Jeremy Lin 
							
						 
					 
					
						
						
							
						
						86685c1cd2 
					 
					
						
						
							
							Ensure email domain comparison is case-insensitive  
						
						
						
						
							
						
					 
					
						2020-04-11 14:51:36 -07:00 
						 
				 
			
				
					
						
							
							
								Jeremy Lin 
							
						 
					 
					
						
						
							
						
						e4d08836e2 
					 
					
						
						
							
							Make org owner invitations respect the email domain whitelist  
						
						... 
						
						
						
						This closes a loophole where org owners can invite new users from any domain. 
						
						
							
						
					 
					
						2020-04-09 01:51:05 -07:00 
						 
				 
			
				
					
						
							
							
								Jeremy Lin 
							
						 
					 
					
						
						
							
						
						c2a324e5da 
					 
					
						
						
							
							Clean up domain whitelist logic  
						
						... 
						
						
						
						* Make `SIGNUPS_DOMAINS_WHITELIST` override the `SIGNUPS_ALLOWED` setting.
  Otherwise, a common pitfall is to set `SIGNUPS_DOMAINS_WHITELIST` without
  realizing that `SIGNUPS_ALLOWED=false` must also be set.
* Whitespace is now accepted in `SIGNUPS_DOMAINS_WHITELIST`. That is,
  `foo.com, bar.com` is now equivalent to `foo.com,bar.com`.
* Add validation on `SIGNUPS_DOMAINS_WHITELIST`. For example, `foo.com,`
  is rejected as containing an empty token. 
						
						
							
						
					 
					
						2020-04-09 01:42:27 -07:00 
						 
				 
			
				
					
						
							
							
								Daniel García 
							
						 
					 
					
						
						
							
						
						77f95146d6 
					 
					
						
						
							
							Merge pull request  #956  from jjlin/duo  
						
						... 
						
						
						
						Fix Duo auth failure with non-lowercased email addresses 
						
						
							
						
					 
					
						2020-04-08 08:43:24 +02:00 
						 
				 
			
				
					
						
							
							
								Jeremy Lin 
							
						 
					 
					
						
						
							
						
						6cd8512bbd 
					 
					
						
						
							
							Fix Duo auth failure with non-lowercased email addresses  
						
						
						
						
							
						
					 
					
						2020-04-07 20:40:51 -07:00 
						 
				 
			
				
					
						
							
							
								Daniel García 
							
						 
					 
					
						
						
							
						
						843604c9e7 
					 
					
						
						
							
							Merge pull request  #939  from jjlin/attachment-size  
						
						... 
						
						
						
						Fix attachment size limit calculation 
						
						
							
						
					 
					
						2020-03-31 12:56:49 +02:00 
						 
				 
			
				
					
						
							
							
								Jeremy Lin 
							
						 
					 
					
						
						
							
						
						7407b8326a 
					 
					
						
						
							
							Fix attachment size limit calculation  
						
						... 
						
						
						
						The config values (in KB) need to be converted to bytes when comparing
against total attachment sizes. 
						
						
							
						
					 
					
						2020-03-31 02:30:28 -07:00 
						 
				 
			
				
					
						
							
							
								Daniel García 
							
						 
					 
					
						
						
							
						
						adf47827c9 
					 
					
						
						
							
							Make sure the data field is always returned, otherwise the mobile apps seem to have issues  
						
						
						
						
							
						
					 
					
						2020-03-30 22:19:50 +02:00 
						 
				 
			
				
					
						
							
							
								Daniel García 
							
						 
					 
					
						
						
							
						
						5471088e93 
					 
					
						
						
							
							Merge pull request  #933  from jjlin/dockerfiles  
						
						... 
						
						
						
						Rebuild Dockerfiles to match latest Dockerfile.j2 template 
						
						
							
						
					 
					
						2020-03-27 17:45:10 +01:00 
						 
				 
			
				
					
						
							
							
								Daniel García 
							
						 
					 
					
						
						
							
						
						4e85a1dee1 
					 
					
						
						
							
							Update web vault to 2.13.2  
						
						
						
						
							
						
					 
					
						2020-03-27 17:44:10 +01:00 
						 
				 
			
				
					
						
							
							
								Daniel García 
							
						 
					 
					
						
						
							
						
						ec60839064 
					 
					
						
						
							
							Merge pull request  #932  from jjlin/ws-fix  
						
						... 
						
						
						
						Fix WebSocket notifications 
						
						
							
						
					 
					
						2020-03-27 08:38:54 +01:00 
						 
				 
			
				
					
						
							
							
								Jeremy Lin 
							
						 
					 
					
						
						
							
						
						d4bfa1a189 
					 
					
						
						
							
							Rebuild Dockerfiles to match latest Dockerfile.j2 template  
						
						... 
						
