cebc64a280
Resolve HOST_WEBMAIL in admin
6 years ago
bc617cf8ec
replace _ with - in cli options
6 years ago
111dae351a
Fix typo in migration file
...
Fixes #905
6 years ago
39444c794e
Install bash in alpine based images.
...
This fix https://github.com/Mailu/Mailu/issues/918
Bash shell is used by default in Kubernetes' dashboard console, which is very
useful for admins.
6 years ago
86b4242f82
Merge #886
...
886: Ipv6 support r=mergify[bot] a=muhlemmer
## What type of PR?
(Feature, enhancement, bug-fix, documentation) -> A bit of everything
## What does this PR do?
Document how to use ipv6nat. This, however triggers some kind of flaky behavior with the Docker DNS resolver, resulting in lookup failures between containers. So all resolving needs to be done during container startup/configuration.
In order not to pollute every single start.py file, we've created a small library called [Mailu/MailuStart](https://github.com/Mailu/MailuStart ). As an addition, this library also defines the template generation function, including its logging facility.
Note: `docker-compose.yml` downgrade is necessary, as IPv6 settings are not supported by the Docker Compose file format 3 😞
### Related issue(s)
Supersedes PR #844
- Fixes #827
- Hopefully helps with #829 and #834
## No backport yet
This PR directly imports MailuStart from git. This makes it a bit more simple to implement on the short term an do some testing and probably some future improvements. When everything is proved stable, we will create a proper PyPi package with versioning and consider back porting.
## Prerequistes
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.
- [x] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: place entry in the [changelog](CHANGELOG.md), under the latest un-released version.
Co-authored-by: Ionut Filip <ionut.philip@gmail.com>
Co-authored-by: Tim Möhlmann <muhlemmer@gmail.com>
6 years ago
06457e9617
Merge branch 'master' into fix_fetches_create
6 years ago
9b65a6c862
Merge branch 'master' into admin_create_user_enhancement
6 years ago
f8dffe5a19
Resolve hosts in admin
6 years ago
004a431e97
Change to mailustart functions
6 years ago
34b31727c4
Fix password validator for creating fetched accounts
6 years ago
a071181c61
Allow to automatically create admin account during startup.
6 years ago
fba246e9a1
add wildcard option to cli (alias)
6 years ago
9684ebf33f
Use mailustart package from git
6 years ago
808092c65e
Merge pull request #834 from hoellen/token-ipv6
...
allow ipv6 addresses for tokens
6 years ago
e341e0141f
Merge remote-tracking branch 'upstream/master' into token-ipv6
6 years ago
dfe5ddb18e
Check if sender address is not null before trying to check the domain.
6 years ago
fd236e4ea5
Fix syntax error
6 years ago
7a9685bcb9
Resolve admin during start to work around Docker DNS flaky-ness
6 years ago
23bad0e042
Set value for SQLALCHEMY_DATABASE_URI in admin DEFAULT_CONFIG to SQLite URI
6 years ago
db8977e17a
Update SQLite DB file in DEFAULT_CONFIG and DB_TEMPLATES
6 years ago
6dea8b422a
Merge pull request #839 from hoellen/fix-create-onupdate-default
...
fix default value for created_at and updated_at
6 years ago
79c4edcaf1
Merge pull request #838 from hoellen/schema-maxUserQuota-1
...
Change quota columns type to BigInteger
6 years ago
54169db7e3
Merge branch 'master' into fix-forward-validation
6 years ago
9721df0bc5
fix default value for created_at and updated_at
...
Use date instead of datetime for created_at and updated_at.
6 years ago
cfa7ca3838
Merge branch 'master' into schema-maxUserQuota-1
6 years ago
f1e1c96c3b
create migration file for changing quota to big integer
6 years ago
2d34f0ee52
Fixed auto-forward email validation
6 years ago
c8758a6526
allow ipv6 addresses for tokens
6 years ago
2af540a1c9
change quota columns to bigint
6 years ago
66df7a31b0
Unify and coerce booleans from env used in admin
...
At some places, the string that DOMAIN_REGISTRATION is got used like a boolean
(an easy misassumption to make while in python and dealing with the config
dict), making `DOMAIN_REGISTRATION=False` act as a truthy value. To stop such
future problems from happening, coerce environment config strings to real
bools.
closes #830
6 years ago
9175b15d49
Merge pull request #826 from Nebukadneza/reverse_user_alias_pref
...
Reverse the resolution order of user and alias
6 years ago
278bcfb13a
Merge pull request #814 from Nebukadneza/fix_delimiter_alias
...
Deliver mails to alias-stripped-of-delimeter, even if catchall exists
6 years ago
276dc3ffda
Reverse the resolution order of user and alias
...
Since it’s common for wildcard~ish systems to prefer concrete objects over
wildcards, and aliases can be broad-wildcards (think catchall, %@xxx.tld ), it
may be more intuitive for users that user-names rank higher than aliases. This
makes it impossible for user-names to be unreachable, since they can be
completely overridden by a catchall otherwise.
This changes default behavior, and is not configurable.
closes #815
6 years ago
8541ae2c46
Fix migration order after merge
6 years ago
99cd1d714b
Merge pull request #799 from hoellen/fix-domain-negative-values-1
...
don't allow negative values on domain creation/edit
6 years ago
2567646f47
Merge branch 'master' into fix-domain-negative-values-1
6 years ago
50343f354e
Merge remote-tracking branch 'upstream/master' into feat-psql-support
6 years ago
b8d1beed29
Simplify alias-wildcard detection to not consider actual % anymore
6 years ago
10d2601963
Unsimplify alias precedence handling
...
As discussed with hoellen on matrix, since postfix indeed supports including
the recipient delimiter character in a verbatim alias, we should support so too
— and handle its precedence correctly. The clearer and simpler formulation of
the precedence-clauses are credit to @hoellen. Thanks!
