vaultwarden

mirror of https://github.com/dani-garcia/vaultwarden.git synced 2024-11-21 20:35:28 +03:00

History

Mathijs van Veluw 13f4b66e62 Hide user name on invite status (#5110 ) A possible user disclosure when you invite an user into an organization which already has an account on the same instance. This was because we always returned the user's name. To prevent this, this PR only returns the user's name if the status is accepted or higher, else we will return null. This is the same as Bitwarden does. Resolves a reported issue. Also resolved a new `nightly` reported clippy regarding a regex within a loop.		2024-10-19 18:22:21 +02:00
..
api	Fix collection management and match some json output (#5095 )	2024-10-18 20:37:32 +02:00
db	Hide user name on invite status (#5110 )	2024-10-19 18:22:21 +02:00
static	Fix org invite url being html encoded (#5100 )	2024-10-18 20:34:11 +02:00
auth.rs	Add extra linting (#4977 )	2024-09-23 20:25:32 +02:00
config.rs	Add `extension-refresh` feature flag (#5106 )	2024-10-19 18:21:00 +02:00
crypto.rs	Remove get_random_64()	2022-11-13 10:03:06 +01:00
error.rs	Add extra linting (#4977 )	2024-09-23 20:25:32 +02:00
http_client.rs	Add extra linting (#4977 )	2024-09-23 20:25:32 +02:00
mail.rs	Actually use Device Type for mails (#4916 )	2024-09-18 19:03:15 +02:00
main.rs	Hide user name on invite status (#5110 )	2024-10-19 18:22:21 +02:00
ratelimit.rs	Basic ratelimit for user login (including 2FA) and admin login	2021-12-22 21:48:49 +01:00
util.rs	Add extra linting (#4977 )	2024-09-23 20:25:32 +02:00