Kyle Spearrin
f0210cd798
correct identity pathing from nginx
2020-08-28 13:44:01 -04:00
Chad Scharf
db7d05b52f
Added PreValidate endpoint on Account controller ( #896 )
...
* Added PreValidate endpoint on Account controller
* Fixed IHttpClientFactory implementation
* Core localization and org sproc fix
* Pass culture, fixed sso middleware bug
2020-08-28 12:14:23 -04:00
Kyle Spearrin
526bdfdb05
update nginx proxy for portal pathing
2020-08-27 16:26:12 -04:00
Kyle Spearrin
0607050024
update self-host for sso and portal ( #893 )
2020-08-26 17:48:31 -04:00
Addison Beck
59f8467f7c
Create sso user api ( #886 )
...
* facilitate linking/unlinking existing users from an sso enabled org
* added user_identifier to identity methods for sso
* moved sso user delete method to account controller
* fixed a broken test
* Update AccountsController.cs
* facilitate linking/unlinking existing users from an sso enabled org
* added user_identifier to identity methods for sso
* moved sso user delete method to account controller
* fixed a broken test
* added a token to the existing user sso link flow
* added a token to the existing user sso link flow
* fixed a typo
* added an event log for unlink ssoUser records
* fixed a merge issue
* fixed a busted test
* fixed a busted test
* ran a formatter over everything & changed .vscode settings in .gitignore
* chagned a variable to use string interpolation
* removed a blank line
* Changed TokenPurpose enum to a static class of strings
* code review cleanups
* formatting fix
* Changed parameters & logging for delete sso user
* changed th method used to get organization user for deleting sso user records
Co-authored-by: Kyle Spearrin <kspearrin@users.noreply.github.com>
2020-08-26 14:12:04 -04:00
Chad Scharf
8884157427
Added get for sso config repo by revision date ( #878 )
2020-08-19 13:35:17 -04:00
Kyle Spearrin
cd926ca8f6
allow user registration for sso ( #865 )
2020-08-13 17:30:10 -04:00
Kyle Spearrin
056b4b9bf4
add api support for updating org identifier ( #861 )
...
* add api support for updating org identifier
* add identifier to response as well
* implement in EF repo
2020-08-12 16:38:22 -04:00
Kyle Spearrin
623cd36bd4
upgrade identity server 4 to v4 ( #842 )
...
* upgrade identity server 4 to v4
* remove script ref
2020-07-30 17:00:13 -04:00
Kyle Spearrin
047c2ad3ab
comment out sso in nginx config
2020-07-29 10:01:36 -04:00
Kyle Spearrin
307ac437d5
remove sso container ref
2020-07-29 09:50:11 -04:00
Kyle Spearrin
68915a452e
missing go
2020-07-28 21:53:12 -04:00
Kyle Spearrin
c53e8cbf9d
return if org user has sso binding ( #839 )
2020-07-28 21:11:45 -04:00
Kyle Spearrin
2c4752f4ac
Sso user table, model and repo stubbed out ( #837 )
...
* Sso user table, model and repo stubbed out
* switch to nullable org id, bigint id
* update GetBySsoUserAsync
* cleanup migrator file
* fix EF user repo
* fix pg repo
* is `IS NULL` checks
* unique indexes
* update migration scripts
* add another unique index
* remove old script
2020-07-28 10:03:09 -04:00
Kyle Spearrin
5de236f294
update libs
2020-07-27 20:36:17 -04:00
Addison Beck
229478adae
Feature.web.534.allow multi select in org vault ( #830 )
...
* Set up API methods for bulk admin delete
2020-07-22 11:38:53 -05:00
Matt Portune
51fd87df0b
Added UseSso bool to Organization ( #834 )
...
* Added UseSso bool to org
* Update fields in migration script
* bump version & check enabled flag on ssoConfig
2020-07-22 09:38:39 -04:00
Chad Scharf
83e9468502
Transition reference id to data ( #828 )
...
* Transition reference id to data
* field length and request model updates
2020-07-20 15:19:46 -04:00
François Van Ingelgom
aab6095073
Add support building from path that contains space ( #815 )
2020-07-17 08:28:31 -04:00
Kyle Spearrin
0d0c6c7167
sso integrations ( #822 )
...
* stub out hybrid sso
* support for PKCE authorization_code clients
* sso service urls
* sso client key
* abstract request validator
* support for verifying password
* custom AuthorizationCodeStore that does not remove codes
* cleanup
* comment
* created master password
* ResetMasterPassword
* rename Sso client to OidcIdentity
* update env builder
* bitwarden sso project in docker-compose
* sso path in nginx config
2020-07-16 08:01:39 -04:00
Chad Scharf
d0d93a64ee
Reverse encouragement of self-signed cert ( #813 )
2020-07-07 20:58:45 -04:00
Mart124
61f46ecb11
Update CertBuilder.cs ( #809 )
2020-07-06 13:48:23 -04:00
Mart124
62b3c305c3
Add default log parameters ( #807 )
...