6 years ago
b4822ad43e
Merge pull request #821 from HorayNarea/fix-remove-fts
...
remove (broken) FTS
6 years ago
161394a774
Merge pull request #817 from hoellen/fix-fetch-passwordfield-1
...
fix edit of fetched acc without changing password
6 years ago
492f3867d8
remove (broken) FTS
6 years ago
ac64a75743
Simplify alias precedence handling; Remove bogus changelog
6 years ago
520ebbb97d
Merge pull request #819 from hoellen/move-spam-1
...
Mark messages as seen when reporting them as spam
6 years ago
7247b4b10c
Merge branch 'master' into fix-password-on-user-edit
6 years ago
b65d70cf1e
mark spam as seen
6 years ago
a59d5dad23
fix edit of fetched acc without changing password
6 years ago
f08491dc46
fix forced password on user edit
6 years ago
2b0a2d561b
Fix connection to mysql db
6 years ago
291f8a457b
Deliver mails to alias-stripped-of-delimeter, even if catchall exists
...
This fixes delivery to an alias minus recipient delimiter in cases where a
wildcard alias would also match. For example,
* foo@xxx.tld
* %@xxx.tld
Sending to foo+spam@xxx.tld would get eaten by the catchall before this fix.
Now, the order of alias resolution is made clearer.
closes #813
6 years ago
732b5fe161
change password field type in fetch creation/edit and add validators.
6 years ago
4204facd85
Merge pull request #810 from usrpro/feat-logging
...
Implement some degree of logging
6 years ago
049ca9941f
Cleanup syntax and fix typo
6 years ago
0ac3cf9617
Don't recursivly chown on mailboxes.
...
This fixes #776 .
Recursion is not needed, as the permissions will only need to be set on the first invocation.
6 years ago
71cda7983e
Merge branch 'master' into feat-logging
6 years ago
7d01bb2a4d
LOG_LEVEL docs and changelog entry
6 years ago
b04a9d1c28
Implement debug logging for template rendering
6 years ago
b9313488dd
Add logging for tenacity.retry
...
In the process we found that the previous way of tenacity syntax caused it not to honor any args.
In this commit we've refactored to use the @decorator syntax, in which tenacity seems to behave better.
6 years ago
3b5f3af207
Merge pull request #778 from Nebukadneza/fix_recipient_delimiter
...
Attempt stripping recipient delimiter from localpart
6 years ago
9077bf7313
Merge remote-tracking branch 'upstream/master' into feat-psql-support
6 years ago
5636e7f5a7
Remove to avoid matching webroot
6 years ago
953aa04354
Added postgresql-libs to admin
6 years ago
561e2fda67
Merge remote-tracking branch 'upstream/master' into fix-favicon
6 years ago
501ecf13c1
add migration script
6 years ago
a358b5305f
Merge pull request #797 from Mailu/upgrade-pyyaml
...
Upgrade PyYAML
6 years ago
4f93e09028
Implement favicon package
...
Credit to:
- https://stackoverflow.com/a/19590415/1816774
- https://realfavicongenerator.net/
6 years ago
284d54190a
Upgrade PyYAML to 4.2b4
6 years ago
dda64fe91e
allow to disable aliases or users for domains and don't allow negativ values on domain creation/edit
6 years ago
8fe1e788b3
add missing route fixes
6 years ago
3c7bf58211
Upgrade PyYAML
...
CVE-2017-18342
Vulnerable versions: < 4.2b1
Patched version: 4.2b1
In PyYAML before 4.1, the yaml.load() API could execute arbitrary code. In other words, yaml.safe_load is not used.
6 years ago
d5d4d6c337
harden email address validation and fix routes with user_email
6 years ago
01ec6e7bf3
Removed undefined function
6 years ago
d483ef3c2a
Merge pull request #792 from hoellen/admin-broken-links-1
...
fix broken webmail and logo url in admin
6 years ago
74fe177297
Merge pull request #785 from TheLegend875/feat-displayed-name
...
Feature: send auto reply with displayed name
6 years ago
f617e82c06
fix broken webmail and logo url in admin
6 years ago
4068c5b751
Versioning for mysqlclient and psycopg2
6 years ago
b2823c23b8
Merge remote-tracking branch 'upstream/master' into feat-psql-support
6 years ago
9eaeb80a27
Finalize merge with kaiyou/feat-multiple-db
6 years ago
999d2a9557
changed default.sieve to send displayed name
6 years ago
2954d84790
added necessary ui elements
6 years ago
56f4d4c894
fixed auto-forward
6 years ago
5bdbbf60d7
fixed display of username when not logged in
6 years ago
c2d45a47fe
Attempt stripping recipient delimiter from localpart
...
Since postfix now asks us for the complete email over podop, which
includes the recipient-delimiter-and-what-follows not stripped, we need
to attempt to find both the verbatim localpart, as well as the localpart
stripped of the delimited part ….
Fixes #755
6 years ago
19df86f13f
Merge pull request #764 from usrpro/fix-alias-bug
...
Added regex validation for alias username
6 years ago
3a5b763018
Option to disable full text search (lucene)
...
This is a workaround for the bug in issue #751
6 years ago
983c388150
Merge branch 'master' into 'fix-localpart-chars'
6 years ago
6cfb74e96c
Merge branch 'master' into 'fix-localpart-chars'
6 years ago
af086bbdbe
Include DKIM in VOLUME
6 years ago
c041a9d45c
allow all characters for username in dovecot
6 years ago
24828615cf
Webmail on root, fixes #757
6 years ago
8fc2846924
Added regex validation for alias username
6 years ago
3c4ee1b31e
Merge pull request #743 from kaiyou/master
...
Fixes #738 regarding application context
6 years ago
97b3a85090
Merge pull request #737 from hoellen/fix-alias-match-behaviour
...
fix alias match behaviour
6 years ago
09a50b6cfc
Merge branch 'master' into 'master'
6 years ago
4060ac2223
Remove some forgotten debugging
6 years ago
087841d5b7
Fix the way we handle the application context
...
