Commit Graph

401 Commits (42af7c6dab113388a0db4fae0c196bae14761bc1)

Author SHA1 Message Date
Daniel García 21b85b78b1
Changed reinvite check and removed obsolete comment
6 years ago
Daniel García 673adde9f1
Make the admin retype the user name before deleting
6 years ago
Daniel García c9063a06b4
Print unauthorized error message
6 years ago
Daniel García 5e37471488
Merge pull request #323 from njfox/invite_accepted_email
6 years ago
Nick Fox 0a74e79cea
Refactor generate_invite_claims, make org_name and org_id optional
6 years ago
Nick Fox 7db66f73f0
Refactor invited_by_email check
6 years ago
Nick Fox 2f5bdc23f6
Fix formatting and add vault link to notification emails
6 years ago
Nick Fox cec28a85ac
Update admin page to work with new invitation flow
6 years ago
Daniel García 5f49ecd7f3
Updated dependencies to use u2f crate directly, and some style changes
6 years ago
Nick Fox 736c0e62f2
Send emails to inviters/invitees when invites are accepted/confirmed
6 years ago
Nick Fox 43eb064351
Replace invite/reinvite email functions with generic send_email
6 years ago
Daniel García 30e768613b
Start using rustfmt and some style changes to make some lines shorter
6 years ago
Daniel García adb8052689
Updated Error to implement Display and Debug, instead of using custom methods
6 years ago
Daniel García 1483829c94
Removed invalid todo
6 years ago
Daniel García acb9d1b3c6
Remove config option for admin email, embdedded admin page, managed IO::Error, and added security and cache headers globally
6 years ago
Daniel García 301919d9d4
Modified navigation bar and corrected some comments
6 years ago
Daniel García 2bb0b15e04
Implemented better errors for JWT
6 years ago
Daniel García 250a2b340f
Use new Errors in latest changes
6 years ago
Daniel García b2fc0499f6
Finish invite functionality, and remove virtual organization
6 years ago
Daniel García 6a99849a1e
Implemented proper error handling, now we can do `user.save($conn)?;` and it works.
6 years ago
Daniel García 172f1770cf
Embed the icon in the binary, no need to download when it's not going to change
6 years ago
Daniel García 1b5134dfe2
Fixed delete user when 2FA is enabled, implemented delete user for admin panel, and the front-end part for invite user. Secured admin panel behind a configurable token.
6 years ago
Daniel García 5fecf09631
Initial version of admin panel, list users and reload user list works. No serious auth method yet, password is 'token123'
6 years ago
Daniel García 7d7d8afed9
Merge pull request #318 from njfox/reinvite_endpoint
6 years ago
Nick Fox f20c4705d9
Refactor invite claims and disallow reinvites to virtual_org
6 years ago
Nick Fox 3142d8d01f
Add more detail to invitation not found error
6 years ago
Nick Fox 84fa5a4ed6
Implement reinvite endpoint
6 years ago
Daniel García 004a3f891f
Merge pull request #315 from aksdb/master
6 years ago
Andreas Schneider e7ea5097f4 Restrict join on users_collections to current user (fixes #313)
6 years ago
Miroslav Prasil 8451a70de6 Rewrite find_by_user_uuid to use one query
6 years ago
Nick Fox ec715d78fb
Change log timestamp format so fail2ban can parse it
6 years ago
Nick Fox b0ac640d8b
Use JWT to validate existing user invites
6 years ago
Daniel García 2b24b17609
Merge pull request #295 from njfox/invite_emails
6 years ago
Nick Fox 2cd736ab81
Validate JWT if a user registers with SMTP invites enabled
6 years ago
Nick Fox 99256b9b3a
Prefix unused params with underscore
6 years ago
Nick Fox 26bf7bc12f
Use upstream jslib invite/registration workflow
6 years ago
Daniel García b3ec8f2611
Merge pull request #302 from tycho/icon-cache-ttl
6 years ago
Steven Noonan a55c048a62
icons: implement positive/negative cache TTLs
6 years ago
Steven Noonan 848cd1dbec
add environment variables for ICON_CACHE_TTL and ICON_CACHE_NEGTTL
6 years ago
Daniel García 149e69414f
Merge pull request #293 from dheimerl/patch-1
6 years ago
dheimerl 9a7d3634d5
Changed frame-ancestors to use 'self'
6 years ago
dheimerl 7f7c936049
Fixed web.rs
6 years ago
Nick Fox 9479108fb7
Remove CONFIG.email_invitations
6 years ago
Nick Fox 042c1072d9
Remove CONFIG.email_invitation option
6 years ago
Daniel García 5a9aab1a32
Implement fromform, and ignore case and underscores, fixes #298
6 years ago
dheimerl 037eb0b790
Update web.rs
6 years ago
Nick Fox 4910b14d57
Implement email invitations and registration workflow
6 years ago
Nick Fox d428120ec6
Add email_invitations config option
6 years ago
Nick Fox e2907f4250
Add invite email functionality
6 years ago
Nick Fox 680f5e83d8
Add Invite JWT struct and supporting functions
6 years ago
Daniel García 4e827e4f8a
Implement better retry and use it while saving device
6 years ago
algebro e26e2319da Close #264. Usernames and IP addresses are logged on successful authentication
6 years ago
Daniel García 7adc045b80
Updated IP logging to use client_ip, to match old remote behavior.