* Add default log parameters
* Case typo
2020-07-02 16:28:16 -04:00
Kyle Spearrin
cc9d18f6d2
add missing [ViewPassword] true ( #799 )
2020-06-27 15:09:04 -04:00
Matt Portune
0b1e49bc0a
Remove Id from SsoConfig_Create sproc
2020-06-26 16:47:41 -04:00
Matt Portune
9f919bbea9
move Id assignment to after insert
2020-06-25 18:28:08 -04:00
Matt Portune
f46023f2f5
requested changes
2020-06-25 18:06:27 -04:00
Matt Portune
39a81af3e9
DAL & CRUD for SSO
2020-06-25 16:42:29 -04:00
Chad Scharf
fca7b162bf
Reference id storage and signup
2020-06-25 12:28:22 -04:00
Kyle Spearrin
0f2ea43454
bump dbup minor version
2020-06-24 16:37:23 -04:00
Kyle Spearrin
8559e144c6
bump dependency minor/patch versions
2020-06-24 16:37:23 -04:00
Matt Portune
f471237ce4
Update migration
2020-06-24 16:14:59 -04:00
Matt Portune
81879f804b
fixed field name during name check
2020-06-24 15:21:48 -04:00
Matt Portune
448032668e
fixed syntax error in migration
2020-06-24 15:18:42 -04:00
Matt Portune
05891f2122
Requested updates
2020-06-24 12:24:36 -04:00
Matt Portune
09df3f64d3
Updates to SSO config DB setup
2020-06-23 23:54:27 -04:00
Matt Portune
aa19be2c0c
formatting
2020-06-22 10:45:37 -04:00
Matt Portune
d0a98d6cf3
Added missing migration functionality
2020-06-22 09:49:16 -04:00
Matt Portune
519226f824
formatting
2020-06-21 23:42:27 -04:00
Matt Portune
8e7cb082ad
DB support for SSO config
2020-06-21 23:35:42 -04:00
hinton
24a458416e
Add missing go after create type.
2020-05-26 20:56:10 +02:00
hinton
bf7f541664
Add go after last statement.
2020-05-26 20:53:49 +02:00
hinton
4c1ba235d8
Delete procedures before droping type
2020-05-23 12:06:05 +02:00
hinton
14a8224a99
Be explicit about AccessAll for ViewPassword
2020-05-23 11:06:41 +02:00
hinton
1c0095b122
Be explicit with AccessAll and fix bug in create/update cipher
2020-05-23 10:36:35 +02:00
hinton
54f3ab5863
Add database migration script for hidden passwords
2020-05-22 22:52:08 +02:00
Kyle Spearrin
343ef92a20
Sproc tweaks ( #730 )
...
* do not follow local hosts or ip addresses
* remove cron from mssql
* migration script
* Use joins instead of temp tables
* update migration script with join changes
2020-05-21 11:35:00 -04:00
Kyle Spearrin
c205bf72e6
update some libs
2020-05-18 21:57:14 -04:00
Mart124
330ff7cd80
Fix sleep calculation ( #719 )
...
* Fix sleep calculation
* Fix sleep calculation
2020-05-04 07:48:16 -04:00
Chad Scharf
43501e643f
[Soft Delete] - cleanup whitespace in Cipher_Restore
2020-04-10 10:51:27 -04:00
Chad Scharf
598e1ff92b
[Soft Delete] - Add not null/is null filters to soft delete and restore sprocs
2020-04-09 15:25:17 -04:00
Chad Scharf
7f22088d5f
Fix delcaration of @UtcNow variable
2020-04-02 14:08:19 -04:00
Chad Scharf
eb34cc49c6
Fixed date time precision assignment for DeletedDate and RevisionDate (performance + match/data quality)
2020-04-02 13:45:53 -04:00
Chad Scharf
d07f27f274
[Soft-Delete] Simplify the data-tier, removed extra sprocs and reuse update
2020-04-01 16:39:27 -04:00
Chad Scharf
d014a597dd
[Soft Delete] - API updates for soft delete + retrieval
2020-04-01 13:00:25 -04:00
Chad Scharf
9800b752c0
Changed all C# control flow block statements to include space between keyword and open paren
2020-03-27 14:36:37 -04:00
Chad Scharf
55b937ff68
Updated PR comments, changed smart defaults for behavior, updated Cipher table index
2020-03-27 10:23:37 -04:00
Chad Scharf
bc46eccf70
Deleted date on Cipher table, related sprocs and repositories updated
2020-03-26 19:32:37 -04:00
Kyle Spearrin
cd0ec26b07
upgrade libs
2020-03-04 22:01:28 -05:00
Kyle Spearrin
81424a8526
Enforce 2fa policy ( #654 )
2020-02-19 14:56:16 -05:00
Kyle Spearrin
6b6c2d862d
8bit => bitwarden
2020-02-18 22:22:32 -05:00
Kyle Spearrin
725522128c
sync org policies to client devices
2020-01-28 15:33:32 -05:00
Kyle Spearrin
1f22420e6c
update mssql image
2020-01-22 17:14:12 -05:00
Kyle Spearrin
f3f1ac57d2
refactor policy apis
2020-01-20 08:53:15 -05:00
Mart124
d9181045c9
Stop mssql gently ( #641 )
2020-01-16 14:25:06 -08:00
Kyle Spearrin
ff8731c82f
add usepolicies to org profile object
2020-01-15 15:17:32 -05:00
Kyle Spearrin
e8054df5b4
use policies property for orgs
2020-01-15 15:00:54 -05:00
Kyle Spearrin
58faf5266b
policy events
2020-01-15 09:43:49 -05:00
Kyle Spearrin
57a491d58b
aspnet image
2020-01-13 15:07:52 -05:00
Kyle Spearrin
6efb7fcbfd
add routing for server
2020-01-13 11:14:50 -05:00
Kyle Spearrin
b1e8d16b9d
update some libs
2020-01-13 09:33:12 -05:00
Kyle Spearrin
47b50e48ef
update libs
2020-01-10 16:14:16 -05:00
Kyle Spearrin
29580684a3
upgrade to aspnet core 3.1
2020-01-10 08:33:13 -05:00
Kyle Spearrin
4e4644e17d
stub out organization policy db schema
2020-01-06 14:26:48 -05:00
Mart124
9bb6476f53
Typo ( #613 )
...
