Kyle Spearrin
b2d63b2383
reassign security headers
2018-08-31 17:02:49 -04:00
Kyle Spearrin
aeca706302
include security headers
2018-08-31 12:55:54 -04:00
Kyle Spearrin
566471cae8
enabled X-Frame-Options header
2018-08-31 12:16:36 -04:00
Kyle Spearrin
d4c35a98b7
allow configurable ssl protocols and ciphersuites
2018-08-31 12:11:44 -04:00
Kyle Spearrin
7a6d09a28e
refs and installation complete message
2018-08-31 09:16:01 -04:00
Kyle Spearrin
477d665104
compose version config variable
2018-08-30 23:32:18 -04:00
Kyle Spearrin
edac914ebd
update comments
2018-08-30 23:06:40 -04:00
Kyle Spearrin
053a89fdb0
cleanup comments
2018-08-30 22:46:51 -04:00
Kyle Spearrin
a3744facc7
remove install complete message
2018-08-30 22:36:45 -04:00
Kyle Spearrin
c87ce222eb
contains checks for nginx conf config.yml build
2018-08-30 22:30:31 -04:00
Kyle Spearrin
5a44ce4f0e
fix compose template indention
2018-08-30 16:40:06 -04:00
Kyle Spearrin
69605fab5b
rebuild instructions
2018-08-30 16:09:18 -04:00
Kyle Spearrin
310e6bcf61
convert setup to use config.yml
2018-08-30 11:35:44 -04:00
Kyle Spearrin
c41a1e0936
CanAccessPremium checks instead of User.Premium
2018-08-28 16:23:58 -04:00
Kyle Spearrin
816bf1546e
global.env for all aspnet containers
2018-08-24 16:28:49 -04:00
Kyle Spearrin
53caacb870
fix availablecollections queries for groups join
2018-08-23 23:46:18 -04:00
Kyle Spearrin
a275af6366
proxy_pass to /hub
2018-08-21 12:47:13 -04:00
Kyle Spearrin
43eaedeee4
proxy headers for websockets
2018-08-21 12:43:18 -04:00
Kyle Spearrin
7a5d3c3795
set connection header for signalr hub
2018-08-21 12:12:33 -04:00
Kyle Spearrin
fb92f67053
add websockets to CSP
2018-08-21 11:54:03 -04:00
Kyle Spearrin
ca3ecc0163
build and include notifications docker
2018-08-17 18:14:25 -04:00
Kyle Spearrin
1ffa712b75
more notification hub renames
2018-08-16 13:50:41 -04:00
Kyle Spearrin
28e6783a00
hub api notifications
2018-08-16 12:05:01 -04:00
Kyle Spearrin
ff01ce5ca7
internal identity authorization
2018-08-15 18:43:26 -04:00
Kyle Spearrin
0932189ccb
support for user defined kdf parameters
2018-08-14 15:30:04 -04:00
Kyle Spearrin
20f45ca2de
update ssl ciphers to mozilla recommendations
2018-08-14 08:42:01 -04:00
Simon
f08ff966b0
Hardening nginx, allow TLSv1.2 with the most secure cipher suites only ( #340 )
...
