[SM-999] Add Bulk Move to Project Endpoint

[lizard-boy]

Type of change

- [ ] Bug fix
- [x] New feature development
- [ ] Tech debt (refactoring, code cleanup, dependency upgrades, etc)
- [ ] Build/deploy pipeline (DevOps)
- [ ] Other

Objective

Add new endpoint for updating the projects of many secrets to the same project.

Clients PR: bitwarden/clients#6665

Code changes

• bitwarden_license/src/Commercial.Infrastructure.EntityFramework/SecretsManager/Repositories/SecretRepository.cs: This interacts with the virtual table ProjectSecret to avoid making large changes in the code base or to make this update one row at a time. It deletes all current relationships for the given secrets and then creates new relationships for them based on the supplied project ids.
• src/Api/SecretsManager/Controllers/SecretsController.cs: Controller method for validating that the current user has the permissions to do the specified action.

Before you submit

• Please check for formatting errors (dotnet format --verify-no-changes) (required)
• If making database changes - make sure you also update Entity Framework queries and/or migrations
• Please add unit tests where it makes sense to do so (encouraged but not required)
• If this change requires a documentation update - notify the documentation team
• If this change has particular deployment requirements - notify the DevOps team

Greptile Summary

This pull request adds a new endpoint for bulk moving secrets to a project in the Secrets Manager, including necessary authorization, command implementation, and unit tests.

• Added BulkMoveToProjectAsync method in SecretsController.cs to handle the new bulk move endpoint
• Implemented MoveSecretsCommand and BulkSecretAuthorizationHandler for executing and authorizing bulk secret operations
• Created ProjectSecret entity to represent many-to-many relationships between projects and secrets
• Added new methods AccessToSecretsAsync and MoveSecretsAsync to ISecretRepository interface and implementations
• Created empty migration files for MySQL, PostgreSQL, and SQLite that need to be properly implemented

[greptile-apps]

_{26 file(s) reviewed, 24 comment(s)
Edit PR Review Bot Settings | Greptile}

[greptile-apps]

style: Consider using FirstOrDefault() instead of ToArray() for better performance when only checking for a single group.

[greptile-apps]

style: This could potentially be a performance bottleneck for large numbers of secrets. Consider implementing a batch operation in the repository.

[greptile-apps]

logic: Ensure that secretAccesses contains an entry for every secret, otherwise this check might pass incorrectly.

[greptile-apps]

logic: This operation deletes all existing project-secret relationships. Ensure this is the intended behavior, as it may have unintended consequences

[greptile-apps]

style: Use 'using' instead of 'await using' for consistency with other methods

[greptile-apps]

logic: Cascade delete behavior for ProjectSecret relationships may cause unintended data loss if not carefully managed

[greptile-apps]

logic: Up method is empty. Implement table creation, indexes, and foreign keys for ProjectSecret entity.

[greptile-apps]

logic: Down method is empty. Implement logic to revert changes made in Up method.

[greptile-apps]

logic: The Up method is empty. It should create the ProjectSecret table with appropriate columns.

[greptile-apps]

logic: The Down method is empty. It should drop the ProjectSecret table to revert the migration.