topaLE
/
vaultwarden
mirror of https://github.com/dani-garcia/vaultwarden
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

Merge 3a4a2aecb6 into 07569a06da

pull/6484/merge
Rene Leonhardt 3 days ago
committed by GitHub
parent
07569a06da 3a4a2aecb6
commit
4446ec4d67
No known key found for this signature in database GPG Key ID: B5690EEEBB952194
10 changed files with 125 additions and 135 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 9
      src/api/admin.rs
  2. 14
      src/api/core/accounts.rs
  3. 7
      src/api/core/ciphers.rs
  4. 30
      src/api/core/emergency_access.rs
  5. 7
      src/api/core/events.rs
  6. 7
      src/api/core/sends.rs
  7. 7
      src/api/core/two_factor/duo_oidc.rs
  8. 13
      src/auth.rs
  9. 7
      src/db/models/sso_nonce.rs
  10. 7
      src/util.rs

9
src/api/admin.rs
View File

@ -716,13 +716,14 @@ async fn diagnostics(_token: AdminToken, ip_header: IpHeader, conn: DbConn) -> A
let web_vault_version = get_web_vault_version(); let web_vault_version = get_web_vault_version();
// Check if the running version is newer than the latest stable released version // Check if the running version is newer than the latest stable released version
let web_vault_pre_release = if let Ok(web_ver_match) = semver::VersionReq::parse(&format!(">{latest_web_build}")) { let web_vault_pre_release = match semver::VersionReq::parse(&format!(">{latest_web_build}")) {
web_ver_match.matches( Ok(web_ver_match) => web_ver_match.matches(
&semver::Version::parse(&web_vault_version).unwrap_or_else(|_| semver::Version::parse("2025.1.1").unwrap()), &semver::Version::parse(&web_vault_version).unwrap_or_else(|_| semver::Version::parse("2025.1.1").unwrap()),
) ),
} else { Err(_) => {
error!("Unable to parse latest_web_build: '{latest_web_build}'"); error!("Unable to parse latest_web_build: '{latest_web_build}'");
false false
}
}; };
let diagnostics_json = json!({ let diagnostics_json = json!({

14
src/api/core/accounts.rs
View File

@ -324,8 +324,11 @@ pub async fn _register(data: Json<RegisterData>, email_verification: bool, conn:
error!("Error sending welcome email: {e:#?}"); error!("Error sending welcome email: {e:#?}");
} }
user.last_verifying_at = Some(user.created_at); user.last_verifying_at = Some(user.created_at);
} else if let Err(e) = mail::send_welcome(&user.email).await { } else {
error!("Error sending welcome email: {e:#?}"); match mail::send_welcome(&user.email).await {
Err(e) => error!("Error sending welcome email: {e:#?}"),
Ok(_) => (),
}
} }
if email_verified && is_email_2fa_required(data.organization_user_id, &conn).await { if email_verified && is_email_2fa_required(data.organization_user_id, &conn).await {
@ -1692,9 +1695,8 @@ async fn get_auth_requests_pending(headers: Headers, conn: DbConn) -> JsonResult
pub async fn purge_auth_requests(pool: DbPool) { pub async fn purge_auth_requests(pool: DbPool) {
debug!("Purging auth requests"); debug!("Purging auth requests");
if let Ok(conn) = pool.get().await { match pool.get().await {
AuthRequest::purge_expired_auth_requests(&conn).await; Ok(conn) => AuthRequest::purge_expired_auth_requests(&conn).await,
} else { Err(_) => error!("Failed to get DB connection while purging trashed ciphers"),
error!("Failed to get DB connection while purging trashed ciphers")
} }
} }

7
src/api/core/ciphers.rs
View File

@ -100,10 +100,9 @@ pub fn routes() -> Vec<Route> {
pub async fn purge_trashed_ciphers(pool: DbPool) { pub async fn purge_trashed_ciphers(pool: DbPool) {
debug!("Purging trashed ciphers"); debug!("Purging trashed ciphers");
if let Ok(conn) = pool.get().await { match pool.get().await {
Cipher::purge_trash(&conn).await; Ok(conn) => Cipher::purge_trash(&conn).await,
} else { Err(_) => error!("Failed to get DB connection while purging trashed ciphers"),
error!("Failed to get DB connection while purging trashed ciphers")
} }
} }

