Skip to content

Commit

Permalink
PM-15091 Add Feature Flag to DB called UseRiskInsights (#5088)
Browse files Browse the repository at this point in the history 
Add a new column called UseRiskInsights to `dbo.Organization`
  • Loading branch information
@voommen-livefront
voommen-livefront authored Dec 5, 2024
1 parent f471fff commit 1f1510f
Show file tree
Hide file tree
Showing 32 changed files with 9,467 additions and 12 deletions.
1 change: 1 addition & 0 deletions src/Admin/AdminConsole/Controllers/OrganizationsController.cs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -448,6 +448,7 @@ private void UpdateOrganization(Organization organization, OrganizationEditModel
organization.UseTotp = model.UseTotp;
organization.UsersGetPremium = model.UsersGetPremium;
organization.UseSecretsManager = model.UseSecretsManager;
organization.UseRiskInsights = model.UseRiskInsights;

//secrets
organization.SmSeats = model.SmSeats;
Expand Down
4 changes: 4 additions & 0 deletions src/Admin/AdminConsole/Models/OrganizationEditModel.cs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -80,6 +80,7 @@ public OrganizationEditModel(
Use2fa = org.Use2fa;
UseApi = org.UseApi;
UseSecretsManager = org.UseSecretsManager;
UseRiskInsights = org.UseRiskInsights;
UseResetPassword = org.UseResetPassword;
SelfHost = org.SelfHost;
UsersGetPremium = org.UsersGetPremium;
Expand Down Expand Up @@ -144,6 +145,8 @@ public OrganizationEditModel(
public bool UseScim { get; set; }
[Display(Name = "Secrets Manager")]
public new bool UseSecretsManager { get; set; }
[Display(Name = "Risk Insights")]
public new bool UseRiskInsights { get; set; }
[Display(Name = "Self Host")]
public bool SelfHost { get; set; }
[Display(Name = "Users Get Premium")]
Expand Down Expand Up @@ -284,6 +287,7 @@ public Organization ToOrganization(Organization existingOrganization)
existingOrganization.Use2fa = Use2fa;
existingOrganization.UseApi = UseApi;
existingOrganization.UseSecretsManager = UseSecretsManager;
existingOrganization.UseRiskInsights = UseRiskInsights;
existingOrganization.UseResetPassword = UseResetPassword;
existingOrganization.SelfHost = SelfHost;
existingOrganization.UsersGetPremium = UsersGetPremium;
Expand Down
1 change: 1 addition & 0 deletions src/Admin/AdminConsole/Models/OrganizationViewModel.cs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -69,4 +69,5 @@ public OrganizationViewModel(Organization org, Provider provider, IEnumerable<Or
public int ServiceAccountsCount { get; set; }
public int OccupiedSmSeatsCount { get; set; }
public bool UseSecretsManager => Organization.UseSecretsManager;
public bool UseRiskInsights => Organization.UseRiskInsights;
}
13 changes: 10 additions & 3 deletions src/Admin/AdminConsole/Views/Shared/_OrganizationForm.cshtml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -94,7 +94,7 @@
</div>
</div>
<h2>Features</h2>
<div class="row mb-3">
<div class="row mb-4">
<div class="col-4">
<h3>General</h3>
<div class="form-check mb-2">
Expand Down Expand Up @@ -146,7 +146,7 @@
<label class="form-check-label" asp-for="UseCustomPermissions"></label>
</div>
</div>
<div class="col-4">
<div class="col-3">
<h3>Password Manager</h3>
<div class="form-check">
<input type="checkbox" class="form-check-input" asp-for="UseTotp" disabled='@(canEditPlan ? null : "disabled")'>
Expand All @@ -157,13 +157,20 @@
<label class="form-check-label" asp-for="UsersGetPremium"></label>
</div>
</div>
<div class="col-4">
<div class="col-3">
<h3>Secrets Manager</h3>
<div class="form-check">
<input type="checkbox" class="form-check-input" asp-for="UseSecretsManager" disabled='@(canEditPlan ? null : "disabled")'>
<label class="form-check-label" asp-for="UseSecretsManager"></label>
</div>
</div>
<div class="col-2">
<h3>Access Insights</h3>
<div class="form-check">
<input type="checkbox" class="form-check-input" asp-for="UseRiskInsights" disabled='@(canEditPlan ? null : "disabled")'>
<label class="form-check-label" asp-for="UseRiskInsights"></label>
</div>
</div>
</div>
}