						
						
						Picks up a couple of missed changes from b837348bccf6ee79 
						
						
							
						
					 
					
						2020-03-26 20:10:33 -07:00 
						 
				 
			
				
					
						
							
							
								Jeremy Lin 
							
						 
					 
					
						
						
							
						
						862d401077 
					 
					
						
						
							
							Fix WebSocket notifications  
						
						... 
						
						
						
						Ignore a missing `id` query param; it's unclear what this ID represents,
but it wasn't being used in the existing bitwarden_rs code, and no longer
seems to be sent in the latest versions of the official clients. 
						
						
							
						
					 
					
						2020-03-26 19:26:44 -07:00 
						 
				 
			
				
					
						
							
							
								Daniel García 
							
						 
					 
					
						
						
							
						
						255a06382d 
					 
					
						
						
							
							Merge pull request  #928  from jjlin/healthcheck  
						
						... 
						
						
						
						Healthcheck fixes/optimizations 
						
						
							
						
					 
					
						2020-03-26 21:13:31 +01:00 
						 
				 
			
				
					
						
							
							
								Jeremy Lin 
							
						 
					 
					
						
						
							
						
						bbb0484d03 
					 
					
						
						
							
							Healthcheck fixes/optimizations  
						
						... 
						
						
						
						* Switch healthcheck interval/timeout from 30s/3s to 60s/10s.
  30s interval is arguably overkill, and 3s timeout is definitely too short
  for lower end machines.
* Use HEALTHCHECK CMD exec form to avoid superfluous `sh` invocations.
* Add `--silent --show-error` flags to curl call to avoid progress meter being
  shown in healthcheck logs. 
						
						
							
						
					 
					
						2020-03-25 20:13:36 -07:00 
						 
				 
			
				
					
						
							
							
								Daniel García 
							
						 
					 
					
						
						
							
						
						93346bc05d 
					 
					
						
						
							
							Merge pull request  #927  from jjlin/healthcheck  
						
						... 
						
						
						
						Update healthcheck script to handle alternate base dir 
						
						
							
						
					 
					
						2020-03-25 22:21:08 +01:00 
						 
				 
			
				
					
						
							
							
								Jeremy Lin 
							
						 
					 
					
						
						
							
						
						fdf50f0064 
					 
					
						
						
							
							Update healthcheck script to handle alternate base dir  
						
						
						
						
							
						
					 
					
						2020-03-24 20:00:35 -07:00 
						 
				 
			
				
					
						
							
							
								Daniel García 
							
						 
					 
					
						
						
							
						
						ccf6ee79d0 
					 
					
						
						
							
							Update dependencies, mainly diesel and sqlite  
						
						
						
						
							
						
					 
					
						2020-03-24 20:36:19 +01:00 
						 
				 
			
				
					
						
							
							
								Daniel García 
							
						 
					 
					
						
						
							
						
						91dd19473d 
					 
					
						
						
							
							Merge pull request  #922  from jjlin/device-push-token  
						
						... 
						
						
						
						Handle `devicePushToken` 
						
						
							
						
					 
					
						2020-03-23 00:03:10 +01:00 
						 
				 
			
				
					
						
							
							
								Jeremy Lin 
							
						 
					 
					
						
						
							
						
						c06162b22f 
					 
					
						
						
							
							Handle devicePushToken  
						
						... 
						
						
						
						Mobile push isn't currently supported, but this should get rid of spurious
`Detected unexpected parameter during login: devicepushtoken` warnings. 
						
						
							
						
					 
					
						2020-03-22 15:04:25 -07:00 
						 
				 
			
				
					
						
							
							
								Daniel García 
							
						 
					 
					
						
						
							
						
						7a6a3e4160 
					 
					
						
						
							
							Set the cargo version and allow changing it during build time with BWRS_VERSION.  
						
						... 
						
						
						
						Also renamed GIT_VERSION because that's not the only source anymore. 
						
						
							
						
					 
					
						2020-03-22 16:13:34 +01:00 
						 
				 
			
				
					
						
							
							
								Daniel García 
							
						 
					 
					
						
						
							
						
						94341f9f3f 
					 
					
						
						
							
							Fix token error while accepting invite  
						
						
						
						
							
 
						
					 
					
						2020-03-20 10:51:17 +01:00 
						 
				 
			
				
					
						
							
							
								Daniel García 
							
						 
					 
					
						
						
							
						
						ff19fb3426 
					 
					
						
						
							
							Merge pull request  #919  from BlackDex/issue-908  
						
						... 
						
						
						
						Fixed issue #908  
						
						
							
						
					 
					
						2020-03-19 18:11:47 +01:00 
						 
				 
			
				
					
						
							
							
								BlackDex 
							
						 
					 
					
						
						
							
						
						baac8d9627 
					 
					
						
						
							
							Fixed issue  #908  
						
						... 
						
