vaultwarden/src/mail.rs

use native_tls::{Protocol, TlsConnector};
use lettre::{Transport, SmtpTransport, SmtpClient, ClientTlsParameters, ClientSecurity};
use lettre::smtp::ConnectionReuseParameters;
use lettre::smtp::authentication::Credentials;
use lettre_email::EmailBuilder;

use crate::MailConfig;
use crate::CONFIG;

fn mailer(config: &MailConfig) -> SmtpTransport {
    let client_security = if config.smtp_ssl {
        let tls = TlsConnector::builder()
            .min_protocol_version(Some(Protocol::Tlsv11))
            .build()
            .unwrap();

        ClientSecurity::Required(ClientTlsParameters::new(config.smtp_host.clone(), tls))
    } else {
        ClientSecurity::None
    };

    let smtp_client = SmtpClient::new(
        (config.smtp_host.as_str(), config.smtp_port),
        client_security,
    ).unwrap();

    let smtp_client = match (&config.smtp_username, &config.smtp_password) {
        (Some(user), Some(pass)) => smtp_client.credentials(Credentials::new(user.clone(), pass.clone())),
        _ => smtp_client,
    };

    smtp_client
        .smtp_utf8(true)
        .connection_reuse(ConnectionReuseParameters::NoReuse)
        .transport()
}

pub fn send_password_hint(address: &str, hint: Option<String>, config: &MailConfig) -> Result<(), String> {
    let (subject, body) = if let Some(hint) = hint {
        ("Your master password hint",
         format!(
            "You (or someone) recently requested your master password hint.\n\n\
             Your hint is:  \"{}\"\n\n\
             If you did not request your master password hint you can safely ignore this email.\n",
            hint))
    } else {
        ("Sorry, you have no password hint...",
         "Sorry, you have not specified any password hint...\n".into())
    };

    let email = EmailBuilder::new()
        .to(address)
        .from((config.smtp_from.clone(), "Bitwarden-rs"))
        .subject(subject)
        .body(body)
        .build()
        .map_err(|e| e.to_string())?;

    mailer(config)
        .send(email.into())
        .map_err(|e| e.to_string())
        .and(Ok(()))
}

pub fn send_invite(address: &str, org_id: &str, org_user_id: &str, token: &str, org_name: &str, config: &MailConfig) -> Result<(), String> {
    let (subject, body) =  {
        (format!("Join {}", &org_name),
        format!(
            "<html>
             <p>You have been invited to join the <b>{}</b> organization.<br><br>
             <a href=\"https://{}/api/organizations/{}/users/{}/accept?token={}\">Click here to join</a></p>
             <p>If you do not wish to join this organization, you can safely ignore this email.</p>
             </html>",
            org_name, CONFIG.domain, org_id, org_user_id, token
        ))
    };

    let email = EmailBuilder::new()
        .to(address)
        .from((config.smtp_from.clone(), "Bitwarden-rs"))
        .subject(subject)
        .header(("Content-Type", "text/html"))
        .body(body)
        .build()
        .map_err(|e| e.to_string())?;

    mailer(config)
        .send(email.into())
        .map_err(|e| e.to_string())
        .and(Ok(()))
}
Check email validity before using it for password hint sending 2018-08-15 17:25:59 +02:00			`use native_tls::{Protocol, TlsConnector};`
Temp fix for OpenSSL 1.1.1 compatibility 2018-09-19 21:45:50 +02:00			`use lettre::{Transport, SmtpTransport, SmtpClient, ClientTlsParameters, ClientSecurity};`
			`use lettre::smtp::ConnectionReuseParameters;`
make SMTP authentication optionnal, let lettre pick the better auth mechanism 2018-08-15 17:00:55 +02:00			`use lettre::smtp::authentication::Credentials;`
SMTP integration, send password hint by email. 2018-08-15 08:32:19 +02:00			`use lettre_email::EmailBuilder;`

Migrate to rust 2018 edition 2018-12-07 02:05:45 +01:00			`use crate::MailConfig;`
Add invite email functionality 2018-12-15 03:54:03 +01:00			`use crate::CONFIG;`
SMTP integration, send password hint by email. 2018-08-15 08:32:19 +02:00
			`fn mailer(config: &MailConfig) -> SmtpTransport {`
			`let client_security = if config.smtp_ssl {`
Updated dependencies, removed valid mail check (now done by lettre), and updated global domains file 2018-10-04 00:01:04 +02:00			`let tls = TlsConnector::builder()`
			`.min_protocol_version(Some(Protocol::Tlsv11))`
			`.build()`
			`.unwrap();`

			`ClientSecurity::Required(ClientTlsParameters::new(config.smtp_host.clone(), tls))`
SMTP integration, send password hint by email. 2018-08-15 08:32:19 +02:00			`} else {`
			`ClientSecurity::None`
			`};`

