1
0
mirror of https://github.com/bitwarden/server.git synced 2025-07-01 08:02:49 -05:00
Commit Graph

3397 Commits

Author SHA1 Message Date
5c5544a4f4 Update forgot password help URL (#1050) 2020-12-18 11:44:15 -05:00
246cac1a33 Allow SHA1 inbound sigs from Idp (#1047) 2020-12-18 11:26:52 -05:00
fd293dd183 Added OIDC scope management (#1049)
* added OIDC scope management

* Remove errant code comment
2020-12-18 11:07:31 -05:00
97ba472606 Make nginx Content-Security-Policy configurable (#1048)
* Adding the nginx head Content-Security-Policy to the Configuration file

* fixing whitespace formatting

* adding a '+' that got removed
2020-12-18 07:58:35 -08:00
037757a740 Added missing enum type (#1046) 2020-12-17 14:20:23 -06:00
c390c46b3e Version bump 1.38.4 (#1045) 2020-12-17 12:43:47 -05:00
a46d678d6e Fix Organization put drops cipher updates (#1044) 2020-12-17 11:19:14 -06:00
1b8d5a8ee8 version bump to 1.38.3 (#1043) 2020-12-17 10:49:52 -05:00
136c39fa50 Initial commit of SingleOrg downstream policy checks (#1038) 2020-12-16 16:02:54 -06:00
0f1af2333e Add support for Emergency Access (#1000)
* Add support for Emergency Access

* Add migration script

* Review comments

* Ensure grantor has premium when inviting new grantees.

* Resolve review comments

* Remove two factor references
2020-12-16 14:36:47 -05:00
9bb63b86f0 Update Dockerfile (#1040) 2020-12-16 11:16:03 -05:00
d63eb376c4 Allow for slight customization of the mssql db backup interval (#1008)
* Allow for slight customization of the mssql db backup interval

* Honor env TZ if set and clean up -u in sleep calculation
2020-12-15 11:08:30 -05:00
25dff79527 enable send 2020-12-11 16:44:39 -05:00
70f5fd5030 [Policy] Personal Ownership (#1013)
* Initial commit of disable personal vault policy

* Added new sproc // updated policy check (was missing conditionals)

* Updated DeMorgan's law logic
2020-12-11 10:45:26 -06:00
fee5c932db started charging sales tax on seat/storage upgrades and auto renewals (#1034)
* started charging sales tax on seat/storage upgrades and auto renewals

* Code review fixes for auto-renewing subscriptions charging sales tax
2020-12-09 14:04:46 -05:00
7d3fb55b2d Add docker notary (#1036)
* updating the Build Action to sign docker images

* moving the DCT env var placement

* adding in some temp_test values to build/push the dev images

* testing dev docker signing

* debugging missing file

* adding manual creation of ~/.docker/trust/private since we are not building with DCT enabled

* updating the secret name for the delegation key passphrase

* removing debugging code
2020-12-09 10:58:58 -08:00
8fc397716a Self-hosting version-bump to 1.38.2 (#1032) 2020-12-09 12:40:39 -05:00
01d4d97ef1 Ensure that users are confirmed status (#1033) 2020-12-09 12:04:14 -05:00
7eaf7ab770 [Bug] Fix cipher clone yielding incorrect RevisionDate (#1031)
* Fix cipher clone yielding incorrect RevisionDate

* PR fixes

Co-authored-by: Matt Gibson <mdgibson@Matts-MBP.lan>
2020-12-07 19:35:34 -06:00
8d9b1ff214 Fix mssql healthcheck (#1030)
Let's let time for the container to start
2020-12-07 14:57:36 -05:00
085987d2f1 fixed a broken link and removed a duplicate property (#1029) 2020-12-07 09:18:25 -05:00
09aea4ed38 [Bug] Improve SSO user provision flow (#1022)
* Initial commit of provisioning updates

* Updated strings

* removed extra BANG

* Separated orgUsers db lookup - prioritized existing user Id

* Updated create sso record method // Added sproc for org/email retrieval
2020-12-04 16:45:54 -06:00
0d7c876904 fixed a broken test (#1027)
* fixed a broken test

* actually didn't need this line
2020-12-04 17:37:35 -05:00
ea5ce21e50 added sales tax table and procedure to sql project (#1026) 2020-12-04 12:39:28 -05:00
b877c25234 Implemented tax collection for subscriptions (#1017)
* Implemented tax collection for subscriptions

* Cleanup for Sales Tax

* Cleanup for Sales Tax

* Changes a constraint to an index for checking purposes

* Added and implemented a ReadById method for TaxRate

* Code review fixes for Tax Rate implementation

* Code review fixes for Tax Rate implementation

* Made the SalesTax migration script rerunnable
2020-12-04 12:05:16 -05:00
9e1bf3d584 version bump 1.38.2 (#1023) v1.38.2 2020-12-03 22:06:36 -05:00
a29073428f bump docker version for web vault 2020-12-02 18:04:29 -05:00
77e704e620 ensure fail isn't overwritten with success result (#1018) 2020-12-02 17:15:21 -05:00
36195eb0c9 disable send for release (#1019) 2020-12-02 17:15:08 -05:00
c0781db333 return ProfileOrganizationResponseModel for /organizations (#1016) 2020-12-01 16:43:07 -05:00
c0defd8971 require device info when authing (#1014) 2020-12-01 16:42:41 -05:00
edf30974dc Validate cipher updates with revision date (#994)
* Add last updated validation to cipher replacements

* Add AutoFixture scaffolding.

