mirror of
https://github.com/dani-garcia/vaultwarden
synced 2024-06-22 22:08:20 +02:00
996b60e43d
Previously the websocket notifications were using `app_id` as the `ContextId`. This was incorrect and should have been the device_uuid from the client device executing the request. The clients will ignore the websocket request if the uuid matches. This also fixes some issues with the Desktop client which is able to modify attachments within the same screen and causes an issue when saving the attachment afterwards. Also changed the way to handle removed attachments, since that causes an error saving the vault cipher afterwards, complaining about a missing attachment. Bitwarden ignores this, and continues with the remaining attachments (if any). This also fixes #2591 . Further some more websocket notifications have been added to some other functions which enhance the user experience. - Logout users when deauthed, changed password, rotated keys - Trigger OrgSyncKeys on user confirm and removal - Added some extra to the send feature Also renamed UpdateTypes to match Bitwarden naming.
806 lines
24 KiB
Rust
806 lines
24 KiB
Rust
use chrono::Utc;
|
|
use rocket::serde::json::Json;
|
|
use serde_json::Value;
|
|
|
|
use crate::{
|
|
api::{
|
|
core::log_user_event, EmptyResult, JsonResult, JsonUpcase, Notify, NumberOrString, PasswordData, UpdateType,
|
|
},
|
|
auth::{decode_delete, decode_invite, decode_verify_email, ClientIp, Headers},
|
|
crypto,
|
|
db::{models::*, DbConn},
|
|
mail, CONFIG,
|
|
};
|
|
|
|
pub fn routes() -> Vec<rocket::Route> {
|
|
routes![
|
|
register,
|
|
profile,
|
|
put_profile,
|
|
post_profile,
|
|
get_public_keys,
|
|
post_keys,
|
|
post_password,
|
|
post_kdf,
|
|
post_rotatekey,
|
|
post_sstamp,
|
|
post_email_token,
|
|
post_email,
|
|
post_verify_email,
|
|
post_verify_email_token,
|
|
post_delete_recover,
|
|
post_delete_recover_token,
|
|
delete_account,
|
|
post_delete_account,
|
|
revision_date,
|
|
password_hint,
|
|
prelogin,
|
|
verify_password,
|
|
api_key,
|
|
rotate_api_key,
|
|
get_known_device,
|
|
]
|
|
}
|
|
|
|
#[derive(Deserialize, Debug)]
|
|
#[allow(non_snake_case)]
|
|
pub struct RegisterData {
|
|
Email: String,
|
|
Kdf: Option<i32>,
|
|
KdfIterations: Option<i32>,
|
|
Key: String,
|
|
Keys: Option<KeysData>,
|
|
MasterPasswordHash: String,
|
|
MasterPasswordHint: Option<String>,
|
|
Name: Option<String>,
|
|
Token: Option<String>,
|
|
#[allow(dead_code)]
|
|
OrganizationUserId: Option<String>,
|
|
}
|
|
|
|
#[derive(Deserialize, Debug)]
|
|
#[allow(non_snake_case)]
|
|
struct KeysData {
|
|
EncryptedPrivateKey: String,
|
|
PublicKey: String,
|
|
}
|
|
|
|
/// Trims whitespace from password hints, and converts blank password hints to `None`.
|
|
fn clean_password_hint(password_hint: &Option<String>) -> Option<String> {
|
|
match password_hint {
|
|
None => None,
|
|
Some(h) => match h.trim() {
|
|
"" => None,
|
|
ht => Some(ht.to_string()),
|
|
},
|
|
}
|
|
}
|
|
|
|
fn enforce_password_hint_setting(password_hint: &Option<String>) -> EmptyResult {
|
|
if password_hint.is_some() && !CONFIG.password_hints_allowed() {
|
|
err!("Password hints have been disabled by the administrator. Remove the hint and try again.");
|
|
}
|
|
Ok(())
|
|
}
|
|
|
|
#[post("/accounts/register", data = "<data>")]
|
|
async fn register(data: JsonUpcase<RegisterData>, conn: DbConn) -> JsonResult {
|
|
_register(data, conn).await
|
|
}
|
|
|
|
pub async fn _register(data: JsonUpcase<RegisterData>, mut conn: DbConn) -> JsonResult {
|
|
let data: RegisterData = data.into_inner().data;
|
|
let email = data.Email.to_lowercase();
|
|
|
|
// Check if the length of the username exceeds 50 characters (Same is Upstream Bitwarden)
|
|
// This also prevents issues with very long usernames causing to large JWT's. See #2419
|
|
if let Some(ref name) = data.Name {
|
|
if name.len() > 50 {
|
|
err!("The field Name must be a string with a maximum length of 50.");
|
|
}
|
|
}
|
|
|
|
// Check against the password hint setting here so if it fails, the user
|
|
// can retry without losing their invitation below.
