Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[PM-13839][PM-13840] Admin Console Collections #4922

Open
wants to merge 2 commits into
base: main
Choose a base branch
from
Open

[PM-13839][PM-13840] Admin Console Collections #4922

wants to merge 2 commits into from

Conversation

nick-livefront
Copy link
Collaborator

@nick-livefront nick-livefront commented Oct 21, 2024
edited by jira bot
Loading

🎟️ Tracking

PM-13839
PM-13840
Client Side PR

📔 Objective

Add collectionIds to the response of {id}/admin

  • They're now needed in the admin console when add/editing a cipher.
  • Prior to this there was no way to edit collection when editing a cipher. Assigning collections was a separate workflow
  • Looking through the change in model, collectionsIds are the only difference in the new CipherMiniDetailsResponseModel
  • On the client side, the CipherResponse is expecting a string[] rather than null/undefined. This change would be more accurate with those types.

📸 Screenshots

See Client Side PR

🦮 Reviewer guidelines

  • 👍 (:+1:) or similar for great changes
  • 📝 (:memo:) or ℹ️ (:information_source:) for notes or general info
  • ❓ (:question:) for questions
  • 🤔 (:thinking:) or 💭 (:thought_balloon:) for more open inquiry that's not quite a confirmed issue and could potentially benefit from discussion
  • 🎨 (:art:) for suggestions / improvements
  • ❌ (:x:) or ⚠️ (:warning:) for more significant problems or concerns needing attention
  • 🌱 (:seedling:) or ♻️ (:recycle:) for future improvements or indications of technical debt
  • ⛏ (:pick:) for minor or nitpick changes

@nick-livefront
add collectionIds to the response of {id}/admin
f70bfc2 
- They're now needed in the admin console when add/editing a cipher.
- Prior to this there was no way to edit collection when editing a cipher. Assigning collections was a separate workflow
@nick-livefront nick-livefront requested a review from a team as a code owner October 21, 2024 20:59
@nick-livefront nick-livefront mentioned this pull request Oct 21, 2024
Open
@codecov Codecov
Copy link

codecov bot commented Oct 21, 2024
edited
Loading

Codecov Report

Attention: Patch coverage is 0% with 7 lines in your changes missing coverage. Please review.

Project coverage is 42.57%. Comparing base (a210917) to head (6be2b67).
Report is 32 commits behind head on main.

Files with missing lines Patch % Lines
src/Api/Vault/Controllers/CiphersController.cs 0.00% 7 Missing ⚠️
Additional details and impacted files 
@@            Coverage Diff             @@
##             main    #4922      +/-   ##
==========================================
+ Coverage   41.77%   42.57%   +0.79%     
==========================================
  Files        1364     1387      +23     
  Lines       64050    64649     +599     
  Branches     5878     5932      +54     
==========================================
+ Hits        26760    27524     +764     
+ Misses      36084    35903     -181     
- Partials     1206     1222      +16

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Oct 21, 2024
edited
Loading

Logo
Checkmarx One – Scan Summary & Detailse1f09e7e-03f4-4e59-b822-bcf4cb5ebe1f

New Issues

Severity Issue Source File / Package Checkmarx Insight
MEDIUM CSRF /src/Api/Vault/Controllers/CiphersController.cs: 606 Attack Vector
MEDIUM CSRF /src/Api/Vault/Controllers/CiphersController.cs: 606 Attack Vector
MEDIUM CSRF /src/Api/Vault/Controllers/CiphersController.cs: 606 Attack Vector
MEDIUM CSRF /src/Api/Vault/Controllers/CiphersController.cs: 606 Attack Vector
MEDIUM CSRF /src/Api/Vault/Controllers/CiphersController.cs: 1100 Attack Vector
MEDIUM Privacy_Violation /src/Core/Auth/Services/Implementations/AuthRequestService.cs: 160 Attack Vector
MEDIUM Privacy_Violation /src/Core/Services/Implementations/NotificationHubPushNotificationService.cs: 208 Attack Vector
MEDIUM Privacy_Violation /src/Core/Services/Implementations/NotificationHubPushNotificationService.cs: 205 Attack Vector
MEDIUM Privacy_Violation /src/Core/Auth/Services/Implementations/AuthRequestService.cs: 217 Attack Vector
MEDIUM Privacy_Violation /src/Core/Auth/Services/Implementations/AuthRequestService.cs: 208 Attack Vector
LOW Log_Forging /src/Api/Vault/Controllers/CiphersController.cs: 906 Attack Vector
LOW Log_Forging /src/Api/Controllers/PushController.cs: 71 Attack Vector

