Upstream/bitwarden-server
1
0
Fork 0
mirror of https://github.com/bitwarden/server.git synced 2025-01-31 23:21:22 +01:00
Code Issues Projects Releases Wiki Activity
3,416 Commits 329 Branches 187 Tags 84 MiB
daeaa42851
Commit Graph

336 Commits

Author SHA1 Message Date
Kyle Spearrin
cf70a5e480
set cors policies to only allow web vault origin (#787) 
* set cors policy to only allow web vault

* vault cors policy service
 2020-06-23 18:47:53 -04:00
Pedro Lamas
21834223fd
Adds extra Amazon equivalent domains (#775) 2020-06-12 10:25:08 -04:00
Chad Scharf
5b3f81f47e
Merge pull request #743 from Hinton/feature/hide-passwords 
Add support collection access, hide passwords
 2020-06-11 14:24:04 -04:00
Code
d2625e47e1
Remove trailing comma and adjust formatting of some of the equivalent domain strings to match the rest (#773) 2020-06-09 16:53:48 -04:00
Connor Gibson
cad7cf0200
Add office.com to Microsoft default equivalent domains. (#769) 2020-06-06 21:08:26 -04:00
Kyle Spearrin
4bd3e01a80
abstract context building to overrideable SetContextAsync (#766) 
* abstract context building to overrideable SetContextAsync

* update method calls
 2020-06-04 14:14:43 -04:00
André Paulo
e1a0d59fd1
Added Discord to Global Equivalent Domain (#752) 
* add Discord to GlobalEquivalentDomainsType

* added discord domains to global domains
 2020-05-28 19:48:51 -04:00
Roman V
a421be731c
Add syslog suport for sending application logs to a Syslog server (#742) 
* Add syslog suport for sending application logs to a Syslog server

* Rename SyslogSettings.Certificate to SyslogSettings.CertificatePath
 2020-05-22 21:19:59 -04:00
hinton
36f15c67d0 Add support for new collection access, hide passwords 2020-05-21 15:38:57 +02:00
Kyle Spearrin
10a6e12d09
generate signin token for enterprise portal (#728) 2020-05-12 15:36:33 -04:00
Kyle Spearrin
c177714799
Remove www. URL from alibaba (#701) 2020-04-16 10:38:39 -04:00
Chad Scharf
9800b752c0 Changed all C# control flow block statements to include space between keyword and open paren 2020-03-27 14:36:37 -04:00
Kyle Spearrin
1331cc90f7 check SettingHasValue instead of empty 2020-03-19 11:10:23 -04:00
David Roth
b7b06d77df
Use correct sentry integration package. Fixes #669 (#670) 2020-03-16 08:25:46 -04:00
Kyle Spearrin
518e94f60f upgrade more lgos. remove sendgrid 2020-03-05 10:33:44 -05:00
Alex Knight
d2fcf8f572
Additional Equivalent Domains Fix #649 (#662) 
* Additional Equivalent Domains Fix #649

* Remove infinitysrv.com as resolves to 127.0.0.1
 2020-03-04 10:55:58 -05:00
Kyle Spearrin
ae893c72bd formatting 2020-02-28 09:15:47 -05:00
Tristan Berger
b6274ac728
Add Envato network to equivalent domain sets (#647) 
* Add Envato network to equivalent domain sets

Envato is an Alexa top 500 website that asks you to use the same login on many different domains. The login forms are on those domains, not envato.com.

For my use case, account-level domain equivalence rules don’t work because I want to share this with a team, and multiple URLs per login is duplicative because we have multiple Envato logins.

tutsplus.com is another Envato domain that accepts Envato logins, but I believe it also accepts tutsplus.com-specific logins, making it not fully equivalent.

