bitwarden / key-connector Goto Github PK

An agent that stores and provides cryptographic keys to Bitwarden clients.

License: Other

C# 93.17% Dockerfile 0.90% Shell 1.36% PowerShell 4.57%

key-connector's Introduction

Bitwarden Client Applications

This repository houses all Bitwarden client applications except the Mobile application.

Please refer to the Clients section of the Contributing Documentation for build instructions, recommended tooling, code style tips, and lots of other great information to get you started.

Related projects:

bitwarden/server: The core infrastructure backend (API, database, Docker, etc).
bitwarden/mobile: The mobile app vault (iOS and Android).
bitwarden/directory-connector: A tool for syncing a directory (AD, LDAP, Azure, G Suite, Okta) to an organization.

We're Hiring!

Interested in contributing in a big way? Consider joining our team! We're hiring for many positions. Please take a look at our Careers page to see what opportunities are currently open as well as what it's like to work at Bitwarden.

Contribute

Code contributions are welcome! Please commit any pull requests against the main branch. Learn more about how to contribute by reading the Contributing Guidelines. Check out the Contributing Documentation for how to get started with your first contribution.

Security audits and feedback are welcome. Please open an issue or email us privately if the report is sensitive in nature. You can read our security policy in the SECURITY.md file.

key-connector's People

Stargazers

Watchers

key-connector's Issues

Add support for ARM based Mac M1

Dockerfile currently uses an amd64 image. On Mac docker uses qemu to emulate the containers, but doesn't seem to have support for file system watching. At least that's my understanding from google this issue, see docker/for-mac#5328

Tested fix

Changing the dockerfile to use mcr.microsoft.com/dotnet/aspnet:5.0.0-buster-slim-arm64v8 fixes the issues. However YubiHSM2 does not have support for a Debian 10 ARM based OS. Could probably be solved using another .Net image.

Configuration used

      keyConnectorSettings__webVaultUri: https://localhost:8081
      keyConnectorSettings__identityServerUri: http://localhost:33657
      keyConnectorSettings__database__provider: json
      keyConnectorSettings__database__jsonFilePath: /config/database_docker.json
      keyConnectorSettings__rsaKey__provider: certificate
      keyConnectorSettings__certificate__provider: filesystem
      keyConnectorSettings__certificate__filesystemPath: /config/bwkc.pfx
      keyConnectorSettings__certificate__filesystemPassword: "{Password}"

Error message

Unhandled exception. System.IO.IOException: Function not implemented
   at System.IO.FileSystemWatcher.StartRaisingEvents()
   at System.IO.FileSystemWatcher.StartRaisingEventsIfNotDisposed()
   at System.IO.FileSystemWatcher.set_EnableRaisingEvents(Boolean value)
   at Microsoft.Extensions.FileProviders.Physical.PhysicalFilesWatcher.TryEnableFileSystemWatcher()
   at Microsoft.Extensions.FileProviders.Physical.PhysicalFilesWatcher.CreateFileChangeToken(String filter)
   at Microsoft.Extensions.FileProviders.PhysicalFileProvider.Watch(String filter)
   at Microsoft.Extensions.Configuration.FileConfigurationProvider.<.ctor>b__1_0()
   at Microsoft.Extensions.Primitives.ChangeToken.OnChange(Func`1 changeTokenProducer, Action changeTokenConsumer)
   at Microsoft.Extensions.Configuration.FileConfigurationProvider..ctor(FileConfigurationSource source)
   at Microsoft.Extensions.Configuration.Json.JsonConfigurationSource.Build(IConfigurationBuilder builder)
   at Microsoft.Extensions.Configuration.ConfigurationBuilder.Build()
   at Microsoft.Extensions.Hosting.HostBuilder.BuildAppConfiguration()
   at Microsoft.Extensions.Hosting.HostBuilder.Build()
   at Bit.KeyConnector.Program.Main(String[] args) in /home/runner/work/key-connector/key-connector/src/KeyConnector/Program.cs:line 11
qemu: uncaught target signal 6 (Aborted) - core dumped

