Vaultwarden - Package Updates
-
[1.4.4]
- Update BitwardenRS to 1.17.0
- Update webvault to 2.16.1
- Sessions are properly invalidated now when changing email, password or kdf parameters.
- Items are not shown to organization admins in their user view when they don't have their collection selected. Note that they still appear in the organization view.
- Favorite status in organization items is now tracked at the user level.
- Updated dependencies and synced global domains file with upstream.
-
[1.5.0]
- Update BitwardenRS to 1.18.0
- Full changelog
- Users can be enabled/disabled from the admin panel.
- Implemented manager role.
- Now cipher updates are validated when they provide a revision date, which will prevent multiple clients from overwriting each other's changes.
- Updated web vault to 2.17.1.
-
[1.6.0]
- Update BitwardenRS to 1.19.0
- Update web vault to 2.18.1
- Admin UI: Added diagnostic and debug information.
- Admin UI: Added option to sort users by date.
- Admin UI: Added ability to modify a user's type in an organization and to delete the whole organization.
- Added support for the Personal Ownership policy, which when enabled disables the use of the personal vault to non-admin users of an organization.
- Synced global domains data with upstream.
-
[1.7.0]
- Project renamed from BitwardenRS to Vaultwarden
- Renaming announcement
- Update Vaultwarden to 2.21.0
- Add support for enabling auto-deletion of trash items after X days, disabled by default
- Updates to the icon fetching, making it more reliable in detecting icon types
-
[1.7.1]
- Update Vaultwarden to 1.22.1
- Added sends_allowed option to disable Send functionality.
- Added support for hiding the senders email address.
- Added Send options policy.
- Added support for password reprompt.
- Switched to the new attachment download API.
- Send download links use a token system to limit their downloads.
- Updates to the icon fetching.
- Support for webauthn.
- The admin page now shows which variables are overridden.
- Updated dependencies and docker base images.
- Now RSA keys are generated with the included openssl instead of calling to the openssl binary.
- The web vault doesn't require accepting the terms are conditions now, which weren't applicable for a self hosted server.
-
[1.7.2]
- Update Vaultwarden to 1.22.2
- Updated web vault to 2.21.1.
- Enforce 2FA policy in organizations.
- Protect send routes against a possible path traversal attack.
- Disable show_password_hint by default, it still can be enabled in the admin panel or with environment variables.
- Disable user verification enforcement in Webauthn, which would make some users unable to login.
- Fix issue that wouldn't correctly delete Webauthn Key.
- Added Edge extension support for Webauthn.
-
[1.7.5]
- Update Vaultwarden to 1.23.1
- Full changelog
- Add email notifications for incomplete 2FA logins by @jjlin in #2067
- Fix conflict resolution logic for read_only and hide_passwords flags by @jjlin in #2073
- Fix missing encrypted key after emergency access reject by @jjlin in #2078
- Macro recursion decrease and other optimizations by @BlackDex in #2084
- Enabled trust-dns and some updates. by @BlackDex in #2125
- Update web vault to 2.25.0
-
[1.8.1]
- Update Vaultwarden to 1.24.0
- Full changelog
- Add support for API keys by @jjlin in #2245
- Basic ratelimit for user login (including 2FA) and admin login by @dani-garcia in #2165
- Upgrade Feature-Policy to Permissions-Policy by @iamdoubz in #2228
- Set Expires header when caching responses by @RealOrangeOne in #2182
- Increase length limit for email token generation by @jjlin in #2257
- Small changes to icon log messages. by @BlackDex in #2170
- Bump rust version to mitigate CVE-2022-21658 by @dscottboggs in #2255
- Fixed #2151 by @BlackDex in #2169
- Fixed issue #2154 by @BlackDex in #2194
- Fix issue with Bitwarden CLI. by @BlackDex in #2197
- Fix emergency access invites for new users by @BlackDex in #2217
- Sync global_domains.json by @jjlin in #2156
