browser

mirror of https://github.com/bitwarden/browser synced 2026-02-26 09:33:22 +00:00

Author	SHA1	Message	Date
rr-bw	46046ca1fa	fix(change-password-prompt) [Auth/PM-22356] Scope org invite email to submitted email (#15783 ) Adds a check to make sure that the email on the Org Invite matches the email submitted in the form. If it matches, only then do we apply the org invite to get the MP policies. But if the emails do not match, it means the user attempting to login is no longer the user who originally clicked the emailed org invite link. Therefore, we clear the Org Invite + Deep Link and allow the user to login as normal.	2025-08-07 08:19:35 -07:00
Todd Martin	077e0f89cc	[PM-17751] Store SSO email in state on web client (#13295 ) * Moved saving of SSO email outside of browser/desktop code * Clarified comments. * Tests * Refactored login component services to manage state * Fixed input on login component * Fixed tests * Linting * Moved web setting in state into web override * updated tests * Fixed typing. * Fixed type safety issues. * Added comments and renamed for clarity. * Removed method parameters that weren't used * Added clarifying comments * Added more comments. * Removed test that is not necessary on base * Test cleanup * More comments. * Linting * Fixed test. * Fixed base URL * Fixed typechecking. * Type checking * Moved setting of email state to default service * Added comments. * Consolidated SSO URL formatting * Updated comment * Fixed reference. * Fixed missing parameter. * Initialized service. * Added comments * Added initialization of new service * Made email optional due to CLI. * Fixed comment on handleSsoClick. * Added SSO email persistence to v1 component. --------- Co-authored-by: Bernd Schoolmann <mail@quexten.com>	2025-02-21 17:09:50 -05:00
Jared Snider	ae38e40859	Auth/PM-17693 - Web - Existing users accepting an org invite are required to update password to meet org policy requirements (#13388 ) * PM-17693 - Refactor all post login logic around getting org policies from invite token and restore lost functionality. * PM-17693 - Add TODO	2025-02-19 09:18:56 -05:00
Matt Gibson	9c1e2ebd67	Typescript-strict-plugin (#12235 ) * Use typescript-strict-plugin to iteratively turn on strict * Add strict testing to pipeline Can be executed locally through either `npm run test:types` for full type checking including spec files, or `npx tsc-strict` for only tsconfig.json included files. * turn on strict for scripts directory * Use plugin for all tsconfigs in monorepo vscode is capable of executing tsc with plugins, but uses the most relevant tsconfig to do so. If the plugin is not a part of that config, it is skipped and developers get no feedback of strict compile time issues. These updates remedy that at the cost of slightly more complex removal of the plugin when the time comes. * remove plugin from configs that extend one that already has it * Update workspace settings to honor strict plugin * Apply strict-plugin to native message test runner * Update vscode workspace to use root tsc version * `./node_modules/.bin/update-strict-comments` 🤖 This is a one-time operation. All future files should adhere to strict type checking. * Add fixme to `ts-strict-ignore` comments * `update-strict-comments` 🤖 repeated for new merge files	2024-12-09 20:58:50 +01:00
Todd Martin	0308e6e180	Remove showPasswordless conditionals (#11928 ) Co-authored-by: Matt Bishop <mbishop@bitwarden.com>	2024-11-15 12:34:02 -05:00
rr-bw	df8f234b9e	[PM-8111] Browser Refresh: LoginComponent (#10856 ) * setup new LoginComponent files in libs/auth * update pageTitle * handle loading email settings * setup web-login.service.ts * implement web onInit * fill out webOnInit * refactor getOrgPolicies call * update import * add validateEmail logic * handle registerRoute * add showPasswordless flag * handle captcha * handle startAuthRequestLogin() * add handleMigrateEncryptionKey to default and web service * handle submit routing (web) * fix typo * incorporate loginEmailService changes * minor updates to comments for clarity * create a defaultOnInit() * update defaultOnInit() * handle master password input focus * handle post-login routing on Browser/Desktop * handle browser/desktop syncService * handle browser ngOnInit * handle browser routing and basic browser template * setup desktop router * add template for desktop first UI state: email entry * rename 'response' to 'authResult' * refactor handleMigrateEncryptionKey() * refactor captcha methods and add return types * refactor submit logic * refactor submit logic further to use if statements with returns instead of if...else if...else * remove toast error on invalid form for Browser/Desktop * refactor to handleAuthResult() method * refactor webOnInit * add comment to revisit ngOnInit logic * refactor handlCaptchaRequired() * create a LoginSecondaryContentComponent for AnonLayout use * minor formatting for consistency * add clarifying comment to handleAuthResult() * minor refactor to use destructuring * setup desktopOnInit() * add continue() method * handle desktop ngOnDestroy() * add clarifying comment regarding secondary content * fill out desktop template and submit() * add descriptive comment to top of HTML file * refactor to use a uiState enum for UI states * handle oss-routing swap * handle registerRoute$ in secondary content * web template modifications * change email validation to only run on submit (or when clicking continue button) * add dynamic anon-layout wrapper data * remove static element ref * desktop HTML template updates * remove 'showPassword' property b/c now handled by bitPasswordInputToggle * Extension: setup EmailEntry state UI * Extension: setup MasterPasswordEntry state UI * ensure full sync happens on all clients before navigation * update icon stroke color * change old components to V1 * remove 'V2' from new component * update captcha iframe on all clients * add browser redirect from /home to /login with FF on * add todo comment regarding browser template * add launchSsoBrowser to extension template * move extension launchSsoBrowserWindow() to extension service * cleanup & comments * add launchSsoBrowserWindow() to default service * setup launchSsoBrowserWindow() for Desktop * refactor to use toastService * remove unnecessary service injection * rename LoginService to LoginComponentService to avoid confusion with the LoginStrategyService * add jsdocs to LoginComponentService * rename loginService prop to loginComponentService * Add vault icon to anon layout. * Prevent email address validation on blur. * Fix comment typo. * Prefill email field when "create account" is clicked. * Use factory function to provide LoginEmailService. * Add test for RegisterFormComponent. * Remove back button todo. * Consolidate clearing loginEmailService values and routing * Remove unnecessary navigation. * Fix client navigation after login. * Consolidate login templates. * Break up LoginComponent into client-specific services. * Rename login.component to login-v1.component * Rename login.component to login-v1.component * Revert "Rename login.component to login-v1.component" This reverts commit `9a277d6ca5`. * Revert "Rename login.component to login-v1.component" This reverts commit `588a7af906`. * Rename login.component to login-v1.component except browser. * Comment out debug code. * Remove debug code. * Rename login.component to login-v1.component for browser. * Add login-with-passkey route to desktop. * Set feature flag to false. * Fix linting errors. * Populate email on registration start form. * Implement email population on all clients add add safeProviders. * Remove comment re. passing email to registration. * Add unauthUiRefreshRedirect utility function. * Add transparent border. * Merge main and add satisfies RouteDataProperties * PM-8111 - Extension - AppRoutingModule - Home route now redirects conditionally based on unauthenticated ui refresh feature flag. * PM-8111 - New Login Comp + Login Comp Svc - (1) Refactor naming and returns of getShowPasswordlessFlag to isLoginViaAuthRequestSupported (2) Replace showPasswordless with better composed variable names. * PM-8111 - TODO cleanup * PM-8111 - (1) Cleanup DefaultLoginComponentService (2) Sso Connector now checks client id property instead of reading it from state * PM-8111 - Two TODO cleanups * Remove specific client services. * Add isLoginWithPasskeySupported function to reduce client type checking in template. * Add styles missing from Browser to Create Account link. * Confirmed inline form errors working and removing todo comments. * Convert refactoring todo-rr-bw to standard todos. * Add login component services tests. * Cleanup formatting and remove unused provider. * Add comment to explain call to setLoginEmail. * Rearrange imports to fix lint error. * Adjust styles for password hint link. * Address PR feedback: use strict comparison. * Ensure Login with Passkey button is shown by setting clientType. * Update "continue" button from "submit" to "button" type. * Ensure Passkey login available for web and desktop. * Validate email on enter keypress. * Use click event to trigger goToHint. * Restructure handAuthResult to ensure we redirect to vault. * Add await to saveEmailSettings function. * Directly set clientType in individual login component services. * Get clientType via service. * Add back button. * Remove hardcoded colors from Vault Icon * Removing register component changes. * Removing