1
0
mirror of https://github.com/bitwarden/server.git synced 2025-07-10 12:24:50 -05:00
Commit Graph

2743 Commits

Author SHA1 Message Date
227b725514 [EC-152] Hide Subscription/Billing information for Provider-managed organizations (#1970)
* Block billing endpoints if org is managed by Provider
2022-05-10 12:19:22 +10:00
06c9b123f9 ensure no path specific in duo host (#1985) 2022-05-09 16:00:00 -04:00
3ffd240287 captcha scores (#1967)
* captcha scores

* some api fixes

* check bot on captcha attribute

* Update src/Core/Services/Implementations/HCaptchaValidationService.cs

Co-authored-by: e271828- <e271828-@users.noreply.github.com>

Co-authored-by: Chad Scharf <3904944+cscharf@users.noreply.github.com>
Co-authored-by: e271828- <e271828-@users.noreply.github.com>
2022-05-09 12:25:13 -04:00
a5bfc0554b add proper URI validation to duo host (#1984) 2022-05-09 12:00:05 -04:00
8b1a6b4ad3 [Bug] Skip WebAuthn 2fa event logs during login flow (#1978)
* [Bug] Supress WebAuthn 2fa event logs during login process

* Formatting

* Simplified method call with new paramter input
2022-04-28 16:42:47 -05:00
a7a45893a3 PS-82 check send 2FA email for new devices on TwoFactorController send-email-login (#1977) 2022-04-28 13:14:09 -03:00
68f875b3d9 Use accept flow for sponsorship offers (#1964) 2022-04-27 11:03:14 -05:00
972657f982 [PS-284] Allow installation clients to not need a user. (#1968)
* Allow installation clients to not need a user.

* Run formatting
2022-04-22 16:40:38 -04:00
669d44c170 Remove noncompliant users for new policies (#1951) 2022-04-22 08:13:02 +10:00
de997a2246 Avoid sending "user need confirmation" emails when there are no org admins (#1960) 2022-04-20 21:05:21 +02:00
ec9dd8e16b [EC-160] Give Provider Users access to all org ciphers and collections (#1959) 2022-04-20 09:59:00 +02:00
d1e4a43964 Allow for utilization of readonly db connection (#1937) 2022-04-08 21:20:23 +00:00
95acc79ebb Log swallowed HttpRequestExceptions (#1866)
Co-authored-by: Hinton <oscar@oscarhinton.com>
2022-04-07 12:37:11 +02:00
0e88720d3a Logging config changes (#1935)
* Logging config changes

* Regenerated packages.lock.json files

* fixed up more typos and regenerated json
2022-04-05 15:19:16 +00:00
AHL
af152811af Issue 1362: Proposed change for controllers parsing string GUIDs. (#1887)
Co-authored-by: alexanderhlee <alexanderhlee@gmail.com>
2022-04-05 10:08:37 +02:00
9a1a7543c5 [euvr] Separate Billing Payment/History APIs (#1932)
* [euvr] Separate Billing Payment/History APIs

* Formatting

* Created AccountsBillingController // Deprecated GetBilling // Simplified PaymentService helpers

* Formatting
2022-04-04 11:40:28 -05:00
6f60d24f5a Email verification for new devices (#1931)
* PS-56 Added Email 2FA on login with new devices that don't have any 2FA enabled

* PS-56 Fixed wrong argument in VerifyTwoFactor call
2022-04-01 17:08:47 -03:00
971914871d add some european takeaway domains to global domains (#1915) 2022-03-27 16:54:05 +02:00
860a552bc7 Fix swapped launch settings default (#1925) 2022-03-25 16:11:01 -04:00
4814cef245 Feature/self hosted development (#1921)
* Add self-host option to migration runner

* Add Self-host launch options

* Add self-hosted settings override

Let's a single secrets/env config file control both
cloud and self-hosted settings by allowing
overrides to cloud settings with self-hosted

* Allow dev-signed licenses on dev self-hosted

* Allow setting bitwarden cloud api url

Useful for testing api integration between installations and cloud

* Remove testing echoes

* Remove run config property groups

* Use `getopts` for options

* Pass in full environment
2022-03-21 17:13:00 -05:00
a8f55bc10d Seek to origin of MemoryStream before use (#1918) 2022-03-16 10:38:13 -05:00
e8cb8b67c9 Fix license signature containing LicenseType (#1917) 2022-03-16 16:15:36 +01:00
eee5caf1f8 Seek to origin of MemoryStream before use (#1916) 2022-03-16 10:01:16 -05:00
9a9c9d4bf6 Add error handling to identity accounts controller (#1909) 2022-03-14 20:08:01 -05:00
76ddcfa2dc Fix org manager check on export (#1906)
* Fix org manager check on export