Fixed Issues

Severity Issue Source File / Package
MEDIUM CSRF /src/Api/AdminConsole/Controllers/PoliciesController.cs: 59
MEDIUM CSRF /src/Api/AdminConsole/Controllers/OrganizationUsersController.cs: 106
MEDIUM CSRF /src/Api/Billing/Controllers/OrganizationsController.cs: 105
MEDIUM CSRF /src/Api/Billing/Controllers/OrganizationsController.cs: 49
MEDIUM CSRF /src/Api/AdminConsole/Controllers/OrganizationUsersController.cs: 548
MEDIUM CSRF /src/Api/Controllers/CollectionsController.cs: 261
MEDIUM CSRF /src/Identity/Controllers/SsoController.cs: 143
MEDIUM CSRF /src/Identity/Controllers/SsoController.cs: 102
MEDIUM CSRF /src/Identity/Controllers/SsoController.cs: 41
MEDIUM CSRF /src/Icons/Controllers/IconsController.cs: 53
MEDIUM CSRF /src/Billing/Controllers/PayPalController.cs: 48
MEDIUM CSRF /src/Billing/Controllers/FreshsalesController.cs: 49
MEDIUM CSRF /src/Billing/Controllers/FreshdeskController.cs: 44
MEDIUM CSRF /src/Billing/Controllers/BitPayController.cs: 51
MEDIUM CSRF /src/Api/Vault/Controllers/FoldersController.cs: 79
MEDIUM CSRF /src/Api/Vault/Controllers/FoldersController.cs: 64
MEDIUM CSRF /src/Api/Vault/Controllers/FoldersController.cs: 54
MEDIUM CSRF /src/Api/Vault/Controllers/FoldersController.cs: 45
MEDIUM CSRF /src/Api/Vault/Controllers/CiphersController.cs: 189
MEDIUM CSRF /src/Api/Vault/Controllers/CiphersController.cs: 140
MEDIUM CSRF /src/Api/Vault/Controllers/CiphersController.cs: 121
MEDIUM CSRF /src/Api/Vault/Controllers/CiphersController.cs: 107
MEDIUM CSRF /src/Api/Tools/Controllers/SendsController.cs: 193
MEDIUM CSRF /src/Api/Tools/Controllers/SendsController.cs: 157
MEDIUM CSRF /src/Api/Tools/Controllers/SendsController.cs: 148
MEDIUM CSRF /src/Api/Tools/Controllers/ImportCiphersController.cs: 64
MEDIUM CSRF /src/Api/Tools/Controllers/ImportCiphersController.cs: 48
MEDIUM CSRF /src/Api/Tools/Controllers/HibpController.cs: 43
MEDIUM CSRF /src/Api/SecretsManager/Controllers/ServiceAccountsController.cs: 156
MEDIUM CSRF /src/Api/SecretsManager/Controllers/ServiceAccountsController.cs: 110
MEDIUM CSRF /src/Api/SecretsManager/Controllers/SecretsManagerPortingController.cs: 58
MEDIUM CSRF /src/Api/SecretsManager/Controllers/SecretsManagerPortingController.cs: 38
MEDIUM CSRF /src/Api/SecretsManager/Controllers/SecretsController.cs: 214
MEDIUM CSRF /src/Api/SecretsManager/Controllers/SecretsController.cs: 96
MEDIUM CSRF /src/Api/SecretsManager/Controllers/ProjectsController.cs: 140
MEDIUM CSRF /src/Api/SecretsManager/Controllers/ProjectsController.cs: 112
MEDIUM CSRF /src/Api/SecretsManager/Controllers/ProjectsController.cs: 69
MEDIUM CSRF /src/Api/SecretsManager/Controllers/ProjectsController.cs: 51
MEDIUM CSRF /src/Api/SecretsManager/Controllers/CountsController.cs: 37
MEDIUM CSRF /src/Api/SecretsManager/Controllers/AccessPoliciesController.cs: 266
MEDIUM CSRF /src/Api/SecretsManager/Controllers/AccessPoliciesController.cs: 232
MEDIUM CSRF /src/Api/Public/Controllers/CollectionsController.cs: 64
MEDIUM CSRF /src/Api/Controllers/SelfHosted/SelfHostedOrganizationSponsorshipsController.cs: 52
MEDIUM CSRF /src/Api/Controllers/SelfHosted/SelfHostedOrganizationSponsorshipsController.cs: 42
MEDIUM CSRF /src/Api/Controllers/SelfHosted/SelfHostedOrganizationLicensesController.cs: 71