Expand Down
2 changes: 2 additions & 0 deletions src/Api/AdminConsole/Models/Response/Organizations/OrganizationResponseModel.cs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -60,6 +60,7 @@ public OrganizationResponseModel(Organization organization, string obj = "organi
// Deprecated: https://bitwarden.atlassian.net/browse/PM-10863
LimitCollectionCreationDeletion = organization.LimitCollectionCreationDeletion;
AllowAdminAccessToAllCollectionItems = organization.AllowAdminAccessToAllCollectionItems;
UseRiskInsights = organization.UseRiskInsights;
}

public Guid Id { get; set; }
Expand Down Expand Up @@ -106,6 +107,7 @@ public OrganizationResponseModel(Organization organization, string obj = "organi
// Deperectated: https://bitwarden.atlassian.net/browse/PM-10863
public bool LimitCollectionCreationDeletion { get; set; }
public bool AllowAdminAccessToAllCollectionItems { get; set; }
public bool UseRiskInsights { get; set; }
}

public class OrganizationSubscriptionResponseModel : OrganizationResponseModel
Expand Down
2 changes: 2 additions & 0 deletions src/Api/AdminConsole/Models/Response/ProfileOrganizationResponseModel.cs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -71,6 +71,7 @@ public ProfileOrganizationResponseModel(
LimitCollectionCreationDeletion = organization.LimitCollectionCreationDeletion;
AllowAdminAccessToAllCollectionItems = organization.AllowAdminAccessToAllCollectionItems;
UserIsManagedByOrganization = organizationIdsManagingUser.Contains(organization.OrganizationId);
UseRiskInsights = organization.UseRiskInsights;

if (organization.SsoConfig != null)
{
Expand Down Expand Up @@ -143,4 +144,5 @@ public ProfileOrganizationResponseModel(
/// False if the Account Deprovisioning feature flag is disabled.
/// </returns>
public bool UserIsManagedByOrganization { get; set; }
public bool UseRiskInsights { get; set; }
}
1 change: 1 addition & 0 deletions src/Api/AdminConsole/Models/Response/ProfileProviderOrganizationResponseModel.cs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -49,5 +49,6 @@ public ProfileProviderOrganizationResponseModel(ProviderUserOrganizationDetails
// https://bitwarden.atlassian.net/browse/PM-10863
LimitCollectionCreationDeletion = organization.LimitCollectionCreationDeletion;
AllowAdminAccessToAllCollectionItems = organization.AllowAdminAccessToAllCollectionItems;
UseRiskInsights = organization.UseRiskInsights;
}
}
5 changes: 5 additions & 0 deletions src/Core/AdminConsole/Entities/Organization.cs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -115,6 +115,11 @@ public bool LimitCollectionCreationDeletion
/// </summary>
public bool AllowAdminAccessToAllCollectionItems { get; set; }

/// <summary>
/// Risk Insights is a reporting feature that provides insights into the security of an organization's vault.
/// </summary>
public bool UseRiskInsights { get; set; }

public void SetNewId()
{
if (Id == default(Guid))
Expand Down
2 changes: 2 additions & 0 deletions src/Core/AdminConsole/Models/Data/Organizations/OrganizationAbility.cs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -26,6 +26,7 @@ public OrganizationAbility(Organization organization)
// Deprecated: https://bitwarden.atlassian.net/browse/PM-10863
LimitCollectionCreationDeletion = organization.LimitCollectionCreationDeletion;
AllowAdminAccessToAllCollectionItems = organization.AllowAdminAccessToAllCollectionItems;
UseRiskInsights = organization.UseRiskInsights;
}

