1
0
mirror of https://github.com/bitwarden/server.git synced 2024-11-29 13:25:17 +01:00
Commit Graph

3168 Commits

Author SHA1 Message Date
Chad Scharf
a77355c594
Version bump - 1.41.5 (#1428) 2021-07-02 12:43:41 -04:00
Vince Grassia
bdcfbb3b43
Allow for changing database name (#1397)
* Remove hard coded database name

* Update permissions on build scripts

* Update Setup project and run scripts for configuring database name

* Remove hyphen from database name flag

* Update with suggested changes, still needs testing

* Revert SQL statements to concatenantion for testing

* Fix typo

* Update util/Setup/EnvironmentFileBuilder.cs

Co-authored-by: Chad Scharf <3904944+cscharf@users.noreply.github.com>

* Update SQL commands to prevent SQL injection attacks

Co-authored-by: Chad Scharf <3904944+cscharf@users.noreply.github.com>
2021-07-02 10:52:34 -04:00
Thomas Rittson
86a12efa76
[send.key] Update send.key when account encryption key is rotated (#1417)
* Rotate send.key with account encryption key

* Update tests

* Improve and refactor style, fix typo

* Use null instead of empty lists

* Revert "Use null instead of empty lists"

This reverts commit 775a52ca56.

* Fix style (use AddRange instead of reassignment)
2021-07-02 06:27:03 +10:00
Matt Gibson
30ea8b728d
Split dev env settings to development settings file (#1424)
* Move dev urls to appsettings.Development.json

* Move bitwarden license dev urls
2021-07-01 11:11:02 -05:00
Matt Gibson
0cf0748086
Move localhost services settings to development settings file (#1423) 2021-07-01 09:04:30 -05:00
Oscar Hinton
a733257bc6
Refactor permission checks in OrganizationsService to use currentContext (#1420) 2021-07-01 14:31:05 +02:00
Oscar Hinton
43f7271147
[Provider] Setup provider (#1378) 2021-06-30 09:35:26 +02:00
Oscar Hinton
08f508f536
Extract single-org policy check to OrganizationService (#1410) 2021-06-30 09:21:41 +02:00
Joseph Flinn
59c2dcf218
fixing the incorrect pinned version (#1421) 2021-06-29 19:13:42 -07:00
Vincent Salucci
2ce7b01485
[Version] Bump to 1.41.4 (#1419) 2021-06-28 12:53:02 -05:00
Vincent Salucci
2d41edf1f9
[Reset Password] Updated OrgResetPasswordAbilityAndRsaKeys sql script (#1418)
* Updated OrgResetPasswordAbilityAndRsaKeys sql script

* Removed unnecessary null check
2021-06-28 12:15:55 -05:00
Matt Gibson
98415026b7
Avoid sql connection timeout (#1414)
* Creat TVP prior to opening sql connection

Data Table creation is slow. connection may be timing out while we create it.

* USe MARS-enabled connections to fix connection issue

https://github.com/dotnet/SqlClient/issues/54
2021-06-25 13:36:59 -05:00
Thomas Rittson
ee1223b8d3
Remove default request size limit for direct uploads (#1406)
* Remove default request size limit - direct upload

* Disable size limit for self-hosted attachments
2021-06-25 10:10:24 +10:00
Matt Gibson
61e41190b2
Creat TVP prior to opening sql connection (#1411)
Data Table creation is slow. connection may be timing out while we create it.
2021-06-24 18:40:46 -05:00
Matt Gibson
ee66d64c99
Avoid sql connection timeout (#1409)
* Read known emails to memory so we can close connection.

* Use ICollection as return

* Fix null reference if ip and date aren't set
2021-06-24 14:31:03 -05:00
Matt Gibson
601bf5416d Read known emails to memory so we can close connection. (#1408) 2021-06-24 09:38:33 -05:00
Vincent Salucci
15d863459e
[Reset Password] - BUG - Upgrade request model Keys null check (#1403) 2021-06-22 15:14:26 -05:00
Vince Grassia
666e99225c
Add database migrations to QA Deploy workflow (#1402)
* Update workflow for db migrations

* Remove typo

* Updating qa-deploy workflow for database migrations

* Test DB migrations on test database

* Remove test code

* Test inputs as boolean

* Update if statements to properly test for truth value

* Fix typo

* Add if to deploy so that it will execute always after database steps
2021-06-22 12:51:28 -04:00
Matt Gibson
b1d1607f50
Redefine cipher "share" to "move to organization" (#1401)
Do not imply users can share with organizations. Organizations share
with users. Users share _using_ organizations
2021-06-21 18:27:11 -05:00
Justin Baur
59268790c9
Implement code coverage tool (#1390)
* Implement code coverage tool

