2523: fix JS error r=mergify[bot] a=nextgens
## What type of PR?
bug-fix
## What does this PR do?
It fixes a bug whereby one may have to click twice on the submit button depending on timing.
e.trigger() will error out on most browsers.
Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
2479: Rework the anti-spoofing rule r=mergify[bot] a=nextgens
## What type of PR?
Feature
## What does this PR do?
We shouldn't assume that Mailu is the only MTA allowed to send emails on behalf of the domains it hosts.
We should also ensure that it's non-trivial for email-spoofing of hosted domains to happen
Previously we were preventing any spoofing of the envelope from; Now we are preventing spoofing of both the envelope from and the header from unless some form of authentication passes (is a RELAYHOST, SPF, DKIM, ARC)
### Related issue(s)
- close#2475
## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.
- [x] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.
Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
2157: configure datatables via html5 data attributes r=mergify[bot] a=ghostwheel42
## What type of PR?
bug-fix
## What does this PR do?
allows to sort most columns as a human would expect
### Related issue(s)
- closes#2154
## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.
- [ ] In case of feature or enhancement: documentation updated accordingly
- [ ] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.
Co-authored-by: Alexander Graf <ghostwheel42@users.noreply.github.com>
2500: Password policy enforcement r=mergify[bot] a=nextgens
## What type of PR?
Feature
## What does this PR do?
It enforces that all new passwords set by users are at least 8 characters in length and checks all users' passwords at login time against HIBP.
The HIBP part requires javascript and Mailu to be accessed over HTTPS to work but degrades gracefully (no message will be shown if the requirements are not met).
It was a conscious choice to implement it at this level: administrators can set weaker passwords using non-HTTP based interfaces.
### Related issue(s)
- close#2208
- close#287
## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.
- [ ] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.
Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
Co-authored-by: Alexander Graf <ghostwheel42@users.noreply.github.com>
2518: Add dev runner for admin container r=mergify[bot] a=ghostwheel42
## What type of PR?
development feature
## What does this PR do?
This adds a shell script (run_dev.sh) to run a live development environment in a container.
Co-authored-by: Alexander Graf <ghostwheel42@users.noreply.github.com>
2517: Use the new notation: arm64/v8 instead of arm64 r=mergify[bot] a=nextgens
## What type of PR?
bug-fix
## What does this PR do?
With a modern version of docker compose, on arm64 you get:
```
docker-compose pull
[+] Running 0/8
⠼ admin Pulling 1.4s
⠿ smtp Error 1.4s
⠿ imap Error 1.4s
⠿ webmail Error 1.4s
⠿ antispam Error 1.4s
⠼ redis Pulling 1.4s
⠼ front Pulling 1.4s
⠿ resolver Error 1.4s
no matching manifest for linux/arm64/v8 in the manifest list entries
```
This may fix it.
It's discussed at https://stackoverflow.com/questions/70819028/relation-between-linux-arm64-and-linux-arm64-v8-are-these-aliases-for-each-othe
Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
Co-authored-by: Dimitri Huisman <diman@huisman.xyz>
2498: Implement ITERATE in podop r=mergify[bot] a=nextgens
## What type of PR?
Feature
## What does this PR do?
This makes ``doveadm -A`` work.
The easiest way to try it out is:
```
doveadm dict iter proxy:/tmp/podop.socket:auth shared/userdb
or
doveadm user '*'
```
The protocol is described at https://doc.dovecot.org/developer_manual/design/dict_protocol/
The current version of dovecot is not using flags... so there's little gain in implementing them.
### Related issue(s)
- close#2499
## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.
- [ ] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.
Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
Co-authored-by: Alexander Graf <ghostwheel42@users.noreply.github.com>
2513: fix(auto-reply): include start and end dates in the auto-reply period r=mergify[bot] a=bb-wkr
## What type of PR?
bug-fix
## What does this PR do?
Include start and end dates in the auto-reply period
### Related issue(s)
closes#2512
## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry is not applicable, you can check it or remove it from the list.
- [X] In case of feature or enhancement: documentation updated accordingly
- [X] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.
Co-authored-by: wkr <wkr@bitsbeats.com>
2509: Login docker.io to prevent rate limiting for pulling images r=mergify[bot] a=Diman0
## What type of PR?
feat/fix
## What does this PR do?
Added login to docker.io for CI/CD workflow. When logged in, we have a higher limit for pulling images. The arm workers were rate limited.
Co-authored-by: Dimitri Huisman <diman@huisman.xyz>