Key-connector not working

I am using the docker-unified version (2024.2.3) and the settings for the key-connector are as follows:

ENV:

        - name: BW_ENABLE_KEY_CONNECTOR
         value: "true"
       - name: BW_KEY_CONNECTOR_INTERNAL_URL
         value: http://bitwarden-keyconnector.bitwarden.svc.cluster.local:5000

When I try to log in with SSO I get the following error:

Nginx log:

10.233.106.28 - - [14/Mar/2024:12:18:01 +0100] "GET /api/config HTTP/1.1" 200 256 "https://bitwarden.mydomian.ltd/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.3
6" "x.x.x.x"
10.233.106.28 - - [14/Mar/2024:12:18:01 +0100] "POST /identity/connect/token HTTP/1.1" 200 1479 "https://bitwarden.mydomian.ltd/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.
0 Safari/537.36" "x.x.x.x"
10.233.106.28 - - [14/Mar/2024:12:18:01 +0100] "GET /api/config HTTP/1.1" 200 256 "https://bitwarden.mydomian.ltd/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.3
6" "x.x.x.x"
10.233.106.28 - - [14/Mar/2024:12:18:01 +0100] "POST /key-connector//user-keys HTTP/1.1" 401 0 "https://bitwarden..mydomian.ltd/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0
 Safari/537.36" "x.x.x.x"
10.233.106.28 - - [14/Mar/2024:12:18:02 +0100] "GET /api/config HTTP/1.1" 200 256 "https://bitwarden..mydomian.ltd/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.3
6" "x.x.x.x"
10.233.106.28 - - [14/Mar/2024:12:22:51 +0100] "POST /identity/connect/token HTTP/1.1" 200 1368 "https://bitwarden.mydomian.ltd/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.
0 Safari/537.36" "x.x.x.x"

Key-connector log:

