Merge pull request #1026 from BlackDex/issue-1022

Fixes #1022 cloning with attachments
2020-06-07 19:53:47 +02:00 · 2020-06-07 17:57:04 +02:00 · 2020-06-04 18:50:00 +02:00 · 2020-06-04 17:05:17 +02:00 · 2020-06-04 01:24:28 +02:00 · 2020-06-04 01:21:30 +02:00
96 changed files with 4624 additions and 3621 deletions
@@ -185,6 +185,7 @@
 # SMTP_FROM_NAME=Bitwarden_RS
 # SMTP_PORT=587
 # SMTP_SSL=true
+# SMTP_EXPLICIT_TLS=true # N.B. This variable configures Implicit TLS. It's currently mislabelled (see bug #851)
 # SMTP_USERNAME=username
 # SMTP_PASSWORD=password
 # SMTP_AUTH_MECHANISM="Plain"
@@ -26,7 +26,7 @@ rocket = { version = "0.5.0-dev", features = ["tls"], default-features = false }
 rocket_contrib = "0.5.0-dev"

 # HTTP client
-reqwest = "0.9.24"
+reqwest = { version = "0.10.6", features = ["blocking", "json"] }

 # multipart/form-data support
 multipart = { version = "0.16.1", features = ["server"], default-features = false }
@@ -41,73 +41,70 @@ rmpv = "0.4.4"
 chashmap = "2.2.2"

 # A generic serialization/deserialization framework
-serde = "1.0.104"
-serde_derive = "1.0.104"
-serde_json = "1.0.48"
+serde = "1.0.111"
+serde_derive = "1.0.111"
+serde_json = "1.0.53"

 # Logging
 log = "0.4.8"
 fern = { version = "0.6.0", features = ["syslog-4"] }

 # A safe, extensible ORM and Query builder
-diesel = { version = "1.4.3", features = [ "chrono", "r2d2"] }
+diesel = { version = "1.4.4", features = [ "chrono", "r2d2"] }
 diesel_migrations = "1.4.0"

 # Bundled SQLite
-libsqlite3-sys = { version = "0.16.0", features = ["bundled"], optional = true }
+libsqlite3-sys = { version = "0.17.3", features = ["bundled"], optional = true }

 # Crypto library
-ring = "0.14.6"
+ring = "0.16.14"

 # UUID generation
 uuid = { version = "0.8.1", features = ["v4"] }

-# Date and time library for Rust
+# Date and time librar for Rust
 chrono = "0.4.11"
+time = "0.2.16"

 # TOTP library
 oath = "0.10.2"

 # Data encoding library
-data-encoding = "2.2.0"
+data-encoding = "2.2.1"

 # JWT library
-jsonwebtoken = "6.0.1"
+jsonwebtoken = "7.1.0"

 # U2F library
 u2f = "0.2.0"

 # Yubico Library
-yubico = { version = "0.7.1", features = ["online-tokio"], default-features = false }
+yubico = { version = "0.9.0", features = ["online-tokio"], default-features = false }

 # A `dotenv` implementation for Rust
 dotenv = { version = "0.15.0", default-features = false }

 # Lazy initialization
-once_cell = "1.3.1"
-
-# More derives
-derive_more = "0.99.3"
+once_cell = "1.4.0"

 # Numerical libraries
 num-traits = "0.2.11"
 num-derive = "0.3.0"

 # Email libraries
-lettre = "0.10.0-pre"
+lettre = { version = "0.10.0-alpha.1", features = ["smtp-transport", "builder", "serde", "native-tls"], default-features = false }
 native-tls = "0.2.4"
-quoted_printable = "0.4.2"

 # Template library
 handlebars = { version = "3.0.1", features = ["dir_source"] }

 # For favicon extraction from main website
 soup = "0.5.0"
-regex = "1.3.4"
+regex = "1.3.9"
 data-url = "0.1.0"

 # Used by U2F, JWT and Postgres
-openssl = "0.10.28"
+openssl = "0.10.29"

 # URL encoding library
 percent-encoding = "2.1.0"
@@ -115,15 +112,15 @@ percent-encoding = "2.1.0"
 idna = "0.2.0"

 # CLI argument parsing
-structopt = "0.3.11"
+structopt = "0.3.14"
+
+# Logging panics to logfile instead stderr only
+backtrace = "0.3.48"

 [patch.crates-io]
 # Use newest ring
-rocket = { git = 'https://github.com/SergioBenitez/Rocket', rev = 'b95b6765e1cc8be7c1e7eaef8a9d9ad940b0ac13' }
-rocket_contrib = { git = 'https://github.com/SergioBenitez/Rocket', rev = 'b95b6765e1cc8be7c1e7eaef8a9d9ad940b0ac13' }
-
-# Use git version for timeout fix #706
-lettre = { git = 'https://github.com/lettre/lettre', rev = '245c600c82ee18b766e8729f005ff453a55dce34' }
+rocket = { git = 'https://github.com/SergioBenitez/Rocket', rev = '1010f6a2a88fac899dec0cd2f642156908038a53' }
+rocket_contrib = { git = 'https://github.com/SergioBenitez/Rocket', rev = '1010f6a2a88fac899dec0cd2f642156908038a53' }

 # For favicon extraction from main website
 data-url = { git = 'https://github.com/servo/rust-url', package="data-url", rev = '7f1bd6ce1c2fde599a757302a843a60e714c5f72' }
@@ -1,4 +1,5 @@
 use std::process::Command;
+use std::env;

 fn main() {
    #[cfg(all(feature = "sqlite", feature = "mysql"))]
@@ -10,8 +11,13 @@ fn main() {

    #[cfg(not(any(feature = "sqlite", feature = "mysql", feature = "postgresql")))]
    compile_error!("You need to enable one DB backend. To build with previous defaults do: cargo build --features sqlite");
-
-    read_git_info().ok();
+    
+    if let Ok(version) = env::var("BWRS_VERSION") {
+        println!("cargo:rustc-env=BWRS_VERSION={}", version);
+        println!("cargo:rustc-env=CARGO_PKG_VERSION={}", version);
+    } else {
+        read_git_info().ok();
+    }
 }

 fn run(args: &[&str]) -> Result<String, std::io::Error> {
@@ -54,14 +60,16 @@ fn read_git_info() -> Result<(), std::io::Error> {
    } else {
        format!("{}-{}", last_tag, rev_short)
    };
-    println!("cargo:rustc-env=GIT_VERSION={}", version);
+    
+    println!("cargo:rustc-env=BWRS_VERSION={}", version);
+    println!("cargo:rustc-env=CARGO_PKG_VERSION={}", version);

    // To access these values, use:
    //    env!("GIT_EXACT_TAG")
    //    env!("GIT_LAST_TAG")
    //    env!("GIT_BRANCH")
    //    env!("GIT_REV")
-    //    env!("GIT_VERSION")
+    //    env!("BWRS_VERSION")

