Daniel García
bfd93e5b13
Show organizations in admin panel, implement reload templates option
6 years ago
Daniel García
a797459560
Implement HIBP check [WIP].
...
Add extra security attributes to admin cookie.
Error handling.
6 years ago
Daniel García
6cbb683f99
Rename admin templates to match email
6 years ago
Daniel García
92bbb98d48
Created base template
6 years ago
Daniel García
834c847746
Implement admin JWT cookie, separate JWT issuers for each type of token and migrate admin page to handlebars template
6 years ago
Daniel García
97aa407fe4
Move email templates to subfolder
6 years ago
TBK
d8116a80df
Add Feature-Policy header
6 years ago
Daniel García
e0aec8d373
Use new i64::to_be_bytes and remove byteorder dep
...
(https://doc.rust-lang.org/stable/std/primitive.i64.html#method.to_be_bytes )
6 years ago
Daniel García
1ce2587330
Correct update cipher order: first save cipher, then cipher-folder, then notify
6 years ago
Miroslav Prasil
71a10e0378
Fix sharing the item to organization.
6 years ago
Daniel García
9bf13b7872
Can't return inside multipart closure
6 years ago
Daniel García
d420992f8c
Update some function calls to use ?
6 years ago
Daniel García
c259a0e3e2
Save recovery code when using yubikey and stop repeating headers.user everywhere
6 years ago
Daniel García
432be274ba
Improve org mismatch check, consider different orgs
6 years ago
Daniel García
484bf5b703
Check that the client is not updating an outdated cipher, that should be part of an org now
6 years ago
Daniel García
4bf32af60e
Fix folder notifications, enable template strict mode and add missing option to env template
6 years ago
Daniel García
0e4a746eeb
Added SMTP_FROM_NAME
6 years ago
Daniel García
2fe919cc5e
Embed the default templates
6 years ago
Daniel García
bcd750695f
Default to $data_folder/templates and remove dev option (use `TEMPLATES_FOLDER=src/static/templates` instead)
6 years ago
Daniel García
19b6bb0fd6
Initial stab at templates
6 years ago
Daniel García
f571df7367
Revert yubikey feature, not needed anymore
6 years ago
Daniel García
de51bc782e
Updated dependencies, removing need for yubico fork
6 years ago
Daniel García
c5aef60bd7
Implement unofficial warning message
6 years ago
Daniel García
6f52104324
Fix casing error in Attachment, should fix 'Attachment doesn't exist' errors
6 years ago
Daniel García
1d7f704754
Send CipherUpdate when adding and deleting attachments
6 years ago
Daniel García
1d034749f7
Fix AArch64 build by disabling yubico
6 years ago
Daniel García
320266606e
Implement put collections
6 years ago
Daniel García
a0a08c4c5a
Include IP in invalid admin token error
6 years ago
Daniel García
4309df8334
Only create invitations when SMTP is disabled, and ignore invitations if we have a token.
...
Disallow users from accepting invitation twice
6 years ago
Daniel García
f1161c65fb
Make sure an invitation is created when reinviting
6 years ago
Daniel García
50eeb4f651
Remove whitespace before processing tokens
6 years ago
Daniel García
21b85b78b1
Changed reinvite check and removed obsolete comment
6 years ago
Daniel García
673adde9f1
Make the admin retype the user name before deleting
6 years ago
Daniel García
c9063a06b4
Print unauthorized error message
6 years ago
Daniel García
5e37471488
Merge pull request #323 from njfox/invite_accepted_email
...
Send email notifications when invitations are accepted/confirmed
6 years ago
Nick Fox
0a74e79cea
Refactor generate_invite_claims, make org_name and org_id optional
6 years ago
Nick Fox
7db66f73f0
Refactor invited_by_email check
6 years ago
Nick Fox
2f5bdc23f6
Fix formatting and add vault link to notification emails
6 years ago
Nick Fox
cec28a85ac
Update admin page to work with new invitation flow
6 years ago
Daniel García
5f49ecd7f3
Updated dependencies to use u2f crate directly, and some style changes
6 years ago
Nick Fox
736c0e62f2
Send emails to inviters/invitees when invites are accepted/confirmed
6 years ago
Nick Fox
43eb064351
Replace invite/reinvite email functions with generic send_email
6 years ago
Daniel García
30e768613b
Start using rustfmt and some style changes to make some lines shorter
6 years ago
Daniel García
adb8052689
Updated Error to implement Display and Debug, instead of using custom methods
6 years ago
Daniel García
1483829c94
Removed invalid todo
6 years ago
Daniel García
acb9d1b3c6
Remove config option for admin email, embdedded admin page, managed IO::Error, and added security and cache headers globally
6 years ago
Daniel García
301919d9d4
Modified navigation bar and corrected some comments
6 years ago
Daniel García
2bb0b15e04
Implemented better errors for JWT
6 years ago
Daniel García
250a2b340f
Use new Errors in latest changes
6 years ago
Daniel García
b2fc0499f6
Finish invite functionality, and remove virtual organization
6 years ago
Daniel García
6a99849a1e
Implemented proper error handling, now we can do `user.save($conn)?;` and it works.
...
In the future, maybe we can do the same with the `find_by_id` methods that return an Option.
6 years ago
Daniel García
172f1770cf
Embed the icon in the binary, no need to download when it's not going to change
6 years ago
Daniel García
1b5134dfe2
Fixed delete user when 2FA is enabled, implemented delete user for admin panel, and the front-end part for invite user. Secured admin panel behind a configurable token.
6 years ago
Daniel García
5fecf09631
Initial version of admin panel, list users and reload user list works. No serious auth method yet, password is 'token123'
6 years ago
Daniel García
7d7d8afed9
Merge pull request #318 from njfox/reinvite_endpoint
...
Add email reinvite endpoint
6 years ago
Nick Fox
f20c4705d9
Refactor invite claims and disallow reinvites to virtual_org
6 years ago
Nick Fox
3142d8d01f
Add more detail to invitation not found error
6 years ago
Nick Fox
84fa5a4ed6
Implement reinvite endpoint
6 years ago
Daniel García
004a3f891f
Merge pull request #315 from aksdb/master
...
Restrict join on users_collections to current user (fixes #313 )
6 years ago
Andreas Schneider
e7ea5097f4
Restrict join on users_collections to current user ( fixes #313 )
6 years ago
Miroslav Prasil
8451a70de6
Rewrite find_by_user_uuid to use one query
6 years ago
Nick Fox
ec715d78fb
Change log timestamp format so fail2ban can parse it
6 years ago
Nick Fox
b0ac640d8b
Use JWT to validate existing user invites
6 years ago
Daniel García
2b24b17609
Merge pull request #295 from njfox/invite_emails
...
Add Email Invite Functionality
6 years ago
Nick Fox
2cd736ab81
Validate JWT if a user registers with SMTP invites enabled
6 years ago
Nick Fox
99256b9b3a
Prefix unused params with underscore
6 years ago
Nick Fox
26bf7bc12f
Use upstream jslib invite/registration workflow
6 years ago
Daniel García
b3ec8f2611
Merge pull request #302 from tycho/icon-cache-ttl
...
implement TTLs for icon cache
6 years ago
Steven Noonan
a55c048a62
icons: implement positive/negative cache TTLs
...
Signed-off-by: Steven Noonan <steven@uplinklabs.net>
6 years ago
Steven Noonan
848cd1dbec
add environment variables for ICON_CACHE_TTL and ICON_CACHE_NEGTTL
...
These aren't used yet, but will be utilized by the icon caching service
in a subsequent patch.
Signed-off-by: Steven Noonan <steven@uplinklabs.net>
6 years ago
Daniel García
149e69414f
Merge pull request #293 from dheimerl/patch-1
...
Update web.rs
6 years ago
dheimerl
9a7d3634d5
Changed frame-ancestors to use 'self'
6 years ago
dheimerl
7f7c936049
Fixed web.rs
6 years ago
Nick Fox
9479108fb7
Remove CONFIG.email_invitations
6 years ago
Nick Fox
042c1072d9
Remove CONFIG.email_invitation option
6 years ago
Daniel García
5a9aab1a32
Implement fromform, and ignore case and underscores, fixes #298
6 years ago
dheimerl
037eb0b790
Update web.rs
...
Add frame-ancestors to allow U2F to work in Chrome (and possibly Firefox) extension
6 years ago
Nick Fox
4910b14d57
Implement email invitations and registration workflow
6 years ago
Nick Fox
d428120ec6
Add email_invitations config option
6 years ago
Nick Fox
e2907f4250
Add invite email functionality
6 years ago
Nick Fox
680f5e83d8
Add Invite JWT struct and supporting functions
6 years ago
Daniel García
4e827e4f8a
Implement better retry and use it while saving device
6 years ago
algebro
e26e2319da
Close #264 . Usernames and IP addresses are logged on successful authentication
6 years ago
Daniel García
7adc045b80
Updated IP logging to use client_ip, to match old remote behavior.
...
Improved error logging, now it won't show a generic error message in some situations.
Removed delete device, which is not needed as it will be overwritten later.
Logged more info when an error occurs saving a device.
Added orgmanager to JWT claims.
6 years ago
Daniel García
19754c967f
More changes to the push token, and filtered multipart logs
6 years ago
Daniel García
738ad2127b
Fixed some clippy linting issues
6 years ago
Daniel García
cb930a0858
Remove some required values during login, now uses default values
6 years ago
Daniel García
94810c106a
Migrate to rust 2018 edition
6 years ago
Daniel García
2fde4e6933
Implemented proper logging, with support for file logging, timestamp and syslog (this last one is untested)
6 years ago
Daniel García
dc1bb6de20
Update device push token methods to more closely follow the official server response
6 years ago
Daniel García
6364c05789
Fix attachments during key rotation, add individual attachment key
6 years ago
Daniel García
f71f10eac6
Implemented key rotation with the latest vault
6 years ago
Daniel García
f1acc1e05a
Merge branch 'master' into rocket-0.4
6 years ago
Daniel García
3d36ac4601
Remove unwrap in connection_lost
6 years ago
Daniel García
00abd4c853
Add create endpoint, fixes #253 , fixes #261
6 years ago
Daniel García
a4550e51ea
Update dependencies and add /ciphers/create
6 years ago
Daniel García
5edbd0e952
Merge branch 'master' into rocket-0.4
...
# Conflicts:
# Cargo.lock
# Cargo.toml
# src/api/core/mod.rs
6 years ago
Daniel García
17052b665f
Merge pull request #257 from Step7750/fix-nfc-mobile
...
Fixes NFC Response for Mobile Yubikey OTP Login
6 years ago
Stepan Fedorko-Bartos
f344dbaad4
Fixes NFC Response for Mobile Login
6 years ago
Daniel García
c5c9e3fd65
Merge pull request #254 from Step7750/master
...
Adds Yubikey OTP Support
6 years ago