The init script was pushing an application context, which maked
flask.g global and persisted across requests. This was evaluated
to have a minimal security impact.
This explains/fixes #738 : flask_wtf caches the csrf token in the
application context to have a single token per request, and only
sets the session attribute after the first generation.
6 years ago
b5f51b0e2e
Update python dependencies
6 years ago
8707b0fcd7
Use a dictionary of db connection string templates
6 years ago
19f18e2240
Lowercase relays as well as other tables
6 years ago
7e388e472a
Handle relay name as an Idna domain
6 years ago
871aa14c9a
Lowercase every domain name and email
6 years ago
3df9b3962d
Add default columns to the configuration table
6 years ago
b88f61f183
Name all constraints when creating them
...
Prefious commit set the constraint names for existing databases.
New databases can now have named constraints from the ground up.
6 years ago
b8282b1d46
Support named constraints for multiple backends
...
Supporting multiple backends requires that specific sqlite
collations are not used, thus lowercase is applied to all non
case-sensitive columns. However, lowercasing the database requires
temporary disabling foreign key constraints, which is not possible
on SQLite and requires we specify the constraint names.
This migration specific to sqlite and postgresql drops every
constraint, whether it is named or not, and recreates all of them
with known names so we can later disable them.
6 years ago
e022513a94
Fix support for postgres and mysql
6 years ago
a881a1a839
Revert "Make current migrations work with postgresql"
...
This reverts commit 9b9f3731f6
6 years ago
76925e82f3
Revert "Implement CIText as NOCASE alternative in postgresql"
...
This reverts commit 0f3c1b9d15
6 years ago
f52ae5535c
Revert "Created function for returning email type"
...
This reverts commit 436055f02c
6 years ago
f6520eace6
Merge branch 'feat-psql-support' of https://github.com/usrpro/Mailu into usrpro-feat-psql-support
6 years ago
8fe9e695f3
prefer non-wildcard aliases over wildcard aliases
6 years ago
c7dcfee882
Merge pull request #713 from pgeorgi/extend-nginx
...
nginx: Allow extending config with overrides
6 years ago
79768c09f6
fix alias matching behaviour
6 years ago
6ca8ed437d
Merge pull request #732 from Nebukadneza/add_front_certificate_reload
...
Add certificate watcher for external certs to reload nginx
6 years ago
1aa97c9914
Add certificate watcher for external certs to reload nginx
...
In case of TLS_FLAVOR=[mail,cert], the user supplies their own certificates.
However, since nginx is not aware of changes to these files, it cannot
reload itself e.g. when the certs get renewed.
To solve this, let’s add a small daemon in the place of
`letsencrypt.py`, which uses a flexible file-watching framework and
reloads nginx in the case the certificates change ….
6 years ago
c00910ca4b
Merge remote-tracking branch 'upstream/master' into extend-nginx
6 years ago
97d338e68a
Rectify 'endif' placement
6 years ago
425cdd5e77
Fix syntax errors
6 years ago
20f1faf6d0
Send 404 when nothing server at '/'
...
Prevents Nginx welcome screen
6 years ago
2de4995fec
Don't redirect when webmail is served on '/'
6 years ago
f0906073e3
Merge remote-tracking branch 'upstream/master' into feat-subnet2
6 years ago
a634c7b72d
Merge pull request #725 from usrpro/fix-outlook2019-smtp
...
Add login method to smtp_auth under ssl
6 years ago
8172f3eab8
Move the Mailu Docker network to a fixed subnet.
...
This will make network configuration and host based authentication
more robust, across different deployment platforms.
The options `RELAYNETS` and`POD_ADDRESS_RANGE` are kept for compatibility.
However, their usage have become optional.
6 years ago
b6aaf57be1
Merge branch 'refactor-config' of github.com:kaiyou/mailu into refactor-config
6 years ago
d0f07984b0
Merge remote-tracking branch 'upstream/master' into refactor-config
6 years ago
9dd447e23b
Add login method to smtp_auth under ssl
...
Fixes #704
6 years ago
eac4d553a9
nginx: Allow extending config with overrides
...
To facilitate this, the default redirect at / can be disabled, even if
the default remains at redirecting to the webmailer.
The extensions are within the host scope and are read from
$ROOT/overrides/nginx/*.conf.
6 years ago
2d4bac03ad
Merge pull request #723 from usrpro/clean-healthcheck-logs
...
Admin: Prevent redirects during health checking
6 years ago
a382f74680
Merge pull request #705 from usrpro/fix-recaptcha
...
Fix recaptcha
6 years ago
37027cfce7
Merge pull request #633 from kaiyou/fix-sender-checks
...
Improve sender checks
6 years ago
d18cf7cb25
Prevent redirects during health checking
6 years ago
c9df311a0d
Set forward_destination to an empty list
...
The value of `None` resulted in an error, since a list was expected.
6 years ago
eff6c34632
Catch asterisk before resolve_domain
...
Asterisk results in IDNA error and a 500 return code.
6 years ago
7b8835070d
Added tenacity retry fir migrations connection
6 years ago
88c174fb7a
Query alternative table for domain matches
...
At present postfix checks this view for matches in the domain table and is used to accept/deny messages sent into it however it never checks for matches in the alternative table.
Fixes #718
6 years ago
436055f02c
Created function for returning email type
6 years ago
47a3fd47b5
Fix DB_FLAVOR condition testing for models.py
6 years ago
0f3c1b9d15
Implement CIText as NOCASE alternative in postgresql
6 years ago
9b9f3731f6
Make current migrations work with postgresql
6 years ago
8bdc0c71af
Allow for setting a different DB flavor
6 years ago
fed7146873
Captcha check on signup form
6 years ago
4783e61693
Fix password context
...
