Gnous/mailcow
2
0
Fork 0
Code Issues Pull Requests 1 Packages Projects Releases Wiki Activity
5,406 Commits 2 Branches 0 Tags 46 MiB
02512e0f4f
Commit Graph

853 Commits

Author SHA1 Message Date
FreddlePat
68abd6a535 migrating from u2f-api.js to webauthn 2022-01-12 21:57:21 +01:00
FreddlePat
be4af41e64 migrating from u2f-api.js to webauthn 2022-01-12 21:26:42 +01:00
FreddlePat
d1d134038f migrating from u2f-api.js to webauthn 2022-01-12 21:09:18 +01:00
El-Virus
ea1a02bd7d
Fix "The operation is insecure." when trying to register fido2 device. 
navigator.credentials.create(); Doesn't accept a port in the "id" parameter. So, when trying to register a fido2 device via WebAuthn throws: "The operation is insecure." on firefox and "The relying party ID is not a registrable domain suffix of, nor equal to the current domain." on Chrome or Edge.
This commit replaces `$_SERVER['HTTP_HOST']` with `$_SERVER['SERVER_NAME']` when initializing `$WebAuthn` which excludes the port to formulate correct requests.
Now Mailcow allows the registration of fido2 devices when running in a non-standard port(eg. 443).
 2021-12-26 17:11:06 +01:00
andryyy
e4d23b7887
[Web] Add default sieve accessq 2021-12-07 13:56:56 +01:00
Kristian Feldsam
08f8eeb2e6 [web] fixed html in alerts 
Signed-off-by: Kristian Feldsam <feldsam@gmail.com>
 2021-11-28 22:49:18 +01:00
André Peters
f4319a0e20
Revert "Add app-passwd list (#4281) (#4311)" (#4318) 
This reverts commit 8dad04e0e6.
 2021-11-11 13:48:47 +01:00
Felix
8dad04e0e6
Add app-passwd list (#4281) (#4311) 
* Add list option for app passwords

* Add app-passwd option to OpenAPI documentation
 2021-11-11 13:45:04 +01:00
andryyy
116c7919e3
[Web] Add missing sieve permission 2021-10-31 08:46:54 +01:00
jkellerer
9946bb3427
[Web] Display app password name in last login (#4304) 2021-10-30 16:51:26 +02:00
andryyy
f0aae22f77
[Dovecot, Web] Fix remaining issues of app password enhancements from #4296 2021-10-30 14:34:33 +02:00
andryyy
644b1f85d1
[Dovecot, Web] Allow SOGo access with app password when imap is disabled; Add sieve to mailbox protocol access restrictions 2021-10-30 08:03:41 +02:00
andryyy
51c8d43223
[Web] Fix array 2021-10-29 07:33:44 +02:00
andryyy
15ce95e78d
[Web, Dovecot] Add sieve and pop3 to protocol access for app passwords 2021-10-29 06:15:10 +02:00
andryyy
514340b2a7
[Web] Minor fix 2021-10-28 22:05:28 +02:00
andryyy
e13bc242a4
[Web, Dovecot] Allow to define scope of services for app passwords 2021-10-28 21:57:19 +02:00
andryyy
f01de1a5c0
[Web] Disable SSO button when admin login is disabled, fixes #4297 2021-10-27 13:42:45 +02:00
Jürgen Kellerer
d38c371253
Removed toggle ALLOW_APP_PASSWORDS_IN_EAS 2021-10-27 09:39:34 +02:00
Jürgen Kellerer
2ac5294d55
Supporting app-passwds in cal/carddav & ActiveSync 2021-10-24 17:29:35 +02:00
andryyy
8769a91388
[Web] Allow multiple TOTP 2021-10-23 17:14:43 +02:00
Kristian Feldsam
974100400b [Web] fixed totp var in twig 
Signed-off-by: Kristian Feldsam <feldsam@gmail.com>
 2021-10-21 09:06:13 +02:00
Kristian Feldsam
a7612e6c39 [web] alerts - fixed double quotes and escaped html 
Signed-off-by: Kristian Feldsam <feldsam@gmail.com>
 2021-10-16 15:24:27 +02:00
Kristian Feldsam
40b5ed4d72 [web] fix annoucements and notifications close #4292 
Signed-off-by: Kristian Feldsam <feldsam@gmail.com>
 2021-10-15 17:21:47 +02:00
andryyy
3c9b84ff6f [Compose] Update PHP and netfilter images 2021-10-15 13:06:48 +02:00
Kristian Feldsam
0b64967ec5
[web] implemented twig templating system (#4264) 
Signed-off-by: Kristian Feldsam <feldsam@gmail.com>
 2021-09-22 20:47:10 +02:00
andryyy
4d5ebafc1a
[Web] Fix password issue on first login when adding new admin 2021-09-06 11:46:09 +02:00
Kristian Feldsam
0d53df3a4d
[Web] PHP8 fix, fixes #4259 (#4261) 
Signed-off-by: Kristian Feldsam <feldsam@gmail.com>
 2021-09-02 19:30:14 +02:00
andryyy
e616755072
[Web] Fix app password editing, fixes #4239 2021-09-01 18:11:00 +02:00
Kristian Feldsam
c1dcb529f3
[Web] Add DKIM key when adding a domain or alias domain (#4254) 
Signed-off-by: Kristian Feldsam <feldsam@gmail.com>
 2021-09-01 16:51:10 +02:00
Kristian Feldsam
54c4d7e49c
[Dovecot: Imapsync] Parse, save and show last run status (#4253) 
* [imapsync] - check for errors in returned_text

