398 Commits (7386257dedda678419e495c28e382251f7212bfa)

Author SHA1 Message Date
Nicolas Paris b560d1f369
Improve english
Co-authored-by: decentral1se <1991377+decentral1se@users.noreply.github.com>
3 years ago
parisni 14307c83c1 Document databases variable and deprecation 3 years ago
Dimitri Huisman 0bdf84dd25
Update faq.rst
Some spelling improvements.
4 years ago
ronivay 75baa1da99 Update fail2ban documentation 4 years ago
bors[bot] 25e8910b89
Merge #1783
1783: Switch to server-side sessions r=mergify[bot] a=nextgens

## What type of PR?

bug-fix

## What does this PR do?

It simplifies session management.
- it ensures that sessions will eventually expire (*)
- it implements some mitigation against session-fixation attacks
- it switches from client-side to server-side sessions (in Redis)

It doesn't prevent us from (re)-implementing a "remember_me" type of feature if that's considered useful by some.


Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
4 years ago
lub f3f0a4d86d
Merge branch 'master' into enforce-tls-admin 4 years ago
Florent Daigniere b9becd8649 make sessions expire 4 years ago
Florent Daigniere 20d2b621aa Improve the description of CREDENTIAL_ROUNDS 4 years ago
Florent Daigniere 7137ba6ff1 Misc improvements to PASSWORD_SCHEME
- remove PASSWORD_SCHEME altogether
- introduce CREDENTIAL_ROUNDS
- migrate all old hashes to the current format
- auto-detect/enable all hash types that passlib supports
- upgrade passlib to 1.7.4 (see #1706: ldap_salted_sha512 support)
4 years ago
bors[bot] 464e46b02b
Merge #1765
1765: Set sensible cookie flags on the admin app r=mergify[bot] a=nextgens

## What type of PR?

Bugfix

## What does this PR do?

It sets the right flags on the session cookie issued by the admin app.
This should probably be backported as the lack of secure flag on TLS-enabled setup is a high risk vulnerability.

SameSite is hardening / helps against CSRF on modern browsers
HTTPOnly is hardening / helps reduce the impact of XSS

Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
4 years ago
bors[bot] 81f8cbec56
Merge #1711 #1712
1711: fix typo in faq.rst r=Diman0 a=tomwojcik



1712: Add details for postfix-overrides r=mergify[bot] a=sholl

## What type of PR?

Documentation clarification

## What does this PR do?

### Related issue(s)

this clarifies the FAQ about overrides and fixes #1628 


Co-authored-by: Tomasz Wójcik <tomwojcik@users.noreply.github.com>
Co-authored-by: Stephan Holl <stephan@holl-land.de>
Co-authored-by: Stephan Holl <1610827+sholl@users.noreply.github.com>
4 years ago
bors[bot] cca4b50915
Merge #1607
1607: _FILE variables for Docker swarm secrets r=mergify[bot] a=lub

## What type of PR?

enhancement

## What does this PR do?

This PR enables usage of DB_PW_FILE and SECRET_KEY_FILE instead of DB_PW and SECRET_KEY to load these values from files instead of supplying them directly. That way it's possible to use Docker secrets.

### Related issue(s)


## Prerequistes
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [x] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/guide.html#changelog) entry file.


Co-authored-by: lub <git@lubiland.de>
4 years ago
Florent Daigniere 0dcc059cd6 Add a new knob as discussed on matrix with lub 4 years ago
Stephan Holl 3ada506dbd
Update docs/faq.rst
as @lub suggests

Co-authored-by: lub <github@lubiland.de>
4 years ago
Raphaël P. Barazzutti 9e8183ee71
rewording about the usage of PostgreSQL
Co-authored-by: lub <github@lubiland.de>
4 years ago
Raphaël P. Barazzutti 444529b7df rewording in doc 4 years ago
Raphaël P. Barazzutti 82b5920b16 typos 4 years ago
Stephan Holl bee0261dd8 Add details for postfix-overrides 4 years ago
Tomasz Wójcik 0b14fefb1a
fix typo in faq.rst 4 years ago
bors[bot] 900d4f16ae
Merge #1684
1684: add warning about removing front r=mergify[bot] a=lub

## What type of PR?

documentation

## What does this PR do?

### Related issue(s)
- caused confusion e.g. in #1678

## Prerequistes
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [x] In case of feature or enhancement: documentation updated accordingly
- [ ] ~~Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/guide.html#changelog) entry file.~~


