[AC-2708] Upgrading from a password manager only subscription

[cyprain-okeke]

🎟️ Tracking

https://bitwarden.atlassian.net/browse/AC-2708

📔 Objective

The change is to change the subscription for when a customer is upgrade from a Password Manager-only subscription.

📸 Screenshots

⏰ Reminders before review

• Contributor guidelines followed
• All formatters and local linters executed and passed
• Written new unit and / or integration tests where applicable
• Protected functional changes with optionality (feature flags)
• Used internationalization (i18n) for all UI strings
• CI builds passed
• Communicated to DevOps any deployment requirements
• Updated any necessary documentation (Confluence, contributing docs) or informed the documentation team

🦮 Reviewer guidelines

• 👍 (:+1:) or similar for great changes
• 📝 (:memo:) or ℹ️ (:information_source:) for notes or general info
• ❓ (:question:) for questions
• 🤔 (:thinking:) or 💭 (:thought_balloon:) for more open inquiry that's not quite a confirmed issue and could potentially benefit from discussion
• 🎨 (:art:) for suggestions / improvements
• ❌ (:x:) or ⚠️ (:warning:) for more significant problems or concerns needing attention
• 🌱 (:seedling:) or ♻️ (:recycle:) for future improvements or indications of technical debt
• ⛏ (:pick:) for minor or nitpick changes

[github-actions]

LaunchDarkly flag references

🔍 1 flag added or modified

Name	Key	Aliases found	Info
Upgrade password manager only subscription	AC-2708-upgrade-password-manager-sub

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 41.58%. Comparing base (5df0e21) to head (b42b7f4).
Report is 12 commits behind head on main.

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #4536      +/-   ##
==========================================
+ Coverage   41.57%   41.58%   +0.01%     
==========================================
  Files        1268     1268              
  Lines       60087    60100      +13     
  Branches     5508     5512       +4     
==========================================
+ Hits        24980    24994      +14     
+ Misses      33948    33945       -3     
- Partials     1159     1161       +2     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[github-actions]

Checkmarx One – Scan Summary & Details – 6ad0372d-986d-46f7-a741-a8f1ba93f3c6

New Issues

Severity	Issue	Source File / Package	Checkmarx Insight
	CSRF	/src/Billing/Controllers/PayPalController.cs: 66	Attack Vector
	Privacy_Violation	/src/Api/Auth/Controllers/TwoFactorController.cs: 488	Attack Vector
	Privacy_Violation	/src/Api/Auth/Controllers/WebAuthnController.cs: 178	Attack Vector
	Privacy_Violation	/src/Api/Vault/Controllers/CiphersController.cs: 953	Attack Vector
	Privacy_Violation	/src/Api/Auth/Controllers/AccountsController.cs: 549	Attack Vector
	Privacy_Violation	/src/Api/Auth/Controllers/AccountsController.cs: 829	Attack Vector
	Privacy_Violation	/src/Api/Auth/Controllers/AccountsController.cs: 847	Attack Vector
	Privacy_Violation	/src/Api/Auth/Controllers/AccountsController.cs: 412	Attack Vector
	Privacy_Violation	/src/Api/Controllers/DevicesController.cs: 133	Attack Vector
	Privacy_Violation	/src/Api/AdminConsole/Controllers/OrganizationsController.cs: 260	Attack Vector
	Privacy_Violation	/src/Api/Controllers/DevicesController.cs: 159	Attack Vector
	Privacy_Violation	/src/Api/AdminConsole/Controllers/OrganizationsController.cs: 429	Attack Vector
	Privacy_Violation	/src/Api/AdminConsole/Controllers/OrganizationsController.cs: 376	Attack Vector
	Log_Forging	/src/Api/Auth/Controllers/WebAuthnController.cs: 68	Attack Vector
	Log_Forging	/src/Api/Auth/Controllers/WebAuthnController.cs: 153	Attack Vector
	Log_Forging	/src/Api/Auth/Controllers/WebAuthnController.cs: 85	Attack Vector
	Log_Forging	/src/Api/Vault/Controllers/CiphersController.cs: 217	Attack Vector
	Log_Forging	/src/Api/Auth/Controllers/AccountsController.cs: 541	Attack Vector
	Log_Forging	/src/Api/Auth/Controllers/AccountsController.cs: 821	Attack Vector
	Log_Forging	/src/Api/Controllers/DevicesController.cs: 124	Attack Vector
	Log_Forging	/src/Api/Auth/Controllers/AccountsController.cs: 404	Attack Vector
	Log_Forging	/src/Api/Vault/Controllers/CiphersController.cs: 945	Attack Vector
	Log_Forging	/src/Api/Auth/Controllers/AccountsController.cs: 839	Attack Vector
	Log_Forging	/src/Api/AdminConsole/Controllers/OrganizationsController.cs: 240	Attack Vector
	Log_Forging	/src/Api/Controllers/DevicesController.cs: 150	Attack Vector
	Log_Forging	/src/Api/AdminConsole/Controllers/OrganizationsController.cs: 404	Attack Vector
	Log_Forging	/src/Api/AdminConsole/Controllers/OrganizationsController.cs: 341	Attack Vector
	Missing_CSP_Header	/src/Core/MailTemplates/Handlebars/SecretsManagerAccessRequest.html.hbs: 6	Attack Vector

Fixed Issues

Severity	Issue	Source File / Package
	CSRF	/src/Api/Controllers/CollectionsController.cs: 171
	CSRF	/src/Api/Public/Controllers/CollectionsController.cs: 87
	CSRF	/src/Billing/Controllers/StripeController.cs: 117
	CSRF	/src/Billing/Controllers/StripeController.cs: 130
	CSRF	/src/Api/AdminConsole/Public/Controllers/MembersController.cs: 89
	CSRF	/src/Api/Vault/Controllers/CiphersController.cs: 577
	CSRF	/src/Api/Vault/Controllers/CiphersController.cs: 577
	CSRF	/src/Identity/Controllers/AccountsController.cs: 75
	Log_Forging	/src/Api/Vault/Controllers/CiphersController.cs: 577