|
|
let password_hint = clean_password_hint(&data.MasterPasswordHint);
|
|
enforce_password_hint_setting(&password_hint)?;
|
|
|
|
let mut verified_by_invite = false;
|
|
|
|
let mut user = match User::find_by_mail(&email, &mut conn).await {
|
|
Some(mut user) => {
|
|
if !user.password_hash.is_empty() {
|
|
err!("Registration not allowed or user already exists")
|
|
}
|
|
|
|
if let Some(token) = data.Token {
|
|
let claims = decode_invite(&token)?;
|
|
if claims.email == email {
|
|
// Verify the email address when signing up via a valid invite token
|
|
verified_by_invite = true;
|
|
user.verified_at = Some(Utc::now().naive_utc());
|
|
user
|
|
} else {
|
|
err!("Registration email does not match invite email")
|
|
}
|
|
} else if Invitation::take(&email, &mut conn).await {
|
|
for mut user_org in UserOrganization::find_invited_by_user(&user.uuid, &mut conn).await.iter_mut() {
|
|
user_org.status = UserOrgStatus::Accepted as i32;
|
|
user_org.save(&mut conn).await?;
|
|
}
|
|
user
|
|
} else if CONFIG.is_signup_allowed(&email)
|
|
|| EmergencyAccess::find_invited_by_grantee_email(&email, &mut conn).await.is_some()
|
|
{
|
|
user
|
|
} else {
|
|
err!("Registration not allowed or user already exists")
|
|
}
|
|
}
|
|
None => {
|
|
// Order is important here; the invitation check must come first
|
|
// because the vaultwarden admin can invite anyone, regardless
|
|
// of other signup restrictions.
|
|
if Invitation::take(&email, &mut conn).await || CONFIG.is_signup_allowed(&email) {
|
|
User::new(email.clone())
|
|
} else {
|
|
err!("Registration not allowed or user already exists")
|
|
}
|
|
}
|
|
};
|
|
|
|
// Make sure we don't leave a lingering invitation.
|
|
Invitation::take(&email, &mut conn).await;
|
|
|
|
if let Some(client_kdf_iter) = data.KdfIterations {
|
|
user.client_kdf_iter = client_kdf_iter;
|
|
}
|
|
|
|
if let Some(client_kdf_type) = data.Kdf {
|
|
user.client_kdf_type = client_kdf_type;
|
|
}
|
|
|
|
user.set_password(&data.MasterPasswordHash, None);
|
|
user.akey = data.Key;
|
|
user.password_hint = password_hint;
|
|
|
|
// Add extra fields if present
|
|
if let Some(name) = data.Name {
|
|
user.name = name;
|
|
}
|
|
|
|
if let Some(keys) = data.Keys {
|
|
user.private_key = Some(keys.EncryptedPrivateKey);
|
|
user.public_key = Some(keys.PublicKey);
|
|
}
|
|
|
|
if CONFIG.mail_enabled() {
|
|
if CONFIG.signups_verify() && !verified_by_invite {
|
|
if let Err(e) = mail::send_welcome_must_verify(&user.email, &user.uuid).await {
|
|
error!("Error sending welcome email: {:#?}", e);
|
|
}
|
|
|
|
user.last_verifying_at = Some(user.created_at);
|
|
} else if let Err(e) = mail::send_welcome(&user.email).await {
|
|
error!("Error sending welcome email: {:#?}", e);
|
|
}
|
|
}
|
|
|
|
user.save(&mut conn).await?;
|
|
Ok(Json(json!({
|
|
"Object": "register",
|
|
"CaptchaBypassToken": "",
|
|
})))
|
|
}
|
|
|
|
#[get("/accounts/profile")]
|
|
async fn profile(headers: Headers, mut conn: DbConn) -> Json<Value> {
|
|
Json(headers.user.to_json(&mut conn).await)
