Commit Graph

1102 Commits

Author SHA1 Message Date
ntimo
5fa456770f
[API] Removed hard coded status code 200 2019-10-03 17:25:56 +02:00
ntimo
416d5a12f8
[API] Unset POST when only GET is allowed 2019-10-03 15:06:08 +02:00
ntimo
ab298741e3
[API] Added comments 2019-10-03 15:04:25 +02:00
ntimo
877c48db58
[API] Added missing die() 2019-10-03 14:42:30 +02:00
ntimo
c4c9d2a3b4
[API] Fixed broken if 2019-10-03 14:39:38 +02:00
ntimo
f393049273
[API] Make add and delete routes POST only 2019-10-03 14:36:10 +02:00
ntimo
948137b4b4
[API] Fixed only allow GET logic 2019-10-03 12:56:01 +02:00
ntimo
c67e86756f
[API] Better check for GET method 2019-10-03 12:54:06 +02:00
ntimo
796853cae5
[API] Replace exit with die(); 2019-10-03 12:50:58 +02:00
ntimo
72f8c0a5bd
[API] Added proper status codes to API 2019-10-03 12:48:19 +02:00
ntimo
27ee8c3277
[API Docs] Added new oAuth endpoints 2019-10-03 12:47:07 +02:00
ntimo
aa7d2037a1
[Web] Removed output.html 2019-10-03 11:08:28 +02:00
ntimo
6e07de8d4f
Merge branch 'master' into task/api-docs 2019-10-03 11:07:58 +02:00
ntimo
ea55b2a2a7
[Web] Updated API docs 2019-10-03 11:06:26 +02:00
andryyy
65ce73f973
[Web] Remove mail address from examples of tls policy maps 2019-10-03 10:39:47 +02:00
ntimo
73772275c9
[Web] Added API docs html render 2019-10-02 22:13:12 +02:00
andryyy
b5ac86f86d Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2019-10-02 19:40:37 +02:00
andryyy
6f92988914 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2019-10-02 19:28:34 +02:00
heavygale
17f96fe36b fix available ≠ total
I had mistakenly kept the available disk space for the total disk space.
2019-10-02 19:26:32 +02:00
André Peters
4f6d407fdd
Revert "extend debug page to show assigned domain quota" 2019-10-02 19:23:09 +02:00
andryyy
23dcb68f50 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2019-10-02 19:01:12 +02:00
andryyy
1c35002505
[Web] Do not allow to add domain admin for non existing domain
[Web] oAuth2 implementation (wip)
2019-10-02 19:00:36 +02:00
André Peters
b727d240c2
Merge pull request #2989 from heavygale/patch-5
extend debug page to show assigned domain quota
2019-10-02 18:57:46 +02:00
ntimo
8b5be0b56d
[Web] Return 401 status code when API authentication fails 2019-10-02 13:05:12 +02:00
heavygale
ecda554e53 finalizing disk usage rework
- changed dockerapi to not return human readable values for df
- all caluclations now in KiB
- moved code from domain_admin to mailbox functions
- using actual occupied bytes as used quota
- all outputs now in *iB using formatBytes()
2019-10-01 20:27:06 +02:00
heavygale
7c2a5ba37e uniform spelling for quota 2019-09-29 19:19:06 +02:00
heavygale
f01e3e59c5 don't count assigned domain quota for inactive domains
now only summing up the assigned domain quota for active domains, and not subtracting disc base occupied by mailboxes of inactive domains (inactive_bytes)
2019-09-29 19:04:00 +02:00
heavygale
471ab05423 Merge remote-tracking branch 'upstream/master' into patch-5 2019-09-29 17:58:09 +02:00
heavygale
1e6a032d1e displaying assigned domain quota
adding the amount of assigned domain quota to the disk usage display as potentially used disk space
2019-09-29 17:45:36 +02:00
André Peters
1586f7942f
Merge pull request #2984 from Geitenijs/patch-5
Update lang.nl.php
2019-09-28 21:29:27 +02:00
Geitenijs
8893b8502c
Update lang.nl.php 2019-09-28 20:55:41 +02:00
andryyy
7a85abdb42
[Web] Prepare for oauth2
[Web] Some lib updates
[Web] Allow to add a footer
2019-09-28 20:00:04 +02:00
Geitenijs
c3e313796e
Update lang.nl.php 2019-09-27 23:33:41 +02:00
andryyy
8b453ab803 [Web] Allow to set sogo_visible when adding an alias, fixes #2975 2019-09-24 19:12:45 +02:00
andryyy
14a2a266a1
[Web] Improve U2F process and fix Win 1903 hassle 2019-09-24 18:34:08 +02:00
andryyy
7cf2c0ad69
[Web] Changes to 502 status page 2019-09-24 07:06:33 +02:00
