fix(refactor): [PM-34246] Rename Set Password to Finalize Onboarding - Initial set of renames.

Author: Patrick-Pimentel-Bitwarden

src/Api/Auth/Controllers/AccountsController.cs

@@ -38,8 +38,8 @@ public class AccountsController : Controller
     private readonly IProviderUserRepository _providerUserRepository;
     private readonly IUserService _userService;
     private readonly IPolicyService _policyService;
-    private readonly ISetInitialMasterPasswordCommandV1 _setInitialMasterPasswordCommandV1;
-    private readonly ISetInitialMasterPasswordCommand _setInitialMasterPasswordCommand;
+    private readonly ISetInitialMasterPasswordCommandV1 _finalizeOrgUserOnboardingV1;
+    private readonly IFinalizeOrgUserOnboardingAsync _finalizeOrgUserOnboarding;
     private readonly ITdeSetPasswordCommand _tdeSetPasswordCommand;
     private readonly ITdeOffboardingPasswordCommand _tdeOffboardingPasswordCommand;
     private readonly ITwoFactorIsEnabledQuery _twoFactorIsEnabledQuery;
@@ -55,8 +55,8 @@ public AccountsController(
         IProviderUserRepository providerUserRepository,
         IUserService userService,
         IPolicyService policyService,
-        ISetInitialMasterPasswordCommand setInitialMasterPasswordCommand,
-        ISetInitialMasterPasswordCommandV1 setInitialMasterPasswordCommandV1,
+        IFinalizeOrgUserOnboardingAsync finalizeOrgUserOnboarding,
+        ISetInitialMasterPasswordCommandV1 finalizeOrgUserOnboardingV1,
         ITdeSetPasswordCommand tdeSetPasswordCommand,
         ITdeOffboardingPasswordCommand tdeOffboardingPasswordCommand,
         ITwoFactorIsEnabledQuery twoFactorIsEnabledQuery,
@@ -72,8 +72,8 @@ IUserRepository userRepository
         _providerUserRepository = providerUserRepository;
         _userService = userService;
         _policyService = policyService;
-        _setInitialMasterPasswordCommand = setInitialMasterPasswordCommand;
-        _setInitialMasterPasswordCommandV1 = setInitialMasterPasswordCommandV1;
+        _finalizeOrgUserOnboarding = finalizeOrgUserOnboarding;
+        _finalizeOrgUserOnboardingV1 = finalizeOrgUserOnboardingV1;
         _tdeSetPasswordCommand = tdeSetPasswordCommand;
         _tdeOffboardingPasswordCommand = tdeOffboardingPasswordCommand;
         _twoFactorIsEnabledQuery = twoFactorIsEnabledQuery;
@@ -214,6 +214,7 @@ public async Task PostPassword([FromBody] PasswordRequestModel model)
     }
 
     [HttpPost("set-password")]
+    [HttpPost("finalize-org-user-onboarding")]
     public async Task PostSetPasswordAsync([FromBody] SetInitialPasswordRequestModel model)
     {
         var user = await _userService.GetUserByPrincipalAsync(User);
@@ -230,7 +231,7 @@ public async Task PostSetPasswordAsync([FromBody] SetInitialPasswordRequestModel
             }
             else
             {
-                await _setInitialMasterPasswordCommand.SetInitialMasterPasswordAsync(user, model.ToData());
+                await _finalizeOrgUserOnboarding.FinalizeOrgUserOnboardingAsync(user, model.ToData());
             }
         }
         else
@@ -246,7 +247,7 @@ public async Task PostSetPasswordAsync([FromBody] SetInitialPasswordRequestModel
                 throw new BadRequestException(ModelState);
             }
 
-            var result = await _setInitialMasterPasswordCommandV1.SetInitialMasterPasswordAsync(
+            var result = await _finalizeOrgUserOnboardingV1.FinalizeOrgUserOnboardingAsync(
                 user,
                 model.MasterPasswordHash,
                 model.Key,

