1
0
mirror of https://github.com/bitwarden/browser.git synced 2024-11-09 09:51:02 +01:00
The browser extension vault (Chrome, Firefox, Opera, Edge, Safari, & more).
Go to file
Matt Gibson af7e2edbf0
Implement disable send policy (#819)
* Implement disable send policy

* Update jslib reference

* PR review

* Lower case enterprise policy
2021-02-04 13:08:16 -06:00
.github/workflows fixing incorrect secret name (#747) 2020-12-21 12:58:51 -08:00
jslib@deabffb7b0 Implement disable send policy (#819) 2021-02-04 13:08:16 -06:00
src Implement disable send policy (#819) 2021-02-04 13:08:16 -06:00
.dockerignore docker build updates 2018-07-18 15:21:51 -04:00
.editorconfig Add support for Emergency Access (#707) 2020-12-22 10:57:44 -05:00
.gitattributes Added .gitattributes file to files requiring LF endings are properly checked out on Windows. (#279) 2018-10-18 12:15:54 -04:00
.gitignore local webfonts 2018-07-18 10:32:44 -04:00
.gitmodules use https for submodule 2018-07-09 16:52:46 -04:00
appveyor.yml PUSH_DOCKER checks 2019-03-19 22:17:03 -04:00
build.sh docker build updates 2018-07-18 15:21:51 -04:00
CONTRIBUTING.md Docs contrib (#696) 2020-11-10 10:52:09 -05:00
crowdin.yml map en-IN 2020-09-28 14:21:11 -04:00
dev-server.shared.pem rename dev cert to shared 2018-06-05 11:14:53 -04:00
Dockerfile docker health check 2019-07-26 11:59:59 -04:00
entrypoint.sh webVault param 2018-08-07 15:04:30 -04:00
gulpfile.js sweetalert: ported to sweetalert2 and simplified code. (#465) 2020-03-02 13:52:09 -05:00
ISSUE_TEMPLATE.md Update ISSUE_TEMPLATE.md 2020-03-06 08:27:39 -05:00
LICENSE.txt
package-lock.json Set WebVaultUrl if dev (#813) 2021-01-29 13:07:55 -05:00
package.json Fix glob processing in npm. Ban single param parens (#818) 2021-02-03 11:41:33 -06:00
README.md Updated readme to note how to run the app against production (#706) 2020-12-10 12:08:31 -05:00
SECURITY.md upadte security md 2018-02-27 23:00:10 -05:00
tsconfig.json sweetalert: ported to sweetalert2 and simplified code. (#465) 2020-03-02 13:52:09 -05:00
tslint.json Fix glob processing in npm. Ban single param parens (#818) 2021-02-03 11:41:33 -06:00
webfonts.list gulp webfonts task as part of build 2018-07-18 10:54:22 -04:00
webpack.config.js Add branded 404 page to replace Github Pages 404 (#798) 2021-01-25 06:23:18 +10:00

The Bitwarden web project is an Angular application that powers the web vault (https://vault.bitwarden.com/).

appveyor build Crowdin DockerHub gitter chat

Build/Run

Requirements

Run the app

For local development, run the app with:

npm install
npm run build:watch

You can now access the web vault in your browser at https://localhost:8080. You can adjust your API endpoint settings in src/app/services/services.module.ts by altering the apiService.setUrls call. For example:

await apiService.setUrls({
    base: isDev ? null : window.location.origin,
    api: isDev ? 'http://mylocalapi' : null,
    identity: isDev ? 'http://mylocalidentity' : null,
    events: isDev ? 'http://mylocalevents' : null,
});

If you want to point the development web vault to the production APIs, you can set:

await apiService.setUrls({
    base: null,
    api: 'https://api.bitwarden.com',
    identity: 'https://identity.bitwarden.com',
    events: 'https://events.bitwarden.com',
});

And note to run the app with:

npm install
npm run build:prod:watch

Common Issues:

CORS

If you run the frontend and receive a notification after attempting to login that says:

An error has occurred.
NetworkError when attempting to fetch resource.

And in the console:

Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://api.bitwarden.com/accounts/prelogin. (Reason: CORS header Access-Control-Allow-Origin missing).

This means that you are having a CORS header issue. This can be mitigated by using a CORS header changing extension in your browser such as this one.

Contribute

Code contributions are welcome! Please commit any pull requests against the master branch.

Security audits and feedback are welcome. Please open an issue or email us privately if the report is sensitive in nature. You can read our security policy in the SECURITY.md file.