    Ok(())
 }
@@ -27,17 +27,17 @@
 # 	https://docs.docker.com/develop/develop-images/multistage-build/
 # 	https://whitfin.io/speeding-up-rust-docker-builds/
 ####################### VAULT BUILD IMAGE  #######################
-{% set vault_image_hash = "sha256:ce56b3f5e538351411785ac45e9b4b913259c3508b1323d62e8fa0f30717dd1c" %}
+{% set vault_image_hash = "sha256:c62e0b8698562e03fe2759374f3ecd760d9612e4eaf0af4583f231ebf05d6df5" %}
 {% raw %}
 #  This hash is extracted from the docker web-vault builds and it's prefered over a simple tag because it's immutable.
 #  It can be viewed in multiple ways:
 #  - From the https://hub.docker.com/repository/docker/bitwardenrs/web-vault/tags page, click the tag name and the digest should be there.
 #  - From the console, with the following commands:
-#      docker pull bitwardenrs/web-vault:v2.12.0e
-#      docker image inspect --format "{{.RepoDigests}}" bitwardenrs/web-vault:v2.12.0e
-#      
+#      docker pull bitwardenrs/web-vault:v2.14.0
+#      docker image inspect --format "{{.RepoDigests}}" bitwardenrs/web-vault:v2.14.0
+#
 #  - To do the opposite, and get the tag from the hash, you can do:
-#      docker image inspect --format "{{.RepoTags}}" bitwardenrs/web-vault@sha256:ce56b3f5e538351411785ac45e9b4b913259c3508b1323d62e8fa0f30717dd1c
+#      docker image inspect --format "{{.RepoTags}}" bitwardenrs/web-vault@sha256:c62e0b8698562e03fe2759374f3ecd760d9612e4eaf0af4583f231ebf05d6df5
 {% endraw %}
 FROM bitwardenrs/web-vault@{{ vault_image_hash }} as vault

@@ -71,6 +71,7 @@ RUN rustup set profile minimal

 {% if "alpine" in target_file %}
 ENV USER "root"
+ENV RUSTFLAGS='-C link-arg=-s'

 {% elif "aarch64" in target_file or "armv" in target_file %}
 # Install required build libs for {{ package_arch_name }} architecture.
@@ -286,9 +287,9 @@ COPY --from=build /app/target/armv7-unknown-linux-gnueabihf/release/bitwarden_rs
 COPY --from=build app/target/release/bitwarden_rs .
 {% endif %}

-COPY docker/healthcheck.sh ./healthcheck.sh
+COPY docker/healthcheck.sh /healthcheck.sh

-HEALTHCHECK --interval=30s --timeout=3s CMD sh healthcheck.sh || exit 1
+HEALTHCHECK --interval=60s --timeout=10s CMD ["/healthcheck.sh"]

 # Configures the startup!
 WORKDIR /
@@ -10,12 +10,12 @@
 #  It can be viewed in multiple ways:
 #  - From the https://hub.docker.com/repository/docker/bitwardenrs/web-vault/tags page, click the tag name and the digest should be there.
 #  - From the console, with the following commands:
-#      docker pull bitwardenrs/web-vault:v2.12.0e
-#      docker image inspect --format "{{.RepoDigests}}" bitwardenrs/web-vault:v2.12.0e
-#      
+#      docker pull bitwardenrs/web-vault:v2.14.0
+#      docker image inspect --format "{{.RepoDigests}}" bitwardenrs/web-vault:v2.14.0
+#
 #  - To do the opposite, and get the tag from the hash, you can do:
-#      docker image inspect --format "{{.RepoTags}}" bitwardenrs/web-vault@sha256:ce56b3f5e538351411785ac45e9b4b913259c3508b1323d62e8fa0f30717dd1c
-FROM bitwardenrs/web-vault@sha256:ce56b3f5e538351411785ac45e9b4b913259c3508b1323d62e8fa0f30717dd1c as vault
+#      docker image inspect --format "{{.RepoTags}}" bitwardenrs/web-vault@sha256:c62e0b8698562e03fe2759374f3ecd760d9612e4eaf0af4583f231ebf05d6df5
+FROM bitwardenrs/web-vault@sha256:c62e0b8698562e03fe2759374f3ecd760d9612e4eaf0af4583f231ebf05d6df5 as vault

 ########################## BUILD IMAGE  ##########################
 # We need to use the Rust build image, because
@@ -124,9 +124,9 @@ COPY Rocket.toml .
 COPY --from=vault /web-vault ./web-vault
 COPY --from=build /app/target/aarch64-unknown-linux-gnu/release/bitwarden_rs .

-COPY docker/healthcheck.sh ./healthcheck.sh
+COPY docker/healthcheck.sh /healthcheck.sh

-HEALTHCHECK --interval=30s --timeout=3s CMD sh healthcheck.sh || exit 1
+HEALTHCHECK --interval=60s --timeout=10s CMD ["/healthcheck.sh"]

 # Configures the startup!
 WORKDIR /
@@ -10,12 +10,12 @@
 #  It can be viewed in multiple ways:
 #  - From the https://hub.docker.com/repository/docker/bitwardenrs/web-vault/tags page, click the tag name and the digest should be there.
 #  - From the console, with the following commands:
-#      docker pull bitwardenrs/web-vault:v2.12.0e
-#      docker image inspect --format "{{.RepoDigests}}" bitwardenrs/web-vault:v2.12.0e
-#      
+#      docker pull bitwardenrs/web-vault:v2.14.0
+#      docker image inspect --format "{{.RepoDigests}}" bitwardenrs/web-vault:v2.14.0
+#
 #  - To do the opposite, and get the tag from the hash, you can do:
-#      docker image inspect --format "{{.RepoTags}}" bitwardenrs/web-vault@sha256:ce56b3f5e538351411785ac45e9b4b913259c3508b1323d62e8fa0f30717dd1c
-FROM bitwardenrs/web-vault@sha256:ce56b3f5e538351411785ac45e9b4b913259c3508b1323d62e8fa0f30717dd1c as vault
+#      docker image inspect --format "{{.RepoTags}}" bitwardenrs/web-vault@sha256:c62e0b8698562e03fe2759374f3ecd760d9612e4eaf0af4583f231ebf05d6df5
+FROM bitwardenrs/web-vault@sha256:c62e0b8698562e03fe2759374f3ecd760d9612e4eaf0af4583f231ebf05d6df5 as vault

 ########################## BUILD IMAGE  ##########################
 # We need to use the Rust build image, because
@@ -118,9 +118,9 @@ COPY Rocket.toml .
 COPY --from=vault /web-vault ./web-vault
 COPY --from=build /app/target/aarch64-unknown-linux-gnu/release/bitwarden_rs .

-COPY docker/healthcheck.sh ./healthcheck.sh
+COPY docker/healthcheck.sh /healthcheck.sh

-HEALTHCHECK --interval=30s --timeout=3s CMD sh healthcheck.sh || exit 1
+HEALTHCHECK --interval=60s --timeout=10s CMD ["/healthcheck.sh"]

 # Configures the startup!
 WORKDIR /
@@ -10,12 +10,12 @@
 #  It can be viewed in multiple ways:
 #  - From the https://hub.docker.com/repository/docker/bitwardenrs/web-vault/tags page, click the tag name and the digest should be there.
 #  - From the console, with the following commands:
-#      docker pull bitwardenrs/web-vault:v2.12.0e
-#      docker image inspect --format "{{.RepoDigests}}" bitwardenrs/web-vault:v2.12.0e
-#      
+#      docker pull bitwardenrs/web-vault:v2.14.0
+#      docker image inspect --format "{{.RepoDigests}}" bitwardenrs/web-vault:v2.14.0
+#
 #  - To do the opposite, and get the tag from the hash, you can do:
-#      docker image inspect --format "{{.RepoTags}}" bitwardenrs/web-vault@sha256:ce56b3f5e538351411785ac45e9b4b913259c3508b1323d62e8fa0f30717dd1c
-FROM bitwardenrs/web-vault@sha256:ce56b3f5e538351411785ac45e9b4b913259c3508b1323d62e8fa0f30717dd1c as vault
+#      docker image inspect --format "{{.RepoTags}}" bitwardenrs/web-vault@sha256:c62e0b8698562e03fe2759374f3ecd760d9612e4eaf0af4583f231ebf05d6df5
+FROM bitwardenrs/web-vault@sha256:c62e0b8698562e03fe2759374f3ecd760d9612e4eaf0af4583f231ebf05d6df5 as vault

 ########################## BUILD IMAGE  ##########################
 # We need to use the Rust build image, because
@@ -92,9 +92,9 @@ COPY Rocket.toml .
 COPY --from=vault /web-vault ./web-vault
 COPY --from=build app/target/release/bitwarden_rs .

