Commit Graph

102 Commits

Author SHA1 Message Date
Tomy Hsieh
7d46de33d8
Merge from upstream branch 'staging'
# Conflicts:
#	data/web/inc/vars.inc.php
2022-09-30 16:03:49 +08:00
FreddleSpl0it
753cde0b85
parse host from url for webauthn library 2022-07-14 09:40:02 +02:00
Tomy Hsieh
88d7593d89
Switch language key
zh_Hans -> zh-cn
zh_Hant -> zh-tw
2022-07-02 17:01:50 +08:00
Patrick Schult
11700d7ecb
Merge pull request #4403 from El-Virus/master
Fix "The operation is insecure." when trying to register fido2 device.
2022-06-30 13:55:07 +02:00
Niklas Meyer
89fdd1986d
Jan(moo)uary Update 2022 - Revision A (2022-01a) (#4445)
* [API] Fix minor issue in api docs

* [GH-Actions][stale] Add neverstale label to exempt list

* [Web] add github version tag

* [Web] add github version tag error handling

* Passwordless SOGo auth: support for calendar invitations and calendar/contacts subscriptions

Inviting someone to a calendar event triggers a request to /SOGo/so/otheruser@example.com/freebusy.ifb/ajaxRead. Subscribing to someone's calendar/contacts triggers a request to /SOGo/so/otheruser@example.com/foldersSearch. The email address in the URL is different from the logged-in user, which needs to be handled appropriately by sogo-auth.php.

* [Web] add github version tag - adjust css

* [Compose] Update SOGo Autoreply Schedule to 5m

Based on the advice of inverse (SOGo developer). Thanks to https://github.com/jmber

Closes: https://github.com/mailcow/mailcow-dockerized/issues/4436

* [Web] add github version tag - move twig globals

* [Web] add github version tag - missing </div>

* Passwordless SOGo auth: improvements for when accessing other users

* [WebAuthn] fido2 passwordless auth - fix (#4440)

* [WebAuthn] fido2 revert

* [WebAuthn] set UV flags to 'discouraged'

* [WebAuthn] revert - set UV flags to 'discouraged'

Co-authored-by: ntimo <git@nowitzki.me>
Co-authored-by: Peter <magic@kthx.at>
Co-authored-by: FreddleSpl0it <patschul@posteo.de>
Co-authored-by: FreddleSpl0it <75116288+FreddleSpl0it@users.noreply.github.com>
Co-authored-by: Michael Kuron <mkuron@users.noreply.github.com>
2022-02-01 15:26:48 +01:00
El-Virus
ea1a412749
Fix missing "lbuchs", after resolving last conflict
It seems that when solving the conflict in my pr when the latest staging branch was merged to master, I accidentally deleted "lbuchs", I added it back
2022-01-21 15:46:44 +01:00
El-Virus
db82327d9a
Merge branch 'staging' into master 2022-01-21 15:40:37 +01:00
FreddleSpl0it
af1b90fa18
[WebAuthn] rename env var 2022-01-20 14:37:20 +01:00
FreddleSpl0it
7df2bb28f8
[WebAuthn] disable rootCA default 2022-01-19 21:35:21 +01:00
FreddleSpl0it
0f464658cc
[WebAuthn] disable webauthn rootca by mailcow.conf 2022-01-19 19:10:43 +01:00
FreddlePat
d1d134038f migrating from u2f-api.js to webauthn 2022-01-12 21:09:18 +01:00
El-Virus
ea1a02bd7d
Fix "The operation is insecure." when trying to register fido2 device.
navigator.credentials.create(); Doesn't accept a port in the "id" parameter. So, when trying to register a fido2 device via WebAuthn throws: "The operation is insecure." on firefox and "The relying party ID is not a registrable domain suffix of, nor equal to the current domain." on Chrome or Edge.
This commit replaces `$_SERVER['HTTP_HOST']` with `$_SERVER['SERVER_NAME']` when initializing `$WebAuthn` which excludes the port to formulate correct requests.
Now Mailcow allows the registration of fido2 devices when running in a non-standard port(eg. 443).
2021-12-26 17:11:06 +01:00
Kristian Feldsam
0b64967ec5
[web] implemented twig templating system (#4264)
Signed-off-by: Kristian Feldsam <feldsam@gmail.com>
2021-09-22 20:47:10 +02:00
André Peters
639e751678
Revert "[Web] Fix broken autoconfig ports, fixes #4221 (#4223)" (#4226)
This reverts commit 9afea99189.
2021-08-10 09:05:01 +02:00
Kristian Feldsam
9afea99189
[Web] Fix broken autoconfig ports, fixes #4221 (#4223)
Refactored to use function, moved another function

