Add new accountKeys and masterPasswordUnlock fields#6572
Merged
dani-garcia merged 2 commits intomainfrom Dec 19, 2025
Merged
Conversation
BlackDex
approved these changes
Dec 19, 2025
Contributor
|
Let me get this right, because I am not sure whether I understand this correctly. The server now sends the master key and the public/private key pair to the client? |
Owner
Author
|
The (encrypted) master key and private key were always sent at the root of the response, the only difference is now they're also sent as part of the AccountKeys object. I think the original values at the root can now be considered deprecated and will be removed in future versions of the clients. The only new addition is the public key, though I'm not sure why it's sent when it can be derived from the private key. |
Contributor
Thanks, I didn't see that in the PR changes. I should have used the uncollapse button in the UI... ;-) (This is not the first time gh's collapsed section hid important info. I have to be more aware of that. I will work on it.)
2 options: 1) the person who signed up on it, didn't know that you can get the public key from the private key 2) they want to save a few cycles not to calculate the pub key. |
2 tasks
dadezzz
pushed a commit
to dadezzz/kubernetes
that referenced
this pull request
Dec 28, 2025
…(#281) This PR contains the following updates: | Package | Update | Change | |---|---|---| | [quay.io/vaultwarden/server](https://github.com/dani-garcia/vaultwarden) | minor | `1.34.3` → `1.35.0` | --- >⚠️ **Warning** > > Some dependencies could not be looked up. Check the Dependency Dashboard for more information. --- ### Release Notes <details> <summary>dani-garcia/vaultwarden (quay.io/vaultwarden/server)</summary> ### [`v1.35.0`](https://github.com/dani-garcia/vaultwarden/releases/tag/1.35.0) [Compare Source](dani-garcia/vaultwarden@1.34.3...1.35.0) #### Notable changes - Implemented support for SSO with OpenID Connect, <https://github.com/dani-garcia/vaultwarden/wiki/Enabling-SSO-support-using-OpenId-Connect> - Updated web vault to 2025.12.0 - Added support for future mobile apps with versions 2026.1.0+ - This is the first vaultwarden release using [immutable releases](https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/immutable-releases) and release attestation! #### What's Changed - Fix multi delete slowdown by [@​BlackDex](https://github.com/BlackDex) in [#​6144](dani-garcia/vaultwarden#6144) - Perform same checks when setting kdf by [@​Timshel](https://github.com/Timshel) in [#​6141](dani-garcia/vaultwarden#6141) - SSO using OpenID Connect by [@​Timshel](https://github.com/Timshel) in [#​3899](dani-garcia/vaultwarden#3899) - Delete SSO.md by [@​dani-garcia](https://github.com/dani-garcia) in [#​6152](dani-garcia/vaultwarden#6152) - Update webauthn-rs to 0.5.x by [@​zUnixorn](https://github.com/zUnixorn) in [#​5934](dani-garcia/vaultwarden#5934) - a little cleanup after SSO merge by [@​stefan0xC](https://github.com/stefan0xC) in [#​6153](dani-garcia/vaultwarden#6153) - Fix link to point to the wiki by [@​Timshel](https://github.com/Timshel) in [#​6157](dani-garcia/vaultwarden#6157) - Fix Email 2FA for mobile apps by [@​dfunkt](https://github.com/dfunkt) in [#​6156](dani-garcia/vaultwarden#6156) - Update Rust to 1.89.0 by [@​dfunkt](https://github.com/dfunkt) in [#​6150](dani-garcia/vaultwarden#6150) - Fix several more multi select push issues by [@​BlackDex](https://github.com/BlackDex) in [#​6151](dani-garcia/vaultwarden#6151) - Fix minor typo by [@​ncguk](https://github.com/ncguk) in [#​6165](dani-garcia/vaultwarden#6165) - Update crates, fixes some yanked crates by [@​BlackDex](https://github.com/BlackDex) in [#​6167](dani-garcia/vaultwarden#6167) - Fix WebauthN issue with Software Keys by [@​BlackDex](https://github.com/BlackDex) in [#​6168](dani-garcia/vaultwarden#6168) - Fix Playwright test conf and update deps by [@​Timshel](https://github.com/Timshel) in [#​6176](dani-garcia/vaultwarden#6176) - Misc updates by [@​BlackDex](https://github.com/BlackDex) in [#​6185](dani-garcia/vaultwarden#6185) - fix typo in description of helo\_name by [@​Flottegurke](https://github.com/Flottegurke) in [#​6194](dani-garcia/vaultwarden#6194) - Fix Playwright by [@​Timshel](https://github.com/Timshel) in [#​6206](dani-garcia/vaultwarden#6206) - Switch to GHA's concurrency control by [@​dfunkt](https://github.com/dfunkt) in [#​6164](dani-garcia/vaultwarden#6164) - Make database connection pool dynamic by [@​Samoth69](https://github.com/Samoth69) in [#​6166](dani-garcia/vaultwarden#6166) - Re-add `if` check to release workflow by [@​dfunkt](https://github.com/dfunkt) in [#​6227](dani-garcia/vaultwarden#6227) - Fix Webauthn/Passkey 2FA migration/validation issues by [@​BlackDex](https://github.com/BlackDex) in [#​6190](dani-garcia/vaultwarden#6190) - refactor(config): update template, add validation by [@​tessus](https://github.com/tessus) in [#​6229](dani-garcia/vaultwarden#6229) - Show SSO\_ALLOW\_UNKNOWN\_EMAIL\_VERIFICATION in admin by [@​Timshel](https://github.com/Timshel) in [#​6235](dani-garcia/vaultwarden#6235) - Update crates, gha and web-vault by [@​BlackDex](https://github.com/BlackDex) in [#​6234](dani-garcia/vaultwarden#6234) - Fix panic around sso\_master\_password\_policy by [@​Timshel](https://github.com/Timshel) in [#​6233](dani-garcia/vaultwarden#6233) - make webauthn more optional by [@​stefan0xC](https://github.com/stefan0xC) in [#​6160](dani-garcia/vaultwarden#6160) - Fix 2fa recovery endpoint by [@​BlackDex](https://github.com/BlackDex) in [#​6240](dani-garcia/vaultwarden#6240) - update trivy-action to v0.33.0 by [@​stefan0xC](https://github.com/stefan0xC) in [#​6248](dani-garcia/vaultwarden#6248) - update web vault to v2025.9.1 and allow new policy by [@​stefan0xC](https://github.com/stefan0xC) in [#​6340](dani-garcia/vaultwarden#6340) - prevent changing collections when hide\_passwords is true by [@​stefan0xC](https://github.com/stefan0xC) in [#​6278](dani-garcia/vaultwarden#6278) - Fix `sso_user` dropped on `User::save` by [@​Timshel](https://github.com/Timshel) in [#​6262](dani-garcia/vaultwarden#6262) - Change OIDC dummy identifier by [@​Timshel](https://github.com/Timshel) in [#​6263](dani-garcia/vaultwarden#6263) - add new billing warnings endpoint by [@​stefan0xC](https://github.com/stefan0xC) in [#​6369](dani-garcia/vaultwarden#6369) - Add auth\_request pending endpoint by [@​Timshel](https://github.com/Timshel) in [#​6368](dani-garcia/vaultwarden#6368) - Fix Org identifier by [@​Timshel](https://github.com/Timshel) in [#​6364](dani-garcia/vaultwarden#6364) - add mail address change warning for invited accounts by [@​stefan0xC](https://github.com/stefan0xC) in [#​6377](dani-garcia/vaultwarden#6377) - add missing media-src directive by [@​stefan0xC](https://github.com/stefan0xC) in [#​6381](dani-garcia/vaultwarden#6381) - add seat limit for the invite dialog by [@​stefan0xC](https://github.com/stefan0xC) in [#​6371](dani-garcia/vaultwarden#6371) - \[Playwright] Improvements around node by [@​Timshel](https://github.com/Timshel) in [#​6321](dani-garcia/vaultwarden#6321) - Use Diesels