andryyy
9b7668d912
[Nginx] Custom 502 2019-09-24 06:53:13 +02:00
andryyy
c3be04560b
[Web] mailbox.php uses dropups
[Web] Allow to set visibility of aliases in SOGo
[Web] Refresh window when session timed out
[Web] Increase default log lines and pagination trigger
[Web] Increase delay when filtering tables
2019-09-22 15:10:56 +02:00
André Peters
fe38275cb5
Revert "Make is_valid_domain_name more strict" 2019-09-21 14:16:50 +02:00
andryyy
1207c6e865
[Web] Do not check hostname is is_valid_domain_name 2019-09-21 10:44:08 +02:00
André Peters
0dbc03a416
Merge pull request #2941 from patschi/domain-name-fix
Make is_valid_domain_name more strict
2019-09-19 15:03:51 +02:00
andryyy
0487f5ea1d
[Web] Add JVM memory indiator and add minor fixes 2019-09-17 20:11:53 +02:00
Patrik Kernstock
6b2f5a30d2
Slightly modified is_valid_domain_name for #1118 2019-09-15 20:40:07 +01:00
andryyy
62a386f94e
[Web] Remove invalid chars from sender for quota and quarantine notifications 2019-09-15 09:52:13 +02:00
andryyy
bba8e4f70c
[Web] Change quarantine notification interval as admin when editing a mailbox 2019-09-12 08:28:50 +02:00
andryyy
261c2a5850
[Web] Default to hourly quarantine notifications for new mailboxes; [Web] Change "SOGo" link to "Webmail" 2019-09-12 08:28:05 +02:00
Filip Hajny
28a5fc1c2a One more awkward word 2019-09-05 21:56:01 +02:00
Filip Hajny
4eaf432bec Update cs lang definitions, clear typos, simplify wording, clear up confusions. 2019-09-05 21:49:43 +02:00
Tobias
70187836e8
Update admin.js
Fix "→" is not displayed when username is save with uppercase
See bevor:  https://i.tobias.bayern/9XGMoS5g.png
See after change: https://i.tobias.bayern/QvupZ23j.png
2019-09-05 19:08:41 +02:00
André Peters
cdd91bcb9b
Update functions.mailbox.inc.php 2019-09-05 10:54:35 +02:00
andryyy
893ce5a789
[Web] Allow to add external sender addresses, can be disabled by domain admin ACL and is disabled by default 2019-09-02 11:11:41 +02:00
andryyy
46fadf95a2
[Web] Small CSS fixes and additions 2019-09-02 11:10:14 +02:00
andryyy
ab42540769
[Web] Minor changes or fixes; [Web] Add multiple transport destinations at the same time - comma separated 2019-08-30 18:54:38 +02:00
andryyy
0d8a92a365
[Web] Show ratelimit inheritance
[Web] Do not allow TLS-wrapped next shops (SMTPS) in transports
[Web] Minor fixes or preparations
2019-08-25 16:02:58 +02:00
andryyy
c69c2d9c13 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2019-08-16 22:18:55 +02:00
andryyy
692614f79e
[Web] Fix loop in SPF lookup 2019-08-16 18:20:58 +02:00
andryyy
6e41fa9fc1
[Web] Update JQuery, todo: dont use migrate 2019-08-16 18:20:24 +02:00
Patrik Kernstock
409ecf7fd5
[Web] Fixed one more possible XSS
XSS might be possible when using a specific-crafted request (harder than previous ones). Might also easily cause JS errors and making the "mailcow UI"-logs not accessible anymore
2019-08-14 22:19:50 +02:00
Patrik Kernstock
4f25a3646e Fixed several other XSS's 2019-08-14 00:22:40 +02:00
andryyy
5fd00abf91 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2019-08-13 21:12:30 +02:00
andryyy
fab23cec2b
[Web] Fix XSS in call field 2019-08-13 21:12:24 +02:00
André Peters
a41825dede
Merge pull request #2857 from mailcow/update-msg-removehash
Small info regarding hash deletion, fixes #2775
2019-08-13 21:07:35 +02:00
André Peters
32f293e55f
Update lang.en.php 2019-08-13 21:07:25 +02:00
Geitenijs
badd6b5e7f Update lang.nl.php (#2850) 2019-08-13 20:11:24 +02:00
Patrik Kernstock
a3315d9187 Rephrase EN 2019-08-13 19:53:26 +02:00
Patrik Kernstock
2b0795cc71 Small info regarding hash deletion, fixes #2775 2019-08-12 19:30:31 +02:00
andryyy
294e0bc07f
[Web] Cache validation result in Redis 2019-08-11 22:19:26 +02:00
heavygale
2d74d81cb1 htmlspecialchars for value attributes
Escaping htmlspecialchars in value attributes.
