bitwarden_rs

mirror of https://github.com/ViViDboarder/bitwarden_rs.git synced 2024-06-02 09:32:34 +00:00

Author	SHA1	Message	Date
Daniel García	70f3ab8ec3	Migrate lazy_static to once_cell, less macro magic and slightly faster	2020-03-09 22:04:03 +01:00
BlackDex	84dc2eda1f	Changed javascript default argument construction	2020-03-04 15:08:14 +01:00
BlackDex	390d10d656	Relocated SMTP test input+button. - Moved smtp test option to within the "SMTP Email" Settings block. - Added optional option to prevent full page reload. - SMTP Test and Backup do not reload the admin interface any more.	2020-03-04 13:25:38 +01:00
zethra	cc404b4edc	Added command line flags for help and version Signed-off-by: zethra <benaagoldberg@gmail.com>	2020-03-02 15:51:57 -05:00
BlackDex	97fb7b5b96	Added urlpath to smtpTest function	2020-02-26 16:58:57 +01:00
BlackDex	5a974c7b94	Added SMTP test button in the admin gui - Added a test button for checking the e-mail settings. - Fixed a bug with the _post JavaScript function: A function was overwriten with a variable and errors were not handled correctly like a 500 for example.	2020-02-26 16:49:56 +01:00
Daniel García	cd8907542a	Make sure the provided domain contains the protocol and show a useful error when it doesn't	2020-02-23 14:55:27 +01:00
Daniel García	ad9f2b2d8e	Removed test urlpath	2020-02-22 19:01:58 +01:00
Daniel García	2f4a9865e1	Use absolute paths in the admin page	2020-02-22 17:49:33 +01:00
Jeremy Lin	29a0795219	Add backend support for alternate base dir (subdir/subpath) hosting To use this, include a path in the `DOMAIN` URL, e.g.: * `DOMAIN=https://example.com/custom-path` * `DOMAIN=https://example.com/multiple/levels/are/ok`	2020-02-18 21:27:00 -08:00
Daniel García	325039c316	Attachment size limits, per-user and per-organization	2020-02-17 22:56:26 +01:00
Miro Prasil	03233429f4	Remove check from Invitation:take() I've checked the spots when `Invitation::new()` and `Invitation::take()` are used and it seems like all spots are already correctly gated. So to enable invitations via admin API even when invitations are otherwise disabled, this check can be removed.	2020-02-16 20:28:50 +00:00
Miroslav Prasil	0a72c4b6db	Do not disable invitations via admin API This was brought up today: https://github.com/dani-garcia/bitwarden_rs/issues/752#issuecomment-586715073 I don't think it makes much sense in checking whether admin has the right to send invitation as admin can change the setting anyway. Removing the condition allows users to forbid regular users from inviting new users to server while still preserving the option to do so via the admin API.	2020-02-16 15:01:07 +00:00
Daniel García	8867626de8	Add option to change invitation org name, fixes #825 Add option to allow additional iframe ancestors, fixes #843 Sort the rocket routes before printing them	2020-02-04 22:14:50 +01:00
Daniel García	f5916ec396	Fix backwards indices	2020-01-30 22:33:50 +01:00
Daniel García	ebb36235a7	Cache icons in the clients	2020-01-30 22:30:57 +01:00
Daniel García	def174a517	Convert email domains to punycode	2020-01-30 22:11:53 +01:00
Daniel García	480ba933fa	Don't error if admin token is empty but disabled	2020-01-30 22:10:50 +01:00
Miro Prasil	c4101162d6	SIGNUPS_ALLOWED with no whitelist [fixes #830 ] This reverts back to `SIGNUPS_ALLOWED` when there is no domain whitelist set. The functionality was broken in `64d6f72`.	2020-01-29 11:32:42 +00:00
Daniel García	632d55265b	Merge pull request #824 from tomuta/fix_change_email Fix change email when no whitelist is configured	2020-01-28 20:52:16 +01:00
tomuta	e277f7d1c1	Fix change email when no whitelist is configured Fixes issue #792	2020-01-26 13:34:56 -07:00
Daniel García	ff7b4a3d38	Update handlebars to 3.0 which included performance improvements. Updated lettre to newer git revision, which should give better error messages now.	2020-01-26 15:29:14 +01:00
Daniel García	d212dfe735	Accept y/n, True/False, 1/0 as booleans in environment vars	2020-01-20 22:28:54 +01:00