30
src/api/core/emergency_access.rs
View File

@ -721,7 +721,11 @@ pub async fn emergency_request_timeout_job(pool: DbPool) {
return; return;
} }
if let Ok(conn) = pool.get().await { let Ok(conn) = pool.get().await else {
error!("Failed to get DB connection while searching emergency request timed out");
return;
};
let emergency_access_list = EmergencyAccess::find_all_recoveries_initiated(&conn).await; let emergency_access_list = EmergencyAccess::find_all_recoveries_initiated(&conn).await;
if emergency_access_list.is_empty() { if emergency_access_list.is_empty() {
@ -742,12 +746,10 @@ pub async fn emergency_request_timeout_job(pool: DbPool) {
if CONFIG.mail_enabled() { if CONFIG.mail_enabled() {
// get grantor user to send Accepted email // get grantor user to send Accepted email
let grantor_user = let grantor_user = User::find_by_uuid(&emer.grantor_uuid, &conn).await.expect("Grantor user not found");
User::find_by_uuid(&emer.grantor_uuid, &conn).await.expect("Grantor user not found");
// get grantee user to send Accepted email // get grantee user to send Accepted email
let grantee_user = let grantee_user = User::find_by_uuid(&emer.grantee_uuid.clone().expect("Grantee user invalid"), &conn)
User::find_by_uuid(&emer.grantee_uuid.clone().expect("Grantee user invalid"), &conn)
.await .await
.expect("Grantee user not found"); .expect("Grantee user not found");
@ -765,9 +767,6 @@ pub async fn emergency_request_timeout_job(pool: DbPool) {
} }
} }
} }
} else {
error!("Failed to get DB connection while searching emergency request timed out")
}
} }
pub async fn emergency_notification_reminder_job(pool: DbPool) { pub async fn emergency_notification_reminder_job(pool: DbPool) {
@ -776,7 +775,11 @@ pub async fn emergency_notification_reminder_job(pool: DbPool) {
return; return;
} }
if let Ok(conn) = pool.get().await { let Ok(conn) = pool.get().await else {
error!("Failed to get DB connection while searching emergency request timed out");
return;
};
let emergency_access_list = EmergencyAccess::find_all_recoveries_initiated(&conn).await; let emergency_access_list = EmergencyAccess::find_all_recoveries_initiated(&conn).await;
if emergency_access_list.is_empty() { if emergency_access_list.is_empty() {
@ -804,12 +807,10 @@ pub async fn emergency_notification_reminder_job(pool: DbPool) {
if CONFIG.mail_enabled() { if CONFIG.mail_enabled() {
// get grantor user to send Accepted email // get grantor user to send Accepted email
let grantor_user = let grantor_user = User::find_by_uuid(&emer.grantor_uuid, &conn).await.expect("Grantor user not found");
User::find_by_uuid(&emer.grantor_uuid, &conn).await.expect("Grantor user not found");
// get grantee user to send Accepted email // get grantee user to send Accepted email
let grantee_user = let grantee_user = User::find_by_uuid(&emer.grantee_uuid.clone().expect("Grantee user invalid"), &conn)
User::find_by_uuid(&emer.grantee_uuid.clone().expect("Grantee user invalid"), &conn)
.await .await
.expect("Grantee user not found"); .expect("Grantee user not found");
@ -824,7 +825,4 @@ pub async fn emergency_notification_reminder_job(pool: DbPool) {
} }
} }
} }
} else {
error!("Failed to get DB connection while searching emergency notification reminder")
}
} }

7
src/api/core/events.rs
View File

@ -335,9 +335,8 @@ pub async fn event_cleanup_job(pool: DbPool) {
return; return;
} }
if let Ok(conn) = pool.get().await { match pool.get().await {
Event::clean_events(&conn).await.ok(); Ok(conn) => Event::clean_events(&conn).await.ok().unwrap_or(()),
} else { Err(_) => error!("Failed to get DB connection while trying to cleanup the events table"),
error!("Failed to get DB connection while trying to cleanup the events table")
} }
} }

