vaultwarden

Commit Graph

Author	SHA1	Message	Date
Daniel García	a1dc47b826	Change config to thread-safe system, needed for a future config panel. Improved some two factor methods.	6 years ago
Daniel García	86de0ca17b	Fix editing users from collections menu	6 years ago
Stephen White	fc0e239bdf	No point calling find_by_uuid now we don't use the result.	6 years ago
Stephen White	928ad6c1d8	Fix the list of users with access to a collection to display correctly. https://github.com/dani-garcia/bitwarden_rs/issues/364	6 years ago
Daniel García	ddd49596ba	Fix invite empty email	6 years ago
Daniel García	b8cabadd43	Fix admin page links	6 years ago
Daniel García	ce42b07a80	Update Diesel to 1.4 and other dependencies	6 years ago
Daniel García	bfd93e5b13	Show organizations in admin panel, implement reload templates option	6 years ago
Daniel García	a797459560	Implement HIBP check [WIP]. Add extra security attributes to admin cookie. Error handling.	6 years ago
Daniel García	6cbb683f99	Rename admin templates to match email	6 years ago
Daniel García	92bbb98d48	Created base template	6 years ago
Daniel García	834c847746	Implement admin JWT cookie, separate JWT issuers for each type of token and migrate admin page to handlebars template	6 years ago
Daniel García	97aa407fe4	Move email templates to subfolder	6 years ago
TBK	d8116a80df	Add Feature-Policy header	6 years ago
Daniel García	e0aec8d373	Use new i64::to_be_bytes and remove byteorder dep (https://doc.rust-lang.org/stable/std/primitive.i64.html#method.to_be_bytes)	6 years ago
Daniel García	1ce2587330	Correct update cipher order: first save cipher, then cipher-folder, then notify	6 years ago
Miroslav Prasil	71a10e0378	Fix sharing the item to organization.	6 years ago
Daniel García	9bf13b7872	Can't return inside multipart closure	6 years ago
Daniel García	d420992f8c	Update some function calls to use ?	6 years ago
Daniel García	c259a0e3e2	Save recovery code when using yubikey and stop repeating headers.user everywhere	6 years ago
Daniel García	432be274ba	Improve org mismatch check, consider different orgs	6 years ago
Daniel García	484bf5b703	Check that the client is not updating an outdated cipher, that should be part of an org now	6 years ago
Daniel García	4bf32af60e	Fix folder notifications, enable template strict mode and add missing option to env template	6 years ago
Daniel García	0e4a746eeb	Added SMTP_FROM_NAME	6 years ago
Daniel García	2fe919cc5e	Embed the default templates	6 years ago
Daniel García	bcd750695f	Default to $data_folder/templates and remove dev option (use `TEMPLATES_FOLDER=src/static/templates` instead)	6 years ago
Daniel García	19b6bb0fd6	Initial stab at templates	6 years ago
Daniel García	f571df7367	Revert yubikey feature, not needed anymore	6 years ago
Daniel García	de51bc782e	Updated dependencies, removing need for yubico fork	6 years ago
Daniel García	c5aef60bd7	Implement unofficial warning message	6 years ago
Daniel García	6f52104324	Fix casing error in Attachment, should fix 'Attachment doesn't exist' errors	6 years ago
Daniel García	1d7f704754	Send CipherUpdate when adding and deleting attachments	6 years ago
Daniel García	1d034749f7	Fix AArch64 build by disabling yubico	6 years ago
Daniel García	320266606e	Implement put collections	6 years ago
Daniel García	a0a08c4c5a	Include IP in invalid admin token error	6 years ago
Daniel García	4309df8334	Only create invitations when SMTP is disabled, and ignore invitations if we have a token. Disallow users from accepting invitation twice	6 years ago
Daniel García	f1161c65fb	Make sure an invitation is created when reinviting	6 years ago
Daniel García	50eeb4f651	Remove whitespace before processing tokens	6 years ago
Daniel García	21b85b78b1	Changed reinvite check and removed obsolete comment	6 years ago
