372 Commits (473a2d80a7a8caf5750d9a1a9622829a1b952130)

Author SHA1 Message Date
Ionut Filip 8fc2846924 Added regex validation for alias username 6 years ago
Tim Möhlmann 3c4ee1b31e
Merge pull request #743 from kaiyou/master
Fixes #738 regarding application context
6 years ago
ofthesun9 97b3a85090
Merge pull request #737 from hoellen/fix-alias-match-behaviour
fix alias match behaviour
6 years ago
mergify-bot 09a50b6cfc Merge branch 'master' into 'master' 6 years ago
kaiyou 4060ac2223 Remove some forgotten debugging 6 years ago
kaiyou 087841d5b7 Fix the way we handle the application context
The init script was pushing an application context, which maked
flask.g global and persisted across requests. This was evaluated
to have a minimal security impact.

This explains/fixes #738: flask_wtf caches the csrf token in the
application context to have a single token per request, and only
sets the session attribute after the first generation.
6 years ago
kaiyou b5f51b0e2e Update python dependencies 6 years ago
kaiyou 8707b0fcd7 Use a dictionary of db connection string templates 6 years ago
kaiyou 19f18e2240 Lowercase relays as well as other tables 6 years ago
kaiyou 7e388e472a Handle relay name as an Idna domain 6 years ago
kaiyou 871aa14c9a Lowercase every domain name and email 6 years ago
kaiyou 3df9b3962d Add default columns to the configuration table 6 years ago
kaiyou b88f61f183 Name all constraints when creating them
Prefious commit set the constraint names for existing databases.
New databases can now have named constraints from the ground up.
6 years ago
kaiyou b8282b1d46 Support named constraints for multiple backends
Supporting multiple backends requires that specific sqlite
collations are not used, thus lowercase is applied to all non
case-sensitive columns. However, lowercasing the database requires
temporary disabling foreign key constraints, which is not possible
on SQLite and requires we specify the constraint names.

This migration specific to sqlite and postgresql drops every
constraint, whether it is named or not, and recreates all of them
with known names so we can later disable them.
6 years ago
kaiyou e022513a94 Fix support for postgres and mysql 6 years ago
kaiyou a881a1a839 Revert "Make current migrations work with postgresql"
This reverts commit 9b9f3731f6.
6 years ago
kaiyou 76925e82f3 Revert "Implement CIText as NOCASE alternative in postgresql"
This reverts commit 0f3c1b9d15.
6 years ago
kaiyou f52ae5535c Revert "Created function for returning email type"
This reverts commit 436055f02c.
6 years ago
kaiyou f6520eace6 Merge branch 'feat-psql-support' of https://github.com/usrpro/Mailu into usrpro-feat-psql-support 6 years ago
hoellen 8fe9e695f3 prefer non-wildcard aliases over wildcard aliases 6 years ago
hoellen 79768c09f6 fix alias matching behaviour 6 years ago
Tim Möhlmann 8172f3eab8
Move the Mailu Docker network to a fixed subnet.
This will make network configuration and host based authentication
more robust, across different deployment platforms.
The options `RELAYNETS` and`POD_ADDRESS_RANGE` are kept for compatibility.
However, their usage have become optional.
6 years ago
kaiyou b6aaf57be1 Merge branch 'refactor-config' of github.com:kaiyou/mailu into refactor-config 6 years ago
kaiyou d0f07984b0 Merge remote-tracking branch 'upstream/master' into refactor-config 6 years ago
mergify[bot] 2d4bac03ad
Merge pull request #723 from usrpro/clean-healthcheck-logs
Admin: Prevent redirects during health checking
6 years ago
mergify[bot] a382f74680
Merge pull request #705 from usrpro/fix-recaptcha
Fix recaptcha
6 years ago
mergify[bot] 37027cfce7
Merge pull request #633 from kaiyou/fix-sender-checks
Improve sender checks
6 years ago
Tim Möhlmann d18cf7cb25
Prevent redirects during health checking 6 years ago
Tim Möhlmann c9df311a0d
Set forward_destination to an empty list
The value of `None` resulted in an error, since a list was expected.
6 years ago
Tim Möhlmann eff6c34632
Catch asterisk before resolve_domain
Asterisk results in IDNA error and a 500 return code.
6 years ago
Ionut Filip 7b8835070d Added tenacity retry fir migrations connection 6 years ago
David Rothera 88c174fb7a Query alternative table for domain matches
At present postfix checks this view for matches in the domain table and is used to accept/deny messages sent into it however it never checks for matches in the alternative table.

