227b725514
[EC-152] Hide Subscription/Billing information for Provider-managed organizations ( #1970 )
...
* Block billing endpoints if org is managed by Provider
2022-05-10 12:19:22 +10:00
06c9b123f9
ensure no path specific in duo host ( #1985 )
2022-05-09 16:00:00 -04:00
3ffd240287
captcha scores ( #1967 )
...
* captcha scores
* some api fixes
* check bot on captcha attribute
* Update src/Core/Services/Implementations/HCaptchaValidationService.cs
Co-authored-by: e271828- <e271828-@users.noreply.github.com >
Co-authored-by: Chad Scharf <3904944+cscharf@users.noreply.github.com >
Co-authored-by: e271828- <e271828-@users.noreply.github.com >
2022-05-09 12:25:13 -04:00
a5bfc0554b
add proper URI validation to duo host ( #1984 )
2022-05-09 12:00:05 -04:00
8b1a6b4ad3
[Bug] Skip WebAuthn 2fa event logs during login flow ( #1978 )
...
* [Bug] Supress WebAuthn 2fa event logs during login process
* Formatting
* Simplified method call with new paramter input
2022-04-28 16:42:47 -05:00
a7a45893a3
PS-82 check send 2FA email for new devices on TwoFactorController send-email-login ( #1977 )
2022-04-28 13:14:09 -03:00
68f875b3d9
Use accept flow for sponsorship offers ( #1964 )
2022-04-27 11:03:14 -05:00
972657f982
[PS-284] Allow installation clients to not need a user. ( #1968 )
...
* Allow installation clients to not need a user.
* Run formatting
2022-04-22 16:40:38 -04:00
669d44c170
Remove noncompliant users for new policies ( #1951 )
2022-04-22 08:13:02 +10:00
de997a2246
Avoid sending "user need confirmation" emails when there are no org admins ( #1960 )
2022-04-20 21:05:21 +02:00
ec9dd8e16b
[EC-160] Give Provider Users access to all org ciphers and collections ( #1959 )
2022-04-20 09:59:00 +02:00
d1e4a43964
Allow for utilization of readonly db connection ( #1937 )
2022-04-08 21:20:23 +00:00
95acc79ebb
Log swallowed HttpRequestExceptions ( #1866 )
...
Co-authored-by: Hinton <oscar@oscarhinton.com >
2022-04-07 12:37:11 +02:00
0e88720d3a
Logging config changes ( #1935 )
...
* Logging config changes
* Regenerated packages.lock.json files
* fixed up more typos and regenerated json
2022-04-05 15:19:16 +00:00
af152811af
Issue 1362: Proposed change for controllers parsing string GUIDs. ( #1887 )
...
Co-authored-by: alexanderhlee <alexanderhlee@gmail.com >
2022-04-05 10:08:37 +02:00
9a1a7543c5
[euvr] Separate Billing Payment/History APIs ( #1932 )
...
* [euvr] Separate Billing Payment/History APIs
* Formatting
* Created AccountsBillingController // Deprecated GetBilling // Simplified PaymentService helpers
* Formatting
2022-04-04 11:40:28 -05:00
6f60d24f5a
Email verification for new devices ( #1931 )
...
* PS-56 Added Email 2FA on login with new devices that don't have any 2FA enabled
* PS-56 Fixed wrong argument in VerifyTwoFactor call
2022-04-01 17:08:47 -03:00
971914871d
add some european takeaway domains to global domains ( #1915 )
2022-03-27 16:54:05 +02:00
860a552bc7
Fix swapped launch settings default ( #1925 )
2022-03-25 16:11:01 -04:00
4814cef245
Feature/self hosted development ( #1921 )
...
* Add self-host option to migration runner
* Add Self-host launch options
* Add self-hosted settings override
Let's a single secrets/env config file control both
cloud and self-hosted settings by allowing
overrides to cloud settings with self-hosted
* Allow dev-signed licenses on dev self-hosted
* Allow setting bitwarden cloud api url
Useful for testing api integration between installations and cloud
* Remove testing echoes
* Remove run config property groups
* Use `getopts` for options
* Pass in full environment
2022-03-21 17:13:00 -05:00
a8f55bc10d
Seek to origin of MemoryStream before use ( #1918 )
2022-03-16 10:38:13 -05:00
e8cb8b67c9
Fix license signature containing LicenseType ( #1917 )
2022-03-16 16:15:36 +01:00
eee5caf1f8
Seek to origin of MemoryStream before use ( #1916 )
2022-03-16 10:01:16 -05:00
9a9c9d4bf6
Add error handling to identity accounts controller ( #1909 )
2022-03-14 20:08:01 -05:00
76ddcfa2dc
Fix org manager check on export ( #1906 )
...
