1
0
mirror of https://github.com/bitwarden/browser.git synced 2025-01-05 18:47:52 +01:00
Commit Graph

1301 Commits

Author SHA1 Message Date
Thomas Rittson
8797924bd1
Use 2 iterations for local password hashing (#404)
* Use 2 iterations for local password hashing

* fix typo
2021-06-10 07:24:31 +10:00
Matt Gibson
5ba1416679
Authenticate with secure storage service (#402)
* Split secure key into use case

Allows us to push authentication for key access as late as possible.

* Do not reload if biometric locked

* Linter fixes

* Fix key upgrade scenario

* Fix boolean value message parsing

* Handle systems which don't support biometrics

* Do not fail key retrieval on secret upgrade

* Ensure old key is removed regardless of upgrade success

* Log errors
2021-06-09 15:53:54 -05:00
Oscar Hinton
d7682cde3b
Move nodeCryptoFunction to jslib-node (#405)
* Move nodeCryptoFunction to jslib-node

* Fix imports

* Fix tests import
2021-06-09 16:59:45 +02:00
Thomas Rittson
fdc6f7b1d2
Refactor canactivate guards (#401)
* Refactor route guards to allow for subclassing

* fix linting
2021-06-09 07:35:03 +10:00
Matt Gibson
ea90aea013
Use encrypted filename filename in Cipher attachment upload blob name (#403)
* Use EncString type to enforce encryption on filename in Cipher attachment upload

* Fix Cipher attachment test
2021-06-08 14:02:08 -05:00
Thomas Rittson
2e16aef6a2
Add Send-Id header for access requests (#400)
* Add Send-Id header to postSendAccess request

* Add Send Id header to file access requests

* fix linting
2021-06-08 11:50:35 +10:00
Oscar Hinton
ff387622e0
Add button to open webauthn new tab (#398) 2021-06-07 18:38:15 +02:00
Oscar Hinton
1016bbfb9e
Split jslib into multiple modules (#363)
* Split jslib into multiple modules
2021-06-03 18:58:57 +02:00
Thomas Rittson
b1d9b84eae
Add null check when calling win.webContents (#397) 2021-06-02 07:00:44 +10:00
Kyle Spearrin
ca61e13b57
add auth-email header (#394) 2021-05-28 15:41:41 -04:00
Oscar Hinton
25a91313ad
Password reprompt fixes (#393)
* Hide card secrets, and ensure password is reprompted when navigating away

* Check password reprompt before downloading attachments
2021-05-28 19:38:04 +02:00
Thomas Rittson
dddcc2bc93
Add encKey validation for org import/export (#392) 2021-05-28 06:48:10 +10:00
Thomas Rittson
6fbe33043b
[Autofill on Page Load options] Make logins autofill on page load by default (#391)
* Make logins autofill on page load by default

* fix linting
2021-05-27 07:02:12 +10:00
Vincent Salucci
324e0909bc
[Reset Password] Add AdminResetPassword event type (#390) 2021-05-26 15:50:55 -05:00
Oscar Hinton
2c297e2f45
Bump NPM to v7 (#389)
* Try bumping npm again

* Add NPM requirement to readme
2021-05-26 21:45:23 +02:00
Thomas Rittson
25917faf91
add support for --cleanexit option (#388) 2021-05-26 07:39:40 +10:00
Oscar Hinton
bacb84ca78
Bulk confirm (#386)
* Add api for bulk confirm

* Rename OrganizationUserBulkConfirmResponse to OrganizationUserBulkResponse

* Add keys to contructor for OrganizationUserBulkConfirmRequest

* Linting
2021-05-25 19:02:49 +02:00
Vincent Salucci
395ded02aa
[Reset Password] Update Crypto and Policy services (#387) 2021-05-24 13:29:50 -05:00
Thomas Rittson
5f1ad85dd1
Fix lockGuard logic (#384)
* Fix lockGuard logic

* add missing return values
2021-05-20 21:05:17 +10:00
Thomas Rittson
3ab710389b
Minor tweak so old server doesn't break autofill (#385) 2021-05-20 06:47:45 +10:00
Matt Gibson
79e6d012c5
Use organization api key for auth (#382)
* Create UserService for Api Keys

* Limit scope request for organization keys

* Expose necessary services for org key-based auth service

* Linter fixes

* Add public import models

Since public import is tied tightly to the private api, constructors are
provided to maintain coupling in case of changes

* Do not parallelize file access

This storage is sometims backed by lowdb files. Parallel writes can
cause issues.

* Match file name to class

* Serialize storageService promises

* Prefer multiple awaits to .then chains

* Linter fixes
2021-05-19 14:12:08 -05:00
Vincent Salucci
73ec484b17
[Reset Password] Admin Actions (#349)
* [Reset Password] Admin Actions

* Updated password reset apis to use orgUser.Id instead of orgUser.UserId

* Added new ResetPassword policy type

* Added all necessary changes for organization changes

* Added get/post for org keys // Added org keys reponse model

* Fixed lint errors
2021-05-19 09:40:48 -05:00
Thomas Rittson
c8eca37183
Convert Sets to Arrays before saving locally (#383) 2021-05-19 10:10:20 +10:00
Thomas Rittson
3d4ecaeb6a
"Auto-fill on page load" options (#199)
* add autofill on page load props to models and view

For new per-login autofill on page load settings

* filter and cache ciphers per autofill setting

Used by the new autofill on page load feature to identify
matching ciphers and filter according to their autofill setting

