137 Commits (254277a829cdbf6244506085f342654986a76e33)

Author SHA1 Message Date
bors[bot] fc1a663da2
Merge #1754
1754: centralize Webmail authentication behind the admin panel (SSO) r=mergify[bot] a=nextgens

## What type of PR?

Enhancement: it centralizes the authentication of webmails to the admin interface.

## What does this PR do?

It implements the glue required for webmails to do SSO using the admin interface.
One of the main advantages of centralizing things this way is that it reduces significantly the attack surface available to an unauthenticated attacker (no webmail access until there is a valid Flask session).

Others include the ability to implement 2FA down the line and rate-limit things as required.

### Related issue(s)
- #783

## Prerequistes
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [x] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/guide.html#changelog) entry file.


Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
4 years ago
parisni a9548e4cbd Remove mailu/roundcube shared host 4 years ago
parisni 5386e33af3 Reformat python 4 years ago
parisni 49c5c0eba6 Split mailu / roundcube db config
There is no reason to share the flavor since at least the dbname shall be different.
4 years ago
Florent Daigniere dd3d03f06d Merge remote-tracking branch 'upstream/master' into webmail-sso 5 years ago
bors[bot] 0f8d2077a5
Merge #1691
1691: update webmails to PHP 7.4 r=mergify[bot] a=lub

## What type of PR?

update

## What does this PR do?

### Related issue(s)

## Prerequistes
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [ ] In case of feature or enhancement: documentation updated accordingly
- [ ] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/guide.html#changelog) entry file.



I think it's a minor change, which needs no changelog.

I've tested rainloop, would be great if someone could test roundcube, because I don't use it.

Co-authored-by: lub <git@lubiland.de>
5 years ago
bors[bot] cca4b50915
Merge #1607
1607: _FILE variables for Docker swarm secrets r=mergify[bot] a=lub

## What type of PR?

enhancement

## What does this PR do?

This PR enables usage of DB_PW_FILE and SECRET_KEY_FILE instead of DB_PW and SECRET_KEY to load these values from files instead of supplying them directly. That way it's possible to use Docker secrets.

### Related issue(s)


## Prerequistes
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [x] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/guide.html#changelog) entry file.


Co-authored-by: lub <git@lubiland.de>
5 years ago
Florent Daigniere e8f70c12dc avoid a warning 5 years ago
Florent Daigniere 80f939cf1a Revert to the old behaviour when ADMIN=false 5 years ago
Florent Daigniere 2cdee8d18e Make roundcube use internal auth 5 years ago
ronivay eb0dc7f90a disable php version expose 5 years ago
lub 8dd5dac3ed update roundcube to php 7.4 5 years ago
lub 02cfe326d3 support using files for SECRET_KEY and DB_PW
this enables usage of e.g. docker swarm secrets instead of exposing the
passwords directly via environment variables

just use DB_PW_FILE and SECRET_KEY_FILE instead of DB_PW and SECRET_KEY
5 years ago
Thomas Sänger e8eaad6c88
update roundcube 5 years ago
bors[bot] ddac2672fc
Merge #1338
1338: Add GPG to Roundcube r=mergify[bot] a=PhilRW

The web UI was complaining that it couldn't find the GPG binary. Turns out it wasn't installed.

## What type of PR?

bug fix

## What does this PR do?

Adds GPG binary to Roundcube

Co-authored-by: Philip Rosenberg-Watt <PhilRW@users.noreply.github.com>
Co-authored-by: Dario Ernst <github@kanojo.de>
6 years ago
bors[bot] 0469e96f8e
Merge #1298
1298: Added carddav-plugin for roundcube webmail r=ofthesun9 a=sholl

## Feature

This PR enables the carddav contacts plugin for integration remote contact-repositories based on CardDAV.

## What does this PR do?

This PR enables the carddav contacts plugin for integration remote contact-repositories based on CardDAV.

### Related issue(s)
- Related #1230, at least for CardDAV.


## Prerequistes
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [x] In case of feature or enhancement: documentation updated accordingly (not needed since the plugins of webmail is not mentioned in the docs.)
- [x] Changelog-entry added


Co-authored-by: Stephan Holl <stephan@holl-land.de>
6 years ago
TheLegend875 519600a78b Set From header for delivery reports
closes #1381
6 years ago
Michael Wyraz 12667c70f6 Fix roundcube permissions, tail correct log 6 years ago
Dario Ernst 4d475f4e69
Merge branch 'master' into patch-1 6 years ago
bors[bot] e41b072938
Merge #1268
1268: Roundcube db r=Nebukadneza a=micw

## What type of PR?

feature

## What does this PR do?

- makes roundcube work with mysql
- runs db init/upgrade scripts on startup
- redirects roundcube logs to stdout

### Related issue(s)
- preparations to solve #1226
- closes #1157 (side effect ;-) )

## Prerequistes

- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/guide.html#changelog) entry file.


