browser

mirror of https://github.com/bitwarden/browser synced 2025-12-15 15:53:27 +00:00

Author	SHA1	Message	Date
Thomas Avery	cfe2458935	[PM-24107] Migrate KM's usage of getUserKey from the key service (#17117 ) * Remove internal use of getUserKey in the key service * Move ownership of RotateableKeySet and remove usage of getUserKey * Add input validation to createKeySet	2025-11-13 10:07:13 -06:00
Maciej Zieniuk	ff12e672e6	[PM-23614] Remove activeUserOrgKeys$ from the key service (#17045 ) * Remove activeUserOrgKeys$ from the key service * test leftover * test leftover	2025-11-06 19:27:13 +01:00
Thomas Avery	bd89c0ce6d	[PM-23628] Require userId for fetching provider keys (#16993 ) * remove getProviderKey and expose providerKeys$ * update consumers	2025-10-27 11:04:17 -05:00
Bernd Schoolmann	a860f218bd	[PM-24128] New Pin service, using PasswordProtectedKeyEnvelope (#15863 ) * fix: broken SDK interface * Fix all compile errors related to uuids * Update usages of sdk to type-safe SDK type * Update sdk version * Update to "toSdk" * Move pin service to km ownership * Run format * Eslint * Fix tsconfig * Fix imports and test * Clean up imports * Pin tmp * Initial version of updated pin service * Add tests * Rename function * Clean up logging * Fix imports * Fix cli build * Fix browser desktop * Fix tests * Attempt to fix * Fix build * Fix tests * Fix browser build * Add missing empty line * Fix linting * Remove non-required change * Missing newline * Re-add comment * Undo change to file * Fix missing empty line * Cleanup * Cleanup * Cleanup * Cleanup * Switch to replaysubject * Add comments * Fix tests * Run prettier * Undo change * Fix browser * Fix circular dependency on browser * Add missing clear ephemeral pin * Address feedback * Update docs * Simplify sdk usage in pin service * Replace with mock sdk * Update sdk * Initialize pin service via unlock instead of listening to keyservice * Cleanup * Fix test * Prevent race condition with userkey not being set * Filter null userkeys * [PM-24124] Pin State Service (#16641) * add pin-state.service * add remaining tests * improve description for clearEphemeralPinState * rename getUserKeyWrappedPin$ to userKeyWrappedPin$ * drop temp variable in setPinState * add new test and remove copied one * Fix dep cycle * Fix tests and remaining build issues * Fix cli build * Add comments about functions not being public API --------- Co-authored-by: Andreas Coroiu <andreas.coroiu@gmail.com> Co-authored-by: Hinton <hinton@users.noreply.github.com> Co-authored-by: Jake Fink <jfink@bitwarden.com>	2025-10-17 16:30:29 +02:00
Bernd Schoolmann	cc8bd71775	[PM-21033/PM-22863] User Encryption v2 (#14942 ) * Add new encrypt service functions * Undo changes * Cleanup * Fix build * Fix comments * Switch encrypt service to use SDK functions * Move remaining functions to PureCrypto * Tests * Increase test coverage * Split up userkey rotation v2 and add tests * Fix eslint * Fix type errors * Fix tests * Implement signing keys * Fix sdk init * Remove key rotation v2 flag * Fix parsing when user does not have signing keys * Clear up trusted key naming * Split up getNewAccountKeys * Add trim and lowercase * Replace user.email with masterKeySalt * Add wasTrustDenied to verifyTrust in key rotation service * Move testable userkey rotation service code to testable class * Fix build * Add comments * Undo changes * Fix incorrect behavior on aborting key rotation and fix import * Fix tests * Make members of userkey rotation service protected * Fix type error * Cleanup and add injectable annotation * Fix tests * Update apps/web/src/app/key-management/key-rotation/user-key-rotation.service.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> * Remove v1 rotation request * Add upgrade to user encryption v2 * Fix types * Update sdk method calls * Update request models for new server api for rotation * Fix build * Update userkey rotation for new server API * Update crypto client call for new sdk changes * Fix rotation with signing keys * Cargo lock * Fix userkey rotation service * Fix types * Undo changes to feature flag service * Fix linting * [PM-22863] Account security state (#15309) * Add account security state * Update key rotation * Rename * Fix build * Cleanup * Further cleanup * Tests * Increase test coverage * Add test * Increase test coverage * Fix builds and update sdk * Fix build * Fix tests * Reset changes to encrypt service * Cleanup * Add comment * Cleanup * Cleanup * Rename model * Cleanup * Fix build * Clean up * Fix types * Cleanup * Cleanup * Cleanup * Add test * Simplify request