…sword/SetInitialMasterPasswordCommand.cs …word/FinalizeOrgUserOnboardingCommand.cssrc/Core/Auth/UserFeatures/UserMasterPassword/SetInitialMasterPasswordCommand.cs renamed to src/Core/Auth/UserFeatures/UserMasterPassword/FinalizeOrgUserOnboardingCommand.cs src/Core/Auth/UserFeatures/UserMasterPassword/SetInitialMasterPasswordCommand.cs renamed to src/Core/Auth/UserFeatures/UserMasterPassword/FinalizeOrgUserOnboardingCommand.cs

@@ -10,7 +10,7 @@
 
 namespace Bit.Core.Auth.UserFeatures.UserMasterPassword;
 
-public class SetInitialMasterPasswordCommand : ISetInitialMasterPasswordCommand
+public class FinalizeOrgUserOnboardingCommand : IFinalizeOrgUserOnboardingAsync
 {
     private readonly IUserService _userService;
     private readonly IUserRepository _userRepository;
@@ -20,7 +20,7 @@ public class SetInitialMasterPasswordCommand : ISetInitialMasterPasswordCommand
     private readonly IPasswordHasher<User> _passwordHasher;
     private readonly IEventService _eventService;
 
-    public SetInitialMasterPasswordCommand(IUserService userService, IUserRepository userRepository,
+    public FinalizeOrgUserOnboardingCommand(IUserService userService, IUserRepository userRepository,
         IAcceptOrgUserCommand acceptOrgUserCommand, IOrganizationUserRepository organizationUserRepository,
         IOrganizationRepository organizationRepository, IPasswordHasher<User> passwordHasher,
         IEventService eventService)
@@ -34,7 +34,7 @@ public SetInitialMasterPasswordCommand(IUserService userService, IUserRepository
         _eventService = eventService;
     }
 
-    public async Task SetInitialMasterPasswordAsync(User user,
+    public async Task FinalizeOrgUserOnboardingAsync(User user,
         SetInitialMasterPasswordDataModel masterPasswordDataModel)
     {
         if (user.Key != null)

src/Core/Auth/UserFeatures/UserMasterPassword/Interfaces/IFinalizeOrgUserOnboardingAsync.cs

@@ -0,0 +1,27 @@
+using Bit.Core.Auth.Models.Data;
+using Bit.Core.Entities;
+using Bit.Core.Exceptions;
+
+namespace Bit.Core.Auth.UserFeatures.UserMasterPassword.Interfaces;
+
+/// <summary>
+/// <para>Finalizes onboarding for an organization user by setting their initial master password and account keys,
+/// then accepting their organization membership.</para>
+/// <para>Applies to organizations configured with Single Sign-On (SSO) and master password decryption,
+/// where just-in-time (JIT) provisioned users are required to establish a master password upon first SSO login.</para>
+/// </summary>
+public interface IFinalizeOrgUserOnboardingAsync
+{
+    /// <summary>
+    /// Sets the initial master password and account keys for the specified user and accepts their pending
+    /// organization membership.
+    /// </summary>
+    /// <param name="user">User to finalize onboarding for. Must not already have a master password set.</param>
+    /// <param name="masterPasswordDataModel">Master password, account keys, and org SSO identifier</param>
+    /// <returns>A task that completes when the operation succeeds</returns>
+    /// <exception cref="BadRequestException">
+    /// Thrown if the user's master password is already set, account keys are missing, the organization
+    /// SSO identifier is invalid, or the user is not a member of the organization.
+    /// </exception>
+    public Task FinalizeOrgUserOnboardingAsync(User user, SetInitialMasterPasswordDataModel masterPasswordDataModel);
+}

src/Core/Auth/UserFeatures/UserMasterPassword/Interfaces/ISetInitialMasterPasswordCommand.cs

@@ -13,9 +13,9 @@ namespace Bit.Core.Auth.UserFeatures.UserMasterPassword.Interfaces;
 /// to ensure their ability to reset other users' accounts.</para>
 /// </summary>
 // TODO removed with https://bitwarden.atlassian.net/browse/PM-27327
-[Obsolete("Use ISetInitialMasterPasswordCommand instead")]
+[Obsolete("Use IFinalizeOrgUserOnboardingAsync instead")]
 public interface ISetInitialMasterPasswordCommandV1
 {
-    public Task<IdentityResult> SetInitialMasterPasswordAsync(User user, string masterPassword, string key,
+    public Task<IdentityResult> FinalizeOrgUserOnboardingAsync(User user, string masterPassword, string key,
         string orgSsoIdentifier);
 }

src/Core/Auth/UserFeatures/UserMasterPassword/Interfaces/ISetInitialMasterPasswordCommandV1.cs

