vaultwarden/src/api/web.rs

use std::path::{Path, PathBuf};

use rocket::serde::json::Json;
use rocket::{fs::NamedFile, http::ContentType, Catcher, Route};
use serde_json::Value;

use crate::{
    api::core::now,
    error::Error,
    util::{Cached, SafeString},
    CONFIG,
};

pub fn routes() -> Vec<Route> {
    // If addding more routes here, consider also adding them to
    // crate::utils::LOGGED_ROUTES to make sure they appear in the log
    if CONFIG.web_vault_enabled() {
        routes![web_index, app_id, web_files, attachments, alive, static_files]
    } else {
        routes![attachments, alive, static_files]
    }
}

pub fn catchers() -> Vec<Catcher> {
    if CONFIG.web_vault_enabled() {
        catchers![not_found]
    } else {
        catchers![]
    }
}

#[catch(404)]
async fn not_found() -> Cached<Option<NamedFile>> {
    Cached::short(NamedFile::open(Path::new(&CONFIG.web_vault_folder()).join("404.html")).await.ok(), false)
}

#[get("/")]
async fn web_index() -> Cached<Option<NamedFile>> {
    Cached::short(NamedFile::open(Path::new(&CONFIG.web_vault_folder()).join("index.html")).await.ok(), false)
}

#[get("/app-id.json")]
fn app_id() -> Cached<(ContentType, Json<Value>)> {
    let content_type = ContentType::new("application", "fido.trusted-apps+json");

    Cached::long(
        (
            content_type,
            Json(json!({
            "trustedFacets": [
                {
                "version": { "major": 1, "minor": 0 },
                "ids": [
                    // Per <https://fidoalliance.org/specs/fido-v2.0-id-20180227/fido-appid-and-facets-v2.0-id-20180227.html#determining-the-facetid-of-a-calling-application>:
                    //
                    // "In the Web case, the FacetID MUST be the Web Origin [RFC6454]
                    // of the web page triggering the FIDO operation, written as
                    // a URI with an empty path. Default ports are omitted and any
                    // path component is ignored."
                    //
                    // This leaves it unclear as to whether the path must be empty,
                    // or whether it can be non-empty and will be ignored. To be on
                    // the safe side, use a proper web origin (with empty path).
                    &CONFIG.domain_origin(),
                    "ios:bundle-id:com.8bit.bitwarden",
                    "android:apk-key-hash:dUGFzUzf3lmHSLBDBIv+WaFyZMI" ]
                }]
            })),
        ),
        true,
    )
}

#[get("/<p..>", rank = 10)] // Only match this if the other routes don't match
async fn web_files(p: PathBuf) -> Cached<Option<NamedFile>> {
    Cached::long(NamedFile::open(Path::new(&CONFIG.web_vault_folder()).join(p)).await.ok(), true)
}

#[get("/attachments/<uuid>/<file_id>")]
async fn attachments(uuid: SafeString, file_id: SafeString) -> Option<NamedFile> {
    NamedFile::open(Path::new(&CONFIG.attachments_folder()).join(uuid).join(file_id)).await.ok()
}

// We use DbConn here to let the alive healthcheck also verify the database connection.
use crate::db::DbConn;
#[get("/alive")]
fn alive(_conn: DbConn) -> Json<String> {
    now()
}

