speatzle/go-passbolt
1
0
Fork 0
mirror of https://github.com/passbolt/go-passbolt.git synced 2025-09-13 14:29:09 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Compare commits

base: speatzle:8b00fcd4971ec6b7c454ebc064d6ad1b0a52eb92
Branches Tags
speatzle:main
speatzle:v5
speatzle:v5-fix-jsonschema
speatzle:v5-schema-fixes
speatzle:fix-password-string-validation
speatzle:v5-metadata-trusting
speatzle:v5-reorg
speatzle:v5-resource-update
speatzle:v5-fix-metadatakey
speatzle:v5-resource-share
speatzle:v5-metadata-creation
speatzle:v5-metadata-decryption
speatzle:gopenpgp-v3
speatzle:v5-basic-metadatakeys
speatzle:v5-server-settings
speatzle:v5-run-workflow
speatzle:auto-skip-integration-tests
speatzle:jwt-auth
speatzle:v0.7.2
speatzle:v0.7.1
speatzle:v0.7.0
speatzle:v0.6.1
speatzle:v0.6.0
speatzle:v0.5.8
speatzle:v0.5.7
speatzle:v0.5.6
speatzle:v0.5.5
speatzle:v0.5.4
speatzle:v0.5.3
speatzle:v0.5.2
speatzle:v0.5.1
speatzle:v0.5.0
speatzle:v0.4.0
speatzle:v0.3.1
speatzle:v0.3.0
speatzle:v0.2.2
speatzle:v0.2.1
speatzle:v0.2.0
speatzle:v0.1.1
speatzle:v0.1.0
speatzle:v0.0.1
..
compare: speatzle:1ffa5a23bd2933680f6032b26eed742ce5bc57eb
Branches Tags
speatzle:v5
speatzle:v5-fix-jsonschema
speatzle:v5-schema-fixes
speatzle:fix-password-string-validation
speatzle:v5-metadata-trusting
speatzle:v5-reorg
speatzle:v5-resource-update
speatzle:v5-fix-metadatakey
speatzle:v5-resource-share
speatzle:v5-metadata-creation
speatzle:v5-metadata-decryption
speatzle:gopenpgp-v3
speatzle:v5-basic-metadatakeys
speatzle:v5-server-settings
speatzle:v5-run-workflow
speatzle:auto-skip-integration-tests
speatzle:main
speatzle:jwt-auth
speatzle:v0.7.2
speatzle:v0.7.1
speatzle:v0.7.0
speatzle:v0.6.1
speatzle:v0.6.0
speatzle:v0.5.8
speatzle:v0.5.7
speatzle:v0.5.6
speatzle:v0.5.5
speatzle:v0.5.4
speatzle:v0.5.3
speatzle:v0.5.2
speatzle:v0.5.1
speatzle:v0.5.0
speatzle:v0.4.0
speatzle:v0.3.1
speatzle:v0.3.0
speatzle:v0.2.2
speatzle:v0.2.1
speatzle:v0.2.0
speatzle:v0.1.1
speatzle:v0.1.0
speatzle:v0.0.1

5 commits
8b00fcd497 ... 1ffa5a23bd

Author SHA1 Message Date
Samuel Lorch
1ffa5a23bd
Merge pull request #59 from passbolt/v5-schema-fixes
Some checks failed
Go / test (push) Has been cancelled
Details 
V5 schema fixes
 2025-08-11 15:53:14 +02:00
Samuel Lorch
1111e12f1e Fix Metadata Parsing for v5-totp-standalone 2025-08-11 15:40:10 +02:00
Samuel Lorch
09ecd1f23a Fix null's in schema 2025-08-11 15:39:48 +02:00
Samuel Lorch
9c9e2334dc
Merge pull request #58 from passbolt/fix-password-string-validation 
Fix resource type password-string validation
 2025-08-11 15:37:47 +02:00
Samuel Lorch
2cb39e9481 Fix resource type password-string validation 2025-08-11 15:36:01 +02:00
3 changed files with 50 additions and 47 deletions
Download patch file Download diff file Expand all files Collapse all files

