starred/vaultwarden
1
0
Fork 0
mirror of https://github.com/dani-garcia/vaultwarden.git synced 2026-04-26 01:35:54 +03:00
Code Issues 39 Projects Releases 5 Packages Wiki Activity

[GH-ISSUE #1013] Cannot delete entries from browser extension or client applications #715

New issue
Closed
opened 2026-03-03 02:02:30 +03:00 by kerem · 5 comments
kerem commented 2026-03-03 02:02:30 +03:00
Owner
Copy link

Originally created by @sgissi on GitHub (Jun 1, 2020).
Original GitHub issue: https://github.com/dani-garcia/vaultwarden/issues/1013

Subject of the issue

Cannot delete entries from browser extension or client applications. Works fine from web vault.

Your environment

  • Bitwarden_rs version: bitwardenrs/server-postgresql:1.14.2
  • Install method: Kubernetes (official docker image for postgresql)
  • Clients used: Works - Web Vault. Does not work - Linux client version 1.18.0, Firefox extension version 1.44.2
  • Reverse proxy and version: Traefik 2.2.1
  • Version of mysql/postgresql: PostgreSQL 11.7.0

Steps to reproduce

Run bitwarden_rs server, create one entry, connect using client or web extension and delete the entry. Entry will remain, server will show a 404 error:
[2020-06-01 21:33:53][request][INFO] PUT /api/ciphers//delete
[2020-06-01 21:33:53][response][INFO] 404 Not Found

When using the Web Vault it uses the DELETE verb:
[2020-06-01 22:24:55][request][INFO] DELETE /api/ciphers/
[2020-06-01 22:24:55][response][INFO] DELETE /api/ciphers/ (delete_cipher) => 200 OK

Relevant commit

The root of the issue is that the path "put /ciphers/<uuid>/delete" is not recognized by the server. This commit fixes the issue while implementing soft delete. If that commit isn't ready for release, a simple fix is to add the relevant functions in src/api/core/ciphers.rs (plus adding them into routes() of course):

#[put("/ciphers/<uuid>/delete")]
fn delete_cipher_put(uuid: String, headers: Headers, conn: DbConn, nt: Notify) -> EmptyResult {
    _delete_cipher_by_uuid(&uuid, &headers, &conn, &nt)
}

#[put("/ciphers/<uuid>/delete-admin")]
fn delete_cipher_put_admin(uuid: String, headers: Headers, conn: DbConn, nt: Notify) -> EmptyResult {
    _delete_cipher_by_uuid(&uuid, &headers, &conn, &nt)
}

Is it possible to get a 2.14.3 released with either fix? Happy to submit PR against 2.14.2 if needed.

Originally created by @sgissi on GitHub (Jun 1, 2020). Original GitHub issue: https://github.com/dani-garcia/vaultwarden/issues/1013 ### Subject of the issue Cannot delete entries from browser extension or client applications. Works fine from web vault. ### Your environment * Bitwarden_rs version: bitwardenrs/server-postgresql:1.14.2 * Install method: Kubernetes (official docker image for postgresql) * Clients used: **Works** - Web Vault. **Does not work** - Linux client version 1.18.0, Firefox extension version 1.44.2 * Reverse proxy and version: Traefik 2.2.1 * Version of mysql/postgresql: PostgreSQL 11.7.0 ### Steps to reproduce Run bitwarden_rs server, create one entry, connect using client or web extension and delete the entry. Entry will remain, server will show a 404 error: [2020-06-01 21:33:53][request][INFO] PUT /api/ciphers/<redacted UUID>/delete [2020-06-01 21:33:53][response][INFO] 404 Not Found When using the Web Vault it uses the DELETE verb: [2020-06-01 22:24:55][request][INFO] DELETE /api/ciphers/<redacted UUID> [2020-06-01 22:24:55][response][INFO] DELETE /api/ciphers/<uuid> (delete_cipher) => 200 OK ### Relevant commit The root of the issue is that the path "put /ciphers/\<uuid\>/delete" is not recognized by the server. This [commit](https://github.com/dani-garcia/bitwarden_rs/commit/e3b00b59a7db760848f6b357fc4328081574aeac) fixes the issue while implementing soft delete. If that commit isn't ready for release, a simple fix is to add the relevant functions in src/api/core/ciphers.rs (plus adding them into routes() of course): ``` #[put("/ciphers/<uuid>/delete")] fn delete_cipher_put(uuid: String, headers: Headers, conn: DbConn, nt: Notify) -> EmptyResult { _delete_cipher_by_uuid(&uuid, &headers, &conn, &nt) } #[put("/ciphers/<uuid>/delete-admin")] fn delete_cipher_put_admin(uuid: String, headers: Headers, conn: DbConn, nt: Notify) -> EmptyResult { _delete_cipher_by_uuid(&uuid, &headers, &conn, &nt) } ``` Is it possible to get a 2.14.3 released with either fix? Happy to submit PR against 2.14.2 if needed.
kerem closed this issue 2026-03-03 02:02:30 +03:00
kerem commented 2026-03-03 02:02:31 +03:00
Author
Owner
Copy link