@@ -42,7 +42,7 @@ public SetInitialMasterPasswordCommandV1(
         _organizationRepository = organizationRepository;
     }
 
-    public async Task<IdentityResult> SetInitialMasterPasswordAsync(User user, string masterPassword, string key,
+    public async Task<IdentityResult> FinalizeOrgUserOnboardingAsync(User user, string masterPassword, string key,
         string orgSsoIdentifier)
     {
         if (user == null)

src/Core/Auth/UserFeatures/UserMasterPassword/SetInitialMasterPasswordCommandV1.cs

@@ -52,7 +52,7 @@ public static void AddUserKeyCommands(this IServiceCollection services, IGlobalS
 
     private static void AddUserPasswordCommands(this IServiceCollection services)
     {
-        services.AddScoped<ISetInitialMasterPasswordCommand, SetInitialMasterPasswordCommand>();
+        services.AddScoped<IFinalizeOrgUserOnboardingAsync, FinalizeOrgUserOnboardingCommand>();
         services.AddScoped<ISetInitialMasterPasswordCommandV1, SetInitialMasterPasswordCommandV1>();
         services.AddScoped<ITdeSetPasswordCommand, TdeSetPasswordCommand>();
     }

src/Core/Auth/UserFeatures/UserServiceCollectionExtensions.cs

@@ -34,7 +34,7 @@ public class AccountsControllerTests : IDisposable
     private readonly IUserService _userService;
     private readonly IProviderUserRepository _providerUserRepository;
     private readonly IPolicyService _policyService;
-    private readonly ISetInitialMasterPasswordCommand _setInitialMasterPasswordCommand;
+    private readonly IFinalizeOrgUserOnboardingAsync _finalizeOrgUserOnboarding;
     private readonly ISetInitialMasterPasswordCommandV1 _setInitialMasterPasswordCommandV1;
     private readonly ITwoFactorIsEnabledQuery _twoFactorIsEnabledQuery;
     private readonly ITdeSetPasswordCommand _tdeSetPasswordCommand;
@@ -52,7 +52,7 @@ public AccountsControllerTests()
         _organizationUserRepository = Substitute.For<IOrganizationUserRepository>();
         _providerUserRepository = Substitute.For<IProviderUserRepository>();
         _policyService = Substitute.For<IPolicyService>();
-        _setInitialMasterPasswordCommand = Substitute.For<ISetInitialMasterPasswordCommand>();
+        _finalizeOrgUserOnboarding = Substitute.For<IFinalizeOrgUserOnboardingAsync>();
         _setInitialMasterPasswordCommandV1 = Substitute.For<ISetInitialMasterPasswordCommandV1>();
         _twoFactorIsEnabledQuery = Substitute.For<ITwoFactorIsEnabledQuery>();
         _tdeSetPasswordCommand = Substitute.For<ITdeSetPasswordCommand>();
@@ -69,7 +69,7 @@ public AccountsControllerTests()
             _providerUserRepository,
             _userService,
             _policyService,
-            _setInitialMasterPasswordCommand,
+            _finalizeOrgUserOnboarding,
             _setInitialMasterPasswordCommandV1,
             _tdeSetPasswordCommand,
             _tdeOffboardingPasswordCommand,
@@ -426,7 +426,7 @@ public async Task PostSetPasswordAsync_V1_WhenUserExistsAndSettingPasswordSuccee
         }
 