* Update logrotate.sh
* Update backup-db.sh
2019-11-25 10:36:06 -05:00
Mart124
8b5e37d349
Update .dockerignore ( #612 )
2019-11-25 10:08:14 -05:00
Kyle Spearrin
2cf8b88fbb
dont exec
2019-11-25 09:25:11 -05:00
Kyle Spearrin
980e19884d
exec gosu
2019-11-25 09:22:42 -05:00
Mart124
35a5dd95bb
DB backups without cron ( #608 )
...
* Update backup-db.sh
* Update entrypoint.sh
* Update Dockerfile
* Delete crontab
* Update backup-db.sh
* don't bother with log files
all is already in /var/opt/mssql/log/errorlog
* Use gosu
2019-11-25 08:35:52 -05:00
Mart124
47bda1e6d0
Rotate nginx logs ( #601 )
...
* Rotate nginx logs
* Create logrotate.sh
* Update Dockerfile
* Update entrypoint.sh
* Update Dockerfile
* Update logrotate.sh
* No reason to disable logrotate
* Update logrotate.sh
* Update entrypoint.sh
* typo
* Avoid useless output
* Use gosu
2019-11-25 08:34:47 -05:00
Mart124
6950dcae8b
Install tzdata package ( #606 )
2019-11-22 09:52:17 -05:00
Kyle Spearrin
8f3df46075
remove black hole for telemetry
2019-11-20 09:47:46 -05:00
Kyle Spearrin
fe3378b483
try internal network by default
2019-11-20 08:09:53 -05:00
Kyle Spearrin
c27b72e019
private network for some containers
2019-11-20 07:35:42 -05:00
Kyle Spearrin
63c3d5342c
undo admin host port header
2019-10-17 14:40:05 -04:00
Kyle Spearrin
0a7727dc27
port to host header for admin
2019-10-17 14:20:49 -04:00
Kyle Spearrin
dfeb2aad5c
no server port test
2019-10-17 14:04:22 -04:00
Kyle Spearrin
b040229933
add server_port to host proxy header
2019-10-17 13:30:41 -04:00
Mart124
6f91b693d9
Increase self-signed certs duration ( #570 )
2019-10-02 10:26:07 -04:00
Kyle Spearrin
c0bc5a0361
bitwarden update script without .sh suffix
2019-08-22 15:19:06 -04:00
Kyle Spearrin
5f4c7eb122
add q9 secondary dns resolver
2019-08-05 07:36:31 -04:00
h-town
d081d0fc4d
Revise hard-coded ssl resolver to Cloudflare & Quad9 ( #543 )
...
Google (terrible) and OpenDNS (questionable at best) are not ideal for privacy-minded users. Both Cloudflare DNS and Quad9 at least claim to drop logs, each of them have widely-reported response times, and they're sufficiently established with over a year of service.
2019-08-05 07:34:29 -04:00
Kyle Spearrin
8dabba984d
fix nginx healthcheck
2019-07-27 21:54:06 -04:00
Kyle Spearrin
0793cb6167
healthcheck for attachments server
2019-07-26 20:31:45 -04:00
Kyle Spearrin
310e0115d5
add port to health check
2019-07-26 14:24:39 -04:00
Kyle Spearrin
2ea244c723
healthcheck cmd
2019-07-26 14:04:45 -04:00
Kyle Spearrin
b7f3fa0087
try fixing curl install again
2019-07-26 13:21:46 -04:00
Kyle Spearrin
82a8249a69
fix curl error
2019-07-26 13:12:20 -04:00
Kyle Spearrin
d2bf308c10
fix sqlcmd path on healthcheck
2019-07-26 12:52:39 -04:00
Kyle Spearrin
bba0206bb7
alive check for nginx
2019-07-26 12:43:06 -04:00