Signed-off-by: Kristian Feldsam <feldsam@gmail.com>

* [imapsync] parse and save exit status

Signed-off-by: Kristian Feldsam <feldsam@gmail.com>

* [dovecot] updated image version

Signed-off-by: Kristian Feldsam <feldsam@gmail.com>
 2021-09-01 16:29:11 +02:00
Kristian Feldsam
e3b58c6b80
[Web] Fido2 support for M1 Macs with Touch ID (#4255) 
Signed-off-by: Kristian Feldsam <feldsam@gmail.com>
 2021-09-01 16:28:37 +02:00
andryyy
50c90badb0
[Web] Cast all DNS check results to arrays 2021-08-21 15:47:17 +02:00
andryyy
913e9cbb11
[Web] Fix transport validation 2021-08-17 22:07:06 +02:00
andryyy
d6eb21f7a6
[Web] Fix some empty responses in alert box 2021-08-15 20:19:28 +02:00
andryyy
2dfcfd16d0
[Web] Fix DKIM import 2021-08-14 07:31:52 +02:00
andryyy
c925951bca
[Web] Fix wrong autoconfig port 2021-08-10 09:06:42 +02:00
André Peters
639e751678
Revert "[Web] Fix broken autoconfig ports, fixes #4221 (#4223)" (#4226) 
This reverts commit 9afea99189.
 2021-08-10 09:05:01 +02:00
Kristian Feldsam
9afea99189
[Web] Fix broken autoconfig ports, fixes #4221 (#4223) 
Refactored to use function, moved another function

Signed-off-by: Kristian Feldsam <feldsam@gmail.com>
 2021-08-10 02:08:04 +02:00
andryyy
c13c521699
[Web] Fix broken autoconfig ports, fixes #4221 2021-08-09 21:35:19 +02:00
andryyy
2cd0b56b14
[Web] Various PHP 8 fixes, partly fixes #4219 2021-08-09 08:28:22 +02:00
andryyy
cf8fdae277
[Web] Some minor fixes and improvements for PHP 8 2021-08-08 16:06:55 +02:00
Kristian Feldsam
96e055e226
[Web] Customized apps name in header (#4201) 
Signed-off-by: Kristian Feldsam <feldsam@gmail.com>
 2021-08-01 18:00:14 +02:00
Ashus
b1e89fae37
[Web] Added vnd.dovecot.execute/filter/pipe sieve validator support (fixes #2026) (#4204) 
Signed-off-by: Ashus <github.com@ashus.net>
 2021-08-01 17:59:20 +02:00
andryyy
fcbd4e762d
[Web] Set default relayhost to 0 when adding a mailbox; add missing lang strings 2021-07-29 14:37:33 +02:00
andryyy
773383cacd
[Web] Fix BCC toggling active when changing the type, thanks for @feldsam 2021-07-24 19:05:06 +02:00
Kristian Feldsam
f6ca438cf4
[Web] Various i18n strings updated or added (#4196) 
Signed-off-by: Kristian Feldsam <feldsam@gmail.com>
 2021-07-24 18:51:19 +02:00
Shea Ramage
08dfc0220e
[Web] Remove redundant password hash checks (#4180) 
Co-authored-by: Thomas Ramage <tramage@eucmail.com>
 2021-07-09 09:54:35 +02:00
Kristian Feldsam
f73ac284e5
[Web] Improve responsive design (#4171) 
Complete styling for mobile devices

