e341e0141f
Merge remote-tracking branch 'upstream/master' into token-ipv6
6 years ago
dfe5ddb18e
Check if sender address is not null before trying to check the domain.
6 years ago
fd236e4ea5
Fix syntax error
6 years ago
7a9685bcb9
Resolve admin during start to work around Docker DNS flaky-ness
6 years ago
23bad0e042
Set value for SQLALCHEMY_DATABASE_URI in admin DEFAULT_CONFIG to SQLite URI
6 years ago
db8977e17a
Update SQLite DB file in DEFAULT_CONFIG and DB_TEMPLATES
6 years ago
6dea8b422a
Merge pull request #839 from hoellen/fix-create-onupdate-default
...
fix default value for created_at and updated_at
6 years ago
79c4edcaf1
Merge pull request #838 from hoellen/schema-maxUserQuota-1
...
Change quota columns type to BigInteger
6 years ago
54169db7e3
Merge branch 'master' into fix-forward-validation
6 years ago
9721df0bc5
fix default value for created_at and updated_at
...
Use date instead of datetime for created_at and updated_at.
6 years ago
cfa7ca3838
Merge branch 'master' into schema-maxUserQuota-1
6 years ago
f1e1c96c3b
create migration file for changing quota to big integer
6 years ago
2d34f0ee52
Fixed auto-forward email validation
6 years ago
c8758a6526
allow ipv6 addresses for tokens
6 years ago
2af540a1c9
change quota columns to bigint
6 years ago
66df7a31b0
Unify and coerce booleans from env used in admin
...
At some places, the string that DOMAIN_REGISTRATION is got used like a boolean
(an easy misassumption to make while in python and dealing with the config
dict), making `DOMAIN_REGISTRATION=False` act as a truthy value. To stop such
future problems from happening, coerce environment config strings to real
bools.
closes #830
6 years ago
9175b15d49
Merge pull request #826 from Nebukadneza/reverse_user_alias_pref
...
Reverse the resolution order of user and alias
6 years ago
278bcfb13a
Merge pull request #814 from Nebukadneza/fix_delimiter_alias
...
Deliver mails to alias-stripped-of-delimeter, even if catchall exists
6 years ago
276dc3ffda
Reverse the resolution order of user and alias
...
Since it’s common for wildcard~ish systems to prefer concrete objects over
wildcards, and aliases can be broad-wildcards (think catchall, %@xxx.tld ), it
may be more intuitive for users that user-names rank higher than aliases. This
makes it impossible for user-names to be unreachable, since they can be
completely overridden by a catchall otherwise.
This changes default behavior, and is not configurable.
closes #815
6 years ago
8541ae2c46
Fix migration order after merge
6 years ago
99cd1d714b
Merge pull request #799 from hoellen/fix-domain-negative-values-1
...
don't allow negative values on domain creation/edit
6 years ago
2567646f47
Merge branch 'master' into fix-domain-negative-values-1
6 years ago
50343f354e
Merge remote-tracking branch 'upstream/master' into feat-psql-support
6 years ago
b8d1beed29
Simplify alias-wildcard detection to not consider actual % anymore
6 years ago
10d2601963
Unsimplify alias precedence handling
...
As discussed with hoellen on matrix, since postfix indeed supports including
the recipient delimiter character in a verbatim alias, we should support so too
— and handle its precedence correctly. The clearer and simpler formulation of
the precedence-clauses are credit to @hoellen. Thanks!
6 years ago
b4822ad43e
Merge pull request #821 from HorayNarea/fix-remove-fts
...
remove (broken) FTS
6 years ago
161394a774
Merge pull request #817 from hoellen/fix-fetch-passwordfield-1
...
fix edit of fetched acc without changing password
6 years ago
492f3867d8
remove (broken) FTS
6 years ago
ac64a75743
Simplify alias precedence handling; Remove bogus changelog
6 years ago
520ebbb97d
Merge pull request #819 from hoellen/move-spam-1
...