         _userService.GetUserByPrincipalAsync(Arg.Any<ClaimsPrincipal>()).Returns(Task.FromResult(user));
-        _setInitialMasterPasswordCommandV1.SetInitialMasterPasswordAsync(
+        _setInitialMasterPasswordCommandV1.FinalizeOrgUserOnboardingAsync(
                 user,
                 setInitialPasswordRequestModel.MasterPasswordHash,
                 setInitialPasswordRequestModel.Key,
@@ -439,7 +439,7 @@ public async Task PostSetPasswordAsync_V1_WhenUserExistsAndSettingPasswordSuccee
             await _sut.PostSetPasswordAsync(setInitialPasswordRequestModel);
             // Assert
             await _setInitialMasterPasswordCommandV1.Received(1)
-                .SetInitialMasterPasswordAsync(
+                .FinalizeOrgUserOnboardingAsync(
                     Arg.Is<User>(u => u == user),
                     Arg.Is<string>(s => s == setInitialPasswordRequestModel.MasterPasswordHash),
                     Arg.Is<string>(s => s == setInitialPasswordRequestModel.Key),
@@ -484,7 +484,7 @@ public async Task PostSetPasswordAsync_V1_WhenUserExistsAndHasKeysAndKeysAreUpda
         };
 
         _userService.GetUserByPrincipalAsync(Arg.Any<ClaimsPrincipal>()).Returns(Task.FromResult(user));
-        _setInitialMasterPasswordCommandV1.SetInitialMasterPasswordAsync(
+        _setInitialMasterPasswordCommandV1.FinalizeOrgUserOnboardingAsync(
                 user,
                 setInitialPasswordRequestModel.MasterPasswordHash,
                 setInitialPasswordRequestModel.Key,
@@ -520,7 +520,7 @@ public async Task PostSetPasswordAsync_V1_WhenSettingPasswordFails_ShouldThrowBa
         model.Keys = null;
         // Arrange
         _userService.GetUserByPrincipalAsync(Arg.Any<ClaimsPrincipal>()).Returns(Task.FromResult(user));
-        _setInitialMasterPasswordCommandV1.SetInitialMasterPasswordAsync(Arg.Any<User>(), Arg.Any<string>(), Arg.Any<string>(), Arg.Any<string>())
+        _setInitialMasterPasswordCommandV1.FinalizeOrgUserOnboardingAsync(Arg.Any<User>(), Arg.Any<string>(), Arg.Any<string>(), Arg.Any<string>())
             .Returns(Task.FromResult(IdentityResult.Failed(new IdentityError { Description = "Some Error" })));
 
         // Act & Assert
@@ -870,15 +870,15 @@ public async Task PostSetPasswordAsync_V2_WhenUserExistsAndSettingPasswordSuccee
         // Arrange
         UpdateSetInitialPasswordRequestModelToV2(setInitialPasswordRequestModel);
         _userService.GetUserByPrincipalAsync(Arg.Any<ClaimsPrincipal>()).Returns(Task.FromResult(user));
-        _setInitialMasterPasswordCommand.SetInitialMasterPasswordAsync(user, Arg.Any<SetInitialMasterPasswordDataModel>())
+        _finalizeOrgUserOnboarding.FinalizeOrgUserOnboardingAsync(user, Arg.Any<SetInitialMasterPasswordDataModel>())
             .Returns(Task.CompletedTask);
 
         // Act
         await _sut.PostSetPasswordAsync(setInitialPasswordRequestModel);
 
         // Assert
-        await _setInitialMasterPasswordCommand.Received(1)
-            .SetInitialMasterPasswordAsync(
+        await _finalizeOrgUserOnboarding.Received(1)
+            .FinalizeOrgUserOnboardingAsync(
                 Arg.Is<User>(u => u == user),
                 Arg.Is<SetInitialMasterPasswordDataModel>(d =>
                     d.MasterPasswordAuthentication != null &&
@@ -935,7 +935,7 @@ public async Task PostSetPasswordAsync_V2_WhenSettingPasswordFails_ShouldThrowEx
         // Arrange
         UpdateSetInitialPasswordRequestModelToV2(setInitialPasswordRequestModel);
         _userService.GetUserByPrincipalAsync(Arg.Any<ClaimsPrincipal>()).Returns(Task.FromResult(user));
-        _setInitialMasterPasswordCommand.SetInitialMasterPasswordAsync(user, Arg.Any<SetInitialMasterPasswordDataModel>())
+        _finalizeOrgUserOnboarding.FinalizeOrgUserOnboardingAsync(user, Arg.Any<SetInitialMasterPasswordDataModel>())
             .Returns(Task.FromException(new Exception("Setting password failed")));
 
         // Act & Assert