						
						
						The organization uuid is most of the time within the uri path as a
parameter. But sometimes it only is there as a query value.
This fix checks both, and returns the uuid when possible. 
						
						
							
						
					 
					
						2020-03-19 17:37:10 +01:00 
						 
				 
			
				
					
						
							
							
								BlackDex 
							
						 
					 
					
						
						
							
						
						669b101e6a 
					 
					
						
						
							
							Fixing issue  #908  
						
						... 
						
						
						
						Sometimes an org-uuid is not within the path but in a query value,
This fixes the check for that. 
						
						
							
						
					 
					
						2020-03-19 16:50:47 +01:00 
						 
				 
			
				
					
						
							
							
								Daniel García 
							
						 
					 
					
						
						
							
						
						935f38692f 
					 
					
						
						
							
							Merge pull request  #918  from dani-garcia/revert-901-feature/opportunistic_tls  
						
						... 
						
						
						
						Revert "Use opportunistic TLS in SMTP connections" 
						
						
							
						
					 
					
						2020-03-19 13:58:00 +01:00 
						 
				 
			
				
					
						
							
							
								Daniel García 
							
						 
					 
					
						
						
							
						
						d2d9fb08cc 
					 
					
						
						
							
							Revert "Use opportunistic TLS in SMTP connections"  
						
						
						
						
							
						
					 
					
						2020-03-19 13:56:53 +01:00 
						 
				 
			
				
					
						
							
							
								Daniel García 
							
						 
					 
					
						
						
							
						
						b85d548879 
					 
					
						
						
							
							Merge pull request  #916  from BlackDex/issue-759  
						
						... 
						
						
						
						Fixing issue #759  by disabling Foreign Key Checks. 
						
						
							
						
					 
					
						2020-03-18 18:48:08 +01:00 
						 
				 
			
				
					
						
							
							
								BlackDex 
							
						 
					 
					
						
						
							
						
						35f30088b2 
					 
					
						
						
							
							Fixing issue  #759  by disabling Foreign Key Checks.  
						
						... 
						
						
						
						During migrations some queries are out of order regarding to foreign
keys.
Because of this the migrations fail when the sql database has this
enforced by default.
Turning of this check during the migrations will fix this and this is
only per session. 
						
						
							
						
					 
					
						2020-03-18 18:11:11 +01:00 
						 
				 
			
				
					
						
							
							
								Daniel García 
							
						 
					 
					
						
						
							
						
						dce054e632 
					 
					
						
						
							
							Merge pull request  #912  from ymage/openssl_as_default  
						
						... 
						
						
						
						Fix alpine build with openssl crate as default 
						
						
							
						
					 
					
						2020-03-16 23:02:07 +01:00 
						 
				 
			
				
					
						
							
							
								Ymage 
							
						 
					 
					
						
						
							
						
						ba725e1c25 
					 
					
						
						
							
							Make openssl crate as default (non feature-flipped)  
						
						
						
						
							
						
					 
					
						2020-03-16 22:39:10 +01:00 
						 
				 
			
				
					
						
							
							
								Ymage 
							
						 
					 
					
						
						
							
						
						b837348b25 
					 
					
						
						
							
							Build as static  
						
						
						
						
							
						
					 
					
						2020-03-16 22:34:59 +01:00 
						 
				 
			
				
					
						
							
							
								Daniel García 
							
						 
					 
					
						
						
							
						
						7d9c7017c9 
					 
					
						
						
							
							Merge pull request  #911  from BlackDex/upgrade-rocket  
						
						... 
						
						
						
						Upgrade rocket 
						
						
							
						
					 
					
						2020-03-16 18:17:17 +01:00 
						 
				 
			
				
					
						
							
							
								Daniel García 
							
						 
					 
					
						
						
							
						
						d6b9b8bf0c 
					 
					
						
						
							
							Merge pull request  #876  from BlackDex/log-panics  
						
						... 
						
						
						
						Make panics logable (as warn) 
						
						
							
						
					 
					
						2020-03-16 18:16:49 +01:00 
						 
				 
			
				
					
						
							
							
								BlackDex 
							
						 
					 
					
						
						
							
						
						bd09fe1a3d 
					 
					
						
						
							
							Updated code so backtraces are logged also.  
						
						
						
						
							
						
					 
					
						2020-03-16 17:53:22 +01:00 
						 
				 
			
				
					
						
							
							
								BlackDex 
							
						 
					 
					
						
						
							
						
						bcbe6177b8 
					 
					
						
						
							
							Merge branch 'master' of  https://github.com/dani-garcia/bitwarden_rs  into log-panics  
						
						
						
						
							
						
					 
					
						2020-03-16 17:19:27 +01:00 
						 
				 
			
				
					
						
							
							
								BlackDex 
							
						 
					 
					
						
						
							
						
						9b1d07365e 
					 
					
						
						
							
							Updated ring  
						
						... 
						