MultiConnections Derive by [@​BlackDex](https://github.com/BlackDex) in [#​6279](dani-garcia/vaultwarden#6279) - Improve protected actions by [@​dani-garcia](https://github.com/dani-garcia) in [#​6411](dani-garcia/vaultwarden#6411) - Fix issue with key-rotation and emergency-access by [@​BlackDex](https://github.com/BlackDex) in [#​6421](dani-garcia/vaultwarden#6421) - Optimizations and build speedup by [@​BlackDex](https://github.com/BlackDex) in [#​6339](dani-garcia/vaultwarden#6339) - Use an older version of mariadb to prevent a panic by [@​BlackDex](https://github.com/BlackDex) in [#​6453](dani-garcia/vaultwarden#6453) - Playwright against abitrary web-vault by [@​Timshel](https://github.com/Timshel) in [#​6380](dani-garcia/vaultwarden#6380) - Fix KDF Change with new web-vault by [@​BlackDex](https://github.com/BlackDex) in [#​6458](dani-garcia/vaultwarden#6458) - Fix: admin theme emoji alignment by [@​joepduin](https://github.com/joepduin) in [#​6459](dani-garcia/vaultwarden#6459) - remove invalid emergency access dummy value by [@​stefan0xC](https://github.com/stefan0xC) in [#​6463](dani-garcia/vaultwarden#6463) - Add `pm-25373-windows-biometrics-v2` feature flag by [@​Ephemera42](https://github.com/Ephemera42) in [#​6468](dani-garcia/vaultwarden#6468) - Switch to multiple runners per arch by [@​dfunkt](https://github.com/dfunkt) in [#​6472](dani-garcia/vaultwarden#6472) - Fix icon redirect caching by [@​BlackDex](https://github.com/BlackDex) in [#​6487](dani-garcia/vaultwarden#6487) - Fix around singleorg policy by [@​Timshel](https://github.com/Timshel) in [#​6247](dani-garcia/vaultwarden#6247) - fix email as 2fa provider by [@​stefan0xC](https://github.com/stefan0xC) in [#​6473](dani-garcia/vaultwarden#6473) - Update crates and Rust version by [@​BlackDex](https://github.com/BlackDex) in [#​6485](dani-garcia/vaultwarden#6485) - Add option to prefer IPv6 resolving by [@​BlackDex](https://github.com/BlackDex) in [#​6494](dani-garcia/vaultwarden#6494) - Some small admin js/css updates by [@​BlackDex](https://github.com/BlackDex) in [#​6501](dani-garcia/vaultwarden#6501) - Update crates and workflows and some fixes by [@​BlackDex](https://github.com/BlackDex) in [#​6508](dani-garcia/vaultwarden#6508) - Fixed a typo in the default TTL value by [@​k725](https://github.com/k725) in [#​6528](dani-garcia/vaultwarden#6528) - Iterate over tags on release by [@​Timshel](https://github.com/Timshel) in [#​6518](dani-garcia/vaultwarden#6518) - Org.put\_policy type not in body anymore by [@​Timshel](https://github.com/Timshel) in [#​6514](dani-garcia/vaultwarden#6514) - Android want response property in camelCase by [@​Timshel](https://github.com/Timshel) in [#​6513](dani-garcia/vaultwarden#6513) - Fix admin invite with SSO by [@​Timshel](https://github.com/Timshel) in [#​6498](dani-garcia/vaultwarden#6498) - Improve sso auth flow by [@​Timshel](https://github.com/Timshel) in [#​6205](dani-garcia/vaultwarden#6205) - fix email as 2fa for sso by [@​stefan0xC](https://github.com/stefan0xC) in [#​6495](dani-garcia/vaultwarden#6495) - Fix release workflow by [@​BlackDex](https://github.com/BlackDex) in [#​6532](dani-garcia/vaultwarden#6532) - Further fixes for the release workflow by [@​dfunkt](https://github.com/dfunkt) in [#​6533](dani-garcia/vaultwarden#6533) - add empty /api/tasks endpoint by [@​stefan0xC](https://github.com/stefan0xC) in [#​6557](dani-garcia/vaultwarden#6557) - Revert to gzip compression by [@​dfunkt](https://github.com/dfunkt) in [#​6566](dani-garcia/vaultwarden#6566) - support UriMatchDefaults