1
0
mirror of https://github.com/bitwarden/browser.git synced 2024-11-30 13:03:53 +01:00
Commit Graph

1349 Commits

Author SHA1 Message Date
Thomas Rittson
36641f07b9
Add unauthGuard and lockGuard to prevent unintended navigation (#351)
* Lift web repo unauthGuardService up to jslib

* Add lockGuard (requires vault to be locked)

* Fix linting
2021-04-22 07:52:48 +10:00
Oscar Hinton
3c872e56f2
Revert "Password reprompt (#343)" (#353)
This reverts commit 372e139810.
2021-04-21 20:49:18 +02:00
Matt Gibson
1f62b22285
CLI specifies bitwarden api for send download (#348)
This is needed for CLI to download Send files from non-configured
Bitwarden Servers. Web does not have this issue because it can assume
api from its own url.
2021-04-20 19:17:31 -05:00
Matt Gibson
3a1087456f
Rename CipherString and CipherArrayBuffer to Enc (#352) 2021-04-20 19:16:19 -05:00
Matt Gibson
a5ccca05da
Fix mistake and clarify api method name (#347) 2021-04-20 14:59:51 -05:00
Oscar Hinton
372e139810
Password reprompt (#343)
Add support for password reprompt on cipher items
2021-04-15 16:14:33 +02:00
Thomas Rittson
66eec2b022
Use sync instead of token to manage emailVerified (#344) 2021-04-15 07:00:49 +10:00
Oscar Hinton
92df633040
Remove last remnants of old analytics code (#345) 2021-04-14 21:34:30 +02:00
Matt Gibson
0a0cdaa7fd
Fix cipher upload (#346)
* Upload correct data array

* Require BufferArray Encryption for upload to server

The CipherArrayBuffer tiny type is only created by CryptoService
and required by all upload methods

* Add test for attachment upload encryption
2021-04-14 10:47:10 -05:00
kapitainsky
c832728b6d
fix: cmd + w doesn't close the window on macOS (#714) (#342)
cmd + w doesn't close the window on macOS. Based on @cscharf explanation - https://github.com/bitwarden/desktop/issues/714#issuecomment-810554674 - it seems that issue was introduced in response to erroneous Apple Store approver request. The code change reversed this change.
2021-04-13 14:31:34 -04:00
Tomasz Zdybał
827674847f
Skip FirefoxAccounts during Firefox CSV Import (#323)
* Skip FirefoxAccounts during Firefox CSV Import

Firefox exports 'chrome://FirefoxAccounts' if Firefox Accouts are used
in browser. It's quite hacky - password field in CSV is actually a JSON
encoded data, not a password.
Because it's not a useful record, it should be skipped during import.

* Fix indentation

* Move test Firefox test data to files, fix linter errors
2021-04-12 12:08:56 -05:00
Matt Gibson
62cc43fb46
Move renew endpoint to fix overlapping endpoint issue (#335) 2021-04-12 09:45:06 -05:00
Kyle Spearrin
cbd86a83c5 npm audit fix 2021-04-09 12:01:29 -04:00
Snyk bot
2428b7e592
fix: package.json & package-lock.json to reduce vulnerabilities (#334)
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-NODEFETCH-674311
- https://snyk.io/vuln/SNYK-JS-PAPAPARSE-564258
2021-04-09 11:58:32 -04:00
Kyle Spearrin
97715585a6 fix build problem with signalr upgrade 2021-04-09 11:54:16 -04:00
Snyk bot
0c7af12ffa
fix: upgrade @microsoft/signalr-protocol-msgpack from 3.1.0 to 3.1.13 (#327)
Snyk has created this PR to upgrade @microsoft/signalr-protocol-msgpack from 3.1.0 to 3.1.13.

See this package in npm:
https://www.npmjs.com/package/@microsoft/signalr-protocol-msgpack

See this project in Snyk:
https://app.snyk.io/org/kspearrin/project/38b1ffd6-0f49-4f56-b34f-c800f1e8b2aa?utm_source=github&utm_medium=upgrade-pr

Co-authored-by: Kyle Spearrin <kspearrin@users.noreply.github.com>
2021-04-09 11:44:33 -04:00
Snyk bot
0826247c7a
fix: upgrade node-forge from 0.7.6 to 0.10.0 (#329)
Snyk has created this PR to upgrade node-forge from 0.7.6 to 0.10.0.