* Switch to solution style of running tests

* Add shell version of coverage file

* Fix formatting in coverage.sh

* Add trailing newline to powershell
2021-06-21 12:22:47 -05:00
Vincent Salucci
658f79b80e
[Reset Password] Update Custom orgs for UseResetPassword (#1399)
* [Reset Password] Update Custom orgs for UseResetPassword

* Improved script content
2021-06-16 14:40:27 -05:00
Kyle Spearrin
d2e48a5c2c
hcaptcha validation on password login (#1398) 2021-06-16 12:47:41 -04:00
Oscar Hinton
1796b1dd8e
Disable launchBrowser launchSetting (#1400) 2021-06-16 18:36:23 +02:00
Joseph Flinn
5d7530a6a5
Hotfix az login build workflow (#1394)
* adding in AZ QA login step

* clarifying the task names

* fixing syntax error
2021-06-14 12:33:36 -07:00
Joseph Flinn
0be710f78a
Hotfix az login build workflow (#1393)
* adding in AZ QA login step

* clarifying the task names
2021-06-14 12:22:57 -07:00
Joseph Flinn
2fe31533a0
removing the unneeded env (#1392) 2021-06-14 11:38:17 -07:00
Joseph Flinn
c3642adbdf
QA eventsprocessor (#1389)
* adding the EventProcessor docker container

* fixing the matrix name in the setup step

* changing the name of the EventsProcessor application

* adding the missing docker repo login as well as changing how we are setting the docker trust environment variables
2021-06-14 11:11:05 -07:00
Matt Portune
ac7ee873ac
Remove md5 and sha1 cert fingerprints (#1391) 2021-06-14 09:00:56 -04:00
Justin Baur
58413e2ff0
Policy Service Tests (#1344)
* Added SsoConfigService tests

* Cleanup whitespace in SsoConfigServiceTests

* Work on PolicyServiceTests

* Refactor PolicyService to remove uneeded calls

* Implement Code Coverage

* Continued work on PolicyServiceTests

* Revert "Implement Code Coverage"

This reverts commit 4ada179ada.

* Fix PolicyServiceTests after rebasing

* Cleanup unused namespaces

* Added assertions that saving or logging of save aren't happening on exceptions
2021-06-11 10:33:32 -05:00
Matt Portune
13a97b2645
Update AppId.hbs (#1388) 2021-06-10 16:57:09 -04:00
Joseph Flinn
eb3e318d33
QA auto slot swapping (#1383)
* updating the qa deploy to dynamically pull the publish profile instead of proxying it through a key vault

* fixing the download-artifact hash

* fixing typo

* trying out the custom keyvault getter

* fixing the new deploy matrix

* fixing the custom action path

* setting custom action commit hash

* paramaterized the deploy job

* adding the staging slot to the publish profiles

* trying a custom way to pull the publishing profile

* removing the publish profile altogether since it might not even be needed

* removing unnecessary publish profile stuff

* removing the subscription id from the qa deploy workflow

* adding auto swap for QA identity

* adding the rest of the webapp slot swapping automation

* fixing the job dependencies

* fixing the matrix name variable and adding some debugging code

* removing admin and identity out of the matrix swap

* switching the alive check

* fixing the identity endpoint

* fixing the while loops

* adding in sleeps to see if it is a matrix issue

* running the matrix sequentially to see if that rids us of the slot swapping conflits

* removing the sleep command in the matrix

* removing the sequential controller

* disabling the build and deploy for swapping tests

* changing the live test a bit

* fixing the identity status url

* adding in a fail safe if not hit the alive endpoint

* fixing the azure secret names

* removing the debugging code

* Update QA Deploy Workflow (#1387)

* Testing workflow

* Add whitespace to workflow

Co-authored-by: Vince Grassia <593223+vgrassia@users.noreply.github.com>
2021-06-10 13:14:15 -07:00
Vincent Salucci
b06462e90a
[Business Portal] BUG Fix localization (#1385) 2021-06-09 09:56:29 -05:00
Thomas Rittson
e2ff13aa14
Require valid Send-Id header for access requests (#1381)
* Require valid Send-Id header for access requests

