Altinn · oskogstad · Feb 18, 2025 · Feb 15, 2025 · Feb 16, 2025 · Feb 16, 2025
@@ -141,6 +141,10 @@ type DialogByIdForbidden implements DialogByIdError {
   message: String!
 }
 
+type DialogByIdForbiddenAuthLevelToLow implements DialogByIdError {
+  message: String!
+}
+
 type DialogByIdNotFound implements DialogByIdError {
   message: String!
 }
@@ -466,4 +470,4 @@ scalar DateTime @specifiedBy(url: "https:\/\/www.graphql-scalars.com\/date-time"
 
 scalar URL @specifiedBy(url: "https:\/\/tools.ietf.org\/html\/rfc3986")
 
-scalar UUID @specifiedBy(url: "https:\/\/tools.ietf.org\/html\/rfc4122")
+scalar UUID @specifiedBy(url: "https:\/\/tools.ietf.org\/html\/rfc4122")
@@ -2258,6 +2258,24 @@
               }
             ]
           },
+          "nonSensitiveSummary": {
+            "description": "An optional non-sensitive summary of the dialog and its current state.\nUsed for search and list views if the user authorization does not meet the required eIDAS level",
+            "nullable": true,
+            "oneOf": [
+              {
+                "$ref": "#/components/schemas/V1CommonContent_ContentValue"
+              }
+            ]
+          },
+          "nonSensitiveTitle": {
+            "description": "An optional non-sensitive title of the dialog.\nUsed for search and list views if the user authorization does not meet the required eIDAS level",
+            "nullable": true,
+            "oneOf": [
+              {
+                "$ref": "#/components/schemas/V1CommonContent_ContentValue"
+              }
+            ]
+          },
           "senderName": {
             "description": "Overridden sender name. If not supplied, assume \u0022org\u0022 as the sender name. Must be text/plain if supplied.\nSupported media types: text/plain",
             "nullable": true,
@@ -2912,6 +2930,24 @@
               }
             ]
           },
+          "nonSensitiveSummary": {
+            "description": "An optional non-sensitive summary of the dialog and its current state.\nUsed for search and list views if the user authorization does not meet the required eIDAS level",
+            "nullable": true,
+            "oneOf": [
+              {
+                "$ref": "#/components/schemas/V1CommonContent_ContentValue"
+              }
+            ]
+          },
+          "nonSensitiveTitle": {
+            "description": "An optional non-sensitive title of the dialog.\nUsed for search and list views if the user authorization does not meet the required eIDAS level",
+            "nullable": true,
+            "oneOf": [
+              {
+                "$ref": "#/components/schemas/V1CommonContent_ContentValue"
+              }
+            ]
+          },
           "senderName": {
             "description": "Overridden sender name. If not supplied, assume \u0022org\u0022 as the sender name. Must be text/plain if supplied.",
             "nullable": true,
@@ -3357,6 +3393,24 @@
               }
             ]
           },
+          "nonSensitiveSummary": {
+            "description": "An optional non-sensitive summary of the dialog and its current state.\nUsed for search and list views if the user authorization does not meet the required eIDAS level",
+            "nullable": true,
+            "oneOf": [
+              {
+                "$ref": "#/components/schemas/V1CommonContent_ContentValue"
+              }
+            ]
+          },
+          "nonSensitiveTitle": {
+            "description": "An optional non-sensitive title of the dialog.\nUsed for search and list views if the user authorization does not meet the required eIDAS level",
+            "nullable": true,
+            "oneOf": [
+              {
+                "$ref": "#/components/schemas/V1CommonContent_ContentValue"
+              }
+            ]
+          },
           "senderName": {
             "description": "Overridden sender name. If not supplied, assume \u0022org\u0022 as the sender name.",
             "nullable": true,
@@ -4052,6 +4106,24 @@
               }
             ]
           },
+          "nonSensitiveSummary": {
+            "description": "An optional non-sensitive summary of the dialog and its current state.\nUsed for search and list views if the user authorization does not meet the required eIDAS level",
+            "nullable": true,
+            "oneOf": [
+              {
+                "$ref": "#/components/schemas/V1CommonContent_ContentValue"
+              }
+            ]
+          },
+          "nonSensitiveTitle": {
+            "description": "An optional non-sensitive title of the dialog.\nUsed for search and list views if the user authorization does not meet the required eIDAS level",
+            "nullable": true,
+            "oneOf": [
+              {
+                "$ref": "#/components/schemas/V1CommonContent_ContentValue"
+              }
+            ]
+          },
           "senderName": {
             "description": "Overridden sender name. If not supplied, assume \u0022org\u0022 as the sender name.",
             "nullable": true,

