803 Commits

Author	SHA1	Message	Date
Daniel García	834c847746	Implement admin JWT cookie, separate JWT issuers for each type of token and migrate admin page to handlebars template	2019-01-19 21:41:49 +01:00
Daniel García	e0aec8d373	Use new i64::to_be_bytes and remove byteorder dep ... (https://doc.rust-lang.org/stable/std/primitive.i64.html#method.to_be_bytes)	2019-01-16 22:14:17 +01:00
Daniel García	1ce2587330	Correct update cipher order: first save cipher, then cipher-folder, then notify	2019-01-16 19:57:49 +01:00
Miroslav Prasil	71a10e0378	Fix sharing the item to organization.	2019-01-16 11:33:43 +00:00
Daniel García	9bf13b7872	Can't return inside multipart closure	2019-01-15 22:00:41 +01:00
Daniel García	d420992f8c	Update some function calls to use ?	2019-01-15 21:47:16 +01:00
Daniel García	c259a0e3e2	Save recovery code when using yubikey and stop repeating headers.user everywhere	2019-01-15 21:38:21 +01:00
Daniel García	432be274ba	Improve org mismatch check, consider different orgs	2019-01-15 17:31:03 +01:00
Daniel García	484bf5b703	Check that the client is not updating an outdated cipher, that should be part of an org now	2019-01-15 16:35:08 +01:00
Daniel García	4bf32af60e	Fix folder notifications, enable template strict mode and add missing option to env template	2019-01-15 15:28:47 +01:00
Daniel García	f571df7367	Revert yubikey feature, not needed anymore	2019-01-12 15:28:41 +01:00
Daniel García	1d7f704754	Send CipherUpdate when adding and deleting attachments	2019-01-11 01:12:54 +01:00
Daniel García	1d034749f7	Fix AArch64 build by disabling yubico	2019-01-10 23:54:01 +01:00
Daniel García	320266606e	Implement put collections	2019-01-08 20:27:28 +01:00
Daniel García	a0a08c4c5a	Include IP in invalid admin token error	2019-01-08 16:17:18 +01:00
Daniel García	4309df8334	Only create invitations when SMTP is disabled, and ignore invitations if we have a token. ... Disallow users from accepting invitation twice	2019-01-08 15:42:26 +01:00
Daniel García	f1161c65fb	Make sure an invitation is created when reinviting	2019-01-08 14:05:05 +01:00
Daniel García	21b85b78b1	Changed reinvite check and removed obsolete comment	2019-01-07 15:29:57 +01:00
Daniel García	5e37471488	Merge pull request #323 from njfox/invite_accepted_email ... Send email notifications when invitations are accepted/confirmed	2019-01-06 14:12:24 +01:00
Nick Fox	0a74e79cea	Refactor generate_invite_claims, make org_name and org_id optional	2019-01-05 23:03:49 -05:00
Nick Fox	7db66f73f0	Refactor invited_by_email check	2019-01-05 13:46:45 -05:00
Nick Fox	cec28a85ac	Update admin page to work with new invitation flow	2019-01-04 10:32:51 -05:00
Daniel García	5f49ecd7f3	Updated dependencies to use u2f crate directly, and some style changes	2019-01-04 00:25:38 +01:00
Nick Fox	736c0e62f2	Send emails to inviters/invitees when invites are accepted/confirmed	2019-01-02 22:20:39 -05:00
Daniel García	30e768613b	Start using rustfmt and some style changes to make some lines shorter	2018-12-30 23:34:31 +01:00
Daniel García	adb8052689	Updated Error to implement Display and Debug, instead of using custom methods	2018-12-30 21:43:56 +01:00
Daniel García	acb9d1b3c6	Remove config option for admin email, embdedded admin page, managed IO::Error, and added security and cache headers globally	2018-12-30 21:43:56 +01:00
Daniel García	2bb0b15e04	Implemented better errors for JWT	2018-12-30 21:43:55 +01:00
Daniel García	250a2b340f	Use new Errors in latest changes	2018-12-30 21:43:55 +01:00
Daniel García	b2fc0499f6	Finish invite functionality, and remove virtual organization	2018-12-30 21:40:26 +01:00
Daniel García	6a99849a1e	Implemented proper error handling, now we can do user.save($conn)?; and it works. ... In the future, maybe we can do the same with the `find_by_id` methods that return an Option.	2018-12-30 21:31:12 +01:00
Daniel García	172f1770cf	Embed the icon in the binary, no need to download when it's not going to change	2018-12-30 21:31:12 +01:00
Daniel García	1b5134dfe2	Fixed delete user when 2FA is enabled, implemented delete user for admin panel, and the front-end part for invite user. Secured admin panel behind a configurable token.	2018-12-30 21:31:11 +01:00
Daniel García	5fecf09631	Initial version of admin panel, list users and reload user list works. No serious auth method yet, password is 'token123'	2018-12-30 21:31:11 +01:00
Nick Fox	f20c4705d9	Refactor invite claims and disallow reinvites to virtual_org	2018-12-30 00:19:01 -05:00
Nick Fox	3142d8d01f	Add more detail to invitation not found error	2018-12-29 23:28:19 -05:00
Nick Fox	84fa5a4ed6	Implement reinvite endpoint	2018-12-29 23:24:38 -05:00
Nick Fox	b0ac640d8b	Use JWT to validate existing user invites	2018-12-23 15:15:44 -05:00
Daniel García	2b24b17609	Merge pull request #295 from njfox/invite_emails ... Add Email Invite Functionality	2018-12-21 16:04:19 +01:00
Nick Fox	2cd736ab81	Validate JWT if a user registers with SMTP invites enabled	2018-12-20 22:16:41 -05:00
Nick Fox	99256b9b3a	Prefix unused params with underscore	2018-12-20 21:37:03 -05:00
Nick Fox	26bf7bc12f	Use upstream jslib invite/registration workflow	2018-12-18 23:16:03 -05:00
Daniel García	b3ec8f2611	Merge pull request #302 from tycho/icon-cache-ttl ... implement TTLs for icon cache	2018-12-18 23:34:16 +01:00
Steven Noonan	a55c048a62	icons: implement positive/negative cache TTLs ... Signed-off-by: Steven Noonan <steven@uplinklabs.net>	2018-12-18 13:33:32 -08:00
Daniel García	149e69414f	Merge pull request #293 from dheimerl/patch-1 ... Update web.rs	2018-12-18 19:00:43 +01:00
dheimerl	9a7d3634d5	Changed frame-ancestors to use 'self'	2018-12-18 10:19:35 -06:00
dheimerl	7f7c936049	Fixed web.rs	2018-12-17 22:59:53 -06:00
Nick Fox	9479108fb7	Remove CONFIG.email_invitations	2018-12-17 17:10:09 -05:00
Nick Fox	042c1072d9	Remove CONFIG.email_invitation option	2018-12-17 17:02:15 -05:00
Daniel García	5a9aab1a32	Implement fromform, and ignore case and underscores, fixes #298	2018-12-16 20:00:16 +01:00