db9ac1f68e
add encryption scheme manipulation
7 years ago
434a3c017b
Print stderr when certbot fails
7 years ago
dc86a3feec
Try to renew the certificate less often, related to #223
7 years ago
2bfe11c1a4
Merge pull request #194 from interlegis/1.4-managercommands
...
Add setlimits and setmanager commands to manage.py
7 years ago
ffac116e1f
Merge branch 'stable'
7 years ago
4d0b9f9299
Add setlimits and setmanager commands to manage.py
7 years ago
010e5ca2a6
Perform read-only splits for the containers
...
The .gitsplit.yml file contains the configuration to be used by Jérémy
Derussé's docker-gitsplit container.
For usage instructions see https://github.com/jderusse/docker-gitsplit
7 years ago
c350a2b2ae
Add portuguese translation
7 years ago
c1d175d7a7
Handle infinite quotas when adding validators, fixes #162
...
(cherry picked from commit fe0b292d45
8 years ago
fe0b292d45
Handle infinite quotas when adding validators, fixes #162
8 years ago
7e037663a1
Use relative path for certificates, fixes #35
...
(cherry picked from commit e6c18e6ac3
8 years ago
e6c18e6ac3
Use relative path for certificates, fixes #35
8 years ago
be5562620e
Enable https and --preload on the admin to improve letsencrypt support
8 years ago
0ff6dc892d
Install certbot from pip instead of source
8 years ago
25d8b9e614
Add a keep option per fetch, fixes #60
8 years ago
38f291bc5d
Implement a maximum quota per domain, fixes #106
8 years ago
41b1666609
Fix the behaviour from Wtforms Components regarding readonly, related to #152
8 years ago
182e844ae6
Set password properly when using the CLI, fixes, #136
8 years ago
020ec8ef6b
Merge pull request #131 from sanduhrs/german-translation-update
...
Update german translation from poeditor.com
8 years ago
f043e50983
Add method to create an alias
8 years ago
2c3c52a2ec
Add method to create a normal user
8 years ago
9f8051f6e7
Update german translation from poeditor.com: add some missing strings, a few wording corrections, fix typo
8 years ago
764b9e209b
Bug when redirecting after deleting a fetch, related to #120
8 years ago
a5f061a8b2
Fix a typo when renaming the domain variable
8 years ago
720db8e72a
Generate a certificate for the proper hostname
8 years ago
373998ea99
Do not use objects after deleting them, fixes #112
8 years ago
08e4e2ee86
Update messages.po (POEditor.com)
8 years ago
8ac9400c85
Add some missing translations
8 years ago
c3b9756000
Announcement to all users, fixes #16
8 years ago
eacf2a363b
Add german translation
8 years ago
9ef706517a
Add the Docker client helper
8 years ago
9e0718b00f
Speed up local builds of the admin container
8 years ago
a8bc8e9d4b
Reload Docker containers when certificates are generated
8 years ago
bbf71b262e
Move docker related features to a separate module
8 years ago
4246179b88
First working certificate generation code, related to #35
8 years ago
a9cb1e2d11
Change the spam threshold to an integer, related to #103
8 years ago
afbcb9b8c6
Remove an exception trigger in the main init file
8 years ago
40820e4701
Fix admin template to reference github repository
8 years ago
c9aff0691b
Add a scheduler to the Flask application
8 years ago
d4f93e39db
Select translation based on browser configuration, fixes #100
8 years ago
9f09e0c8e0
Update messages.po (POEditor.com)
8 years ago
013286b8e1
Rename the freeposte/mailu directory and database
8 years ago
7be2d458d9
Use Email as a mixin and explicitely specify table names
...
This also fixes #77 , as explained in the ticket, because Flask
SQlAlchemy is not accessing declared attributes early anymore.
8 years ago
c7fe29c957
Push the missing messages.pot
8 years ago
c007b37df7
Display error messages when Docker is unreachable properly, related to #78
8 years ago
984b605d05
Compile translations when building the admin container
8 years ago
acf4addae0
Add initial translations, fix #37
8 years ago
c37ad3557f
Missing translations
8 years ago
3fa44613b1
Add a default babel configuration
8 years ago
3ade5641d9
Fix the confirmation form
8 years ago
0beeeade41
Enable Babel for all views
8 years ago
a3ad45c8ac
Use babel for base views
8 years ago
fe035114e9
Enable Babel for forms
8 years ago
d3436668d8
Enable Babel
8 years ago
676a9a5d2c
Do not redirect users to admin pages, fix #74
8 years ago
c028a3799d
Write an equivalence test for domains, fixes #65
...
(cherry picked from commit 144f427088acf9439fd9971898296137b8339f9a)
8 years ago
1ae8fe6af1
Merge pull request #73 from diresi/junk_filter
...
dovecot: use rspamd X-Spamd-Result percentage to evaluate spam
8 years ago
c02faada94
Remove deprecated references to flask_wtf.Form, fix #72
8 years ago
e7399e6926
Add a development run.py script
8 years ago
b9de28e910
dovecot: use rspamd X-Spamd-Result percentage to evaluate spam
...