2019-08-10 19:36:03 +02:00
andryyy
03259d66bb
[Web] Minor fixes 2019-08-10 16:12:06 +02:00
andryyy
d8dfd5061b
[Web] Minor fixes and changes 2019-08-10 15:57:07 +02:00
andryyy
9a500a7068
[Web] Verify OPTIONAL license plus minor fixes 2019-08-09 14:16:52 +02:00
andryyy
cb9a63ec4d
[Web] Fix CSS, thanks to @irgendwr 2019-08-09 14:14:41 +02:00
André Peters
c7eec72055
[Web] Language updates 2019-07-29 21:12:47 +02:00
andryyy
2193378982
[Web] unlimited_quota fix for domain admins 2019-07-29 16:16:31 +02:00
andryyy
dadc66fe49
[Web] Minor changes to ip labels 2019-07-28 21:36:48 +02:00
Faisal Misle
be4673c5f6 Update lang.es.php
minor update
2019-07-28 07:17:10 -05:00
Faisal Misle
db8b7aaa04 Language updates
Spanish is 95% done, minor gramatical updates to english version
2019-07-28 07:13:31 -05:00
André Peters
2061181d82
Merge pull request #2810 from friedPotat0/quarantinetable
Minor adjustments to tables in UI
2019-07-27 19:40:43 +02:00
friedPotat0
c48ae234ce Restrict toggle for tbl with specific breakpoints 2019-07-27 19:07:01 +02:00
friedPotat0
d1153b470f Restrict row toggle for remaing tables 2019-07-27 18:57:58 +02:00
friedPotat0
1b54d75716 Prevent event propagation for remaining tables 2019-07-27 18:56:51 +02:00
friedPotat0
bcad71cfaa Add proper cursor to remaining UI tables 2019-07-27 18:50:58 +02:00
friedPotat0
36888645bc Set proper cursor for quarantine table rows 2019-07-27 17:17:56 +02:00
friedPotat0
fb1307daa9 Set proper cursor for footable toggle 2019-07-27 17:16:59 +02:00
friedPotat0
abf0548ca4 Prevent event propagation for footable toggle 2019-07-27 17:14:56 +02:00
friedPotat0
581f8c77c7 Restrict quarantine table row toggle 2019-07-27 16:49:53 +02:00
André Peters
857c225d07
Merge pull request #2804 from friedPotat0/buttonpointerevents
Fix pointer events for nested button elements
2019-07-27 15:59:26 +02:00
andryyy
85f20a901d
[Web] Remove top padding on login screen for small devices 2019-07-23 21:33:24 +02:00
andryyy
91edf275b9
[Web] Minor language change in lang.de 2019-07-23 19:53:11 +02:00
andryyy
45f31ba931
[Web] Handle score as string 2019-07-23 19:52:46 +02:00
friedPotat0
454ffac803 Fix pointer events for nested button elements 2019-07-23 05:48:29 +02:00
friedPotat0
d4f3e87a2f Add spam score to quarantine table 2019-07-23 04:22:28 +02:00
andryyy
3f741eb625
[Web] Disable user-scalable, set max-scale to 1 2019-07-22 21:11:25 +02:00
mkapra
a5756716e0 Fixing duplicated port for profile downloading. 2019-07-17 08:59:49 +02:00
Geitenijs
448752cd94
Update lang.nl.php 2019-07-05 18:38:16 +02:00
andryyy
cb4f025bb1
[Web] Add important info about disabled GAL 2019-07-05 15:37:28 +02:00
andryyy
e71abf1895 Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2019-07-05 15:16:48 +02:00
andryyy
350811dadd [Web] Enable GAL by default 2019-07-05 15:16:11 +02:00
Sascha Henke
d0ecd08ba0
Kleine Rechtschreibkorrektur
2 Rechtschreibfehler und eine Stiländerung
2019-07-04 08:30:39 +02:00
Braintelligence
61f950b473
Fix issue #2718
Proposal for a fix of issue #2718 .