12:25:35 ERR] Exception occurred while processing message.
System.InvalidOperationException: IDX20803: Unable to obtain configuration from: '[PII of type 'System.String' is hidden. For more details, see https://aka.ms/IdentityModel/PII.]'.
 ---> System.IO.IOException: IDX20804: Unable to retrieve document from: '[PII of type 'System.String' is hidden. For more details, see https://aka.ms/IdentityModel/PII.]'.
 ---> System.Net.Http.HttpRequestException: The SSL connection could not be established, see inner exception.
 ---> System.IO.IOException: Unable to read data from the transport connection: Connection reset by peer.
 ---> System.Net.Sockets.SocketException (104): Connection reset by peer
   --- End of inner exception stack trace ---
   at System.Net.Sockets.Socket.AwaitableSocketAsyncEventArgs.ThrowException(SocketError error, CancellationToken cancellationToken)
   at System.Net.Sockets.Socket.AwaitableSocketAsyncEventArgs.System.Threading.Tasks.Sources.IValueTaskSource<System.Int32>.GetResult(Int16 token)
   at System.Net.Security.SslStream.<FillHandshakeBufferAsync>g__InternalFillHandshakeBufferAsync|189_0[TIOAdapter](TIOAdapter adap, ValueTask`1 task, Int32 minSize)
   at System.Net.Security.SslStream.ReceiveBlobAsync[TIOAdapter](TIOAdapter adapter)
   at System.Net.Security.SslStream.ForceAuthenticationAsync[TIOAdapter](TIOAdapter adapter, Boolean receiveFirst, Byte[] reAuthenticationData, Boolean isApm)
   at System.Net.Http.ConnectHelper.EstablishSslConnectionAsync(SslClientAuthenticationOptions sslOptions, HttpRequestMessage request, Boolean async, Stream stream, CancellationToken cancellationToken)
   --- End of inner exception stack trace ---
   at System.Net.Http.ConnectHelper.EstablishSslConnectionAsync(SslClientAuthenticationOptions sslOptions, HttpRequestMessage request, Boolean async, Stream stream, CancellationToken cancellationToken)
   at System.Net.Http.HttpConnectionPool.ConnectAsync(HttpRequestMessage request, Boolean async, CancellationToken cancellationToken)
   at System.Net.Http.HttpConnectionPool.CreateHttp11ConnectionAsync(HttpRequestMessage request, Boolean async, CancellationToken cancellationToken)
   at System.Net.Http.HttpConnectionPool.AddHttp11ConnectionAsync(HttpRequestMessage request)
   at System.Threading.Tasks.TaskCompletionSourceWithCancellation`1.WaitWithCancellationAsync(CancellationToken cancellationToken)
   at System.Net.Http.HttpConnectionPool.GetHttp11ConnectionAsync(HttpRequestMessage request, Boolean async, CancellationToken cancellationToken)
   at System.Net.Http.HttpConnectionPool.SendWithVersionDetectionAndRetryAsync(HttpRequestMessage request, Boolean async, Boolean doRequestAuth, CancellationToken cancellationToken)
   at System.Net.Http.DiagnosticsHandler.SendAsyncCore(HttpRequestMessage request, Boolean async, CancellationToken cancellationToken)
   at System.Net.Http.RedirectHandler.SendAsync(HttpRequestMessage request, Boolean async, CancellationToken cancellationToken)
   at System.Net.Http.HttpClient.<SendAsync>g__Core|83_0(HttpRequestMessage request, HttpCompletionOption completionOption, CancellationTokenSource cts, Boolean disposeCts, CancellationTokenSource pendingRequestsCts, CancellationToken originalCancellationToken)
   at Microsoft.IdentityModel.Protocols.HttpDocumentRetriever.SendAsyncAndRetryOnNetworkError(HttpClient httpClient, Uri uri)
   at Microsoft.IdentityModel.Protocols.HttpDocumentRetriever.GetDocumentAsync(String address, CancellationToken cancel)
   --- End of inner exception stack trace ---
   at Microsoft.IdentityModel.Protocols.HttpDocumentRetriever.GetDocumentAsync(String address, CancellationToken cancel)
   at Microsoft.IdentityModel.Protocols.OpenIdConnect.OpenIdConnectConfigurationRetriever.GetAsync(String address, IDocumentRetriever retriever, CancellationToken cancel)
   at Microsoft.IdentityModel.Protocols.ConfigurationManager`1.GetConfigurationAsync(CancellationToken cancel)
   --- End of inner exception stack trace ---
   at Microsoft.IdentityModel.Protocols.ConfigurationManager`1.GetConfigurationAsync(CancellationToken cancel)
   at Microsoft.AspNetCore.Authentication.JwtBearer.JwtBearerHandler.HandleAuthenticateAsync()
[12:25:35 ERR] IDX20803: Unable to obtain configuration from: '[PII of type 'System.String' is hidden. For more details, see https://aka.ms/IdentityModel/PII.]'.
System.InvalidOperationException: IDX20803: Unable to obtain configuration from: '[PII of type 'System.String' is hidden. For more details, see https://aka.ms/IdentityModel/PII.]'.