* Fix org manager check on export
* Fix filter typo from collection to cipher
2022-03-14 15:34:22 -04:00
7046aecfd5
[Captcha] BUG Add null checks | Make ceiling default to zero ( #1903 )
...
* [Captcha] BUG Add null checks | Make ceiling default to zero
* Formatting
2022-03-09 12:07:06 -06:00
dd37745736
Fix OneLogin Import ( #1899 )
...
* Add PermissiveStringConverter
* Formatting
* Add value check
* Fix PR feedback
* Run formatter
2022-03-08 13:22:47 -05:00
a725802476
Handle null user in captch tokenable ( #1897 )
...
* Handle null user in captch tokenable
* Update test/Core.Test/Models/Business/Tokenables/HCaptchaTokenableTests.cs
Co-authored-by: Thomas Rittson <31796059+eliykat@users.noreply.github.com >
Co-authored-by: Thomas Rittson <31796059+eliykat@users.noreply.github.com >
2022-03-08 08:21:54 -06:00
4deb138fd9
Ignore case on AutoEnrollEnabled so it is deserialized properly ( #1900 )
2022-03-07 16:53:30 -05:00
a92d4f9bde
Cleanup node scripts ( #1858 )
2022-03-03 23:53:09 +01:00
3443fe952b
Don't send default SsoConfigurationData to clients ( #1879 )
2022-03-04 07:09:55 +10:00
17b22ca5a9
Add attachments check before moving ciphers to a free org ( #1890 )
2022-03-02 17:37:36 -05:00
19d5817f8f
[Captcha] Implement failed logins ceiling ( #1870 )
...
* [Hacker1] Failed Login Attempts Captcha
* [Captcha] Implement failed logins ceiling
* Formatting
* Updated approach after implementation talks with Kyle
* Updated email templates // Updated calling arch for failed attempts
* Formatting
* Updated 2fa email links
* Renamed baserequest methods to better match their actions
* EF migrations/scripts
* Updated with requested changes
* Defaults for MaxiumumFailedLoginAttempts
2022-03-02 15:45:00 -06:00
4cbe05da3c
SendGrid Mail Delivery Provider ( #1892 )
...
* add sendgrid mail delivery service
* <
* remove duplicate code
* fix test by using ISendGridClient interface
2022-03-01 19:09:51 -05:00
a7a39fb54d
CSA-6 Fix/remove artifact binding ( #1885 )
...
* Remove artifact binding, add validation
* Re-add JSON properties but eviscerate them
2022-02-28 13:43:49 -05:00
95998292f7
Ensure we require premium for u2f ( #1869 )
2022-02-16 20:28:20 +01:00
8d6c49f656
Add lock files for NuGet ( #1855 )
2022-02-10 15:40:31 +01:00
1b0d18a7c5
Switch to Legacy Deserialization ( #1851 )
2022-02-09 10:39:45 -05:00
f824a2aaf1
Revert to using newtonsoft for saving org TwoFactorProviders ( #1850 )
2022-02-09 14:46:37 +01:00
e05fce18bd
Resolve being unable to configure duo (System.Text.Json) ( #1847 )
2022-02-09 14:12:31 +01:00
2ed8be75dd
Fix organization duo 2fa not working due to switch to System.Text.Json ( #1846 )
2022-02-09 13:45:20 +01:00
cecf052b33
Remove falsely added Microsoft.Azure.Storage.Blobs ( #1845 )
2022-02-09 13:32:40 +01:00
9c98f0358b
Fix newtonsoft complaining about U2f keys ( #1844 )
2022-02-09 13:05:03 +01:00
11144e70ea
Partial revert of #1803 since Azure.Cosmos still uses newtonsoft ( #1843 )
2022-02-09 13:04:55 +01:00
b1cd42e394
Fix json only serializing base properties ( #1840 )
...
* Fix json only serializing base properties
* Run formatting
* Switch to returning concrete type
* Update method name
2022-02-07 10:28:11 -05:00
f56d2ecae5
[Hotfix] Fix attachment download ( #1841 )
2022-02-07 15:46:20 +01:00
cd61c826f9
[BEEEP] Add explicit error message when uploading the wrong license type ( #1831 )
2022-02-07 09:43:00 +01:00
240b6e7463
Update File Size to allow null ( #1839 )
...
* Update File Size to allow null
* Remove unneeded nullable number
2022-02-03 13:23:43 -05:00
5f2da6e4b7
Fix/identity service model validation ( #1837 )
...
* Fix indentation
* Fix comment
* Extract ModelStateValidationFilter add to Indentity MVC opts
* Remove unnecessary base constructor call
2022-02-02 13:26:15 -06:00
9e074bca49
Revert TwoFactorProviders to be saved with numerical value ( #1828 )
...
* Add enum key resolver
* Change tests to reflect changes
2022-02-02 14:21:11 -05:00