AutoDataAttributes and ICustomizations are meant to automatically
produce valid test input. Examples are the Cipher customizations,
which enforce the model's mutual exclusivity of UserId and
OrganizationId.

FixtureExtensions create a fluent way to generate SUTs. We currently
use parameter injection to fascilitate service testing, which is nicely
handled by AutoNSubstitute. However, in order to gain access to the
substitutions, we need to Freeze them onto the Fixture. The For fluent
method allows specifying a Freeze to a specific type's constructor and
optionally to a parameter name in that constructor.

* Unit tests for single Cipher update version checks

* Fix test runner

Test runner requires Microsoft.NET.Test.Sdk

* Move to provider model for SUT generation

This model differs from previous in that you no longer need to specify
which dependencies you would like access to. Instead, all are
remembered and can be queried through the sutProvider.

* User cipher provided by Put method reads

Every put method already reads all relevant ciphers from database,
there's no need to re-read them.

JSON serialization of datetimes seems to leave truncate at second
precision. Verify last known date time is within one second rather than
exact.

* validate revision date for share many requests

* Update build script to use Github environment path

Co-authored-by: Matt Gibson <mdgibson@Matts-MBP.lan>
2020-11-23 08:48:05 -06:00
f311f40d93 Added OrgIdentifer to SetPasswordAsync // Added jit user two factor provider (#1009) 2020-11-22 08:46:44 -06:00
58eb0510ca add sends to sync response (#1002) 2020-11-18 13:55:50 -05:00
faf909479e re-enable send (#1004) 2020-11-18 12:43:58 -05:00
5e8862853f version bump for patch 1.38.1 (#1007) 2020-11-18 12:42:58 -05:00
d1ba044096 Revert "self-hosted version-bump (#1005)" (#1006)
This reverts commit f0598b6610.
v1.38.1
2020-11-18 12:24:37 -05:00
f0598b6610 self-hosted version-bump (#1005) 2020-11-18 12:10:30 -05:00
7405ccb007 bump version 2020-11-18 10:24:02 -05:00
2e6368d11a Set user API key on account creation through SSO auto provision (#1003) 2020-11-18 10:20:59 -05:00
028ad46c47 Bugfix: pulled back correct policy (#999) 2020-11-17 17:04:29 -06:00
60973e3051 docker version bump and update setup-msbuild 2020-11-16 22:44:34 -05:00
80f2bf9260 Fix null email parameter from missing email claim (#993) v1.38.0 2020-11-13 11:26:05 -05:00
fefa0e2dea Dont run custom token logic for org based client_ids explicitly (#992)
* Dont run custom token logic for org based client_ids explicitly

* org to organization
2020-11-13 10:07:49 -05:00
e35faf1335 Performed some null checks (#991) 2020-11-13 08:53:36 -05:00
ac1defc97a bump versions and disabled send creation 2020-11-12 21:43:10 -05:00
040737d7ce expand contributing guide (#987) 2020-11-12 09:40:18 -05:00
dc69f4bd46 Changed the return type for BuildIdentityClaims() (#989) 2020-11-11 10:56:22 -05:00
25a9991908 Implement User-based API Keys (#981)
* added column ApiKey to dbo.User

* added dbo.User.ApiKey to User_Update

* added dbo.User.ApiKey to User_Create

* wrote migration script for implementing dbo.User.ApiKey

* Added ApiKey prop to the User table model

* Created AccountsController method for getting a user's API Key

* Created AccountsController method for rotating a user API key

* Added support to ApiClient for passed-through ClientSecrets when the request comes from the cli

* Added a new conditional to ClientStore to account for user API keys

* Wrote unit tests for new user API Key methods

* Added a refresh of dbo.UserView to new migration script for ApiKey

* Let client_credentials grants into the custom token logic

* Cleanup for ApiKey auth in the CLI feature

* Created user API key on registration

* Removed uneeded code for user API keys

* Changed a .Contains() to a .StartsWith() in ClientStore

* Changed index that an array is searched on

* Added more claims to the user apikey clients

* Moved some claim finding logic to a helper method
2020-11-10 15:15:29 -05:00
d9cd7551fe [Exemption] Updated policy messages (#984)
* Updated messages // added exemption message // added callout

* updated strings - futureproofing
2020-11-10 09:53:44 -06:00