Co-authored-by: lub <git@lubiland.de>
4 years ago
ebdavison ad97266f77
removing unneeded image
Removing this image as request in PR #1680
4 years ago
lub 900b28178a add warning about removing front 4 years ago
ebdavison 2cf9fdb220
remove service status "feature"
Per the issue tracker, this was removed in issue #463 (Remove the Service Status page)
4 years ago
Dimitri Huisman 26839c9066 Fixed small typo, added clarification for full text search and added japanese local as a new feature. 4 years ago
Dario Ernst c0cc6bbaec Add DNS SPF upgrade notice; Extend Changelog items 4 years ago
Dario Ernst 2e55329b8b Improve changelog and release texts for 1.8 4 years ago
Dimitri Huisman 17cea83301 Completely remove step 5 where you can set the replica count for docker-stack.
Add additional warning to ´experimental' notice in setup for stack.
Add a notice the shipped PostgreSQL is deprecated.
Make the external PostgreSQL database the default option.
Make 1.7 the default version (stable_version': '1.7', in docs\conf.py)
Update mergify.yml with 1.8 version
4 years ago
Dimitri Huisman 78890a97ff Preparations for 1.8 release. 4 years ago
bors[bot] 62c54ea57f
Merge #1592
1592: Add documentation for the web administration gui. r=mergify[bot] a=Diman0

## What type of PR?

Documentation

## What does this PR do?

This PR adds the section Web Administration Interface to the documentation site which completely documents all available settings in the web administration interface.

### Related issue(s)
- Closes issue #1590 (please close this issue for me)

## Prerequistes
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [ Done ] In case of feature or enhancement: documentation updated accordingly
- [ Done ] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/guide.html#changelog) entry file.


Co-authored-by: Dimitri Huisman <diman@huisman.xyz>
Co-authored-by: Dimitri Huisman <52963853+Diman0@users.noreply.github.com>
4 years ago
Dimitri Huisman 86d6caa789
Update docs/webadministration.rst
additional clarification. We only support secure connections.

Co-authored-by: lub <github@lubiland.de>
4 years ago
Dimitri Huisman a50e6d55c5
Update docs/webadministration.rst
grammar

Co-authored-by: lub <github@lubiland.de>
4 years ago
Dimitri Huisman 5981a34397
Update docs/webadministration.rst
typo/grammar

Co-authored-by: lub <github@lubiland.de>
4 years ago
Dimitri Huisman 4a3b16d3bc
Update docs/webadministration.rst
typo/grammar

Co-authored-by: lub <github@lubiland.de>
4 years ago
Dimitri Huisman 04436dd047
Update docs/webadministration.rst
additional clarification

Co-authored-by: lub <github@lubiland.de>
4 years ago
Dimitri Huisman 037a7a40e7
Update docs/webadministration.rst
additional clarification

Co-authored-by: lub <github@lubiland.de>
4 years ago
Dimitri Huisman 465540229a
Update docs/webadministration.rst
Co-authored-by: lub <github@lubiland.de>
4 years ago
Dimitri Huisman 5c4a8069e4 Add additional instructions for first time usage. 4 years ago
Dimitri Huisman 9fe750dc2b Add FAQ entry for how to use webdav(radicale) 4 years ago
Dimitri Huisman f843bfe9d5 Add additional clarification that you may have to add a new domain to HOSTNAMES in your mailu.env file. 4 years ago
Dimitri Huisman 769a143e45
Update docs/webadministration.rst
typo

Co-authored-by: Dario Ernst <github@kanojo.de>
4 years ago
Dimitri Huisman 98f59a8763
Update docs/webadministration.rst
typo

Co-authored-by: Dario Ernst <github@kanojo.de>
4 years ago
Dimitri Huisman 2387e53c58
Update docs/webadministration.rst
More clarification.

Co-authored-by: Dario Ernst <github@kanojo.de>
4 years ago
Dimitri Huisman ec711cf021
Update docs/webadministration.rst
rewording to add more clarification

Co-authored-by: Dario Ernst <github@kanojo.de>
4 years ago
Dimitri Huisman 5f8e98c70f
Update docs/webadministration.rst
rewording to make it more clear

Co-authored-by: Dario Ernst <github@kanojo.de>
4 years ago
Dimitri Huisman 1083527647
Update docs/webadministration.rst
rewording to make it more clear.

Co-authored-by: Dario Ernst <github@kanojo.de>
4 years ago
Dimitri Huisman a772c19546
Update docs/webadministration.rst
Rewording to make it more clear.

Co-authored-by: Dario Ernst <github@kanojo.de>
4 years ago
Dimitri Huisman 4bc0962fb8
Update docs/webadministration.rst
typo

Co-authored-by: Dario Ernst <github@kanojo.de>
4 years ago
Dimitri Huisman 9f4e906534
Update docs/webadministration.rst
Co-authored-by: Dario Ernst <github@kanojo.de>
4 years ago
Simonmicro 4a5678f571
Added explaining message about the current ipv6 problem 4 years ago
lub f0f873ffe7 add option to enforce inbound starttls 4 years ago