#[get("/vw_static/<filename>")]
fn static_files(filename: String) -> Result<(ContentType, &'static [u8]), Error> {
    match filename.as_ref() {
        "mail-github.png" => Ok((ContentType::PNG, include_bytes!("../static/images/mail-github.png"))),
        "logo-gray.png" => Ok((ContentType::PNG, include_bytes!("../static/images/logo-gray.png"))),
        "error-x.svg" => Ok((ContentType::SVG, include_bytes!("../static/images/error-x.svg"))),
        "hibp.png" => Ok((ContentType::PNG, include_bytes!("../static/images/hibp.png"))),
        "vaultwarden-icon.png" => Ok((ContentType::PNG, include_bytes!("../static/images/vaultwarden-icon.png"))),
        "bootstrap.css" => Ok((ContentType::CSS, include_bytes!("../static/scripts/bootstrap.css"))),
        "bootstrap-native.js" => Ok((ContentType::JavaScript, include_bytes!("../static/scripts/bootstrap-native.js"))),
        "identicon.js" => Ok((ContentType::JavaScript, include_bytes!("../static/scripts/identicon.js"))),
        "datatables.js" => Ok((ContentType::JavaScript, include_bytes!("../static/scripts/datatables.js"))),
        "datatables.css" => Ok((ContentType::CSS, include_bytes!("../static/scripts/datatables.css"))),
        "jquery-3.6.1.slim.js" => {
            Ok((ContentType::JavaScript, include_bytes!("../static/scripts/jquery-3.6.1.slim.js")))
        }
        _ => err!(format!("Static file not found: {}", filename)),
    }
}
First working version 2018-02-10 01:00:55 +01:00			`use std::path::{Path, PathBuf};`

Update to rocket 0.5 and made code async, missing updating all db calls, that are currently blocking 2021-11-07 18:53:39 +01:00			`use rocket::serde::json::Json;`
add not_found catcher for 404 errors 2022-09-25 04:02:16 +02:00			`use rocket::{fs::NamedFile, http::ContentType, Catcher, Route};`
Updated bw_rs to Rocket version 0.4-rc1 2018-10-10 20:40:39 +02:00			`use serde_json::Value;`
First working version 2018-02-10 01:00:55 +01:00
Formatting 2021-07-15 21:52:17 +02:00			`use crate::{`
Add `/api/{alive,now,version}` endpoints The added endpoints work the same as in their upstream implementations. Upstream also implements `/api/ip`. This seems to include the server's public IP address (the one that should be hidden behind Cloudflare), which doesn't seem like a great idea. 2022-04-24 08:47:49 +02:00			`api::core::now,`
Formatting 2021-07-15 21:52:17 +02:00			`error::Error,`
			`util::{Cached, SafeString},`
			`CONFIG,`
			`};`
First working version 2018-02-10 01:00:55 +01:00
			`pub fn routes() -> Vec<Route> {`
Formatting 2019-12-27 18:37:14 +01:00			`// If addding more routes here, consider also adding them to`
Collapsed log messages from 3 lines per request to 2 and hidden the ones valued as less informative. Use LOG_LEVEL debug or trace to recover them. Removed LOG_MOUNTS and bundled it with LOG_LEVEL debug and trace. Removed duplicate error messages Made websocket not proxied message more prominent, but only print it once. 2019-12-06 22:19:07 +01:00			`// crate::utils::LOGGED_ROUTES to make sure they appear in the log`
Change config to thread-safe system, needed for a future config panel. Improved some two factor methods. 2019-01-25 18:23:51 +01:00			`if CONFIG.web_vault_enabled() {`
Add token with short expiration time to send url 2021-06-25 20:33:51 +02:00			`routes![web_index, app_id, web_files, attachments, alive, static_files]`
Improved configuration and documented options. Implemented option to disable web vault and to disable the use of bitwarden's official icon servers 2018-06-12 21:09:42 +02:00			`} else {`
Rename static files endpoint 2019-08-31 17:25:31 +02:00			`routes![attachments, alive, static_files]`
Improved configuration and documented options. Implemented option to disable web vault and to disable the use of bitwarden's official icon servers 2018-06-12 21:09:42 +02:00			`}`
First working version 2018-02-10 01:00:55 +01:00			`}`

add not_found catcher for 404 errors 2022-09-25 04:02:16 +02:00			`pub fn catchers() -> Vec<Catcher> {`
			`if CONFIG.web_vault_enabled() {`
			`catchers![not_found]`
			`} else {`
			`catchers![]`
			`}`
			`}`