* Hardening nginx, allow TLSv1.2 with the most secure cipher suites only
* Ciphers added to allow more browsers to connect
2018-08-14 08:37:24 -04:00
Kyle Spearrin
06d5b4af29
turn off database autoclose
2018-08-09 16:57:15 -04:00
Kyle Spearrin
fb2ee6aaea
no longer need to provide netcoreapp flag
2018-08-06 09:11:27 -04:00
Kyle Spearrin
58d29cc4a8
consolidate some deps
2018-08-03 23:57:15 -04:00
Kyle Spearrin
1052951a96
restore on build. remove ps1 build scripts
2018-08-01 10:32:58 -04:00
Kyle Spearrin
61cda87574
update to .net / asp.net 2.1
2018-08-01 10:07:20 -04:00
Kyle Spearrin
6d22356caf
allow gravatar in CSP
2018-07-30 23:56:09 -04:00
Kyle Spearrin
98fc54881b
database tuning
2018-07-28 21:25:25 -04:00
Kyle Spearrin
545fb43dac
improvements to collection user sproc
2018-07-23 10:31:45 -04:00
Kyle Spearrin
94c7fdebf5
device index and updated folder delete sproc
2018-07-23 09:52:22 -04:00
Kyle Spearrin
24aa0dc026
delete null creationdates too
2018-07-21 08:58:16 -04:00
Kyle Spearrin
941792bdd8
u2f db updates
2018-07-21 08:44:21 -04:00
Kyle Spearrin
4c399aaf0d
new grant cleanup sproc
2018-07-20 23:08:10 -04:00
Mark Anthony Cianfrani
c227beb510
added basic constraints configuration for self signed certificates ( #327 )
2018-07-20 22:17:49 -04:00
Kyle Spearrin
05b1c1cf9b
move all security headers to web vault location
2018-07-20 14:13:24 -04:00
Kyle Spearrin
0070d23dab
csp is only for web vault
2018-07-20 14:11:20 -04:00
Kyle Spearrin
c4c0c81d14
null error output of cert copy
2018-07-19 17:33:53 -04:00
Kyle Spearrin
8c208d4d34
missing semicolon
2018-07-19 17:01:57 -04:00
Kyle Spearrin
dea76e8e01
wrap csp in quotes
2018-07-19 16:49:01 -04:00
Kyle Spearrin
511b1cbbb6
load ca certs on setup
2018-07-19 16:45:27 -04:00
Kyle Spearrin
b0aef93597
move script back and move userview update up
2018-07-19 16:22:30 -04:00
Kyle Spearrin
266fc579f2
cleanup installer. break apart update script
2018-07-19 16:01:54 -04:00
Kyle Spearrin
a66af41d2b
csp header on nginx
2018-07-18 23:06:25 -04:00
Kyle Spearrin
61806cd8ac
sql update script fixes
2018-07-17 21:41:16 -04:00
Kyle Spearrin
938b7f1230
premium renewal reminders job for braintree
2018-07-12 23:23:41 -04:00
Kyle Spearrin
476ee53931
add renewal reminder date prop to users
2018-07-12 17:35:01 -04:00
Kyle Spearrin
de552be25f
apis for bulk sharing
2018-06-13 14:03:44 -04:00
Kyle Spearrin
ebb1f9e1a8
use temp tables for better execution plans
2018-06-12 13:24:13 -04:00
Kyle Spearrin
74874a1c38
return collection readonly details
2018-06-11 14:25:53 -04:00
Mart124
b3c48fd3fa
Add a bitwarden label to docker images ( #305 )
...
* Add a bitwarden label to docker images
* Prefix label with reverse DNS
2018-06-09 08:17:16 -04:00
Kyle Spearrin
6f1f2305e3
sleep for 20 seconds between migrate re-tries
2018-05-31 22:11:08 -04:00
Mart124
92b08e6cf1
Rework service user ( #299 )
...
* Use user primary group if not root
* Do not run getent on MacOS
* Simplify UID/GID management
* Make uid.env backward compatible in run.sh
* Merge install.sh with run.sh to avoid duplicating code
Especially the UID/GID management one
* Generate correct OS name
* Be sure to keep old behavior for backward compatiblilty
* Get the colors back from install.sh
2018-05-31 12:05:26 -04:00
Kyle Spearrin
8f13361705
set nsubjectAltName od self signed certs
2018-05-21 15:41:15 -04:00
Kyle Spearrin
619a00637d
update location and state for generated certs
2018-05-17 10:41:22 -04:00
Kyle Spearrin
f5c9672370
get cipher by org id index
2018-05-11 08:31:29 -04:00
Kyle Spearrin
4e6e215d35
update more sprocs to use proper index
2018-04-25 13:55:47 -04:00
Kyle Spearrin
3a0622ca43
fix sproc
2018-04-24 21:56:58 -04:00
Kyle Spearrin
9067ac15de
collection index
2018-04-24 21:27:51 -04:00
Kyle Spearrin
165ee97d2f
refactor cipher queries by user. tuned indexing.