Fixes #718
6 years ago
Ionut Filip 436055f02c Created function for returning email type 6 years ago
Tim Möhlmann 47a3fd47b5
Fix DB_FLAVOR condition testing for models.py 6 years ago
Tim Möhlmann 0f3c1b9d15
Implement CIText as NOCASE alternative in postgresql 6 years ago
Tim Möhlmann 9b9f3731f6
Make current migrations work with postgresql 6 years ago
Tim Möhlmann 8bdc0c71af
Allow for setting a different DB flavor 6 years ago
Ionut Filip fed7146873 Captcha check on signup form 6 years ago
Tim Möhlmann 4783e61693
Fix password context
Fixes the following error:
```
admin_1      | [2018-11-09 09:44:10,533] ERROR in app: Exception on /internal/auth/email [GET]
admin_1      | Traceback (most recent call last):
admin_1      |   File "/usr/lib/python3.6/site-packages/flask/app.py", line 2292, in wsgi_app
admin_1      |     response = self.full_dispatch_request()
admin_1      |   File "/usr/lib/python3.6/site-packages/flask/app.py", line 1815, in full_dispatch_request
admin_1      |     rv = self.handle_user_exception(e)
admin_1      |   File "/usr/lib/python3.6/site-packages/flask/app.py", line 1718, in handle_user_exception
admin_1      |     reraise(exc_type, exc_value, tb)
admin_1      |   File "/usr/lib/python3.6/site-packages/flask/_compat.py", line 35, in reraise
admin_1      |     raise value
admin_1      |   File "/usr/lib/python3.6/site-packages/flask/app.py", line 1813, in full_dispatch_request
admin_1      |     rv = self.dispatch_request()
admin_1      |   File "/usr/lib/python3.6/site-packages/flask/app.py", line 1799, in dispatch_request
admin_1      |     return self.view_functions[rule.endpoint](**req.view_args)
admin_1      |   File "/usr/lib/python3.6/site-packages/flask_limiter/extension.py", line 544, in __inner
admin_1      |     return obj(*a, **k)
admin_1      |   File "/app/mailu/internal/views/auth.py", line 18, in nginx_authentication
admin_1      |     headers = nginx.handle_authentication(flask.request.headers)
admin_1      |   File "/app/mailu/internal/nginx.py", line 48, in handle_authentication
admin_1      |     if user.check_password(password):
admin_1      |   File "/app/mailu/models.py", line 333, in check_password
admin_1      |     context = User.pw_context
admin_1      | AttributeError: type object 'User' has no attribute 'pw_context'
```
6 years ago
kaiyou 72e1b444ca Merge alembic migrations 6 years ago
kaiyou 5b769e23da Merge branch 'master' into refactor-config 6 years ago
kaiyou 02995f0a15 Add a mailu command line to flask 6 years ago
kaiyou f9e30bd87c Update the dockerfile and upgrade dependencies 6 years ago
kaiyou 4a7eb1eb6c Explicitely declare flask migrate 6 years ago
kaiyou 2a8808bdec Add the configuration table migration 6 years ago
kaiyou f57d4859f3 Provide an in-context wrapper for getting users 6 years ago
kaiyou f6013aa29f Fix an old migration that was reading configuration before migrating 6 years ago
kaiyou 206cce0b47 Finish the configuration bits 6 years ago
Ionut Filip 1bbf3f235d Using a new class when captcha is enabled 6 years ago
mergify[bot] 12689965bd
Merge pull request #699 from usrpro/fix-admin-bug
Fixed admin_1 errors in the logs
6 years ago
hoellen 680ad4b67a
Catching only ValueError
Co-Authored-By: ionutfilip <ionut.philip@gmail.com>
6 years ago
mergify[bot] e08f3e81d0
Merge pull request #680 from usrpro/feat-startup
Standarize images
6 years ago
Ionut Filip 6dcc33e390 Fixed admin_1 errors in the logs
Fixed errors when trying to log in with an account without domain.