@@ -10,6 +10,8 @@ public static class Constants
     public const string TransmissionReadAction = "transmissionread";
     public static readonly Uri UnauthorizedUri = new("urn:dialogporten:unauthorized");
 
+    public const string AltinnAuthLevelToLow = "Altinn authentication level too low.";
+
     public const string DisableAltinnEventsRequiresAdminScope =
         "Disabling Altinn events requires service owner admin scope.";
 
@@ -24,7 +26,7 @@ public static class Constants
 public static class AuthorizationScope
 {
     /// <summary>
-    /// Needed to be able to modify (create/update/delete) correspondence service resources. Primarily used by the correspondence service. 
+    /// Needed to be able to modify (create/update/delete) correspondence service resources. Primarily used by the correspondence service.
     /// </summary>
     public const string CorrespondenceScope = "digdir:dialogporten.correspondence";
 

@@ -18,4 +18,7 @@ Task<AuthorizedPartiesResult> GetAuthorizedParties(IPartyIdentifier authenticate
         CancellationToken cancellationToken = default);
 
     Task<bool> HasListAuthorizationForDialog(DialogEntity dialog, CancellationToken cancellationToken);
+
+    bool UserHasRequiredAuthLevel(int minimumAuthenticationLevel);
+    bool UserHasRequiredAuthLevel(string serviceResource);
 }
@@ -1,4 +1,5 @@
 using AutoMapper;
+using Digdir.Domain.Dialogporten.Application.Common.Authorization;
 using Digdir.Domain.Dialogporten.Application.Common.ReturnTypes;
 using Digdir.Domain.Dialogporten.Application.Externals;
 using Digdir.Domain.Dialogporten.Application.Externals.AltinnAuthorization;
@@ -17,7 +18,7 @@ public sealed class GetActivityQuery : IRequest<GetActivityResult>
 }
 
 [GenerateOneOf]
-public sealed partial class GetActivityResult : OneOfBase<ActivityDto, EntityNotFound, EntityDeleted>;
+public sealed partial class GetActivityResult : OneOfBase<ActivityDto, EntityNotFound, EntityDeleted, Forbidden>;
 
 internal sealed class GetActivityQueryHandler : IRequestHandler<GetActivityQuery, GetActivityResult>
 {
@@ -67,6 +68,11 @@ public async Task<GetActivityResult> Handle(GetActivityQuery request,
             return new EntityDeleted<DialogEntity>(request.DialogId);
         }
 
+        if (!_altinnAuthorization.UserHasRequiredAuthLevel(dialog.ServiceResource))
+        {
+            return new Forbidden(Constants.AltinnAuthLevelToLow);
+        }
+
         var activity = dialog.Activities.FirstOrDefault();
 
         if (activity is null)

@@ -1,4 +1,5 @@
 using AutoMapper;
+using Digdir.Domain.Dialogporten.Application.Common.Authorization;
 using Digdir.Domain.Dialogporten.Application.Common.ReturnTypes;
 using Digdir.Domain.Dialogporten.Application.Externals;
 using Digdir.Domain.Dialogporten.Application.Externals.AltinnAuthorization;
@@ -15,7 +16,7 @@ public sealed class SearchActivityQuery : IRequest<SearchActivityResult>
 }
 
 [GenerateOneOf]
-public sealed partial class SearchActivityResult : OneOfBase<List<ActivityDto>, EntityNotFound, EntityDeleted>;
+public sealed partial class SearchActivityResult : OneOfBase<List<ActivityDto>, EntityNotFound, EntityDeleted, Forbidden>;
 
 internal sealed class SearchActivityQueryHandler : IRequestHandler<SearchActivityQuery, SearchActivityResult>
 {
@@ -61,6 +62,11 @@ public async Task<SearchActivityResult> Handle(SearchActivityQuery request, Canc
             return new EntityDeleted<DialogEntity>(request.DialogId);
         }
 
+        if (!_altinnAuthorization.UserHasRequiredAuthLevel(dialog.ServiceResource))
+        {
+            return new Forbidden(Constants.AltinnAuthLevelToLow);
+        }
+
         return _mapper.Map<List<ActivityDto>>(dialog.Activities);
     }
 }
@@ -1,4 +1,5 @@
 using AutoMapper;
+using Digdir.Domain.Dialogporten.Application.Common.Authorization;
 using Digdir.Domain.Dialogporten.Application.Common.ReturnTypes;
 using Digdir.Domain.Dialogporten.Application.Externals;
 using Digdir.Domain.Dialogporten.Application.Externals.AltinnAuthorization;
@@ -15,7 +16,7 @@ public sealed class SearchLabelAssignmentLogQuery : IRequest<SearchLabelAssignme
 }
 