2018-04-24 12:48:43 -04:00
Kyle Spearrin
dead022e83
admin base uri setting, applied to login emails
2018-04-16 20:35:53 -04:00
Kyle Spearrin
ce92462041
fix uid comparisons
2018-04-16 16:26:08 -04:00
Kyle Spearrin
1dce0ccb83
fix if when no currentid
2018-04-16 16:09:08 -04:00
Kyle Spearrin
b7a2e47bd9
map host docker group id to containers
2018-04-16 15:30:07 -04:00
Kyle Spearrin
0c7d969fcb
always map mssql logs
2018-04-16 10:42:56 -04:00
Kyle Spearrin
389512d51e
added org duo to 2fa flow
2018-04-03 14:31:33 -04:00
Kyle Spearrin
d1a47ba808
make user homedir with helper
2018-04-02 21:11:32 -04:00
Kyle Spearrin
a3b522a6b0
Revert "make bitwarden user home dir"
...
This reverts commit 40242a78e5
.
2018-04-02 21:08:54 -04:00
Kyle Spearrin
40242a78e5
make bitwarden user home dir
2018-04-02 19:58:37 -04:00
Kyle Spearrin
367d3f65a6
use2fa org response
2018-04-02 17:20:06 -04:00
Kyle Spearrin
6bc9cbd761
regenerate OrganizationView
2018-04-02 14:55:17 -04:00
Kyle Spearrin
bcc224c02d
stub out use2fa and twofactorproviders on orgs
2018-04-02 14:53:19 -04:00
Kyle Spearrin
efd6a89e34
Revert "lock windows at mssql cu2"
...
This reverts commit b703eeefdb
.
2018-03-30 16:07:01 -04:00
Kyle Spearrin
998de639c0
Revert "1.18.0-CU2 for windows"
...
This reverts commit 2a1fcbaf9d
.
2018-03-30 16:06:45 -04:00
Kyle Spearrin
2a1fcbaf9d
1.18.0-CU2 for windows
2018-03-30 14:41:02 -04:00
Kyle Spearrin
b703eeefdb
lock windows at mssql cu2
2018-03-30 14:10:00 -04:00
Kyle Spearrin
7878362a51
note message var
2018-03-30 13:50:51 -04:00
Kyle Spearrin
818a668e3c
move cert warnings to main
2018-03-30 13:48:26 -04:00
Kyle Spearrin
54aef8e8d3
self-signed ssl cert warning
2018-03-30 12:34:21 -04:00
Kyle Spearrin
617399c995
remove bottom !!!!
2018-03-30 10:29:24 -04:00
Kyle Spearrin
352b51dfb4
before running start
2018-03-30 10:27:31 -04:00
Kyle Spearrin
64cd0b8942
format long strings
2018-03-30 10:14:46 -04:00
Kyle Spearrin
5049f94d9b
helpers and banner
2018-03-30 09:40:14 -04:00
Kyle Spearrin
b048dbcb6b
trim question input
2018-03-30 09:25:54 -04:00
Kyle Spearrin
267aa020c6
input helpers
2018-03-30 09:23:33 -04:00
Kyle Spearrin
6801da46e5
Comment capitalization
2018-03-29 15:41:27 -04:00
Kyle Spearrin
07fb676ded
ssl mapped to 8443
2018-03-29 13:53:39 -04:00
Kyle Spearrin
05d00517ee
move cert questions up
2018-03-29 13:43:52 -04:00
Kyle Spearrin
d2bdaa8baa
load ca-certs for api and identity
2018-03-29 08:59:50 -04:00
Kyle Spearrin
4ce69dac2b
internal api & vault urls. apply to version check
2018-03-29 08:45:04 -04:00
Kyle Spearrin
da970c2308
add ca-certificates
2018-03-28 23:47:43 -04:00
Kyle Spearrin
ec395ca0d2
only set https port if using ssl
2018-03-28 22:18:53 -04:00
Kyle Spearrin
c6f4996010
no ssl check on reverse proxy port
2018-03-28 22:07:51 -04:00
Kyle Spearrin
7de9b18aa6
update decision tree for non-ssl use cases
2018-03-28 21:18:10 -04:00
Kyle Spearrin
70aacb45e5
preserve MssqlDataDockerVolume
2018-03-28 16:34:16 -04:00
Kyle Spearrin
22bc85f651
drop json null checks from storage update procs
2018-03-28 13:43:33 -04:00
Kyle Spearrin
0e899d6317
new lines on warning
2018-03-28 12:25:14 -04:00
Kyle Spearrin
cb7008f8c1
more !!!!!!!!!!