			`#[catch(404)]`
			`async fn not_found() -> Cached<Option<NamedFile>> {`
			`Cached::short(NamedFile::open(Path::new(&CONFIG.web_vault_folder()).join("404.html")).await.ok(), false)`
			`}`

First working version 2018-02-10 01:00:55 +01:00			`#[get("/")]`
Update to rocket 0.5 and made code async, missing updating all db calls, that are currently blocking 2021-11-07 18:53:39 +01:00			`async fn web_index() -> Cached<Option<NamedFile>> {`
			`Cached::short(NamedFile::open(Path::new(&CONFIG.web_vault_folder()).join("index.html")).await.ok(), false)`
First working version 2018-02-10 01:00:55 +01:00			`}`

Implemented U2F, refactored Two Factor authentication, registering U2F device and authentication should work. Works on Chrome on MacOS with a virtual device. 2018-07-12 21:46:50 +02:00			`#[get("/app-id.json")]`
Update to rocket 0.5 and made code async, missing updating all db calls, that are currently blocking 2021-11-07 18:53:39 +01:00			`fn app_id() -> Cached<(ContentType, Json<Value>)> {`
Set facets contentType 2018-07-13 15:05:00 +02:00			`let content_type = ContentType::new("application", "fido.trusted-apps+json");`

Additionally set expires header when caching responses Browsers are rather smart, but also dumb. This uses the `Expires` header alongside `cache-control` to better prompt the browser to actually cache. Unfortunately, firefox still tries to "race" its own cache, in an attempt to respond to requests faster, so still ends up making a bunch of requests which could have been cached. Doesn't appear there's any way around this. 2021-12-28 17:24:42 +01:00			`Cached::long(`
Update to rocket 0.5 and made code async, missing updating all db calls, that are currently blocking 2021-11-07 18:53:39 +01:00			`(`
Additionally set expires header when caching responses Browsers are rather smart, but also dumb. This uses the `Expires` header alongside `cache-control` to better prompt the browser to actually cache. Unfortunately, firefox still tries to "race" its own cache, in an attempt to respond to requests faster, so still ends up making a bunch of requests which could have been cached. Doesn't appear there's any way around this. 2021-12-28 17:24:42 +01:00			`content_type,`
			`Json(json!({`
			`"trustedFacets": [`
			`{`
			`"version": { "major": 1, "minor": 0 },`
			`"ids": [`
			`// Per <https://fidoalliance.org/specs/fido-v2.0-id-20180227/fido-appid-and-facets-v2.0-id-20180227.html#determining-the-facetid-of-a-calling-application>:`
			`//`
			`// "In the Web case, the FacetID MUST be the Web Origin [RFC6454]`
			`// of the web page triggering the FIDO operation, written as`
			`// a URI with an empty path. Default ports are omitted and any`
			`// path component is ignored."`
			`//`
			`// This leaves it unclear as to whether the path must be empty,`
			`// or whether it can be non-empty and will be ignored. To be on`
			`// the safe side, use a proper web origin (with empty path).`
			`&CONFIG.domain_origin(),`
			`"ios:bundle-id:com.8bit.bitwarden",`
			`"android:apk-key-hash:dUGFzUzf3lmHSLBDBIv+WaFyZMI" ]`
			`}]`
			`})),`
			`),`
			`true,`
			`)`
Implemented U2F, refactored Two Factor authentication, registering U2F device and authentication should work. Works on Chrome on MacOS with a virtual device. 2018-07-12 21:46:50 +02:00			`}`

Implement admin JWT cookie, separate JWT issuers for each type of token and migrate admin page to handlebars template 2019-01-19 21:36:34 +01:00			`#[get("/<p..>", rank = 10)] // Only match this if the other routes don't match`
Update to rocket 0.5 and made code async, missing updating all db calls, that are currently blocking 2021-11-07 18:53:39 +01:00			`async fn web_files(p: PathBuf) -> Cached<Option<NamedFile>> {`
			`Cached::long(NamedFile::open(Path::new(&CONFIG.web_vault_folder()).join(p)).await.ok(), true)`
First working version 2018-02-10 01:00:55 +01:00			`}`