Signed-off-by: Kristian Feldsam <feldsam@gmail.com>
 2021-07-09 08:21:09 +02:00
Kristian Feldsam
9c6995c82d
[web] dns diag spf record syntax link updated (#4175) 
Added old one on new domain name

Signed-off-by: Kristian Feldsam <feldsam@gmail.com>
 2021-07-07 06:40:37 +02:00
andryyy
fa9327a279
[Rspamd, Web] Update Rspamd settings preset to include BCC as enabled module 2021-07-05 16:25:43 +02:00
andryyy
78084c5e7b
[Web] Log only latest datetime of a unique datetime, service and ip combination 2021-07-01 06:44:37 +02:00
andryyy
7178db8ae1 Merge branch 'master' of github.com:mailcow/mailcow-dockerized 2021-06-30 10:24:13 +02:00
andryyy
8b08d09ca2
[Web] Remove XMPP options 
[Web] Add Rspamd preset #4
[Web] Do not show failed SASL logins (and also remove them from db)
 2021-06-30 10:13:29 +02:00
prey87
f767a27859
added ip address to $f2b_options['perm_bans'] and $f2b_options['active_bans'] to fail2ban.inc (#4152) 
added link to bgp.he.net/ip/ in admin fail2ban overview
 2021-06-28 07:07:29 +02:00
andryyy
5035e5bb42
[Web] Update composer deps 2021-06-23 08:05:09 +02:00
andryyy
d156a93a84
[Web] Various fixes; Allow users to login with FIDO2, SOGo SSO is a wip 2021-06-22 07:17:55 +02:00
andryyy
9773d3549e
[Web] Fix password policy for mailbox user; minor Solr status fix 2021-06-17 07:07:48 +02:00
andryyy
05c85b4140
[Web] Fix alias verification 2021-06-09 11:03:48 +02:00
andryyy
47b57df3a2
[Web] Show users last PW change, allow to select n days for last logins 2021-06-09 07:19:57 +02:00
andryyy
da20d5dc38
[Web] Replace country flags, improve flags for last logins, add info about last password change of a user 2021-06-08 13:16:10 +02:00
andryyy
08d666985f
[Web] Improve last logins, switch to country name (workaround, fix in progress) 2021-06-06 21:00:48 +02:00
andryyy
a89fe53e4a
[Web] Show country of sasl ips 2021-06-06 11:57:15 +02:00
andryyy
7050d7c259
[Web] Fix BCC validation for aliases 2021-06-05 08:40:55 +02:00
andryyy
2d55b54904
[Web] Show users the last known connections for SASL authentication 
[Web] Feature: Log SASL authentication
 2021-06-04 14:29:39 +02:00
andryyy
aebb527b05 Merge branch 'master' of github.com:mailcow/mailcow-dockerized 2021-06-03 08:37:41 +02:00
andryyy
735bcb2f55
[Web] Allow to select aliases for BCC 2021-06-03 08:00:59 +02:00
Sven Michels
b39ac8f649 [Web] Fix: spf record validation failed with redirect 
When using a redirect in your SPF record, the web UI validation
failed when your record contained a ipv6 address. In
web/inc/ajax/dns_diagnostics.php the function get_spf_allowed_hosts
is called with the second parameter to be true to expand ipv6
addresses. But when called for redirects, the value was not set to
true, so it defaulted back to false. This caused an unexpanded ipv6
address to be added to the array and the in_array match for ipv6
never matched as it is always called with expand_ipv6.
While looking at the code i noted some messed up in the indention,
which is also "fixed" by this commit.
 2021-05-28 23:48:15 +02:00
andryyy
8a83587800
[Postfix] Finally here: MX based transport map routing; Sorry it took years, Patrik 
[Web] Small fixes
 2021-05-28 10:40:41 +02:00
andryyy
5065667ae4
[Postfix] Allow to set and override a relayhost per mailbox 
[Web] Replace recycle icon with trash (this one made me a bit sad)
[Web] Various small fixes
[Web] Allow or disallow a domain admin to change relayhost settings (default is off, as previous default)
 2021-05-26 14:02:27 +02:00
andryyy
f81483d312
[Rspamd] Create bad header map 2021-05-23 23:13:34 +02:00
andryyy
bbb1d7aa39
[Web] Small UI fixes 2021-05-23 23:09:37 +02:00
andryyy
8779a1a873
[Web] Update libs 2021-05-23 13:20:53 +02:00
andryyy
e6d5516c7f
[Web] Feature: Allow copies of quota notifications to be sent via SMTP to internal or external addresses 
[Web] Various style fixes
[Web] Remove unused or unnecessary dependencies
 2021-05-23 13:18:52 +02:00
andryyy
beda649ecf
[Dovecot] Quota notifications: Allow to send to external address (BCC via mailcow UI) 2021-05-23 09:49:36 +02:00
andryyy
9c075af2d9
[Web] Bye Glyphicons, hello BS5 icons\!; [Web] Change font to Noto for better compatibility; 2021-05-22 12:13:37 +02:00
andryyy
e21e0b9dbf
[Web] Time limited aliases: show create date; create aliases with 1yr retention by default; create temp alias in alias domain; better random names; accept any validity time 
[Web] Replace spam score slider by nouislider and rework table a bit
 2021-05-21 12:48:24 +02:00
andryyy
99ab945ae2
[Web] Important: Do not allow API actions with r/o session key, THANKS TO Samuel Oosterholt 2021-05-20 15:51:52 +02:00
andryyy
8e38adf2f6
[Web] Fix transport check for IPv6 addresses, thanks to marekschneider 2021-05-20 11:35:01 +02:00
andryyy
423ccb9ba9
[Web] Fix XSS in app password names 2021-05-07 14:49:21 +02:00
andryyy
af57a5312b
[Web] Update composer libs, fixes PHPMailer security issue 2021-05-04 20:46:05 +02:00
andryyy
0e307e8ffe
[Web] Add TLS 1.3 to XMPP site, should fix #4064 2021-04-18 20:55:29 +02:00
andryyy
eb1d5dd134
[Web] Remove debugging points 2021-04-18 12:53:59 +02:00
Loïc Beurlet
995f135ff1
[Web] Fix password check typo from 19843cc (#4056) 2021-04-15 08:44:45 +02:00
andryyy
19843cc786
[Web] Fix mailbox editing when password is unchanged, fix adding new administrator (fixes #4054, fixes #4053); [Web] Update libs, add LDAP for future admin/domain admin authentication 2021-04-13 21:34:47 +02:00
andryyy
5ea649b292
[Web] Feature: Add password policy 2021-04-09 13:46:17 +02:00
andryyy
616226be8a
[Web] Fix quota calculation, fixes #4036 2021-04-08 11:17:27 +02:00
andryyy
c23f9437af
[Web] WIP: Add BSI CA 2021-04-07 21:29:28 +02:00
andryyy
dd198747b7
[Web] Use api/v1/get/mailbox/reduced for faster loading of mailbox table 2021-03-19 16:33:50 +01:00
andryyy
b82bf5073b
[Web] Feature: Expand alias over alias domains 2021-03-19 09:28:45 +01:00
andryyy
a3c6c51b35
[Web] Feature: Expand alias over alias domains 2021-03-19 09:11:55 +01:00
andryyy
851f575384 Merge branch 'master' of github.com:mailcow/mailcow-dockerized 2021-03-13 12:38:06 +01:00
andryyy
b3e3ab2e61
[Web] Allow to specify transport test rcpt 2021-03-13 12:37:24 +01:00
Shea Ramage
4feceb08da
Refactor support for pre-hashed passwords (#4024) 2021-03-10 21:06:32 +01:00
andryyy
0b19c77cdc
[Web] Fix textarea number width > 999 
[Web] Do not create 2M session file when saving large Rspamd global filter maps (thanks @Drago)
[Web] Do not cache content of Rspamd global filter maps
 2021-03-08 12:36:23 +01:00
andryyy
6b3ea28501
[Web] Minor fixes 2021-03-01 10:21:26 +01:00
andryyy
64264767d7
[Web] Fix quota-left calculations when editing a mailbox (respect max domain quota) 2021-02-23 08:42:04 +01:00
Frederick Nicklas Ambo Eggert Eggertsen
6840a1665d
[Web] Danish lang. 🇩🇰 (#3971) 
Create Danish lang
 2021-02-19 18:23:08 +01:00
andryyy
22402a274b
[Web] Require Docker functions for xmpp config reload 2021-02-16 21:41:55 +01:00
andryyy
11a858a7fd
[Web] Add Trustkey CA for WebAuthn 2021-02-16 21:33:46 +01:00
andryyy
666d344322
[Web] Remove XMPP site when disabling XMPP 2021-02-14 21:33:43 +01:00