This closes #585
6 years ago
Tim Möhlmann 42e2dbe35d
Standarize image by using shared / similair layers 6 years ago
Tim Möhlmann 5fa2aac569
Fix imap login when no webmail selected 6 years ago
Tim Möhlmann 903bb70c5b
Merge remote-tracking branch 'upstream/master' into standarize-images 6 years ago
Scott 56fb74c502 Fix typo (duplicate self). Fixes #683 6 years ago
Ionut Filip 8a44a44688
Merge branch 'master' into feat-startup 6 years ago
Ionut Filip 1187cac5e1 Finished up switching from .sh to .py 6 years ago
Tim Möhlmann ed81c076f2
Take out "models" path, as we are already in it 6 years ago
Tim Möhlmann aed80a74fa
Rectify decleration of domain_name 6 years ago
Tim Möhlmann 2d382f2d67
Merge branch 'master' into fix-sender-checks 6 years ago
Ionut Filip 0e5606d493 Changed start.sh to start.py 6 years ago
Tim Möhlmann 81b24f61e8
Merge branch 'master' into feat-healthchecks 6 years ago
kaiyou 1fcaef7c7e
Merge branch 'master' into fix-sender-checks 6 years ago
hoellen 72d4fa2bc9
remove empty line from merge conflict 6 years ago
hoellen 857ad50509
Merge branch 'master' into feat-reply-startdate 6 years ago
kaiyou 82069ea3f0 Clean most of the refactored code 6 years ago
kaiyou f40fcd7ac0 Use click for the manager command 6 years ago
kaiyou fc24426291 First batch of refactoring, using the app factory pattern 6 years ago
kaiyou 01fa179767 Update the user password in database when needed 6 years ago
kaiyou 988e09e65e Add a profiler in debug mode for improving performance 6 years ago
kaiyou dba8f1810d Do not check the password another time in Dovecot 6 years ago
kaiyou ed3388ed6e Merge branch 'master' into feat-reply-startdate 6 years ago
Thomas Sänger 39272ab05c
add healthcheck for http services 6 years ago
kaiyou e784556330 Fix an edge case with old values containing None for coma separated lists 6 years ago
kaiyou f647d1a0bc Merge branch 'master' into fix-sender-checks 6 years ago
kaiyou 5ada669f43 Rebase reply startdate on master 6 years ago
mergify[bot] bee81d1a54
Merge pull request #647 from HorayNarea/bcrypt
support bcrypt and use it as default
6 years ago
kaiyou c6846fd8db Merge branch 'master' into feat-reply-startdate 6 years ago
Thomas Sänger 6aafef88bd
remove apk-warning about cache 6 years ago
Thomas Sänger c8b39c5d4a
support bcrypt and use it as default 6 years ago
kaiyou 00b5ae11db
Merge branch 'master' into feat-abstract-db 6 years ago
kaiyou 508e519a34 Refactor the postfix views and implement sender checks 6 years ago
kaiyou fc99eb7b34 Re-enable sender access check to prevent source spoofing 6 years ago
kaiyou 4d70a8737e Expose the data volume for admin container 6 years ago
kaiyou fcad52b145 Implement a start date filter for autoreply, fixes #362 6 years ago
kaiyou 82bb8c2fd9 Merge remote-tracking branch 'github/master' into feat-abstract-db 6 years ago
kaiyou f5668dea51 Handle relays as virtual transports through podop 6 years ago
kaiyou 42c6bdb4df Split the internal blueprint into multiple view files 6 years ago
kaiyou f9c6c98180 Remove fetchmail dependency to the databse 6 years ago
kaiyou 542793260b Handle wildcard aliases using podop 6 years ago
kaiyou 0d52364eac Fix alias resolution through podop 6 years ago
kaiyou 6ba55ee377 Implement the sieve script name resolution pattern 6 years ago
kaiyou 3c725bf634 Only support generating the default sieve script 6 years ago
kaiyou ca6c0bc8fd Fix the user sieve script generation 6 years ago
kaiyou 4d25083847 Move sieve script generation to the admin container 6 years ago
kaiyou cfeaa189f9 Use proper 404 return codes for missing objects 6 years ago
kaiyou d8365bfbcf Use simpler routes for Dovecot 6 years ago
kaiyou 7143fb8c47 Implement some basic views for podop 6 years ago
kaiyou 68aa797720 Merge branch 'master' into feat-abstract-db 6 years ago
Thomas Sänger 0b885548ab
bind to any protocol 6 years ago
kaiyou 73ca5fb3d3 Provide a more generic skeletton for postfix virtual lookups 6 years ago
kaiyou 313b79538e
Merge pull request #513 from mprihoda/feature/better-ratelimit-error
Return correct status codes from auth rate limiter failure.