 [GenerateOneOf]
-public sealed partial class SearchLabelAssignmentLogResult : OneOfBase<List<LabelAssignmentLogDto>, EntityNotFound, EntityDeleted>;
+public sealed partial class SearchLabelAssignmentLogResult : OneOfBase<List<LabelAssignmentLogDto>, EntityNotFound, EntityDeleted, Forbidden>;
 
 internal sealed class SearchLabelAssignmentLogQueryHandler : IRequestHandler<SearchLabelAssignmentLogQuery, SearchLabelAssignmentLogResult>
 {
@@ -55,6 +56,11 @@ public async Task<SearchLabelAssignmentLogResult> Handle(SearchLabelAssignmentLo
             return new EntityDeleted<DialogEntity>(request.DialogId);
         }
 
+        if (!_altinnAuthorization.UserHasRequiredAuthLevel(dialog.ServiceResource))
+        {
+            return new Forbidden(Constants.AltinnAuthLevelToLow);
+        }
+
         return _mapper.Map<List<LabelAssignmentLogDto>>(dialog.DialogEndUserContext.LabelAssignmentLogs);
     }
 }
@@ -1,5 +1,6 @@
 using AutoMapper;
 using Digdir.Domain.Dialogporten.Application.Common;
+using Digdir.Domain.Dialogporten.Application.Common.Authorization;
 using Digdir.Domain.Dialogporten.Application.Common.ReturnTypes;
 using Digdir.Domain.Dialogporten.Application.Externals;
 using Digdir.Domain.Dialogporten.Application.Externals.AltinnAuthorization;
@@ -77,6 +78,11 @@ public async Task<GetSeenLogResult> Handle(GetSeenLogQuery request,
             return new EntityNotFound<DialogSeenLog>(request.SeenLogId);
         }
 
+        if (!_altinnAuthorization.UserHasRequiredAuthLevel(dialog.ServiceResource))
+        {
+            return new Forbidden(Constants.AltinnAuthLevelToLow);
+        }
+
         var dto = _mapper.Map<SeenLogDto>(seenLog);
         dto.IsCurrentEndUser = currentUserInformation.UserId.ExternalIdWithPrefix == seenLog.SeenBy.ActorId;
 

@@ -7,6 +7,7 @@
 using OneOf;
 using Microsoft.EntityFrameworkCore;
 using Digdir.Domain.Dialogporten.Application.Common;
+using Digdir.Domain.Dialogporten.Application.Common.Authorization;
 
 namespace Digdir.Domain.Dialogporten.Application.Features.V1.EndUser.DialogSeenLogs.Queries.Search;
 
@@ -69,6 +70,11 @@ public async Task<SearchSeenLogResult> Handle(SearchSeenLogQuery request, Cancel
             return new EntityDeleted<DialogEntity>(request.DialogId);
         }
 
+        if (!_altinnAuthorization.UserHasRequiredAuthLevel(dialog.ServiceResource))
+        {
+            return new Forbidden(Constants.AltinnAuthLevelToLow);
+        }
+
         return dialog.SeenLog
             .Select(x =>
             {

@@ -18,7 +18,7 @@ public sealed class GetTransmissionQuery : IRequest<GetTransmissionResult>
 }
 
 [GenerateOneOf]
-public sealed partial class GetTransmissionResult : OneOfBase<TransmissionDto, EntityNotFound, EntityDeleted>;
+public sealed partial class GetTransmissionResult : OneOfBase<TransmissionDto, EntityNotFound, EntityDeleted, Forbidden>;
 
 internal sealed class GetTransmissionQueryHandler : IRequestHandler<GetTransmissionQuery, GetTransmissionResult>
 {
@@ -72,6 +72,11 @@ public async Task<GetTransmissionResult> Handle(GetTransmissionQuery request,
             return new EntityDeleted<DialogEntity>(request.DialogId);
         }
 
+        if (!_altinnAuthorization.UserHasRequiredAuthLevel(dialog.ServiceResource))
+        {
+            return new Forbidden(Constants.AltinnAuthLevelToLow);
+        }
+
         var transmission = dialog.Transmissions.FirstOrDefault();
         if (transmission is null)
         {

