[PR #173] [MERGED] Implement poor man's invitation via Organization invitation #3818

New Issue

Closed

opened 2025-10-09 18:30:43 +03:00 by OVERLORD · 0 comments

OVERLORD commented 2025-10-09 18:30:43 +03:00

Owner

Copy Link

📋 Pull Request Information

Original PR: https://github.com/dani-garcia/vaultwarden/pull/173
Author: @mprasil
Created: 9/10/2018
Status: ✅ Merged
Merged: 9/11/2018
Merged by: @dani-garcia

Base: master ← Head: poormans_invites

---

📝 Commits (2)

• ec05f14 Implement poor man's invitation via Organization invitation
• c1cd4d9 Modify User::new to be keyless and paswordless

📊 Changes

10 files changed (+155 additions, -39 deletions)

View changed files

📝 README.md (+16 -1)
➕ migrations/2018-09-10-111213_add_invites/down.sql (+1 -0)
➕ migrations/2018-09-10-111213_add_invites/up.sql (+3 -0)
📝 src/api/core/accounts.rs (+26 -7)
📝 src/api/core/organizations.rs (+44 -24)
📝 src/db/models/mod.rs (+1 -1)
📝 src/db/models/organization.rs (+8 -1)
📝 src/db/models/user.rs (+48 -5)
📝 src/db/schema.rs (+6 -0)
📝 src/main.rs (+2 -0)

📄 Description

This should allow invitation-only registration via Organization invitations. The way it works follows the suggested approach outlined in #40. When Admin/Owner invites user with an email that is not found, a new record in invitations table is created. At the same time an User is created with random password and key generated just as a "placeholder".

When user tries to register, they will be allowed to do so even if SIGNUPS_ALLOWED is set to false if their email is in the invitations table.

This should also allow user to register without the placeholder User already being present, which would accommodate some external integration like the one suggested by @ViViDboarder. But we'd have to document that kind of usage.

---

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/dani-garcia/vaultwarden/pull/173 **Author:** [@mprasil](https://github.com/mprasil) **Created:** 9/10/2018 **Status:** ✅ Merged **Merged:** 9/11/2018 **Merged by:** [@dani-garcia](https://github.com/dani-garcia) **Base:** `master` ← **Head:** `poormans_invites` --- ### 📝 Commits (2) - [`ec05f14`](https://github.com/dani-garcia/vaultwarden/commit/ec05f14f5a6bfb598252744a27332dea3fae5944) Implement poor man's invitation via Organization invitation - [`c1cd4d9`](https://github.com/dani-garcia/vaultwarden/commit/c1cd4d9a6bfd1e588852e3ec48288efcbc77c71c) Modify User::new to be keyless and paswordless ### 📊 Changes **10 files changed** (+155 additions, -39 deletions) <details> <summary>View changed files</summary> 📝 `README.md` (+16 -1) ➕ `migrations/2018-09-10-111213_add_invites/down.sql` (+1 -0) ➕ `migrations/2018-09-10-111213_add_invites/up.sql` (+3 -0) 📝 `src/api/core/accounts.rs` (+26 -7) 📝 `src/api/core/organizations.rs` (+44 -24) 📝 `src/db/models/mod.rs` (+1 -1) 📝 `src/db/models/organization.rs` (+8 -1) 📝 `src/db/models/user.rs` (+48 -5) 📝 `src/db/schema.rs` (+6 -0) 📝 `src/main.rs` (+2 -0) </details> ### 📄 Description This should allow invitation-only registration via Organization invitations. The way it works follows the suggested approach [outlined](https://github.com/dani-garcia/bitwarden_rs/issues/40#issue-331759674) in #40. When Admin/Owner invites user with an email that is not found, a new record in `invitations` table is created. At the same time an `User` is created with random password and key generated just as a "placeholder". When user tries to register, they will be allowed to do so even if SIGNUPS_ALLOWED is set to false if their email is in the invitations table. This should also allow user to register without the placeholder `User` already being present, which would accommodate some external integration like the one [suggested](https://github.com/dani-garcia/bitwarden_rs/issues/40#issuecomment-405399443) by @ViViDboarder. But we'd have to document that kind of usage. --- _{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

OVERLORD added the pull-request label 2025-10-09 18:30:43 +03:00

OVERLORD closed this issue 2025-10-09 18:30:44 +03:00

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

test_dylint

1.34.3

1.34.2

1.34.1

1.34.0

1.33.2

1.33.1

1.33.0

1.32.7

1.32.6

1.32.5

1.32.4

1.32.3

1.32.2

1.32.1

1.32.0

1.31.0

1.30.5

1.30.4

1.30.3

1.30.2

1.30.1

1.30.0

1.29.2

1.29.1

1.29.0

1.28.1

1.28.0

1.27.0

1.26.0

1.25.2

1.25.1

1.25.0

1.24.0

1.23.1

1.23.0

1.22.2

1.22.1

1.22.0

1.21.0

1.20.0

1.19.0

1.18.0

1.17.0

1.16.3

1.16.2

1.16.1

1.16.0

1.15.1

1.15.0

1.14.2

1.14.1

1.14

1.13.1

1.13.0

1.12.0

1.11.0

1.10.0

1.9.1

1.9.0

1.8.0

1.7.0

1.6.1

1.6.0

1.5.0

1.4.0

1.3.0

1.2.0

1.1.0

1.0.0

0.13.0

0.12.0

0.11.0

0.10.0

0.9.0

Labels

Clear labels

better for forum

bug

bug

bug

documentation

duplicate

enhancement

future Vault

good first issue

help wanted

low priority

notes

pull-request

Mirrored from GitHub Pull Request

question

SSO

Third party

troubleshooting

troubleshooting

wontfix

No Label pull-request

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

OVERLORD

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: starred/vaultwarden#3818