policy by [@​stefan0xC](https://github.com/stefan0xC) in [#​6570](dani-garcia/vaultwarden#6570) - Add new accountKeys and masterPasswordUnlock fields by [@​dani-garcia](https://github.com/dani-garcia) in [#​6572](dani-garcia/vaultwarden#6572) - Update crates and Rust by [@​BlackDex](https://github.com/BlackDex) in [#​6551](dani-garcia/vaultwarden#6551) - Add UserDecryption on /sync too by [@​dani-garcia](https://github.com/dani-garcia) in [#​6574](dani-garcia/vaultwarden#6574) - Update web-vault to v2025.12.0 by [@​BlackDex](https://github.com/BlackDex) in [#​6577](dani-garcia/vaultwarden#6577) - Fix posting cipher with readonly collections by [@​BlackDex](https://github.com/BlackDex) in [#​6578](dani-garcia/vaultwarden#6578) - Update crates by [@​BlackDex](https://github.com/BlackDex) in [#​6585](dani-garcia/vaultwarden#6585) - Simplify binary extraction by [@​dfunkt](https://github.com/dfunkt) in [#​6554](dani-garcia/vaultwarden#6554) - Remove unnecessary output sharing between jobs by [@​dfunkt](https://github.com/dfunkt) in [#​6555](dani-garcia/vaultwarden#6555) - Add wrapped named variants to UserDecryptionOptions by [@​dani-garcia](https://github.com/dani-garcia) in [#​6598](dani-garcia/vaultwarden#6598) #### New Contributors - [@​zUnixorn](https://github.com/zUnixorn) made their first contribution in [#​5934](dani-garcia/vaultwarden#5934) - [@​ncguk](https://github.com/ncguk) made their first contribution in [#​6165](dani-garcia/vaultwarden#6165) - [@​Flottegurke](https://github.com/Flottegurke) made their first contribution in [#​6194](dani-garcia/vaultwarden#6194) - [@​Samoth69](https://github.com/Samoth69) made their first contribution in [#​6166](dani-garcia/vaultwarden#6166) - [@​joepduin](https://github.com/joepduin) made their first contribution in [#​6459](dani-garcia/vaultwarden#6459) - [@​k725](https://github.com/k725) made their first contribution in [#​6528](dani-garcia/vaultwarden#6528) **Full Changelog**: <dani-garcia/vaultwarden@1.34.3...1.35.0> </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi42NC4xIiwidXBkYXRlZEluVmVyIjoiNDIuNjQuMSIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOltdfQ==--> Co-authored-by: Renovate Bot <renovate@zarantonello.dev> Co-committed-by: Renovate Bot <renovate@zarantonello.dev>
alexlebens
pushed a commit
to alexlebens/infrastructure
that referenced
this pull request
Dec 29, 2025
This PR contains the following updates: | Package | Update | Change | |---|---|---| | [vaultwarden/server](https://github.com/dani-garcia/vaultwarden) | minor | `1.34.3` → `1.35.0` | --- ### Release Notes <details> <summary>dani-garcia/vaultwarden (vaultwarden/server)</summary> ### [`v1.35.0`](https://github.com/dani-garcia/vaultwarden/releases/tag/1.35.0) [Compare Source](dani-garcia/vaultwarden@1.34.3...1.35.0) #### Notable changes - Implemented support for SSO with OpenID Connect, <https://github.com/dani-garcia/vaultwarden/wiki/Enabling-SSO-support-using-OpenId-Connect> - Updated web vault to 2025.12.0 - Added support for future mobile apps with versions 2026.1.0+ - This is the first vaultwarden release using [immutable releases](https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/immutable-releases) and release attestation! #### What's Changed - Fix multi delete slowdown by [@​BlackDex](https://github.com/BlackDex) in [#​6144](dani-garcia/vaultwarden#6144) - Perform same checks when setting kdf by [@​Timshel](https://github.com/Timshel) in [#​6141](dani-garcia/vaultwarden#6141) - SSO using OpenID Connect by [@​Timshel](https://github.com/Timshel) in [#​3899](dani-garcia/vaultwarden#3899) - Delete SSO.md by [@​dani-garcia](https://github.com/dani-garcia) in [#​6152](dani-garcia/vaultwarden#6152) - Update webauthn-rs to 0.5.x by [@​zUnixorn](https://github.com/zUnixorn) in [#​5934](dani-garcia/vaultwarden#5934) - a little cleanup after SSO merge by [@​stefan0xC](https://github.com/stefan0xC) in [#​6153](dani-garcia/vaultwarden#6153) - Fix link to point to the wiki by [@​Timshel](https://github.com/Timshel) in [#​6157](dani-garcia/vaultwarden#6157) - Fix Email 2FA for mobile apps by [@​dfunkt](https://github.com/dfunkt) in [#​6156](dani-garcia/vaultwarden#6156) - Update Rust to 1.89.0 by [@​dfunkt](https://github.com/dfunkt) in [#​6150](dani-garcia/vaultwarden#6150) - Fix several more multi select push issues by [@​BlackDex](https://github.com/BlackDex) in [#​6151](dani-garcia/vaultwarden#6151) - Fix minor typo by [@​ncguk](https://github.com/ncguk) in [#​6165](dani-garcia/vaultwarden#6165) - Update crates, fixes some yanked crates by [@​BlackDex](https://github.com/BlackDex) in [#​6167](dani-garcia/vaultwarden#6167) - Fix WebauthN issue with Software Keys by [@​BlackDex](https://github.com/BlackDex) in [#​6168](dani-garcia/vaultwarden#6168) - Fix Playwright test conf and update deps by [@​Timshel](https://github.com/Timshel) in [#​6176](dani-garcia/vaultwarden#6176) - Misc updates by [@​BlackDex](https://github.com/BlackDex) in [#​6185](dani-garcia/vaultwarden#6185) - fix typo in description of helo\_name by [@​Flottegurke](https://github.com/Flottegurke) in [#​6194](dani-garcia/vaultwarden#6194) - Fix Playwright by [@​Timshel](https://github.com/Timshel) in [#​6206](dani-garcia/vaultwarden#6206) - Switch to GHA's concurrency control by [@​dfunkt](https://github.com/dfunkt) in [#​6164](dani-garcia/vaultwarden#6164) - Make database connection pool dynamic by [@​Samoth69](https://github.com/Samoth69) in [#​6166](dani-garcia/vaultwarden#6166) - Re-add `if` check to release workflow by [@​dfunkt](https://github.com/dfunkt) in [#​6227](dani-garcia/vaultwarden#6227) - Fix Webauthn/Passkey 2FA migration/validation issues by [@​BlackDex](https://github.com/BlackDex) in [#​6190](dani-garcia/vaultwarden#6190) - refactor(config): update template, add validation by [@​tessus](https://github.com/tessus) in [#​6229](dani-garcia/vaultwarden#6229) - Show SSO\_ALLOW\_UNKNOWN\_EMAIL\_VERIFICATION in admin by [@​Timshel](https://github.com/Timshel) in [#​6235](dani-garcia/vaultwarden#6235) - Update crates, gha and web-vault by [@​BlackDex](https://github.com/BlackDex) in [#​6234](dani-garcia/vaultwarden#6234) - Fix panic around sso\_master\_password\_policy by [@​Timshel](https://github.com/Timshel) in [#​6233](dani-garcia/vaultwarden#6233) - make webauthn more optional by [@​stefan0xC](https://github.com/stefan0xC) in [#​6160](dani-garcia/vaultwarden#6160) - Fix 2fa recovery endpoint by [@​BlackDex](https://github.com/BlackDex) in [#​6240](dani-garcia/vaultwarden#6240) - update trivy-action to v0.33.0 by [@​stefan0xC](https://github.com/stefan0xC) in [#​6248](dani-garcia/vaultwarden#6248) - update web vault to v2025.9.1 and allow new policy by [@​stefan0xC](https://github.com/stefan0xC) in [#​6340](dani-garcia/vaultwarden#6340) - prevent changing collections when hide\_passwords is true by [@​stefan0xC](https://github.com/stefan0xC) in [#​6278](dani-garcia/vaultwarden#6278) - Fix `sso_user` dropped on `User::save` by [@​Timshel](https://github.com/Timshel) in [#​6262](dani-garcia/vaultwarden#6262) - Change OIDC dummy identifier by [@​Timshel](https://github.com/Timshel) in [#​6263](dani-garcia/vaultwarden#6263) - add new billing warnings endpoint by [@​stefan0xC](https://github.com/stefan0xC) in [#​6369](dani-garcia/vaultwarden#6369) - Add auth\_request pending endpoint by [@​Timshel](https://github.com/Timshel) in [#​6368](dani-garcia/vaultwarden#6368) - Fix Org identifier by [@​Timshel](https://github.com/Timshel) in [#​6364](dani-garcia/vaultwarden#6364) - add mail address change warning for invited accounts by [@​stefan0xC](https://github.com/stefan0xC) in [#​6377](dani-garcia/vaultwarden#6377) - add missing media-src directive by [@​stefan0xC](https://github.com/stefan0xC) in [#​6381](dani-garcia/vaultwarden#6381) - add seat limit for the invite dialog by [@​stefan0xC](https://github.com/stefan0xC) in [#​6371](dani-garcia/vaultwarden#6371) - \[Playwright] Improvements around node by [@​Timshel](https://github.com/Timshel) in [#​6321](dani-garcia/vaultwarden#6321) - Use Diesels MultiConnections Derive by [@​BlackDex](https://github.com/BlackDex) in [#​6279](dani-garcia/vaultwarden#6279) - Improve protected actions by [@​dani-garcia](https://github.com/dani-garcia) in [#​6411](dani-garcia/vaultwarden#6411) - Fix issue with key-rotation and emergency-access by [@​BlackDex](https://github.com/BlackDex) in [#​6421](dani-garcia/vaultwarden#6421) - Optimizations and build speedup by [@​BlackDex](https://github.com/BlackDex) in [#​6339](dani-garcia/vaultwarden#6339) - Use an older version of mariadb to prevent a panic by [@​BlackDex](https://github.com/BlackDex) in [#​6453](dani-garcia/vaultwarden#6453) - Playwright against abitrary web-vault by [@​Timshel](https://github.com/Timshel) in [#​6380](dani-garcia/vaultwarden#6380) - Fix KDF Change with new web-vault by [@​BlackDex](https://github.com/BlackDex) in [#​6458](dani-garcia/vaultwarden#6458) - Fix: admin theme emoji alignment by [@​joepduin](https://github.com/joepduin) in [#​6459](dani-garcia/vaultwarden#6459) - remove invalid emergency access dummy value by [@​stefan0xC](https://github.com/stefan0xC) in [#​6463](dani-garcia/vaultwarden#6463) - Add `pm-25373-windows-biometrics-v2` feature flag by [@​Ephemera42](https://github.com/Ephemera42) in [#​6468](dani-garcia/vaultwarden#6468) - Switch to multiple runners per arch by [@​dfunkt](https://github.com/dfunkt) in [#​6472](dani-garcia/vaultwarden#6472) - Fix icon redirect caching by [@​BlackDex](https://github.com/BlackDex) in [#​6487](dani-garcia/vaultwarden#6487) - Fix around singleorg policy by [@​Timshel](https://github.com/Timshel) in [#​6247](dani-garcia/vaultwarden#6247) - fix email as 2fa provider by [@​stefan0xC](https://github.com/stefan0xC) in [#​6473](dani-garcia/vaultwarden#6473) - Update crates and Rust version by [@​BlackDex](https://github.com/BlackDex) in [#​6485](dani-garcia/vaultwarden#6485) - Add option to prefer IPv6 resolving by [@​BlackDex](https://github.com/BlackDex) in [#​6494](dani-garcia/vaultwarden#6494) - Some small admin js/css updates by [@​BlackDex](https://github.com/BlackDex) in [#​6501](dani-garcia/vaultwarden#6501) - Update crates and workflows and some fixes by [@​BlackDex](https://github.com/BlackDex) in [#​6508](dani-garcia/vaultwarden#6508) - Fixed a typo in the default TTL value by [@​k725](https://github.com/k725) in [#​6528](dani-garcia/vaultwarden#6528) - Iterate over tags on release by [@​Timshel](https://github.com/Timshel) in [#​6518](dani-garcia/vaultwarden#6518) - Org.put\_policy type not in body anymore by [@​Timshel](https://github.com/Timshel) in [#​6514](dani-garcia/vaultwarden#6514) - Android want response property