Skip to content

[PM-32187] Add Send Type restriction to Send Controls policy#7504

Open
mcamirault wants to merge 63 commits into
mainfrom
tools/pm-32187/restrict-send-type-policy
Open

[PM-32187] Add Send Type restriction to Send Controls policy#7504
mcamirault wants to merge 63 commits into
mainfrom
tools/pm-32187/restrict-send-type-policy

Conversation

@mcamirault

@mcamirault mcamirault commented Apr 20, 2026

Copy link
Copy Markdown
Contributor

🎟️ Tracking

https://bitwarden.atlassian.net/browse/PM-32187

📔 Objective

This PR adds a field to the Send Controls policy that can be used to restrict which types of Sends can be created

📸 Screenshots

N/A

harr1424 and others added 30 commits March 1, 2026 18:13
@harr1424
initial send controls
2bb7c17
@harr1424
update vNext methods and add test coverage for policy validators
6f51c42
@harr1424
Merge branch 'main' into tools/PM-31885-SendControls-Policy
94b7025
@harr1424
Merge remote-tracking branch 'origin/main' into tools/PM-31885-SendCo…
7c4c042 
…ntrols-Policy

merge main
@harr1424
add comments to tests
bcc2960
@harr1424
Merge branch 'main' into tools/PM-31885-SendControls-Policy
1f7caf8
@harr1424 @mkincaid-bw
Apply suggestion from @mkincaid-bw
d52424c 
• `IX_Policy_OrganizationId_Type` is a unique index

Co-authored-by: mkincaid-bw <mkincaid@bitwarden.com>
@harr1424
renamne migrations for correct sorting
235d832
@harr1424
Merge branch 'tools/PM-31885-SendControls-Policy' of github.com:bitwa…
e6bf8e6 
…rden/server into tools/PM-31885-SendControls-Policy

merge suggested changes to migration
@harr1424
Merge branch 'main' into tools/PM-31885-SendControls-Policy
b0af868
@harr1424
respond to csharp related review comments
4a0728c
@harr1424
fix failing lints
16cffeb
@harr1424
fix tests
ea8527e
@harr1424
revise policy sync logic
783b426
@harr1424
revise policy event logic and tests
f8bbfa0
@harr1424
Merge branch 'main' into tools/PM-31885-SendControls-Policy
5022841
@harr1424
Merge branch 'tools/PM-31885-SendControls-Policy' of github.com:bitwa…
9b1b7e7 
…rden/server into tools/PM-31885-SendControls-Policy

merge main
@harr1424
add integration tests
a6ea853 
- fix SQL syntax error
- escape Sqlite format specifier
- update migration IDs to match sorted filename
- fix SQL syntax error
@harr1424
Merge branch 'main' into tools/PM-31885-SendControls-Policy
e6c1f11
@harr1424
OR legacy policy data with SendControls policy data
ac6710d
@harr1424
Merge branch 'main' into tools/PM-31885-SendControls-Policy
c739d52
@harr1424
remove migrations and associated integration test
8bc9f7d
@harr1424
Merge branch 'main' into tools/PM-31885-SendControls-Policy
26baa10
@harr1424
whitespacing and comment correction
b544964
@harr1424
aggregate kegacy Send policies in PolicyQuery and adjust PoliciesCont…
50fdaf2 
…roller logic
@harr1424
add comments to simplify post-migration cleanup
84d0cd1
@harr1424
consolidate legacy Send policy synthesis from PoliciesController into…
f27e358 
… PolicyQuery.GetAllAsync
@harr1424
respond to review comments and other minor fixes
1f54881
@harr1424
Merge branch 'main' into tools/PM-31885-SendControls-Policy
f779c2f
@mcamirault
[PM-31884] Add Send control policy access control fields
d3cf561
@mcamirault mcamirault changed the base branch from tools/pm-31884/send-access-controls-policy to main May 15, 2026 14:14
@mcamirault mcamirault dismissed sven-bitwarden’s stale review May 15, 2026 14:14

The base branch was changed.