6 years ago
Pierre Jaury 5ad02ae2e5 Use a more uniform 'Save' for most form submits, fixes #523 6 years ago
Pierre Jaury 809fe78f82 Add dovecot views to the internal API 6 years ago
Pierre Jaury 28001213d4 Remove the redis-based quota code 6 years ago
Pierre Jaury 76617a3c97 Store the quota status in database 6 years ago
Michal Prihoda f5e7751835 Return correct status codes from auth rate limiter failure. 7 years ago
kaiyou 74b72375cb
Merge pull request #493 from MFAshby/user_validation
Made User and UserSignup validation consistent for the local part of
7 years ago
hoellen 9091e54fda Hide administration header in sidebar for normal users. 7 years ago
mfashby 0284b6a8e9 Made User and UserSignup validation consistent for the local part of the email address 7 years ago
Pierre Jaury 14687d09ba Fix announcements for idna domains 7 years ago
Pierre Jaury 1371ba5f5e Add the keep field to fetch forms, fixes #479 7 years ago
Pierre Jaury ea658a174d Fix a typo in the base html template 7 years ago
Pierre Jaury b6c76a5e39 Do not remove openssl when purging build deps, fixes #481 7 years ago
kaiyou 91e51a24c8
Merge pull request #465 from sanduhrs/feature/463
Remove services status page
7 years ago
Thomas Sänger 7d661ab80d
don't require BootstrapCDN for FontAwesome (GDPR-compliance) 7 years ago
Stefan Auditor 6177571e4d Remove services status localization 7 years ago
Stefan Auditor b541d4c257 Remove services status sidebar link 7 years ago
Stefan Auditor e89b32a3f4 Remove services route 7 years ago
Stefan Auditor ec8e82aaca Remove services status template 7 years ago
kaiyou f55e5e26cd Update messages.po (POEditor.com) 7 years ago
kaiyou 2b96abbef4 Update messages.po (POEditor.com) 7 years ago
kaiyou af38d5ab0c Update messages.po (POEditor.com) 7 years ago
kaiyou fc89b30e8a Update messages.po (POEditor.com) 7 years ago
kaiyou 791fab688a Update messages.po (POEditor.com) 7 years ago
kaiyou c9b0832899 Update messages.po (POEditor.com) 7 years ago
kaiyou fa1b0ac32c Update messages.po (POEditor.com) 7 years ago
kaiyou 75f0791965 Update messages.po (POEditor.com) 7 years ago
kaiyou c91c5c7493 Update messages.po (POEditor.com) 7 years ago
kaiyou 299a654e97 Update messages.po (POEditor.com) 7 years ago
kaiyou 494e52d8f0 Update messages.po (POEditor.com) 7 years ago
kaiyou 3b7014d563 Add dummy spanish and russion languages 7 years ago
kaiyou be0a0b4ac8 Update translation strings 7 years ago
kaiyou 8bad30cd59 Move the domain MX status to the detail page 7 years ago
kaiyou 7f0447514c Finish storing the user quota to redis 7 years ago
kaiyou 80893be68b Add a missing import to dnspython 7 years ago
kaiyou 091369915b Display the user quota in the admin interface 7 years ago
kaiyou e13593f29a Switch to database 2 for rate limiting 7 years ago
kaiyou d1dbba2d3a Add expose instructions in Dockerfiles, fixes #392 7 years ago
kaiyou 62d1a0c104 Add a status field to the domain list 7 years ago
kaiyou bb0d7bf6dc Enforce the nocase collation on the email table 7 years ago
kaiyou 186c30d2ac Have the admin listen on ipv6 7 years ago
kaiyou dfaedb76f1
Merge pull request #447 from sanduhrs/feature/446
Add a sqlalchemy custom type for unicode to idna conversion of domain names
7 years ago
kaiyou 9968d708f1 Update the prod requirements 7 years ago
kaiyou 381e76511d Add self-service domain registration 7 years ago
Stefan Auditor c688970b32 Respect user enabled flag in admin authentication 7 years ago
Stefan Auditor d3064579f4 Respect user enabled flag in basic authentication 7 years ago
Stefan Auditor 92f4858323 Respect user.enabled status in internal authentication 7 years ago
Stefan Auditor d2c6cecca6 Remove is_enabled method and use the enabled attribute instead 7 years ago
Stefan Auditor 5bfdd75738 Respect user enabled flag on user.login 7 years ago
Stefan Auditor 78f4fa7db9 Add field to ui for user enabled flag 7 years ago
Stefan Auditor 20d6fbae48 Add enabled flag to user model 7 years ago
Scott 2c2a1ed042 Remove stale link to old auto-forward settings. Fixes #450