register component changes. * Ensure isLoginWithPasskeySupported is only returns true for web client. * Remove Web/Desktop comment from html template * Update Storybook with initialLoginEmail * Fix translation error * Add test for unauthUiRefreshRedirect. * Rename goAfterLogIn to evaluatePassword and borrow logic from lock component. * Add DefaultLoginComponent tests. * Integrate changes to translations. * Simplify ngOnInit: remove webOnInit and move getLoginWithDevice to defaultOnInit I couldn't find any usages of qParams.org or qParams.sponsorshipToken on QA (signing up for family membership, creating organization, manually modifying query params), so I think these are safe to remove. * Fix translations. * Clean up and flush out register form tests. * Update variable name. * Remove unused enforcedPasswordPolicyOptions property. * Run prettier. * Add back safeProviders for LoginEmailService * Remove duplicate import. * Update v1 web login title. * Adjust overlay position of EnvironmentSelectorComponent for new layout. Since the switcher is located at the bottom of the screen we need to position it up above the trigger button so that it is not cut off. * Add new wave icon * Only send email in query parameters if set. * Remove test/debug code. * Replace loggedEmail with this.emailFormControl.value. * Move getLoginWithDevice call to loadEmailSettings. * Replace loggedEmail with this.emailFormControl.value. * Add todo comment re. inline errors. * Remove unused setPreviousUrl function. * Remove height / width from vault icon svg. * Use continue method unanimously * WIP remove validated email& display extension back button * Simplify getting query params * Rework ExtensionAnonLayoutWrapperDataService to use BehaviorSubject * Simplify validateEmail method * Hide back button on init * Revert "Hide back button on init" This reverts commit `e8de5e2bfc`. * Revert "Simplify validateEmail method" This reverts commit `c9141a1cb5`. * Revert "Rework ExtensionAnonLayoutWrapperDataService to use BehaviorSubject" This reverts commit `8889ed3d3c`. * simplify validateEmail method * Add primary / accent colors to wave icon * Remove debug code * PM-8111 - Tweak ShowBackButton to work * PM-8111 - LoginCompService - finish removal of setPreviousUrl from implementations. * PM-8111 - (1) Remove overriden default logo in anon layout (2) Update routing modules to have proper default login logo (3) LoginComp - update toggleLoginUiState to include logic to swap the icon back and forth as user navigates. * PM-8111 - LoginComp - on UI state change from MP entry to email entry, remove subtitle (this isn't supported yet, but it will be) * PM-8111 - LoginComp - Simplify toggleLoginUiState * PM-8111 - LoginComponent - Add known device logic into UI state change handler * PM-8111 - LoginComp - (1) Refactor name of getLoginWithDevice to be more accurate as getKnownDevice (2) Refactor calls to getKnownDevice to only occur if loginViaAuthRequestSupported * PM-8111 - LoginComp - add getKnownDevice docs * PM-8111 - LoginComponent - tweak docs * PM-8111 - LoginComp - Continue() - remove toast as the validation on submit logic currently shows validation errors - toast is extra and not needed. * Add isLoginViaAuthRequestSupported for DesktopLoginComponentService * Remove validating email on init * PM-8111 - ExtensionLoginComponentService - add tests for showBackButton * PM-8111 - style tweaks * PM-8111 - Extension - Refactor Overlay position to include extension default const to avoid repetition. * PM-8111 - Desktop AppRouting Module - remove login with passkey route as it isn't supported on desktop. * PM-8111 - Desktop - add default overlay position const * PM-8111 - DesktopLoginCompSvc - tests were not actually testing super method calls + finish testing launchSsoBrowserWindow * PM-8111 - Desktop Main.ts - remove dev test code * PM-8111 - WebLoginCompSvcTests - add success test cases for getOrgPolicies * PM-8111 - Remove duplicate translation keys * PM-8111 - DefaultLoginComponentSvcTests - add missing test * PM-8111 - DefaultLoginComponentServiceTests - add describes * PM-8111 - LoginSecondaryContentComponent - Add missing bitLink * Update to test both browser and desktop * Remove registration form test * Remove aliasing CryptoFunctionService and PlatformUtilsService as abstractions * Remove aliasing PlatformUtilsService and CryptoFunctionService as abstractions --------- Co-authored-by: Alec Rippberger <alec@livefront.com> Co-authored-by: Jared Snider <jsnider@bitwarden.com> Co-authored-by: Alec Rippberger <127791530+alec-livefront@users.noreply.github.com> Co-authored-by: Jared Snider <116684653+JaredSnider-Bitwarden@users.noreply.github.com>	2024-10-24 15:53:34 -04:00

6 Commits