1
0
Fork 0
vaultwarden-test/src
BlackDex de86aa671e Fix Key Rotation during password change
When ticking the 'Also rotate my account's encryption key' box, the key
rotated ciphers are posted after the change of password.

During the password change the security stamp was reseted which made
the posted key's return an invalid auth. This reset is needed to prevent other clients from still being able to read/write.

This fixes this by adding a new database column which stores a stamp exception which includes the allowed route and the current security stamp before it gets reseted.
When the security stamp check fails it will check if there is a stamp exception and tries to match the route and security stamp.

Currently it only allows for one exception. But if needed we could expand it by using a Vec<UserStampException> and change the functions accordingly.

fixes #1240
2020-12-14 19:58:23 +01:00
..
api Fix Key Rotation during password change 2020-12-14 19:58:23 +01:00
db Fix Key Rotation during password change 2020-12-14 19:58:23 +01:00
static Clean up datetime output and code 2020-12-13 19:49:22 -08:00
auth.rs Fix Key Rotation during password change 2020-12-14 19:58:23 +01:00
config.rs Updated icon downloading 2020-12-08 17:34:18 +01:00
crypto.rs Generate tokens more simply and uniformly 2020-08-22 16:07:53 -07:00
error.rs Log proper namespace in the err!() macro 2020-11-22 00:09:45 +01:00
mail.rs Clean up datetime output and code 2020-12-13 19:49:22 -08:00
main.rs Updated icon downloading 2020-12-08 17:34:18 +01:00
util.rs Clean up datetime output and code 2020-12-13 19:49:22 -08:00