model * Rename and add comments * Fix tests * Update responses to use less strict typing * Fix response parsing for v1 users * Update libs/common/src/key-management/keys/response/private-keys.response.ts Co-authored-by: Maciej Zieniuk <167752252+mzieniukbw@users.noreply.github.com> * Update libs/common/src/key-management/keys/response/private-keys.response.ts Co-authored-by: Maciej Zieniuk <167752252+mzieniukbw@users.noreply.github.com> * Fix build * Fix build * Fix build * Undo change * Fix attachments not encrypting for v2 users --------- Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> Co-authored-by: Maciej Zieniuk <167752252+mzieniukbw@users.noreply.github.com>	2025-10-10 23:04:47 +02:00
Bernd Schoolmann	7985487d5b	[PM-25458] Add error handling stubs & logging for critical decrypt paths (#16284 ) * Add error handling stubs for critical decrypt paths * Fix collection name decrypt * Update docs * address feedback --------- Co-authored-by: Jake Fink <jfink@bitwarden.com>	2025-09-09 10:19:00 -04:00
Thomas Avery	a6b7c7f75c	[PM-23626] Require userId for makeOrgKey on the key service (#15864 ) * Update key service * Update consumers * Add unit test coverage for consumer services * Add unit test coverage for organization-billing service	2025-09-05 09:51:01 -05:00
Daniel García	bff18a8cd2	[PM-25131] Initialize provider keys on the SDK (#16183 ) * [PM-25131] Initialize provider keys on the SDK * Remove null default * Typechecking	2025-09-04 19:37:40 +02:00
Thomas Avery	a6e7efddeb	[PM-23627] Require publicKey for keyService getFingerprint (#15933 ) * require public key on keyService getFingerprint * Update consumers and add error handling & logging	2025-08-21 15:49:19 -05:00
Justin Baur	939fd402c3	[PM-24677] Slim StateService down so it can be moved to state lib (#16021 ) * Slim StateService down so it can be moved to state lib * Fix accidental import changes * Add `switchAccount` assertion * Needs to use mock	2025-08-18 12:37:25 -04:00
Bernd Schoolmann	a60b7fed9a	[PM-17667] Move key-generation service to KM ownership (#16015 ) * Move key-generation service * Update comment * Add deprecation comments * Fix firefox build * Update comment * Update DI import * Update module imports	2025-08-15 23:49:49 +02:00
Bernd Schoolmann	a9b934a7ac	Remove legacy encryption support in key service (#15898 )	2025-08-11 16:38:50 +02:00
Thomas Avery	2a3e1ae1f5	[PM-23619] Remove getPrivateKey from the key service and update consumers (#15784 ) * remove getPrivateKey from keyService * Update consumer code * Increase unit test coverage	2025-08-05 09:25:50 -05:00
Bernd Schoolmann	6bd8638ad8	[PM-24126] Move pin service to km ownership (#15821 ) * Move pin service to km ownership * Run format * Eslint * Fix tsconfig * Fix imports and test * Clean up imports * Remove unused dependency on PinService * Fix comments --------- Co-authored-by: Daniel James Smith <djsmith85@users.noreply.github.com>	2025-08-04 17:01:39 +02:00
Bernd Schoolmann	a7d3c0f5c2	[PM-23809] Add simplified interface to MP service (#15631 ) * Add new mp service api * Fix tests * Add test coverage * Add newline * Fix type * Rename to "unwrapUserKeyFromMasterPasswordUnlockData" * Fix build * Fix build on cli * Fix linting * Re-sort spec * Add tests * Fix test and build issues * Fix build * Clean up * Remove introduced function * Clean up comments * Fix abstract class types * Fix comments * Cleanup * Cleanup * Update libs/common/src/key-management/master-password/types/master-password.types.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> * Update libs/common/src/key-management/master-password/services/master-password.service.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> * Update libs/common/src/key-management/master-password/abstractions/master-password.service.abstraction.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> * Update libs/common/src/key-management/master-password/types/master-password.types.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> * Update libs/common/src/key-management/master-password/abstractions/master-password.service.abstraction.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> * Add comments * Fix build * Add arg null check * Cleanup * Fix build * Fix build on browser * Update libs/common/src/key-management/master-password/abstractions/master-password.service.abstraction.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> * Update libs/common/src/key-management/master-password/abstractions/master-password.service.abstraction.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> * Update libs/common/src/key-management/master-password/abstractions/master-password.service.abstraction.