See this package in npm:
https://www.npmjs.com/package/node-forge

See this project in Snyk:
https://app.snyk.io/org/kspearrin/project/38b1ffd6-0f49-4f56-b34f-c800f1e8b2aa?utm_source=github&utm_medium=upgrade-pr
2021-04-09 11:02:38 -04:00
Snyk bot
08cd6874a5
fix: upgrade core-js from 2.6.2 to 2.6.12 (#328)
Snyk has created this PR to upgrade core-js from 2.6.2 to 2.6.12.

See this package in npm:
https://www.npmjs.com/package/core-js

See this project in Snyk:
https://app.snyk.io/org/kspearrin/project/38b1ffd6-0f49-4f56-b34f-c800f1e8b2aa?utm_source=github&utm_medium=upgrade-pr
2021-04-09 11:00:20 -04:00
Snyk bot
bb5482be72
fix: upgrade @microsoft/signalr from 3.1.0 to 3.1.13 (#326)
Snyk has created this PR to upgrade @microsoft/signalr from 3.1.0 to 3.1.13.

See this package in npm:
https://www.npmjs.com/package/@microsoft/signalr

See this project in Snyk:
https://app.snyk.io/org/kspearrin/project/38b1ffd6-0f49-4f56-b34f-c800f1e8b2aa?utm_source=github&utm_medium=upgrade-pr
2021-04-09 11:00:08 -04:00
Snyk bot
db02b78384
fix: upgrade big-integer from 1.6.36 to 1.6.48 (#325)
Snyk has created this PR to upgrade big-integer from 1.6.36 to 1.6.48.

See this package in npm:
https://www.npmjs.com/package/big-integer

See this project in Snyk:
https://app.snyk.io/org/kspearrin/project/38b1ffd6-0f49-4f56-b34f-c800f1e8b2aa?utm_source=github&utm_medium=upgrade-pr
2021-04-09 10:59:42 -04:00
Thomas Rittson
85893f5f9e
Require user to verify email to use file Send (#331)
* Require user to verify email to use file Send

* Simplify alertShown logic
2021-04-09 07:05:15 +10:00
Oscar Hinton
78d40d9f18
Remove electron remote (#332)
* Replace remote calls with ipcRenderer.invoke.
2021-04-07 19:42:06 +02:00
Steven
728e40fbfa
Optimize isSearchable for Chinese. (#330)
* Optimize isSearchable for Chinese.

* Fix lint.

* Fix lint.
2021-04-07 10:51:34 -04:00
Vincent Salucci
97ece68dec
[Reset Password] Custom user permission (#317) 2021-04-06 08:47:16 -05:00
Matt Gibson
baca6d7966
Use iterator compatible Array instantiation (#324) 2021-04-05 17:49:39 -05:00
Oscar Hinton
ba742f72d8
Restrict WebAuthn to Windows only for Electron (#322) 2021-04-05 22:38:45 +02:00
Matt Gibson
08a856645b
Add collections to ciphers in export model. (#320)
* Add collections to ciphers in export model.

This enables immediately setting collections from the CLI on create.
The other location this code is used is on import of Bitwarden json data.
However, collectionId is explicitly nulled out here to be resolved
later at the server level.

* Linter fix
2021-04-05 15:21:07 -05:00
Daniel James Smith
b774c3e785
Replaced appveyor build badge with one from Github Workflow (#319)
* Deleted appveyor.yml

* Removed Appveyor check in karma.conf.js

* Modified build badge to use Github workflow

* Fixed missing parenthesis in README.md
2021-04-05 15:25:45 -04:00
Matt Gibson
c395293e64
Deep parse models (#321) 2021-04-05 11:13:34 -05:00
Matt Gibson
bc7bd5bd3f
Pass ciphers to index and indexed ciphers to search service (#318) 2021-04-02 16:32:30 -05:00
Vincent Salucci
f4f00b1eb2
[Reset Password] Enrollment API, event type, and models update (#315) 2021-03-31 11:05:09 -05:00
Matt Gibson
5c734747a9
Fix post attachment file path (#316) 2021-03-30 18:43:10 -05:00
Matt Gibson
5c961ce847
Await file upload service (#314)
* Await file upload service

* Await file deletion on exception for file upload
2021-03-29 08:18:07 -05:00
Matt Gibson
d71bd092ef
Check file size client side (#313) 2021-03-29 08:17:42 -05:00
Matt Gibson
afac694e9a
Attachment azure upload blobs (#312)
* Add direct attachment download and upload API endpoints

* Use direct download method

Enable download of emergency access attachments through EmergencyAccessId

* Match new Server model items

* New Server model for creating attachments.