|
|
}
|
|
|
|
#[derive(Deserialize, Debug)]
|
|
#[allow(non_snake_case)]
|
|
struct ProfileData {
|
|
// Culture: String, // Ignored, always use en-US
|
|
// MasterPasswordHint: Option<String>, // Ignored, has been moved to ChangePassData
|
|
Name: String,
|
|
}
|
|
|
|
#[put("/accounts/profile", data = "<data>")]
|
|
async fn put_profile(data: JsonUpcase<ProfileData>, headers: Headers, conn: DbConn) -> JsonResult {
|
|
post_profile(data, headers, conn).await
|
|
}
|
|
|
|
#[post("/accounts/profile", data = "<data>")]
|
|
async fn post_profile(data: JsonUpcase<ProfileData>, headers: Headers, mut conn: DbConn) -> JsonResult {
|
|
let data: ProfileData = data.into_inner().data;
|
|
|
|
// Check if the length of the username exceeds 50 characters (Same is Upstream Bitwarden)
|
|
// This also prevents issues with very long usernames causing to large JWT's. See #2419
|
|
if data.Name.len() > 50 {
|
|
err!("The field Name must be a string with a maximum length of 50.");
|
|
}
|
|
|
|
let mut user = headers.user;
|
|
user.name = data.Name;
|
|
|
|
user.save(&mut conn).await?;
|
|
Ok(Json(user.to_json(&mut conn).await))
|
|
}
|
|
|
|
#[get("/users/<uuid>/public-key")]
|
|
async fn get_public_keys(uuid: String, _headers: Headers, mut conn: DbConn) -> JsonResult {
|
|
let user = match User::find_by_uuid(&uuid, &mut conn).await {
|
|
Some(user) => user,
|
|
None => err!("User doesn't exist"),
|
|
};
|
|
|
|
Ok(Json(json!({
|
|
"UserId": user.uuid,
|
|
"PublicKey": user.public_key,
|
|
"Object":"userKey"
|
|
})))
|
|
}
|
|
|
|
#[post("/accounts/keys", data = "<data>")]
|
|
async fn post_keys(data: JsonUpcase<KeysData>, headers: Headers, mut conn: DbConn) -> JsonResult {
|
|
let data: KeysData = data.into_inner().data;
|
|
|
|
let mut user = headers.user;
|
|
|
|
user.private_key = Some(data.EncryptedPrivateKey);
|
|
user.public_key = Some(data.PublicKey);
|
|
|
|
user.save(&mut conn).await?;
|
|
|
|
Ok(Json(json!({
|
|
"PrivateKey": user.private_key,
|
|
"PublicKey": user.public_key,
|
|
"Object":"keys"
|
|
})))
|
|
}
|
|
|
|
#[derive(Deserialize)]
|
|
#[allow(non_snake_case)]
|
|
struct ChangePassData {
|
|
MasterPasswordHash: String,
|
|
NewMasterPasswordHash: String,
|
|
MasterPasswordHint: Option<String>,
|
|
Key: String,
|
|
}
|
|
|
|
#[post("/accounts/password", data = "<data>")]
|
|
async fn post_password(
|
|
data: JsonUpcase<ChangePassData>,
|
|
headers: Headers,
|
|
mut conn: DbConn,
|
|
ip: ClientIp,
|
|
nt: Notify<'_>,
|
|
) -> EmptyResult {
|
|
let data: ChangePassData = data.into_inner().data;
|
|
let mut user = headers.user;
|
|
|
|
if !user.check_valid_password(&data.MasterPasswordHash) {
|
|
err!("Invalid password")
|
|
}
|
|
|
|
user.password_hint = clean_password_hint(&data.MasterPasswordHint);
|
|
enforce_password_hint_setting(&user.password_hint)?;
|
|
|
|
log_user_event(EventType::UserChangedPassword as i32, &user.uuid, headers.device.atype, &ip.ip, &mut conn).await;
|
|
|
|
user.set_password(
|
|
&data.NewMasterPasswordHash,
|
|
