-
Notifications
You must be signed in to change notification settings - Fork 1.3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[PM-7842] Fix validation of IDN emails #4036
Open
NicolaiSoeborg
wants to merge
7
commits into
bitwarden:main
Choose a base branch
from
NicolaiSoeborg:main
base: main
Could not load branches
Branch not found: {{ refName }}
Loading
Could not load tags
Nothing to show
Loading
Are you sure you want to change the base?
Some commits from the old base branch may be removed from the timeline,
and old review comments may become outdated.
Open
Commits on Apr 30, 2024
-
Tracking the flow of emails when signing up / changing emails (`[StrictEmailAddressAttribute]`): 1. (frontend) emails are checked using this regex: https://github.com/angular/angular/blob/17.3.6/packages/forms/src/validators.ts#L127 2. (backend) check for `ParseException` and `MimeKit.MailboxAddress.Parse(X).Address == X` 3. (backend) check "edge cases" regex 4. (backend) check `EmailAddressAttribute().IsValid` (https://github.com/Microsoft/referencesource/blob/master/System.ComponentModel.DataAnnotations/DataAnnotations/EmailAddressAttribute.cs#L54) The problem: 1. doesn't allow IDN 2. requires IDN 3. allows IDN 4. allows IDN This PR relaxes (2) to only check for ParseExceptions, allowing IDN to be specified in punycode form. Would have been nice if MimeKit had a ParserOptions to not turn punycode into IDN-form, but that is not the case: https://github.com/jstedfast/MimeKit/blob/master/MimeKit/InternetAddress.cs#L418-L419 Bitwarden already have a ton of (unit-)test-cases for handling IDN, so that should already be covered.
Configuration menu - View commit details
-
Copy full SHA for 64639c0 - Browse repository at this point
Copy the full SHA 64639c0View commit details
Commits on May 1, 2024
-
Configuration menu - View commit details
-
Copy full SHA for 73b6208 - Browse repository at this point
Copy the full SHA 73b6208View commit details
Commits on May 20, 2024
-
Configuration menu - View commit details
-
Copy full SHA for 4e5ba60 - Browse repository at this point
Copy the full SHA 4e5ba60View commit details
Commits on Jun 18, 2024
-
Configuration menu - View commit details
-
Copy full SHA for 16653eb - Browse repository at this point
Copy the full SHA 16653ebView commit details
Commits on Jun 24, 2024
-
Configuration menu - View commit details
-
Copy full SHA for eaa6c79 - Browse repository at this point
Copy the full SHA eaa6c79View commit details
Commits on Jul 6, 2024
-
Configuration menu - View commit details
-
Copy full SHA for c491d44 - Browse repository at this point
Copy the full SHA c491d44View commit details
Commits on Aug 10, 2024
-
Configuration menu - View commit details
-
Copy full SHA for b50ad7c - Browse repository at this point
Copy the full SHA b50ad7cView commit details
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.