MEDIUM CSRF /src/Api/Controllers/SelfHosted/SelfHostedOrganizationLicensesController.cs: 51
MEDIUM CSRF /src/Api/Controllers/UsersController.cs: 22
MEDIUM CSRF /src/Api/Controllers/PushController.cs: 38
MEDIUM CSRF /src/Api/Controllers/CollectionsController.cs: 247
MEDIUM CSRF /src/Api/Controllers/CollectionsController.cs: 233
MEDIUM CSRF /src/Api/Controllers/CollectionsController.cs: 171
MEDIUM CSRF /src/Api/Controllers/CollectionsController.cs: 143
MEDIUM CSRF /src/Api/Controllers/CollectionsController.cs: 128
MEDIUM CSRF /src/Api/Controllers/CollectionsController.cs: 119
MEDIUM CSRF /src/Api/Controllers/CollectionsController.cs: 99
MEDIUM CSRF /src/Api/Controllers/CollectionsController.cs: 61
MEDIUM CSRF /src/Api/Billing/Controllers/OrganizationSponsorshipsController.cs: 143
MEDIUM CSRF /src/Api/Billing/Controllers/OrganizationSponsorshipsController.cs: 68
MEDIUM CSRF /src/Api/Auth/Controllers/WebAuthnController.cs: 153
MEDIUM CSRF /src/Api/Auth/Controllers/WebAuthnController.cs: 101
MEDIUM CSRF /src/Api/Auth/Controllers/WebAuthnController.cs: 59
MEDIUM CSRF /src/Api/Auth/Controllers/EmergencyAccessController.cs: 159
MEDIUM CSRF /src/Api/Auth/Controllers/EmergencyAccessController.cs: 102
MEDIUM CSRF /src/Api/Auth/Controllers/EmergencyAccessController.cs: 95
MEDIUM CSRF /src/Api/Auth/Controllers/EmergencyAccessController.cs: 81
MEDIUM CSRF /src/Api/Auth/Controllers/AuthRequestsController.cs: 37
MEDIUM CSRF /src/Api/AdminConsole/Public/Controllers/GroupsController.cs: 110
MEDIUM CSRF /src/Api/AdminConsole/Public/Controllers/GroupsController.cs: 92
MEDIUM CSRF /src/Api/AdminConsole/Public/Controllers/GroupsController.cs: 49
MEDIUM CSRF /src/Api/AdminConsole/Controllers/ProviderUsersController.cs: 188
MEDIUM CSRF /src/Api/AdminConsole/Controllers/ProviderUsersController.cs: 175
MEDIUM CSRF /src/Api/AdminConsole/Controllers/ProviderUsersController.cs: 156
MEDIUM CSRF /src/Api/AdminConsole/Controllers/ProviderUsersController.cs: 142
MEDIUM CSRF /src/Api/AdminConsole/Controllers/ProviderUsersController.cs: 126
MEDIUM CSRF /src/Api/AdminConsole/Controllers/ProviderUsersController.cs: 114
MEDIUM CSRF /src/Api/AdminConsole/Controllers/ProviderUsersController.cs: 89
MEDIUM CSRF /src/Api/AdminConsole/Controllers/ProviderUsersController.cs: 75
MEDIUM CSRF /src/Api/AdminConsole/Controllers/ProviderUsersController.cs: 62
MEDIUM CSRF /src/Api/AdminConsole/Controllers/ProvidersController.cs: 121
MEDIUM CSRF /src/Api/AdminConsole/Controllers/ProvidersController.cs: 72
MEDIUM CSRF /src/Api/AdminConsole/Controllers/ProvidersController.cs: 54
MEDIUM CSRF /src/Api/AdminConsole/Controllers/ProviderOrganizationsController.cs: 73
MEDIUM CSRF /src/Api/AdminConsole/Controllers/ProviderOrganizationsController.cs: 61
MEDIUM CSRF /src/Api/AdminConsole/Controllers/ProviderOrganizationsController.cs: 48
MEDIUM CSRF /src/Admin/AdminConsole/Controllers/ProviderOrganizationsController.cs: 35
MEDIUM CSRF /src/Admin/AdminConsole/Controllers/OrganizationsController.cs: 351
MEDIUM CSRF /bitwarden_license/src/Sso/Controllers/AccountController.cs: 240
MEDIUM CSRF /bitwarden_license/src/Sso/Controllers/AccountController.cs: 167
MEDIUM CSRF /bitwarden_license/src/Sso/Controllers/AccountController.cs: 100
MEDIUM CSRF /bitwarden_license/src/Scim/Controllers/v2/GroupsController.cs: 79