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> * Add tests for null params * Cleanup and deprecate more functions * Fix formatting * Prettier * Clean up * Update libs/key-management/src/abstractions/key.service.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> * Make emailToSalt private and expose abstract saltForUser * Add tests * Add docs * Update libs/common/src/key-management/master-password/abstractions/master-password.service.abstraction.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> * Update libs/common/src/key-management/master-password/abstractions/master-password.service.abstraction.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> --------- Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>	2025-07-29 18:53:17 +02:00
Thomas Avery	2db31d1228	[PM-22611] Require userid for masterKey methods on the key service (#15663 ) * Require userId on targeted methods. * update method consumers * unit tests	2025-07-25 09:37:04 -05:00
Thomas Avery	e99abb49ec	[PM-23621] Require userId for initAccount on the key-service (#15684 ) * require userID for initAccount on key service * add unit test coverage * update consumer	2025-07-22 10:30:50 -05:00
Bernd Schoolmann	8b5e6adc37	[PM-21378] Switch encrypt service to use SDK functions (#14538 ) * Add new encrypt service functions * Undo changes * Cleanup * Fix build * Fix comments * Switch encrypt service to use SDK functions * Move remaining functions to PureCrypto * Tests * Increase test coverage * Enforce sdk.ready and drop unused codepaths * Delete unused code * Add forgotten sdk init logic * Fix build error * Fix browser extension failing to unlock after process reload due to outdated usage of decryptString * Fix send encryption * Fix client key half decryption being stuck * Attempt to fix sharereplay * Fix build * Fix type / add filter / add distinctuntilchange * Fix capitalization	2025-07-21 15:52:38 +02:00
Bernd Schoolmann	60855c734f	[PM-17666] Move Encstring to KM ownership (#15457 ) * Move Encstring to KM ownership * Fix wrong import * Fix build * Fix remaining imports * Fix tests	2025-07-16 11:15:24 -04:00
Thomas Avery	09fb74679d	[PM-21912] Require userID for KeyService's hasUserKey (#14890 ) * Update keyService hasUserKey to require userId and remove unused/duplicate methods * Update lock component consumer * Update send commands to pass in userId * update SSO login to pass in userID * Update bw serve to pass in userID * remove unneeded method from electron-key.service	2025-07-09 11:53:16 -05:00
Thomas Avery	c52e6a3f2c	[PM-22408] Remove setMasterKeyEncryptedUserKey from KeyService (#15087 ) * Swap consumers to masterPasswordService.setMasterKeyEncryptedUserKey * Remove setMasterKeyEncryptedUserKey from keyService * unit tests	2025-06-11 15:48:18 -05:00
Thomas Avery	90b07728d7	[PM-22133] Require userID for clearStoredUserKey (#14973 )	2025-06-10 17:28:50 -05:00
Thomas Avery	9d743a7ee0	[PM-21705] Require userID for refreshAdditionalKeys() on key-service (#14810 ) * Require userID for refreshAdditionalKeys() * Add error handling to desktop Unlock settings * Add more unit test coverage	2025-06-06 13:38:25 -05:00
Addison Beck	299976e55a	fix(eslint): extend tsconfig.base in tsconfig.eslint (#15082 ) * fix(eslint): extend tsconfig.base in tsconfig.eslint * fix(eslint): clean up new lint errors	2025-06-05 11:08:03 -04:00
Thomas Avery	eba22cf5f8	[PM-21797] Require userID for keyService's getUserKeyFromStorage (#14855 ) * require userID for keyService's getUserKeyFromStorage	2025-05-30 13:45:31 -05:00
Thomas Avery	895d54fd5e	[PM-21443] Require userId for KeyService's everHadUserKey$ (#14712 ) * Require userId for KeyService's everHadUserKey$ * handle null active user in tdeDecryptionRequiredGuard	2025-05-30 11:40:55 -05:00
Addison Beck	56a3b14583	Introduce eslint errors for risky/circular imports (#14804 ) * first draft at an idea dependency graph * ignore existing errors * remove conflicting rule regarding internal platform logic in libs * review: allow components to import from platform	2025-05-23 08:01:25 -04:00
Thomas Avery	bd29397fd8	[PM-21611] Require userId on KeyService clear methods (#14788 )	2025-05-22 13:55:26 -05:00
Bernd Schoolmann	5408a62b7d	[PM-21001] Move KM usage of encrypt service (#14541 ) * Add new encrypt service functions * Undo changes * Cleanup * Fix build * Fix comments * Move KM usage of encrypt service * Fix build	2025-05-12 11:41:45 +02:00
Bernd Schoolmann	855dad7fcc	Do not throw on missing provider keys (#14430 )	2025-05-06 12:29:52 +02:00