-COPY docker/healthcheck.sh ./healthcheck.sh
+COPY docker/healthcheck.sh /healthcheck.sh

-HEALTHCHECK --interval=30s --timeout=3s CMD sh healthcheck.sh || exit 1
+HEALTHCHECK --interval=60s --timeout=10s CMD ["/healthcheck.sh"]

 # Configures the startup!
 WORKDIR /
@@ -10,16 +10,16 @@
 #  It can be viewed in multiple ways:
 #  - From the https://hub.docker.com/repository/docker/bitwardenrs/web-vault/tags page, click the tag name and the digest should be there.
 #  - From the console, with the following commands:
-#      docker pull bitwardenrs/web-vault:v2.12.0e
-#      docker image inspect --format "{{.RepoDigests}}" bitwardenrs/web-vault:v2.12.0e
-#      
+#      docker pull bitwardenrs/web-vault:v2.14.0
+#      docker image inspect --format "{{.RepoDigests}}" bitwardenrs/web-vault:v2.14.0
+#
 #  - To do the opposite, and get the tag from the hash, you can do:
-#      docker image inspect --format "{{.RepoTags}}" bitwardenrs/web-vault@sha256:ce56b3f5e538351411785ac45e9b4b913259c3508b1323d62e8fa0f30717dd1c
-FROM bitwardenrs/web-vault@sha256:ce56b3f5e538351411785ac45e9b4b913259c3508b1323d62e8fa0f30717dd1c as vault
+#      docker image inspect --format "{{.RepoTags}}" bitwardenrs/web-vault@sha256:c62e0b8698562e03fe2759374f3ecd760d9612e4eaf0af4583f231ebf05d6df5
+FROM bitwardenrs/web-vault@sha256:c62e0b8698562e03fe2759374f3ecd760d9612e4eaf0af4583f231ebf05d6df5 as vault

 ########################## BUILD IMAGE  ##########################
 # Musl build image for statically compiled binary
-FROM clux/muslrust:nightly-2019-12-19 as build
+FROM clux/muslrust:nightly-2020-03-09 as build

 # set mysql backend
 ARG DB=mysql
@@ -31,6 +31,7 @@ ENV DEBIAN_FRONTEND=noninteractive LANG=C.UTF-8 TZ=UTC TERM=xterm-256color
 RUN rustup set profile minimal

 ENV USER "root"
+ENV RUSTFLAGS='-C link-arg=-s'

 # Install MySQL package
 RUN apt-get update && apt-get install -y \
@@ -94,9 +95,9 @@ COPY Rocket.toml .
 COPY --from=vault /web-vault ./web-vault
 COPY --from=build /app/target/x86_64-unknown-linux-musl/release/bitwarden_rs .

-COPY docker/healthcheck.sh ./healthcheck.sh
+COPY docker/healthcheck.sh /healthcheck.sh

-HEALTHCHECK --interval=30s --timeout=3s CMD sh healthcheck.sh || exit 1
+HEALTHCHECK --interval=60s --timeout=10s CMD ["/healthcheck.sh"]

 # Configures the startup!
 WORKDIR /
@@ -10,12 +10,12 @@
 #  It can be viewed in multiple ways:
 #  - From the https://hub.docker.com/repository/docker/bitwardenrs/web-vault/tags page, click the tag name and the digest should be there.
 #  - From the console, with the following commands:
-#      docker pull bitwardenrs/web-vault:v2.12.0e
-#      docker image inspect --format "{{.RepoDigests}}" bitwardenrs/web-vault:v2.12.0e
-#      
+#      docker pull bitwardenrs/web-vault:v2.14.0
+#      docker image inspect --format "{{.RepoDigests}}" bitwardenrs/web-vault:v2.14.0
+#
 #  - To do the opposite, and get the tag from the hash, you can do:
-#      docker image inspect --format "{{.RepoTags}}" bitwardenrs/web-vault@sha256:ce56b3f5e538351411785ac45e9b4b913259c3508b1323d62e8fa0f30717dd1c
-FROM bitwardenrs/web-vault@sha256:ce56b3f5e538351411785ac45e9b4b913259c3508b1323d62e8fa0f30717dd1c as vault
+#      docker image inspect --format "{{.RepoTags}}" bitwardenrs/web-vault@sha256:c62e0b8698562e03fe2759374f3ecd760d9612e4eaf0af4583f231ebf05d6df5
+FROM bitwardenrs/web-vault@sha256:c62e0b8698562e03fe2759374f3ecd760d9612e4eaf0af4583f231ebf05d6df5 as vault

 ########################## BUILD IMAGE  ##########################
 # We need to use the Rust build image, because
@@ -92,9 +92,9 @@ COPY Rocket.toml .
 COPY --from=vault /web-vault ./web-vault
 COPY --from=build app/target/release/bitwarden_rs .

-COPY docker/healthcheck.sh ./healthcheck.sh
+COPY docker/healthcheck.sh /healthcheck.sh

-HEALTHCHECK --interval=30s --timeout=3s CMD sh healthcheck.sh || exit 1
+HEALTHCHECK --interval=60s --timeout=10s CMD ["/healthcheck.sh"]

 # Configures the startup!
 WORKDIR /
@@ -10,16 +10,16 @@
 #  It can be viewed in multiple ways:
 #  - From the https://hub.docker.com/repository/docker/bitwardenrs/web-vault/tags page, click the tag name and the digest should be there.
 #  - From the console, with the following commands:
-#      docker pull bitwardenrs/web-vault:v2.12.0e
-#      docker image inspect --format "{{.RepoDigests}}" bitwardenrs/web-vault:v2.12.0e
-#      
+#      docker pull bitwardenrs/web-vault:v2.14.0
+#      docker image inspect --format "{{.RepoDigests}}" bitwardenrs/web-vault:v2.14.0
+#
 #  - To do the opposite, and get the tag from the hash, you can do:
-#      docker image inspect --format "{{.RepoTags}}" bitwardenrs/web-vault@sha256:ce56b3f5e538351411785ac45e9b4b913259c3508b1323d62e8fa0f30717dd1c
-FROM bitwardenrs/web-vault@sha256:ce56b3f5e538351411785ac45e9b4b913259c3508b1323d62e8fa0f30717dd1c as vault
+#      docker image inspect --format "{{.RepoTags}}" bitwardenrs/web-vault@sha256:c62e0b8698562e03fe2759374f3ecd760d9612e4eaf0af4583f231ebf05d6df5
+FROM bitwardenrs/web-vault@sha256:c62e0b8698562e03fe2759374f3ecd760d9612e4eaf0af4583f231ebf05d6df5 as vault

 ########################## BUILD IMAGE  ##########################
 # Musl build image for statically compiled binary
-FROM clux/muslrust:nightly-2019-12-19 as build
+FROM clux/muslrust:nightly-2020-03-09 as build

 # set postgresql backend
 ARG DB=postgresql
@@ -31,6 +31,7 @@ ENV DEBIAN_FRONTEND=noninteractive LANG=C.UTF-8 TZ=UTC TERM=xterm-256color
 RUN rustup set profile minimal

 ENV USER "root"
+ENV RUSTFLAGS='-C link-arg=-s'

 # Install PostgreSQL package
 RUN apt-get update && apt-get install -y \
@@ -94,9 +95,9 @@ COPY Rocket.toml .
 COPY --from=vault /web-vault ./web-vault
 COPY --from=build /app/target/x86_64-unknown-linux-musl/release/bitwarden_rs .