Co-authored-by: Michael Wyraz <michael@wyraz.de>
Co-authored-by: micw <michael@wyraz.de>
6 years ago
Thomas Sänger 5e2d0b78b6
Update Roundcube to 1.4.3 6 years ago
micw e08f4ab7a9
Fix wrong psql lib name 6 years ago
micw b4d81f833d
Add pdo_pgsql to Dockerfile 6 years ago
Philip Rosenberg-Watt 7a552f02c3 Add gpg to Roundcube
The web UI was complaining that it couldn't find the GPG binary. Turns out it wasn't installed.
6 years ago
Michael Wyraz fe09cf5705 Default to DB_FLAVOR/DB_HOST if ROUNDCUBE_DB_FLAVOR/ROUNDCUBE_DB_HOST is not set 6 years ago
Michael Wyraz 8242ca150d Create/update database on startup 6 years ago
Michael Wyraz 982c93e3a2 Print roundcube error log to stdout 6 years ago
Michael Wyraz 06926561e2 Install php-mysql on roundcube container 6 years ago
Michael Wyraz 9b10e938cf Make roundcube db configurable 6 years ago
hoellen 94bfd7770b Update Roundcube to 1.4.2 6 years ago
Stephan Holl a22e8eb0c5 Added carddav-Plugin for roundcube. 6 years ago
bors[bot] 8fb3c688e7
Merge #1267
1267: Update roundcube to 1.4.0 and enable new elastic skin r=hoellen a=hoellen

## What type of PR?
enhancement

## What does this PR do?
This PR brings the new roundcube 1.4.0 release with the new elastic skin.
![grafik](https://user-images.githubusercontent.com/11299996/69373290-c86cd680-0ca3-11ea-8dd5-d76beafc65a6.png)
![grafik](https://user-images.githubusercontent.com/11299996/69373358-e6d2d200-0ca3-11ea-8b92-3b8a528eb6c0.png)


As an idea we could integrate the Mailu logo in a next step to customize the webmail client a bit.

## Prerequistes
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [x] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/guide.html#changelog) entry file.


Co-authored-by: hoellen <dev@hoellen.eu>
6 years ago
Michael Wyraz 09ee3ce95c Install py3-multidict from repository before installing socrate to avoid the need of gcc during build 6 years ago
hoellen 30d924b2c3 Update Roundcube to 1.4.1 6 years ago
hoellen fc320028a9 Update roundcube to 1.4.0 and enable new skin 6 years ago
Emil Petersson 291db780d0 Do not override values in /usr/local/etc/php/conf.d/roundcube.ini 6 years ago
bors[bot] 0417c791ff
Merge #985
985: Permit raspberry pi (and other architectures) builds r=mergify[bot] a=abondis

## What type of PR?

Enhancement

## What does this PR do?

Add an option to select base images and permit building for different CPU architectures.

### Related issue(s)
N/A

## Prerequistes

- [X] documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/guide.html#changelog) entry file.