Bernd Schoolmann	fd0db40f79	[PM-20492] Refactor symmetric keys - remove key buffer representation, migrate consumers to .toEncoded() (#14371 ) * Refactor encrypt service to expose key wrapping * Fix build * Undo ts strict removal * Fix wrong method being used to encrypt key material * Rename parameters and remove todo * Add summary to encrypt * Update libs/common/src/key-management/crypto/services/encrypt.service.implementation.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> * Update libs/common/src/key-management/crypto/services/encrypt.service.implementation.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> * Update libs/common/src/key-management/crypto/services/encrypt.service.implementation.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> * Update libs/common/src/key-management/crypto/services/encrypt.service.implementation.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> * Update libs/common/src/key-management/crypto/abstractions/encrypt.service.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> * Update libs/common/src/key-management/crypto/services/encrypt.service.implementation.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> * Add tests for unhappy paths * Add test coverage * Add links * Remove direct buffer access * Fix build on cli --------- Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>	2025-04-25 19:26:39 +02:00
Bernd Schoolmann	e231286f37	[PM-19731] Refactor encrypt service to expose key wrapping (#14080 ) * Refactor encrypt service to expose key wrapping * Fix build * Undo ts strict removal * Fix wrong method being used to encrypt key material * Rename parameters and remove todo * Add summary to encrypt * Update libs/common/src/key-management/crypto/services/encrypt.service.implementation.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> * Update libs/common/src/key-management/crypto/services/encrypt.service.implementation.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> * Update libs/common/src/key-management/crypto/services/encrypt.service.implementation.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> * Update libs/common/src/key-management/crypto/services/encrypt.service.implementation.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> * Update libs/common/src/key-management/crypto/abstractions/encrypt.service.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> * Update libs/common/src/key-management/crypto/services/encrypt.service.implementation.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> * Add tests for unhappy paths * Add test coverage * Add links --------- Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>	2025-04-22 13:56:39 +00:00
Bernd Schoolmann	b09305577f	[PM-19603] Change asymmetric interface to only allow key encapsulation (#14046 ) * Change asymmetric interface to only allow key encapsulation * Fix naming * Clean up naming * Update libs/common/src/key-management/crypto/abstractions/encrypt.service.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> * Update libs/common/src/key-management/crypto/services/encrypt.service.implementation.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> * Update libs/common/src/key-management/crypto/abstractions/encrypt.service.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> * Fix test --------- Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>	2025-04-15 16:39:02 +02:00
Bernd Schoolmann	5a1b0744f0	[PM-17665] Move cryptofunction service to km (#13285 ) * Move cryptofunction service to km * Fix formatting * Fix import * Fix build on desktop * Fix build on browser and tests	2025-04-10 11:09:35 +02:00
Bernd Schoolmann	1450a033b3	[PM-19469] Add logs for unlock time (#13972 ) * Add logs for unlock time * Undo local flag override * Update message * Update messages * Fix build on chrome	2025-04-02 23:19:53 +02:00
Jake Fink	a3c9a42d13	[PM-19172] Passes UserId through change email component and adds tests (#13686 ) * add tests and pass userid * add tests for getOrDeriveMasterKey * remove extra coalesce for token	2025-04-01 11:54:13 -04:00
Bernd Schoolmann	22039d038d	[PM-3475] Remove deprecated keys (#13266 ) * Remove deprecated keys * Fix cli build * Fix build	2025-03-31 16:58:02 +02:00
Bernd Schoolmann	8c6a33d7b8	[PM-16603] Implement userkey rotation v2 (#12646 ) * Implement key rotation v2 * Pass through masterpassword hint * Properly split old and new code * Mark legacy rotation as deprecated * Throw when data is null * Cleanup * Add tests * Fix build * Update libs/key-management/src/key.service.spec.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> * Update apps/web/src/app/auth/settings/change-password.component.ts Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com> * Add documentation * Centralize loading logic * Fix build * Remove sharedlib from legacymigration component --------- Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>	2025-03-24 20:41:21 +01:00