-COPY docker/healthcheck.sh ./healthcheck.sh
+COPY docker/healthcheck.sh /healthcheck.sh

-HEALTHCHECK --interval=30s --timeout=3s CMD sh healthcheck.sh || exit 1
+HEALTHCHECK --interval=60s --timeout=10s CMD ["/healthcheck.sh"]

 # Configures the startup!
 WORKDIR /
@@ -10,12 +10,12 @@
 #  It can be viewed in multiple ways:
 #  - From the https://hub.docker.com/repository/docker/bitwardenrs/web-vault/tags page, click the tag name and the digest should be there.
 #  - From the console, with the following commands:
-#      docker pull bitwardenrs/web-vault:v2.12.0e
-#      docker image inspect --format "{{.RepoDigests}}" bitwardenrs/web-vault:v2.12.0e
-#      
+#      docker pull bitwardenrs/web-vault:v2.14.0
+#      docker image inspect --format "{{.RepoDigests}}" bitwardenrs/web-vault:v2.14.0
+#
 #  - To do the opposite, and get the tag from the hash, you can do:
-#      docker image inspect --format "{{.RepoTags}}" bitwardenrs/web-vault@sha256:ce56b3f5e538351411785ac45e9b4b913259c3508b1323d62e8fa0f30717dd1c
-FROM bitwardenrs/web-vault@sha256:ce56b3f5e538351411785ac45e9b4b913259c3508b1323d62e8fa0f30717dd1c as vault
+#      docker image inspect --format "{{.RepoTags}}" bitwardenrs/web-vault@sha256:c62e0b8698562e03fe2759374f3ecd760d9612e4eaf0af4583f231ebf05d6df5
+FROM bitwardenrs/web-vault@sha256:c62e0b8698562e03fe2759374f3ecd760d9612e4eaf0af4583f231ebf05d6df5 as vault

 ########################## BUILD IMAGE  ##########################
 # We need to use the Rust build image, because
@@ -86,9 +86,9 @@ COPY Rocket.toml .
 COPY --from=vault /web-vault ./web-vault
 COPY --from=build app/target/release/bitwarden_rs .

-COPY docker/healthcheck.sh ./healthcheck.sh
+COPY docker/healthcheck.sh /healthcheck.sh

-HEALTHCHECK --interval=30s --timeout=3s CMD sh healthcheck.sh || exit 1
+HEALTHCHECK --interval=60s --timeout=10s CMD ["/healthcheck.sh"]

 # Configures the startup!
 WORKDIR /
@@ -10,16 +10,16 @@
 #  It can be viewed in multiple ways:
 #  - From the https://hub.docker.com/repository/docker/bitwardenrs/web-vault/tags page, click the tag name and the digest should be there.
 #  - From the console, with the following commands:
-#      docker pull bitwardenrs/web-vault:v2.12.0e
-#      docker image inspect --format "{{.RepoDigests}}" bitwardenrs/web-vault:v2.12.0e
-#      
+#      docker pull bitwardenrs/web-vault:v2.14.0
+#      docker image inspect --format "{{.RepoDigests}}" bitwardenrs/web-vault:v2.14.0
+#
 #  - To do the opposite, and get the tag from the hash, you can do:
-#      docker image inspect --format "{{.RepoTags}}" bitwardenrs/web-vault@sha256:ce56b3f5e538351411785ac45e9b4b913259c3508b1323d62e8fa0f30717dd1c
-FROM bitwardenrs/web-vault@sha256:ce56b3f5e538351411785ac45e9b4b913259c3508b1323d62e8fa0f30717dd1c as vault
+#      docker image inspect --format "{{.RepoTags}}" bitwardenrs/web-vault@sha256:c62e0b8698562e03fe2759374f3ecd760d9612e4eaf0af4583f231ebf05d6df5
+FROM bitwardenrs/web-vault@sha256:c62e0b8698562e03fe2759374f3ecd760d9612e4eaf0af4583f231ebf05d6df5 as vault

 ########################## BUILD IMAGE  ##########################
 # Musl build image for statically compiled binary
-FROM clux/muslrust:nightly-2019-12-19 as build
+FROM clux/muslrust:nightly-2020-03-09 as build

 # set sqlite as default for DB ARG for backward compatibility
 ARG DB=sqlite
@@ -31,6 +31,7 @@ ENV DEBIAN_FRONTEND=noninteractive LANG=C.UTF-8 TZ=UTC TERM=xterm-256color
 RUN rustup set profile minimal

 ENV USER "root"
+ENV RUSTFLAGS='-C link-arg=-s'

 # Creates a dummy project used to grab dependencies
 RUN USER=root cargo new --bin /app
@@ -88,9 +89,9 @@ COPY Rocket.toml .
 COPY --from=vault /web-vault ./web-vault
 COPY --from=build /app/target/x86_64-unknown-linux-musl/release/bitwarden_rs .

-COPY docker/healthcheck.sh ./healthcheck.sh
+COPY docker/healthcheck.sh /healthcheck.sh

-HEALTHCHECK --interval=30s --timeout=3s CMD sh healthcheck.sh || exit 1
+HEALTHCHECK --interval=60s --timeout=10s CMD ["/healthcheck.sh"]

 # Configures the startup!
 WORKDIR /
@@ -10,12 +10,12 @@
 #  It can be viewed in multiple ways:
 #  - From the https://hub.docker.com/repository/docker/bitwardenrs/web-vault/tags page, click the tag name and the digest should be there.
 #  - From the console, with the following commands:
-#      docker pull bitwardenrs/web-vault:v2.12.0e
-#      docker image inspect --format "{{.RepoDigests}}" bitwardenrs/web-vault:v2.12.0e
-#      
+#      docker pull bitwardenrs/web-vault:v2.14.0
+#      docker image inspect --format "{{.RepoDigests}}" bitwardenrs/web-vault:v2.14.0
+#
 #  - To do the opposite, and get the tag from the hash, you can do:
-#      docker image inspect --format "{{.RepoTags}}" bitwardenrs/web-vault@sha256:ce56b3f5e538351411785ac45e9b4b913259c3508b1323d62e8fa0f30717dd1c
-FROM bitwardenrs/web-vault@sha256:ce56b3f5e538351411785ac45e9b4b913259c3508b1323d62e8fa0f30717dd1c as vault
+#      docker image inspect --format "{{.RepoTags}}" bitwardenrs/web-vault@sha256:c62e0b8698562e03fe2759374f3ecd760d9612e4eaf0af4583f231ebf05d6df5
+FROM bitwardenrs/web-vault@sha256:c62e0b8698562e03fe2759374f3ecd760d9612e4eaf0af4583f231ebf05d6df5 as vault

 ########################## BUILD IMAGE  ##########################
 # We need to use the Rust build image, because
@@ -124,9 +124,9 @@ COPY Rocket.toml .
 COPY --from=vault /web-vault ./web-vault
 COPY --from=build /app/target/arm-unknown-linux-gnueabi/release/bitwarden_rs .

