From ff9d4974d54c23ad500cf58bb5f6377cae961084 Mon Sep 17 00:00:00 2001
From: Ravneet Sandhu <ravneetsandhu@bitgo.com>
Date: Wed, 10 Apr 2024 20:09:11 +0530
Subject: [PATCH] feat: modify accept share method Ticket: PX-3296 We are
 modifying the accept share method for go account wallet invitations

---
 modules/sdk-api/src/v1/wallets.ts | 61 ++++++++++++++++++++++++++++++-
 1 file changed, 59 insertions(+), 2 deletions(-)

diff --git a/modules/sdk-api/src/v1/wallets.ts b/modules/sdk-api/src/v1/wallets.ts
index ca8f113a85..fe91734de8 100644
--- a/modules/sdk-api/src/v1/wallets.ts
+++ b/modules/sdk-api/src/v1/wallets.ts
@@ -225,9 +225,59 @@ Wallets.prototype.acceptShare = function (params, callback) {
 
   const self = this;
   let encryptedXprv = params.overrideEncryptedXprv;
+  let keyId = params.keyId;
+
+  const shareOfcAccountWithSpenders = async (walletId: string) => {
+    const wallet = await self.bitgo.wallets().get({ id: walletId });
+    const enterpriseUsersResponse = await self.bitgo.get(`/api/v2/enterprise/${wallet.enterprise}/user`);
+
+    wallet.users.forEach(async (user) => {
+      try {
+        if (user.permissions.includes('spend')) {
+          const userObject = enterpriseUsersResponse.users.find((enterpriseUser) => enterpriseUser.id === user.user);
+          const shareParams = {
+            walletId: walletId,
+            user: user.user,
+            permissions: user.permissions.join(','),
+            walletPassphrase: params.userPassword,
+            email: userObject.email,
+            coin: wallet.coin,
+          };
+          await self.bitgo.wallets().shareWallet(shareParams);
+        }
+      } catch (e) {
+        console.error(e);
+      }
+    });
+  };
 
   return this.getShare({ walletShareId: params.walletShareId })
-    .then(function (walletShare) {
+    .then(async function (walletShare) {
+      if (walletShare.keychainOverrideRequired && walletShare.permissions.indexOf('admin') !== -1) {
+        if (!params.userPassword) {
+          throw new Error('userPassword param must be provided to decrypt shared key');
+        }
+        // generate new keychain
+        const sdkCoin = await self.coin('ofc');
+        const keychains = sdkCoin.keychains();
+        const newKeychain = keychains.create();
+        const originalPasscodeEncryptionCode = self.bitgo.generateRandomPassword();
+
+        const encryptedPrv = self.bitgo.encrypt({
+          password: params.userPassword,
+          input: newKeychain.prv,
+        });
+
+        const walletKeychain = await keychains.add({
+          encryptedPrv,
+          originalPasscodeEncryptionCode,
+          pub: newKeychain.pub,
+          source: 'user',
+        });
+        keyId = walletKeychain.id;
+        return walletShare;
+      }
+
       // Return right away if there is no keychain to decrypt, or if explicit encryptedXprv was provided
       if (!walletShare.keychain || !walletShare.keychain.encryptedXprv || encryptedXprv) {
         return walletShare;
@@ -278,8 +328,15 @@ Wallets.prototype.acceptShare = function (params, callback) {
       if (encryptedXprv) {
         updateParams.encryptedXprv = encryptedXprv;
       }
+      if (keyId && walletShare.keychainOverrideRequired && walletShare.permissions.indexOf('admin') !== -1) {
+        updateParams.keyId = keyId;
+      }
 
-      return self.updateShare(updateParams);
+      self.updateShare(updateParams);
+
+      if (walletShare.keychainOverrideRequired && walletShare.permissions.indexOf('admin') !== -1) {
+        shareOfcAccountWithSpenders(walletShare.wallet);
+      }
     })
     .nodeify(callback);
 };