Some(vec![String::from("post_rotatekey"), String::from("get_contacts"), String::from("get_public_keys")]),
|
|
);
|
|
user.akey = data.Key;
|
|
let save_result = user.save(&mut conn).await;
|
|
|
|
nt.send_user_update(UpdateType::LogOut, &user).await;
|
|
|
|
save_result
|
|
}
|
|
|
|
#[derive(Deserialize)]
|
|
#[allow(non_snake_case)]
|
|
struct ChangeKdfData {
|
|
Kdf: i32,
|
|
KdfIterations: i32,
|
|
|
|
MasterPasswordHash: String,
|
|
NewMasterPasswordHash: String,
|
|
Key: String,
|
|
}
|
|
|
|
#[post("/accounts/kdf", data = "<data>")]
|
|
async fn post_kdf(data: JsonUpcase<ChangeKdfData>, headers: Headers, mut conn: DbConn, nt: Notify<'_>) -> EmptyResult {
|
|
let data: ChangeKdfData = data.into_inner().data;
|
|
let mut user = headers.user;
|
|
|
|
if !user.check_valid_password(&data.MasterPasswordHash) {
|
|
err!("Invalid password")
|
|
}
|
|
|
|
user.client_kdf_iter = data.KdfIterations;
|
|
user.client_kdf_type = data.Kdf;
|
|
user.set_password(&data.NewMasterPasswordHash, None);
|
|
user.akey = data.Key;
|
|
let save_result = user.save(&mut conn).await;
|
|
|
|
nt.send_user_update(UpdateType::LogOut, &user).await;
|
|
|
|
save_result
|
|
}
|
|
|
|
#[derive(Deserialize)]
|
|
#[allow(non_snake_case)]
|
|
struct UpdateFolderData {
|
|
Id: String,
|
|
Name: String,
|
|
}
|
|
|
|
use super::ciphers::CipherData;
|
|
|
|
#[derive(Deserialize)]
|
|
#[allow(non_snake_case)]
|
|
struct KeyData {
|
|
Ciphers: Vec<CipherData>,
|
|
Folders: Vec<UpdateFolderData>,
|
|
Key: String,
|
|
PrivateKey: String,
|
|
MasterPasswordHash: String,
|
|
}
|
|
|
|
#[post("/accounts/key", data = "<data>")]
|
|
async fn post_rotatekey(
|
|
data: JsonUpcase<KeyData>,
|
|
headers: Headers,
|
|
mut conn: DbConn,
|
|
ip: ClientIp,
|
|
nt: Notify<'_>,
|
|
) -> EmptyResult {
|
|
let data: KeyData = data.into_inner().data;
|
|
|
|
if !headers.user.check_valid_password(&data.MasterPasswordHash) {
|
|
err!("Invalid password")
|
|
}
|
|
|
|
let user_uuid = &headers.user.uuid;
|
|
|
|
// Update folder data
|
|
for folder_data in data.Folders {
|
|
let mut saved_folder = match Folder::find_by_uuid(&folder_data.Id, &mut conn).await {
|
|
Some(folder) => folder,
|
|
None => err!("Folder doesn't exist"),
|
|
};
|
|
|
|
if &saved_folder.user_uuid != user_uuid {
|
|
err!("The folder is not owned by the user")
|
|
}
|
|
|
|
saved_folder.name = folder_data.Name;
|
|
saved_folder.save(&mut conn).await?
|
|
}
|
|
|
|
// Update cipher data
|
|
use super::ciphers::update_cipher_from_data;
|
|
|
|
for cipher_data in data.Ciphers {
|
|
let mut saved_cipher = match Cipher::find_by_uuid(cipher_data.Id.as_ref().unwrap(), &mut conn).await {
|
|
Some(cipher) => cipher,
|
|
None => err!("Cipher doesn't exist"),
|
|
};
|
|
|
|
if saved_cipher.user_uuid.as_ref().unwrap() != user_uuid {
|
|
err!("The cipher is not owned by the user")
|
|
}
|
|
|
|
// Prevent triggering cipher updates via WebSockets by settings UpdateType::None
|
|
// The user sessions are invalidated because all the ciphers were re-encrypted and thus triggering an update could cause issues.