Fixes the following error:
```
admin_1 | [2018-11-09 09:44:10,533] ERROR in app: Exception on /internal/auth/email [GET]
admin_1 | Traceback (most recent call last):
admin_1 | File "/usr/lib/python3.6/site-packages/flask/app.py", line 2292, in wsgi_app
admin_1 | response = self.full_dispatch_request()
admin_1 | File "/usr/lib/python3.6/site-packages/flask/app.py", line 1815, in full_dispatch_request
admin_1 | rv = self.handle_user_exception(e)
admin_1 | File "/usr/lib/python3.6/site-packages/flask/app.py", line 1718, in handle_user_exception
admin_1 | reraise(exc_type, exc_value, tb)
admin_1 | File "/usr/lib/python3.6/site-packages/flask/_compat.py", line 35, in reraise
admin_1 | raise value
admin_1 | File "/usr/lib/python3.6/site-packages/flask/app.py", line 1813, in full_dispatch_request
admin_1 | rv = self.dispatch_request()
admin_1 | File "/usr/lib/python3.6/site-packages/flask/app.py", line 1799, in dispatch_request
admin_1 | return self.view_functions[rule.endpoint](**req.view_args)
admin_1 | File "/usr/lib/python3.6/site-packages/flask_limiter/extension.py", line 544, in __inner
admin_1 | return obj(*a, **k)
admin_1 | File "/app/mailu/internal/views/auth.py", line 18, in nginx_authentication
admin_1 | headers = nginx.handle_authentication(flask.request.headers)
admin_1 | File "/app/mailu/internal/nginx.py", line 48, in handle_authentication
admin_1 | if user.check_password(password):
admin_1 | File "/app/mailu/models.py", line 333, in check_password
admin_1 | context = User.pw_context
admin_1 | AttributeError: type object 'User' has no attribute 'pw_context'
```
6 years ago
72e1b444ca
Merge alembic migrations
6 years ago
5b769e23da
Merge branch 'master' into refactor-config
6 years ago
02995f0a15
Add a mailu command line to flask
6 years ago
f9e30bd87c
Update the dockerfile and upgrade dependencies
6 years ago
4a7eb1eb6c
Explicitely declare flask migrate
6 years ago
2a8808bdec
Add the configuration table migration
6 years ago
f57d4859f3
Provide an in-context wrapper for getting users
6 years ago
f6013aa29f
Fix an old migration that was reading configuration before migrating
6 years ago
206cce0b47
Finish the configuration bits
6 years ago
1bbf3f235d
Using a new class when captcha is enabled
6 years ago
12689965bd
Merge pull request #699 from usrpro/fix-admin-bug
...
Fixed admin_1 errors in the logs
6 years ago
680ad4b67a
Catching only ValueError
...
Co-Authored-By: ionutfilip <ionut.philip@gmail.com>
6 years ago
e08f3e81d0
Merge pull request #680 from usrpro/feat-startup
...
Standarize images
6 years ago
6dcc33e390
Fixed admin_1 errors in the logs
...
Fixed errors when trying to log in with an account without domain.
This closes #585
6 years ago
42e2dbe35d
Standarize image by using shared / similair layers
6 years ago
5fa2aac569
Fix imap login when no webmail selected
6 years ago
903bb70c5b
Merge remote-tracking branch 'upstream/master' into standarize-images
6 years ago
56fb74c502
Fix typo (duplicate self). Fixes #683
6 years ago
8a44a44688
Merge branch 'master' into feat-startup
6 years ago
1187cac5e1
Finished up switching from .sh to .py
6 years ago
ed81c076f2
Take out "models" path, as we are already in it
6 years ago
aed80a74fa
Rectify decleration of domain_name
6 years ago
2d382f2d67
Merge branch 'master' into fix-sender-checks
6 years ago
0e5606d493
Changed start.sh to start.py
6 years ago
eb7dfb5771
Cleaning up start.py
6 years ago
603b6e7390
Merge pull request #2 from usrpro/fix-nginx-healthcheck
...
Fix nginx healthcheck
6 years ago
81b24f61e8
Merge branch 'master' into feat-healthchecks
6 years ago
a2fea36c79
Increase HEALTHCHECK start time for services that need to wait for host resolving during startup.
...
In Docker Swarm mode the services listed below can get stuck in their start script, while they
are waiting for other services become available. Now, with HEALTHCHECK enabled, docker does not resolve
names of services that not pass HEALTHCHECK yet. Meaning that if one of the depenend services is not yet
available, it will create a chain of failing services.
The services below retry to resolve 100 time, with an average of 3.5 seconds. Hence, the --start-time
flag is now set at 350 seconds.
- dovecot (imap)
- postfix (smtp)
- rspamd (antispam)
6 years ago
c3e89967fb
Fix front health checking
...
- Specified seperated /health path in order to allow for healthcheck even if webmail and admin are not seletectd. This also allows healthchecking fom external services like DNS load balancers;
- Make curl not to fail on TLS because localhost is not included in the certificates.
6 years ago
90b8c3cc1f
Merge pull request #665 from kaiyou/feat-reply-startdate
...
Implement a start date filter for autoreply, fixes #362
6 years ago
bce1487338
Merge pull request #576 from hacor/master
...
Kubernetes fixed for production
6 years ago
1fcaef7c7e
Merge branch 'master' into fix-sender-checks
6 years ago
78bd5aea1c
enable http2, because it's that easy
6 years ago
72d4fa2bc9
remove empty line from merge conflict
6 years ago
857ad50509
Merge branch 'master' into feat-reply-startdate
6 years ago
4a5c0a6d21
Merge pull request #667 from kaiyou/fix-password-performance
...
Improve password checking performance
6 years ago
80658c30da
Merge pull request #669 from hoellen/fix-webmail-root
...
Fix nginx conf if webmail is on root path
6 years ago
f10416e85a
Merged with new PRs
6 years ago
118ea0f3fb
Merge pull request #604 from ofthesun9/feature-swarm
...
