Thomas Rittson
6c9485596c
Add event type for ResetSsoLink ( #475 )
2021-09-03 09:59:22 -04:00
Thomas Rittson
30419a625f
Move policy checks within policyService ( #466 )
...
* Move policy logic within policyService
* Remove unneeded import
* Clean up unused code
* Fix linting
* Enforce policies from accepting org invite
* Only exempt owner or admin from policies
* Use canManagePolicies as exemption criteria
* Make orgUser status check more semantic
Co-authored-by: Addison Beck <abeck@bitwarden.com>
Co-authored-by: Addison Beck <abeck@bitwarden.com>
2021-08-31 06:52:57 +10:00
Oscar Hinton
daa4f6f9a6
Dynamic Modals ( #417 )
...
* Move backdrop and click handler to modal service since they should not be used in web
* Add support for opening modals using ViewContainerRef
2021-08-26 10:04:29 +02:00
Thomas Rittson
358260596b
Add null check to electronStorageService.Save ( #461 )
...
* Add default value for ForcePasswordReset
* Add null check to electronStorageService instead
* Add default value to ForcePasswordReset
* Update electron/src/services/electronStorage.service.ts
* Fix indention issue from GH suggestion
Co-authored-by: Oscar Hinton <oscar@oscarhinton.com>
2021-08-20 16:01:50 +02:00
Oscar Hinton
f1f5d1a7f2
Revert WebAuthn iFrame handler ( #462 )
2021-08-20 14:46:02 +02:00
Daniel James Smith
309ea8ca9d
Add missing locale entry for AZ language ( #459 )
2021-08-19 22:43:28 +02:00
Matt Gibson
1f0127966e
Generalize token refreshing to include reauth by api key ( #456 )
2021-08-13 08:28:03 -05:00
Matt Gibson
0180d0cce5
Provide information to set webauthn allow in html template ( #455 )
2021-08-12 15:12:31 -05:00
Matt Gibson
c5f236c2e4
Use apikey client secret as captcha validation ( #454 )
...
* Use apikey client secret as captcha validation
* Linter fixes
2021-08-12 15:11:26 -05:00
Thomas Rittson
c694591e4c
Use UrlB64 encoding for auth-email header ( #450 )
2021-08-11 06:33:15 +10:00
Vincent Salucci
c2e434e333
[Reset Password v1] Update Temp Password ( #446 )
...
* [Reset Password v1] Update Temp Password
* Updating router to protected for child classes to access
2021-08-10 08:02:53 -04:00
Matt Gibson
027747246c
Add event type for provider accessing client vault ( #448 )
2021-08-05 07:50:56 -05:00
Matt Gibson
65c998dd0d
Iterate over enum values ( #445 )
2021-07-30 13:57:42 -05:00
Matt Gibson
fdf0eb989b
Provide owner with Provider client org create requst ( #444 )
2021-07-30 08:11:12 -05:00
Matt Gibson
db2e2f1977
Correct ProviderOrgCreate return type ( #442 )
2021-07-29 07:43:38 -05:00
Matt Gibson
ecdd08624f
Feature/cli fail login on captcha request ( #439 )
...
* Fail CLI login if captcha is required by the server.
* Linter fixes
2021-07-23 14:27:48 -05:00
Oscar Hinton
e1ce721364
[Provider] Refresh identity token on full sync ( #437 )
2021-07-23 20:05:34 +02:00
Oscar Hinton
de288913e4
Add helper methods to EnvironmentService for retrieving urls ( #435 )
2021-07-23 20:03:52 +02:00
Matt Gibson
e9d9cd0182
Feature/use hcaptcha on register if bot ( #434 )
...
* Parse captcha required from error messages
CaptchaProtectedAttribute produces an error with captcha information.
We want to parse that data out to make it easily accessible to components
* Don't show error on catpcha
The component should hande this situation.
* Add captchaResponse to captcha protected api endpoints
* Extract captcha logic to abstract base class
* Add captcha to register
* linter fixes
* Make sure to log Captcha required responses
* Match file naming convention
* Separate import into logical groups by folder
* PR review
2021-07-22 12:28:45 -05:00
Matt Gibson
ea0c8267d4
Rename captcha bypass token ( #433 )
2021-07-21 13:35:15 -05:00
Oscar Hinton
8bf0f75d9e
[Provider] ProviderOrganization events ( #432 )
2021-07-21 19:40:52 +02:00
Matt Gibson
1006f50ef3
Feature/use hcaptcha if bot ( #430 )
...