Also update a reference to 'smtp' to use HOST_AUTHSMTP
7 years ago
kaiyou a51416a4af
Merge pull request #452 from sanduhrs/feature/449
Add enabled flag to user model
7 years ago
Stefan Auditor e843f7ef1f Respect user enabled flag in admin authentication 7 years ago
Stefan Auditor c8540ddba7 Respect user enabled flag in basic authentication 7 years ago
Stefan Auditor 6fc22e5432 Respect user.enabled status in internal authentication 7 years ago
Stefan Auditor 733b89bff5 Remove is_enabled method and use the enabled attribute instead 7 years ago
Stefan Auditor 3b66fcada7 Respect user enabled flag on user.login 7 years ago
Stefan Auditor 7139a27bf1 Add field to ui for user enabled flag 7 years ago
Stefan Auditor f585197e52 Add enabled flag to user model 7 years ago
Scott e5c25c395f Remove stale link to old auto-forward settings. Fixes #450
Also update a reference to 'smtp' to use HOST_AUTHSMTP
7 years ago
Stefan Auditor 7f5bd98a2e Add parameters to database field 7 years ago
Stefan Auditor 93d5254b3f Add another type decorator for idna email support 7 years ago
Stefan Auditor 792c720c13 Save user email domain_name as idna representation 7 years ago
Stefan Auditor c40e255f3b Reset relay columns to string 7 years ago
Stefan Auditor d9ea64fac7 Import idna library and move code a bit upwards 7 years ago
Stefan Auditor 5a7272ff12 Replace other occurences of domain names with idna 7 years ago
Stefan Auditor 1b666cd25b Add a sqlalchemy custom type for unicode to idna conersion of domain names 7 years ago
kaiyou db0cd8efb4 Fix the client setup page when not logged in 7 years ago
kaiyou b4134b7774 Add a client setup page, fixes #342 7 years ago
kaiyou fa0bda7b69 Merge the auto-forward and antispam settings 7 years ago
kaiyou 3ef4e1f6b7 Add support for recaptcha upon signup 7 years ago
Mildred Ki'Lya f538e33dcf Parametrize hosts
Allows to use mailu without docker-compose when hostnames are not set up
by docker itself but provided via a separate resolver.

Use case: use mailu using nomad scheduler and consul resolver instead of
docker-compose. Other servers are provided by the DNS resolver that
resolves names like admin.service.consul or webmail.service.consul.
These names needs to be configurable.
7 years ago
kaiyou d8ebfbe020 Display infinite user quotas correctly, fixes #368 7 years ago
kaiyou d98f16333a Display an infinite quota when necessary for users, fixes #345 7 years ago
kaiyou 8d224824ea Display a conditional button for generation dkim keys, fixes #346 7 years ago
kaiyou 42314d3d75 Remove a remaining rebug print() statement 7 years ago
kaiyou a4f46ced49 Properly use x-forwarded-proto with redirects in the webui, related to #347 7 years ago
kaiyou 319965a4af Add a format check for the email localpart when signing up 7 years ago
kaiyou 18ae6a4a0f Fix the signup quota 7 years ago
kaiyou e85eada522 Fix the login view when no next page is provided 7 years ago
kaiyou def0a8b89d Fix the signup domain list with non infinite mailbox max count 7 years ago
kaiyou 2662abedef Enable self-service account signup 7 years ago
kaiyou 3b79e5196a Add a default quota setting for new accounts 7 years ago
kaiyou 6d71fa96ad Add a signup field to domains 7 years ago
kaiyou c545b8d110 Honor feature limitations for imap and pop3 7 years ago
kaiyou 3e464b0b70 Update messages.po (POEditor.com) 7 years ago
kaiyou 952a50665b Update messages.po (POEditor.com) 7 years ago
kaiyou d4441b6815 Move nl and sv loca to LC_MESSAGES 7 years ago
kaiyou ab34ce4e8e Add dummy files for pl and it loca 7 years ago
kaiyou 2f4758a445 Update messages.po (POEditor.com) 7 years ago
kaiyou e368c200b1 Update messages.po (POEditor.com) 7 years ago
kaiyou 17b184e5c8 Implement a basic authentication API 7 years ago
kaiyou 059cbb37a4 Update messages.po (POEditor.com) 7 years ago
kaiyou e9f4719a40 Update messages.po (POEditor.com) 7 years ago
kaiyou 112cff3621 Update messages.po (POEditor.com) 7 years ago
kaiyou f30a09f182 Update messages.po (POEditor.com) 7 years ago