Enabling swarm deployment on master branch
6 years ago
727970514d
Merge pull request #527 from ofthesun9/feat-fuzzyhashes
...
Trying to enable fuzzy hashes for rspamd
6 years ago
82069ea3f0
Clean most of the refactored code
6 years ago
f40fcd7ac0
Use click for the manager command
6 years ago
fc24426291
First batch of refactoring, using the app factory pattern
6 years ago
d4f32c3e7d
remove rewrite if webmail is on root
6 years ago
01fa179767
Update the user password in database when needed
6 years ago
988e09e65e
Add a profiler in debug mode for improving performance
6 years ago
dba8f1810d
Do not check the password another time in Dovecot
6 years ago
d5162328ec
Allow dovecot to write the source configuration directory for compiling sieve scripts
6 years ago
ce0bf3366d
Learn fuzzy hashes automatically
6 years ago
0a5dbf6230
Re-enable local dovecot sieve scripts
6 years ago
ef55ca525c
Deleted conflicting merge files
...
Signed-off-by: Hans Cornelis <hacornelis@gmail.com>
6 years ago
e67a0d464b
Deleted old folder
6 years ago
3098343360
Merged conflicts
6 years ago
4ea12deae7
Added kubernetes to Mailu
6 years ago
ed3388ed6e
Merge branch 'master' into feat-reply-startdate
6 years ago
7c82be904f
Merge branch 'master' of github.com:mailu/mailu
6 years ago
a412951a30
simpler healthcheck for postfix
6 years ago
0bc901a722
add healthcheck for dovecot
6 years ago
1fc40bf932
add healthcheck for postfix
6 years ago
39272ab05c
add healthcheck for http services
6 years ago
e784556330
Fix an edge case with old values containing None for coma separated lists
6 years ago
f647d1a0bc
Merge branch 'master' into fix-sender-checks
6 years ago
5ada669f43
Rebase reply startdate on master
6 years ago
bee81d1a54
Merge pull request #647 from HorayNarea/bcrypt
...
support bcrypt and use it as default
6 years ago
9fd7851cb6
Merge pull request #648 from HorayNarea/apk-no-cache
...
remove apk-warning about cache
6 years ago
15eb2806bf
Merge branch 'master' into feat-reply-startdate
6 years ago
5035975c41
Remove Postfix debugging
6 years ago
c6846fd8db
Merge branch 'master' into feat-reply-startdate
6 years ago
a91a54b5f1
Merge pull request #651 from usrpro/fix-certbot
...
Front: move to Alpine:3.8 and fixing #522
6 years ago
de43060ef8
Move to Alpine:3.8 and fixing #522
6 years ago
bdfcc5b530
pin alpine-version for 'none'-image
6 years ago
6aafef88bd
remove apk-warning about cache
6 years ago
c8b39c5d4a
support bcrypt and use it as default
6 years ago
10ec2f999a
Another (embarrassing) fix for a merge typo
6 years ago
2e1aa079c1
Fix one (hopefully) last merge typo
6 years ago
4b9dbf00a8
Fix yet another merge-time typo
6 years ago
e8e133b53d
Fix a merge typo in postfix build
6 years ago
00b5ae11db
Merge branch 'master' into feat-abstract-db
6 years ago
13146be57e
Merge branch 'master' into feature-swarm
6 years ago
508e519a34
Refactor the postfix views and implement sender checks
6 years ago
8b189ed145
Separate senderaccess and senderlogin maps
6 years ago
74796201ec
Merge branch 'master' into feature-swarm
6 years ago
fc99eb7b34
Re-enable sender access check to prevent source spoofing
6 years ago
f3f0b98755
Fix relay restrictions so email gets delivered correctly
6 years ago
0817629869
Increase attempts as it failed on fresh Swarm host
6 years ago
716ed16f34
Fix typo
6 years ago
16469d7282
Upgrade to newer pip version
6 years ago
1bae5968ad
Import tenacy and fix syntax errors
6 years ago
c457ccfa60
Use tenacity for resolver retries
6 years ago
d6c386651d
Merge branch 'master' into fix-swarm-start
6 years ago
09d77bc2de
Handle the case where the variable REJECT_UNLISTED_RECIPIENT is not set
6 years ago
cc17962c86
fixes #583
6 years ago
4d70a8737e
Expose the data volume for admin container
6 years ago
2cba045013
Explicitely declare required volumes, fixes #568
6 years ago
fcad52b145
Implement a start date filter for autoreply, fixes #362
6 years ago
82bb8c2fd9
Merge remote-tracking branch 'github/master' into feat-abstract-db
6 years ago
f5668dea51
Handle relays as virtual transports through podop
6 years ago
9890e1fb2a
Fix the dovecot configuration path
6 years ago
42c6bdb4df
Split the internal blueprint into multiple view files
6 years ago
dc4b0d21ea
Clean the dovecot configuration dir
6 years ago
f9c6c98180
Remove fetchmail dependency to the databse
6 years ago
43b6547e1c
Lower the loglevel of podop
6 years ago
542793260b
Handle wildcard aliases using podop
6 years ago
0d52364eac
Fix alias resolution through podop
6 years ago
6d088504bd
Adjust podop debug level based on environment
6 years ago
6ba55ee377
Implement the sieve script name resolution pattern
6 years ago
3c725bf634
Only support generating the default sieve script
6 years ago
ca6c0bc8fd
Fix the user sieve script generation
6 years ago
4d25083847
Move sieve script generation to the admin container
6 years ago
cfeaa189f9
Use proper 404 return codes for missing objects
6 years ago
d8365bfbcf
Use simpler routes for Dovecot
6 years ago
697caaab81
Update podop access and mail restrictions
6 years ago
7143fb8c47
Implement some basic views for podop
6 years ago
39cd0d5034
Upgrade to alpine 3.8 for smtp and imap
6 years ago
68aa797720
Merge branch 'master' into feat-abstract-db
6 years ago
f5f09fad6e
Reverting the patch for dovecot.conf, as it is not needed
6 years ago
0b885548ab
bind to any protocol
6 years ago
73ca5fb3d3
Provide a more generic skeletton for postfix virtual lookups
6 years ago
23e288aadc
Enabling swarm deployment on master branch:
...