Thomas Avery	81335978d8	[PM-17669] Move MasterPasswordService to KM (#13148 ) * Move MasterPasswordService to KM	2025-03-13 13:29:27 -05:00
Thomas Rittson	ef72f513b1	eslint: report unused disable directives (#13463 ) Remove any unused disable directives and FIXMEs in our code	2025-03-10 09:33:08 -04:00
Jake Fink	43f5423e78	[PM-12606] Move Vault Timeout and Vault Timeout Settings to KM (#13405 ) * move vault timeout and vault timeout settings to km * move browser vault timeout service to km * fix cli import * fix imports * fix some relative imports * use relative imports within common * fix imports * fix new imports * Fix new imports * fix spec imports	2025-02-28 09:55:03 -05:00
Maciej Zieniuk	3924bc9c84	[PM-14445] TS strict for Key Management, Keys and Lock component (#13121 ) * PM-14445: TS strict for Key Management Biometrics * formatting * callbacks not null expectations * state nullability expectations updates * unit tests fix * secure channel naming, explicit null check on messageId * KM-14445: TS strict for Key Management, Keys and Lock component * conflicts resolution, new strict check failures * null simplifications * migrate legacy encryption when no active user throw error instead of hiding it * throw instead of return	2025-02-20 18:45:37 +01:00
Bernd Schoolmann	7a7be6088a	[PM-16984] Improve decryption code clarity (#12681 ) * Improve decrypt failure logging * Rename decryptcontext to decrypttrace * Improve docs	2025-02-18 16:59:53 +01:00
Thomas Avery	2b5c7861e2	[PM-16926] Fix KM bad imports (#12807 )	2025-02-10 11:50:56 -06:00
Bernd Schoolmann	2f8a7a95bd	[PM-15994] Move encrypt service to km ownership (#13220 ) * Move encrypt service to km ownership * Update imports for encrypt service abstraction and move bulk encrypt service abstraction * Fix imports * Fix further imports * Fix imports * Fix worker import	2025-02-05 17:39:11 +01:00
renovate[bot]	62e879940c	[deps] SM: Update typescript-eslint monorepo to v8 (major) (#10601 ) * [deps] SM: Update typescript-eslint monorepo to v8 --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Hinton <hinton@users.noreply.github.com> Co-authored-by: Daniel James Smith <djsmith85@users.noreply.github.com>	2025-01-14 11:23:59 -05:00
Oscar Hinton	db84ccf935	[PM-16838] Forbid imports containing /src/ (#12744 ) Forbids bad imports containing /src/.	2025-01-10 10:37:34 -05:00
Bernd Schoolmann	8cabb36c99	[PM-16699] Add decrypt trace for decrypt failures (#12749 ) * Improve decrypt failure logging * Rename decryptcontext to decrypttrace * Improve docs * Revert changes to decrypt logic * Revert keyservice decryption logic change * Undo one more change to decrypt logic	2025-01-09 20:23:55 +01:00
Matt Gibson	9c1e2ebd67	Typescript-strict-plugin (#12235 ) * Use typescript-strict-plugin to iteratively turn on strict * Add strict testing to pipeline Can be executed locally through either `npm run test:types` for full type checking including spec files, or `npx tsc-strict` for only tsconfig.json included files. * turn on strict for scripts directory * Use plugin for all tsconfigs in monorepo vscode is capable of executing tsc with plugins, but uses the most relevant tsconfig to do so. If the plugin is not a part of that config, it is skipped and developers get no feedback of strict compile time issues. These updates remedy that at the cost of slightly more complex removal of the plugin when the time comes. * remove plugin from configs that extend one that already has it * Update workspace settings to honor strict plugin * Apply strict-plugin to native message test runner * Update vscode workspace to use root tsc version * `./node_modules/.bin/update-strict-comments` 🤖 This is a one-time operation. All future files should adhere to strict type checking. * Add fixme to `ts-strict-ignore` comments * `update-strict-comments` 🤖 repeated for new merge files	2024-12-09 20:58:50 +01:00
Bernd Schoolmann	38c4eeb27d	[PM-14542] Move kdf to km ownership (#11877 ) * Move kdf to km ownership * Fix duplicate import * Remove whitespace * Fix double imports * Fix desktop build * Fix test error * Fix imports * Move ownership of kdftype to km * Fix imports --------- Co-authored-by: Matt Bishop <mbishop@bitwarden.com>	2024-11-21 13:45:28 +01:00

1 2

52 Commits