2018-03-28 12:23:51 -04:00
Kyle Spearrin
28cd860c54
fix syntax error
2018-03-28 11:12:42 -04:00
Kyle Spearrin
6f708a8198
set proper port bindings for alternate port setup
2018-03-28 11:03:20 -04:00
Kyle Spearrin
7f250a4e74
adminsettings to docker env setup
2018-03-28 10:45:30 -04:00
Kyle Spearrin
674077d453
update image from versions
2018-03-28 10:13:01 -04:00
Kyle Spearrin
ceb4df2450
upgrade nuget libs
2018-03-28 10:00:20 -04:00
Kyle Spearrin
95b25246f1
step down from host root LUID
2018-03-27 22:57:30 -04:00
Kyle Spearrin
ecb490e8a8
logs dir
2018-03-27 22:16:55 -04:00
Kyle Spearrin
17b7905a41
map nginx logs volume
2018-03-27 21:42:50 -04:00
Kyle Spearrin
2c2496d28f
fix syntax for entrypoint ands
2018-03-27 17:16:25 -04:00
Kyle Spearrin
62535ae750
upsert bitwarden user
2018-03-27 16:38:11 -04:00
Kyle Spearrin
6cabee56de
uid.env file
2018-03-27 15:23:09 -04:00
Kyle Spearrin
0381a48ec9
re-attempt db migrate on update mode failure
2018-03-27 15:12:28 -04:00
Kyle Spearrin
6641290290
no need to create env file
2018-03-27 15:04:13 -04:00
Kyle Spearrin
a205f40613
goso all the things
2018-03-27 14:55:33 -04:00
Kyle Spearrin
aa3223b974
internal identity is on port 5000 now
2018-03-26 14:57:10 -04:00
Kyle Spearrin
b8ed8853cd
docker as non-root
2018-03-26 11:21:03 -04:00
Kyle Spearrin
15b1a426e4
build node assets and no trailing admin slash
2018-03-25 00:16:43 -04:00
Kyle Spearrin
a9c8fbf6cb
param sniffing on user search proc
2018-03-24 19:56:48 -04:00
Kyle Spearrin
56a0688bd5
proxy to admin
2018-03-24 08:50:41 -04:00
Kyle Spearrin
8a28ce7fb5
/admin with no /
suffix
2018-03-24 08:43:42 -04:00
Kyle Spearrin
c4bd015e89
proxypass to /admin
2018-03-24 08:39:55 -04:00
Kyle Spearrin
73a4af3f17
port 5000
2018-03-23 23:03:09 -04:00
Kyle Spearrin
5c3eca264b
run admin on port 5000
2018-03-23 22:46:09 -04:00
Kyle Spearrin
232c9206f2
Revert "run as bitwarden group/user"
...
This reverts commit e499087a57
.
2018-03-23 22:17:20 -04:00
Kyle Spearrin
f96911ed57
Revert "running as bitwarden user"
...
This reverts commit 19fa9bf806
.
