[PM-4794] Trim TOTP key#2865

Closed

flooxo wants to merge 3810 commits intobitwarden:mainfrom

flooxo commented Nov 11, 2023

Type of change

Objective

This PR resolves #2122.
When cloning a working entry that has a valid OTP and editing the cloned entry by putting a space at the beginning of otpauth:// a wrong OTP is generated.

Code changes

TotpService.cs: The expected behaviour would be to still have a valid otp and therefore the whitespaces are trimmed.
Thanks to @FlorianLang06

Before you submit

Please check for formatting errors (dotnet format --verify-no-changes) (required)
Please add unit tests where it makes sense to do so (encouraged but not required)
If this change requires a documentation update - notify the documentation team
If this change has particular deployment requirements - notify the DevOps team

joseph-flinn and others added 30 commits

March 2, 2023 15:18


          Patch/update ios provision profiles (bitwarden#2398)

a81dfc2

* Update iOS Distribution cert and provision profiles

* Rename the provision profiles

* Update the App Store provision profile names in plist

* Update Watch provision profile

* Remove testing code in pipeline

* Remove more test code


          PM-1271 Removed StorageMediatorOptions and go to a plain parameters b…

3f86bb0

…ased approach (bitwarden#2397)


          Autosync the updated translations (bitwarden#2399)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>


          [PM-1249] Clear/reset password/PIN fields on login/lock screen when a…

c02cd1f

…pp is backgrounded (bitwarden#2395)

* [PM-1249] Clear/reset password/PIN fields on login/lock screen when app is backgrounded

* fixes


          Use encoded query parameters over path (bitwarden#2354)

4d2b53c

* Use encoded query parameters over path

* Prefer POST for requests with sensitive information

* Send private information in headers over query

* B64 encode email


          [PM-1129] iOS 16 Third-Party 2FA OTP handling (bitwarden#2409)

a18f74a

* [EC-980] Added iOS otpauth handler (bitwarden#2370)

* EC-980 added Bitwarden as otpauth scheme handler

* EC-980 Fix format

* [EC-981] OTP handling - Set to selected cipher (bitwarden#2404)

* EC-981 Started adding OTP to existing cipher. Reused AutofillCiphersPage for the cipher selection and refactored it so that we have more code reuse

* EC-981 Fix navigation on otp handling

* EC-981 Fix formatting

* EC-981 Added otp cipher selection callout and add close toolbar item when needed

* PM-1131 implemented cipher creation from otp handling flow with otp key filled (bitwarden#2407)

* PM-1133 Updated empty states for search and cipher selection on otp flow (bitwarden#2408)


          [EC-770] Implement MessagePack on Watch sync (bitwarden#2264)

9f8307a

* EC-770 Started implementing MessagePack for the iPhone -> Watch communication

* EC-770 Removed Pods and installed MessagePack through SPM

* EC-770 Implemented MessagePack + Lzfse compression when syncing iPhone -> Watch

* EC-770 Added MessagePack as submodule and updated the build to checkout the submodule as well. Also added MessagePack files as reference in the watch project

* EC-770 Updated build

Updated build.yml to checkout submodules on iOS


          PM-1386 Fix otp data issuer and account name being set correctly (bit…

f733d22

…warden#2411)


          Autosync the updated translations (bitwarden#2412)

fe12b0e

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>


          [PS-2486] Finally stop filling password into username field (bitwarde…

ad9ca12

…n#2367)

* Finally stop filling password into username field

The logic in bitwarden#2331 is unfortunately not very reliable as it'll only detect fields that have one of "email", "phone" or "username" in their id as username fields.
This commit ensures that additonally fields that have TextVariationWebEmailAddress are also detected as username fields.

* Add TextVariationEmailAddress

* Remove

---------

Co-authored-by: aj-rosado <109146700+aj-rosado@users.noreply.github.com>


          [EC-1045] add vault timeout action to policy (bitwarden#2372)

dcb5854

* [EC-1045] lock action if policy and show message

* [EC-1045] add text for policy message

* [EC-1045] add consts to policy service

* [EC-1045] missed a const

* [AC-1045] fix build


          Revert "[EC-1045] add vault timeout action to policy (bitwarden#2372)" (

839aa91

bitwarden#2414)

This reverts commit dcb5854.


          [PM-1078] Login with Device - Change mobile to not get fingerprint fr…

ccd7120

…om API (bitwarden#2390)

* [PM-1078] Fingerprint phrase gets calculated from pub key on AuthService instead of coming as a property from the api.


          [PM-1431] [Defect] [Android] New accounts are not able to log in (bit…

151ecf8

…warden#2417)

* [PM-1431] Do not clear Master password  if login is ongoing.


          Autosync the updated translations (bitwarden#2419)

606b001

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>


          [PM-1497] Known device api error (bitwarden#2418)

a6bb089

* [PM-1497] Ignore know device api error.