Daniel García	673adde9f1	Make the admin retype the user name before deleting	6 years ago
Daniel García	c9063a06b4	Print unauthorized error message	6 years ago
Daniel García	5e37471488	Merge pull request #323 from njfox/invite_accepted_email Send email notifications when invitations are accepted/confirmed	6 years ago
Nick Fox	0a74e79cea	Refactor generate_invite_claims, make org_name and org_id optional	6 years ago
Nick Fox	7db66f73f0	Refactor invited_by_email check	6 years ago
Nick Fox	2f5bdc23f6	Fix formatting and add vault link to notification emails	6 years ago
Nick Fox	cec28a85ac	Update admin page to work with new invitation flow	6 years ago
Daniel García	5f49ecd7f3	Updated dependencies to use u2f crate directly, and some style changes	6 years ago
Nick Fox	736c0e62f2	Send emails to inviters/invitees when invites are accepted/confirmed	6 years ago
Nick Fox	43eb064351	Replace invite/reinvite email functions with generic send_email	6 years ago
Daniel García	30e768613b	Start using rustfmt and some style changes to make some lines shorter	6 years ago
Daniel García	adb8052689	Updated Error to implement Display and Debug, instead of using custom methods	6 years ago
Daniel García	1483829c94	Removed invalid todo	6 years ago
Daniel García	acb9d1b3c6	Remove config option for admin email, embdedded admin page, managed IO::Error, and added security and cache headers globally	6 years ago
Daniel García	301919d9d4	Modified navigation bar and corrected some comments	6 years ago
Daniel García	2bb0b15e04	Implemented better errors for JWT	6 years ago
Daniel García	250a2b340f	Use new Errors in latest changes	6 years ago
Daniel García	b2fc0499f6	Finish invite functionality, and remove virtual organization	6 years ago
Daniel García	6a99849a1e	Implemented proper error handling, now we can do `user.save($conn)?;` and it works. In the future, maybe we can do the same with the `find_by_id` methods that return an Option.	6 years ago
Daniel García	172f1770cf	Embed the icon in the binary, no need to download when it's not going to change	6 years ago
Daniel García	1b5134dfe2	Fixed delete user when 2FA is enabled, implemented delete user for admin panel, and the front-end part for invite user. Secured admin panel behind a configurable token.	6 years ago
Daniel García	5fecf09631	Initial version of admin panel, list users and reload user list works. No serious auth method yet, password is 'token123'	6 years ago
Daniel García	7d7d8afed9	Merge pull request #318 from njfox/reinvite_endpoint Add email reinvite endpoint	6 years ago
Nick Fox	f20c4705d9	Refactor invite claims and disallow reinvites to virtual_org	6 years ago
Nick Fox	3142d8d01f	Add more detail to invitation not found error	6 years ago
Nick Fox	84fa5a4ed6	Implement reinvite endpoint	6 years ago
Daniel García	004a3f891f	Merge pull request #315 from aksdb/master Restrict join on users_collections to current user (fixes #313)	6 years ago
Andreas Schneider	e7ea5097f4	Restrict join on users_collections to current user (fixes #313 )	6 years ago
Miroslav Prasil	8451a70de6	Rewrite find_by_user_uuid to use one query	6 years ago
Nick Fox	ec715d78fb	Change log timestamp format so fail2ban can parse it	6 years ago
Nick Fox	b0ac640d8b	Use JWT to validate existing user invites	6 years ago
Daniel García	2b24b17609	Merge pull request #295 from njfox/invite_emails Add Email Invite Functionality	6 years ago
Nick Fox	2cd736ab81	Validate JWT if a user registers with SMTP invites enabled	6 years ago
Nick Fox	99256b9b3a	Prefix unused params with underscore	6 years ago
Nick Fox	26bf7bc12f	Use upstream jslib invite/registration workflow	6 years ago
Daniel García	b3ec8f2611	Merge pull request #302 from tycho/icon-cache-ttl implement TTLs for icon cache	6 years ago
