Florent Daigniere
9b952da6c2
Allow nginx to lookup IPv6 addresses
...
It creates issues with RSPAMD/HFILTER_HOSTNAME_UNKNOWN on v6 enabled
setups see
https://github.com/Mailu/Mailu/issues/2260#issuecomment-1066797661
3 years ago
Florent Daigniere
0816cb9497
simplify as per ghostwheel42's suggestion
3 years ago
Florent Daigniere
e4a32b55f5
Send ISRG_X1 on port 25, make DANE pin that
3 years ago
Florent Daigniere
f6ebf9fda2
Update tls.conf
3 years ago
Florent Daigniere
68ff6c8337
Use ISRG_ROOT_X1 as DST_ROOT is not available
3 years ago
Sebastian Klemke
a6b4b9ae52
Removed ssl_trusted_certificate configuration setting from nginx.
...
Resolves an nginx startup issue when letsencrypt or
mail-letsencrypt is enabled.
Fixes #2199
3 years ago
Florent Daigniere
6425f440d3
fix 2147
3 years ago
bors[bot]
e7f77875e2
Merge #2084
...
2084: Fix #2078 (login to webmail did not work when WEB_WEBMAIL=/ was set) r=mergify[bot] a=Diman0
## What type of PR?
bug-fix
## What does this PR do?
It fixes #2078 . Login from SSO page to webmail did not work if WEB_WEBMAIL=/ was set in mailu.env.
I tested that it works with
- WEB_WEBMAIL=/webmail
- WEB_WEBMAIL=/
### Related issue(s)
- closes #2078
## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.
- [x] n/a In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog ) entry file.
Co-authored-by: Dimitri Huisman <diman@huisman.xyz>
Co-authored-by: Florent Daigniere <nextgens@users.noreply.github.com>
3 years ago
Florent Daigniere
d7a8235b89
Simplify
3 years ago
Dimitri Huisman
5bedcc1cb1
Fix #2078
3 years ago
Dimitri Huisman
f26fa8da84
Fix Webmail token check. Fix Auth-Port for Webmail. #2079
3 years ago
Florent Daigniere
53a0363b9e
Deal with the noisy keepalive messages
...
We don't particularly care about HTTP... and that's what's noisy.
3 years ago
Florent Daigniere
80a85c27a9
Silent healthchecks in logs
3 years ago
Alexander Graf
3141ffe791
removed some whitespace
3 years ago
Dimitri Huisman
6b16756d92
Fix acessing antispam via sidebar.
3 years ago
Dimitri Huisman
3449b67c86
Process code review remarks PR2023
3 years ago
Dimitri Huisman
503044ef6e
Reintroduce ProxyFix. Use two buttons for logging in.
3 years ago
Dimitri Huisman
fb0f005343
Get rid of complicated prefix logic. Further simplify /static handling and nginx config.
3 years ago
Dimitri Huisman
da788ddee3
Merge branch 'fix-sso-1929' of github.com:Diman0/Mailu into fix-sso-1929
3 years ago
Dimitri Huisman
bdcc183165
Redirect to configured ENV VAR for Admin/Webmail, further simplify nginx config.
3 years ago
Dimitri Huisman
f1a60aa6ea
Remove unneeded auth_request_set
3 years ago
Florent Daigniere
d3f07a0882
Simplify the handling of /static
3 years ago
Dimitri Huisman
48764f0400
Ensure all requests from the page sso go through the page sso.
3 years ago
Dimitri Huisman
5232bd38fd
Simplify webmail logout.
3 years ago
Dimitri Huisman
5d81846c5d
Introduce the shared stub /static for providing all static files
3 years ago
Dimitri Huisman
eb74a72a52
Moved locations to correct area in nginx.conf.
3 years ago
Dimitri Huisman
aa7380ffba
Doh!
3 years ago
Dimitri Huisman
44d2448412
Updated SSO logic for webmails. Fixed small bug rate limiting.
3 years ago
Dimitri Huisman
ed7adf52a6
Merge branch 'master' of github.com:Diman0/Mailu into fix-sso-1929
3 years ago
Dimitri Huisman
913a6304a7
Finishing touches. Introduce /static stub for handling all static files.
3 years ago
Diman0
41f5b43b38
Set nginx logging to level info again.
3 years ago
Diman0
f4cde61148
Make header translatable. More finishing touches.
3 years ago
Diman0
9894b49cbd
Merge/Update with changes from master
3 years ago
Florent Daigniere
89ea51d570
Implement rate-limits
3 years ago
Diman0
bf0aad9820
Merge branch 'master' of github.com:Mailu/Mailu into fix-sso-1929
3 years ago
Alexander Graf
1e8b41f731
Merge remote-tracking branch 'upstream/master' into adminlte3_fixes
3 years ago
Alexander Graf
b445d9ddd1
set expire headers only for mailu content
...
also moved robots.txt from config to static folder.
3 years ago
Alexander Graf
698ee4e521
added tiff and webp to list of cached content
3 years ago
Florent Daigniere
72ba5ca3f9
fix 1789: ensure that nginx resolves ipv4 addresses
3 years ago
Diman0
b148e41d9b
Fix nginx config
3 years ago
Alexander Graf
f4e7ce0990
enabled caching, gzip and robots.txt
3 years ago
Diman0
960033525d
configure sso in nginx
3 years ago
Diman0
8868aec0dc
Merge master. Make sso login working for admin.
3 years ago
Florent Daigniere
394c2fe22c
Document REAL_IP_HEADER and REAL_IP_FROM
...
Fix a security vulnerability whereby we were not clearing other headers
3 years ago
Florent Daigniere
6bba0cecfc
Strip the Forwarded header since nothing is compatible with it yet
3 years ago
Florent Daigniere
6704cb869a
Switch to 3072bits dhparam (instead of 4096bits)
...
We aim for 128bits of security here
3 years ago
Florent Daigniere
974bcba5ab
Restore LOGIN as tests assume it's there
3 years ago
Florent Daigniere
24f9bf1064
format certs for nginx
3 years ago
Florent Daigniere
92ec446c20
doh
3 years ago
Florent Daigniere
f05cc99dc0
Add ECC certs for modern clients
3 years ago