-COPY docker/healthcheck.sh ./healthcheck.sh
+COPY docker/healthcheck.sh /healthcheck.sh

-HEALTHCHECK --interval=30s --timeout=3s CMD sh healthcheck.sh || exit 1
+HEALTHCHECK --interval=60s --timeout=10s CMD ["/healthcheck.sh"]

 # Configures the startup!
 WORKDIR /
@@ -10,12 +10,12 @@
 #  It can be viewed in multiple ways:
 #  - From the https://hub.docker.com/repository/docker/bitwardenrs/web-vault/tags page, click the tag name and the digest should be there.
 #  - From the console, with the following commands:
-#      docker pull bitwardenrs/web-vault:v2.12.0e
-#      docker image inspect --format "{{.RepoDigests}}" bitwardenrs/web-vault:v2.12.0e
-#      
+#      docker pull bitwardenrs/web-vault:v2.14.0
+#      docker image inspect --format "{{.RepoDigests}}" bitwardenrs/web-vault:v2.14.0
+#
 #  - To do the opposite, and get the tag from the hash, you can do:
-#      docker image inspect --format "{{.RepoTags}}" bitwardenrs/web-vault@sha256:ce56b3f5e538351411785ac45e9b4b913259c3508b1323d62e8fa0f30717dd1c
-FROM bitwardenrs/web-vault@sha256:ce56b3f5e538351411785ac45e9b4b913259c3508b1323d62e8fa0f30717dd1c as vault
+#      docker image inspect --format "{{.RepoTags}}" bitwardenrs/web-vault@sha256:c62e0b8698562e03fe2759374f3ecd760d9612e4eaf0af4583f231ebf05d6df5
+FROM bitwardenrs/web-vault@sha256:c62e0b8698562e03fe2759374f3ecd760d9612e4eaf0af4583f231ebf05d6df5 as vault

 ########################## BUILD IMAGE  ##########################
 # We need to use the Rust build image, because
@@ -118,9 +118,9 @@ COPY Rocket.toml .
 COPY --from=vault /web-vault ./web-vault
 COPY --from=build /app/target/arm-unknown-linux-gnueabi/release/bitwarden_rs .

-COPY docker/healthcheck.sh ./healthcheck.sh
+COPY docker/healthcheck.sh /healthcheck.sh

-HEALTHCHECK --interval=30s --timeout=3s CMD sh healthcheck.sh || exit 1
+HEALTHCHECK --interval=60s --timeout=10s CMD ["/healthcheck.sh"]

 # Configures the startup!
 WORKDIR /
@@ -10,12 +10,12 @@
 #  It can be viewed in multiple ways:
 #  - From the https://hub.docker.com/repository/docker/bitwardenrs/web-vault/tags page, click the tag name and the digest should be there.
 #  - From the console, with the following commands:
-#      docker pull bitwardenrs/web-vault:v2.12.0e
-#      docker image inspect --format "{{.RepoDigests}}" bitwardenrs/web-vault:v2.12.0e
-#      
+#      docker pull bitwardenrs/web-vault:v2.14.0
+#      docker image inspect --format "{{.RepoDigests}}" bitwardenrs/web-vault:v2.14.0
+#
 #  - To do the opposite, and get the tag from the hash, you can do:
-#      docker image inspect --format "{{.RepoTags}}" bitwardenrs/web-vault@sha256:ce56b3f5e538351411785ac45e9b4b913259c3508b1323d62e8fa0f30717dd1c
-FROM bitwardenrs/web-vault@sha256:ce56b3f5e538351411785ac45e9b4b913259c3508b1323d62e8fa0f30717dd1c as vault
+#      docker image inspect --format "{{.RepoTags}}" bitwardenrs/web-vault@sha256:c62e0b8698562e03fe2759374f3ecd760d9612e4eaf0af4583f231ebf05d6df5
+FROM bitwardenrs/web-vault@sha256:c62e0b8698562e03fe2759374f3ecd760d9612e4eaf0af4583f231ebf05d6df5 as vault

 ########################## BUILD IMAGE  ##########################
 # We need to use the Rust build image, because
@@ -123,9 +123,9 @@ COPY Rocket.toml .
 COPY --from=vault /web-vault ./web-vault
 COPY --from=build /app/target/armv7-unknown-linux-gnueabihf/release/bitwarden_rs .

-COPY docker/healthcheck.sh ./healthcheck.sh
+COPY docker/healthcheck.sh /healthcheck.sh

-HEALTHCHECK --interval=30s --timeout=3s CMD sh healthcheck.sh || exit 1
+HEALTHCHECK --interval=60s --timeout=10s CMD ["/healthcheck.sh"]

 # Configures the startup!
 WORKDIR /
@@ -10,12 +10,12 @@
 #  It can be viewed in multiple ways:
 #  - From the https://hub.docker.com/repository/docker/bitwardenrs/web-vault/tags page, click the tag name and the digest should be there.
 #  - From the console, with the following commands:
-#      docker pull bitwardenrs/web-vault:v2.12.0e
-#      docker image inspect --format "{{.RepoDigests}}" bitwardenrs/web-vault:v2.12.0e
-#      
+#      docker pull bitwardenrs/web-vault:v2.14.0
+#      docker image inspect --format "{{.RepoDigests}}" bitwardenrs/web-vault:v2.14.0
+#
 #  - To do the opposite, and get the tag from the hash, you can do:
-#      docker image inspect --format "{{.RepoTags}}" bitwardenrs/web-vault@sha256:ce56b3f5e538351411785ac45e9b4b913259c3508b1323d62e8fa0f30717dd1c
-FROM bitwardenrs/web-vault@sha256:ce56b3f5e538351411785ac45e9b4b913259c3508b1323d62e8fa0f30717dd1c as vault
+#      docker image inspect --format "{{.RepoTags}}" bitwardenrs/web-vault@sha256:c62e0b8698562e03fe2759374f3ecd760d9612e4eaf0af4583f231ebf05d6df5
+FROM bitwardenrs/web-vault@sha256:c62e0b8698562e03fe2759374f3ecd760d9612e4eaf0af4583f231ebf05d6df5 as vault

 ########################## BUILD IMAGE  ##########################
 # We need to use the Rust build image, because
@@ -117,9 +117,9 @@ COPY Rocket.toml .
 COPY --from=vault /web-vault ./web-vault
 COPY --from=build /app/target/armv7-unknown-linux-gnueabihf/release/bitwarden_rs .

-COPY docker/healthcheck.sh ./healthcheck.sh
+COPY docker/healthcheck.sh /healthcheck.sh

-HEALTHCHECK --interval=30s --timeout=3s CMD sh healthcheck.sh || exit 1
+HEALTHCHECK --interval=60s --timeout=10s CMD ["/healthcheck.sh"]