- configures dovecot to use the spamtest sieve plugins
- configures sieve to read the score from X-Spamd-Result: headers
- before.sieve applies the ${spam_threshold} to the spamtest percentage
- freeposte.db stores a percentage for ${spam_threshold}
- migrate freeposte.db spam_threshold from X/15 to percentages
the filter investigates the overall ratio of the `rspamd` header
`X-Spamd-Result` that looks something like this:
X-Spamd-Result: default: True [12.36 / 15.00]
RBL_SPAMHAUS_XBL(4.00)[]
BAYES_SPAM(3.06)[92.67%]
RBL_SPAMHAUS_XBL_ANY(4.00)[]
ONCE_RECEIVED_STRICT(4.00)[]
HFILTER_HELO_BAREIP(3.00)[]
RBL_SORBS_DUL(2.00)[]
HFILTER_HOSTNAME_UNKNOWN(2.50)[]
RBL_SPAMHAUS_PBL(2.00)[]
RBL_SORBS_RECENT(1.50)[]
MIME_UNKNOWN(0.10)[application/x-rar-compressed]
RDNS_NONE(1.00)[]
RBL_SORBS(0.00)[]
R_SPF_NEUTRAL(0.00)[?all]
ONCE_RECEIVED(0.10)[]
RBL_SEM(1.00)[]
MIME_HTML_ONLY(0.20)[]
RBL_UCEPROTECT_LEVEL1(1.00)[]
MIME_GOOD(-0.10)[multipart/mixed]
the sieve `spamtest :percent :value` in this case would be
100*12.36/15 = 82.4%
8 years ago
525089a531
Do not leak information about existing domains or users
8 years ago
2cb4a44b5a
Display fetchmail errors to the user, fixes #23
8 years ago
18253b1dd3
Merge pull request #61 from vhf/admin-creation
...
Allow admin creation after initial setup
8 years ago
3976a5b38e
Allow admin creation after initial setup
8 years ago
97d952d7f1
Fix a typo
8 years ago
e24da96e58
Add some documentation to access decorators
8 years ago
09bec055fd
Fix domain deletion permissions
8 years ago
c1f9b61dac
Add a simple permission audit script
8 years ago
f8dcef22ef
Fix the manager deletion behaviour
8 years ago
f541a951de
Remove obsolete utils module
8 years ago
713318f097
Clean imports and remove calls to the utils module
8 years ago
ee9a416696
Implement the decorator-based access control for all views
8 years ago
4e4f2b8037
First shot at improving access control, related to #42
...
A couple of things are important to note for this commit:
- it only implements the new access control for alias and admin management
- the access control code is located in access.py
The idea behind simpler access control is auditability. There have been a
couple of bugs related to functions not checking permissions properly. If
checking permissions is as simple as decorating a function, exporting the
permission scheme for an audit should be simple.
Also, this still does not address the information leakage related to 404 errors
when an object does not exist, independently of permissions the user has over
the domain.
8 years ago
3ea3bc1d8e
Enforce permission checks for admin management
8 years ago
6dc9131b97
Fix the wildcard migration script, fixes #53
8 years ago
e3197f9156
Have the admin interface listen on localhost
8 years ago
8601d5b8db
Fix #49 when deleting a global admin
8 years ago
0d3c75aa89
Fix a migration issue with wildcard aliases
8 years ago
84769cab3e
Switch to form-based confirmations, fixes #20
8 years ago
5a69ada041
Add an action confirmation form, related to #20
8 years ago
58337d7dd6
Set a proper default for spam thresholds
8 years ago
1ce0bf2ef7
Update the user settings view with a slider
8 years ago
0371da6307
Add the migration script for wildcard aliases, related to #38
8 years ago
6d4243ec66
Adding SQL Like format for aliases
8 years ago
b3d7b657ab
Remove deprecated flask.ext imports
8 years ago
9640d59aca
Fix #25 , serve static resources locally
8 years ago
689c022a4a
Get back to a single forward destination
8 years ago
678a5c8065
Fix #22 , use ellipsis for overflowing text
8 years ago
c07211677c
Fix the default value for comma separated lists
8 years ago
163494cb78
Use readonly attribute instead of disabled
8 years ago
6af7a07e77
Avoid having an empty entry in destionation fields
8 years ago
5581f1b0d9
Related to #19 , fix the alias creation page
8 years ago
dcaf3e3473
Fix #30 , use cascade deletion on domains
8 years ago
49a1281976
Display the alias list properly
8 years ago
5f36e6f4f2
Related to #19 , implement domain specific field and database type
8 years ago
aace1c2d78
Get back to serving CDN assets, related to #25
8 years ago
1673631e69
Fix the columns in the fetch list
8 years ago
f8a220e72a
Serve local assets only
8 years ago
21bec865b3
Fix permission management when editing/deleting fetches
8 years ago
58ec3597ab
Fix te DKIM DNS example
8 years ago
Dmytro Makovey