cd8907542a
Make sure the provided domain contains the protocol and show a useful error when it doesn't
5 years ago
29a0795219
Add backend support for alternate base dir (subdir/subpath) hosting
...
To use this, include a path in the `DOMAIN` URL, e.g.:
* `DOMAIN=https://example.com/custom-path `
* `DOMAIN=https://example.com/multiple/levels/are/ok `
5 years ago
325039c316
Attachment size limits, per-user and per-organization
5 years ago
8867626de8
Add option to change invitation org name, fixes #825
...
Add option to allow additional iframe ancestors, fixes #843
Sort the rocket routes before printing them
5 years ago
480ba933fa
Don't error if admin token is empty but disabled
5 years ago
c4101162d6
SIGNUPS_ALLOWED with no whitelist [ fixes #830 ]
...
This reverts back to `SIGNUPS_ALLOWED` when there is no domain whitelist
set. The functionality was broken in 64d6f72
5 years ago
632d55265b
Merge pull request #824 from tomuta/fix_change_email
...
Fix change email when no whitelist is configured
5 years ago
e277f7d1c1
Fix change email when no whitelist is configured
...
Fixes issue #792
5 years ago
ff7b4a3d38
Update handlebars to 3.0 which included performance improvements.
...
Updated lettre to newer git revision, which should give better error messages now.
5 years ago
d212dfe735
Accept y/n, True/False, 1/0 as booleans in environment vars
5 years ago
88c56de97b
Config option for client IP header
5 years ago
a0ece3754b
Formatting
5 years ago
8d1b72b951
Collapsed log messages from 3 lines per request to 2 and hidden the ones valued as less informative.
...
Use LOG_LEVEL debug or trace to recover them.
Removed LOG_MOUNTS and bundled it with LOG_LEVEL debug and trace.
Removed duplicate error messages
Made websocket not proxied message more prominent, but only print it once.
5 years ago
1e224220a8
Updated deps and fixed some lints
5 years ago
bd1e8be328
Implement change-email, email-verification, account-recovery, and welcome notifications
5 years ago
64d6f72e6c
Add the ability to disable signups, but allow signups from a whitelist
...
This feature can be enabled by setting SIGNUPS_ALLOWED=false and
providing a comma-separated list of whitelisted domains in
SIGNUPS_DOMAINS_WHITELIST.
Fixes #727
5 years ago
3f6809bcdf
Fixed issue/request #705
...
Added a config option to disable time drifted totp codes.
Default is false, since this is what the RFC recommends.
5 years ago
c52adef919
Added configurable smtp timeout.
...
- Added config option for smtp timeout
- Lowered default timeout to 15 seconds instead of default 60.
5 years ago
d29b6bee28
Remove unnecessary clones and other clippy fixes
5 years ago
3b7a5bd102
Move 2FA email config to after SMTP config
5 years ago
881c1978eb
Error when the URL scheme doesn't match the database type
5 years ago
662bc27523
Updated dependencies and fixed disable_admin_token description
5 years ago
9124d8a3fb
Updated icon blacklisting.
...
- Blacklisting was not effective for redirects and rel href
- Able to blacklist non global IP's like RFC1918, multicast etc...
5 years ago
e3404dd322
Use the local scripts instead of cloudflare, remove jquery and update config so disabling a master toggle doesn't remove the values
5 years ago
c07c9995ea
Merge pull request #555 from vverst/email-codes
...
Add Email 2FA login
5 years ago
5d50b1ee3c
Merge remote-tracking branch 'upstream/master' into email-codes
5 years ago
591ae10144
Get token from single u64
5 years ago
2d2745195e
Allow explicitly defined smtp auth mechansim
5 years ago
d23d4f2c1d
Allow editing HIBP key in the admin panel
5 years ago
515b87755a
Update HIBP to v3, requires paid API key, fixes #583
5 years ago
ee7837d022
Add option to require new device emails
5 years ago
ad2225b6e5
Add configuration options for Email 2FA
5 years ago
0b60f20eb3
Add email message for twofactor email codes
5 years ago
bc6a53b847
Add new device email when user logs in
5 years ago
6989fc7bdb
Corrected Spelling
...
