bitwarden-estensione-browser/common/src/services/keyConnector.service.ts

import { ApiService } from '../abstractions/api.service';
import { CryptoService } from '../abstractions/crypto.service';
import { KeyConnectorService as KeyConnectorServiceAbstraction } from '../abstractions/keyConnector.service';
import { LogService } from '../abstractions/log.service';
import { StorageService } from '../abstractions/storage.service';
import { TokenService } from '../abstractions/token.service';
import { UserService } from '../abstractions/user.service';

import { OrganizationUserType } from '../enums/organizationUserType';

import { Utils } from '../misc/utils';

import { SymmetricCryptoKey } from '../models/domain/symmetricCryptoKey';

import { KeyConnectorUserKeyRequest } from '../models/request/keyConnectorUserKeyRequest';

const Keys = {
    usesKeyConnector: 'usesKeyConnector',
    convertAccountToKeyConnector: 'convertAccountToKeyConnector',
};

export class KeyConnectorService implements KeyConnectorServiceAbstraction {
    private usesKeyConnector?: boolean = null;

    constructor(private storageService: StorageService, private userService: UserService,
        private cryptoService: CryptoService, private apiService: ApiService,
        private tokenService: TokenService, private logService: LogService) { }

    setUsesKeyConnector(usesKeyConnector: boolean) {
        this.usesKeyConnector = usesKeyConnector;
        return this.storageService.save(Keys.usesKeyConnector, usesKeyConnector);
    }

    async getUsesKeyConnector(): Promise<boolean> {
        return this.usesKeyConnector ??= await this.storageService.get<boolean>(Keys.usesKeyConnector);
    }

    async userNeedsMigration() {
        const loggedInUsingSso = this.tokenService.getIsExternal();
        const requiredByOrganization = await this.getManagingOrganization() != null;
        const userIsNotUsingKeyConnector = !await this.getUsesKeyConnector();

        return loggedInUsingSso && requiredByOrganization && userIsNotUsingKeyConnector;
    }

    async migrateUser() {
        const organization = await this.getManagingOrganization();
        const key = await this.cryptoService.getKey();

        try {
            const keyConnectorRequest = new KeyConnectorUserKeyRequest(key.encKeyB64);
            await this.apiService.postUserKeyToKeyConnector(organization.keyConnectorUrl, keyConnectorRequest);
        } catch (e) {
            throw new Error('Unable to reach key connector');
        }

        await this.apiService.postConvertToKeyConnector();
    }

    async getAndSetKey(url: string) {
        try {
            const userKeyResponse = await this.apiService.getUserKeyFromKeyConnector(url);
            const keyArr = Utils.fromB64ToArray(userKeyResponse.key);
            const k = new SymmetricCryptoKey(keyArr);
            await this.cryptoService.setKey(k);
        } catch (e) {
            this.logService.error(e);
            throw new Error('Unable to reach key connector');
        }
    }

    async getManagingOrganization() {
        const orgs = await this.userService.getAllOrganizations();
        return orgs.find(o =>
            o.usesKeyConnector &&
            o.type !== OrganizationUserType.Admin &&
            o.type !== OrganizationUserType.Owner &&
            !o.isProviderUser);
    }

    async setConvertAccountRequired(status: boolean) {
        await this.storageService.save(Keys.convertAccountToKeyConnector, status);
    }

    async getConvertAccountRequired(): Promise<boolean> {
        return await this.storageService.get(Keys.convertAccountToKeyConnector);
    }

    async removeConvertAccountRequired() {
        await this.storageService.remove(Keys.convertAccountToKeyConnector);
    }

    async clear() {
        await this.removeConvertAccountRequired();
    }
}
Add support for requesting and using otp for verifying some requests (#527) Co-authored-by: Thomas Rittson <trittson@bitwarden.com> 2021-11-09 17:01:22 +01:00			`import { ApiService } from '../abstractions/api.service';`
			`import { CryptoService } from '../abstractions/crypto.service';`
			`import { KeyConnectorService as KeyConnectorServiceAbstraction } from '../abstractions/keyConnector.service';`
			`import { LogService } from '../abstractions/log.service';`
			`import { StorageService } from '../abstractions/storage.service';`
			`import { TokenService } from '../abstractions/token.service';`
			`import { UserService } from '../abstractions/user.service';`

			`import { OrganizationUserType } from '../enums/organizationUserType';`

			`import { Utils } from '../misc/utils';`

			`import { SymmetricCryptoKey } from '../models/domain/symmetricCryptoKey';`

			`import { KeyConnectorUserKeyRequest } from '../models/request/keyConnectorUserKeyRequest';`