Signed-off-by: Kristian Feldsam <feldsam@gmail.com>
2021-08-10 02:08:04 +02:00
andryyy
8b08d09ca2
[Web] Remove XMPP options
[Web] Add Rspamd preset #4
[Web] Do not show failed SASL logins (and also remove them from db)
2021-06-30 10:13:29 +02:00
andryyy
47b57df3a2
[Web] Show users last PW change, allow to select n days for last logins 2021-06-09 07:19:57 +02:00
andryyy
da20d5dc38
[Web] Replace country flags, improve flags for last logins, add info about last password change of a user 2021-06-08 13:16:10 +02:00
andryyy
c23f9437af
[Web] WIP: Add BSI CA 2021-04-07 21:29:28 +02:00
andryyy
11a858a7fd
[Web] Add Trustkey CA for WebAuthn 2021-02-16 21:33:46 +01:00
andryyy
06c89bac7d
[Web] Implement XMPP
[Web] Various small fixes and enhancements
2021-02-11 09:34:21 +01:00
andryyy
8d05d4a51d
[Web] Cleanup Rspamd, other fixes 2020-11-25 16:10:33 +01:00
andryyy
c150ac7b37
[Web] Feature (beta): Add WebAuthn support for administrators and domain administrators 2020-11-15 19:32:37 +01:00
andryyy
aef15f004a
[Web] Allow CIDR as allowed API networks; other minor fixes 2020-05-04 07:51:50 +02:00
andryyy
8f4540d5d9 [Web] r/o API keys, Pushover integration (can be limited by ACL), other minor changes 2020-04-10 21:00:23 +02:00
andryyy
ccd4dda397
[Web] Some minor changes 2020-03-28 19:51:42 +01:00
andryyy
7a4560ee28
[Web] CSS fixes; Add OAUTH2_FORGET_SESSION_AFTER_LOGIN to vars.inc.php (wip); Do not run initdb on non-master cow 2020-03-24 18:46:11 +01:00
andryyy
6686152ce0
[Web] Use redis master where necessary, hide UI if not master, create replicate quota2 table 2020-02-05 11:04:14 +01:00
andryyy
cbe4f4ce70
[Web] Minor changes 2020-01-29 10:37:55 +01:00
andryyy
6e15420307 Merge branch 'presets2' 2019-12-15 22:05:39 +01:00
andryyy
653c058e33
[Web] Feature: Allow app passwords for imap/smtp, allow to set acl permission for app passwords (domain admin [when logged in as user] and user) 2019-12-02 11:02:19 +01:00
tinect
943b7c6bb2 + add api for presets
+ add yml-files for preset-definition
2019-11-14 20:23:58 +01:00
tinect
e7821df933 introduce json-files for translations (#3120)
* introduce json-files for translations to structure data and add ability using translation managements

* Translated using Weblate (Italian)

Currently translated at 40.1% (342 of 852 strings)

Translation: test/mailcow
Translate-URL: http://192.168.178.22:8080/projects/test/mailcow/it/

* Translated using Weblate (Catalan)

Currently translated at 58.3% (497 of 852 strings)

Translation: test/mailcow
Translate-URL: http://192.168.178.22:8080/projects/test/mailcow/ca/

* Translated using Weblate (Polish)

Currently translated at 45.3% (386 of 852 strings)

Translation: test/mailcow
Translate-URL: http://192.168.178.22:8080/projects/test/mailcow/pl/