* Add Envato to GlobalEquivalentDomainsType
 2020-02-01 15:31:40 -05:00
Mario Limonciello
2c68e01e14 Add Docusign to equivalent domains (#642) 2020-01-23 22:10:23 -05:00
Kyle Spearrin
e8054df5b4 use policies property for orgs 2020-01-15 15:00:54 -05:00
Kyle Spearrin
dda3c3a123 Async GetEmbeddedCertificate 2020-01-13 15:35:50 -05:00
Kyle Spearrin
13370e011f fix admin cookie expiration 2020-01-13 12:03:10 -05:00
Kyle Spearrin
d653629e79 EF repo fixes 2020-01-10 18:14:45 -05:00
Mart124
f7512445e4 Add windowsazure.com to eq domains (#637) 
* Add windowsazure.com to eq domains

* Add azure.com to eq domains
 2020-01-10 11:53:11 -05:00
Kyle Spearrin
29580684a3 upgrade to aspnet core 3.1 2020-01-10 08:33:13 -05:00
Kyle Spearrin
7c5be176fa Stub out EF repo base with user repo 2020-01-08 20:28:16 -05:00
Kyle Spearrin
e2d65e5b08 switch to official bitpay light library 2019-12-19 10:27:06 -05:00
Kyle Spearrin
a5b809f477 update rolling file settings for LogRollBySizeLimit 2019-11-25 11:40:04 -05:00
Kyle Spearrin
c7d34a7ac6 fix typo. roll 2019-11-22 10:36:17 -05:00
Kyle Spearrin
d270311393 config for rolling log files by size limit 2019-11-22 10:33:57 -05:00
Kyle Spearrin
1495f6e507 fix typo 2019-09-18 09:47:25 -04:00
Kyle Spearrin
3af2fbd4e9 register new services 2019-09-18 09:46:26 -04:00
Kyle Spearrin
aca274a49b add new properties to LogContext 2019-09-03 14:44:22 -04:00
Kyle Spearrin
72310701d2 move ip address method to core helpers 2019-09-03 14:08:08 -04:00
Kyle Spearrin
7957707559 add xbox to eq domains for microsoft 2019-08-13 22:53:17 -04:00
Kyle Spearrin
74bbeae776 adjust storage with payment intent/method handling 2019-08-10 12:59:32 -04:00
André Paulo
34eba3c465 Added AskUbuntu.com to StackExchange Domains (#538) 
To make sure I wasn't missing any links, compiled a list of all the websites that you can check [here](https://gist.github.com/andre-paulo98/8cca381d09f2078b5eddc4e8516de3b4). [This is the source](https://stackexchange.com/sites?view=list#traffic)
 2019-07-25 20:35:18 -04:00
Kyle Spearrin
6a91fd6be9 batch events 2019-07-25 15:50:13 -04:00
Kyle Spearrin
94188fa0b5 update to net core 2.2 2019-07-23 16:38:49 -04:00
Kyle Spearrin
b5d2a1da75 load certs from azure storage 2019-07-10 20:05:07 -04:00
Kyle Spearrin
6f0d64119a keep application cache in sync with service bus 2019-06-13 00:10:37 -04:00
Kyle Spearrin
ad7c4b89c4 back to corehelpers 2019-06-11 17:17:23 -04:00
Kyle Spearrin
6ab2f4ff87 org invite exp hours configurable 2019-06-11 16:44:59 -04:00
Julien Brochet
