Commit graph

109 commits

Author SHA1 Message Date
qaz741wsd856
51d8e8a75f docs: add demo to readme 2025-12-11 08:23:12 +00:00
qaz741wsd856
50f5a60f1b chore: fix some warnings 2025-12-11 04:32:18 +00:00
qaz741wsd856
023b010504 feat: implement pending attachments feature in upload handling 2025-12-11 03:22:10 +00:00
qaz741wsd856
5e04837b5d feat: add folder management routes and update API version 2025-12-10 18:08:15 +00:00
qaz741wsd856
89137fb150 refactor: streamline cipher and sync handlers to utilize raw JSON responses from sqlite json query 2025-12-10 12:34:12 +00:00
qaz741wsd856
96749af57f refactor: optimize sync and list operation by join 2025-12-10 09:55:53 +00:00
qaz741wsd856
ae423c1a53 feat: add error mapping for D1 JSON parsing and update cipher move logic to handle JSON directly 2025-12-09 17:28:36 +00:00
qaz741wsd856
b1ea9183bc refactor: directly pass json body to d1 api in attachment handling to avoid parsing 2025-12-09 16:18:13 +00:00
qaz741wsd856
eb6a1d8a63 refactor: optimize bulk delete and restore operations for ciphers 2025-12-09 14:48:33 +00:00
qaz741wsd856
f5db9e400d chroe: disable workers.dev by default 2025-12-09 14:48:26 +00:00
qaz741wsd856
50c5ec56b3 docs: update README and add deployment documentation 2025-12-09 12:49:49 +00:00
qaz741wsd856
d72ef417b7 chore: format code 2025-12-09 05:35:21 +00:00
qaz741wsd856
eee4cc90ef chore: remove unnecessary attachement urls 2025-12-09 03:38:29 +00:00
qaz741wsd856
a9ed226313 fix: actually fix timestamp format entry.js 2025-12-08 18:31:37 +00:00
qaz741wsd856
28673648e7 fix: update timestamp format in touch_cipher_updated_at function 2025-12-08 17:55:05 +00:00
qaz741wsd856
964a54df63 fix: fix r2 binding in github actions 2025-12-08 14:21:02 +00:00
qaz741wsd856
61a3539e23 feat: add zero-copy streaming for attachment downloads using js wapper 2025-12-08 13:29:55 +00:00
qaz741wsd856
8902444561 feat: implement zero-copy streaming for attachment uploads
- Added a new entry point in JavaScript to handle zero-copy streaming uploads to R2.
- Updated the Rust backend to support the new upload route with JWT validation.
- Enhanced the API to generate full URLs for the new azure-upload endpoint.
- Introduced new dependencies: `futures-util` and `wasm-streams` for improved async handling.
2025-12-08 11:11:27 +00:00
qaz741wsd856
9b84f4fdd8 fix: add r2 binding to github action and update readme 2025-12-08 06:26:17 +00:00
qaz741wsd856
4f61077ca9 fix: add R2 cleanup to every delete route 2025-12-07 16:24:48 +00:00
qaz741wsd856
d6ef6113fd fix: add cipher details to attachment delete response 2025-12-07 15:46:52 +00:00
qaz741wsd856
2591e2e46f chroe: remove unused code and suppress warnings 2025-12-07 15:43:02 +00:00
qaz741wsd856
fc3cd06f30 chore: remove reference repository and update gitignore 2025-12-07 14:52:15 +00:00
qaz741wsd856
4930e747ed fix: generate full url for attachment download 2025-12-07 14:50:44 +00:00
qaz741wsd856
28c791337a feat: extend the request body size limit and directly forward r2 to response body 2025-12-07 14:13:22 +00:00
qaz741wsd856
73223bfa94 feat: add file attachment support for ciphers
- Implemented functionality to create, upload, download, and delete attachments associated with ciphers.
- Introduced a new `attachments` module and updated the database schema to include an `attachments` table.
- Enhanced the API routes to handle attachment operations, including legacy support.
- Updated the README and configuration files to reflect the new attachment feature and its usage.
2025-12-07 11:13:06 +00:00
qaz741wsd856
38b978ca6e chore: format code 2025-12-06 17:52:31 +00:00
qaz741wsd856
3ba2f09ea3 feat: add validation for key rotation metadata 2025-12-06 15:51:42 +00:00
qaz741wsd856
84e35ec032 feat: support for changing user name and avatar color 2025-12-06 15:42:52 +00:00
qaz741wsd856
3408ccb555 feat: implement two-factor authentication (2FA) support with TOTP and recovery codes 2025-12-06 15:01:14 +00:00
qaz741wsd856
51676af4a1 feat: enhance cipher update process with folder ownership validation and client data freshness checks 2025-12-05 12:18:25 +00:00
qaz741wsd856
90b6058fb6 feat: enhance cipher management with legacy API routes and partial updates 2025-12-05 08:58:26 +00:00
qaz741wsd856
6d2fb7aa3e feat: support for moving selected ciphers to a folder 2025-12-05 08:21:54 +00:00
qaz741wsd856
40f07dcd58 feat: add purge vault endpoint for deleting all ciphers and folders 2025-12-05 03:38:44 +00:00
qaz741wsd856
a724719f4b refactor: replace js wrapper with rust binding 2025-12-04 17:54:16 +00:00
qaz741wsd856
8772cd4868 feat: apply worker built-in rate limiting for sensitive endpoints
- Added a rate limiting wrapper to intercept requests and apply limits to login, registration, and prelogin endpoints.
- Configured rate limits in `wrangler.toml` for both production and development environments.
- Updated README to document the rate limiting feature, including how it works and customization options.
2025-12-04 17:21:15 +00:00
qaz741wsd856
eef8ab5acc fix: clear unexpected KDF parameters in registration and key rotation 2025-12-04 17:18:53 +00:00
qaz741wsd856
a1fd81c1a9 feat: implement backward compatibility for KDF settings in accounts handler
- Added support for both simple and complex KDF request formats in the post_kdf handler.
- Enhanced KDF validation to ensure compatibility with legacy formats.
- Updated data structures to reflect changes in KDF parameters and request handling.
- Introduced methods to extract KDF parameters and new password hash from either format.
2025-12-04 15:32:47 +00:00
qaz741wsd856
b519226cd6 feat: implement Argon2 KDF support in user authentication and registration
- Added new fields for Argon2 parameters (kdf_memory, kdf_parallelism) in the users table and related SQL migration.
- Updated API routes and handlers to support changing KDF settings.
- Enhanced KDF validation logic to accommodate both PBKDF2 and Argon2.
- Modified user registration and prelogin responses to include Argon2 parameters.
- Updated relevant data structures to reflect new KDF settings.
2025-12-04 14:44:40 +00:00
qaz741wsd856
aab428a6d2 docs: update readme and remove dangerous table drop commands 2025-12-04 13:34:05 +00:00
qaz741wsd856
8e1a5a23b8
Merge pull request #4 from SunsetMkt/main
feat: add glob pattern support for ALLOWED_EMAILS
2025-12-04 20:19:04 +08:00
Copilot
cdcae96d52
Add glob pattern support for ALLOWED_EMAILS (#2)
* Initial plan