 # Configures the startup!
 WORKDIR /
@@ -1,8 +1,53 @@
-#!/usr/bin/env sh
+#!/bin/sh

-if [ -z "$ROCKET_TLS"]
-then
-  curl --fail http://localhost:${ROCKET_PORT:-"80"}/alive || exit 1
-else
-  curl --insecure --fail https://localhost:${ROCKET_PORT:-"80"}/alive || exit 1
-fi
+# Use the value of the corresponding env var (if present),
+# or a default value otherwise.
+: ${DATA_FOLDER:="data"}
+: ${ROCKET_PORT:="80"}
+
+CONFIG_FILE="${DATA_FOLDER}"/config.json
+
+# Given a config key, return the corresponding config value from the
+# config file. If the key doesn't exist, return an empty string.
+get_config_val() {
+    local key="$1"
+    # Extract a line of the form:
+    #   "domain": "https://bw.example.com/path",
+    grep "\"${key}\":" "${CONFIG_FILE}" |
+    # To extract just the value (https://bw.example.com/path), delete:
+    # (1) everything up to and including the first ':',
+    # (2) whitespace and '"' from the front,
+    # (3) ',' and '"' from the back.
+    sed -e 's/[^:]\+://' -e 's/^[ "]\+//' -e 's/[,"]\+$//'
+}
+
+# Extract the base path from a domain URL. For example:
+# - `` -> ``
+# - `https://bw.example.com` -> ``
+# - `https://bw.example.com/` -> ``
+# - `https://bw.example.com/path` -> `/path`
+# - `https://bw.example.com/multi/path` -> `/multi/path`
+get_base_path() {
+    echo "$1" |
+    # Delete:
+    # (1) everything up to and including '://',
+    # (2) everything up to '/',
+    # (3) trailing '/' from the back.
+    sed -e 's|.*://||' -e 's|[^/]\+||' -e 's|/*$||'
+}
+
+# Read domain URL from config.json, if present.
+if [ -r "${CONFIG_FILE}" ]; then
+    domain="$(get_config_val 'domain')"
+    if [ -n "${domain}" ]; then
+        # config.json 'domain' overrides the DOMAIN env var.
+        DOMAIN="${domain}"
+    fi
+fi
+
+base_path="$(get_base_path "${DOMAIN}")"
+if [ -n "${ROCKET_TLS}" ]; then
+    s='s'
+fi
+curl --insecure --fail --silent --show-error \
+     "http${s}://localhost:${ROCKET_PORT}${base_path}/alive" || exit 1
@@ -0,0 +1 @@
+DROP TABLE org_policies;
@@ -0,0 +1,9 @@
+CREATE TABLE org_policies (
+  uuid      CHAR(36) NOT NULL PRIMARY KEY,
+  org_uuid  CHAR(36) NOT NULL REFERENCES organizations (uuid),
+  atype     INTEGER  NOT NULL,
+  enabled   BOOLEAN  NOT NULL,
+  data      TEXT     NOT NULL,
+
+  UNIQUE (org_uuid, atype)
+);
@@ -0,0 +1 @@
+
@@ -0,0 +1,3 @@
+ALTER TABLE ciphers
+    ADD COLUMN
+    deleted_at DATETIME;
@@ -0,0 +1 @@
+DROP TABLE org_policies;
@@ -0,0 +1,9 @@
+CREATE TABLE org_policies (
+  uuid      CHAR(36) NOT NULL PRIMARY KEY,
+  org_uuid  CHAR(36) NOT NULL REFERENCES organizations (uuid),
+  atype     INTEGER  NOT NULL,
+  enabled   BOOLEAN  NOT NULL,
+  data      TEXT     NOT NULL,
+  
+  UNIQUE (org_uuid, atype)
+);
@@ -0,0 +1 @@
+
@@ -0,0 +1,3 @@
+ALTER TABLE ciphers
+    ADD COLUMN
+    deleted_at TIMESTAMP;
@@ -0,0 +1 @@
+DROP TABLE org_policies;
@@ -0,0 +1,9 @@
+CREATE TABLE org_policies (
+  uuid      TEXT     NOT NULL PRIMARY KEY,
+  org_uuid  TEXT     NOT NULL REFERENCES organizations (uuid),
+  atype     INTEGER  NOT NULL,
+  enabled   BOOLEAN  NOT NULL,
+  data      TEXT     NOT NULL,
+
+  UNIQUE (org_uuid, atype)
+);
@@ -0,0 +1 @@
+
@@ -0,0 +1,3 @@
+ALTER TABLE ciphers
+    ADD COLUMN
+    deleted_at DATETIME;
--- a/Show More
+++ b/Show More
Author	SHA1	Message	Date
Daniel García	52ed8e4d75	Merge pull request #1026 from BlackDex/issue-1022 Fixes #1022 cloning with attachments	2020-06-07 19:53:47 +02:00
BlackDex	24c914799d	Fixes #1022 cloning with attachments When a cipher has one or more attachments it wasn't able to be cloned. This commit fixes that issue.	2020-06-07 17:57:04 +02:00
Daniel García	db53511855	Merge pull request #1020 from BlackDex/admin-interface Fixed wrong status if there is an update.	2020-06-04 18:50:00 +02:00
BlackDex	325691e588	Fixed wrong status if there is an update. - Checking the sha hash first if this is also in the server version. - Added a badge to show if you are on a branched build.	2020-06-04 17:05:17 +02:00
Daniel García	fac3cb687d	Merge pull request #1019 from xoxys/master Add back openssl crate	2020-06-04 01:24:28 +02:00
Robert Kaussow	afbf1db331	add back openssl crate	2020-06-04 01:21:30 +02:00
Daniel García	1aefaec297	Merge pull request #1018 from BlackDex/admin-interface Admin interface	2020-06-03 22:48:03 +02:00
Daniel García	f1d3fb5d40	Merge pull request #1017 from dprobinson/patch-1 Added missing ENV Variable for Implicit TLS	2020-06-03 22:47:53 +02:00
BlackDex	ac2723f898	Updated Organizations overview - Changed HTML to match users overview - Added User count - Added Org cipher amount - Added Attachment count and size	2020-06-03 20:37:31 +02:00
BlackDex	2fffaec226	Added attachment info per user and some layout fix - Added the amount and size of the attachments per user - Changed the items count function a bit - Some small layout changes	2020-06-03 17:57:03 +02:00
BlackDex	5c54dfee3a	Fixed an issue when DNS resolving fails. In the event of a failed DNS Resolving checking for new versions will cause a huge delay, and in the end a timeout when loading the page. - Check if DNS resolving failed, if that is the case, do not check for new versions - Changed `fn get_github_api` to make use of structs - Added a timeout of 10 seconds for the version check requests - Moved the "Unknown" lables to the "Latest" lable	2020-06-03 17:07:32 +02:00
David P Robinson	967d2d78ec	Added missing ENV Variable for Implicit TLS	2020-06-02 23:46:26 +01:00
Daniel García	1aa5e0d4dc	Merge pull request #1012 from BlackDex/admin-interface Updated js/css libraries and fixed smallscreen err	2020-06-01 20:07:13 +02:00
BlackDex	b47cf97409	Updated js/css libraries and fixed smallscreen err - Updated bootstrap js and css to the latest version - Fixed issue with small-screens where the menu overlaps the token input - The menu now collapses to a hamburger menu - Menu's only accessable when logedin are hidden when you are not - Changed Users Overview to use a table to prevent small-screen issues.	2020-06-01 18:58:38 +02:00
Daniel García	5e802f8aa3	Update lettre to alpha release instead of git commit, and update the rest of dependencies while we are at it	2020-05-31 17:58:06 +02:00
Daniel García	0bdeb02a31	Merge pull request #1009 from jjlin/email-subject Don't HTML-escape email subject lines	2020-05-31 00:22:58 +02:00
Daniel García	b03698fadb	Merge pull request #1010 from jjlin/admin-url Avoid double-slashes in the admin URL	2020-05-31 00:22:46 +02:00
Jeremy Lin	39d1a09704	Avoid double-slashes in the admin URL	2020-05-30 01:06:40 -07:00
Jeremy Lin	a447e4e7ef	Don't HTML-escape email subject lines For example, this causes org names like `X&Y` to appear as `X&Y`.	2020-05-30 00:36:43 -07:00
Daniel García	4eee6e7aee	Merge pull request #1007 from BlackDex/admin-interface Admin interface restyle	2020-05-28 20:54:11 +02:00
BlackDex	b6fde857a7	Added version check to diagnostics - Added a version check based upon the github api information.	2020-05-28 20:25:25 +02:00