in camelCase by [@​Timshel](https://github.com/Timshel) in [#​6513](dani-garcia/vaultwarden#6513) - Fix admin invite with SSO by [@​Timshel](https://github.com/Timshel) in [#​6498](dani-garcia/vaultwarden#6498) - Improve sso auth flow by [@​Timshel](https://github.com/Timshel) in [#​6205](dani-garcia/vaultwarden#6205) - fix email as 2fa for sso by [@​stefan0xC](https://github.com/stefan0xC) in [#​6495](dani-garcia/vaultwarden#6495) - Fix release workflow by [@​BlackDex](https://github.com/BlackDex) in [#​6532](dani-garcia/vaultwarden#6532) - Further fixes for the release workflow by [@​dfunkt](https://github.com/dfunkt) in [#​6533](dani-garcia/vaultwarden#6533) - add empty /api/tasks endpoint by [@​stefan0xC](https://github.com/stefan0xC) in [#​6557](dani-garcia/vaultwarden#6557) - Revert to gzip compression by [@​dfunkt](https://github.com/dfunkt) in [#​6566](dani-garcia/vaultwarden#6566) - support UriMatchDefaults policy by [@​stefan0xC](https://github.com/stefan0xC) in [#​6570](dani-garcia/vaultwarden#6570) - Add new accountKeys and masterPasswordUnlock fields by [@​dani-garcia](https://github.com/dani-garcia) in [#​6572](dani-garcia/vaultwarden#6572) - Update crates and Rust by [@​BlackDex](https://github.com/BlackDex) in [#​6551](dani-garcia/vaultwarden#6551) - Add UserDecryption on /sync too by [@​dani-garcia](https://github.com/dani-garcia) in [#​6574](dani-garcia/vaultwarden#6574) - Update web-vault to v2025.12.0 by [@​BlackDex](https://github.com/BlackDex) in [#​6577](dani-garcia/vaultwarden#6577) - Fix posting cipher with readonly collections by [@​BlackDex](https://github.com/BlackDex) in [#​6578](dani-garcia/vaultwarden#6578) - Update crates by [@​BlackDex](https://github.com/BlackDex) in [#​6585](dani-garcia/vaultwarden#6585) - Simplify binary extraction by [@​dfunkt](https://github.com/dfunkt) in [#​6554](dani-garcia/vaultwarden#6554) - Remove unnecessary output sharing between jobs by [@​dfunkt](https://github.com/dfunkt) in [#​6555](dani-garcia/vaultwarden#6555) - Add wrapped named variants to UserDecryptionOptions by [@​dani-garcia](https://github.com/dani-garcia) in [#​6598](dani-garcia/vaultwarden#6598) #### New Contributors - [@​zUnixorn](https://github.com/zUnixorn) made their first contribution in [#​5934](dani-garcia/vaultwarden#5934) - [@​ncguk](https://github.com/ncguk) made their first contribution in [#​6165](dani-garcia/vaultwarden#6165) - [@​Flottegurke](https://github.com/Flottegurke) made their first contribution in [#​6194](dani-garcia/vaultwarden#6194) - [@​Samoth69](https://github.com/Samoth69) made their first contribution in [#​6166](dani-garcia/vaultwarden#6166) - [@​joepduin](https://github.com/joepduin) made their first contribution in [#​6459](dani-garcia/vaultwarden#6459) - [@​k725](https://github.com/k725) made their first contribution in [#​6528](dani-garcia/vaultwarden#6528) **Full Changelog**: <dani-garcia/vaultwarden@1.34.3...1.35.0> </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi42Ni45IiwidXBkYXRlZEluVmVyIjoiNDIuNjYuOSIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOlsiaW1hZ2UiXX0=--> Reviewed-on: https://gitea.alexlebens.dev/alexlebens/infrastructure/pulls/2946 Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net> Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
These fields are included in the login response now, and new versions of the mobile apps will require them.
I've also bumped the server version as I believe that the mobile apps will require server version to be >= 2025.8.0, though I haven't seen that in code anywhere yet.