2018-03-23 22:16:57 -04:00
Kyle Spearrin
19fa9bf806
running as bitwarden user
2018-03-23 21:58:45 -04:00
Kyle Spearrin
e499087a57
run as bitwarden group/user
2018-03-23 21:17:37 -04:00
Kyle Spearrin
24b8619bd1
add docker build for admin
2018-03-23 21:11:17 -04:00
Kyle Spearrin
d138656238
param sniffing on org search query
2018-03-23 10:50:58 -04:00
Kyle Spearrin
e920c8e9d2
org and user info
2018-03-22 21:10:10 -04:00
Kyle Spearrin
7475ed7318
organization search page
2018-03-21 17:41:14 -04:00
Kyle Spearrin
67bf801c15
users listing page
2018-03-21 16:24:10 -04:00
Kyle Spearrin
a46b87c354
no ssl warning
2018-03-17 21:54:01 -04:00
Kyle Spearrin
1f7db8c303
GO and reset on login uris
2018-03-12 10:17:10 -04:00
Kyle Spearrin
09c0096dbd
add missing lastid param declaration
2018-03-12 09:45:01 -04:00
Kyle Spearrin
5907d174ba
fix login uris in batches
2018-03-12 09:17:20 -04:00
Kyle Spearrin
26b3066c43
only cast concat operation. fix login uris
2018-03-12 08:44:51 -04:00
Kyle Spearrin
2e40766255
cast varchar
2018-03-10 19:49:55 -05:00
Kyle Spearrin
e16b326d0e
fix comment
2018-03-08 22:34:28 -05:00
Kyle Spearrin
94ecdf7fd6
support non-ssl installations
2018-03-08 17:31:51 -05:00
Kyle Spearrin
c37016e19e
use completion table on login uris update
2018-03-07 00:27:06 -05:00
Kyle Spearrin
03e7cf806a
update script for login uris
2018-03-01 23:40:37 -05:00
Kyle Spearrin
555e478ec3
Uppercase Bitwarden
2018-02-27 14:16:19 -05:00
Kyle Spearrin
427a185e87
update docker image deps
2018-02-22 07:52:21 -05:00
Kyle Spearrin
87497a5608
update libs
2018-02-21 22:31:33 -05:00
Kyle Spearrin
3425e95bf6
revert prefixing service names with bitwarden-
2017-12-21 11:18:36 -05:00
Kyle Spearrin
8609614711
lock in setup at 2.0.3
2017-12-21 10:13:38 -05:00
Kyle Spearrin
dcd5b95db0
fix mssql connection string in setup
2017-12-20 23:20:12 -05:00
Kyle Spearrin
cf7274aa46
adjust web appsettings overrides
2017-12-20 22:48:51 -05:00
Kyle Spearrin
e7b9ed72c4
env files are only readable by owner
2017-12-20 22:31:30 -05:00
Kyle Spearrin
e9116f8c44
app cache with org ability checks on events
2017-12-19 16:02:39 -05:00
Kyle Spearrin
d75ca51d75
sql event repo "Get" implementations
2017-12-18 23:15:16 -05:00
Kyle Spearrin
a9f232746e
store device type and ip address on events
2017-12-15 10:50:06 -05:00
Kyle Spearrin
172fd2425e
added org flag for UseEvents
2017-12-14 15:48:44 -05:00
Kyle Spearrin
6649c29a8b
event fixes
2017-12-12 15:04:14 -05:00
Kyle Spearrin
5c91949f2d
event index and setup script
2017-12-12 14:39:56 -05:00
Kyle Spearrin
3d05c9208f
add bitwarden- prefix to docker service names
2017-12-11 11:49:10 -05:00
Kyle Spearrin
f898b92f87
rename containers with bitwarden-
prefix
2017-12-07 20:02:06 -05:00
Kyle Spearrin
635db35347
update docker base images
2017-12-04 09:26:50 -05:00
Kyle Spearrin
a1cb980bac
make bump sprocs first
2017-11-28 22:58:26 -05:00
Kyle Spearrin
2f3c6b3b01
sproc updates for user account revision bumps
2017-11-24 11:53:55 -05:00
Kyle Spearrin
a25710e756
added proxy prefix
2017-11-20 07:57:26 -05:00
Viktor Hansson
afd72b26eb
Support for reverse proxy in setup script ( #139 )
...