* Translated using Weblate (Latvian)

Currently translated at 59.0% (503 of 852 strings)

Translation: test/mailcow
Translate-URL: http://192.168.178.22:8080/projects/test/mailcow/lv/

* Translated using Weblate (Portuguese)

Currently translated at 27.5% (234 of 852 strings)

Translation: test/mailcow
Translate-URL: http://192.168.178.22:8080/projects/test/mailcow/pt/

* Translated using Weblate (Russian)

Currently translated at 45.4% (387 of 852 strings)

Translation: test/mailcow
Translate-URL: http://192.168.178.22:8080/projects/test/mailcow/ru/

* Translated using Weblate (German)

Currently translated at 99.9% (851 of 852 strings)

Translation: test/mailcow
Translate-URL: http://192.168.178.22:8080/projects/test/mailcow/de/

* removed empty and unused text user_change_fn

* removed empty and unused text user_change_fn II
2019-11-09 10:09:23 +01:00
andryyy
b52ee0a706
[Rspamd] Fix map permissions for www
[Web] Allow to manage global maps in UI (WIP)
2019-10-29 08:39:57 +01:00
tinect
3f6a2fc7fa cache JS-File to reduce response-time
no message
2019-10-19 23:40:19 +02:00
andryyy
1c35002505
[Web] Do not allow to add domain admin for non existing domain
[Web] oAuth2 implementation (wip)
2019-10-02 19:00:36 +02:00
andryyy
7a85abdb42
[Web] Prepare for oauth2
[Web] Some lib updates
[Web] Allow to add a footer
2019-09-28 20:00:04 +02:00
andryyy
9a500a7068
[Web] Verify OPTIONAL license plus minor fixes 2019-08-09 14:16:52 +02:00
andryyy
8537767443
[Web] Show error when connection to redis fails (instead of 5xx) 2019-05-28 15:18:27 +02:00
andryyy
6a13609bf0
[Web] Fix slow UI by switching QR provider and only generating qr image on demand 2019-03-19 08:45:08 +01:00
vain90
d7aaa67e2e
Move unset https_port after include of vars local inc 2019-02-14 23:10:46 +01:00
andryyy
54dfb5c450 [Web] Unset https_port after vars local inc
[Compose] New Dovecot image
2019-02-12 19:01:37 +01:00
andryyy
1e764009bf
[Web] Use INTL_IDNA_VARIANT_UTS46 in idn_to_ascii (thanks to @Knight1 !)
[Web] Some PHP fixes (warnings, notices)
[Web] Add quota notification tools
2019-02-05 00:10:21 +01:00
andryyy
ea83f72981
[Web] Minify more resources, fix missing JS 2019-01-31 15:45:31 +01:00
andryyy
ad0df77d28
[Web] Minify css and js via PHP
[Web] Use PT Sans
[Web] Update some libs
2019-01-30 12:10:26 +01:00
andryyy
b99820d011 [Web] Allow to set transport maps, rename relayhosts to sender-dependent transports 2018-12-20 11:23:35 +01:00
andryyy
d82c2bfdb7 [Web] Adjust mailbox format
[Web] Include IMAP lib for future use
[Web] Fix default exception handler
[Web] Fix sync job edit forms
[Web] Other minor fixes
2018-11-12 10:03:50 +01:00
André
e30dfd6751 [Web] Queue manager for Postfix
[Web] Add sogo_access mail attribute
[Web] Allow to wipe SOGo profiles
2018-10-23 21:14:57 +02:00
André
7490a85a48 [Web] Check cookie content, fixes #1917 2018-10-19 10:20:09 +02:00
André
9f0be1d8a8 [Web] Fix require_once to always include document root
[Web] Add system mails (send mails to all mailboxes via LMTP)
[Web] Allow to add more administrators
[Web] Fix domain administrator editing
[Web] Remove some foreign keys
[Web] Remove username from API
[Web] Remove more .php extension from code
[Web] More minor fixes
2018-10-11 11:59:23 +02:00