Commit graph

83 commits

Author SHA1 Message Date
qaz741wsd856
fcbfb928f7 chore: format code 2025-12-29 10:19:39 +00:00
qaz741wsd856
f179e4a015 feat: implement equivalent domains functionality
- Added support for equivalent domains in user settings, allowing users to define custom domain groups and exclude specific global groups.
- Introduced new migration script to add necessary database columns and a table for global equivalent domains.
- Created a Python script to generate seed SQL for global domains, which can be executed to populate the database.
- Updated API endpoints to handle equivalent domains, including retrieval and persistence of user-defined settings.
- Refactored existing settings handler to remove stubs and implement full functionality for managing equivalent domains.
2025-12-29 09:11:39 +00:00
qaz741wsd856
dfa82a0918 feat: add meta and settings endpoints for improved API functionality
- Introduced new meta endpoints: `/api/alive`, `/api/now`, `/api/version`, and `/api/hibp/breach` for health checks and versioning.
- Added settings endpoints: `/api/settings/domains` for retrieving and managing equivalent domains, with stub implementations for future persistence.
- Updated router to include new handlers and ensure proper routing for the added endpoints.
2025-12-28 18:35:19 +00:00
qaz741wsd856
5694d87a45 fix: add stub endpoints for device login auth requests 2025-12-28 18:15:33 +00:00
qaz741wsd856
26f9da5218 feat: align with vaultwarden 1.35.0
**Synced Vaultwarden Changes**:
- `061d320c` - Add new accountKeys and masterPasswordUnlock fields
- `5c91058b` - Add UserDecryptionOptions on /sync too
- `57bdab15` - add empty /api/tasks endpoint
- `0ab7784b` - Update web-vault to v2025.12.0
2025-12-28 16:50:51 +00:00
qaz741wsd856
bba7bbc8a2 fix: offload missed cpu heavy endpoints to do 2025-12-27 19:53:37 +00:00
qaz741wsd856
eaa2f3b652 chore: remove HEAVY_DO_ENABLED environment variable 2025-12-27 05:19:03 +00:00
qaz741wsd856
034e6284a2 refactor: move attachment upload and download logic to a separate js. 2025-12-27 04:49:05 +00:00
qaz741wsd856
58847e9788 fix: add support for updating attachment keys and filenames during key rotation 2025-12-27 03:22:56 +00:00
qaz741wsd856
84067f41f0 refactor: offload cpu heavy endpoint to durable object and enhance password hashing with per-user iterations 2025-12-26 15:22:50 +00:00
qaz741wsd856
50f5a60f1b chore: fix some warnings 2025-12-11 04:32:18 +00:00
qaz741wsd856
023b010504 feat: implement pending attachments feature in upload handling 2025-12-11 03:22:10 +00:00
qaz741wsd856
5e04837b5d feat: add folder management routes and update API version 2025-12-10 18:08:15 +00:00
qaz741wsd856
89137fb150 refactor: streamline cipher and sync handlers to utilize raw JSON responses from sqlite json query 2025-12-10 12:34:12 +00:00
qaz741wsd856
96749af57f refactor: optimize sync and list operation by join 2025-12-10 09:55:53 +00:00
qaz741wsd856
ae423c1a53 feat: add error mapping for D1 JSON parsing and update cipher move logic to handle JSON directly 2025-12-09 17:28:36 +00:00
qaz741wsd856
b1ea9183bc refactor: directly pass json body to d1 api in attachment handling to avoid parsing 2025-12-09 16:18:13 +00:00
qaz741wsd856
eb6a1d8a63 refactor: optimize bulk delete and restore operations for ciphers 2025-12-09 14:48:33 +00:00
qaz741wsd856
d72ef417b7 chore: format code 2025-12-09 05:35:21 +00:00
qaz741wsd856
eee4cc90ef chore: remove unnecessary attachement urls 2025-12-09 03:38:29 +00:00
qaz741wsd856
a9ed226313 fix: actually fix timestamp format entry.js 2025-12-08 18:31:37 +00:00
qaz741wsd856
28673648e7 fix: update timestamp format in touch_cipher_updated_at function 2025-12-08 17:55:05 +00:00
qaz741wsd856
61a3539e23 feat: add zero-copy streaming for attachment downloads using js wapper 2025-12-08 13:29:55 +00:00
qaz741wsd856
8902444561 feat: implement zero-copy streaming for attachment uploads
- Added a new entry point in JavaScript to handle zero-copy streaming uploads to R2.
- Updated the Rust backend to support the new upload route with JWT validation.
- Enhanced the API to generate full URLs for the new azure-upload endpoint.
- Introduced new dependencies: `futures-util` and `wasm-streams` for improved async handling.
2025-12-08 11:11:27 +00:00
qaz741wsd856
4f61077ca9 fix: add R2 cleanup to every delete route 2025-12-07 16:24:48 +00:00
qaz741wsd856
d6ef6113fd fix: add cipher details to attachment delete response 2025-12-07 15:46:52 +00:00