						
						
						Some small changes to match the updated ring package. 
						
						
							
						
					 
					
						2020-03-16 16:39:20 +01:00 
						 
				 
			
				
					
						
							
							
								BlackDex 
							
						 
					 
					
						
						
							
						
						37b212427c 
					 
					
						
						
							
							Updated jsonwebtoken  
						
						... 
						
						
						
						Updated to the latest version of jsonwebtoken.
Some small code changes to match the new versions. 
						
						
							
						
					 
					
						2020-03-16 16:38:00 +01:00 
						 
				 
			
				
					
						
							
							
								BlackDex 
							
						 
					 
					
						
						
							
						
						078234d8b3 
					 
					
						
						
							
							Small change for rocket compatibilty  
						
						
						
						
							
						
					 
					
						2020-03-16 16:36:44 +01:00 
						 
				 
			
				
					
						
							
							
								BlackDex 
							
						 
					 
					
						
						
							
						
						3ce0c3d1a5 
					 
					
						
						
							
							Update dependencies  
						
						... 
						
						
						
						Primarily updating rocket, which needed some dependencies
Latest versions of:
 - ring
 - time
 - jsonwebtoken
 - yubico
 - rocket (git) 
						
						
							
						
					 
					
						2020-03-16 16:32:33 +01:00 
						 
				 
			
				
					
						
							
							
								Daniel García 
							
						 
					 
					
						
						
							
						
						2ee07ea1d8 
					 
					
						
						
							
							Fix empty data when cloning cipher  
						
						
						
						
							
						
					 
					
						2020-03-15 17:26:34 +01:00 
						 
				 
			
				
					
						
							
							
								Daniel García 
							
						 
					 
					
						
						
							
						
						40c339db9b 
					 
					
						
						
							
							Fix postgres policies, second try  
						
						
						
						
							
						
					 
					
						2020-03-14 23:53:12 +01:00 
						 
				 
			
				
					
						
							
							
								Daniel García 
							
						 
					 
					
						
						
							
						
						402c1cd06c 
					 
					
						
						
							
							Merge pull request  #906  from BlackDex/upgrade-reqwest  
						
						... 
						
						
						
						Updated reqwest to the latest version. 
						
						
							
						
					 
					
						2020-03-14 23:35:52 +01:00 
						 
				 
			
				
					
						
							
							
								Daniel García 
							
						 
					 
					
						
						
							
						
						819f340f39 
					 
					
						
						
							
							Fix issue with postgres  
						
						
						
						
							
						
					 
					
						2020-03-14 23:35:34 +01:00 
						 
				 
			
				
					
						
							
							
								BlackDex 
							
						 
					 
					
						
						
							
						
						1b4b40c95d 
					 
					
						
						
							
							Updated reqwest to the latest version.  
						
						... 
						
						
						
						- Use the blocking client (no async).
- Disabled gzip.
- use_sys_proxy is now default. 
						
						
							
						
					 
					
						2020-03-14 23:12:45 +01:00 
						 
				 
			
				
					
						
							
							
								Daniel García 
							
						 
					 
					
						
						
							
						
						afd9f4e278 
					 
					
						
						
							
							Allow the smtp mechanism to be provided without quotes and all lowercase  
						
						
						
						
							
						
					 
					
						2020-03-14 22:31:41 +01:00 
						 
				 
			
				
					
						
							
							
								Daniel García 
							
						 
					 
					
						
						
							
						
						47a9461f39 
					 
					
						
						
							
							Merge pull request  #903  from TheBinaryLoop/patch-1  
						
						... 
						
						
						
						Updated domains with new values vualt 
						
						
							
						
					 
					
						2020-03-14 14:41:39 +01:00 
						 
				 
			
				
					
						
							
							
								Daniel García 
							
						 
					 
					
						
						
							
						
						c6f64d8368 
					 
					
						
						
							
							Merge pull request  #901  from sleweke/feature/opportunistic_tls  
						
						... 
						
						
						
						Use opportunistic TLS in SMTP connections 
						
						
							
						
					 
					
						2020-03-14 14:41:00 +01:00 
						 
				 
			
				
					
						
							
							
								Daniel García 
							
						 
					 
					
						
						
							
						
						edabf19ddf 
					 
					
						
						
							
							Update vault to 2.13.1  
						
						
						
						
							
						
					 
					
						2020-03-14 14:40:06 +01:00 
						 
				 
			
				
					
						
							
							
								Daniel García 
							
						 
					 
					
						
						
							
						
						a30d5f4cf9 
					 
					
						
						
							
							Fix cloning issues  
						
						
						
						
							
						
					 
					
						2020-03-14 14:08:57 +01:00