[PM-29129] Add Policy Update Event README by JimmyVo16 · Pull Request #7159 · bitwarden/server

JimmyVo16 · 2026-03-05T16:27:08Z

🎟️ Tracking

https://bitwarden.atlassian.net/browse/PM-29129

📔 Objective

Add README so devs and AI can easily implement new handlers to hook into Policy Update Events.

📸 Screenshots

No code changes, just a markdown file.

github-actions · 2026-03-05T21:13:27Z

Checkmarx One – Scan Summary & Details – ad26a942-c097-4bd4-85f2-3cd705f6ac88

New Issues (3)

Checkmarx found the following issues in this Pull Request

#	Issue	Source File / Package	Checkmarx Insight
1	CSRF	/src/Api/Auth/Controllers/AccountsController.cs: 217	details Method at line 217 of /src/Api/Auth/Controllers/AccountsController.cs gets a parameter from a user request from model. This parameter value flow... Attack Vector
2	CSRF	/src/Api/Auth/Controllers/AccountsController.cs: 291	details Method at line 291 of /src/Api/Auth/Controllers/AccountsController.cs gets a parameter from a user request from model. This parameter value flow... Attack Vector
3	CSRF	/src/Api/Auth/Controllers/AccountsController.cs: 452	details Method at line 452 of /src/Api/Auth/Controllers/AccountsController.cs gets a parameter from a user request from model. This parameter value flow... Attack Vector

Fixed Issues (4)

Great job! The following issues were fixed in this Pull Request

Severity	Issue	Source File / Package
	~~CSRF~~	/src/Api/KeyManagement/Controllers/AccountsKeyManagementController.cs: 146
	~~CSRF~~	/src/Api/AdminConsole/Controllers/OrganizationUsersController.cs: 531
	~~CSRF~~	/src/Api/KeyManagement/Controllers/AccountsKeyManagementController.cs: 105
	~~Use_Of_Hardcoded_Password~~	/src/Core/Constants.cs: 171

codecov · 2026-03-05T21:25:25Z

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 56.88%. Comparing base (3cf94a9) to head (5d18fa7).
⚠️ Report is 84 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main    #7159   +/-   ##
=======================================
  Coverage   56.88%   56.88%           
=======================================
  Files        2028     2028           
  Lines       88830    88830           
  Branches     7918     7918           
=======================================
+ Hits        50532    50533    +1     
+ Misses      36468    36467    -1     
  Partials     1830     1830

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

eliykat

Thanks for coming back to this!

eliykat · 2026-03-07T04:58:53Z

+## Limitations
+
+1. We don't have a way to keep this whole process idempotent, so if there is an exception at any point that is not being handled, the state will stay where the process failed.
+
+
+


Section appears to be unfinished? Also, this is a good callout, but I think it's more about it not being atomic than idempotent. A failure does not roll back any changes already made.

Good catch. Also, this is completed. This is the only issue I'm aware of. I'm happy to add more if you know of anything else. I used a bullet list so we can easily add new ones.

I think it should only be a list if there is more than 1 item. For now it should just be a single paragraph.

…teEvents/README.md Co-authored-by: Thomas Rittson <31796059+eliykat@users.noreply.github.com>

sonarqubecloud · 2026-03-09T15:30:23Z

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

eliykat · 2026-03-10T23:29:34Z

+When an organization policy is created or updated, the save workflow runs a series of ordered steps. A policy handler can hook into any step by implementing the corresponding Policy Update Event interface.

-Note: If you don’t want to hook into these events, you don’t need to create a handler, and your policy will simply upsert to the database with log events.
+Note: If you do not need to hook into any step, you do not need to create a policy handler. The policy will simply upsert to the database with an audit log event.


Non-blocking: I misspoke before. Contractions (e.g. "don't") are OK, abbreviations (e.g. "org" instead of "organization") should be minimized.

eliykat · 2026-03-11T00:07:44Z

+
+Typical uses: creating collections, sending notifications that depend on the new policy state.
+
+Note: This is more useful for enabling a policy than for disabling a policy, since when the policy is disabled, there is no easy way to find the users the policy should be enforced on.


OK good point, I see now. Maybe something like this?

Note: This is more useful for enabling a policy than for disabling a policy, since when the policy is disabled, it does not have any effect.

eliykat · 2026-03-20T22:06:57Z

+## Limitations
+
+1. We don't have a way to keep this whole process idempotent, so if there is an exception at any point that is not being handled, the state will stay where the process failed.
+
+
+


I think it should only be a list if there is more than 1 item. For now it should just be a single paragraph.

eliykat · 2026-03-20T22:09:16Z

+
+### `IOnPolicyPreUpdateEvent`
+
+Executes side effects **before** the policy is upserted to the database.