BlackDex	3c66deb5cc	Redesign of the admin interface. Main changes: - Splitted up settings and users into two separate pages. - Added verified shield when the e-mail address has been verified. - Added the amount of personal items in the database to the users overview. - Added Organizations and Diagnostics pages. - Shows if DNS resolving works. - Shows if there is a posible time drift. - Shows current versions of server and web-vault. - Optimized logo-gray.png using optipng Items which can be added later: - Amount of cipher items accessible for a user, not only his personal items. - Amount of users per Org - Version update check in the diagnostics overview. - Copy/Pasteable runtime config which has sensitive data changed or removed for support questions either on the forum or github issues. - Option to delete Orgs and all its passwords (when there are no members anymore). - Etc....	2020-05-28 10:46:25 +02:00
Daniel García	4146612a32	Merge pull request #1006 from jjlin/email-change Allow email changes for existing accounts even when signups are disabled	2020-05-27 18:18:21 +02:00
Jeremy Lin	a314933557	Allow email changes for existing accounts even when signups are disabled	2020-05-24 14:38:19 -07:00
Daniel García	c5d7e3f2bc	Merge pull request #1003 from frdescam/fix_arm_displaysize Use format! for rounding to fix arm issue	2020-05-23 13:10:06 +02:00
Daniel García	c95a2881b5	Merge pull request #998 from frdescam/fix_email_templates Fixing bad width in 2FA email template	2020-05-23 13:09:44 +02:00
fdeĉ	4c3727b4a3	use format! for rounding to fix arm issue	2020-05-22 12:10:56 +02:00
Daniel García	a1f304dff7	Update web vault to v2.14.0	2020-05-21 22:49:15 +02:00
Daniel García	a8870eef0d	Convert to f32 before rounding to fix arm issue	2020-05-20 17:58:39 +02:00
François	afaebc6cf3	fixing hard coded width email templates	2020-05-20 13:38:04 +02:00
François	8f4a1f4fc2	fixing bad width in 2FA email template	2020-05-18 12:27:21 +02:00
Daniel García	0807783388	Add ip on totp miss	2020-05-14 00:19:50 +02:00
Daniel García	80d4061d14	Update dependencies	2020-05-14 00:18:18 +02:00
Daniel García	dc2f8e5c85	Merge pull request #994 from jjlin/help-text Update startup banner to direct usage/config questions to the forum	2020-05-13 22:34:30 +02:00
Daniel García	aee1ea032b	Merge pull request #989 from theycallmesteve/update_responses Update responses	2020-05-13 22:34:16 +02:00
Daniel García	484e82fb9f	Merge pull request #988 from theycallmesteve/rename_functions Rename functions	2020-05-13 22:34:06 +02:00
Jeremy Lin	322a08edfb	Update startup banner to direct usage/config questions to the forum	2020-05-13 12:29:47 -07:00
theycallmesteve	08afc312c3	Add missing items to profileOrganization response model	2020-05-08 13:39:17 -04:00
theycallmesteve	5571a5d8ed	Update post_keys to return a keys response model	2020-05-08 13:38:49 -04:00
theycallmesteve	6a8c65493f	Rename collection_user_details to collection_read_only to reflect the response model	2020-05-08 13:37:40 -04:00
theycallmesteve	dfdf4473ea	Rename to_json_list to to_json_provder to reflect the response model	2020-05-08 13:36:35 -04:00
Daniel García	8bbbff7567	Merge pull request #987 from theycallmesteve/global_domains GlobalEquivalentDomains updates from upstream bitwarden	2020-05-08 01:04:10 +02:00
theycallmesteve	42e37ebea1	Apply upstream global domain values and whitespace fixes	2020-05-07 18:05:17 -04:00
theycallmesteve	632f4d5453	Whitespace fixes	2020-05-07 18:02:37 -04:00
Daniel García	6c5e35ce5c	Change the mails content types to more closely match what we sent before	2020-05-07 00:51:46 +02:00
Daniel García	4ff15f6dc2	Merge pull request #978 from AltiUP/patch-1 Delete the call to the map file	2020-05-03 22:30:06 +02:00
Daniel García	ec8028aef2	Merge pull request #979 from jjlin/admin-redirect Use absolute URIs for admin page redirects	2020-05-03 22:27:09 +02:00
Daniel García	63cbd9ef9c	Update lettre to latest master	2020-05-03 17:41:53 +02:00
Daniel García	9cca64003a	Remove unused dependency and simple feature, update dependencies and fix some clippy lints	2020-05-03 17:24:51 +02:00
Jeremy Lin	819d5e2dc8	Use absolute URIs for admin page redirects This is technically required per RFC 2616 (HTTP/1.1); some proxies will rewrite a plain `/admin` path to an unexpected URL otherwise.	2020-05-01 00:31:47 -07:00
Christophe Gherardi	3b06ab296b	Delete the call to the map file The file bootstrap.css.map is missing, the reference can be deleted.	2020-04-30 19:41:58 +02:00
Daniel García	0de52c6c99	Merge pull request #957 from jjlin/domain-whitelist Domain whitelist cleanup and fixes	2020-04-18 12:08:48 +02:00
Daniel García	e3b00b59a7	Initial support for soft deletes	2020-04-17 22:35:27 +02:00
Daniel García	5a390a973f	Merge pull request #966 from BlackDex/issue-965 Fixed issue #965	2020-04-15 17:15:59 +02:00
BlackDex	1ee8e44912	Fixed issue #965 PostgreSQL updates/inserts ignored None/null values. This is nice for new entries, but not for updates. Added derive option to allways add these none/null values for Option<> variables. This solves issue #965	2020-04-15 16:49:33 +02:00
Jeremy Lin	86685c1cd2	Ensure email domain comparison is case-insensitive	2020-04-11 14:51:36 -07:00
Daniel García	e3feba2a2c	Merge pull request #960 from jjlin/admin-token Warn on empty `ADMIN_TOKEN` instead of bailing out	2020-04-11 23:34:37 +02:00
Jeremy Lin	0a68de6c24	Warn on empty `ADMIN_TOKEN` instead of bailing out The admin page will still be disabled. Fixes #849.	2020-04-09 20:55:08 -07:00
Daniel García	4be8dae626	Make web vault show a more informative error when browsers block WebCrypto in insecure contexts and update dependencies	2020-04-09 22:54:31 +02:00
Jeremy Lin	e4d08836e2	Make org owner invitations respect the email domain whitelist This closes a loophole where org owners can invite new users from any domain.	2020-04-09 01:51:05 -07:00
Jeremy Lin	c2a324e5da	Clean up domain whitelist logic * Make `SIGNUPS_DOMAINS_WHITELIST` override the `SIGNUPS_ALLOWED` setting. Otherwise, a common pitfall is to set `SIGNUPS_DOMAINS_WHITELIST` without realizing that `SIGNUPS_ALLOWED=false` must also be set. * Whitespace is now accepted in `SIGNUPS_DOMAINS_WHITELIST`. That is, `foo.com, bar.com` is now equivalent to `foo.com,bar.com`. * Add validation on `SIGNUPS_DOMAINS_WHITELIST`. For example, `foo.com,` is rejected as containing an empty token.	2020-04-09 01:42:27 -07:00
Daniel García	77f95146d6	Merge pull request #956 from jjlin/duo Fix Duo auth failure with non-lowercased email addresses	2020-04-08 08:43:24 +02:00
Jeremy Lin	6cd8512bbd	Fix Duo auth failure with non-lowercased email addresses	2020-04-07 20:40:51 -07:00
Daniel García	843604c9e7	Merge pull request #939 from jjlin/attachment-size Fix attachment size limit calculation	2020-03-31 12:56:49 +02:00
Jeremy Lin	7407b8326a	Fix attachment size limit calculation The config values (in KB) need to be converted to bytes when comparing against total attachment sizes.	2020-03-31 02:30:28 -07:00
Daniel García	adf47827c9	Make sure the data field is always returned, otherwise the mobile apps seem to have issues	2020-03-30 22:19:50 +02:00