|
|
// We force the users to logout after the user has been saved to try and prevent these issues.
|
|
update_cipher_from_data(&mut saved_cipher, cipher_data, &headers, false, &mut conn, &ip, &nt, UpdateType::None)
|
|
.await?
|
|
}
|
|
|
|
// Update user data
|
|
let mut user = headers.user;
|
|
|
|
user.akey = data.Key;
|
|
user.private_key = Some(data.PrivateKey);
|
|
user.reset_security_stamp();
|
|
|
|
let save_result = user.save(&mut conn).await;
|
|
|
|
nt.send_user_update(UpdateType::LogOut, &user).await;
|
|
|
|
save_result
|
|
}
|
|
|
|
#[post("/accounts/security-stamp", data = "<data>")]
|
|
async fn post_sstamp(
|
|
data: JsonUpcase<PasswordData>,
|
|
headers: Headers,
|
|
mut conn: DbConn,
|
|
nt: Notify<'_>,
|
|
) -> EmptyResult {
|
|
let data: PasswordData = data.into_inner().data;
|
|
let mut user = headers.user;
|
|
|
|
if !user.check_valid_password(&data.MasterPasswordHash) {
|
|
err!("Invalid password")
|
|
}
|
|
|
|
Device::delete_all_by_user(&user.uuid, &mut conn).await?;
|
|
user.reset_security_stamp();
|
|
let save_result = user.save(&mut conn).await;
|
|
|
|
nt.send_user_update(UpdateType::LogOut, &user).await;
|
|
|
|
save_result
|
|
}
|
|
|
|
#[derive(Deserialize)]
|
|
#[allow(non_snake_case)]
|
|
struct EmailTokenData {
|
|
MasterPasswordHash: String,
|
|
NewEmail: String,
|
|
}
|
|
|
|
#[post("/accounts/email-token", data = "<data>")]
|
|
async fn post_email_token(data: JsonUpcase<EmailTokenData>, headers: Headers, mut conn: DbConn) -> EmptyResult {
|
|
let data: EmailTokenData = data.into_inner().data;
|
|
let mut user = headers.user;
|
|
|
|
if !user.check_valid_password(&data.MasterPasswordHash) {
|
|
err!("Invalid password")
|
|
}
|
|
|
|
if User::find_by_mail(&data.NewEmail, &mut conn).await.is_some() {
|
|
err!("Email already in use");
|
|
}
|
|
|
|
if !CONFIG.is_email_domain_allowed(&data.NewEmail) {
|
|
err!("Email domain not allowed");
|
|
}
|
|
|
|
let token = crypto::generate_email_token(6);
|
|
|
|
if CONFIG.mail_enabled() {
|
|
if let Err(e) = mail::send_change_email(&data.NewEmail, &token).await {
|
|
error!("Error sending change-email email: {:#?}", e);
|
|
}
|
|
}
|
|
|
|
user.email_new = Some(data.NewEmail);
|
|
user.email_new_token = Some(token);
|
|
user.save(&mut conn).await
|
|
}
|
|
|
|
#[derive(Deserialize)]
|
|
#[allow(non_snake_case)]
|
|
struct ChangeEmailData {
|
|
MasterPasswordHash: String,
|
|
NewEmail: String,
|
|
|
|
Key: String,
|
|
NewMasterPasswordHash: String,
|
|
Token: NumberOrString,
|
|
}
|
|
|
|
#[post("/accounts/email", data = "<data>")]
|
|
async fn post_email(
|
|
data: JsonUpcase<ChangeEmailData>,
|
|
headers: Headers,
|
|
mut conn: DbConn,
|
|
nt: Notify<'_>,
|
|
) -> EmptyResult {
|
|
let data: ChangeEmailData = data.into_inner().data;
|
|
let mut user = headers.user;
|
|
|
|
if !user.check_valid_password(&data.MasterPasswordHash) {
|
|
err!("Invalid password")
|
|
}
|
|
|
|
if User::find_by_mail(&data.NewEmail, &mut conn).await.is_some() {
|
|
err!("Email already in use");
|
|
}
|
|
|
|
match user.email_new {
|
|
Some(ref val) => {
|
|
if val != &data.NewEmail {
|
|
err!("Email change mismatch");
|
|
}
|
|
}
|
|
None => err!("No email change pending"),
|
|
}
|
|
|
|
if CONFIG.mail_enabled() {
|
|
// Only check the token if we sent out an email...
|
|
match user.email_new_token {
|
|
Some(ref val) => {
|
|
if *val != data.Token.into_string() {
|
|
err!("Token mismatch");
|
|
}
|
|
}
|
|
None => err!("No email change pending"),
|
|
}
|
|
user.verified_at = Some(Utc::now().naive_utc());
|
|
} else {
|
|
user.verified_at = None;
|
|
}
|
|
|
|
user.email = data.NewEmail;
|
|
user.email_new = None;
|
|
user.email_new_token = None;
|
|
|
|
user.set_password(&data.NewMasterPasswordHash, None);
|
|
user.akey = data.Key;
|
|
let save_result = user.save(&mut conn).await;
|
|
|
|
nt.send_user_update(UpdateType::LogOut, &user).await;
|
|
|
|
save_result
|
|
}
|
|
|
|
#[post("/accounts/verify-email")]
|
|
async fn post_verify_email(headers: Headers) -> EmptyResult {
|
|
let user = headers.user;
|
|
|
|
if !CONFIG.mail_enabled() {
|
|
err!("Cannot verify email address");
|
|
}
|
|
|
|
if let Err(e) = mail::send_verify_email(&user.email, &user.uuid).await {
|
|
error!("Error sending verify_email email: {:#?}", e);
|
|
}
|
|
|
|
Ok(())
|
|
}
|
|
|
|
#[derive(Deserialize)]
|
|
#[allow(non_snake_case)]
|
|
struct VerifyEmailTokenData {
|
|
UserId: String,
|
|
Token: String,
|
|
}
|
|
|
|
#[post("/accounts/verify-email-token", data = "<data>")]
|
|
async fn post_verify_email_token(data: JsonUpcase<VerifyEmailTokenData>, mut conn: DbConn) -> EmptyResult {
|
|
let data: VerifyEmailTokenData = data.into_inner().data;
|
|
|
|
let mut user = match User::find_by_uuid(&data.UserId, &mut conn).await {
|
|
Some(user) => user,
|
|
None => err!("User doesn't exist"),
|
|
};
|
|
|
|
let claims = match decode_verify_email(&data.Token) {
|
|
Ok(claims) => claims,
|
|
Err(_) => err!("Invalid claim"),
|
|
};
|
|
if claims.sub != user.uuid {
|
|
err!("Invalid claim");
|
|
}
|
|
user.verified_at = Some(Utc::now().naive_utc());
|
|
user.last_verifying_at = None;
|
|
user.login_verify_count = 0;
|
|
if let Err(e) = user.save(&mut conn).await {
|
|
error!("Error saving email verification: {:#?}", e);
|
|
}
|
|
|
|
Ok(())
|
|
}
|
|
|
|
#[derive(Deserialize)]
|
|
#[allow(non_snake_case)]
|
|
struct DeleteRecoverData {
|
|
Email: String,
|
|
}
|
|
|
|
#[post("/accounts/delete-recover", data = "<data>")]
|
|
async fn post_delete_recover(data: JsonUpcase<DeleteRecoverData>, mut conn: DbConn) -> EmptyResult {
|
|
let data: DeleteRecoverData = data.into_inner().data;
|
|
|
|
if CONFIG.mail_enabled() {
|
|
if let Some(user) = User::find_by_mail(&data.Email, &mut conn).await {
|
|
if let Err(e) = mail::send_delete_account(&user.email, &user.uuid).await {
|
|
error!("Error sending delete account email: {:#?}", e);
|
|
}
|
|
}
|
|
Ok(())
|
|
} else {
|
|
// We don't support sending emails, but we shouldn't allow anybody
|
|
// to delete accounts without at least logging in... And if the user
|
|
// cannot remember their password then they will need to contact
|
|
// the administrator to delete it...