			`const Keys = {`
			`usesKeyConnector: 'usesKeyConnector',`
			`convertAccountToKeyConnector: 'convertAccountToKeyConnector',`
			`};`

			`export class KeyConnectorService implements KeyConnectorServiceAbstraction {`
			`private usesKeyConnector?: boolean = null;`

			`constructor(private storageService: StorageService, private userService: UserService,`
			`private cryptoService: CryptoService, private apiService: ApiService,`
[Key Connector] QA fixes for CLI and Desktop (#544) * Make UserVerificationService compatible with CLI * Refactor error handling * Fix i18n key name * Add apiUseKeyConnector flag to TokenResponse * Always require keyConnectorUrl to be passed in * Throw errors in userVerificationService * Use requestOTP in UserVerificationService * Remove unused deps * Fix linting 2021-11-15 22:53:57 +01:00			`private tokenService: TokenService, private logService: LogService) { }`
Add support for requesting and using otp for verifying some requests (#527) Co-authored-by: Thomas Rittson <trittson@bitwarden.com> 2021-11-09 17:01:22 +01:00
			`setUsesKeyConnector(usesKeyConnector: boolean) {`
			`this.usesKeyConnector = usesKeyConnector;`
			`return this.storageService.save(Keys.usesKeyConnector, usesKeyConnector);`
			`}`

			`async getUsesKeyConnector(): Promise<boolean> {`
			`return this.usesKeyConnector ??= await this.storageService.get<boolean>(Keys.usesKeyConnector);`
			`}`

			`async userNeedsMigration() {`
			`const loggedInUsingSso = this.tokenService.getIsExternal();`
			`const requiredByOrganization = await this.getManagingOrganization() != null;`
			`const userIsNotUsingKeyConnector = !await this.getUsesKeyConnector();`

			`return loggedInUsingSso && requiredByOrganization && userIsNotUsingKeyConnector;`
			`}`

			`async migrateUser() {`
			`const organization = await this.getManagingOrganization();`
			`const key = await this.cryptoService.getKey();`

			`try {`
			`const keyConnectorRequest = new KeyConnectorUserKeyRequest(key.encKeyB64);`
			`await this.apiService.postUserKeyToKeyConnector(organization.keyConnectorUrl, keyConnectorRequest);`
			`} catch (e) {`
			`throw new Error('Unable to reach key connector');`
			`}`

			`await this.apiService.postConvertToKeyConnector();`
			`}`

[Key Connector] QA fixes for CLI and Desktop (#544) * Make UserVerificationService compatible with CLI * Refactor error handling * Fix i18n key name * Add apiUseKeyConnector flag to TokenResponse * Always require keyConnectorUrl to be passed in * Throw errors in userVerificationService * Use requestOTP in UserVerificationService * Remove unused deps * Fix linting 2021-11-15 22:53:57 +01:00			`async getAndSetKey(url: string) {`
Add support for requesting and using otp for verifying some requests (#527) Co-authored-by: Thomas Rittson <trittson@bitwarden.com> 2021-11-09 17:01:22 +01:00			`try {`
			`const userKeyResponse = await this.apiService.getUserKeyFromKeyConnector(url);`
			`const keyArr = Utils.fromB64ToArray(userKeyResponse.key);`
			`const k = new SymmetricCryptoKey(keyArr);`
			`await this.cryptoService.setKey(k);`
			`} catch (e) {`
			`this.logService.error(e);`
			`throw new Error('Unable to reach key connector');`
			`}`
			`}`

			`async getManagingOrganization() {`
			`const orgs = await this.userService.getAllOrganizations();`
			`return orgs.find(o =>`
			`o.usesKeyConnector &&`
			`o.type !== OrganizationUserType.Admin &&`
			`o.type !== OrganizationUserType.Owner &&`
			`!o.isProviderUser);`
			`}`

			`async setConvertAccountRequired(status: boolean) {`
			`await this.storageService.save(Keys.convertAccountToKeyConnector, status);`
			`}`

			`async getConvertAccountRequired(): Promise<boolean> {`
			`return await this.storageService.get(Keys.convertAccountToKeyConnector);`
			`}`

			`async removeConvertAccountRequired() {`
			`await this.storageService.remove(Keys.convertAccountToKeyConnector);`
			`}`

			`async clear() {`
			`await this.removeConvertAccountRequired();`
			`}`
			`}`