admin/server
1
0
Fork 0
mirror of https://github.com/bitwarden/server.git synced 2026-01-31 22:23:18 +08:00
Code Issues Packages Projects Releases Wiki Activity
2,887 Commits 505 Branches 224 Tags
7cae9d5e47d14e8e6d4051207ec3d604bfa004e4
Commit Graph

122 Commits

Author SHA1 Message Date
Oscar Hinton
07f37d1f74 WebAuthn (#903) 2021-03-22 23:21:43 +01:00
Matt Gibson
73346b01d1 Add factory to IGlobalSettings DI singleton (#1163) 
It turns out Singleton DI of interfaces does not use the specified
instance's Singleton, but just creates its own. This fixes the bug
where classes expecting an IGlobalSettings were given an empty GlobaSettings
instance
 2021-02-25 07:00:28 -06:00
Matt Gibson
5537470703 Use sas token for attachment downloads (#1153) 
* Get limited life attachment download URL

This change limits url download to a 1min lifetime.
This requires moving to a new container to allow for non-public blob
access.

Clients will have to call GetAttachmentData api function to receive the download
URL. For backwards compatibility, attachment URLs are still present, but will not
work for attachments stored in non-public access blobs.

* Make GlobalSettings interface for testing

* Test LocalAttachmentStorageService equivalence

* Remove comment

* Add missing globalSettings using

* Simplify default attachment container

* Default to attachments containe for existing methods

A new upload method will be made for uploading to attachments-v2.
For compatibility for clients which don't use these new methods, we need
to still use the old container. The new container will be used only for
new uploads

* Remove Default MetaData fixture.

* Keep attachments container blob-level security for all instances

* Close unclosed FileStream

* Favor default value for noop services
 2021-02-22 15:35:16 -06:00
Chad Scharf
99b95b5330 Fix safari sso header size (#1065) 
* Safari SSO header size fix - in progress

* Cleanup of memoryCacheTicketStore

* Redis cache ticket store + registration

* Revert some unecessary changes

* temp - distributed cookie: idsrv.external

* Ticket data cached storage added

* OIDC working w/ substantially reduced cookie size

* Added distributed cache cookie manager

* Removed hybrid OIDC flow

* Enable self-hosted folks to use Redis  for SSO

* Also allow self-hosted to use Redis cont...
 2021-01-11 11:03:46 -05:00
Oscar Hinton
0f1af2333e Add support for Emergency Access (#1000) 
* Add support for Emergency Access

* Add migration script

* Review comments

* Ensure grantor has premium when inviting new grantees.

* Resolve review comments

* Remove two factor references
 2020-12-16 14:36:47 -05:00
Addison Beck
b877c25234 Implemented tax collection for subscriptions (#1017) 
* Implemented tax collection for subscriptions

* Cleanup for Sales Tax

* Cleanup for Sales Tax

* Changes a constraint to an index for checking purposes

* Added and implemented a ReadById method for TaxRate

* Code review fixes for Tax Rate implementation

* Code review fixes for Tax Rate implementation

* Made the SalesTax migration script rerunnable
 2020-12-04 12:05:16 -05:00
Kyle Spearrin
82dd364e65 Send APIs (#979) 
* send work

* fix sql proj file

* update

* updates

* access id

* delete job

* fix delete job

* local send storage

* update sprocs for null checks
 2020-11-02 15:55:49 -05:00
Kyle Spearrin
1c6c599b8d Created sso config service with save (#936) 2020-09-15 10:17:44 -04:00
Chad Scharf
db7d05b52f Added PreValidate endpoint on Account controller (#896) 
* Added PreValidate endpoint on Account controller

* Fixed IHttpClientFactory implementation

* Core localization and org sproc fix

* Pass culture, fixed sso middleware bug
 2020-08-28 12:14:23 -04:00
Chad Scharf
2fb18d8cf2 Extracted logic to get Identity cert (#889) 2020-08-25 13:15:59 -04:00
Kyle Spearrin
e41aca81de allows dev runs to load a common idserv cert (#881) 2020-08-21 11:58:22 -04:00
Kyle Spearrin
2c4752f4ac Sso user table, model and repo stubbed out (#837) 
* Sso user table, model and repo stubbed out

* switch to nullable org id, bigint id

* update GetBySsoUserAsync

* cleanup migrator file

* fix EF user repo

* fix pg repo

* is `IS NULL` checks

* unique indexes

* update migration scripts

* add another unique index

* remove old script
 2020-07-28 10:03:09 -04:00
Kyle Spearrin
0d0c6c7167 sso integrations (#822) 
* stub out hybrid sso

* support for PKCE authorization_code clients

* sso service urls

* sso client key

* abstract request validator

* support for verifying password

* custom AuthorizationCodeStore that does not remove codes

* cleanup

* comment

* created master password

* ResetMasterPassword

* rename Sso client to OidcIdentity

* update env builder

* bitwarden sso project in docker-compose

* sso path in nginx config
 2020-07-16 08:01:39 -04:00
Matt Portune
92238eb0a9 Additional changes for enterprise portal sso config (#819) 
* Additional changes for enterprise portal sso config