Mark messages as seen when reporting them as spam
6 years ago
7247b4b10c
Merge branch 'master' into fix-password-on-user-edit
6 years ago
b65d70cf1e
mark spam as seen
6 years ago
a59d5dad23
fix edit of fetched acc without changing password
6 years ago
f08491dc46
fix forced password on user edit
6 years ago
2b0a2d561b
Fix connection to mysql db
6 years ago
291f8a457b
Deliver mails to alias-stripped-of-delimeter, even if catchall exists
...
This fixes delivery to an alias minus recipient delimiter in cases where a
wildcard alias would also match. For example,
* foo@xxx.tld
* %@xxx.tld
Sending to foo+spam@xxx.tld would get eaten by the catchall before this fix.
Now, the order of alias resolution is made clearer.
closes #813
6 years ago
732b5fe161
change password field type in fetch creation/edit and add validators.
6 years ago
4204facd85
Merge pull request #810 from usrpro/feat-logging
...
Implement some degree of logging
6 years ago
049ca9941f
Cleanup syntax and fix typo
6 years ago
0ac3cf9617
Don't recursivly chown on mailboxes.
...
This fixes #776 .
Recursion is not needed, as the permissions will only need to be set on the first invocation.
6 years ago
71cda7983e
Merge branch 'master' into feat-logging
6 years ago
7d01bb2a4d
LOG_LEVEL docs and changelog entry
6 years ago
b04a9d1c28
Implement debug logging for template rendering
6 years ago
b9313488dd
Add logging for tenacity.retry
...
In the process we found that the previous way of tenacity syntax caused it not to honor any args.
In this commit we've refactored to use the @decorator syntax, in which tenacity seems to behave better.
6 years ago
3b5f3af207
Merge pull request #778 from Nebukadneza/fix_recipient_delimiter
...
Attempt stripping recipient delimiter from localpart
6 years ago
9077bf7313
Merge remote-tracking branch 'upstream/master' into feat-psql-support
6 years ago
5636e7f5a7
Remove to avoid matching webroot
6 years ago
953aa04354
Added postgresql-libs to admin
6 years ago
561e2fda67
Merge remote-tracking branch 'upstream/master' into fix-favicon
6 years ago
501ecf13c1
add migration script
6 years ago
a358b5305f
Merge pull request #797 from Mailu/upgrade-pyyaml
...
Upgrade PyYAML
6 years ago
4f93e09028
Implement favicon package
...
Credit to:
- https://stackoverflow.com/a/19590415/1816774
- https://realfavicongenerator.net/
6 years ago
284d54190a
Upgrade PyYAML to 4.2b4
6 years ago
dda64fe91e
allow to disable aliases or users for domains and don't allow negativ values on domain creation/edit
6 years ago
8fe1e788b3
add missing route fixes
6 years ago
3c7bf58211
Upgrade PyYAML
...
CVE-2017-18342
Vulnerable versions: < 4.2b1
Patched version: 4.2b1
In PyYAML before 4.1, the yaml.load() API could execute arbitrary code. In other words, yaml.safe_load is not used.
6 years ago
d5d4d6c337
harden email address validation and fix routes with user_email
6 years ago
01ec6e7bf3
Removed undefined function
6 years ago
d483ef3c2a
Merge pull request #792 from hoellen/admin-broken-links-1
...
fix broken webmail and logo url in admin
6 years ago
74fe177297
Merge pull request #785 from TheLegend875/feat-displayed-name
...
Feature: send auto reply with displayed name
6 years ago
f617e82c06
fix broken webmail and logo url in admin
6 years ago
4068c5b751
Versioning for mysqlclient and psycopg2
6 years ago
b2823c23b8
Merge remote-tracking branch 'upstream/master' into feat-psql-support
6 years ago
9eaeb80a27
Finalize merge with kaiyou/feat-multiple-db
6 years ago
999d2a9557
changed default.sieve to send displayed name
6 years ago
2954d84790
added necessary ui elements
6 years ago
56f4d4c894
fixed auto-forward
6 years ago
5bdbbf60d7
fixed display of username when not logged in
6 years ago
c2d45a47fe
Attempt stripping recipient delimiter from localpart
...