public Guid Id { get; set; }
Expand All @@ -45,4 +46,5 @@ public OrganizationAbility(Organization organization)
// Deprecated: https://bitwarden.atlassian.net/browse/PM-10863
public bool LimitCollectionCreationDeletion { get; set; }
public bool AllowAdminAccessToAllCollectionItems { get; set; }
public bool UseRiskInsights { get; set; }
}
1 change: 1 addition & 0 deletions ...onsole/Models/Data/Organizations/OrganizationUsers/OrganizationUserOrganizationDetails.cs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -59,4 +59,5 @@ public class OrganizationUserOrganizationDetails
// Deprecated: https://bitwarden.atlassian.net/browse/PM-10863
public bool LimitCollectionCreationDeletion { get; set; }
public bool AllowAdminAccessToAllCollectionItems { get; set; }
public bool UseRiskInsights { get; set; }
}
1 change: 1 addition & 0 deletions src/Core/AdminConsole/Models/Data/Provider/ProviderUserOrganizationDetails.cs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -44,4 +44,5 @@ public class ProviderUserOrganizationDetails
public bool LimitCollectionDeletion { get; set; }
public bool LimitCollectionCreationDeletion { get; set; }
public bool AllowAdminAccessToAllCollectionItems { get; set; }
public bool UseRiskInsights { get; set; }
}
3 changes: 2 additions & 1 deletion src/Infrastructure.EntityFramework/AdminConsole/Repositories/OrganizationRepository.cs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -103,7 +103,8 @@ public async Task<ICollection<OrganizationAbility>> GetManyAbilitiesAsync()
LimitCollectionDeletion = e.LimitCollectionDeletion,
// Deprecated: https://bitwarden.atlassian.net/browse/PM-10863
LimitCollectionCreationDeletion = e.LimitCollectionCreationDeletion,
AllowAdminAccessToAllCollectionItems = e.AllowAdminAccessToAllCollectionItems
AllowAdminAccessToAllCollectionItems = e.AllowAdminAccessToAllCollectionItems,
UseRiskInsights = e.UseRiskInsights,
}).ToListAsync();
}
}
Expand Down
1 change: 1 addition & 0 deletions ...amework/AdminConsole/Repositories/Queries/OrganizationUserOrganizationDetailsViewQuery.cs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -71,6 +71,7 @@ from os in os_g.DefaultIfEmpty()
// Deprecated: https://bitwarden.atlassian.net/browse/PM-10863
LimitCollectionCreationDeletion = o.LimitCollectionCreationDeletion,
AllowAdminAccessToAllCollectionItems = o.AllowAdminAccessToAllCollectionItems,
UseRiskInsights = o.UseRiskInsights,
};
return query;
}
Expand Down
1 change: 1 addition & 0 deletions ...tyFramework/AdminConsole/Repositories/Queries/ProviderUserOrganizationDetailsViewQuery.cs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -49,6 +49,7 @@ join p in dbContext.Providers on pu.ProviderId equals p.Id
// Deprecated: https://bitwarden.atlassian.net/browse/PM-10863
LimitCollectionCreationDeletion = x.o.LimitCollectionCreationDeletion,
AllowAdminAccessToAllCollectionItems = x.o.AllowAdminAccessToAllCollectionItems,
UseRiskInsights = x.o.UseRiskInsights,
});
}
}
9 changes: 6 additions & 3 deletions src/Sql/dbo/Stored Procedures/Organization_Create.sql
View file
Original file line number Diff line number Diff line change
Expand Up @@ -54,7 +54,8 @@ CREATE PROCEDURE [dbo].[Organization_Create]
@LimitCollectionCreationDeletion BIT = NULL, -- Deprecated https://bitwarden.atlassian.net/browse/PM-10863
@LimitCollectionCreation BIT = NULL,
@LimitCollectionDeletion BIT = NULL,
@AllowAdminAccessToAllCollectionItems BIT = 0
@AllowAdminAccessToAllCollectionItems BIT = 0,
@UseRiskInsights BIT = 0
AS
BEGIN
SET NOCOUNT ON
Expand Down Expand Up @@ -119,7 +120,8 @@ BEGIN
[LimitCollectionCreationDeletion], -- Deprecated https://bitwarden.atlassian.net/browse/PM-10863
[LimitCollectionCreation],
[LimitCollectionDeletion],
[AllowAdminAccessToAllCollectionItems]
[AllowAdminAccessToAllCollectionItems],
[UseRiskInsights]
)
VALUES
(
Expand Down Expand Up @@ -178,6 +180,7 @@ BEGIN
COALESCE(@LimitCollectionCreation, @LimitCollectionDeletion, 0), -- Deprecated https://bitwarden.atlassian.net/browse/PM-10863)
@LimitCollectionCreation,
@LimitCollectionDeletion,
@AllowAdminAccessToAllCollectionItems
@AllowAdminAccessToAllCollectionItems,
@UseRiskInsights
)
END
3 changes: 2 additions & 1 deletion src/Sql/dbo/Stored Procedures/Organization_ReadAbilities.sql
View file
Original file line number Diff line number Diff line change
Expand Up @@ -24,7 +24,8 @@ BEGIN
[LimitCollectionCreationDeletion], -- Deprecated https://bitwarden.atlassian.net/browse/PM-10863
[LimitCollectionCreation],
[LimitCollectionDeletion],
[AllowAdminAccessToAllCollectionItems]
[AllowAdminAccessToAllCollectionItems],
[UseRiskInsights]
FROM
[dbo].[Organization]
END
6 changes: 4 additions & 2 deletions src/Sql/dbo/Stored Procedures/Organization_Update.sql
View file
Original file line number Diff line number Diff line change
Expand Up @@ -54,7 +54,8 @@ CREATE PROCEDURE [dbo].[Organization_Update]
@LimitCollectionCreationDeletion BIT = null, -- Deprecated https://bitwarden.atlassian.net/browse/PM-10863
@LimitCollectionCreation BIT = null,
@LimitCollectionDeletion BIT = null,
@AllowAdminAccessToAllCollectionItems BIT = 0
@AllowAdminAccessToAllCollectionItems BIT = 0,
@UseRiskInsights BIT = 0
AS
BEGIN
SET NOCOUNT ON
Expand Down Expand Up @@ -119,7 +120,8 @@ BEGIN
[LimitCollectionCreationDeletion] = COALESCE(@LimitCollectionCreation, @LimitCollectionDeletion, 0),
[LimitCollectionCreation] = @LimitCollectionCreation,
[LimitCollectionDeletion] = @LimitCollectionDeletion,
[AllowAdminAccessToAllCollectionItems] = @AllowAdminAccessToAllCollectionItems
[AllowAdminAccessToAllCollectionItems] = @AllowAdminAccessToAllCollectionItems,
[UseRiskInsights] = @UseRiskInsights
WHERE
[Id] = @Id
END
1 change: 1 addition & 0 deletions src/Sql/dbo/Tables/Organization.sql
View file
Original file line number Diff line number Diff line change
Expand Up @@ -55,6 +55,7 @@ CREATE TABLE [dbo].[Organization] (
[LimitCollectionCreation] BIT NOT NULL CONSTRAINT [DF_Organization_LimitCollectionCreation] DEFAULT (0),
[LimitCollectionDeletion] BIT NOT NULL CONSTRAINT [DF_Organization_LimitCollectionDeletion] DEFAULT (0),
[AllowAdminAccessToAllCollectionItems] BIT NOT NULL CONSTRAINT [DF_Organization_AllowAdminAccessToAllCollectionItems] DEFAULT (0),
[UseRiskInsights] BIT NOT NULL CONSTRAINT [DF_Organization_UseRiskInsights] DEFAULT (0),
CONSTRAINT [PK_Organization] PRIMARY KEY CLUSTERED ([Id] ASC)
);