* Added option for when using reverse proxy to setup script
* Removed debug console.write
2017-11-20 07:53:38 -05:00
Kyle Spearrin
2d625c7c9a
rename db script
2017-11-13 12:11:24 -05:00
Kyle Spearrin
d03421fe4b
fix to user already exists checks
2017-11-13 10:06:54 -05:00
Kyle Spearrin
39baf2a9be
index tuning script
2017-11-13 08:53:25 -05:00
Kyle Spearrin
16e1e8d78e
create empty ssl directory if using own certs
2017-11-10 15:30:18 -05:00
Kyle Spearrin
04cd4cded4
rebuild org view
2017-11-08 21:11:05 -05:00
Kyle Spearrin
2298853fd4
no extra new line needed
2017-11-08 21:01:28 -05:00
Kyle Spearrin
928fd5bc82
PrintEnvironment update commands
2017-11-08 20:54:39 -05:00
Kyle Spearrin
000fbe8a3d
port fixed for setup
2017-11-08 20:28:37 -05:00
Kyle Spearrin
daefe0d66b
rename plan to "Families"
2017-11-08 12:36:27 -05:00
Kyle Spearrin
666c065c47
globalSettings__pushRelayBaseUri for install only
2017-11-07 23:02:40 -05:00
Kyle Spearrin
4b5dc82eba
remove extra $
2017-11-07 22:45:01 -05:00
Kyle Spearrin
c65e08af85
proper http->https redirect with custom ports
2017-11-07 22:35:36 -05:00
Kyle Spearrin
cf06cd76d5
only add push setting when installing
2017-11-07 11:43:26 -05:00
Kyle Spearrin
bf8e5e392d
default values
2017-11-07 11:32:13 -05:00
Kyle Spearrin
ccf5eec481
pass versions through params
2017-11-07 10:54:00 -05:00
Kyle Spearrin
35ff3103a8
new line at end of env override files
2017-11-06 23:01:38 -05:00
Kyle Spearrin
f4142a1a1d
build environment files from setup
2017-11-06 22:55:15 -05:00
Kyle Spearrin
49bd3bcf35
build docker compose and allow custom ports
2017-11-06 17:28:02 -05:00
Kyle Spearrin
0fdb9b3d2f
change personal plan to family. allow self host
2017-11-06 16:01:58 -05:00
Kyle Spearrin
05ece5dbd5
add columns to org table in db script
2017-10-28 21:03:26 -04:00
Kyle Spearrin
81d2e3e608
delete with recompile
2017-10-26 20:55:35 -04:00
Kyle Spearrin
a042fd10f1
apis for purging user vault
2017-10-25 21:26:09 -04:00
Kyle Spearrin
1ba269a0a4
db update script
2017-10-25 12:41:15 -04:00
Kyle Spearrin
36e1ba66c7
cert builder
2017-10-24 08:45:48 -04:00
Kyle Spearrin
48e5355aa9
builders and update rebuilds
2017-10-23 22:45:59 -04:00
Kyle Spearrin
dea79f610c
icons uri for web settings
2017-10-23 18:12:22 -04:00
Kyle Spearrin
a9fd338690
map icons server in nginx conf
2017-10-23 18:04:21 -04:00
Kyle Spearrin
598034ba19
re-organize packages
2017-10-06 14:10:26 -04:00
Kyle Spearrin
ce9067a434
SMTP config allow no username/password
2017-10-05 08:34:46 -04:00
Kyle Spearrin
318fac61bc
remove empty continuation line comment
2017-10-02 16:48:01 -04:00
Kyle Spearrin
cb9f3d00d4
cannot block iframes due to duo and u2f
2017-09-18 18:25:29 -04:00
Kyle Spearrin
a10d0f24ee
generate a self signed cert if not using ssl
2017-09-18 13:26:17 -04:00
Kyle Spearrin
934b2c535b
if check on db migration of scriptnames
2017-09-18 11:21:32 -04:00
Kyle Spearrin
f4353b598e
migrate script names for dbup
2017-09-18 10:44:22 -04:00