* Handle hcaptch required identity response
* Refactor iframe component for captcha and webauthn
* Send captcha token to server
* Add captcha callback
* Clear captcha state
* Remove captcha storage
* linter fixes
* Rename iframe components to include IFrame
* Remove callback in favor of extenting submit
* Limit publickey credentials access
* Use captcha bypass token to bypass captcha for twofactor auth flows
* Linter fixes
* Set iframe version in components
2021-07-21 07:55:26 -05:00
Thomas Rittson
00acbce556
Add models to update send.key with account key ( #418 )
2021-07-19 07:33:19 +10:00
Oscar Hinton
9f0ca7e4d2
[Provider] Add initial support for providers ( #399 )
2021-07-15 15:07:38 +02:00
Oscar Hinton
75fff66f98
Move regexpEmojiPresentation to Utils class ( #426 )
2021-07-08 16:40:10 +02:00
Thomas Rittson
119699b82c
Fix fingerprint phrases in bulk confirm modal ( #425 )
2021-07-07 20:08:52 +10:00
Oscar Hinton
d10d40697c
Set reprompt to None if null ( #422 )
2021-07-02 20:53:14 +02:00
Thomas Rittson
9ee31ad2fb
Improve URL parsing ( #411 )
...
* Check hostname is valid in getDomain
* fix linting
* Update noop implementation
* Fix tests
* Fix tests
2021-06-23 06:00:14 +10:00
Matt Gibson
18bf616e2e
Correct typo ( #416 )
2021-06-22 07:10:47 -05:00
Matt Gibson
78ae9383fb
Persist API key creds for token refresh. ( #414 )
...
* Persist API key creds for token refresh.
* Linter fixes
2021-06-21 17:48:06 -05:00
Matt Gibson
5e24a70a87
Vault should be locked if key is not in memory ( #413 )
...
Key is loaded on startup if auto key exists.
2021-06-21 17:47:44 -05:00
Matt Gibson
1f83c3c1ba
Fix separate key storage for non desktop ( #409 )
...
* Handle non-desktop, non-split key storage
* Reset vaultTimeoutService on clear.
Fixes issues where unlock was required after login
* Specify electron as desktop client
* Use ElelectronCryptoService to handle desktop-specific tasks
* Linter fixes
2021-06-15 09:55:57 -05:00
Thomas Rittson
d63ee1858d
Add backwards compatability for new local hashing method ( #407 )
...
* Add backwards compatability for existing keyHash
* Minor changes for review comments
2021-06-15 07:35:58 +10:00
Matt Gibson
d2ca46b6f5
Add get key from storage for ensuring biometric browser integration ( #408 )
2021-06-14 14:03:13 -05:00
Thomas Rittson
8797924bd1
Use 2 iterations for local password hashing ( #404 )
...
* Use 2 iterations for local password hashing
* fix typo
2021-06-10 07:24:31 +10:00
Matt Gibson
5ba1416679
Authenticate with secure storage service ( #402 )
...
* Split secure key into use case
Allows us to push authentication for key access as late as possible.
* Do not reload if biometric locked
* Linter fixes
* Fix key upgrade scenario
* Fix boolean value message parsing
* Handle systems which don't support biometrics
* Do not fail key retrieval on secret upgrade
* Ensure old key is removed regardless of upgrade success
* Log errors
2021-06-09 15:53:54 -05:00
Oscar Hinton
d7682cde3b
Move nodeCryptoFunction to jslib-node ( #405 )
...
* Move nodeCryptoFunction to jslib-node
* Fix imports
* Fix tests import
2021-06-09 16:59:45 +02:00
Matt Gibson
ea90aea013
Use encrypted filename filename in Cipher attachment upload blob name ( #403 )
...
* Use EncString type to enforce encryption on filename in Cipher attachment upload
* Fix Cipher attachment test
2021-06-08 14:02:08 -05:00
Thomas Rittson
2e16aef6a2
Add Send-Id header for access requests ( #400 )
...
* Add Send-Id header to postSendAccess request
* Add Send Id header to file access requests
* fix linting
2021-06-08 11:50:35 +10:00
Oscar Hinton
1016bbfb9e
Split jslib into multiple modules ( #363 )
...
* Split jslib into multiple modules
2021-06-03 18:58:57 +02:00