@mcamirault mcamirault marked this pull request as ready for review May 15, 2026 14:18
mkincaid-bw
mkincaid-bw requested changes May 19, 2026
View reviewed changes

@mkincaid-bw mkincaid-bw left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Minor changes requested.

Comment thread src/Sql/dbo/Tools/Stored Procedures/Send_ReadIdsByOrganizationId.sql Outdated
Comment thread src/Sql/dbo/Tools/Stored Procedures/Send_ReadIdsByOrganizationId.sql Outdated
Comment thread src/Sql/dbo/Tools/Stored Procedures/Send_ReadIdsByOrganizationId.sql Outdated
Comment thread src/Sql/dbo/Tools/Stored Procedures/Send_ReadIdsByOrganizationId.sql Outdated
Comment thread src/Sql/dbo/Tools/Stored Procedures/Send_UpdateDisabledByIds.sql Outdated
claude[bot]
claude Bot reviewed Jun 22, 2026
View reviewed changes
Comment thread ...minConsole/OrganizationFeatures/Policies/PolicyRequirements/SendControlsPolicyRequirement.cs Outdated
claude[bot]
claude Bot reviewed Jun 22, 2026
View reviewed changes
Comment thread util/Migrator/DbScripts/2026-05-15_00_SendAccessControlPolicyProcs.sql Outdated
claude[bot]
claude Bot reviewed Jun 22, 2026
View reviewed changes
Comment thread src/Sql/dbo/Tools/Stored Procedures/Send_ReadIdsByOrganizationId.sql
claude[bot]
claude Bot reviewed Jun 22, 2026
View reviewed changes
Comment thread src/Core/Tools/SendFeatures/Services/SendValidationService.cs
Comment on lines +107 to +110
if (sendControlsRequirement.AllowedSendTypes != null && !sendControlsRequirement.AllowedSendTypes.Contains(send.Type))
{
throw new BadRequestException($"Due to an Enterprise policy your Sends must be of the following types: {string.Join(", ", sendControlsRequirement.AllowedSendTypes.Select(st => st == SendType.Text ? "Text" : st == SendType.File ? "File" : "Unknown"))}");
}

@claude claude Bot Jun 22, 2026

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

♻️ DEBT: New AllowedSendTypes creation-time guard has no unit test.

Details

This branch is the bypass-resistant server-side enforcement (the CLI skips front-end checks), so it is the most important path to cover. The sync handler's equivalent logic got a test in this PR (SendControlsSyncPolicyEventTests), but SendValidationServiceTests.cs has no case asserting that a disallowed send.Type throws and an allowed one passes.

Project convention (CLAUDE.md): "ALWAYS add unit tests (with mocking) for any new feature development." Suggest adding a ValidateUserCanSaveAsync_WhenSendTypeRestrictedByPolicy test mirroring the existing domain/auth cases.

@mcamirault

mcamirault commented Jun 22, 2026

Copy link
Copy Markdown
Contributor Author

@mkincaid-bw The procedure most of your comments were on was introduced in a different PR (for PM-31884), so I've added an update script to fix the procedure here

@sonarqubecloud

sonarqubecloud Bot commented Jun 22, 2026

Copy link
Copy Markdown

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

harr1424
harr1424 approved these changes Jun 22, 2026
View reviewed changes
Comment thread test/Infrastructure.IntegrationTest/packages.lock.json

@harr1424 harr1424 Jun 22, 2026

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I am not certain if this file should be checked in

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@claude claude[bot] claude[bot] left review comments

@harr1424 harr1424 harr1424 approved these changes

@mkincaid-bw mkincaid-bw Awaiting requested review from mkincaid-bw

@sven-bitwarden sven-bitwarden Awaiting requested review from sven-bitwarden

Requested changes must be addressed to merge this pull request.

Assignees

No one assigned

Labels

ai-review Request a Claude code review

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@mcamirault @harr1424 @mkincaid-bw @sven-bitwarden