6 years ago
Daniel García 19754c967f
More changes to the push token, and filtered multipart logs
6 years ago
Daniel García 738ad2127b
Fixed some clippy linting issues
6 years ago
Daniel García cb930a0858
Remove some required values during login, now uses default values
6 years ago
Daniel García 94810c106a
Migrate to rust 2018 edition
6 years ago
Daniel García 2fde4e6933
Implemented proper logging, with support for file logging, timestamp and syslog (this last one is untested)
6 years ago
Daniel García dc1bb6de20
Update device push token methods to more closely follow the official server response
6 years ago
Daniel García 6364c05789
Fix attachments during key rotation, add individual attachment key
6 years ago
Daniel García f71f10eac6
Implemented key rotation with the latest vault
6 years ago
Daniel García f1acc1e05a
Merge branch 'master' into rocket-0.4
6 years ago
Daniel García 3d36ac4601
Remove unwrap in connection_lost
6 years ago
Daniel García 00abd4c853
Add create endpoint, fixes #253, fixes #261
6 years ago
Daniel García a4550e51ea
Update dependencies and add /ciphers/create
6 years ago
Daniel García 5edbd0e952
Merge branch 'master' into rocket-0.4
6 years ago
Daniel García 17052b665f
Merge pull request #257 from Step7750/fix-nfc-mobile
6 years ago
Stepan Fedorko-Bartos f344dbaad4 Fixes NFC Response for Mobile Login
6 years ago
Daniel García c5c9e3fd65
Merge pull request #254 from Step7750/master
6 years ago
Stepan Fedorko-Bartos aba9c28226 Disable Yubikey 2FA if 0 Keys Provided
6 years ago
Stepan Fedorko-Bartos 82e2b8a8c0 Code style changes
6 years ago
Miroslav Prasil 044cf19913 Prevent accepted user from seeing ciphers until confirmed (fixes #196)
6 years ago
Stepan Fedorko-Bartos 6d735806c0 Ensures Yubico Creds are set when opening Yubikey Modal
6 years ago
Stepan Fedorko-Bartos 2433d39df5 Allows Custom Yubico OTP Server
6 years ago
Stepan Fedorko-Bartos 9e0e4b13c5 Adds Yubikey OTP Support
6 years ago
Stepan Fedorko-Bartos e66436625c Adds Yubico Client ID and Secret Key Env Vars
6 years ago
Daniel García f84cbeaaf8
Merge branch 'master' into rocket-0.4
6 years ago
Miroslav Prasil dd684753d0 Fix gt()
6 years ago
Miroslav Prasil f3e6cc6ffd Set PartialOrd to consider invalid i32 UserOrgType lower than anything
6 years ago
Miroslav Prasil b94f4db52a Fix #242
6 years ago
Miroslav Prasil 66a4c5d48b Implement comparison between i32 and UserOrgType
6 years ago
Daniel García 4638786507
Merge branch 'master' into rocket-0.4
6 years ago
Roman Hargrave 62bc58e145 Clean up after u2f endpoint split
6 years ago
Roman Hargrave 760e0ab805 Initial u2f fix
6 years ago
Daniel García 6eb1c3d638
Fixed change in organizations header, now Request::get_param() are indexed by segment, not dynamic parameter.