da4918b4aa Fix Flickr equivalent domain with Yahoo (#512) 2019-06-05 08:00:49 -04:00
Kyle Spearrin
43eeebdc21 trim ip 2019-04-26 09:56:22 -04:00
Kyle Spearrin
e6baa1490c UseForwardedHeaders with known proxies 2019-04-26 09:52:54 -04:00
Kyle Spearrin
685928a4c7 fix bitpay initalization 2019-03-19 23:32:54 -04:00
Kyle Spearrin
01a293cf76 record installation devices 2019-03-19 00:39:03 -04:00
Kyle Spearrin
8427c23b5e amazon sqs block ip queuing 2019-03-18 16:23:37 -04:00
Kyle Spearrin
7e920b955c amazon ses mail delivery service 2019-03-13 16:19:00 -04:00
Kyle Spearrin
14fd7e2801 throttle block messages and base64 encode them 2019-03-11 23:31:45 -04:00
Kyle Spearrin
15cb0ad4c3 implement useapi and apikey 2019-03-02 15:09:33 -05:00
Kyle Spearrin
57ebe0de1a make sure global settings are set 2019-02-28 00:02:52 -05:00
Kyle Spearrin
c1c49fb67e show PII in dev mode 2019-02-26 17:01:06 -05:00
Kyle Spearrin
fdaa9504d5 bitpay invoice api 2019-02-21 22:43:37 -05:00
Kyle Spearrin
d568b86e1e inject stripepaymentservice 2019-02-08 23:53:09 -05:00
Kyle Spearrin
a5044b6e6c rename to PayPal 2019-02-01 22:25:34 -05:00
Kyle Spearrin
25f3b76e6b added transactions table 2019-01-31 16:45:01 -05:00
Kyle Spearrin
f8f7c339c3 get request up from cloudflare header 2019-01-25 00:01:24 -05:00
Kyle Spearrin
17cc1d6543 deprecate smtpclient for mailkit smtp service 2019-01-22 19:44:03 -05:00
Kyle Spearrin
acef40ee82 stub out user repo for postgresql 2019-01-15 22:07:13 -05:00
Kyle Spearrin
3588db947a check duo config with duo's api 2018-12-20 15:39:36 -05:00
Kyle Spearrin
1a856fb2ab duo api class 2018-12-20 15:21:01 -05:00
Kyle Spearrin
951e8f562e email token provider 2018-12-19 22:27:45 -05:00
Kyle Spearrin
0b20f64f2d premium access addon for families plans 2018-11-20 22:02:09 -05:00
Kyle Spearrin
5812915677 database maintenance jobs setup in admin 2018-10-09 10:12:27 -04:00
Yoshito Komatsu
036c03bd19 Remove amazon.co.jp from GlobalEquivalentDomainsType (#368) 2018-09-28 23:43:29 -04:00
Kyle Spearrin
07855a3203 AddIdentityCore for passwordless identity service 2018-09-12 10:35:05 -04:00
Kyle Spearrin
88384836b5 get rid of AddBasicCustomIdentityServices 2018-09-12 00:15:59 -04:00
Kyle Spearrin
cb30a519a7 use 100k iterations 2018-09-01 10:42:44 -04:00
Kyle Spearrin
cf73b168ee More CanAccessPremium checks 2018-08-28 17:40:08 -04:00
Kyle Spearrin
b410a78b31 bump iterations to 75k 2018-08-18 22:02:43 -04:00
Kyle Spearrin
ff01ce5ca7 internal identity authorization 2018-08-15 18:43:26 -04:00
Kyle Spearrin