Since postfix now asks us for the complete email over podop, which
includes the recipient-delimiter-and-what-follows not stripped, we need
to attempt to find both the verbatim localpart, as well as the localpart
stripped of the delimited part ….
Fixes #755
6 years ago
19df86f13f
Merge pull request #764 from usrpro/fix-alias-bug
...
Added regex validation for alias username
6 years ago
3a5b763018
Option to disable full text search (lucene)
...
This is a workaround for the bug in issue #751
6 years ago
983c388150
Merge branch 'master' into 'fix-localpart-chars'
6 years ago
6cfb74e96c
Merge branch 'master' into 'fix-localpart-chars'
6 years ago
af086bbdbe
Include DKIM in VOLUME
6 years ago
c041a9d45c
allow all characters for username in dovecot
6 years ago
24828615cf
Webmail on root, fixes #757
6 years ago
8fc2846924
Added regex validation for alias username
6 years ago
3c4ee1b31e
Merge pull request #743 from kaiyou/master
...
Fixes #738 regarding application context
6 years ago
97b3a85090
Merge pull request #737 from hoellen/fix-alias-match-behaviour
...
fix alias match behaviour
6 years ago
09a50b6cfc
Merge branch 'master' into 'master'
6 years ago
4060ac2223
Remove some forgotten debugging
6 years ago
087841d5b7
Fix the way we handle the application context
...
The init script was pushing an application context, which maked
flask.g global and persisted across requests. This was evaluated
to have a minimal security impact.
This explains/fixes #738 : flask_wtf caches the csrf token in the
application context to have a single token per request, and only
sets the session attribute after the first generation.
6 years ago
b5f51b0e2e
Update python dependencies
6 years ago
8707b0fcd7
Use a dictionary of db connection string templates
6 years ago
19f18e2240
Lowercase relays as well as other tables
6 years ago
7e388e472a
Handle relay name as an Idna domain
6 years ago
871aa14c9a
Lowercase every domain name and email
6 years ago
3df9b3962d
Add default columns to the configuration table
6 years ago
b88f61f183
Name all constraints when creating them
...
Prefious commit set the constraint names for existing databases.
New databases can now have named constraints from the ground up.
6 years ago
b8282b1d46
Support named constraints for multiple backends
...
Supporting multiple backends requires that specific sqlite
collations are not used, thus lowercase is applied to all non
case-sensitive columns. However, lowercasing the database requires
temporary disabling foreign key constraints, which is not possible
on SQLite and requires we specify the constraint names.
This migration specific to sqlite and postgresql drops every
constraint, whether it is named or not, and recreates all of them
with known names so we can later disable them.
6 years ago
e022513a94
Fix support for postgres and mysql
6 years ago
a881a1a839
Revert "Make current migrations work with postgresql"
...
This reverts commit 9b9f3731f6
6 years ago
76925e82f3
Revert "Implement CIText as NOCASE alternative in postgresql"
...
This reverts commit 0f3c1b9d15
6 years ago
f52ae5535c
Revert "Created function for returning email type"
...
This reverts commit 436055f02c
6 years ago
f6520eace6
Merge branch 'feat-psql-support' of https://github.com/usrpro/Mailu into usrpro-feat-psql-support
6 years ago
8fe9e695f3
prefer non-wildcard aliases over wildcard aliases
6 years ago
c7dcfee882
Merge pull request #713 from pgeorgi/extend-nginx
...
nginx: Allow extending config with overrides
6 years ago
79768c09f6
fix alias matching behaviour
6 years ago
6ca8ed437d
Merge pull request #732 from Nebukadneza/add_front_certificate_reload
...
Add certificate watcher for external certs to reload nginx
6 years ago
1aa97c9914
Add certificate watcher for external certs to reload nginx
...
In case of TLS_FLAVOR=[mail,cert], the user supplies their own certificates.
However, since nginx is not aware of changes to these files, it cannot
reload itself e.g. when the certs get renewed.
To solve this, let’s add a small daemon in the place of
`letsencrypt.py`, which uses a flexible file-watching framework and
reloads nginx in the case the certificates change ….
6 years ago
Tim Möhlmann