MEDIUM CSRF /src/Api/Vault/Controllers/CiphersController.cs: 603
MEDIUM CSRF /src/Api/SecretsManager/Controllers/CountsController.cs: 37
MEDIUM CSRF /src/Api/Auth/Controllers/AccountsController.cs: 914
MEDIUM CSRF /src/Api/SecretsManager/Controllers/SecretsController.cs: 96
MEDIUM CSRF /src/Api/SecretsManager/Controllers/AccessPoliciesController.cs: 266
MEDIUM CSRF /src/Api/AdminConsole/Public/Controllers/MembersController.cs: 95
MEDIUM CSRF /src/Api/AdminConsole/Controllers/ProvidersController.cs: 72
MEDIUM CSRF /src/Api/AdminConsole/Controllers/ProvidersController.cs: 121
MEDIUM CSRF /src/Api/SecretsManager/Controllers/AccessPoliciesController.cs: 232
MEDIUM CSRF /src/Admin/AdminConsole/Controllers/ProvidersController.cs: 427
MEDIUM CSRF /src/Api/AdminConsole/Controllers/OrganizationUsersController.cs: 238
MEDIUM CSRF /src/Api/AdminConsole/Controllers/OrganizationUsersController.cs: 377
MEDIUM CSRF /src/Api/AdminConsole/Controllers/OrganizationUsersController.cs: 377
MEDIUM CSRF /src/Api/Auth/Controllers/AccountsController.cs: 678
MEDIUM CSRF /src/Api/Vault/Controllers/FoldersController.cs: 45
MEDIUM CSRF /src/Api/Controllers/SelfHosted/SelfHostedOrganizationLicensesController.cs: 51
MEDIUM CSRF /src/Api/Controllers/UsersController.cs: 22
MEDIUM CSRF /src/Api/AdminConsole/Public/Controllers/GroupsController.cs: 92
MEDIUM CSRF /src/Api/AdminConsole/Public/Controllers/GroupsController.cs: 49
MEDIUM CSRF /src/Api/AdminConsole/Controllers/ProviderUsersController.cs: 142
MEDIUM CSRF /src/Api/AdminConsole/Controllers/OrganizationUsersController.cs: 264
MEDIUM CSRF /src/Api/AdminConsole/Controllers/OrganizationUsersController.cs: 345
MEDIUM CSRF /src/Api/AdminConsole/Controllers/OrganizationUsersController.cs: 362
MEDIUM CSRF /src/Api/AdminConsole/Controllers/PoliciesController.cs: 75
MEDIUM CSRF /src/Api/AdminConsole/Controllers/PoliciesController.cs: 145
MEDIUM CSRF /src/Api/AdminConsole/Controllers/ProviderOrganizationsController.cs: 48
MEDIUM CSRF /src/Api/AdminConsole/Controllers/OrganizationsController.cs: 122
MEDIUM CSRF /src/Api/AdminConsole/Controllers/GroupsController.cs: 107
MEDIUM CSRF /src/Api/AdminConsole/Controllers/GroupsController.cs: 80
MEDIUM CSRF /src/Api/Public/Controllers/CollectionsController.cs: 64
MEDIUM CSRF /src/Api/AdminConsole/Public/Controllers/OrganizationController.cs: 43
MEDIUM CSRF /src/Api/AdminConsole/Public/Controllers/PoliciesController.cs: 42
MEDIUM CSRF /src/Api/AdminConsole/Public/Controllers/PoliciesController.cs: 62
MEDIUM CSRF /src/Api/Auth/Controllers/AccountsController.cs: 469
MEDIUM CSRF /src/Api/Controllers/DevicesController.cs: 73
MEDIUM CSRF /src/Api/Controllers/DevicesController.cs: 60
MEDIUM CSRF /src/Api/Controllers/CollectionsController.cs: 128
MEDIUM CSRF /src/Api/Controllers/CollectionsController.cs: 119
MEDIUM

More results are available on AST platform

shane-melton
shane-melton previously approved these changes Oct 25, 2024
View reviewed changes
Copy link
Member

@shane-melton shane-melton left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Short and sweet, looks good!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@shane-melton shane-melton shane-melton approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@nick-livefront @shane-melton