1
0
Fork 1
Spiegel von https://github.com/dani-garcia/vaultwarden.git synchronisiert 2024-11-16 04:12:53 +01:00

make fido app-id.json work with multi-domains

Dieser Commit ist enthalten in:
BlockListed 2023-09-09 11:07:38 +02:00
Ursprung 0ebd877fb8
Commit 2c7b739d49
Es konnte kein GPG-Schlüssel zu dieser Signatur gefunden werden
GPG-Schlüssel-ID: 2D204777C477B588

Datei anzeigen

@ -5,7 +5,8 @@ use serde_json::Value;
use crate::{
api::{core::now, ApiResult, EmptyResult},
auth::decode_file_download,
auth::{decode_file_download, BaseURL},
config::extract_url_host,
error::Error,
util::{Cached, SafeString},
CONFIG,
@ -62,9 +63,15 @@ fn web_index_head() -> EmptyResult {
}
#[get("/app-id.json")]
fn app_id() -> Cached<(ContentType, Json<Value>)> {
fn app_id(base_url: BaseURL) -> Cached<(ContentType, Json<Value>)> {
let content_type = ContentType::new("application", "fido.trusted-apps+json");
// TODO_MAYBE: add an extractor for getting the origin, so we only have to do 1 lookup.
let origin = CONFIG.domain_origin(&extract_url_host(&base_url.base_url))
// This should never fail, because every host with a domain entry
// should have a origin entry.
.expect("Configured domain has no origin entry");
Cached::long(
(
content_type,
@ -83,7 +90,7 @@ fn app_id() -> Cached<(ContentType, Json<Value>)> {
// This leaves it unclear as to whether the path must be empty,
// or whether it can be non-empty and will be ignored. To be on
// the safe side, use a proper web origin (with empty path).
&CONFIG.domain_origin(),
&origin,
"ios:bundle-id:com.8bit.bitwarden",
"android:apk-key-hash:dUGFzUzf3lmHSLBDBIv+WaFyZMI" ]
}]