Co-authored-by: Aurélien Bondis <aurelien.bondis@gmail.com>
Co-authored-by: Aurelien <aurelien.bondis@gmail.com>
6 years ago
Aurélien Bondis 34079244a6 fix ARG positions 6 years ago
Thomas Sänger 56efc46af8
update roundcube 1.3.10 6 years ago
Aurélien Bondis e1a4bf32a6 only insert qemu binary if building for arm 6 years ago
Aurélien Bondis 124b1d4c71 rebase and update for 3.10, avoid adding qemu file to x86 images 6 years ago
hoellen 9de5dc2592 Use python package socrate instead of Mailustart 6 years ago
Dario Ernst 1dbda71401 Adapt shared layer conf to now really-missing mailustart in admin (after merging webpack) 6 years ago
Dario Ernst 0306be1eed Re-add missing MailuStar in admin
It turns out we were all blind and admin *does* use MailuStart
6 years ago
Dario Ernst 53f754f5ac Remove MailuStart from admin and correct layer-sharing comments 6 years ago
Dario Ernst 0144bb5974 Add missing libzip dependency for new php modules in roundcube 6 years ago
Dario Ernst a253ca47fe Use official Mailu/MailuStart 6 years ago
Reto Glauser 09784afcc3 update to php 7.3 6 years ago
hoellen c155823ec8 update roundcube 1.3.9 7 years ago
Ionut Filip 004a431e97
Change to mailustart functions 7 years ago
mergify[bot] f72e13964d
Merge pull request #806 from guruevi/patch-1
Allow for multiple identities
7 years ago
Tim Möhlmann 049ca9941f
Cleanup syntax and fix typo 7 years ago
Tim Möhlmann 7d01bb2a4d
LOG_LEVEL docs and changelog entry 7 years ago
Tim Möhlmann b04a9d1c28
Implement debug logging for template rendering 7 years ago
guruevi 66e4c9bb28
Allow for multiple identities
Mailu is already set up to disallow non-existing identities at the SMTP level. People can already set up identities on external email clients. This should allow users to set up multiple identities within Roundcube
7 years ago
Daniel Huber fa5161b044
Disable ServerSignature of apache2 servers in rainloop and roundcube 7 years ago
Ionut Filip 94edb48f08 Dynamic attachment size 7 years ago
Tim Möhlmann 42e2dbe35d
Standarize image by using shared / similair layers 7 years ago
Tim Möhlmann 903bb70c5b
Merge remote-tracking branch 'upstream/master' into standarize-images 7 years ago
Thomas Sänger 7125077dec
Update roundcube 7 years ago
Ionut Filip 8a44a44688
Merge branch 'master' into feat-startup 7 years ago
Ionut Filip 1187cac5e1 Finished up switching from .sh to .py 7 years ago
Thomas Sänger 39272ab05c
add healthcheck for http services 7 years ago
Thomas Sänger f2259c3302
reduce webmail image-layers/sizes 7 years ago
kaiyou 2cba045013 Explicitely declare required volumes, fixes #568 7 years ago
Thomas Sänger cbaac01790
remove unused dependencies 7 years ago
Thomas Sänger a684739b9c
update to PHP 7.2 and remove mcrypt
removed mcrypt because Rouncube uses openssl exclusively since version 1.2 and mcrypt was removed from PHP 7.2
7 years ago
Thomas Sänger 89c55ba8fe
use safer cipher in roundcube
"Default is set for backward compatibility to DES-EDE3-CBC,
but you can choose e.g. AES-256-CBC which we consider a better choice."

https://github.com/roundcube/roundcubemail/blob/master/config/defaults.inc.php#L512
7 years ago
kaiyou d52d01924a
Merge pull request #540 from d-fens/patch-1
[Security] Update Roundcube to 1.3.7
7 years ago
d-fens 14a6cfb5c6
[Security] Update Roundcube to 1.3.7
https://github.com/roundcube/roundcubemail/releases/tag/1.3.7
7 years ago
Michal Prihoda 147a1359cd Fixed libpng12-dev dependency, called libpng-dev now. 7 years ago
Mildred Ki'Lya b7ece9f9b8 roundcube: fix host parametrization
Roundcube can be parametrized so it can take a different hostname than
'front' or 'imap' to connect to the mail servers through environment
variables. Unfortunately, this was not correct and in PHP a `||`
operator always returns a boolean. It did not work as expected.

Instead use the ternary operator `:?` that works in all cases.
7 years ago
Mildred Ki'Lya ae8c9f5a6b Add various environment variables to allow running outside of docker-compose 8 years ago
Scott 386a02588b [Security] Update Roundcube to 1.3.6
Fixes a security issue in roundcube.  May also fix the last comment in #391.
8 years ago
kaiyou 31b887807a Enable enigma for testing in Roundcube, fixes #391 8 years ago
kaiyou 8903cb1367 Update Roundcube to 1.3.4 8 years ago
Arnie 9dfb2b8f2c Fixes the inability to upload attachments from roundcube #365 8 years ago
kaiyou 34d88144b2 Set the temp directory for Roundcube, related to #365 8 years ago
kaiyou bbef3b651e Roundcube is now using php7, update the htaccess, fixes #366 8 years ago
kaiyou 7f92bfd6b6 Install the php zip extension for roundcube, fixes #364 8 years ago
Greg Fitzgerald 7594226c50 Fix copy/paste failure 8 years ago
Greg Fitzgerald bbf0a9a61c This sets the max attachment size in roundcube
I used the php.ini from the rainloop folder, so they are both set to
25MB.
8 years ago
Thomas Sänger c0fc9b045b
bump roundcube version (security update) 8 years ago
Thomas Sänger 352d77bf33
upgrade php for roundcube 8 years ago
kaiyou 652ca769dc Allow authentication from webmail directly, fixes #308 8 years ago
kaiyou f943dc85a2 Update webmails 8 years ago
kaiyou f22194d78b Rename the webmails directory 8 years ago