BlackDex
9124d8a3fb
Updated icon blacklisting.
...
- Blacklisting was not effective for redirects and rel href
- Able to blacklist non global IP's like RFC1918, multicast etc...
5 years ago
Daniel García
e7b8602e1f
Merge pull request #638 from mprasil/add_sqlite_binary
...
Add sqlite binary into the docker images
5 years ago
Miro Prasil
d6e9af909b
Remove the unnecessary check for sqlite
...
The binary we use is called `sqlite3` so no need to check for other
name variants as we won't use those anyways.
5 years ago
Miro Prasil
acdd42935b
Add sqlite binary into the docker images
...
This is done to enable backup functionality in the admin interface while
we're waiting for the libsqlite-sys 0.17 to bubble up in the upstream
dependencies. Then we can start using `VACUUM INTO`
This also extends the check for the sqlite binary to also try `sqlite3`
as this is the name of the binary in baseimage distributions we use.
5 years ago
Daniel García
8367d1d715
Merge pull request #631 from vverst/cors-put
...
Use Access-Control-Allow-Method
5 years ago
vpl
56f12dc982
Use Access-Control-Allow-Method
5 years ago
Daniel García
4c07f05b3a
Remove Result<T, E: Debug> in preparation of deprecation as Rocket responder.
...
Removed unnecessary returns
5 years ago
Daniel García
b73ff886c3
Use upstream rmp
5 years ago
Daniel García
2e7bd62353
Merge pull request #624 from swedishborgie/postgresql
...
Fix issue with downloading attachments and PostgreSQL backend.
5 years ago
Michael Powers
1264eb640a
Added a migration that fixes #1 which caused attachments to be broken
...
for the PostgreSQL backend. Also converts any CHAR types to VARCHAR to prevent the same issue from causing problems down the line.
5 years ago
Daniel García
3a90364b32
Merge pull request #621 from swedishborgie/postgresql
...
Adds support for PostgreSQL which adds #87 and is mentioned in #246 .
5 years ago
Michael Powers
f5f9861a78
Adds support for PostgreSQL which resolves #87 and is mentioned in #246 .
...
This includes migrations as well as Dockerfile's for amd64.
The biggest change is that replace_into isn't supported by Diesel for the
PostgreSQL backend, instead requiring the use of on_conflict. This
unfortunately requires a branch for save() on all of the models currently
using replace_into.
5 years ago
Daniel García
f9408a00c6
Allow self signed certs and increase a bit the timings
5 years ago
Daniel García
ae8bf954c1
Updated web vault to 2.12
5 years ago
Daniel García
c656f2f694
Merge pull request #604 from mprasil/fix-healthcheck
...
Fix #603 and remove mysql from sqlite image
5 years ago
Miro Prasil
eea3f13bb3
Fix #603 and remove mysql from sqlite image
...
This changes the healthcheck to use `sh` instead of bash, that is absent
from some image versions. (like alpine)
It also removes `*mariadb*` packages from runtime image of sqlite images
as these shouldn't be required.
5 years ago
Daniel García
df8114f8be
Updated client kdf iterations to 100000 and fixed some lints
5 years ago
Daniel García
dda244edd8
Merge pull request #589 from H3npi/H3npi-patch-1
...
Adds Healthcheck for default docker container
5 years ago
H3npi
cce3ce816c
Adds environment port to curl healthcheck
5 years ago
Daniel García
65c0d1064b
Merge pull request #599 from vverst/cors
...
Add Cors headers
5 years ago
vpl
5a2f968d7a
Set correct response headers, status code
5 years ago
vpl
16d88402cb
Initial version of CORS support
5 years ago
Daniel García
7dcf18151d
Fix onsubmit
5 years ago
Daniel García
e3404dd322
Use the local scripts instead of cloudflare, remove jquery and update config so disabling a master toggle doesn't remove the values
5 years ago
Daniel García
bfc517ee80
Remove unused warning
5 years ago
Daniel García
4a7d2a1e28
Rename static files endpoint
5 years ago
H3npi
66a68f6d22
Adds Healthcheck for all docker container
5 years ago
Daniel García
469318bcbd
Updated dependencies and web vault version
5 years ago
Daniel García
c07c9995ea
Merge pull request #555 from vverst/email-codes
...
Add Email 2FA login
5 years ago
Daniel García
2c2276c5bb
Merge pull request #585 from ViViDboarder/mail-auth-over-insecure
...
Allow explicitly defined smtp auth mechansim
5 years ago
ViViDboarder
672a245548
Remove unecessary clone
5 years ago
vpl
5d50b1ee3c
Merge remote-tracking branch 'upstream/master' into email-codes
5 years ago
vpl
c99df1c310
Compare token using crypto::ct_eq
5 years ago
vpl
591ae10144
Get token from single u64
5 years ago
ViViDboarder
2d2745195e
Allow explicitly defined smtp auth mechansim
5 years ago
Daniel García
026f9da035
Allow removing users two factors
5 years ago
Daniel García
d23d4f2c1d
Allow editing HIBP key in the admin panel
5 years ago
Daniel García
515b87755a
Update HIBP to v3, requires paid API key, fixes #583
5 years ago
Daniel García
d8ea3d2bfe
Merge pull request #582 from vverst/require-device-email-config
...
Add config option to require new device emails
5 years ago
vpl
ee7837d022
Add option to require new device emails
5 years ago
Daniel García
07743e490b
Ignore error sending device email
5 years ago
Daniel García
9101d6e48f
Update dependencies
5 years ago
Daniel García
27c23b60b8
Merge pull request #571 from BlackDex/icon-proxy-support
...
Added reqwest proxy support
5 years ago
BlackDex
e7b6238f43
Added reqwest proxy support
5 years ago
vpl
ad2225b6e5
Add configuration options for Email 2FA
5 years ago
vpl
5609103a97
Use ring to generate email token
5 years ago
vpl
6d460b44b0
Use saved token for email 2fa codes
5 years ago
vpl
efd8d9f528
Remove some unused imports, unneeded mut variables
5 years ago
vpl
29aedd388e
Add email code logic and move two_factor into separate modules
5 years ago
vpl
27e0e41835
Add email authenticator logic
5 years ago