* Fix filter typo from collection to cipher
2022-03-14 15:34:22 -04:00
7046aecfd5 [Captcha] BUG Add null checks | Make ceiling default to zero (#1903)
* [Captcha] BUG Add null checks | Make ceiling default to zero

* Formatting
2022-03-09 12:07:06 -06:00
dd37745736 Fix OneLogin Import (#1899)
* Add PermissiveStringConverter

* Formatting

* Add value check

* Fix PR feedback

* Run formatter
2022-03-08 13:22:47 -05:00
a725802476 Handle null user in captch tokenable (#1897)
* Handle null user in captch tokenable

* Update test/Core.Test/Models/Business/Tokenables/HCaptchaTokenableTests.cs

Co-authored-by: Thomas Rittson <31796059+eliykat@users.noreply.github.com>

Co-authored-by: Thomas Rittson <31796059+eliykat@users.noreply.github.com>
2022-03-08 08:21:54 -06:00
4deb138fd9 Ignore case on AutoEnrollEnabled so it is deserialized properly (#1900) 2022-03-07 16:53:30 -05:00
a92d4f9bde Cleanup node scripts (#1858) 2022-03-03 23:53:09 +01:00
3443fe952b Don't send default SsoConfigurationData to clients (#1879) 2022-03-04 07:09:55 +10:00
17b22ca5a9 Add attachments check before moving ciphers to a free org (#1890) 2022-03-02 17:37:36 -05:00
19d5817f8f [Captcha] Implement failed logins ceiling (#1870)
* [Hacker1] Failed Login Attempts Captcha

* [Captcha] Implement failed logins ceiling

* Formatting

* Updated approach after implementation talks with Kyle

* Updated email templates // Updated calling arch for failed attempts

* Formatting

* Updated 2fa email links

* Renamed baserequest methods to better match their actions

* EF migrations/scripts

* Updated with requested changes

* Defaults for MaxiumumFailedLoginAttempts
2022-03-02 15:45:00 -06:00
4cbe05da3c SendGrid Mail Delivery Provider (#1892)
* add sendgrid mail delivery service

* <

* remove duplicate code

* fix test by using ISendGridClient interface
2022-03-01 19:09:51 -05:00
a7a39fb54d CSA-6 Fix/remove artifact binding (#1885)
* Remove artifact binding, add validation

* Re-add JSON properties but eviscerate them
2022-02-28 13:43:49 -05:00
95998292f7 Ensure we require premium for u2f (#1869) 2022-02-16 20:28:20 +01:00
8d6c49f656 Add lock files for NuGet (#1855) 2022-02-10 15:40:31 +01:00
1b0d18a7c5 Switch to Legacy Deserialization (#1851) 2022-02-09 10:39:45 -05:00
f824a2aaf1 Revert to using newtonsoft for saving org TwoFactorProviders (#1850) 2022-02-09 14:46:37 +01:00
e05fce18bd Resolve being unable to configure duo (System.Text.Json) (#1847) 2022-02-09 14:12:31 +01:00
2ed8be75dd Fix organization duo 2fa not working due to switch to System.Text.Json (#1846) 2022-02-09 13:45:20 +01:00
cecf052b33 Remove falsely added Microsoft.Azure.Storage.Blobs (#1845) 2022-02-09 13:32:40 +01:00
9c98f0358b Fix newtonsoft complaining about U2f keys (#1844) 2022-02-09 13:05:03 +01:00
11144e70ea Partial revert of #1803 since Azure.Cosmos still uses newtonsoft (#1843) 2022-02-09 13:04:55 +01:00
b1cd42e394 Fix json only serializing base properties (#1840)
* Fix json only serializing base properties

* Run formatting

* Switch to returning concrete type

* Update method name
2022-02-07 10:28:11 -05:00
f56d2ecae5 [Hotfix] Fix attachment download (#1841) 2022-02-07 15:46:20 +01:00
cd61c826f9 [BEEEP] Add explicit error message when uploading the wrong license type (#1831) 2022-02-07 09:43:00 +01:00
240b6e7463 Update File Size to allow null (#1839)
* Update File Size to allow null

* Remove unneeded nullable number
2022-02-03 13:23:43 -05:00
5f2da6e4b7 Fix/identity service model validation (#1837)
* Fix indentation

* Fix comment

* Extract ModelStateValidationFilter add to Indentity MVC opts

* Remove unnecessary base constructor call
2022-02-02 13:26:15 -06:00
9e074bca49 Revert TwoFactorProviders to be saved with numerical value (#1828)
* Add enum key resolver

* Change tests to reflect changes
2022-02-02 14:21:11 -05:00