BadRequestException>(() =>
                sutProvider.Sut.CreateSponsorship(org.Id.ToString(), model));

-            Assert.Contains("Only confirm users can sponsor other organizations.", exception.Message);
-            await sutProvider.GetDependency<IOrganizationSponsorshipService>()
-                .DidNotReceiveWithAnyArgs()
-                .OfferSponsorshipAsync(default, default, default, default, default);
-        }
-
-        [Theory]
-        [BitAutoData("c56c7ab4-a174-412a-a822-abe53ea71d50")]
-        public async Task CreateSponsorship_CreateSponsorshipAsDifferentUser_ThrowsBadRequest(Guid userId,
-            Organization org, OrganizationUser orgUser, OrganizationSponsorshipRequestModel model,
-            SutProvider<OrganizationSponsorshipsController> sutProvider)
-        {
-            org.PlanType = PlanType.EnterpriseAnnually;
-            orgUser.Status = OrganizationUserStatusType.Confirmed;
-            model.OrganizationUserId = orgUser.Id;
-
-            sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(org.Id).Returns(org);
-            sutProvider.GetDependency<ICurrentContext>().UserId.Returns(userId);
-            sutProvider.GetDependency<IOrganizationUserRepository>().GetByIdAsync(orgUser.Id).Returns(orgUser);
-
-            var exception = await Assert.ThrowsAsync<BadRequestException>(() =>
-                sutProvider.Sut.CreateSponsorship(org.Id.ToString(), model));
-
-            Assert.Contains("Can only create organization sponsorships for yourself.", exception.Message);
+            Assert.Contains("Only confirmed users can sponsor other organizations.", exception.Message);
            await sutProvider.GetDependency<IOrganizationSponsorshipService>()
                .DidNotReceiveWithAnyArgs()
                .OfferSponsorshipAsync(default, default, default, default, default);
@ -110,11 +86,11 @@ namespace Bit.Api.Test.Controllers
        {
            org.PlanType = PlanType.EnterpriseAnnually;
            orgUser.Status = OrganizationUserStatusType.Confirmed;
-            model.OrganizationUserId = orgUser.Id;

            sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(org.Id).Returns(org);
            sutProvider.GetDependency<ICurrentContext>().UserId.Returns(orgUser.UserId);
-            sutProvider.GetDependency<IOrganizationUserRepository>().GetByIdAsync(orgUser.Id).Returns(orgUser);
+            sutProvider.GetDependency<IOrganizationUserRepository>().GetByOrganizationAsync(org.Id, orgUser.UserId.Value)
+                .Returns(orgUser);
            sutProvider.GetDependency<IOrganizationSponsorshipRepository>()
                .GetBySponsoringOrganizationUserIdAsync(orgUser.Id).Returns(sponsorship);

--- a/test/Core.Test/Services/OrganizationSponsorshipServiceTests.cs
+++ b/test/Core.Test/Services/OrganizationSponsorshipServiceTests.cs
@ -45,6 +45,7 @@ namespace Bit.Core.Test.Services
                SponsoringOrganizationUserId = sponsoringOrgUser.Id,
                FriendlyName = friendlyName,
                OfferedToEmail = sponsoredEmail,
+                PlanSponsorshipType = PlanSponsorshipType.FamiliesForEnterprise,
                CloudSponsor = true,
            };