|
|
err!("Please contact the administrator to delete your account");
|
|
}
|
|
}
|
|
|
|
#[derive(Deserialize)]
|
|
#[allow(non_snake_case)]
|
|
struct DeleteRecoverTokenData {
|
|
UserId: String,
|
|
Token: String,
|
|
}
|
|
|
|
#[post("/accounts/delete-recover-token", data = "<data>")]
|
|
async fn post_delete_recover_token(data: JsonUpcase<DeleteRecoverTokenData>, mut conn: DbConn) -> EmptyResult {
|
|
let data: DeleteRecoverTokenData = data.into_inner().data;
|
|
|
|
let user = match User::find_by_uuid(&data.UserId, &mut conn).await {
|
|
Some(user) => user,
|
|
None => err!("User doesn't exist"),
|
|
};
|
|
|
|
let claims = match decode_delete(&data.Token) {
|
|
Ok(claims) => claims,
|
|
Err(_) => err!("Invalid claim"),
|
|
};
|
|
if claims.sub != user.uuid {
|
|
err!("Invalid claim");
|
|
}
|
|
user.delete(&mut conn).await
|
|
}
|
|
|
|
#[post("/accounts/delete", data = "<data>")]
|
|
async fn post_delete_account(data: JsonUpcase<PasswordData>, headers: Headers, conn: DbConn) -> EmptyResult {
|
|
delete_account(data, headers, conn).await
|
|
}
|
|
|
|
#[delete("/accounts", data = "<data>")]
|
|
async fn delete_account(data: JsonUpcase<PasswordData>, headers: Headers, mut conn: DbConn) -> EmptyResult {
|
|
let data: PasswordData = data.into_inner().data;
|
|
let user = headers.user;
|
|
|
|
if !user.check_valid_password(&data.MasterPasswordHash) {
|
|
err!("Invalid password")
|
|
}
|
|
|
|
user.delete(&mut conn).await
|
|
}
|
|
|
|
#[get("/accounts/revision-date")]
|
|
fn revision_date(headers: Headers) -> String {
|
|
let revision_date = headers.user.updated_at.timestamp_millis();
|
|
revision_date.to_string()
|
|
}
|
|
|
|
#[derive(Deserialize)]
|
|
#[allow(non_snake_case)]
|
|
struct PasswordHintData {
|
|
Email: String,
|
|
}
|
|
|
|
#[post("/accounts/password-hint", data = "<data>")]
|
|
async fn password_hint(data: JsonUpcase<PasswordHintData>, mut conn: DbConn) -> EmptyResult {
|
|
if !CONFIG.mail_enabled() && !CONFIG.show_password_hint() {
|
|
err!("This server is not configured to provide password hints.");
|
|
}
|
|
|
|
const NO_HINT: &str = "Sorry, you have no password hint...";
|
|
|
|
let data: PasswordHintData = data.into_inner().data;
|
|
let email = &data.Email;
|
|
|
|
match User::find_by_mail(email, &mut conn).await {
|
|
None => {
|
|
// To prevent user enumeration, act as if the user exists.
|
|
if CONFIG.mail_enabled() {
|
|
// There is still a timing side channel here in that the code
|
|
// paths that send mail take noticeably longer than ones that
|
|
// don't. Add a randomized sleep to mitigate this somewhat.