Steven Noonan	a55c048a62	icons: implement positive/negative cache TTLs Signed-off-by: Steven Noonan <steven@uplinklabs.net>	6 years ago
Steven Noonan	848cd1dbec	add environment variables for ICON_CACHE_TTL and ICON_CACHE_NEGTTL These aren't used yet, but will be utilized by the icon caching service in a subsequent patch. Signed-off-by: Steven Noonan <steven@uplinklabs.net>	6 years ago
Daniel García	149e69414f	Merge pull request #293 from dheimerl/patch-1 Update web.rs	6 years ago
dheimerl	9a7d3634d5	Changed frame-ancestors to use 'self'	6 years ago
dheimerl	7f7c936049	Fixed web.rs	6 years ago
Nick Fox	9479108fb7	Remove CONFIG.email_invitations	6 years ago
Nick Fox	042c1072d9	Remove CONFIG.email_invitation option	6 years ago
Daniel García	5a9aab1a32	Implement fromform, and ignore case and underscores, fixes #298	6 years ago
dheimerl	037eb0b790	Update web.rs Add frame-ancestors to allow U2F to work in Chrome (and possibly Firefox) extension	6 years ago
Nick Fox	4910b14d57	Implement email invitations and registration workflow	6 years ago
Nick Fox	d428120ec6	Add email_invitations config option	6 years ago
Nick Fox	e2907f4250	Add invite email functionality	6 years ago
Nick Fox	680f5e83d8	Add Invite JWT struct and supporting functions	6 years ago
Daniel García	4e827e4f8a	Implement better retry and use it while saving device	6 years ago
algebro	e26e2319da	Close #264 . Usernames and IP addresses are logged on successful authentication	6 years ago
Daniel García	7adc045b80	Updated IP logging to use client_ip, to match old remote behavior. Improved error logging, now it won't show a generic error message in some situations. Removed delete device, which is not needed as it will be overwritten later. Logged more info when an error occurs saving a device. Added orgmanager to JWT claims.	6 years ago
Daniel García	19754c967f	More changes to the push token, and filtered multipart logs	6 years ago
Daniel García	738ad2127b	Fixed some clippy linting issues	6 years ago
Daniel García	cb930a0858	Remove some required values during login, now uses default values	6 years ago
Daniel García	94810c106a	Migrate to rust 2018 edition	6 years ago
Daniel García	2fde4e6933	Implemented proper logging, with support for file logging, timestamp and syslog (this last one is untested)	6 years ago
Daniel García	dc1bb6de20	Update device push token methods to more closely follow the official server response	6 years ago
Daniel García	6364c05789	Fix attachments during key rotation, add individual attachment key	6 years ago
Daniel García	f71f10eac6	Implemented key rotation with the latest vault	6 years ago
Daniel García	f1acc1e05a	Merge branch 'master' into rocket-0.4	6 years ago
Daniel García	3d36ac4601	Remove unwrap in connection_lost	6 years ago
Daniel García	00abd4c853	Add create endpoint, fixes #253 , fixes #261	6 years ago
Daniel García	a4550e51ea	Update dependencies and add /ciphers/create	6 years ago
Daniel García	5edbd0e952	Merge branch 'master' into rocket-0.4 # Conflicts: # Cargo.lock # Cargo.toml # src/api/core/mod.rs	6 years ago
Daniel García	17052b665f	Merge pull request #257 from Step7750/fix-nfc-mobile Fixes NFC Response for Mobile Yubikey OTP Login	6 years ago
Stepan Fedorko-Bartos	f344dbaad4	Fixes NFC Response for Mobile Login	6 years ago
Daniel García	c5c9e3fd65	Merge pull request #254 from Step7750/master Adds Yubikey OTP Support	6 years ago
Stepan Fedorko-Bartos	aba9c28226	Disable Yubikey 2FA if 0 Keys Provided	6 years ago
Stepan Fedorko-Bartos	82e2b8a8c0	Code style changes	6 years ago
Miroslav Prasil	044cf19913	Prevent accepted user from seeing ciphers until confirmed (fixes #196 )	6 years ago
Stepan Fedorko-Bartos	6d735806c0	Ensures Yubico Creds are set when opening Yubikey Modal	6 years ago