qaz741wsd856
2591e2e46f chroe: remove unused code and suppress warnings 2025-12-07 15:43:02 +00:00
qaz741wsd856
4930e747ed fix: generate full url for attachment download 2025-12-07 14:50:44 +00:00
qaz741wsd856
28c791337a feat: extend the request body size limit and directly forward r2 to response body 2025-12-07 14:13:22 +00:00
qaz741wsd856
73223bfa94 feat: add file attachment support for ciphers
- Implemented functionality to create, upload, download, and delete attachments associated with ciphers.
- Introduced a new `attachments` module and updated the database schema to include an `attachments` table.
- Enhanced the API routes to handle attachment operations, including legacy support.
- Updated the README and configuration files to reflect the new attachment feature and its usage.
2025-12-07 11:13:06 +00:00
qaz741wsd856
38b978ca6e chore: format code 2025-12-06 17:52:31 +00:00
qaz741wsd856
3ba2f09ea3 feat: add validation for key rotation metadata 2025-12-06 15:51:42 +00:00
qaz741wsd856
84e35ec032 feat: support for changing user name and avatar color 2025-12-06 15:42:52 +00:00
qaz741wsd856
3408ccb555 feat: implement two-factor authentication (2FA) support with TOTP and recovery codes 2025-12-06 15:01:14 +00:00
qaz741wsd856
51676af4a1 feat: enhance cipher update process with folder ownership validation and client data freshness checks 2025-12-05 12:18:25 +00:00
qaz741wsd856
90b6058fb6 feat: enhance cipher management with legacy API routes and partial updates 2025-12-05 08:58:26 +00:00
qaz741wsd856
6d2fb7aa3e feat: support for moving selected ciphers to a folder 2025-12-05 08:21:54 +00:00
qaz741wsd856
40f07dcd58 feat: add purge vault endpoint for deleting all ciphers and folders 2025-12-05 03:38:44 +00:00
qaz741wsd856
a724719f4b refactor: replace js wrapper with rust binding 2025-12-04 17:54:16 +00:00
qaz741wsd856
8772cd4868 feat: apply worker built-in rate limiting for sensitive endpoints
- Added a rate limiting wrapper to intercept requests and apply limits to login, registration, and prelogin endpoints.
- Configured rate limits in `wrangler.toml` for both production and development environments.
- Updated README to document the rate limiting feature, including how it works and customization options.
2025-12-04 17:21:15 +00:00
qaz741wsd856
eef8ab5acc fix: clear unexpected KDF parameters in registration and key rotation 2025-12-04 17:18:53 +00:00
qaz741wsd856
a1fd81c1a9 feat: implement backward compatibility for KDF settings in accounts handler
- Added support for both simple and complex KDF request formats in the post_kdf handler.
- Enhanced KDF validation to ensure compatibility with legacy formats.
- Updated data structures to reflect changes in KDF parameters and request handling.
- Introduced methods to extract KDF parameters and new password hash from either format.
2025-12-04 15:32:47 +00:00
qaz741wsd856
b519226cd6 feat: implement Argon2 KDF support in user authentication and registration
- Added new fields for Argon2 parameters (kdf_memory, kdf_parallelism) in the users table and related SQL migration.
- Updated API routes and handlers to support changing KDF settings.
- Enhanced KDF validation logic to accommodate both PBKDF2 and Argon2.
- Modified user registration and prelogin responses to include Argon2 parameters.
- Updated relevant data structures to reflect new KDF settings.
2025-12-04 14:44:40 +00:00
Copilot
cdcae96d52
Add glob pattern support for ALLOWED_EMAILS (#2)
* Initial plan

* Add glob pattern support for ALLOWED_EMAILS environment variable

Co-authored-by: SunsetMkt <26019675+SunsetMkt@users.noreply.github.com>

---------

Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com>
Co-authored-by: SunsetMkt <26019675+SunsetMkt@users.noreply.github.com>
2025-12-04 12:12:28 +08:00
qaz741wsd856
238573f299 feat: add profile retrieval endpoint and refactor profile creation logic 2025-12-04 03:26:30 +00:00
qaz741wsd856
8b22bf9fc1 fix: update KDF type and iterations during key rotation 2025-12-03 18:22:08 +00:00
qaz741wsd856
2571f9de42 fix: add fields for collections, policies, and sends to SyncResponse structure 2025-12-03 17:27:12 +00:00
qaz741wsd856
d0ee94c103 fix: add KdfIterations field to TokenResponse 2025-12-03 15:44:45 +00:00
qaz741wsd856
b8a961a936 feat: optimize bulk cipher restoration 2025-12-01 10:30:50 +00:00
qaz741wsd856
baad9d46cc feat: expand device API with stub implementation 2025-12-01 05:20:35 +00:00