72
api/schema.go
View file

@ -15,22 +15,19 @@ var ResourceSchemas = map[string]json.RawMessage{
"maxLength": 255 "maxLength": 255
}, },
"username": { "username": {
"type": "string", "type": ["string", "null"],
"maxLength": 255, "maxLength": 255
"nullable": true
}, },
"uris": { "uris": {
"type": "array", "type": "array",
"items": { "items": {
"type": "string", "type": "string",
"maxLength": 1024, "maxLength": 1024
"nullable": true
} }
}, },
"description": { "description": {
"type": "string", "type": ["string", "null"],
"maxLength": 10000, "maxLength": 10000
"nullable": true
} }
} }
}, },
@ -43,14 +40,12 @@ var ResourceSchemas = map[string]json.RawMessage{
"enum": ["PASSBOLT_SECRET_DATA"] "enum": ["PASSBOLT_SECRET_DATA"]
}, },
"password": { "password": {
"type": "string", "type": ["string", "null"],
"maxLength": 4096, "maxLength": 4096
"nullable": true
}, },
"description": { "description": {
"type": "string", "type": ["string", "null"],
"maxLength": 10000, "maxLength": 10000
"nullable": true
} }
} }
} }
@ -66,22 +61,19 @@ var ResourceSchemas = map[string]json.RawMessage{
"maxLength": 255 "maxLength": 255
}, },
"username": { "username": {
"type": "string", "type": ["string", "null"],
"maxLength": 255, "maxLength": 255
"nullable": true
}, },
"uris": { "uris": {
"type": "array", "type": "array",
"items": { "items": {
"type": "string", "type": "string",
"maxLength": 1024, "maxLength": 1024
"nullable": true
} }
}, },
"description": { "description": {
"type": "string", "type": ["string", "null"],
"maxLength": 10000, "maxLength": 10000
"nullable": true
} }
} }
}, },
@ -101,22 +93,19 @@ var ResourceSchemas = map[string]json.RawMessage{
"maxLength": 255 "maxLength": 255
}, },
"username": { "username": {
"type": "string", "type": ["string", "null"],
"maxLength": 255, "maxLength": 255
"nullable": true
}, },
"uris": { "uris": {
"type": "array", "type": "array",
"items": { "items": {
"type": "string", "type": "string",
"maxLength": 1024, "maxLength": 1024
"nullable": true
} }
}, },
"description": { "description": {
"type": "string", "type": ["string", "null"],
"maxLength": 10000, "maxLength": 10000
"nullable": true
} }
} }
}, },
@ -129,14 +118,12 @@ var ResourceSchemas = map[string]json.RawMessage{
"enum": ["PASSBOLT_SECRET_DATA"] "enum": ["PASSBOLT_SECRET_DATA"]
}, },
"password": { "password": {
"type": "string", "type": ["string", "null"],
"maxLength": 4096, "maxLength": 4096
"nullable": true
}, },
"description": { "description": {
"type": "string", "type": ["string", "null"],
"maxLength": 10000, "maxLength": 10000
"nullable": true
}, },
"totp": { "totp": {
"type": "object", "type": "object",
@ -174,23 +161,16 @@ var ResourceSchemas = map[string]json.RawMessage{
"type": "string", "type": "string",
"maxLength": 255 "maxLength": 255
}, },
"username": {
"type": "string",
"maxLength": 255,
"nullable": true
},
"uris": { "uris": {
"type": "array", "type": "array",
"items": { "items": {
"type": "string", "type": "string",
"maxLength": 1024, "maxLength": 1024
"nullable": true
} }
}, },
"description": { "description": {
"type": "string", "type": ["string", "null"],
"maxLength": 10000, "maxLength": 10000
"nullable": true
} }
} }
}, },

16
helper/resource_get.go
View file

@ -173,7 +173,21 @@ func GetResourceFromData(c *api.Client, resource api.Resource, secret api.Secret
pw = rawSecretData pw = rawSecretData
case "v5-totp-standalone": case "v5-totp-standalone":
// nothing fits into the interface in this case rawMetadata, err := GetResourceMetadata(ctx, c, &resource, &rType)
if err != nil {
return "", "", "", "", "", "", fmt.Errorf("Getting Metadata: %w", err)
}
var metadata api.ResourceMetadataTypeV5TOTPStandalone
err = json.Unmarshal([]byte(rawMetadata), &metadata)
if err != nil {
return "", "", "", "", "", "", fmt.Errorf("Parsing Decrypted Metadata: %w", err)
}
name = metadata.Name
if len(metadata.URIs) != 0 {
uri = metadata.URIs[0]
}
default: default:
return "", "", "", "", "", "", fmt.Errorf("Unknown ResourceType: %v", rType.Slug) return "", "", "", "", "", "", fmt.Errorf("Unknown ResourceType: %v", rType.Slug)
} }

9
helper/secret.go
View file

@ -11,6 +11,15 @@ import (
) )
func validateSecretData(rType *api.ResourceType, secretData string) error { func validateSecretData(rType *api.ResourceType, secretData string) error {
// TODO Remove when v4 Resources are unsupported
// with the Resource Type password-string the Secret is not json and can't be properly validated, so skip the check here
if rType.Slug == "password-string" {
if len(secretData) > 4096 {
return fmt.Errorf("password is longer than 4096")
}
return nil
}
var schemaDefinition api.ResourceTypeSchema var schemaDefinition api.ResourceTypeSchema
definition := rType.Definition definition := rType.Definition