Daniel García	84ed185579	Update u2f to 0.2, which requires OpenSSL but also might solve the problems we've had with certificates. The rust image doesn't need installing curl or tar, so removed. Also collapsed ENV lines.	2020-01-19 21:34:13 +01:00
Michael Powers	e196ba6e86	Switch error handling to ? operator instead of explicit handling.	2020-01-16 08:14:25 -05:00
Michael Powers	76743aee48	Fixes #635 - Unique constraint violation when using U2F tokens on PostgreSQL Because of differences in how .on_conflict() works compared to .replace_into() the PostgreSQL backend wasn't correctly ensuring the unique constraint on user_uuid and atype wasn't getting violated. This change simply issues a DELETE on the unique constraint prior to the insert to ensure uniqueness. PostgreSQL does not support multiple constraints in ON CONFLICT clauses.	2020-01-13 21:53:57 -05:00
Daniel García	96a189deb9	Merge pull request #803 from aeolyus/master Minor typo conect -> connect	2020-01-05 00:12:15 +01:00
Daniel García	8c229920ad	Protect websocket server against panics	2020-01-04 23:52:38 +01:00
Richard Huang	d592323e39	minor typo conect -> connect	2020-01-04 14:37:29 -08:00
Daniel García	36ae946655	Avoid some to_string in the request logging and include message to disable web vault when not found.	2019-12-29 15:34:22 +01:00
Daniel García	cb6f392774	When receiving a comma separated list as IP, pick the first	2019-12-28 15:09:07 +01:00
Daniel García	88c56de97b	Config option for client IP header	2019-12-27 18:42:39 +01:00
Daniel García	e274af6e3d	Print current server time when failing TOTP, and use chrono as the rest of the server	2019-12-27 18:42:14 +01:00
Daniel García	a0ece3754b	Formatting	2019-12-27 18:37:14 +01:00
Daniel García	2545469713	Fix crash when page URL points to huge file	2019-12-19 00:37:16 +01:00
Daniel García	5cabf4d040	Fix IP not shown when failed login (Fixes #761 )	2019-12-07 14:38:32 +01:00
Daniel García	a03db6d224	Also hide options requests, unless using debug or trace	2019-12-06 22:55:29 +01:00
Daniel García	8d1b72b951	Collapsed log messages from 3 lines per request to 2 and hidden the ones valued as less informative. Use LOG_LEVEL debug or trace to recover them. Removed LOG_MOUNTS and bundled it with LOG_LEVEL debug and trace. Removed duplicate error messages Made websocket not proxied message more prominent, but only print it once.	2019-12-06 22:46:12 +01:00
Daniel García	912e1f93b7	Fix some lints	2019-12-06 22:12:41 +01:00
Daniel García	adc443ea80	Add endpoint to delete specific U2F key	2019-12-01 21:41:46 +01:00
Daniel García	0d32179d07	Logout button in admin page	2019-12-01 21:15:14 +01:00
Daniel García	12928b832c	Fix broken tests	2019-11-30 23:30:35 +01:00
Daniel García	1e224220a8	Updated deps and fixed some lints	2019-11-28 21:59:05 +01:00
Daniel García	924ba153aa	Merge pull request #730 from tomuta/email_verification Implement change-email, email-verification, account-recovery, and welcome notifications	2019-11-25 08:21:18 +01:00
tomuta	bd1e8be328	Implement change-email, email-verification, account-recovery, and welcome notifications	2019-11-24 22:28:49 -07:00
Daniel García	4b71197c97	Merge pull request #738 from ntimo/task/add-netcup-global-domains Added netcup domains to global domains	2019-11-22 15:54:21 +01:00
BlackDex	b209c1bc4d	Add an option to fetch and parse href="data:image" Some sites are using base64 encoded inline images for favicons. This will try to match those with some sane checks and return that. These icons will have lower prio then the icons with a normal URL.	2019-11-22 13:16:12 +01:00
ntimo	2b8d08a3f4	Added netcup domains to global domains	2019-11-21 08:31:18 +01:00
Daniel García	cbadf00941	Update web vault to fix twofactorauth.org integration Update dependencies and toolchain Update included equivalent domains with upstream changes	2019-11-19 20:30:09 +01:00
tomuta	64d6f72e6c	Add the ability to disable signups, but allow signups from a whitelist This feature can be enabled by setting SIGNUPS_ALLOWED=false and providing a comma-separated list of whitelisted domains in SIGNUPS_DOMAINS_WHITELIST. Fixes #727	2019-11-16 15:01:45 -07:00

1 2 3 4 5 ...

579 Commits