Stepan Fedorko-Bartos	2433d39df5	Allows Custom Yubico OTP Server	6 years ago
Stepan Fedorko-Bartos	9e0e4b13c5	Adds Yubikey OTP Support	6 years ago
Stepan Fedorko-Bartos	e66436625c	Adds Yubico Client ID and Secret Key Env Vars	6 years ago
Daniel García	f84cbeaaf8	Merge branch 'master' into rocket-0.4 # Conflicts: # src/db/models/organization.rs	6 years ago
Miroslav Prasil	dd684753d0	Fix gt()	6 years ago
Miroslav Prasil	f3e6cc6ffd	Set PartialOrd to consider invalid i32 UserOrgType lower than anything	6 years ago
Miroslav Prasil	b94f4db52a	Fix #242	6 years ago
Miroslav Prasil	66a4c5d48b	Implement comparison between i32 and UserOrgType	6 years ago
Daniel García	4638786507	Merge branch 'master' into rocket-0.4 # Conflicts: # src/api/core/mod.rs	6 years ago
Roman Hargrave	62bc58e145	Clean up after u2f endpoint split	6 years ago
Roman Hargrave	760e0ab805	Initial u2f fix	6 years ago
Daniel García	6eb1c3d638	Fixed change in organizations header, now Request::get_param() are indexed by segment, not dynamic parameter.	6 years ago
Daniel García	bc532f54d5	Improve login query parsing	6 years ago
Daniel García	c673370103	Updated bw_rs to Rocket version 0.4-rc1	6 years ago
janost	c32c65d367	Accept PUT and POST on /settings/domains, returns JsonResult, fixes saving Custom Equivalent Domains	6 years ago
janost	daa66b08dc	Fix /sync without query string	6 years ago
janost	55fbd8d468	Don't send Domains if excludeDomains=true on /sync	6 years ago
Miroslav Prasil	2e7fa6440b	Do not spawn WS thread if it's disabled	6 years ago
Miroslav Prasil	9ecc98c3cc	Disable WebSockets negotiation by default	6 years ago
Daniel García	02fd68d63b	Merge pull request #218 from janost/refactor-folder-save Folder::save() should return QueryResult instead of bool	6 years ago
janost	e985221b50	User::save() should return QueryResult instead of bool	6 years ago
janost	77cf63c06d	Folder::save() should return QueryResult instead of bool	6 years ago
Daniel García	faec050a6d	Merge pull request #217 from janost/refactor-device-save Device::save() should return QueryResult instead of bool	6 years ago
janost	58a78ffa54	Device::save() should return QueryResult instead of bool	6 years ago
janost	64f6c60bfd	Organization::save() and UserOrganization::save() should return QueryResult instead of bool	6 years ago
Miroslav Prasil	a28caa33ef	Implement poor man's admin panel	6 years ago
Daniel García	ce4fedf191	Change error response to be closer to upstream	6 years ago
janost	5292d38c73	CollectionCipher::save() and delete() should return QueryResult instead of bool	6 years ago
Daniel García	1049646e27	Merge pull request #210 from janost/cipher-save-refactor Cipher::save() should return QueryResult instead of bool	6 years ago
janost	380cf06211	Cipher::save() should return QueryResult instead of bool	6 years ago
janost	c29bc9309a	Return proper error message for org reinvite	6 years ago
Daniel García	7112c86471	Updated dependencies, removed valid mail check (now done by lettre), and updated global domains file	6 years ago
Daniel García	2aabf14372	Merge pull request #206 from mprasil/collection_revision Collection update updates User revision	6 years ago
Miroslav Prasil	d9457e929c	Add continuation token when we return object list	6 years ago
Miroslav Prasil	86b49856a7	Handle return value from Collection::save()	6 years ago
Miroslav Prasil	54f54ee845	Update revision for users on collection save	6 years ago
Miroslav Prasil	c3c74506a7	Add missing fields to returned Org json	6 years ago
Miroslav Prasil	fb4e6bab14	Clean up the share_collection handling	6 years ago
Daniel García	9eaa9c1a17	Add WEBSOCKET_ADDRESS config option (Fixes #199 )	6 years ago

1 2 3 4 5 ...

439 Commits (5521a866934e4a8f6d4f3ca7bfe3aefa3808d113)