 ---> System.IO.IOException: IDX20804: Unable to retrieve document from: '[PII of type 'System.String' is hidden. For more details, see https://aka.ms/IdentityModel/PII.]'.
 ---> System.Net.Http.HttpRequestException: The SSL connection could not be established, see inner exception.
 ---> System.IO.IOException: Unable to read data from the transport connection: Connection reset by peer.
 ---> System.Net.Sockets.SocketException (104): Connection reset by peer
   --- End of inner exception stack trace ---
   at System.Net.Sockets.Socket.AwaitableSocketAsyncEventArgs.ThrowException(SocketError error, CancellationToken cancellationToken)
   at System.Net.Sockets.Socket.AwaitableSocketAsyncEventArgs.System.Threading.Tasks.Sources.IValueTaskSource<System.Int32>.GetResult(Int16 token)
   at System.Net.Security.SslStream.<FillHandshakeBufferAsync>g__InternalFillHandshakeBufferAsync|189_0[TIOAdapter](TIOAdapter adap, ValueTask`1 task, Int32 minSize)
   at System.Net.Security.SslStream.ReceiveBlobAsync[TIOAdapter](TIOAdapter adapter)
   at System.Net.Security.SslStream.ForceAuthenticationAsync[TIOAdapter](TIOAdapter adapter, Boolean receiveFirst, Byte[] reAuthenticationData, Boolean isApm)
   at System.Net.Http.ConnectHelper.EstablishSslConnectionAsync(SslClientAuthenticationOptions sslOptions, HttpRequestMessage request, Boolean async, Stream stream, CancellationToken cancellationToken)
   --- End of inner exception stack trace ---
   at System.Net.Http.ConnectHelper.EstablishSslConnectionAsync(SslClientAuthenticationOptions sslOptions, HttpRequestMessage request, Boolean async, Stream stream, CancellationToken cancellationToken)
   at System.Net.Http.HttpConnectionPool.ConnectAsync(HttpRequestMessage request, Boolean async, CancellationToken cancellationToken)
   at System.Net.Http.HttpConnectionPool.CreateHttp11ConnectionAsync(HttpRequestMessage request, Boolean async, CancellationToken cancellationToken)
   at System.Net.Http.HttpConnectionPool.AddHttp11ConnectionAsync(HttpRequestMessage request)
   at System.Threading.Tasks.TaskCompletionSourceWithCancellation`1.WaitWithCancellationAsync(CancellationToken cancellationToken)
   at System.Net.Http.HttpConnectionPool.GetHttp11ConnectionAsync(HttpRequestMessage request, Boolean async, CancellationToken cancellationToken)
   at System.Net.Http.HttpConnectionPool.SendWithVersionDetectionAndRetryAsync(HttpRequestMessage request, Boolean async, Boolean doRequestAuth, CancellationToken cancellationToken)
   at System.Net.Http.DiagnosticsHandler.SendAsyncCore(HttpRequestMessage request, Boolean async, CancellationToken cancellationToken)
   at System.Net.Http.RedirectHandler.SendAsync(HttpRequestMessage request, Boolean async, CancellationToken cancellationToken)
   at System.Net.Http.HttpClient.<SendAsync>g__Core|83_0(HttpRequestMessage request, HttpCompletionOption completionOption, CancellationTokenSource cts, Boolean disposeCts, CancellationTokenSource pendingRequestsCts, CancellationToken originalCancellationToken)
   at Microsoft.IdentityModel.Protocols.HttpDocumentRetriever.SendAsyncAndRetryOnNetworkError(HttpClient httpClient, Uri uri)
   at Microsoft.IdentityModel.Protocols.HttpDocumentRetriever.GetDocumentAsync(String address, CancellationToken cancel)
   --- End of inner exception stack trace ---
   at Microsoft.IdentityModel.Protocols.HttpDocumentRetriever.GetDocumentAsync(String address, CancellationToken cancel)
   at Microsoft.IdentityModel.Protocols.OpenIdConnect.OpenIdConnectConfigurationRetriever.GetAsync(String address, IDocumentRetriever retriever, CancellationToken cancel)
   at Microsoft.IdentityModel.Protocols.ConfigurationManager`1.GetConfigurationAsync(CancellationToken cancel)
   --- End of inner exception stack trace ---
   at Microsoft.IdentityModel.Protocols.ConfigurationManager`1.GetConfigurationAsync(CancellationToken cancel)
   at Microsoft.AspNetCore.Authentication.JwtBearer.JwtBearerHandler.HandleAuthenticateAsync()
   at Microsoft.AspNetCore.Authentication.JwtBearer.JwtBearerHandler.HandleAuthenticateAsync()
   at Microsoft.AspNetCore.Authentication.AuthenticationHandler`1.AuthenticateAsync()
   at Microsoft.AspNetCore.Authentication.AuthenticationService.AuthenticateAsync(HttpContext context, String scheme)
   at IdentityServer4.AccessTokenValidation.IdentityServerAuthenticationHandler.HandleAuthenticateAsync()
[12:25:35 INF] Bearer was not authenticated. Failure message: IDX20803: Unable to obtain configuration from: '[PII of type 'System.String' is hidden. For more details, see https://aka.ms/IdentityModel/PII.]'.
[12:25:35 INF] AuthenticationScheme: Bearer was challenged.