-Extends the usage of POD_ADDRESS_RANGE
-Provides documentation
6 years ago
5dc9ee9516
Merge pull request #510 from hoellen/spam-trash-fix
...
Dont flag spam as ham if moved to trash
6 years ago
d917f60352
Merge pull request #553 from HorayNarea/compress
...
add optional Maildir-Compression
6 years ago
64269e08c0
Merge pull request #552 from HorayNarea/master
...
add full-text search support
6 years ago
313b79538e
Merge pull request #513 from mprihoda/feature/better-ratelimit-error
...
Return correct status codes from auth rate limiter failure.
6 years ago
cc8e15748b
Retry 10 times when resolving fails in start.py scripts
6 years ago
0bdb2a16bc
add optional Maildir-Compression
6 years ago
fb62e6b5a2
add full-text search support
6 years ago
f506966abc
Pin Alpine 3.7 to preserve the Postfix version
6 years ago
9350bb9b9a
Use fixed alpine:3.7 tag to prevent postix upgrade
6 years ago
3dca1a834c
Pin alpine 3.7 until we fix the certbot issue, see #522
6 years ago
18fe8cd9f2
Pin alpine:3.7 for Dovecot since extdata was removed from repos, fixes #528
6 years ago
5ad02ae2e5
Use a more uniform 'Save' for most form submits, fixes #523
6 years ago
c04e58498d
Remove unused postfix sqlite files
6 years ago
bb73933e1e
Switch postfix to Podop
6 years ago
82e738cc53
Remove the old code of postproxy
6 years ago
b5d6b93869
Switch to using Podop in Dovecot
6 years ago
809fe78f82
Add dovecot views to the internal API
6 years ago
28001213d4
Remove the redis-based quota code
6 years ago
76617a3c97
Store the quota status in database
6 years ago
2b2ab864d1
Add support for querying the table in Dovecot proxy
6 years ago
70175f8c28
Add postproxy support for Dovecot dict protocol
6 years ago
262e82a367
Add a postfix socketmap to http proxy
6 years ago
f5e7751835
Return correct status codes from auth rate limiter failure.
6 years ago
ca26264d01
Dont flag spam as ham if moved to trash ( fix #474 )
6 years ago
75a1bf967c
Merge pull request #502 from hoellen/webmail-messagesize
...
Use message_size_limit variable from env for webmail client_max_body_size
6 years ago
c51e1b9eef
webmail client_max_body_size with message_size_limit and 8M tolerance
6 years ago
74b72375cb
Merge pull request #493 from MFAshby/user_validation
...
Made User and UserSignup validation consistent for the local part of
6 years ago
53bf6085dc
Merge pull request #501 from hoellen/webmail-root
...
Add posibilty to run webmail on root '/'
6 years ago
9091e54fda
Hide administration header in sidebar for normal users.
6 years ago
81a6a7cbf6
Use message_size variable from env for webmail
6 years ago
a1fb8442e3
Add posibilty to run webmail on root '/'
6 years ago
0284b6a8e9
Made User and UserSignup validation consistent for the local part of the email address
6 years ago
14687d09ba
Fix announcements for idna domains
7 years ago
e543477c2e
Revert "Only enable milter for incoming emails"
...
This reverts commit cfd233039e
7 years ago
cfd233039e
Only enable milter for incoming emails
7 years ago
6828231c28
Fix the path of the nginx pid in startup scripts, fixes #483
7 years ago
1b0b3a2b1e
Only check login mismatch for authenticated users, fixes #309
7 years ago
1371ba5f5e
Add the keep field to fetch forms, fixes #479
7 years ago
ea658a174d
Fix a typo in the base html template
7 years ago
b6c76a5e39
Do not remove openssl when purging build deps, fixes #481
7 years ago
a47ba3474c
Merge pull request #448 from romracer/pod-address
...
Use POD_ADDRESS_RANGE for Dovecot if it exists
7 years ago
3beceb90ec
Merge pull request #429 from mildred/parametrize-hosts
...
Add various environment variables to allow running outside of docker-compose
7 years ago
a9e41960a1
Merge pull request #468 from dtwardow/flex_tls_filenames
...
TLS using configurable filenames
7 years ago
91e51a24c8
Merge pull request #465 from sanduhrs/feature/463
...
Remove services status page
7 years ago
7d661ab80d
don't require BootstrapCDN for FontAwesome (GDPR-compliance)
7 years ago
6bb4c6e2f0
Parametrize front address from dovecot
7 years ago
ae8c9f5a6b
Add various environment variables to allow running outside of docker-compose
7 years ago
50f9f379e9
Flexible filenames for TLS via envvars (flavours 'cert' and 'mail' only)
7 years ago
6177571e4d
Remove services status localization
7 years ago
b541d4c257
Remove services status sidebar link
7 years ago
e89b32a3f4
Remove services route
7 years ago
ec8e82aaca
Remove services status template
7 years ago
f55e5e26cd
Update messages.po (POEditor.com)
7 years ago
2b96abbef4
Update messages.po (POEditor.com)
7 years ago
af38d5ab0c
Update messages.po (POEditor.com)
7 years ago
fc89b30e8a
Update messages.po (POEditor.com)
7 years ago
791fab688a
Update messages.po (POEditor.com)
7 years ago
c9b0832899
Update messages.po (POEditor.com)
7 years ago
fa1b0ac32c
Update messages.po (POEditor.com)
7 years ago
75f0791965
Update messages.po (POEditor.com)
7 years ago
c91c5c7493
Update messages.po (POEditor.com)
7 years ago
299a654e97
Update messages.po (POEditor.com)
7 years ago
494e52d8f0
Update messages.po (POEditor.com)
7 years ago
3b7014d563
Add dummy spanish and russion languages
7 years ago
be0a0b4ac8
Update translation strings
7 years ago
8bad30cd59
Move the domain MX status to the detail page
7 years ago
7f0447514c
Finish storing the user quota to redis
7 years ago
80893be68b
Add a missing import to dnspython
7 years ago
091369915b
Display the user quota in the admin interface
7 years ago
e13593f29a
Switch to database 2 for rate limiting
7 years ago
d1dbba2d3a
Add expose instructions in Dockerfiles, fixes #392
7 years ago
62d1a0c104
Add a status field to the domain list
7 years ago
bb0d7bf6dc
Enforce the nocase collation on the email table
7 years ago
186c30d2ac
Have the admin listen on ipv6
7 years ago
35276c3101
Merge pull request #458 from Farthen/master
...