* Requested changes

* rename enum to Saml2

* Limit to one SSO config per org
 2020-07-13 15:58:59 -04:00
Chad Scharf
7af50172e0 Reference event service implementation (#811) 
* Reference event service implementation

* Fix IReferenceable implementation of Id

* add structure to event body
 2020-07-07 12:01:34 -04:00
Kyle Spearrin
6bc7a3cdc0 adjust cors origin checks (#800) 
* allow cors from bitwarden.com on cloud

* allow file:// cors for safari extension

* fix missing paren
 2020-06-27 15:08:50 -04:00
Kyle Spearrin
cf70a5e480 set cors policies to only allow web vault origin (#787) 
* set cors policy to only allow web vault

* vault cors policy service
 2020-06-23 18:47:53 -04:00
Kyle Spearrin
10a6e12d09 generate signin token for enterprise portal (#728) 2020-05-12 15:36:33 -04:00
Chad Scharf
9800b752c0 Changed all C# control flow block statements to include space between keyword and open paren 2020-03-27 14:36:37 -04:00
Kyle Spearrin
1331cc90f7 check SettingHasValue instead of empty 2020-03-19 11:10:23 -04:00
Kyle Spearrin
518e94f60f upgrade more lgos. remove sendgrid 2020-03-05 10:33:44 -05:00
Kyle Spearrin
e8054df5b4 use policies property for orgs 2020-01-15 15:00:54 -05:00
Kyle Spearrin
13370e011f fix admin cookie expiration 2020-01-13 12:03:10 -05:00
Kyle Spearrin
d653629e79 EF repo fixes 2020-01-10 18:14:45 -05:00
Kyle Spearrin
29580684a3 upgrade to aspnet core 3.1 2020-01-10 08:33:13 -05:00
Kyle Spearrin
7c5be176fa Stub out EF repo base with user repo 2020-01-08 20:28:16 -05:00
Kyle Spearrin
1495f6e507 fix typo 2019-09-18 09:47:25 -04:00
Kyle Spearrin
3af2fbd4e9 register new services 2019-09-18 09:46:26 -04:00
Kyle Spearrin
aca274a49b add new properties to LogContext 2019-09-03 14:44:22 -04:00
Kyle Spearrin
b5d2a1da75 load certs from azure storage 2019-07-10 20:05:07 -04:00
Kyle Spearrin
6f0d64119a keep application cache in sync with service bus 2019-06-13 00:10:37 -04:00
Kyle Spearrin
43eeebdc21 trim ip 2019-04-26 09:56:22 -04:00
Kyle Spearrin
e6baa1490c UseForwardedHeaders with known proxies 2019-04-26 09:52:54 -04:00
Kyle Spearrin
01a293cf76 record installation devices 2019-03-19 00:39:03 -04:00
Kyle Spearrin
8427c23b5e amazon sqs block ip queuing 2019-03-18 16:23:37 -04:00
Kyle Spearrin
7e920b955c amazon ses mail delivery service 2019-03-13 16:19:00 -04:00
Kyle Spearrin
57ebe0de1a make sure global settings are set 2019-02-28 00:02:52 -05:00
Kyle Spearrin
c1c49fb67e show PII in dev mode 2019-02-26 17:01:06 -05:00
Kyle Spearrin
d568b86e1e inject stripepaymentservice 2019-02-08 23:53:09 -05:00
Kyle Spearrin
25f3b76e6b added transactions table 2019-01-31 16:45:01 -05:00
Kyle Spearrin
17cc1d6543 deprecate smtpclient for mailkit smtp service 2019-01-22 19:44:03 -05:00
Kyle Spearrin
acef40ee82 stub out user repo for postgresql 2019-01-15 22:07:13 -05:00
Kyle Spearrin
951e8f562e email token provider 2018-12-19 22:27:45 -05:00
Kyle Spearrin
5812915677 database maintenance jobs setup in admin 2018-10-09 10:12:27 -04:00
Kyle Spearrin
07855a3203 AddIdentityCore for passwordless identity service 2018-09-12 10:35:05 -04:00
Kyle Spearrin
88384836b5 get rid of AddBasicCustomIdentityServices 2018-09-12 00:15:59 -04:00
Kyle Spearrin
cb30a519a7 use 100k iterations 2018-09-01 10:42:44 -04:00
Kyle Spearrin
cf73b168ee More CanAccessPremium checks 2018-08-28 17:40:08 -04:00
Kyle Spearrin
b410a78b31 bump iterations to 75k 2018-08-18 22:02:43 -04:00
Kyle Spearrin
ff01ce5ca7 internal identity authorization 2018-08-15 18:43:26 -04:00