Provides a url to upload data to, the type of upload, and the Cipher Response expected by the previous call

* Use direct upload url and scheme

* Report Failed single shot azure uploads

* Add cipher attachment upload to file upload service

* Deprecate legacy api methods

* Handle old servers missing new upload api methods

* Improve Send error handling

* Fallback attachment downloads on new endpoint not found

Limit upload size to the new 500MB

* Improve error handling

* lint fixes
2021-03-26 16:57:07 -05:00
Thomas Rittson
0735569479
Hide email address in Sends (#310)
* Let organizations disable anonymous Sends only

* Add HideEmail to send models and service

* Delete unnecessary model

* Enforce new Send policy, fix naming conventions

* Fix linting

* Fully disable editing anonymous Sends per policy

* Revert disableSendPolicy, add sendOptionsPolicy

* Rework UI for enforcing disableHideEmail

* Fix linting and cleanup after refactor
2021-03-26 08:27:43 +10:00
Matt Gibson
cfc7687815
Upload to Azure strorage blobs (#296)
* Implemen AzureStorageService

handes uploading files to azure blob

* Correct one-shot size

* Add azureStorage.service abstraction

* Rename azure upload method

* Prefer abstractions in DI

* Abstract file upload to a single service handling uploads

* Fallback to legacy upload method

* Linter fix

* Limit legacy upload to 404 error
2021-03-25 10:20:38 -05:00
Matt Gibson
7f3bbd6e51
Use UserService to determine if user has premium access (#311) 2021-03-24 11:15:51 -05:00
Daniel James Smith
c7ac645eb7
Fixes linting error introduced with PR #307 (#309) 2021-03-17 17:14:10 -04:00
Paul Sieben
a36f1c25d8
Enhance SafeInCloud import (#307)
* don't import deleted cards

* keep favourite status while importing from saveInCloud

* import all passwords from saveInCloud

* add test data
2021-03-16 15:06:12 -05:00
Oscar Hinton
7cc23dab72
Bump electron to 11.3.0 (#308) 2021-03-15 23:11:51 +01:00
Oscar Hinton
f20af0cd7c
WebAuthn (#163) 2021-03-15 16:16:51 +01:00
Kyle Spearrin
f80e89465f
update share link on send list copy (#305) 2021-03-11 10:31:35 -05:00
Kyle Spearrin
c8cab2a9e7
use send.bitwarden.com (#304) 2021-03-11 10:08:28 -05:00
Vladislav Voronin
5d32ba68ec
Add disable badge counter (#281)
* jslib code for 287 issue

added bunch of state-save for new option

* remove excessive code

* revert accidental revert
2021-03-10 15:36:33 -05:00
Matt Gibson
8541027d40
Handle text response errors (#301)
* Parse text error response to json Message field

* Do not output object.toString, prefer object serialization
2021-03-09 10:58:17 -06:00
Addison Beck
f29afc7cf7
set default expiration time on date input for Sends (#300) 2021-03-09 10:31:05 -05:00
Addison Beck
125de0dd47
Safari Time Formatting (#298)
* fixed up the send date fallbacks again

* gave localizations string a better name

* added support for dropdown time selection in safari

* changed console error to toast error

* fixed formatting for previous value safari times
2021-03-08 13:58:53 -05:00
Addison Beck
062046484b
Safari Date/Time support for Send dates (#297)
* fixed up the send date fallbacks again

* gave localizations string a better name

* added support for dropdown time selection in safari

* changed console error to toast error
2021-03-08 13:09:29 -05:00
Thomas Rittson
b7acbcf3a7
Enable platform-specific export warning message (#295) 2021-03-05 08:56:20 +10:00