Dovecot: Add SQL iterate_query to config file.
7 years ago
dfaedb76f1
Merge pull request #447 from sanduhrs/feature/446
...
Add a sqlalchemy custom type for unicode to idna conversion of domain names
7 years ago
f75280e4a3
Dovecot: Add SQL iterate_query to config file.
...
This allows to use doveadm -A to execute maintenance tasks for all users on the server
7 years ago
9968d708f1
Update the prod requirements
7 years ago
381e76511d
Add self-service domain registration
7 years ago
c688970b32
Respect user enabled flag in admin authentication
7 years ago
d3064579f4
Respect user enabled flag in basic authentication
7 years ago
92f4858323
Respect user.enabled status in internal authentication
7 years ago
d2c6cecca6
Remove is_enabled method and use the enabled attribute instead
7 years ago
5bfdd75738
Respect user enabled flag on user.login
7 years ago
78f4fa7db9
Add field to ui for user enabled flag
7 years ago
20d6fbae48
Add enabled flag to user model
7 years ago
2c2a1ed042
Remove stale link to old auto-forward settings. Fixes #450
...
Also update a reference to 'smtp' to use HOST_AUTHSMTP
7 years ago
a51416a4af
Merge pull request #452 from sanduhrs/feature/449
...
Add enabled flag to user model
7 years ago
e843f7ef1f
Respect user enabled flag in admin authentication
7 years ago
c8540ddba7
Respect user enabled flag in basic authentication
7 years ago
6fc22e5432
Respect user.enabled status in internal authentication
7 years ago
733b89bff5
Remove is_enabled method and use the enabled attribute instead
7 years ago
3b66fcada7
Respect user enabled flag on user.login
7 years ago
7139a27bf1
Add field to ui for user enabled flag
7 years ago
f585197e52
Add enabled flag to user model
7 years ago
e5c25c395f
Remove stale link to old auto-forward settings. Fixes #450
...
Also update a reference to 'smtp' to use HOST_AUTHSMTP
7 years ago
7f5bd98a2e
Add parameters to database field
7 years ago
93d5254b3f
Add another type decorator for idna email support
7 years ago
6018995534
Use POD_ADDRESS_RANGE for Dovecot if it exists
...
This is required to override allow_nets in a Kubernetes environment where pods are not recreated with the same IP address.
7 years ago
792c720c13
Save user email domain_name as idna representation
7 years ago
c40e255f3b
Reset relay columns to string
7 years ago
d9ea64fac7
Import idna library and move code a bit upwards
7 years ago
5a7272ff12
Replace other occurences of domain names with idna
7 years ago
1b666cd25b
Add a sqlalchemy custom type for unicode to idna conersion of domain names
7 years ago
db0cd8efb4
Fix the client setup page when not logged in
7 years ago
e92113bd57
Merge pull request #433 from mildred/delivered-to-hdr
...
Add original Delivered-To header to received messages
7 years ago
b4134b7774
Add a client setup page, fixes #342
7 years ago
fa0bda7b69
Merge the auto-forward and antispam settings
7 years ago
3ef4e1f6b7
Add support for recaptcha upon signup
7 years ago
e02e47c48e
Merge pull request #416 from calebj/patch-1
...
Add support for sending from alternative domains
7 years ago
b9e67635f4
Use HOST_ADMIN in "Forwarding authentication server". Fixes #436 .
7 years ago
649a4fc9cf
Add Delivered-To header to received messages
...
Postfix, after expanding the alias, is not transmitting the original
envelope recipient email address to dovecot and cannot record it in a
Received: header.
The LMTP DSN extension allows postfix to specify an ORCPT= parameter to
the "RCPT TO:" line (in postfix src/smtp/smtp_proto.c). However, dovecot
does not support the DNS extension on the LMTP endpoint. It has
preliminary support of the ORCPT parameter in latest versions but is is
disabled and not working.
The solution taken was to add a sieve script to parse the Received:
header written by postfix and parse the original RCPT TO address from
it. Then add the header through the "editheader" sieve extension. Later
sieve scripts can take this header to perform further filtering.
7 years ago
b58dcfb511
Add support for sending from alternative domains
...
See Mailu/Mailu#415
7 years ago
29a1548532
Add explicit ssl_protocols in conf
7 years ago
dfb5463c94
Relax the frame filtering to allow roundcube to display previews
7 years ago
04278b6cbf
Pass the full host to the backend, fixes #372
7 years ago
6c56c8e298
Specify the client max body size in the front, related to #371
7 years ago
f538e33dcf
Parametrize hosts
...
Allows to use mailu without docker-compose when hostnames are not set up
by docker itself but provided via a separate resolver.
Use case: use mailu using nomad scheduler and consul resolver instead of
docker-compose. Other servers are provided by the DNS resolver that
resolves names like admin.service.consul or webmail.service.consul.
These names needs to be configurable.