* Add glob pattern support for ALLOWED_EMAILS environment variable

Co-authored-by: SunsetMkt <26019675+SunsetMkt@users.noreply.github.com>

---------

Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com>
Co-authored-by: SunsetMkt <26019675+SunsetMkt@users.noreply.github.com>
2025-12-04 12:12:28 +08:00
qaz741wsd856
238573f299 feat: add profile retrieval endpoint and refactor profile creation logic 2025-12-04 03:26:30 +00:00
qaz741wsd856
8b22bf9fc1 fix: update KDF type and iterations during key rotation 2025-12-03 18:22:08 +00:00
qaz741wsd856
2571f9de42 fix: add fields for collections, policies, and sends to SyncResponse structure 2025-12-03 17:27:12 +00:00
qaz741wsd856
d0ee94c103 fix: add KdfIterations field to TokenResponse 2025-12-03 15:44:45 +00:00
qaz741wsd856
bdb318f88b chore: remove pull_request_target trigger from Cloudflare deployment workflow 2025-12-03 13:43:32 +00:00
qaz741wsd856
9ded40c67c chore: update deployment process by integrating frontend into static assets 2025-12-02 13:05:57 +00:00
qaz741wsd856
00a1f0d5a8 chore: update version to 0.2.0 2025-12-02 03:11:09 +00:00
qaz741wsd856
b8a961a936 feat: optimize bulk cipher restoration 2025-12-01 10:30:50 +00:00