bitwarden/server
1
0
Fork 0
mirror of https://github.com/bitwarden/server synced 2025-12-26 13:13:24 +00:00
Code Issues Releases Wiki Activity
3,969 Commits 479 Branches 222 Tags
4f87e4e1a47ab2c60d7532b39e25c097b2f5a29f
Commit Graph

19 Commits

Author SHA1 Message Date
Daniel García
4f87e4e1a4 [PM-2196] Improvements to the Swagger generator (#2914) 
* Swagger fixes

Co-Authored-By: Oscar Hinton <Hinton@users.noreply.github.com>

* Make Response Models return Guids instead of strings

* Change strings into guids in ScimApplicationFactory

---------

Co-authored-by: Oscar Hinton <Hinton@users.noreply.github.com>
 2023-07-14 17:18:26 +02:00
Thomas Avery
1d9aeb37aa [SM-707] Refactor authorization for Access Policy Commands (#2905) 
* Extract authorization from access policy commands

* Use auto mapper to ignore unwanted properties

---------
 2023-07-13 11:46:01 -05:00
Thomas Avery
bb3a9daf98 [SM-678] ClientSecret migration (#2943) 
* Init ClientSecret migration

* Fix unit tests

* Move to src/Sql/dbo_future

* Formatting changes

* Update migration date for next release

* Swap to just executing sp_refreshview

* Fix formatting

* Add EF Migrations

* Rename to ClientSecretHash

* Fix unit test

* EF column rename

* Batch the migration

* Fix formatting

* Add deprecation notice to property

* Move data migration

* Swap to CREATE OR ALTER
 2023-06-21 13:16:06 -05:00
Matt Bishop
53327b1993 [PM-2633] Warnings cleanup (#3010) 
* Warnings cleanup

* One-line response with null

Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>

* Remove condition

* Fix lint from suggestion

---------

Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>
 2023-06-16 10:02:05 -04:00
Thomas Avery
05f11a8ee1 [SM-706] Extract Authorization From Create/Update Secret Commands (#2896) 
* Extract authorization from commands

* Swap to request model validation.

* Swap to pattern detection
 2023-06-08 16:40:35 -05:00
Thomas Avery
5474d3da18 [SM-702] Extract access policy checks from create/update project commands (#2842) 
* Move to access query for project commands

* Swap to hasAccess method per action

* Swap to authorization handler pattern

* Move ProjectOperationRequirement to Core

* Add default throw + tests

* Swap to reflection for testing switch
 2023-05-03 09:40:24 -05:00
Thomas Avery
20d3b4b4e8 [SM-670] Add permission context to project lists. (#2822) 
* Attach permission context to project lists.

* restrict service-account actions

* Fix project permission details

* Add getters and setters

* dotnet format

* Fix admin create unassigned secret (#2872)
 2023-04-26 13:09:25 -05:00
Oscar Hinton
60bdf77e8b [SM-574] Wire up read/write for secret list and secret response (#2767) 
* Wire up read/write for secret list and secret response

* Fix trash

* Remove UserHasReadPermission

* Fix list by project

* Implement admin and service accounts for AccessToSecretAsync

* Resolve feedback

* Fix tests

* Rename function

* Change create to return true, true

* Remove duplicated access check
 2023-03-30 16:51:46 +02:00
Thomas Avery
56d3c3a5d1 Add in integration tests (#2806) 2023-03-21 17:12:13 -05:00
Thomas Avery
de559e80f4 [SM-581] Adding support for warning dialogs (#2762) 
* Adding support for warning dialogs

* Swap to repository layer implementation
 2023-03-06 11:31:56 -06:00
Thomas Avery
05f5d79938 [SM-572] Modify project endpoint to return current user's permission (#2752) 
* Add endpoints to check current user's permission

* Swap to adding current user permission onto GET

* Cleanup DI

* Add ProjectPermissionDetails DTO and query

* code review updates

* Remove assert recent for longer running creates
 2023-03-02 09:02:42 -06:00
Thomas Avery
bcc2a2a1ce [SM-502] Fix Users with no name (#2698) 
* Return email if username is empty
 2023-02-16 10:05:19 -06:00
Thomas Avery
f288787a45 [SM-495] Access Policies - Individual Service Account - Project Tab (#2697) 
* New endpoints to support sa projects tab

* Refactor create; Add tests

* Add creation request limit
 2023-02-16 09:47:34 -06:00
Oscar Hinton
7a209aa3bb [SM-501] Add support for revoking access tokens (#2692) 
* Add support for revoking access tokens
 2023-02-16 10:51:02 +01:00
Colton Hurst
5836c87bb4 SM-365: Add Export & Import Functionality for SM (#2591) 
* SM-365: Add Export endpoint

* SM-365: Add SM Import/Export support

* SM-365: Fix DI and add temp NoAccessCheck

* SM-365: Add access checks to import / export

* SM-365: dotnet format

* SM-365: Fix import bugs

* SM-365: Fix import bug with EF & refactor based on PR comments

* SM-365: Update access permissions in export

* SM-365: Address PR comments

* SM-365: Refactor for readability and PR comments
 2023-02-14 09:24:31 -05:00
Thomas Avery
1ee14d93e6 [SM-473] Access Policies - Service Accounts (#2658) 
* Add service account access policy endpoints

* Add unit & integration tests for new endpoints

* Fix formatting on response models

* Cleanup unit tests
 2023-02-07 14:30:22 -06:00
Thomas Avery
cf669286ed [SM-429] Add permission checks to access policy endpoints (#2628) 
* Add permission checks to access policy endpoints

* Fix unit tests

* Add service account grant permission checks

* Add service account grant tests

* Add new endpoint unit tests

* Cleanup unit tests add integration tests

* User permission enum in create tests

* Swap to NotFoundException for access checks

* Add filter for potential grantees

* Add in AccessSecretsManager check and test it

* Add code review updates

* Code review updates

* Refactor potential grantees endpoint

* Code review updates
 2023-02-06 11:26:06 -06:00
Thomas Avery
0ce95ec147 [SM-465] Add access policy on service account creation (#2649) 
* Add access policy on service account creation
 2023-02-02 12:25:14 -06:00
Oscar Hinton
59f5285c88 [SM-460] Isolate SecretsManager files (#2616) 
Move SecretsManager files to directories called SecretsManager and add CodeOwners
 2023-01-24 19:57:28 +01:00