25899fd326 adjusted serilog inclusion predicate with bypassid 2018-08-15 10:54:15 -04:00
Kyle Spearrin
6b4605e228 centralize AddIdentityAuthenticationServices 2018-08-15 09:26:19 -04:00
Kyle Spearrin
10a19c90d3 Move jobs to api hosted service w/ quartz 2018-08-09 16:08:09 -04:00
Kyle Spearrin
b2715503c3 update to new 2.0.0 preview for notification hub 2018-08-06 09:04:31 -04:00
Kyle Spearrin
b2e6b49b14 handlebars template emails 2018-08-03 23:04:47 -04:00
Kyle Spearrin
0cde13e0c6 azure queue notification service 2018-08-02 17:23:37 -04:00
Kyle Spearrin
8b53ab2945 stub out signalr sync hub 2018-08-02 12:14:33 -04:00
Kyle Spearrin
14956f6383 encrypted string length attr 2018-08-02 08:57:32 -04:00
Xander Smeets
75d3c23376 Add steamgames.com as equivalent domain of Steam (#317) 2018-06-26 07:57:54 -04:00
Kyle Spearrin
7aa9681222 bump iterations hash iterations to 50k 2018-06-01 21:02:57 -04:00
Kyle Spearrin
72e95e2a98 allow org user reg. when reg. is disabled 2018-05-24 16:55:52 -04:00
Kyle Spearrin
fa198213af increase PasswordHasherOptions iterations to 25k 2018-04-14 23:51:34 -04:00
Kyle Spearrin
389512d51e added org duo to 2fa flow 2018-04-03 14:31:33 -04:00
Kyle Spearrin
bcc224c02d stub out use2fa and twofactorproviders on orgs 2018-04-02 14:53:19 -04:00
Kyle Spearrin
6628a419d8 remove using 2018-03-30 08:41:32 -04:00
Kyle Spearrin
4cbf3a4b5b format ban logs better 2018-03-30 08:40:58 -04:00
Kyle Spearrin
e51cf078b0 include project property with logs 2018-03-30 00:01:53 -04:00
Kyle Spearrin
081ae7cb99 no port for issuer 2018-03-29 14:59:36 -04:00
Kyle Spearrin
40dff2cd6e success/error messages for admin 2018-03-28 10:38:01 -04:00
Kyle Spearrin
ecb490e8a8 logs dir 2018-03-27 22:16:55 -04:00
Kyle Spearrin
13db0285c9 cleanup logs 2018-03-23 13:39:34 -04:00
David Roth
702d833cea Add sentry logging support. (#240) 2018-03-23 13:33:31 -04:00
Kyle Spearrin
0d12cf9217 persist login. allow log out 2018-03-23 10:12:09 -04:00
Kyle Spearrin
2cf9127ef1 limit edit functions to cloud hosted 2018-03-23 09:44:48 -04:00
Kyle Spearrin
14039d7d1a respect return url on sign in link 2018-03-22 13:18:18 -04:00
setyb
d336594c10 Add StackExchange sites to Equivalent Domains (#241) 2018-03-22 12:06:43 -04:00
Kyle Spearrin
d35d8185ed passwordless sign in for admin 2018-03-21 14:26:49 -04:00
Kyle Spearrin
0b17f3823a Just use HttpContext RemoteIpAddress to get IP 2018-02-21 21:43:02 -05:00
Marco Trevisan
2c8395cee5 StaticStore: add equivalent domains for Airbnb and Eventbrite (#182) 
* GlobalEquivalentDomains: add Airbnb and Eventbrite