6 years ago
Daniel García bc532f54d5
Improve login query parsing
6 years ago
Daniel García c673370103
Updated bw_rs to Rocket version 0.4-rc1
6 years ago
janost c32c65d367 Accept PUT and POST on /settings/domains, returns JsonResult, fixes saving Custom Equivalent Domains
6 years ago
janost daa66b08dc Fix /sync without query string
6 years ago
janost 55fbd8d468 Don't send Domains if excludeDomains=true on /sync
6 years ago
Miroslav Prasil 2e7fa6440b Do not spawn WS thread if it's disabled
6 years ago
Miroslav Prasil 9ecc98c3cc Disable WebSockets negotiation by default
6 years ago
Daniel García 02fd68d63b
Merge pull request #218 from janost/refactor-folder-save
6 years ago
janost e985221b50 User::save() should return QueryResult instead of bool
6 years ago
janost 77cf63c06d Folder::save() should return QueryResult instead of bool
6 years ago
Daniel García faec050a6d
Merge pull request #217 from janost/refactor-device-save
6 years ago
janost 58a78ffa54 Device::save() should return QueryResult instead of bool
6 years ago
janost 64f6c60bfd Organization::save() and UserOrganization::save() should return QueryResult instead of bool
6 years ago
Miroslav Prasil a28caa33ef Implement poor man's admin panel
6 years ago
Daniel García ce4fedf191
Change error response to be closer to upstream
6 years ago
janost 5292d38c73 CollectionCipher::save() and delete() should return QueryResult instead of bool
6 years ago
Daniel García 1049646e27
Merge pull request #210 from janost/cipher-save-refactor
6 years ago
janost 380cf06211 Cipher::save() should return QueryResult instead of bool
6 years ago
janost c29bc9309a Return proper error message for org reinvite
6 years ago
Daniel García 7112c86471
Updated dependencies, removed valid mail check (now done by lettre), and updated global domains file
6 years ago
Daniel García 2aabf14372
Merge pull request #206 from mprasil/collection_revision
6 years ago
Miroslav Prasil d9457e929c Add continuation token when we return object list
6 years ago
Miroslav Prasil 86b49856a7 Handle return value from Collection::save()
6 years ago
Miroslav Prasil 54f54ee845 Update revision for users on collection save
6 years ago
Miroslav Prasil c3c74506a7 Add missing fields to returned Org json
6 years ago
Miroslav Prasil fb4e6bab14 Clean up the share_collection handling
6 years ago
Daniel García 9eaa9c1a17
Add WEBSOCKET_ADDRESS config option (Fixes #199)
6 years ago
Daniel García 3df31e3464
Temp fix for OpenSSL 1.1.1 compatibility
6 years ago
Daniel García ebb66c374e
Implement KDF iterations change (Fixes #195)
6 years ago
Miroslav Prasil f7951b44ba Add alias for DELETE call on accounts
6 years ago
Daniel García b75ba216d1
Return default prelogin values when the user doesn't exist
6 years ago
Daniel García 8651df8c2a
Fixed some lint issues
6 years ago
Daniel García 948554a20f
Added config option for websocket port, and reworked the config parsing a bit.
6 years ago
Daniel García 928e2424c0
Updated dependencies and fixed errors
6 years ago
Daniel García a01fee0b9f
Merge branch 'ws'
6 years ago
Daniel García f397f0cbd0
Implement organization import for admins and owners (Fixes #178)
6 years ago
Daniel García 3e1afb139c
Remove unnecessary return
6 years ago
Daniel García d66d4fd87f Add error message when the proxy doesn't route websockets correctly
6 years ago
Daniel García 1b20a25514
Merge pull request #173 from mprasil/poormans_invites
6 years ago
Miroslav Prasil c1cd4d9a6b Modify User::new to be keyless and paswordless
6 years ago
Daniel García b63693aefb
Merge pull request #137 from stammw/master
6 years ago
Miroslav Prasil ec05f14f5a Implement poor man's invitation via Organization invitation
6 years ago
Jean-Christophe BEGUE 37d88be2be return an error when email adress for password hint is not valid
6 years ago
Jean-Christophe BEGUE 1c641d7635 Special messages when user has no password hint
6 years ago
Jean-Christophe BEGUE e2ab2f7306 Save None instead of empty password hint
6 years ago
Daniel García 69dcbdd3b2 Merge branch 'master' into ws
6 years ago
Miroslav Prasil c58682e3fb Fix the logic in user edditing
6 years ago
Miroslav Prasil db111ae2a0 Check properly the user membership in Organization
6 years ago
Miroslav Prasil 049aa33f17 Fix editing users in Organization
6 years ago
Shane A. Faulkner d8e5e53273 Add notifications for cipher delete and create
6 years ago
Shane A. Faulkner b6502e9e9d Add support for CipherUpdate notifications
6 years ago
Daniel García d70864ac73 Initial version of websockets notification support.
6 years ago
Miroslav Prasil d336d89b83 Fix editing shared cipher (fixes #164)
6 years ago
Baelyk fe473b9e75 `Attachment::save()` returns Result instead of bool (#161)
6 years ago
mprasil 062ae4dd59 Allow non-Admin user to share to collection (fixes #157) (#159)
6 years ago
mprasil 3cfdf9b585 Add DELETE handlers fo cipher and attachment deletion (fixes #158) (#160)
6 years ago
Kumar Ankur 781056152a Support password history #155 (#156)
6 years ago
Baelyk c386b3bcf7 Add IP and Username to failed login attempts
6 years ago
Daniel García 8d1ee859f2 Implemented basic support for prelogin and notification negotiation
6 years ago
Miroslav Prasil 2b2401be19 Update affected users revision on cipher and folder change
6 years ago
Miroslav Prasil 9eea0151ba Update user revision timestamp on Organization changes
6 years ago
Miroslav Prasil 40d09ddd2a Add PUT alias for Organization updates
6 years ago
Daniel García d332e87655
Merge pull request #144 from mprasil/collection_revision
6 years ago
Miroslav Prasil a5ef8aef0f Update affected users revision when there are collection changes
6 years ago
Miroslav Prasil 4fb09c5b4d Actually update the revision date for user struct, not just in DB
6 years ago