05a3acc9e1
Fix Error trait object dyn warnings
6 years ago
ee550be80c
Added http favicon url when response failed
6 years ago
fccc0a4b05
Update rocket to latest master
Downgrade rust version to fix cargo issue
Set rustup profile to minimal
6 years ago
2cda2a2ef2
Fix crash on failed sync, now fails quietly and retries after interval
6 years ago
bef275979a
Auto delete users who are not in ldap
6 years ago
3b97aaf90c
Fallback to invites
6 years ago
f9434b42e8
Fix actually checking auth success
6 years ago
e1fdda4f0f
Test hardcoded key
6 years ago
2f740e06c7
Rollback test
6 years ago
831a4854d0
Add hardcoded keys to user, still need to generate
6 years ago
b3ca385794
Added password and akey generation
6 years ago
0835dd5ab7
Config support for ldap sync, Thread ldap sync
6 years ago
0eaeb2d686
Add ldap connector to bitwarden
6 years ago
98a6811323
Handle ldap connection errors
6 years ago
1e976a9b56
Split ldap username + handle config
6 years ago
7f7d53bd02
Update identity.rs
fix
6 years ago
95fda731dc
update
6 years ago
24d1448181
update
6 years ago
cb133363c7
update
6 years ago
ea48b2872c
update
6 years ago
fb28834d35
update
6 years ago
5a1990401c
fix
6 years ago
c2ad8ba7a7
Update identity.rs
fix
6 years ago
3541e61c21
Test replacing password with ldap connection
6 years ago
ebc47dc161
Remove unneeded WS logging
6 years ago
3b7a5bd102
Move 2FA email config to after SMTP config
6 years ago
2edecf34ff
Use user_uuid instead of mut twofactor
6 years ago
18bc8331f9
Send email when preparing 2FA JsonError
6 years ago
603a964579
Fixed issue #663 .
During the 2fa activation there is no twofactor record yet.
Changed the layout a bit so that it will generate a new twofactor record
when it does not exists yet. Else it will just update the already
existing record.
6 years ago
9466f02696
Recoded TOTP time drift validation
6 years ago
2cde814aaa
Fixed a bug with the sqlite backup feature.
When a custom path is used the backup feature does not work.
Changed it so it will take the path of the sqlite file and use that.
6 years ago
d292269ea0
Make the blacklist logic be cached
6 years ago
ebf40099f2
Updated authenticator TOTP
- Added security check for previouse used codes
- Allow TOTP codes with 1 step back and forward when there is a time
drift. This means in total 3 codes could be valid. But only newer codes
then the previouse used codes are excepted after that.
6 years ago
edc482c8ea
Changed HIBP Error message.
- Moved the manual link to the check to the top.
- Clearified that hibp is a payed service.
- Changed error logo to hibp logo.
6 years ago
6e5c03cc78
Some modification when no HIBP API Key is set
- Added an URL with the useraccount for manual check.
- Added support for HTTP(S)_PROXY for hibp.
6 years ago
881c1978eb
Error when the URL scheme doesn't match the database type
6 years ago
662bc27523
Updated dependencies and fixed disable_admin_token description
6 years ago
be2916333b
Fixed issue #565
Issue fixed by omitting the cookie header when cookie_str is empty
6 years ago
9124d8a3fb
Updated icon blacklisting.
- Blacklisting was not effective for redirects and rel href
- Able to blacklist non global IP's like RFC1918, multicast etc...
6 years ago
7b1da527a6
Change CORS headers
Only add Allow-Origin to all requests and move the others to preflight OPTIONS request.
If Origin is `file://` change it to the wildcard.
6 years ago
d6e9af909b
Remove the unnecessary check for sqlite
The binary we use is called `sqlite3` so no need to check for other
name variants as we won't use those anyways.
6 years ago
acdd42935b
Add sqlite binary into the docker images
This is done to enable backup functionality in the admin interface while
we're waiting for the libsqlite-sys 0.17 to bubble up in the upstream
dependencies. Then we can start using `VACUUM INTO`
This also extends the check for the sqlite binary to also try `sqlite3`
as this is the name of the binary in baseimage distributions we use.
6 years ago
56f12dc982
Use Access-Control-Allow-Method
6 years ago
4c07f05b3a
Remove Result<T, E: Debug> in preparation of deprecation as Rocket responder.
Removed unnecessary returns
6 years ago
f5f9861a78
Adds support for PostgreSQL which resolves #87 and is mentioned in #246 .
This includes migrations as well as Dockerfile's for amd64.
The biggest change is that replace_into isn't supported by Diesel for the
PostgreSQL backend, instead requiring the use of on_conflict. This
unfortunately requires a branch for save() on all of the models currently
using replace_into.
6 years ago
df8114f8be
Updated client kdf iterations to 100000 and fixed some lints
6 years ago
5a2f968d7a
Set correct response headers, status code
6 years ago
16d88402cb
Initial version of CORS support
7 years ago
7dcf18151d
Fix onsubmit
7 years ago
e3404dd322
Use the local scripts instead of cloudflare, remove jquery and update config so disabling a master toggle doesn't remove the values
7 years ago
unknown
BlackDex
Daniel García
liberodark
ORLHAC Etienne [EXT]
Jellyfrog
vpl
Miro Prasil
Michael Powers