Changed it from Chache to Cache on Line 207
6 years ago
9add8e19eb
Update dependencies and remove travis unused feature
6 years ago
dc36f0cb6c
re-added sqlite check_db code, cleanup
6 years ago
ff759397f6
initial mysql support
6 years ago
ab95a69dc8
Rework migrations for MySQL
6 years ago
85c8a01f4a
Merge branch 'master' of github.com:Skeen/bitwarden_rs
6 years ago
42af7c6dab
MySQL database
6 years ago
8d9827c55f
Implement selection between global config and user settings for duo keys.
6 years ago
cad63f9761
Auto generate akey
6 years ago
bf446f44f9
Enable DATA_FOLDER to affect default CONFIG_FILE path
6 years ago
754087b990
Add global duo config and document options in .env template
6 years ago
c5832f2b30
With the latest fern, syslog can be a config option instead of a build flag
6 years ago
2475c36a75
Implement log_level config option
6 years ago
4b40cda910
Added domain blacklist regex for icons service and improved valid domain check.
...
Reorganized the icons code a bit.
6 years ago
e93538cea9
Add option to use wrapped TLS in email, instead of STARTTLS upgrade
6 years ago
0718a090e1
Trim spaces from admin token during authentication and validate that the admin panel token is not empty
6 years ago
7d2bc9e162
Added option to force 2fa at logins and made some changes to two factor code.
...
Added newlines to config options to keep them a reasonable length.
6 years ago
5794969f5b
Merge pull request #406 from shauder/feature/disable-admin-token
...
Allow the Admin token to be disabled in the advanced menu
6 years ago
8b5b06c3d1
Allow the Admin token to be disabled in the advanced menu
6 years ago
b50c27b619
Print a warning when an env variable is being overriden by the config file, and reorganize the main file a bit.
...
Modified the JWT key generation, now it should also show the output of OpenSSL in the logs.
6 years ago
7b5bcd45f8
Show read-only options in the config panel and the env variable names in the tooltips
6 years ago
0b903fc5f4
Extended the template file and refer to wiki
6 years ago
4df686f49e
Add an option to not enable WAL (should help in #399 )
6 years ago
d7eeaaf249
Escape user data from admin panel when calling JS
6 years ago
d3773a433a
Removed list of mounted routes at startup by default, with option to add it back. This would get annoying when starting the server frequently, because it printed ~130 lines of mostly useless info
6 years ago
3b27dbb0aa
Added config option for icon download timeout
6 years ago
d086a99e5b
Implemented HTML emails with text alternative
6 years ago
330e90a6ac
Hide secrets in config panel
6 years ago
8b4a6f2a64
Fixed some clippy lints and changed update_uuid_revision to only use one db query
6 years ago
ef63342e20
Add reset user config button
6 years ago
89840790e7
Fix .env path traversal issue
6 years ago
a72809b225
Yubico and SMTP enable/disable master switches
6 years ago
9976e4736e
Add groups
6 years ago
dc92f07232
Added env variable to select config file. Initial work towards groups and added tooltips with descriptions and nicer names
6 years ago
3db815b969
Implemented config form and fixed config priority
6 years ago
ade293cf52
Save config
6 years ago
877408b808
Implement basic config loading and updating. No save to file yet.
6 years ago
86ed75bf7c
Config can now be serialized / deserialized
6 years ago
c0e350b734
Disable icon downloads, accept optional query after icon href, format and clippy fixes
6 years ago
f935f5cf46
Remove local icon extractor
6 years ago
a1dc47b826
Change config to thread-safe system, needed for a future config panel.
...
Improved some two factor methods.
6 years ago
Daniel García
Jeremy Lin
Miro Prasil
tomuta
BlackDex
vpl
ViViDboarder
Cubity_First
Nils Domrose
Nils Domrose
Emil Madsen
Shane Faulkner
Miroslav Prasil