* Require valid Send-Id header for Send file access

* Add ICurrentContext to Send controller test
2021-06-09 07:34:36 +10:00
Vincent Salucci
30611bd78b
[Reset Password] Fixed helper utility for org user updates (#1382) 2021-06-08 12:29:56 -05:00
Vincent Salucci
f6236bea6f
[Reset Password] Admin page updates (#1379) 2021-06-07 09:08:34 -05:00
Oscar Hinton
fe1ffb6a22
[Provider] Server entities and models (#1370)
* Mock out provider models and service

* Implement CreateAsync, CompleteSetupAsync, UpdateAsync, InviteUserAsync and ResendInvitesAsync

* Implement AcceptUserAsync and ConfirmUsersAsync

* Implement SaveUserAsync and DeleteUserAsync

* Add email templates

* Add admin operations for providers

* Fix mail template names

* Rename roles

* Verify provider has provideradmin

* Add self hosted check to admin controller

* Resolve review comments

* Update sql queries

* Change create provider to use email instead of userId
2021-06-03 18:58:29 +02:00
Jens Spanier
58954f161e
Fix attachments typo (#1374) 2021-06-02 12:12:17 -04:00
Joseph Flinn
10e85e0181
Retro fixes (#1372)
* fix release asset upload

* adding Version to release name

* restricting QA deploys to only manual trigger

* constraining all releases to the rc branch

* removing the release message update
2021-06-01 13:16:06 -07:00
Matt Gibson
a7d700f1cb
Explicitly set quoted identifier on for problem objects (#1360) 2021-06-01 14:52:22 -05:00
Vince Grassia
99ed04552c
Fix directory issue in Api and Events Dockerfiles (#1371) 2021-06-01 13:46:39 -04:00
Sang
4f3d1587e2
Re-write CollectionService unit tests with AutoFixtures (#1330)
* Add CollectionService unit tests

* Add missing CollectionFixtures

* Resolve pr comments

* Resolve PR comments
2021-06-01 10:13:08 -05:00
Kyle Spearrin
52dea4c2a4
commented code to validate auth-email header (#1361)
* commented code to validate auth-email header

* format comment more
2021-05-28 16:04:58 -04:00
Matt Portune
0e76371d0d
Android FIDO2 Asset Links (#1359)
* asset links for Android FIDO2

* added release & debug fingerprints
2021-05-27 13:00:38 -04:00
Vince Grassia
21003c61ab
Update output directory for dotnet builds (#1358)
* Update output directory for dotnet builds

* Update Dotnet build output path
2021-05-27 12:16:12 -04:00
Oscar Hinton
fffdd17915
Fix typo in bulk reinvinte migration (#1357) 2021-05-27 17:29:23 +02:00
Vince Grassia
1900f52a34
Fix path in 'Build Docker images' step (#1356) 2021-05-27 11:11:34 -04:00
Vince Grassia
0faf97331f
Update Build and Release workflows (#1349)
* Fix K8S-Proxy image build and tag

* Update build script to remove unused PUSH and TAG features

* Update workflows

- Remove build.sh from root of repo as it's no longer used
- Update workflows to use matrix feature for parallelization

* Add Docker image build step and other projects

* Remove csproj filenames from steps

* Fix typo

* Fix directory for k8s-proxy image

* Move Docker stub and uploads out of matrix

* Change to block-style sequence for service_name matrix

* Add missing quote character

* Fix working directories of Dotnet steps

* Update step name

* Add checkout repo step to Upload job

* Add 'dotnet tool restore' step

* Fix Swagger directory

* Fix Swagger build step

* Fix Swagger build step (again)
2021-05-27 10:32:36 -04:00
Vincent Salucci
c56dd04096
[Reset Password] Email template (#1353) 2021-05-26 16:54:25 -05:00
Vincent Salucci
d7f3507d44
[Reset Password] Added new event type for admin password reset (#1350) 2021-05-26 15:51:54 -05:00
Oscar Hinton
d4cf6d929a
Bulk Confirm (#1345)
* Add support for bulk confirm

* Add missing sproc to migration

* Change ConfirmUserAsync to internally use ConfirmUsersAsync

* Refactor to be a bit more readable

* Change BulkReinvite and BulkRemove to return a list of errors/success

* Refactor

* Fix removing owner preventing removing non owners

* Add another unit test

* Use fixtures for OrganizationUser and Policies

* Fix spelling
2021-05-25 19:23:47 +02:00