* StaticStore: add airbnb domains

List based on https://www.airbnb.com/sitemaps/localized

* StaticStore: sort airbnb domains

* StaticStore: add Eventbrite domains

No public list found, went through some `nslookup` bruteforce checks...

* StaticStore: add missing eventbrite.com
 2018-01-08 08:51:00 -05:00
Kyle Spearrin
46c36dc885 net471 directive fixes 2017-12-29 11:57:52 -05:00
Kyle Spearrin
8a318f35b7 events has its own connection string 2017-12-27 22:39:14 -05:00
Kyle Spearrin
e9116f8c44 app cache with org ability checks on events 2017-12-19 16:02:39 -05:00
Kyle Spearrin
125eab11dc event paging 2017-12-15 15:23:57 -05:00
Kyle Spearrin
79d46578b0 handle UTC dates properly for events 2017-12-15 12:24:32 -05:00
Kyle Spearrin
a9f232746e store device type and ip address on events 2017-12-15 10:50:06 -05:00
Kyle Spearrin
172fd2425e added org flag for UseEvents 2017-12-14 15:48:44 -05:00
Kyle Spearrin
ce1680a009 event sql table and repo 2017-12-12 14:22:22 -05:00
Kyle Spearrin
83a7c98fae write events to table storage 2017-12-08 16:03:20 -05:00
Kyle Spearrin
8ac284f1ec noop event write service 2017-12-04 12:17:26 -05:00
Kyle Spearrin
c445ce3c49 noop event service for now 2017-12-04 11:00:04 -05:00
Kyle Spearrin
9cb1047f2b setup to receive & process event postings 2017-12-04 10:59:07 -05:00
Kyle Spearrin
8a88a36140 event write services 2017-12-04 09:58:07 -05:00
Kyle Spearrin
bcd8a06994 singleton at end 2017-12-04 09:32:42 -05:00
Kyle Spearrin
28770d3761 events for collections, groups, and org users 2017-12-01 16:00:30 -05:00
Kyle Spearrin
a8fefb54c4 cipher events 2017-12-01 14:06:16 -05:00
Kyle Spearrin
f4586002c4 organize event models. stub out event services 2017-12-01 09:22:04 -05:00
Kyle Spearrin
38ee251f72 more info on bans/blocks 2017-11-29 08:47:20 -05:00
Kyle Spearrin
cdddffc977 GetRequestInfo on ban 2017-11-29 08:42:29 -05:00
Kyle Spearrin
341ef0a943 table storage event repo stub 2017-11-28 22:21:47 -05:00
Kyle Spearrin
e2cc0ce95a log bearer token with blocked requests 2017-11-22 09:09:46 -05:00
Kyle Spearrin
f2e2db52a1 update projects to net47 2017-11-16 11:01:49 -05:00
Kyle Spearrin
22bc77415f eq domains updates 2017-11-13 12:23:57 -05:00
Kyle Spearrin
daefe0d66b rename plan to "Families" 2017-11-08 12:36:27 -05:00
Kyle Spearrin
0fdb9b3d2f change personal plan to family. allow self host 2017-11-06 16:01:58 -05:00
Kyle Spearrin
6e302e06dc backup mail service 2017-10-30 22:10:40 -04:00
Kyle Spearrin
f396869aaf all not self-hosted gets cloud storage dp keys 2017-10-27 22:43:15 -04:00
Kyle Spearrin
434723e637 clean out deprecated services. update libs. 2017-10-26 21:07:12 -04:00
Kyle Spearrin
5ee0b4a9da simplify secrets in startup via csproj tools 2017-10-19 00:08:09 -04:00
Kyle Spearrin
8b07244c95 move to standard appsettings.json 2017-10-18 23:32:27 -04:00
Kyle Spearrin
857ad5b194 remove cookie auth from useidentity 2017-10-06 14:02:28 -04:00
Kyle Spearrin
f2183246d2 update libs, aspnet core 20, & id server 2.0 2017-10-06 11:38:47 -04:00
Kyle Spearrin
ce9067a434 SMTP config allow no username/password 2017-10-05 08:34:46 -04:00
Kyle Spearrin
0fff886357 added rate limiting to identity 2017-09-28 15:01:43 -04:00
Kyle Spearrin
184fe0cd64 sanitize user provided string for emails 2017-09-27 12:45:57 -04:00
Kyle Spearrin
16c976fe5a typo 2017-09-12 10:11:56 -04:00
Kyle Spearrin
62f934b6b1 colemak typo 2017-09-11 23:25:11 -04:00
Kyle Spearrin
0233c2e49c dvorak and colemak 2 qwerty helper 2017-09-11 23:08:08 -04:00
Kyle Spearrin
24fe7a9f88 get rid of version weight 2017-09-06 23:57:14 -04:00
Kyle Spearrin
cff64a21cf version version header 2017-08-25 11:59:38 -04:00
Kyle Spearrin
3c3e102f89 weight with power of 10 2017-08-25 11:57:38 -04:00
Kyle Spearrin
eb9bb315c3 version info in response headers 2017-08-25 08:57:43 -04:00
Kyle Spearrin
0ea87d1c1c user premium validation job 2017-08-22 15:27:29 -04:00
Kyle Spearrin
7a13414853 local dapper build 2017-08-22 12:38:48 -04:00
Kyle Spearrin
a222613082 only azure ban on non self host 2017-08-17 20:18:16 -04:00
Kyle Spearrin
d15917d3c9 stubbed out jobs worker console app 2017-08-17 11:28:27 -04:00
Kyle Spearrin
912e875a33 licensing signature refactor 2017-08-16 13:55:01 -04:00
Kyle Spearrin
50a522bbd7 markdown mail service when self hosted 2017-08-16 10:59:13 -04:00