Expand Down
3 changes: 2 additions & 1 deletion src/Sql/dbo/Views/OrganizationUserOrganizationDetailsView.sql
View file
Original file line number Diff line number Diff line change
Expand Up @@ -49,7 +49,8 @@ SELECT
O.[LimitCollectionCreationDeletion], -- Deprecated https://bitwarden.atlassian.net/browse/PM-10863
O.[LimitCollectionCreation],
O.[LimitCollectionDeletion],
O.[AllowAdminAccessToAllCollectionItems]
O.[AllowAdminAccessToAllCollectionItems],
O.[UseRiskInsights]
FROM
[dbo].[OrganizationUser] OU
LEFT JOIN
Expand Down
3 changes: 2 additions & 1 deletion src/Sql/dbo/Views/ProviderUserProviderOrganizationDetailsView.sql
View file
Original file line number Diff line number Diff line change
Expand Up @@ -35,7 +35,8 @@ SELECT
O.[LimitCollectionCreationDeletion], -- Deprecated https://bitwarden.atlassian.net/browse/PM-10863
O.[LimitCollectionCreation],
O.[LimitCollectionDeletion],
O.[AllowAdminAccessToAllCollectionItems]
O.[AllowAdminAccessToAllCollectionItems],
O.[UseRiskInsights]
FROM
[dbo].[ProviderUser] PU
INNER JOIN
Expand Down
1 change: 1 addition & 0 deletions ...frastructure.IntegrationTest/AdminConsole/Repositories/OrganizationUserRepositoryTests.cs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -258,6 +258,7 @@ public async Task GetManyDetailsByUserAsync_Works(IUserRepository userRepository
// Deprecated: https://bitwarden.atlassian.net/browse/PM-10863
Assert.Equal(organization.LimitCollectionCreationDeletion, result.LimitCollectionCreationDeletion);
Assert.Equal(organization.AllowAdminAccessToAllCollectionItems, result.AllowAdminAccessToAllCollectionItems);
Assert.Equal(organization.UseRiskInsights, result.UseRiskInsights);
}

[DatabaseTheory, DatabaseData]
Expand Down
Loading

0 comments on commit 1f1510f

Please sign in to comment.