|
|
use rand::{rngs::SmallRng, Rng, SeedableRng};
|
|
let mut rng = SmallRng::from_entropy();
|
|
let delta: i32 = 100;
|
|
let sleep_ms = (1_000 + rng.gen_range(-delta..=delta)) as u64;
|
|
tokio::time::sleep(tokio::time::Duration::from_millis(sleep_ms)).await;
|
|
Ok(())
|
|
} else {
|
|
err!(NO_HINT);
|
|
}
|
|
}
|
|
Some(user) => {
|
|
let hint: Option<String> = user.password_hint;
|
|
if CONFIG.mail_enabled() {
|
|
mail::send_password_hint(email, hint).await?;
|
|
Ok(())
|
|
} else if let Some(hint) = hint {
|
|
err!(format!("Your password hint is: {}", hint));
|
|
} else {
|
|
err!(NO_HINT);
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
#[derive(Deserialize)]
|
|
#[allow(non_snake_case)]
|
|
pub struct PreloginData {
|
|
Email: String,
|
|
}
|
|
|
|
#[post("/accounts/prelogin", data = "<data>")]
|
|
async fn prelogin(data: JsonUpcase<PreloginData>, conn: DbConn) -> Json<Value> {
|
|
_prelogin(data, conn).await
|
|
}
|
|
|
|
pub async fn _prelogin(data: JsonUpcase<PreloginData>, mut conn: DbConn) -> Json<Value> {
|
|
let data: PreloginData = data.into_inner().data;
|
|
|
|
let (kdf_type, kdf_iter) = match User::find_by_mail(&data.Email, &mut conn).await {
|
|
Some(user) => (user.client_kdf_type, user.client_kdf_iter),
|
|
None => (User::CLIENT_KDF_TYPE_DEFAULT, User::CLIENT_KDF_ITER_DEFAULT),
|
|
};
|
|
|
|
Json(json!({
|
|
"Kdf": kdf_type,
|
|
"KdfIterations": kdf_iter
|
|
}))
|
|
}
|
|
|
|
// https://github.com/bitwarden/server/blob/master/src/Api/Models/Request/Accounts/SecretVerificationRequestModel.cs
|
|
#[derive(Deserialize)]
|
|
#[allow(non_snake_case)]
|
|
struct SecretVerificationRequest {
|
|
MasterPasswordHash: String,
|
|
}
|
|
|
|
#[post("/accounts/verify-password", data = "<data>")]
|
|
fn verify_password(data: JsonUpcase<SecretVerificationRequest>, headers: Headers) -> EmptyResult {
|
|
let data: SecretVerificationRequest = data.into_inner().data;
|
|
let user = headers.user;
|
|
|
|
if !user.check_valid_password(&data.MasterPasswordHash) {
|
|
err!("Invalid password")
|
|
}
|
|
|
|
Ok(())
|
|
}
|
|
|
|
async fn _api_key(
|
|
data: JsonUpcase<SecretVerificationRequest>,
|
|
rotate: bool,
|
|
headers: Headers,
|
|
mut conn: DbConn,
|
|
) -> JsonResult {
|
|
let data: SecretVerificationRequest = data.into_inner().data;
|
|
let mut user = headers.user;
|
|
|
|
if !user.check_valid_password(&data.MasterPasswordHash) {
|
|
err!("Invalid password")
|
|
}
|
|
|
|
if rotate || user.api_key.is_none() {
|
|
user.api_key = Some(crypto::generate_api_key());
|
|
user.save(&mut conn).await.expect("Error saving API key");
|
|
}
|
|
|
|
Ok(Json(json!({
|
|
"ApiKey": user.api_key,
|
|
"Object": "apiKey",
|
|
})))
|
|
}
|
|
|
|
#[post("/accounts/api-key", data = "<data>")]
|
|
async fn api_key(data: JsonUpcase<SecretVerificationRequest>, headers: Headers, conn: DbConn) -> JsonResult {
|
|
_api_key(data, false, headers, conn).await
|
|
}
|
|
|
|
#[post("/accounts/rotate-api-key", data = "<data>")]
|
|
async fn rotate_api_key(data: JsonUpcase<SecretVerificationRequest>, headers: Headers, conn: DbConn) -> JsonResult {
|
|
_api_key(data, true, headers, conn).await
|
|
}
|
|
|
|
#[get("/devices/knowndevice/<email>/<uuid>")]
|
|
async fn get_known_device(email: String, uuid: String, mut conn: DbConn) -> String {
|
|
// This endpoint doesn't have auth header
|
|
if let Some(user) = User::find_by_mail(&email, &mut conn).await {
|
|
match Device::find_by_uuid_and_user(&uuid, &user.uuid, &mut conn).await {
|
|
Some(_) => String::from("true"),
|
|
_ => String::from("false"),
|
|
}
|
|
} else {
|
|
String::from("false")
|
|
}
|
|
}
|