          Bumped version to 2023.3.0 (bitwarden#2423)

c6bdb67

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>


          Fix migration crash (bitwarden#2430)

276a93c


          Bumped version to 2023.3.1 (bitwarden#2432)

bd9b767

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>


          Bumped version to 2023.3.2 (bitwarden#2436)

55a3b76

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>


          Autosync the updated translations (bitwarden#2438)

3e76f6b

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>


          [PM-1567] Fix for vault timeout 'never' not persisting (bitwarden#2440)

80e38f8


          [PS-2328] Added RuPay card brand (bitwarden#2314)

53d892a

* Added Mir and RuPay card brands

* Remove Mir because of bitwarden/clients#5011

---------

Co-authored-by: Daniel James Smith <djsmith@web.de>


          Bumped version to 2023.3.3 (bitwarden#2451)

d7d044f

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>


          [PM-1646] Add thread safety to migration process (bitwarden#2453)

99ceb8d

* Make migration process thread safe

* tweaks


          PM-1615 Fix cipher options not working in lists due to binding failin…

120f1d6

…g due to type mismatch. Updated GroupingsPageViewModel to new way of calling as well (bitwarden#2456)


          Revert "PM-1615 Fix cipher options not working in lists due to bindin…

0462f4d

…g failing due to type mismatch. Updated GroupingsPageViewModel to new way of calling as well (bitwarden#2456)" (bitwarden#2458)

This reverts commit 120f1d6.


          Fix version auto bump workflow (bitwarden#2439)

11d3d71

* Fix verion autobump workflow

* Fix

* Update .github/workflows/version-auto-bump.yml

Co-authored-by: Vince Grassia <593223+vgrassia@users.noreply.github.com>

* Update .github/workflows/version-auto-bump.yml

Co-authored-by: Vince Grassia <593223+vgrassia@users.noreply.github.com>

---------

Co-authored-by: Vince Grassia <593223+vgrassia@users.noreply.github.com>


          PM-1615 Fix cipher options not working in lists due to binding failin…

8fe9bd7

…g due to type mismatch. Updated GroupingsPageViewModel to new way of calling as well (bitwarden#2460)


          Autosync the updated translations (bitwarden#2457)

d7715c9

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>

vgrassia and others added 27 commits

December 18, 2023 10:59


          Merge _cut_rc.yml into version-bump.yml (bitwarden#2908)

82711a0


          Autosync the updated translations (bitwarden#2913)

15a03ba

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>


          Autosync the updated translations (bitwarden#2918)

8ee744b

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>


          Autosync the updated translations (bitwarden#2919)

f14be2a

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>


          Autosync the updated translations (bitwarden#2927)

d091922

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>


          [PM-4584] Add device identifier to request headers. (bitwarden#2909)

0cec49f


          Bumped version to 2024.1.0 (bitwarden#2928)

af6866c


          Autosync the updated translations (bitwarden#2929)

a42b88b

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>


          [PM-5542] Update sso endpoint (bitwarden#2930)

0e95d4d


          [PM-5633] Ignore ArgumentOutOfRangeException to collect more data abo…

5de02c8

…ut the crash (bitwarden#2933)


          Bumped version to 2024.1.1 (bitwarden#2934)

e107b89


          Autosync the updated translations (bitwarden#2936)

9e1d6c7

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>


          Import-link routes to import page after login (bitwarden#2937)

6b7c6ea

Co-authored-by: Daniel James Smith <djsmith85@users.noreply.github.com>


          Import-link routes to import page after login (bitwarden#2939)

d6c139c

Co-authored-by: Daniel James Smith <djsmith85@users.noreply.github.com>


          Autosync the updated translations (bitwarden#2944)

e66ac9d

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>


          Fix Renovate config (bitwarden#2945)

7558f60


          Pin dependency gh-pages to 3.2.3 (bitwarden#2542)

56b9e3f

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>


          Fix code ownership (bitwarden#2946)

64c694e


          [deps]: Update actions/setup-dotnet action to v4 (bitwarden#2947)

b2f93d3

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>


          [deps]: Update actions/setup-node action to v4 (bitwarden#2868)

983937c

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>


          [PM-4739] Implement checksum uri validation (bitwarden#2893)

f6a58e4

* PM-4739 Implement checksum uri validation

* PM-4739 Add missing field

* PM-4739 Fix PR comments

* PM-4739 Remove unnecessary comment

* PM-4739 Add try catch and log exception

* PM-4739 Added missing files from last commit

* PM-4739 Change arg name

* [PM-5461] Fix item saving with blank URI (bitwarden#2948)

* PM-5461 Fix item saving with blank URI

* PM-5461 Fix PR comment


          Update Renovate config (bitwarden#2953)

849a0c2


          [deps]: Update gh minor (bitwarden#2544)

f3537b1

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>


          Add privacy policy link to about screen (bitwarden#2954)

3f10a6b


          Autosync the updated translations (bitwarden#2957)

fd80a9c

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>


          [PM-5638] Bump minimum server version for vault item encryption (bitw…

7bbb711

…arden#2959)

Co-authored-by: Carlos Gonçalves <cgoncalves@bitwarden.com>


          Merge branch 'bitwarden:main' into master

75f4e0d

flooxo requested a review from a team as a code owner

January 29, 2024 10:37

vvolkgang closed this

vvolkgang force-pushed the main branch from ad6ffad to 959a60c Compare

June 20, 2024 15:45

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels