Commit Graph

195 Commits (15ce95e78d262322cd65f1a6241753d686e462e3)

Author SHA1 Message Date
andryyy 653c058e33
[Web] Feature: Allow app passwords for imap/smtp, allow to set acl permission for app passwords (domain admin [when logged in as user] and user) 2019-12-02 11:02:19 +01:00
andryyy affbba50ca
[Web] Fix active U2F key in UI 2019-10-25 19:13:24 +02:00
tinect 74244c7d0a cleanup cached js and css 2019-10-20 19:39:46 +02:00
andryyy 80a9c39956
[Web] Validate plain md5 hashes, closes #3017 2019-10-08 17:36:28 +02:00
André Peters fe38275cb5
Revert "Make is_valid_domain_name more strict" 2019-09-21 14:16:50 +02:00
André Peters 0dbc03a416
Merge pull request #2941 from patschi/domain-name-fix
Make is_valid_domain_name more strict
2019-09-19 15:03:51 +02:00
andryyy 0487f5ea1d
[Web] Add JVM memory indiator and add minor fixes 2019-09-17 20:11:53 +02:00
Patrik Kernstock 6b2f5a30d2
Slightly modified is_valid_domain_name for #1118 2019-09-15 20:40:07 +01:00
andryyy 893ce5a789
[Web] Allow to add external sender addresses, can be disabled by domain admin ACL and is disabled by default 2019-09-02 11:11:41 +02:00
andryyy 294e0bc07f
[Web] Cache validation result in Redis 2019-08-11 22:19:26 +02:00
andryyy 9a500a7068
[Web] Verify OPTIONAL license plus minor fixes 2019-08-09 14:16:52 +02:00
andryyy 5087d5ce96
[Web] Allow aliases as send-as 2019-05-26 08:29:10 +02:00
Evangelos Foutras e1a3313660 [Web] Fix showing domain with disabled sender check
If a mailbox is allowed to send as any address under its domain (+ alias
domains) and the domain itself has no aliases configured, no information
about this fact is shown to the user. That is to say, the "Do not check
sender access for the following domain(s) and its alias domains" field
under mailbox details is empty.

The above is happening because the second GROUP_CONCAT() returns NULL
making the enclosing CONCAT() return NULL as well. Fix this by using
CONCAT_WS() which correctly handles the case of zero domain aliases.

Furthermore, move the IFNULL() to the first GROUP_CONCAT() because
CONCAT_WS() returns an empty string when both GROUP_CONCAT()'s are
NULL. We can be certain that when the first GROUP_CONCAT() is NULL
the second one will be as well, so it's safe to use IFNULL() there.
2019-05-20 18:08:45 +03:00
andryyy 49492dff61
[Web, Dovecot] Allow empty/unlimited quota 2019-03-28 22:05:12 +01:00
andryyy c7c115d63a
[Solr] Use fixed, recommended schema but add EdgeNGramFilterFactory 2019-03-10 09:40:04 +01:00
andryyy d60c6a4e56
[Web] Fix shared alias displain in user view, fixes #2274 2019-02-07 22:37:11 +01:00
andryyy 4a1362fc4d
[Web] Minor alias overview fix 2019-02-06 09:23:44 +01:00
andryyy 1e764009bf
[Web] Use INTL_IDNA_VARIANT_UTS46 in idn_to_ascii (thanks to @Knight1 !)
[Web] Some PHP fixes (warnings, notices)
[Web] Add quota notification tools
2019-02-05 00:10:21 +01:00
andryyy 07392b7437
[Watchdog] Use stackoverflow.com for DNS check
[Git] Ignore mail_plugins*
[Dovecot] Read mail_plugins from dynamically generated file
[Dovecot] Encrypt FTS
[Dovecot] Add break_imap_seach option to Solr
[Web] Add ability to send quarantine notification mails
[Web] Minor style fixes
[Web] Add new MAILBOX_DEFAULT_ATTRIBUTES (doc updates, anyone? :-( )
[Web] Use rcpt_smtp if rcpt_mime is not set
[Web] Other minor fixes
2019-01-29 00:20:39 +01:00
andryyy f924f9b5cd
[Web] Minor fix in return 2019-01-16 19:11:23 +01:00
André Peters f3dfe346bf [Dovecot] Allow setting ACL_ANYONE in mailcow.conf 2019-01-16 19:08:19 +01:00
andryyy ca9c610460
[Web] Apple mobileconfig enhancements by @feldsam 2019-01-02 21:28:22 +01:00
andryyy 5b5976ba23 [Web] Show ratelimited messages, allow to delete Redis hash to reset status of a bucket 2018-12-15 21:24:39 +01:00
andryyy f9bfac4d27 [Web] Fix _sogo_static_view creation when parent tables changed order of cols 2018-11-12 10:01:33 +01:00
André e30dfd6751 [Web] Queue manager for Postfix
[Web] Add sogo_access mail attribute
[Web] Allow to wipe SOGo profiles
2018-10-23 21:14:57 +02:00
André 5ce15eac4b [Web] Some language updates for sys mails 2018-10-12 10:57:47 +02:00
André 9f0be1d8a8 [Web] Fix require_once to always include document root
[Web] Add system mails (send mails to all mailboxes via LMTP)
[Web] Allow to add more administrators
[Web] Fix domain administrator editing
[Web] Remove some foreign keys
[Web] Remove username from API
[Web] Remove more .php extension from code
[Web] More minor fixes
2018-10-11 11:59:23 +02:00
André 4396be2938 [Rspamd] Place socket in _rspamd home and fix permissions
[Compose] Remove volume for Rspamd socket
[Web] Do not exit loop on fuzzy errors when learning a message as spam
2018-09-30 09:53:25 +02:00
André 0fb43f4916 [Docker API] Use TLS encryption for communication with "on-the-fly" created key paris (non-exposed)
[Docker API] Create pipe to pass Rspamd UI worker password
[Dovecot] Pull Spamassassin ruleset to be read by Rspamd (MANY THANKS to Peer Heinlein!)
[Dovecot] Garbage collector for deleted maildirs (set keep time via MAILDIR_GC_TIME which defaults to 1440 minutes)
[Web] Flush memcached after mailbox item changes, fixes #1808
[Web] Fix duplicate IDs, fixes #1792
[Compose] Use SQL sockets
[PHP-FPM] Update APCu and Redis libs
[Dovecot] Encrypt maildir with global key pair in crypt-vol-1 (BACKUP!), also fixes #1791
[Web] Fix deletion of spam aliases
[Helper] Add "crypt" to backup script
[Helper] Override file for external SQL socket (not supported!)
[Compose] New images for Rspamd, PHP-FPM, SOGo, Dovecot, Docker API, Watchdog, ACME, Postfix
2018-09-29 22:01:23 +02:00
André 5db40bf688 [Web] Implement MD5-CRYPT verification, fixes #1665 2018-09-20 10:25:36 +02:00
André a5488d4ba6 [Web] Fix init db on fresh installations 2018-09-10 16:23:08 +02:00
André c9554ca022 [Compose] Update watchdog image
[Watchdog] Fix IP detection with multiple networks
[Web] Show API field (no docs, no support, wip)
[Web] haveibeenpwned.com implementation
[Web] User and domain admin ACL (no docs, no support, wip)
[Web] Some minor fixes
2018-09-09 21:18:38 +02:00
André a11cce6765 [Web] Fixes for BCC map input fields
[Web] Allow to edit alias address
[Web] $_SESSION['return'] now contains arrays and allows multiple returned messages and log entries
[Web] Some language string changes
[Web] General SQL exception handler, remove all try catch handlers
[Web] Alias table now has an ID as primary key
[Web] Be more aggressive with localStorage cleaning
2018-08-13 23:20:40 +02:00
André 73f880ffba [Web] Workaround for missing function when using API (fixes #1640)
[Web] Fixes SQL error on admin username change
2018-08-05 22:31:53 +02:00
André 7f86a80670 [Web] Fix log line handling
[Web] Add mailcow UI logs
[Web] Changes to _SESSION['return'] logic and logger (more to come)
[Web] Show last login
[Web, Postfix] Allow to disable sender check completely
[Web] Many minor fixes
[Web] Update some libs
2018-08-03 20:31:33 +02:00
André 8934a3a68b [Web] Allow spam/ham "traps"
[Web] Changes to docker functions
[Web] List all containers of compose project name
2018-07-29 00:38:45 +02:00
André 1ce5f09f6e [Web] Verify new hashes: SSHA512 and SHA512-CRYPT, fix password update for users in sogo static view 2018-07-12 00:48:09 +02:00
André 2f270f3b9b [Web] Verify additional password hashes (only SHA512-CRYPT is supported today) 2018-07-12 00:24:23 +02:00
André de00654a0a [Web] Use preg_replace to detect passwd schema case-insensitive, sorry for wasting some ms cpu time 2018-07-11 22:12:22 +02:00
André Peters 1f09544f32 Fix conflict 2018-02-16 22:44:02 +01:00
André Peters 2865c892a6 [Multi] Fixes #1058 by including a 'force password update' option and also introduces a attributes json object to be used for further mailbox configurations in the future 2018-02-16 22:40:51 +01:00
André Peters 618be3bf14 [Web] Even more fixes for #1017 2018-02-10 22:42:46 +01:00
André Peters 77c7c1fe07 [Web] Fix css; Use socket for Rspamd history; Fix function file name 2018-02-08 22:56:12 +01:00
andre.peters 3feabe00a2 [Web] Fixes TLSA for self-signed certs, closes #997 2018-02-03 19:13:15 +01:00
andre.peters b2032c0e8a [Web] Hide up time of containers that are missing
[Web] Rename fail2ban logs to netfiter logs
[Web] Adding timeout to curl requests for dockerapi, fixes #981
[Web] Removed cow from favicon
2018-02-01 13:28:17 +01:00
andre.peters 43770434b3 [Web] Alias by alias domain is now in 'direct aliases', added desc to direct and shared aliases 2018-01-21 15:02:56 +01:00
andre.peters 1afca35b22 [Web] Fixes super annoying password verification bug #867 2018-01-19 11:52:32 +01:00
andre.peters d76d103c76 [Web] Move DNS diagnostic to modal, some minor fixes 2018-01-02 10:24:48 +01:00
Kristian 7cb23cf4a3 User - Allow send as all - list all domains inc. alias domains 2017-12-30 21:25:45 +01:00
andre.peters adc23d86f9 Various... 2017-12-09 13:17:15 +01:00
André 85d1ee2f49 [Web] Autodiscover returns given password decoded and trimed; Add sieve pre and post filters to UI; Move ajax called files; Rework log system: 100 entries per default, add more per click; Syncjobs: Do not read log to data attribute 2017-11-03 20:37:24 +01:00
André db5a3ae47f [Web] Start work on ACL; [Helper] Nextcloud helper script 2017-10-26 10:21:12 +02:00
andryyy 9c37cd76e5 [Web] Autodiscover logs 2017-10-02 21:47:31 +02:00
andryyy 08d6b97ffa [Dovecot] New Dovecot and Pigeonhole versions; include delete2 option in imapsync 2017-08-31 10:36:10 +02:00
andryyy 66ae588445 [Web] Started work on ACL, fix notifications 2017-08-18 22:18:14 +02:00
Michael Kuron 53d44ed18d Merge branch 'dev' into autoconfig 2017-07-23 10:12:03 +02:00
andryyy 84ad579437 [Web] Initial ratelimit support, more API actions 2017-07-16 11:03:28 +02:00
Michael Kuron 5abeb313ba Autoconfig harmonization
- use $autodiscover_config everywhere
- non-443 HTTPS ports in autoconfig etc.
- disabling POP service via SRV record
- fix display name in Outlook IMAP autodiscover
- allow multiple calls to TLSA generator and support Sieve STARTTLS
- iOS mobileconfig generator
2017-07-10 20:52:51 +02:00
André Peters beec3d47f7 Revert "Client configuration guides" 2017-07-10 08:46:20 +02:00
André Peters c5acdd70fb Merge pull request #427 from mkuron/clientconfig2
Client configuration guides
2017-07-10 08:03:28 +02:00
andryyy a2f1c09a84 [Web] Style changes to DKIM import section, push login errors to Redis channel 2017-07-04 18:05:04 +02:00
Michael Kuron 96ed94dedd Client configuration guides
- iOS mobileconfig generator
- non-443 HTTPS ports in autoconfig etc.
- disabling POP service via SRV record
- fix display name in Outlook IMAP autodiscover
- allow multiple calls to TLSA generator and support Sieve STARTTLS
2017-07-02 16:29:42 +02:00
andryyy b7cb4ac9d5 [Fail2ban] Added more regex to match failed or disallowed logins to Dovecot, changed Mailcow to mailcow 2017-07-02 11:10:35 +02:00
andryyy 6c64ffbd49 [acme-mailcow] Auto-detect container ids for restart; Restart containers after restore 2017-06-29 10:29:56 +02:00
andryyy 433e0c8f9a Allow /0 to whitelist all, push f2b version in yml 2017-06-27 09:32:57 +02:00
andryyy b9ffcf2bf8 Add whitelist function to Fail2ban 2017-06-26 23:18:05 +02:00
andryyy 4f93bfd04f Initial commit: Set fail2ban parameters in UI 2017-06-25 21:33:26 +02:00
andryyy c75ce5124c Fixes: First line was missing in logs. Adds support for Fail2ban container 2017-06-24 00:07:53 +02:00
andryyy 112e056fda Add function to generate 3 1 1 TLSA digest 2017-06-23 14:23:12 +02:00
andryyy 178a219c05 Merge branch 'dev' of https://github.com/mailcow/mailcow-dockerized into dev 2017-05-26 23:02:34 +02:00
andryyy ce6bf18c2f Web UI improvements 2017-05-26 23:02:04 +02:00
André Peters 4f2a1d940c Merge pull request #313 from mkuron/fail2ban
Authentication rate limiting for Mailcow UI
2017-05-25 15:52:15 +02:00
Michael Kuron de8ec199fa PHP authentication failure: log straight to error log 2017-05-25 15:36:44 +02:00
Michael Kuron 1906c26e5d Auth rate limiting: Mailcow UI and correct treatment of v4-mapped addresses 2017-05-25 13:57:50 +02:00
andryyy 56a9a09e2f Further migration 2017-05-23 22:23:46 +02:00
andryyy fd5a59086b More structural changes 2017-05-23 09:36:59 +02:00
andryyy c9184a9bad Various fixes and changes 2017-05-17 21:17:00 +02:00
andryyy 2291b4e121 Added SOGo logs 2017-05-13 22:58:29 +02:00
andryyy 15853df84c JS changes and fixes 2017-05-13 08:55:34 +02:00
andryyy 14a9a1c616 A lot of changes... still not finished, use with caution.
Edit actions can be done with the internal API, trying to get rid of edit and add files
2017-05-11 23:10:32 +02:00
andryyy f582f0f01b Various fixes, update u2flib 2017-05-09 23:25:23 +02:00
andryyy a8e550244e Remove DKIM keys with api 2017-05-09 21:30:08 +02:00
andryyy bbff045d04 Use API for forwarding hosts 2017-05-09 13:43:54 +02:00
andryyy 74359f6df4 Use Redis for forwarded_hosts, some fixes 2017-05-08 23:09:40 +02:00
André Peters 5861bec0c3 Merge pull request #256 from mkuron/forwardinghosts
Optionally enable spam filter for forwarding hosts
2017-05-08 19:00:42 +02:00
andryyy f77c40a179 Better log table, some MySQL to Redis migrations, API changes, other minor changes... 2017-05-08 15:41:05 +02:00
Michael Kuron 519be0d9f8 Merge branch 'forwardinghosts' of github.com:mkuron/mailcow-dockerized into forwardinghosts 2017-05-08 07:39:51 +02:00
Michael Kuron 7efc720d47 Merge remote-tracking branch 'origin/dev' into forwardinghosts 2017-05-08 07:39:30 +02:00
andryyy 3b80a1af37 Change admin layout, add Postfix logs 2017-05-08 00:27:35 +02:00
Michael Kuron 2444cd1cd2 Remove duplicated SQL 2017-05-07 20:12:24 +02:00
Michael Kuron ae6d7d63fc Optionally enable spam filter for forwarding hosts 2017-05-07 08:50:28 +02:00
andryyy 8c8bfc0108 Add Json log parser for Dovecot and Postfix containers 2017-05-06 23:52:40 +02:00
andryyy 1501df6e42 Use Redis for DKIM keys, define any selector, auto-merge old keys to Redis and fallback to files 2017-05-05 10:35:27 +02:00
andryyy f1e4b4fb39 Added TOTP, minor fixes 2017-05-03 18:05:35 +02:00
andryyy 3ffc20e238 Fixes #225 > Subquery can return multiple rows 2017-04-30 12:18:19 +02:00
andryyy 5586bd2bb5 Initial push or quick actions in alias table 2017-04-26 23:38:18 +02:00
andryyy 4729a912c7 Fix max aliases 2017-04-25 11:27:59 +02:00
andryyy 8b463d53d6 Fixes adding aliases to alias domains 2017-04-24 13:15:04 +02:00
Michael Kuron 08612f0aef Merge remote-tracking branch 'origin/dev' into forwardinghosts 2017-04-22 18:13:58 +02:00
Michael Kuron df71e97a09 Forwarding hosts: use SPF records if present 2017-04-22 12:33:53 +02:00