7
src/api/core/sends.rs
View File

@ -60,10 +60,9 @@ pub fn routes() -> Vec<rocket::Route> {
pub async fn purge_sends(pool: DbPool) { pub async fn purge_sends(pool: DbPool) {
debug!("Purging sends"); debug!("Purging sends");
if let Ok(conn) = pool.get().await { match pool.get().await {
Send::purge(&conn).await; Ok(conn) => Send::purge(&conn).await,
} else { Err(_) => error!("Failed to get DB connection while purging sends"),
error!("Failed to get DB connection while purging sends")
} }
} }

7
src/api/core/two_factor/duo_oidc.rs
View File

@ -344,10 +344,9 @@ async fn extract_context(state: &str, conn: &DbConn) -> Option<DuoAuthContext> {
// Task to clean up expired Duo authentication contexts that may have accumulated in the database. // Task to clean up expired Duo authentication contexts that may have accumulated in the database.
pub async fn purge_duo_contexts(pool: DbPool) { pub async fn purge_duo_contexts(pool: DbPool) {
debug!("Purging Duo authentication contexts"); debug!("Purging Duo authentication contexts");
if let Ok(conn) = pool.get().await { match pool.get().await {
TwoFactorDuoContext::purge_expired_duo_contexts(&conn).await; Ok(conn) => TwoFactorDuoContext::purge_expired_duo_contexts(&conn).await,
} else { Err(_) => error!("Failed to get DB connection while purging expired Duo authentications"),
error!("Failed to get DB connection while purging expired Duo authentications")
} }
} }

13
src/auth.rs
View File

@ -700,15 +700,10 @@ impl<'r> FromRequest<'r> for OrgHeaders {
// org_id is usually the second path param ("/organizations/<org_id>"), // org_id is usually the second path param ("/organizations/<org_id>"),
// but there are cases where it is a query value. // but there are cases where it is a query value.
// First check the path, if this is not a valid uuid, try the query values. // First check the path, if this is not a valid uuid, try the query values.
let url_org_id: Option<OrganizationId> = { let url_org_id: Option<OrganizationId> = request
if let Some(Ok(org_id)) = request.param::<OrganizationId>(1) { .param::<OrganizationId>(1)
Some(org_id) .and_then(|r| r.ok())
} else if let Some(Ok(org_id)) = request.query_value::<OrganizationId>("organizationId") { .or_else(|| request.query_value("organizationId").and_then(|r| r.ok()));
Some(org_id)
} else {
None
}
};
match url_org_id { match url_org_id {
Some(org_id) if uuid::Uuid::parse_str(&org_id).is_ok() => { Some(org_id) if uuid::Uuid::parse_str(&org_id).is_ok() => {

7
src/db/models/sso_nonce.rs
View File

@ -73,15 +73,14 @@ impl SsoNonce {
pub async fn delete_expired(pool: DbPool) -> EmptyResult { pub async fn delete_expired(pool: DbPool) -> EmptyResult {
debug!("Purging expired sso_nonce"); debug!("Purging expired sso_nonce");
if let Ok(conn) = pool.get().await { let Ok(conn) = pool.get().await else {
err!("Failed to get DB connection while purging expired sso_nonce");
};
let oldest = Utc::now().naive_utc() - *NONCE_EXPIRATION; let oldest = Utc::now().naive_utc() - *NONCE_EXPIRATION;
db_run! { conn: { db_run! { conn: {
diesel::delete(sso_nonce::table.filter(sso_nonce::created_at.lt(oldest))) diesel::delete(sso_nonce::table.filter(sso_nonce::created_at.lt(oldest)))
.execute(conn) .execute(conn)
.map_res("Error deleting expired SSO nonce") .map_res("Error deleting expired SSO nonce")
}} }}
} else {
err!("Failed to get DB connection while purging expired sso_nonce")
}
} }
} }

7
src/util.rs
View File

@ -375,10 +375,9 @@ where
S: AsRef<str>, S: AsRef<str>,
T: FromStr, T: FromStr,
{ {
if let Some(Ok(value)) = string.map(|s| s.as_ref().parse::<T>()) { match string.map(|s| s.as_ref().parse::<T>()) {
Some(value) Some(Ok(value)) => Some(value),
} else { _ => None,
None
} }
} }

Write Preview
Loading…
Cancel
Save