Key-connector env:

        - name: TZ
          value: Europe/Budapest
        - name: keyConnectorSettings__database__provider
          value: mysql
        - name: keyConnectorSettings__database__mySqlConnectionString
          value: server=mariadb-galera.mariadb.svc.cluster.local;uid=bitwarden-key;pwd=xxxxx;database=bitwardenkeyconnector
        - name: keyConnectorSettings__rsaKey__provider
          value: certificate
        - name: keyConnectorSettings__certificate__provider
          value: filesystem
        - name: keyConnectorSettings__certificate__filesystemPassword
          value: password
        - name: keyConnectorSettings__certificate__filesystemPath
          value: /etc/bitwarden/key.pfx
        - name: keyConnectorSettings__webVaultUri
          value: https://bitwarden.mydomian.ltd/
        - name: keyConnectorSettings__identityServerUri
          value: https://bitwarden.mydomian.ltd/identity/

Version: 2023,12.0

./bitwarden.sh update gives ERROR: No such service: key-connector

Running ./bitwarden.sh update gives ERROR: No such service: key-connector

sudo ./bitwarden.sh updateself

| |__ () |__ ____ _ _ __ _| | ___ _ __
| ' | | \ \ /\ / / | '__/ _ |/ _ \ '
| |) | | | \ V V / (| | | | (| | / | | |
|_./||_| _/_/ _,|| _,_|_|| ||

Open source password management solutions
Copyright 2015-2021, 8bit Solutions LLC
https://bitwarden.com, https://github.com/bitwarden

===================================================

bitwarden.sh version 1.45.2
Docker version 20.10.12, build e91ed57
docker-compose version 1.29.2, build 5becea4c

Updated self.
sudo ./bitwarden.sh update

| |__ () |__ ____ _ _ __ _| | ___ _ __
| ' | | \ \ /\ / / | '__/ _ |/ _ \ '
| |) | | | \ V V / (| | | | (| | / | | |
|_./||_| _/_/ _,|| _,_|_|| ||

Open source password management solutions
Copyright 2015-2021, 8bit Solutions LLC
https://bitwarden.com, https://github.com/bitwarden

===================================================

bitwarden.sh version 1.45.2
Docker version 20.10.12, build e91ed57
docker-compose version 1.29.2, build 5becea4c

ERROR: No such service: key-connector

Elaborate on the usage/use cases

Hi,

Could the use cases and the usage of this application be elaborated in the ReadMe.md please?

Thanks,

Dependency Dashboard

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.

Open

These updates have all been created already. Click a checkbox below to force a retry/rebase of any.

[deps]: Update nuget minor (AWSSDK.KeyManagementService, Azure.Identity, Azure.Security.KeyVault.Certificates, Azure.Security.KeyVault.Keys, Azure.Security.KeyVault.Secrets, Google.Cloud.Kms.V1, Microsoft.EntityFrameworkCore.Design, Microsoft.EntityFrameworkCore.Relational, Microsoft.EntityFrameworkCore.SqlServer, Microsoft.EntityFrameworkCore.Sqlite, MongoDB.Driver, Pomelo.EntityFrameworkCore.MySql, VaultSharp, dotnet-ef)

