[PS-11868] Require key for enc string decryption

[MGibson1]

🎟️ Tracking

https://bitwarden.atlassian.net/browse/PM-11868

📔 Objective

Adds a new interface to enc string that requires a key and EncryptService to encrypt, rather than trying to determine keys and grabbing services from a global container.

Additionally uses this interface through the base Domain class that also requires a key and encrypt service. Additionally, this new interface is type safe to decrypt only EncStrings on the object and avoids mutation of a passed in object.

⏰ Reminders before review

• Contributor guidelines followed
• All formatters and local linters executed and passed
• Written new unit and / or integration tests where applicable
• Protected functional changes with optionality (feature flags)
• Used internationalization (i18n) for all UI strings
• CI builds passed
• Communicated to DevOps any deployment requirements
• Updated any necessary documentation (Confluence, contributing docs) or informed the documentation team

🦮 Reviewer guidelines

• 👍 (:+1:) or similar for great changes
• 📝 (:memo:) or ℹ️ (:information_source:) for notes or general info
• ❓ (:question:) for questions
• 🤔 (:thinking:) or 💭 (:thought_balloon:) for more open inquiry that's not quite a confirmed issue and could potentially benefit from discussion
• 🎨 (:art:) for suggestions / improvements
• ❌ (:x:) or ⚠️ (:warning:) for more significant problems or concerns needing attention
• 🌱 (:seedling:) or ♻️ (:recycle:) for future improvements or indications of technical debt
• ⛏ (:pick:) for minor or nitpick changes

[MGibson1]

These folder updates are example usages. We can remove from this PR to limit scope.

[MGibson1]

The type inferrer has a lot of trouble with this type on derived classes. It seems to always resolve to the parent class when using in the derived class. This pattern allows us to specify the specific Domain implementation by providing a constructor as an optional 5th argument. See the Folder changes for an example of its value.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 35.16%. Comparing base (3be5c48) to head (d47b2ae).
Report is 134 commits behind head on main.

✅ All tests successful. No failed tests found.

Additional details and impacted files

@@            Coverage Diff             @@
##             main   #10981      +/-   ##
==========================================
+ Coverage   35.14%   35.16%   +0.02%     
==========================================
  Files        2690     2690              
  Lines       83666    83692      +26     
  Branches    15887    15890       +3     
==========================================
+ Hits        29403    29429      +26     
  Misses      53297    53297              
  Partials      966      966              

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[github-actions]

Checkmarx One – Scan Summary & Details – 24d8846a-96ae-4a55-895e-de047b0bf12a

New Issues

Severity	Issue	Source File / Package	Checkmarx Insight
	Client_Privacy_Violation	/apps/web/src/connectors/webauthn-fallback.ts: 116	Attack Vector

Fixed Issues

Severity	Issue	Source File / Package
	Client_DOM_Open_Redirect	/apps/browser/src/vault/popup/components/vault/attachments.component.ts: 33

[justindbaur]

Just one question on if we should throw an error sooner in one place.

[gbubemismith]

This looks good 🚀