It's the expected behaviour for normal imperative code flow, but here we've built a little system to handle this process, so it's not necessarily obvious how we've designed the error handling. This is alerting the dev to the fact that we will not handle their errors for them, so if they want the update to continue they would have to do that themselves. Or alternatively, it gives them a way of aborting the operation.

eliykat · 2026-03-20T22:11:24Z

My comments above are mostly replying to threads inline, you may have to scroll up for proper context.

JimmyVo16 added 3 commits March 5, 2026 11:21

[PM-29129] Add Policy Update Event README

1bef6e8

[PM-29129] wip

85c0f58

[PM-29129] Add an example

4db2b5c

[PM-29129] Add Limitations

58466d4

JimmyVo16 added 5 commits March 6, 2026 10:45

[PM-29129] Add IPolicyValidator

160db08

[PM-29129] wip

07a888b

[PM-29129] Add New Interface Section

e8d4dc2

[PM-29129] wip

e61e08d

Merge branch 'main' into ac/pm-29129/add-policy-update-event-readme

65b8b6a

JimmyVo16 self-assigned this Mar 6, 2026

JimmyVo16 marked this pull request as ready for review March 6, 2026 16:42

JimmyVo16 requested a review from a team as a code owner March 6, 2026 16:42

JimmyVo16 requested a review from eliykat March 6, 2026 16:42

eliykat requested changes Mar 7, 2026

View reviewed changes

JimmyVo16 and others added 6 commits March 9, 2026 10:15

Update src/Core/AdminConsole/OrganizationFeatures/Policies/PolicyUpda…

0df2a9a

…teEvents/README.md Co-authored-by: Thomas Rittson <31796059+eliykat@users.noreply.github.com>

Update src/Core/AdminConsole/OrganizationFeatures/Policies/PolicyUpda…

8d0ed75

…teEvents/README.md Co-authored-by: Thomas Rittson <31796059+eliykat@users.noreply.github.com>

Update src/Core/AdminConsole/OrganizationFeatures/Policies/PolicyUpda…

b72f7cc

…teEvents/README.md Co-authored-by: Thomas Rittson <31796059+eliykat@users.noreply.github.com>

Update src/Core/AdminConsole/OrganizationFeatures/Policies/PolicyUpda…

e7e1e46

…teEvents/README.md Co-authored-by: Thomas Rittson <31796059+eliykat@users.noreply.github.com>

Merge branch 'main' into ac/pm-29129/add-policy-update-event-readme

e7eca10

[PM-29129] Code review feedback

5d18fa7

JimmyVo16 requested a review from eliykat March 9, 2026 15:24

eliykat reviewed Mar 20, 2026

View reviewed changes

eliykat added ai-review-vnext Request a Claude code review using the vNext workflow and removed ai-review-vnext Request a Claude code review using the vNext workflow labels Mar 20, 2026

		## Limitations

		1. We don't have a way to keep this whole process idempotent, so if there is an exception at any point that is not being handled, the state will stay where the process failed.


		Typical uses: creating collections, sending notifications that depend on the new policy state.

		Note: This is more useful for enabling a policy than for disabling a policy, since when the policy is disabled, there is no easy way to find the users the policy should be enforced on.


		### `IOnPolicyPreUpdateEvent`

		Executes side effects before the policy is upserted to the database.

Conversation

JimmyVo16 commented Mar 5, 2026

🎟️ Tracking

📔 Objective

📸 Screenshots

Uh oh!

github-actions Bot commented Mar 5, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

codecov Bot commented Mar 5, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Codecov Report

Uh oh!

eliykat left a comment

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

eliykat Mar 7, 2026

Choose a reason for hiding this comment

Uh oh!

JimmyVo16 Mar 9, 2026

Choose a reason for hiding this comment

Uh oh!

eliykat Mar 20, 2026

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

sonarqubecloud Bot commented Mar 9, 2026

Quality Gate passed

Uh oh!

eliykat Mar 10, 2026

Choose a reason for hiding this comment

Uh oh!

eliykat Mar 11, 2026

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

Uh oh!

eliykat Mar 20, 2026

Choose a reason for hiding this comment

Uh oh!

eliykat Mar 20, 2026

Choose a reason for hiding this comment

Uh oh!

Uh oh!

eliykat commented Mar 20, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

github-actions Bot commented Mar 5, 2026 •

edited

Loading

codecov Bot commented Mar 5, 2026 •

edited

Loading