Detected dependencies

dockerfile

src/KeyConnector/Dockerfile

mcr.microsoft.com/dotnet/aspnet 8.0

github-actions

.github/workflows/build.yml

actions/checkout v4.1.1@b4ffde65f46336ab88eb53be808477a3936bae11

actions/checkout v4.1.1@b4ffde65f46336ab88eb53be808477a3936bae11

actions/upload-artifact v4.3.1@5d5d22a31266ced268874388b861e4b58bb5c2f3

actions/checkout v4.1.1@b4ffde65f46336ab88eb53be808477a3936bae11

Azure/login v1.6.0@e15b166166a8746d1a47596803bd8c1b595455cf

actions/download-artifact v4.1.4@c850b930e6ba138125429b7e5c93fc707a7f8427

docker/build-push-action v5.3.0@2cdde995de11925a030ce8070c3d77a52ffcf1c0

ubuntu 22.04

ubuntu 22.04

ubuntu 22.04

.github/workflows/cleanup-rc-branch.yml

Azure/login v1.6.0@e15b166166a8746d1a47596803bd8c1b595455cf

actions/checkout v4.1.1@b4ffde65f46336ab88eb53be808477a3936bae11

ubuntu 22.04

.github/workflows/release.yml

actions/checkout v4.1.1@b4ffde65f46336ab88eb53be808477a3936bae11

ncipollo/release-action v1.14.0@2c591bcc8ecdcd2db72b97d6147f871fcd833ba5

Azure/login v1.6.0@e15b166166a8746d1a47596803bd8c1b595455cf

Azure/login v1.6.0@e15b166166a8746d1a47596803bd8c1b595455cf

act10ns/slack v2.1.0@44541246747a30eb3102d87f7a4cc5471b0ffb7d

ubuntu 22.04

ubuntu 22.04

ubuntu 22.04

ubuntu 22.04

.github/workflows/version-bump.yml

actions/checkout v4.1.1@b4ffde65f46336ab88eb53be808477a3936bae11

Azure/login v1.6.0@e15b166166a8746d1a47596803bd8c1b595455cf

crazy-max/ghaction-import-gpg v6.1.0@01dd5d3ca463c7f10f7f4f7b4f177225ac661ee4

actions/checkout v4.1.1@b4ffde65f46336ab88eb53be808477a3936bae11

ubuntu 22.04

ubuntu 22.04

nuget

.config/dotnet-tools.json

dotnet-ef 8.0.2

global.json

src/KeyConnector/KeyConnector.csproj

VaultSharp 1.7.0

Serilog.Sinks.File 5.0.0

Serilog.Sinks.Console 5.0.1

Serilog.Settings.Configuration 8.0.0

Serilog.AspNetCore 8.0.1

Pomelo.EntityFrameworkCore.MySql 8.0.1

Pkcs11Interop 5.1.2

Npgsql.EntityFrameworkCore.PostgreSQL 8.0.2

MongoDB.Driver 2.22.0

Microsoft.EntityFrameworkCore.SqlServer 8.0.2

Microsoft.EntityFrameworkCore.Sqlite 8.0.2

Microsoft.EntityFrameworkCore.Relational 8.0.2

Microsoft.EntityFrameworkCore.Design 8.0.2

JsonFlatFileDataStore 2.4.2

IdentityServer4.AccessTokenValidation 3.0.1

Google.Cloud.Kms.V1 3.7.0

Azure.Storage.Blobs 12.19.1

Azure.Security.KeyVault.Secrets 4.5.0

Azure.Security.KeyVault.Keys 4.5.0

Azure.Security.KeyVault.Certificates 4.5.1

Azure.Identity 1.10.4

AWSSDK.KeyManagementService 3.7.2.6

Check this box to trigger a request for Renovate to run again on this repository

docker image is still using dotnet 6.0?

I see that Keyconnector was recently updated to use Dotnet 6.0, thank you. But I see that the "server" code and docker images are now set to use Dotnet 8.0. Is there a timetable on when Keyconnector might be updated?

Recommend Projects

React

A declarative, efficient, and flexible JavaScript library for building user interfaces.
Vue.js

🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript

TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
TensorFlow

An Open Source Machine Learning Framework for Everyone
Django

The Web framework for perfectionists with deadlines.
Laravel

A PHP framework for web artisans
D3

Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

javascript

JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
web

Some thing interesting about web. New door for the world.
server

A server is a program made to process requests and deliver data to clients.
Machine learning

Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Visualization

Some thing interesting about visualization, use data art
Game

Some thing interesting about game, make everyone happy.

Recommend Org

Facebook

We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft

Open source projects and samples from Microsoft.
Google

Google ❤️ Open Source for everyone.
Alibaba

Alibaba Open Source for everyone
D3

Data-Driven Documents codes.
Tencent

China tencent open source team.