* fix null check on array

* fix linting and style errors

* change cacheKey to avoid collision with real url

* Fix linting, set default value for aopl-options

* Fix linting

* update UI

* Remove autofillOnPageLoad from export

* Change enum to boolean

* Add storage key for autofillOnPageLoad default

* fix style
2021-05-18 10:08:28 +10:00
Vince Grassia
7b3f9f12a4
Pin versions of actions in workflow (#381) 2021-05-17 12:46:54 -04:00
Matt Gibson
a6bac4e7cd
Add largImport to request model (#378) 2021-05-17 09:43:27 -05:00
Oscar Hinton
6b9246c272
Bulk remove organization users (#376)
* Add support for bulk deleeting org users

* Rename to UserBulkDeleteRequest

* Combine UserBulkReinviteRequest and DeleteRequest to OrganizationUserBulkRequest
2021-05-17 10:11:15 +02:00
Thomas Rittson
8659d0975d
Remove old code for opting into TOTP copy (#379) 2021-05-17 13:20:44 +10:00
Daniel James Smith
09f6fd9df9
Add node including version to requirements in README.md (#377) 2021-05-13 17:30:39 -04:00
Matt Gibson
92dbf24ab8
Export Organization events (#375)
* Export Organization events

* Lint fixes
2021-05-13 13:43:54 -05:00
Thomas Rittson
306aef73d4
Increase error checking on imported Login items (#369)
* Increase error checking on imported Login items

* Check encKey when importing encrypted JSON

* Fix style, use GUID as random string for test

* Revert "Increase error checking on imported Login items"

This reverts commit 17294527863cc53b84ed218f94ffbc21f4e96260.

* fix linting

* Fix tests
2021-05-13 10:58:59 +10:00
Oscar Hinton
ba1a40af4e
Bump node to 14 (#358)
* Bump node requirement to 14 and npm to 7
2021-05-12 18:55:00 +02:00
Oscar Hinton
1e2c56cacf
Add bulk reinvite apis (#374) 2021-05-12 11:17:18 +02:00
Thomas Rittson
8244971026
Refactor Send 'copy link' functionality (#373) 2021-05-12 06:39:31 +10:00
Matt Gibson
2cf5d767b5
Fix null search service checking (#372)
* Do not reset Search Index if SearchService is null

* Check lambda exists

* Fix Chalk
2021-05-10 09:52:45 -05:00
Matt Gibson
2750ca7586
Reject form promises for proper error handling (#371) 2021-05-10 09:43:57 -05:00
Oscar Hinton
1b8f6aace2
Add setting to disable biometric auto prompt on desktop (#370)
* Add setting to disable biometric auto prompt on desktop

* Add callback for checking if the window is visible.
2021-05-06 19:41:51 +02:00
Thomas Rittson
d184b0d2d6
Default values for cipher.reprompt (#367)
* Set default cipher.reprompt value for imports

* Set default cipher.reprompt value for new ciphers

* Add support for importing bitwarden exports

* Add default cipher.reprompt for JSON imports

Co-authored-by: Hinton <oscar@oscarhinton.com>
2021-05-05 17:54:17 +10:00
Tomer Shvueli
2841cff90a
feat: enable copying of TOTP code when auto filling credentials (#278)
* feat: Help enable copying of TOTP code when auto filling credentials

* fix: Update constant to stay consistent
2021-05-05 12:25:58 +10:00
Oscar Hinton
e2cb9b6bef
Include encrypt in formPromise (#368)
* Include encrypt in formPromise
2021-05-04 16:26:26 +02:00
Oscar Hinton
a72c8a60c1
Password reprompt (#357) 2021-04-29 13:31:21 +02:00
Daniel James Smith
1eb40a4891
Add support to import from Nordpass(.csv) (#360)
* Add support for parsing .csv files from Nordpass

* Remove whitespace before extracting CardExpiration

* Add curlybraces to one-liner if's as requested

* NordPassImporter: Process more complex names
2021-04-29 06:51:35 -04:00
Daniel James Smith
e298ecfee3
Add import of totp from Lastpass (#361)
* Add import of totp from Lastpass

* Fixed import as request during review
2021-04-28 16:50:37 -04:00
Oscar Hinton
5b7d918f29
Validate key before using it (#366)
* Validate key before using it
2021-04-28 22:02:43 +02:00
Oscar Hinton
672d07e1e2
Change download to happen in the renderer (#365) 2021-04-27 16:44:28 +02:00
Thomas Rittson
4eb50d757d
Let subclasses override create Send success msg (#362) 2021-04-27 07:30:47 +10:00
Matt Gibson
5b751d38a0
Fix auth error if last block put takes too long (#364) 2021-04-26 15:06:18 -05:00
Matt Gibson
5be76c1a63
Allow external awaits of indexing (#359)
* Allow external awaits of indexing

We were getting stuck in an infinite load loop where we were basing
logic on a dirty state of search service. This await enables us to
wait until an index is complete, then update it rather than being
kicked out of indexing early because it is in progress.

* Stop infinite loop by specifying ciphers to index
2021-04-23 13:55:57 -05:00
Chad Griffis
b6f102938f
Update color-password.pipe.js to handle Unicode/Emoji correctly accross platforms. (#354) 2021-04-22 16:56:36 -04:00
Matt Gibson
090ad790f5
Specify Organization indexed on search service (#356)
* Specify Organization indexed on search service

a null indexedEntityId specifies it is the users entire vault.
otherwise, organizations specify their id to signify the index is a subset.

user's vault will re-index if the indexed entity does not match the
users id or null. at the moment, user's vault does not set userId
because indexing occurs in the setter for decryptedCipherCache,
which cannot be asynchronous

* Linter fix
2021-04-22 14:53:45 -05:00