Daniel García	5471088e93	Merge pull request #933 from jjlin/dockerfiles Rebuild Dockerfiles to match latest Dockerfile.j2 template	2020-03-27 17:45:10 +01:00
Daniel García	4e85a1dee1	Update web vault to 2.13.2	2020-03-27 17:44:10 +01:00
Daniel García	ec60839064	Merge pull request #932 from jjlin/ws-fix Fix WebSocket notifications	2020-03-27 08:38:54 +01:00
Jeremy Lin	d4bfa1a189	Rebuild Dockerfiles to match latest Dockerfile.j2 template Picks up a couple of missed changes from `b837348b` and `ccf6ee79`.	2020-03-26 20:10:33 -07:00
Jeremy Lin	862d401077	Fix WebSocket notifications Ignore a missing `id` query param; it's unclear what this ID represents, but it wasn't being used in the existing bitwarden_rs code, and no longer seems to be sent in the latest versions of the official clients.	2020-03-26 19:26:44 -07:00
Daniel García	255a06382d	Merge pull request #928 from jjlin/healthcheck Healthcheck fixes/optimizations	2020-03-26 21:13:31 +01:00
Jeremy Lin	bbb0484d03	Healthcheck fixes/optimizations * Switch healthcheck interval/timeout from 30s/3s to 60s/10s. 30s interval is arguably overkill, and 3s timeout is definitely too short for lower end machines. * Use HEALTHCHECK CMD exec form to avoid superfluous `sh` invocations. * Add `--silent --show-error` flags to curl call to avoid progress meter being shown in healthcheck logs.	2020-03-25 20:13:36 -07:00
Daniel García	93346bc05d	Merge pull request #927 from jjlin/healthcheck Update healthcheck script to handle alternate base dir	2020-03-25 22:21:08 +01:00
Jeremy Lin	fdf50f0064	Update healthcheck script to handle alternate base dir	2020-03-24 20:00:35 -07:00
Daniel García	ccf6ee79d0	Update dependencies, mainly diesel and sqlite	2020-03-24 20:36:19 +01:00
Daniel García	91dd19473d	Merge pull request #922 from jjlin/device-push-token Handle `devicePushToken`	2020-03-23 00:03:10 +01:00
Jeremy Lin	c06162b22f	Handle `devicePushToken` Mobile push isn't currently supported, but this should get rid of spurious `Detected unexpected parameter during login: devicepushtoken` warnings.	2020-03-22 15:04:25 -07:00
Daniel García	7a6a3e4160	Set the cargo version and allow changing it during build time with BWRS_VERSION. Also renamed GIT_VERSION because that's not the only source anymore.	2020-03-22 16:13:34 +01:00
Daniel García	94341f9f3f	Fix token error while accepting invite	2020-03-20 10:51:17 +01:00
Daniel García	ff19fb3426	Merge pull request #919 from BlackDex/issue-908 Fixed issue #908	2020-03-19 18:11:47 +01:00
BlackDex	baac8d9627	Fixed issue #908 The organization uuid is most of the time within the uri path as a parameter. But sometimes it only is there as a query value. This fix checks both, and returns the uuid when possible.	2020-03-19 17:37:10 +01:00
BlackDex	669b101e6a	Fixing issue #908 Sometimes an org-uuid is not within the path but in a query value, This fixes the check for that.	2020-03-19 16:50:47 +01:00
Daniel García	935f38692f	Merge pull request #918 from dani-garcia/revert-901-feature/opportunistic_tls Revert "Use opportunistic TLS in SMTP connections"	2020-03-19 13:58:00 +01:00
Daniel García	d2d9fb08cc	Revert "Use opportunistic TLS in SMTP connections"	2020-03-19 13:56:53 +01:00
Daniel García	b85d548879	Merge pull request #916 from BlackDex/issue-759 Fixing issue #759 by disabling Foreign Key Checks.	2020-03-18 18:48:08 +01:00
BlackDex	35f30088b2	Fixing issue #759 by disabling Foreign Key Checks. During migrations some queries are out of order regarding to foreign keys. Because of this the migrations fail when the sql database has this enforced by default. Turning of this check during the migrations will fix this and this is only per session.	2020-03-18 18:11:11 +01:00
Daniel García	dce054e632	Merge pull request #912 from ymage/openssl_as_default Fix alpine build with openssl crate as default	2020-03-16 23:02:07 +01:00
Ymage	ba725e1c25	Make openssl crate as default (non feature-flipped)	2020-03-16 22:39:10 +01:00
Ymage	b837348b25	Build as static	2020-03-16 22:34:59 +01:00
Daniel García	7d9c7017c9	Merge pull request #911 from BlackDex/upgrade-rocket Upgrade rocket	2020-03-16 18:17:17 +01:00
Daniel García	d6b9b8bf0c	Merge pull request #876 from BlackDex/log-panics Make panics logable (as warn)	2020-03-16 18:16:49 +01:00
BlackDex	bd09fe1a3d	Updated code so backtraces are logged also.	2020-03-16 17:53:22 +01:00
BlackDex	bcbe6177b8	Merge branch 'master' of https://github.com/dani-garcia/bitwarden_rs into log-panics	2020-03-16 17:19:27 +01:00
BlackDex	9b1d07365e	Updated ring Some small changes to match the updated ring package.	2020-03-16 16:39:20 +01:00
BlackDex	37b212427c	Updated jsonwebtoken Updated to the latest version of jsonwebtoken. Some small code changes to match the new versions.	2020-03-16 16:38:00 +01:00
BlackDex	078234d8b3	Small change for rocket compatibilty	2020-03-16 16:36:44 +01:00
BlackDex	3ce0c3d1a5	Update dependencies Primarily updating rocket, which needed some dependencies Latest versions of: - ring - time - jsonwebtoken - yubico - rocket (git)	2020-03-16 16:32:33 +01:00
Daniel García	2ee07ea1d8	Fix empty data when cloning cipher	2020-03-15 17:26:34 +01:00
Daniel García	40c339db9b	Fix postgres policies, second try	2020-03-14 23:53:12 +01:00
Daniel García	402c1cd06c	Merge pull request #906 from BlackDex/upgrade-reqwest Updated reqwest to the latest version.	2020-03-14 23:35:52 +01:00
Daniel García	819f340f39	Fix issue with postgres	2020-03-14 23:35:34 +01:00
BlackDex	1b4b40c95d	Updated reqwest to the latest version. - Use the blocking client (no async). - Disabled gzip. - use_sys_proxy is now default.	2020-03-14 23:12:45 +01:00
Daniel García	afd9f4e278	Allow the smtp mechanism to be provided without quotes and all lowercase	2020-03-14 22:31:41 +01:00
Daniel García	47a9461f39	Merge pull request #903 from TheBinaryLoop/patch-1 Updated domains with new values vualt	2020-03-14 14:41:39 +01:00
Daniel García	c6f64d8368	Merge pull request #901 from sleweke/feature/opportunistic_tls Use opportunistic TLS in SMTP connections	2020-03-14 14:41:00 +01:00
Daniel García	edabf19ddf	Update vault to 2.13.1	2020-03-14 14:40:06 +01:00
Daniel García	a30d5f4cf9	Fix cloning issues	2020-03-14 14:08:57 +01:00
Daniel García	3fa78e7bb1	Initial version of policies	2020-03-14 13:32:28 +01:00
Lukas Eßmann	a8a7e4f9a5	Updated domains with new values vualt Added domains from official vault.bitwarden.com	2020-03-13 20:08:52 +01:00
Samuel Leweke	5d3b765a23	Use opportunistic TLS in SMTP connections If SSL is disabled, the SMTP ClientSecurity of the lettre crate defaults to None, that is, an insecure connection. This is changed to Opportunistic, which uses TLS if available. If TLS is not available, the insecure connection is used (i.e., this change is backward compatible).	2020-03-12 11:40:52 +01:00
BlackDex	7439aeb63e	Make panics logable (as warn) panic!()'s only appear on stderr, this makes tracking down some strange issues harder with the usage of docker since stderr does not get logged into the bitwarden.log file. This change logs the message to stdout and the logfile when activated.	2020-02-25 14:10:52 +01:00