@sgissi commented on GitHub (Jun 1, 2020):

Forgot to mention, 1.18 was released a few days ago, all my clients got updated automatically and created the issue: https://github.com/bitwarden/desktop/releases/tag/v1.18.0

<!-- gh-comment-id:637183309 --> @sgissi commented on GitHub (Jun 1, 2020): Forgot to mention, 1.18 was released a few days ago, all my clients got updated automatically and created the issue: https://github.com/bitwarden/desktop/releases/tag/v1.18.0
kerem commented 2026-03-03 02:02:31 +03:00
Author
Owner
Copy link

@BlackDex commented on GitHub (Jun 2, 2020):

I just did a quick test, but i do not have any issues with this either with the Firefox Extension or the Desktop application.

What i do find strange is that you have an extra / there, which seem to cause an issue.

[2020-06-01 21:33:53][request][INFO] PUT /api/ciphers//delete

<!-- gh-comment-id:637437667 --> @BlackDex commented on GitHub (Jun 2, 2020): I just did a quick test, but i do not have any issues with this either with the Firefox Extension or the Desktop application. What i do find strange is that you have an extra / there, which seem to cause an issue. > [2020-06-01 21:33:53][request][INFO] PUT /api/ciphers//delete
kerem commented 2026-03-03 02:02:31 +03:00
Author
Owner
Copy link

@dani-garcia commented on GitHub (Jun 2, 2020):

He's using the numbered releases, and the latest release didn't contain the soft delete functionality, I've made a new release now containing that and the new admin page, it will still take some hours to build still.

The missing id in that request is weird, maybe @sgissi just censored it himself though.

<!-- gh-comment-id:637539236 --> @dani-garcia commented on GitHub (Jun 2, 2020): He's using the numbered releases, and the latest release didn't contain the soft delete functionality, I've made a new release now containing that and the new admin page, it will still take some hours to build still. The missing id in that request is weird, maybe @sgissi just censored it himself though.
kerem commented 2026-03-03 02:02:31 +03:00
Author
Owner
Copy link

@sgissi commented on GitHub (Jun 2, 2020):

Thank you both. Actually I replaced with <redacted> but Github didn't like the <> signs and removed it, my mistake. In retrospect, it is really just UUID, not a secret, no need to redact really. I'm using numbered releases indeed, I'll test the new images and let you know.

<!-- gh-comment-id:637558201 --> @sgissi commented on GitHub (Jun 2, 2020): Thank you both. Actually I replaced with \<redacted\> but Github didn't like the \<\> signs and removed it, my mistake. In retrospect, it is really just UUID, not a secret, no need to redact really. I'm using numbered releases indeed, I'll test the new images and let you know.
kerem commented 2026-03-03 02:02:31 +03:00
Author
Owner
Copy link

@sgissi commented on GitHub (Jun 3, 2020):

Just tested the new release and it worked great out of the box, thanks a lot!

<!-- gh-comment-id:637884301 --> @sgissi commented on GitHub (Jun 3, 2020): Just tested the new release and it worked great out of the box, thanks a lot!
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
main
revert-7033-patch-1
cached-config-operations
test_dylint
1.35.8
1.35.7
1.35.6
1.35.5
1.35.4
1.35.3
1.35.2
1.35.1
1.35.0
1.34.3
1.34.2
1.34.1
1.34.0
1.33.2
1.33.1
1.33.0
1.32.7
1.32.6
1.32.5
1.32.4
1.32.3
1.32.2
1.32.1
1.32.0
1.31.0
1.30.5
1.30.4
1.30.3
1.30.2
1.30.1
1.30.0
1.29.2
1.29.1
1.29.0
1.28.1
1.28.0
1.27.0
1.26.0
1.25.2
1.25.1
1.25.0
1.24.0
1.23.1
1.23.0
1.22.2
1.22.1
1.22.0
1.21.0
1.20.0
1.19.0
1.18.0
1.17.0
1.16.3
1.16.2
1.16.1
1.16.0
1.15.1
1.15.0
1.14.2
1.14.1
1.14
1.13.1
1.13.0
1.12.0
1.11.0
1.10.0
1.9.1
1.9.0
1.8.0
1.7.0
1.6.1
1.6.0
1.5.0
1.4.0
1.3.0
1.2.0
1.1.0
1.0.0
0.13.0
0.12.0
0.11.0
0.10.0
0.9.0
Labels
Clear labels   
SSO

   
Third party

   
better for forum

   
bug

   
bug

   
documentation

   
duplicate

   
enhancement

   
future Vault

   
future Vault

   
future Vault

   
good first issue

   
help wanted

   
low priority

   
notes

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
troubleshooting

   
wontfix
No labels
SSO
Third party
better for forum
bug
bug
documentation
duplicate
enhancement
future Vault
future Vault
future Vault
good first issue
help wanted
low priority
notes
pull-request
question
troubleshooting
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/vaultwarden#715
No description provided.