9790dcdabe
updated dependencies
4 years ago
fab3168c23
Merge remote-tracking branch 'upstream/master' into kvsession
4 years ago
4b71bd56c4
replace flask_kvsession with mailu's own storage
4 years ago
83b1fbb9d6
Lazy loading of KVSessionExtension
...
- call cleanup_sessions on first kvstore access
this allows to run cmdline actions without redis (and makes it faster)
- Allow development using DictStore by setting REDIS_ADDRESS to the empty string in env
- don't sign 64bit random session id as suggested by nextgens
4 years ago
0c38128c4e
Add pygments to requirements
4 years ago
dc5464f254
Merge remote-tracking branch 'upstream/master' into import-export
4 years ago
22af5b8432
Switch to server-side sessions in redis
4 years ago
dd2e218375
Merge remote-tracking branch 'upstream/master' into import-export
4 years ago
7137ba6ff1
Misc improvements to PASSWORD_SCHEME
...
- remove PASSWORD_SCHEME altogether
- introduce CREDENTIAL_ROUNDS
- migrate all old hashes to the current format
- auto-detect/enable all hash types that passlib supports
- upgrade passlib to 1.7.4 (see #1706 : ldap_salted_sha512 support)
4 years ago
1c9abf6e48
updated requirements for import/export
...
api reqs (flask-restx, ...) are still missing
4 years ago
54ccfdf975
Bump cryptography from 2.6.1 to 3.2 in /core/admin
...
Bumps [cryptography](https://github.com/pyca/cryptography ) from 2.6.1 to 3.2.
- [Release notes](https://github.com/pyca/cryptography/releases )
- [Changelog](https://github.com/pyca/cryptography/blob/master/CHANGELOG.rst )
- [Commits](https://github.com/pyca/cryptography/compare/2.6.1...3.2 )
Signed-off-by: dependabot[bot] <support@github.com>
4 years ago
1d35b1283d
Adjust python required packages for alpine:3.12
5 years ago
94cfc31e04
Bump validators from 0.12.5 to 0.12.6 in /core/admin
...
Bumps [validators](https://github.com/kvesteri/validators ) from 0.12.5 to 0.12.6.
- [Release notes](https://github.com/kvesteri/validators/releases )
- [Changelog](https://github.com/kvesteri/validators/blob/master/CHANGES.rst )
- [Commits](https://github.com/kvesteri/validators/commits )
Signed-off-by: dependabot[bot] <support@github.com>
5 years ago
bd69b7a491
Add support for SRS, related to #328
5 years ago
ed204766b2
Bump werkzeug from 0.15.2 to 0.15.3 in /core/admin
...
Bumps [werkzeug](https://github.com/pallets/werkzeug ) from 0.15.2 to 0.15.3.
- [Release notes](https://github.com/pallets/werkzeug/releases )
- [Changelog](https://github.com/pallets/werkzeug/blob/master/CHANGES.rst )
- [Commits](https://github.com/pallets/werkzeug/compare/0.15.2...0.15.3 )
Signed-off-by: dependabot[bot] <support@github.com>
5 years ago
c2a04ab1d4
Update the build configuration to use webpack and compiled assets
6 years ago
9077bf7313
Merge remote-tracking branch 'upstream/master' into feat-psql-support
6 years ago
284d54190a
Upgrade PyYAML to 4.2b4
6 years ago
3c7bf58211
Upgrade PyYAML
...
CVE-2017-18342
Vulnerable versions: < 4.2b1
Patched version: 4.2b1
In PyYAML before 4.1, the yaml.load() API could execute arbitrary code. In other words, yaml.safe_load is not used.
6 years ago
4068c5b751
Versioning for mysqlclient and psycopg2
6 years ago
b2823c23b8
Merge remote-tracking branch 'upstream/master' into feat-psql-support
6 years ago
9eaeb80a27
Finalize merge with kaiyou/feat-multiple-db
6 years ago
b5f51b0e2e
Update python dependencies
6 years ago
76925e82f3
Revert "Implement CIText as NOCASE alternative in postgresql"
...
This reverts commit 0f3c1b9d15
6 years ago
7b8835070d
Added tenacity retry fir migrations connection
6 years ago
0f3c1b9d15
Implement CIText as NOCASE alternative in postgresql
6 years ago
9b9f3731f6
Make current migrations work with postgresql
6 years ago
f9e30bd87c
Update the dockerfile and upgrade dependencies
6 years ago
c8b39c5d4a
support bcrypt and use it as default
6 years ago
9968d708f1
Update the prod requirements
7 years ago
689be5f2d9
Move all directories per theme
7 years ago
Alexander Graf