Temp fix for OpenSSL 1.1.1 compatibility 2018-09-19 21:45:50 +02:00			`let smtp_client = SmtpClient::new(`
Updated dependencies, removed valid mail check (now done by lettre), and updated global domains file 2018-10-04 00:01:04 +02:00			`(config.smtp_host.as_str(), config.smtp_port),`
			`client_security,`
make SMTP authentication optionnal, let lettre pick the better auth mechanism 2018-08-15 17:00:55 +02:00			`).unwrap();`

Temp fix for OpenSSL 1.1.1 compatibility 2018-09-19 21:45:50 +02:00			`let smtp_client = match (&config.smtp_username, &config.smtp_password) {`
Updated dependencies, removed valid mail check (now done by lettre), and updated global domains file 2018-10-04 00:01:04 +02:00			`(Some(user), Some(pass)) => smtp_client.credentials(Credentials::new(user.clone(), pass.clone())),`
			`_ => smtp_client,`
make SMTP authentication optionnal, let lettre pick the better auth mechanism 2018-08-15 17:00:55 +02:00			`};`

Temp fix for OpenSSL 1.1.1 compatibility 2018-09-19 21:45:50 +02:00			`smtp_client`
SMTP integration, send password hint by email. 2018-08-15 08:32:19 +02:00			`.smtp_utf8(true)`
make SMTP authentication optionnal, let lettre pick the better auth mechanism 2018-08-15 17:00:55 +02:00			`.connection_reuse(ConnectionReuseParameters::NoReuse)`
Temp fix for OpenSSL 1.1.1 compatibility 2018-09-19 21:45:50 +02:00			`.transport()`
SMTP integration, send password hint by email. 2018-08-15 08:32:19 +02:00			`}`

Special messages when user has no password hint 2018-09-11 13:04:34 +02:00			`pub fn send_password_hint(address: &str, hint: Option<String>, config: &MailConfig) -> Result<(), String> {`
			`let (subject, body) = if let Some(hint) = hint {`
			`("Your master password hint",`
			`format!(`
			`"You (or someone) recently requested your master password hint.\n\n\`
			`Your hint is: \"{}\"\n\n\`
			`If you did not request your master password hint you can safely ignore this email.\n",`
			`hint))`
			`} else {`
			`("Sorry, you have no password hint...",`
Updated dependencies, removed valid mail check (now done by lettre), and updated global domains file 2018-10-04 00:01:04 +02:00			`"Sorry, you have not specified any password hint...\n".into())`
Special messages when user has no password hint 2018-09-11 13:04:34 +02:00			`};`
Better message into the password hint email 2018-08-15 10:17:05 +02:00
SMTP integration, send password hint by email. 2018-08-15 08:32:19 +02:00			`let email = EmailBuilder::new()`
			`.to(address)`
Updated dependencies, removed valid mail check (now done by lettre), and updated global domains file 2018-10-04 00:01:04 +02:00			`.from((config.smtp_from.clone(), "Bitwarden-rs"))`
Special messages when user has no password hint 2018-09-11 13:04:34 +02:00			`.subject(subject)`
Better message into the password hint email 2018-08-15 10:17:05 +02:00			`.body(body)`
Updated dependencies, removed valid mail check (now done by lettre), and updated global domains file 2018-10-04 00:01:04 +02:00			`.build()`
			`.map_err(\|e\| e.to_string())?;`
SMTP integration, send password hint by email. 2018-08-15 08:32:19 +02:00
Updated dependencies, removed valid mail check (now done by lettre), and updated global domains file 2018-10-04 00:01:04 +02:00			`mailer(config)`
			`.send(email.into())`
			`.map_err(\|e\| e.to_string())`
			`.and(Ok(()))`
SMTP integration, send password hint by email. 2018-08-15 08:32:19 +02:00			`}`
Add invite email functionality 2018-12-15 03:54:03 +01:00
			`pub fn send_invite(address: &str, org_id: &str, org_user_id: &str, token: &str, org_name: &str, config: &MailConfig) -> Result<(), String> {`
			`let (subject, body) = {`
			`(format!("Join {}", &org_name),`
			`format!(`
			`"<html>`
			`<p>You have been invited to join the <b>{}</b> organization.<br><br>`
			`<a href=\"https://{}/api/organizations/{}/users/{}/accept?token={}\">Click here to join</a></p>`
			`<p>If you do not wish to join this organization, you can safely ignore this email.</p>`
			`</html>",`
			`org_name, CONFIG.domain, org_id, org_user_id, token`
			`))`
			`};`

			`let email = EmailBuilder::new()`
			`.to(address)`
			`.from((config.smtp_from.clone(), "Bitwarden-rs"))`
			`.subject(subject)`
			`.header(("Content-Type", "text/html"))`
			`.body(body)`
			`.build()`
			`.map_err(\|e\| e.to_string())?;`

			`mailer(config)`
			`.send(email.into())`
			`.map_err(\|e\| e.to_string())`
			`.and(Ok(()))`
			`}`