Fix attachment downloads Upstream switched to new upload/download APIs. Uploads fall back to the legacy APIs for now, but not downloads apparently. 2021-05-16 07:46:57 +02:00			`#[get("/attachments/<uuid>/<file_id>")]`
Update to rocket 0.5 and made code async, missing updating all db calls, that are currently blocking 2021-11-07 18:53:39 +01:00			`async fn attachments(uuid: SafeString, file_id: SafeString) -> Option<NamedFile> {`
			`NamedFile::open(Path::new(&CONFIG.attachments_folder()).join(uuid).join(file_id)).await.ok()`
First working version 2018-02-10 01:00:55 +01:00			`}`

Added DbConn to /alive healthcheck During a small discusson on Matrix it seems logical to have the /alive endpoint also check if the database connection still works. The reason for this was regarding a certificate which failed/expired while vaultwarden and the database were still up-and-running, but suddenly vaultwarden couldn't connect anymore. With this `DbConn` added to `/alive`, it will be more accurate, because of vaultwarden can't reach the database, it isn't alive. 2021-10-09 14:16:27 +02:00			`// We use DbConn here to let the alive healthcheck also verify the database connection.`
			`use crate::db::DbConn;`
First working version 2018-02-10 01:00:55 +01:00			`#[get("/alive")]`
Added DbConn to /alive healthcheck During a small discusson on Matrix it seems logical to have the /alive endpoint also check if the database connection still works. The reason for this was regarding a certificate which failed/expired while vaultwarden and the database were still up-and-running, but suddenly vaultwarden couldn't connect anymore. With this `DbConn` added to `/alive`, it will be more accurate, because of vaultwarden can't reach the database, it isn't alive. 2021-10-09 14:16:27 +02:00			`fn alive(_conn: DbConn) -> Json<String> {`
Add `/api/{alive,now,version}` endpoints The added endpoints work the same as in their upstream implementations. Upstream also implements `/api/ip`. This seems to include the server's public IP address (the one that should be hidden behind Cloudflare), which doesn't seem like a great idea. 2022-04-24 08:47:49 +02:00			`now()`
First working version 2018-02-10 01:00:55 +01:00			`}`
Added static email image routes 2019-02-16 03:44:30 +01:00
Remove references to "bwrs" #2195 Squashed commit of the following: commit 1bdf1c7954e0731c95703d10118f3874ab5155d3 Merge: 8ba6e61 7257251 Author: Daniel García <dani-garcia@users.noreply.github.com> Date: Sun Jan 23 23:40:17 2022 +0100 Merge branch 'remove-bwrs' of https://github.com/RealOrangeOne/vaultwarden into RealOrangeOne-remove-bwrs commit 7257251ecf23af18deb894e8f2e5519a15360c76 Author: Jake Howard <git@theorangeone.net> Date: Thu Jan 6 17:48:18 2022 +0000 Use `or_else` to save potentially unnecessary function call commit 40ae81dd3c43a596375d5bfdcc00053e786328cc Author: Jake Howard <git@theorangeone.net> Date: Wed Jan 5 21:18:24 2022 +0000 Move $BWRS_VERSION fallback into build.rs commit 743ef74b307a662960f3ca1b9636f3608506516d Author: Jake Howard <git@theorangeone.net> Date: Sat Jan 1 23:08:27 2022 +0000 Revert "Add feature to enable use of `Option::or` in const context" This reverts commit fe8e043b8aaf77c083747bf11760f29b53df0bba. We want to run on stable soon, where these features are not supported commit a1f0da638c8b6ba32209318b105bde1efdd47082 Author: Jake Howard <git@theorangeone.net> Date: Sat Jan 1 13:04:47 2022 +0000 Rename web vault version file https://github.com/dani-garcia/bw_web_builds/pull/58 commit fe8e043b8aaf77c083747bf11760f29b53df0bba Author: Jake Howard <git@theorangeone.net> Date: Sat Jan 1 12:56:44 2022 +0000 Add feature to enable use of `Option::or` in const context commit 687435c8b2b995e90bf6f0ee619bc305e37bc183 Author: Jake Howard <git@theorangeone.net> Date: Sat Jan 1 12:27:28 2022 +0000 Continue to allow using `$BWRS_VERSION` commit 8e2f708e5037db8071251c582ebaf1a97d8e5923 Author: Jake Howard <git@theorangeone.net> Date: Fri Dec 31 11:41:34 2021 +0000 Remove references to "bwrs" The only remaining one is getting the version of the web vault, which requires coordinating with the web vault patching. 2022-01-23 23:40:59 +01:00			`#[get("/vw_static/<filename>")]`
Update to rocket 0.5 and made code async, missing updating all db calls, that are currently blocking 2021-11-07 18:53:39 +01:00			`fn static_files(filename: String) -> Result<(ContentType, &'static [u8]), Error> {`
Added static email image routes 2019-02-16 03:44:30 +01:00			`match filename.as_ref() {`
Update to rocket 0.5 and made code async, missing updating all db calls, that are currently blocking 2021-11-07 18:53:39 +01:00			`"mail-github.png" => Ok((ContentType::PNG, include_bytes!("../static/images/mail-github.png"))),`
			`"logo-gray.png" => Ok((ContentType::PNG, include_bytes!("../static/images/logo-gray.png"))),`
			`"error-x.svg" => Ok((ContentType::SVG, include_bytes!("../static/images/error-x.svg"))),`
			`"hibp.png" => Ok((ContentType::PNG, include_bytes!("../static/images/hibp.png"))),`
			`"vaultwarden-icon.png" => Ok((ContentType::PNG, include_bytes!("../static/images/vaultwarden-icon.png"))),`
			`"bootstrap.css" => Ok((ContentType::CSS, include_bytes!("../static/scripts/bootstrap.css"))),`
			`"bootstrap-native.js" => Ok((ContentType::JavaScript, include_bytes!("../static/scripts/bootstrap-native.js"))),`
			`"identicon.js" => Ok((ContentType::JavaScript, include_bytes!("../static/scripts/identicon.js"))),`
			`"datatables.js" => Ok((ContentType::JavaScript, include_bytes!("../static/scripts/datatables.js"))),`
			`"datatables.css" => Ok((ContentType::CSS, include_bytes!("../static/scripts/datatables.css"))),`
Change the handling of login errors. Previously FlashMessage was used to provide an error message during login. This PR changes that flow to not use redirect for this, but renders the HTML and responds using the correct status code where needed. This should solve some issues which were reported in the past. Thanks to @RealOrangeOne, for initiating this with a PR. Fixes #2448 Fixes #2712 Closes #2715 Co-authored-by: Jake Howard <git@theorangeone.net> 2022-09-06 17:14:16 +02:00			`"jquery-3.6.1.slim.js" => {`
			`Ok((ContentType::JavaScript, include_bytes!("../static/scripts/jquery-3.6.1.slim.js")))`
Modify rustfmt file 2021-04-06 22:54:42 +02:00			`}`
Add backend support for alternate base dir (subdir/subpath) hosting To use this, include a path in the `DOMAIN` URL, e.g.: * `DOMAIN=https://example.com/custom-path` * `DOMAIN=https://example.com/multiple/levels/are/ok` 2020-02-19 06:27:00 +01:00			`_ => err!(format!("Static file not found: {}", filename)),`
Added static email image routes 2019-02-16 03:44:30 +01:00			`}`
Formatting 2019-12-27 18:37:14 +01:00			`}`