Commit Graph

898 Commits (c72b3a0d33f8286d16f8a3835453c4da8f123708)

Author SHA1 Message Date
Alexander Graf e75201bb34
Add default to column spam_mark_as_read
Florent Daigniere 04b7ddfffd Merge remote-tracking branch 'upstream/master' into Riscue-master
Florent Daigniere d2aa647a9f l10n
bors[bot] 6f89209f9f
Merge
2302: Update alpine-linux to 3.14.5 - Zlib security FIX r=mergify[bot] a=willofr

## What type of PR?
Security fix

## What does this PR do?
Update alpine docker image to alpine-3.14.5

- closes 

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: Will <will@packer-output-c8fcfb40-3d93-4475-8f87-e14a9dd683b6>
Will a54a784168 Update alpine-linux to 3.14.5 - Zlib security FIX
hitech95 fc8926493c admin: graceful fail on user fetch in basic auth
Signed-off-by: hitech95 <nicveronese@gmail.com>
bors[bot] c15e4e6015
Merge
2276: Autoconfig of email clients r=mergify[bot] a=nextgens

## What type of PR?

Feature

## What does this PR do?

It provides auto-configuration templates for email clients and encourages them to use implicit TLS (see https://nostarttls.secvuln.info/)

There are numerous caveats:
- it will only work if suitable DNS records are created and certificates obtained (autoconfig, autodiscover, ...)
- the mobileconfig file isn't signed
- the credentials will be prompted... we could/should provision a token on each request instead
- it currently doesn't advertise caldav
- it's IMAP only

### Related issue(s)
- close  

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [x] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
bors[bot] 8cc91bad75
Merge
2281: Update alpine-linux to 3.14.4 - OpenSSL security FIX r=mergify[bot] a=willofr

## What type of PR?
Security fix

## What does this PR do?
Update Dockerfiles to use alpine-linux 3.14.4 which contains a security fix for openssl
https://alpinelinux.org/posts/Alpine-3.12.10-3.13.8-3.14.4-released.html

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


2285: Update names of language json files r=mergify[bot] a=ghostwheel42

## What type of PR?

bug-fix

## What does this PR do?

language json files of datatables i18n have been renamed
this updates the mappings to the current names


2286: Fix typo in Traefik reverse proxy docs r=mergify[bot] a=ghostwheel42

Slight typo in the Traefik reverse proxy docs. Found through running into the issue on my own instance.

## What type of PR?

documentation

## What does this PR do?

Adds   to master


2287: Fix typo in docs: cert not certs r=mergify[bot] a=ghostwheel42

## What type of PR?

documentation

## What does this PR do?

just a typo

Co-authored-by: Will <will@packer-output-c8fcfb40-3d93-4475-8f87-e14a9dd683b6>
Co-authored-by: willofr <willofr@users.noreply.github.com>
Co-authored-by: Alexander Graf <ghostwheel42@users.noreply.github.com>
Co-authored-by: DAHPr0gram3r <cbillwork02@gmail.com>
Alexander Graf d70596d431
Update names of language json files
Alexander Graf 64ad6931e9
Move 'is_valid_user = user is not None' into else
Alexander Graf 630a4e9b5e
Update auth.py
Add spaces
Maximilian Fischer 8775dc5b15 Fixing AUTH_RATELIMIT_IP not working on imap/pop3/smtp
Will d02296c3bc Update alpine-linux to 3.14.4 - OpenSSL security FIX
Florent Daigniere ce9dc3a335 ghostwheel42's suggestion
Florent Daigniere 83140322e0 ghostwheel42's suggestion
Florent Daigniere 3aa735cc2d ghostwheel42's suggestion
Florent Daigniere 9bc963f19b don't think the escaping is required but it was there
Florent Daigniere 3e6f3a95a4 Reflect the data from the POST
Florent Daigniere 14931c4acd doh
Florent Daigniere c6c444cfa7 simplify
Florent Daigniere 373e6d2161 doh
Florent Daigniere 184c9bc566 Add json redirect
Florent Daigniere 9a2d8d63a3 Search and replace wasn't a good idea
Florent Daigniere c50750054b Allow POST
Florent Daigniere 71897f4ff0 Doh
Florent Daigniere 6fc1273b58 Add a link to autoconfigure apple devices
Florent Daigniere 0bccb5045c STARTTLS is a bad idea
Florent Daigniere 81b592f3cb try to get LE certs for the new names
Florent Daigniere a3f9e2beee Use priorities instead
Florent Daigniere 2b62a6327a Do explicit TLS where possible
Florent Daigniere c817eaf608 Add the SRV record for autodiscover
Florent Daigniere cdc92aa65b Mobileconfig apple style
Florent Daigniere ccd2cad4f1 Autodiscovery microsoft style
Florent Daigniere 523cee1680 Autoconfig mozilla-style
bors[bot] 0b25854de0
Merge
2210: Add input validation for domain creation r=mergify[bot] a=0pc0deFR

## What type of PR?

bug-fix

## What does this PR do?

This patch add the input validation for domain creation.

### Related issue(s)
- Mention an issue like: 
- Auto close an issue like: closes 


Co-authored-by: Kevin Falcoz <0pc0defr@gmail.com>
Co-authored-by: Dimitri Huisman <diman@huisman.xyz>
İbrahim Akyel f65e2fc469 Feature: Marking "Read" spam mails
Florent Daigniere a7f9a35fa1
Merge branch 'master' into fix2274
Florent Daigniere a4ed464170 doh
Florent Daigniere 0bfbb3bcd4
doh
Florent Daigniere cd3eee4c51 ghostwheel42's suggestion
Florent Daigniere d723326b8e style
Florent Daigniere f01d8cd9b9 improve
Florent Daigniere 7b9c4e01f7 improve
Florent Daigniere 91de20c49c Fix exception in logs
This was occuring when you had square brackets in the domain part
Florent Daigniere 8cf76afbab Catch the ValueError instead
Florent Daigniere 08aa32a5df Revert "Don't bother running the query without an address"
This reverts commit dc81979550.
Florent Daigniere 7ce7f2096b belt, braces and suspenders
Florent Daigniere dc81979550 Don't bother running the query without an address
This should solve the following in admin logs:
"WARNING in nginx: Invalid user 'xxxx': (builtins.ValueError)
invalid email address (no "@")"
bors[bot] 2e9b14d536
Merge
2254: Send ISRG_X1 on port 25, make DANE pin that r=mergify[bot] a=nextgens

## What type of PR?

bug-fix

## What does this PR do?

Ensure we send ISRG_X1 in the handshake on port 25 (non-interactive, size doesn't really matter).

Update the DANE pin to reflect the change.

I am not sure whether we will need to add --preferred-chain= in the future; This may be the case when letsencrypt decides to use X2/the ECDSA chain

This needs to be tested on a letsencrypt account that isn't mine (I'm opted in for the alternate cert chains)

### Related issue(s)
- closes 

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

There's already a towncrier news for it

Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
Dimitri Huisman c40a0f4b80 Change link in warning to master. Master is always available. 1.9 will be unavaiable in the future.