@@ -1,4 +1,5 @@
 using AutoMapper;
+using Digdir.Domain.Dialogporten.Application.Common.Authorization;
 using Digdir.Domain.Dialogporten.Application.Common.ReturnTypes;
 using Digdir.Domain.Dialogporten.Application.Externals;
 using Digdir.Domain.Dialogporten.Application.Externals.AltinnAuthorization;
@@ -15,7 +16,7 @@ public sealed class SearchTransmissionQuery : IRequest<SearchTransmissionResult>
 }
 
 [GenerateOneOf]
-public sealed partial class SearchTransmissionResult : OneOfBase<List<TransmissionDto>, EntityNotFound, EntityDeleted>;
+public sealed partial class SearchTransmissionResult : OneOfBase<List<TransmissionDto>, EntityNotFound, EntityDeleted, Forbidden>;
 
 internal sealed class SearchTransmissionQueryHandler : IRequestHandler<SearchTransmissionQuery, SearchTransmissionResult>
 {
@@ -68,6 +69,11 @@ public async Task<SearchTransmissionResult> Handle(SearchTransmissionQuery reque
             return new EntityDeleted<DialogEntity>(request.DialogId);
         }
 
+        if (!_altinnAuthorization.UserHasRequiredAuthLevel(dialog.ServiceResource))
+        {
+            return new Forbidden(Constants.AltinnAuthLevelToLow);
+        }
+
         return _mapper.Map<List<TransmissionDto>>(dialog.Transmissions);
     }
 }
@@ -116,6 +116,11 @@ public async Task<GetDialogResult> Handle(GetDialogQuery request, CancellationTo
             return new EntityDeleted<DialogEntity>(request.DialogId);
         }
 
+        if (!_altinnAuthorization.UserHasRequiredAuthLevel(dialog.ServiceResource))
+        {
+            return new Forbidden(Constants.AltinnAuthLevelToLow);
+        }
+
         // TODO: What if name lookup fails
         // https://github.com/altinn/dialogporten/issues/387
         var currentUserInformation = await _userRegistry.GetCurrentUserInformation(cancellationToken);

@@ -0,0 +1,23 @@
+using Digdir.Domain.Dialogporten.Domain.Dialogs.Entities.Contents;
+
+namespace Digdir.Domain.Dialogporten.Application.Features.V1.EndUser.Dialogs.Queries.Search;
+
+internal static class DialogContentExtensions
+{
+    public static void SetNonSensitiveContent(this List<DialogContent> content)
+    {
+        var nonSensitiveTitle = content.FirstOrDefault(x => x.TypeId == DialogContentType.Values.NonSensitiveTitle);
+        if (nonSensitiveTitle is not null)
+        {
+            var title = content.First(x => x.TypeId == DialogContentType.Values.Title);
+            title.Value = nonSensitiveTitle.Value;
+        }
+
+        var nonSensitiveSummary = content.FirstOrDefault(x => x.TypeId == DialogContentType.Values.NonSensitiveSummary);
+        if (nonSensitiveSummary is not null)
+        {
+            var summary = content.First(x => x.TypeId == DialogContentType.Values.Summary);
+            summary.Value = nonSensitiveSummary.Value;
+        }
+    }
+}
@@ -188,6 +188,27 @@ public async Task<SearchDialogResult> Handle(SearchDialogQuery request, Cancella
             seenLog.IsCurrentEndUser = IdentifierMasker.GetMaybeMaskedIdentifier(_userRegistry.GetCurrentUserId().ExternalIdWithPrefix) == seenLog.SeenBy.ActorId;
         }
 
+        var serviceResources = paginatedList.Items
+            .Select(x => x.ServiceResource)
+            .Distinct()
+            .ToList();
+
+        var resourcePolicyInformation = await _db.ResourcePolicyInformation
+            .Where(x => serviceResources.Contains(x.Resource))
+            .ToDictionaryAsync(x => x.Resource, x => x.MinimumAuthenticationLevel, cancellationToken);
+
+        foreach (var dialog in paginatedList.Items)
+        {
+            if (!resourcePolicyInformation.TryGetValue(dialog.ServiceResource, out var minimumAuthenticationLevel))
+            {
+                continue;
+            }
+
+            if (!_altinnAuthorization.UserHasRequiredAuthLevel(minimumAuthenticationLevel))
+            {
+                dialog.Content.SetNonSensitiveContent();
+            }
+        }
         return paginatedList.ConvertTo(_mapper.Map<DialogDto>);
     }
 }