7 years ago
d8ebfbe020
Display infinite user quotas correctly, fixes #368
7 years ago
6ec0fe7036
Adding options for mail-letsencrypt
7 years ago
d98f16333a
Display an infinite quota when necessary for users, fixes #345
7 years ago
8d224824ea
Display a conditional button for generation dkim keys, fixes #346
7 years ago
d0b8de72e4
Do not deny HTTP access upon TLS error when the flavor is mail
7 years ago
bfc898c2d8
Move dhparam to /conf
7 years ago
f1ad2cf4d0
Use a predefined dhparam.pem, This fixes issue #322
7 years ago
7a9d2c9725
Merge pull request #353 from ripkens/patch-1
...
Added adress verification before accepting mails for delivery
7 years ago
acb5d7da38
Use relative redirect for / to the webmail
7 years ago
2dfc91ac4d
Use a map for passing x-forwarded-proto along
7 years ago
7375134474
Update main.cf
7 years ago
175349a224
Added adress verification before accepting mails for delivery
...
See https://www.endpoint.com/blog/2015/05/28/postfix-address-verification
Block client until address verifiction is completed and mail will not be rejected by relaying MTA or smarthost.
If verification fails, mail is rejected.
If verification takes too long, mail is temporaryly rejected and sending client will retry later.
7 years ago
42314d3d75
Remove a remaining rebug print() statement
7 years ago
a4f46ced49
Properly use x-forwarded-proto with redirects in the webui, related to #347
7 years ago
48d736feef
Configure a resolver for the mail server to populate xclient hostnames
7 years ago
59766d289e
Fix for relayed Domains
7 years ago
319965a4af
Add a format check for the email localpart when signing up
7 years ago
18ae6a4a0f
Fix the signup quota
7 years ago
e85eada522
Fix the login view when no next page is provided
7 years ago
def0a8b89d
Fix the signup domain list with non infinite mailbox max count
7 years ago
2662abedef
Enable self-service account signup
7 years ago
3b79e5196a
Add a default quota setting for new accounts
7 years ago
6d71fa96ad
Add a signup field to domains
7 years ago
4761646616
Make sure stale pid files are dealt with, fix #341
7 years ago
743eb81908
Fix the Webdav behavior with Radicale, related to #334
7 years ago
328001a417
Merge pull request #329 from HorayNarea/patch-1
...
Disable ssl_session_tickets, see https://wiki.mozilla.org/Security/Server_Side_TLS#TLS_tickets_.28RFC_5077.29
7 years ago
c545b8d110
Honor feature limitations for imap and pop3
7 years ago
3e464b0b70
Update messages.po (POEditor.com)
7 years ago
952a50665b
Update messages.po (POEditor.com)
7 years ago
d4441b6815
Move nl and sv loca to LC_MESSAGES
7 years ago
ab34ce4e8e
Add dummy files for pl and it loca
7 years ago
2f4758a445
Update messages.po (POEditor.com)
7 years ago
e368c200b1
Update messages.po (POEditor.com)
7 years ago
f3ae318132
Perform webdav authentication in nginx, fixes #330
7 years ago
17b184e5c8
Implement a basic authentication API
7 years ago
8920982213
Properly pass the request uri to the authentication backend
7 years ago
97dd9ed77c
Fix a missing variable in the nginx config
7 years ago
d61ba8e651
disable ssl_session_tickets
7 years ago
eb32871904
Force nginx to run dns queries at runtime
7 years ago
ad7c5e48c5
automatically set nginx-worker based on CPU-count
7 years ago
059cbb37a4
Update messages.po (POEditor.com)
7 years ago
e9f4719a40
Update messages.po (POEditor.com)
7 years ago
112cff3621
Update messages.po (POEditor.com)
7 years ago
f30a09f182
Update messages.po (POEditor.com)
7 years ago
826d212a75
Update messages.po (POEditor.com)
7 years ago
72029ca220
Update messages.po (POEditor.com)
7 years ago
aa9a065d5b
Update messages.po (POEditor.com)
7 years ago
2e370e3731
Update messages.po (POEditor.com)
7 years ago
ebddc7bec2
Add dummy translations for swedish and dutch
7 years ago
f362ecdb19
Fix the missing trailing space on /webmail, fixes #304
7 years ago
652ca769dc
Allow authentication from webmail directly, fixes #308
7 years ago
28eff398d1
Send a vacation response only until the end date, fixes #218
7 years ago
011e1fa52d
Add an end of vacation field, related to #218
7 years ago
fb42797ab7
Use SITENAME and WEBSITE properly in the admin ui
7 years ago
872271cb47
Clean the configuration variable list
7 years ago
1a3f85fbc2
Make the rspamd webui available, fixes #157
7 years ago
ac0c339aa8
Implement welcome emails, fixes #107
7 years ago
570e90acbc
Move email send features to the User model
7 years ago
92f2025d7c
Enable pop3 on the frontend, fix #313
7 years ago
6e61500eb1
Fix the authentication behavior with non-existing users
7 years ago
b0f8d7ab78
move to new translation folder
...
Change-Id: If4b4a25b305aab3d96155283881573a125272f81
7 years ago
2427544972
Move statistics to the start.sh script for clarity
7 years ago
e9813f99bf
Fix the annonucement feature by sending mail to the proper smtp server, fixes #309
7 years ago
bfa50c5aa7
Add a new TLS flavor named 'mail'
7 years ago
6eaffd514d
Make it possible to opt out of statistics
7 years ago
45902ae012
Fix a bug when trying to authenticate with a non existing user
7 years ago
baff8dd043
Avoid blacklisting the webmail
7 years ago
e625bc9adb
Update the milter port on Postfix
7 years ago
f5ee77519e
Rename spam threshold to spam tolerance
7 years ago
1d9b3b00a7
Use rspamd as a milter service instead of deprecated rmilter
7 years ago
edbea372e9
Merge branch 'master' into refactor-repo
7 years ago
ac53b3ed97
Merge branch 'master' into refactor-repo
7 years ago
689be5f2d9
Move all directories per theme
7 years ago
Ionut Filip