Strip port from HTTP_HOST per @mkuron proposal: https://github.com/mailcow/mailcow-dockerized/issues/2718#issuecomment-506987422
2019-07-01 16:48:01 +02:00
andryyy
f35bc07a30
[Web] Generate readable passwords 2019-06-20 10:18:09 +02:00
andryyy
c7a85fc520
[Web] Fix BCC error message 2019-06-16 16:00:41 +02:00
andryyy
59798357f7
[Web] Fix SPF link 2019-06-16 16:00:14 +02:00
andryyy
ffb008f72a Merge branch 'master' of https://github.com/mailcow/mailcow-dockerized 2019-06-09 16:50:04 +02:00
andryyy
5ce6688c78
[Web] Show resource alias 2019-06-09 16:49:17 +02:00
Aiko Appeldorn
1634a486fc
[web] increased db version 2019-06-09 12:08:23 +02:00
Timo N
9325bb6f4e
Merge pull request #2594 from FELDSAM-INC/domain-default-mailbox-quota
Default quota for mailbox
2019-06-09 10:49:43 +02:00
andryyy
176f2a3f34
[Web] Allow to set max_age for quarantine items 2019-06-01 21:22:14 +02:00
andryyy
5f8dd69a2d
[Web] Fix lang strings for sieve pathes and sieve flow 2019-06-01 14:10:01 +02:00
andryyy
8537767443
[Web] Show error when connection to redis fails (instead of 5xx) 2019-05-28 15:18:27 +02:00
andryyy
2508ee5b69
[Web] Delete from sender_acl when deleting an alias 2019-05-26 09:39:04 +02:00
andryyy
6fffda5def
[Web] Remove file 2019-05-26 09:24:50 +02:00
andryyy
d5612cf60f
[Web] More fixes for alias as sender_acl 2019-05-26 09:22:06 +02:00
andryyy
5087d5ce96
[Web] Allow aliases as send-as 2019-05-26 08:29:10 +02:00
andryyy
db0ec130f5
[Web] Lang updates
[ACME] Typo
2019-05-22 23:47:45 +02:00
André Peters
9a114845d7
[Netfilter] Reworked by @Kraeutergarten 2019-05-22 22:49:40 +02:00
Evangelos Foutras
e1a3313660 [Web] Fix showing domain with disabled sender check
If a mailbox is allowed to send as any address under its domain (+ alias
domains) and the domain itself has no aliases configured, no information
about this fact is shown to the user. That is to say, the "Do not check
sender access for the following domain(s) and its alias domains" field
under mailbox details is empty.

The above is happening because the second GROUP_CONCAT() returns NULL
making the enclosing CONCAT() return NULL as well. Fix this by using
CONCAT_WS() which correctly handles the case of zero domain aliases.

Furthermore, move the IFNULL() to the first GROUP_CONCAT() because
CONCAT_WS() returns an empty string when both GROUP_CONCAT()'s are
NULL. We can be certain that when the first GROUP_CONCAT() is NULL
the second one will be as well, so it's safe to use IFNULL() there.
2019-05-20 18:08:45 +03:00
Kraeutergarten
b862ce2bfb Add hostnames for blacklist. 2019-05-20 09:02:40 +02:00
andryyy
5bb23a2664 [Web] Fix null ua in debug.js - fixes #2615 2019-05-18 15:35:00 +02:00
Kraeutergarten
4cc63ceeb7 Allow hostnames for fail2ban whitelist. 2019-05-17 19:38:34 +02:00
andryyy
885b79f06f
[Web] Add function to read F2B data via API 2019-05-17 11:21:25 +02:00
Kraeutergarten
7417dd3a85 Check if domain value is undefined or null. 2019-05-16 10:15:37 +02:00
Kraeutergarten
84a78dbd0d Adds only existing domains in table to the filter and removes additional ajax request. 2019-05-16 08:20:21 +02:00
andryyy
06193ca625
[Web] Write API logs when format is data binary 2019-05-12 15:22:00 +02:00
Kristián Feldsam
b8b6450753 Default quota for mailbox
Signed-off-by: Kristián Feldsam <feldsam@gmail.com>
2019-05-11 11:16:40 +02:00
André Peters
f0d29ba8ef
Merge pull request #2547 from FELDSAM-INC/feldsam/json-api
JSON API Consume json in request body.
2019-05-10 20:37:37 +02:00
andryyy
bf3fb0c9d4
[Web] Fix some breakpoints 2019-05-09 11:30:14 +02:00
andryyy
cf4c5df427
[Web] Disable refresh button on reload, re-enable after table init 2019-05-05 20:59:59 +02:00
andryyy
acd8860efa
[Web] More minor css fixes 2019-05-05 20:49:13 +02:00
andryyy
9529b7a542
[Web] Various UI fixes 2019-05-05 20:44:29 +02:00
andryyy
05a2301ea6
[Web] Allow to rename alias to Alias 2019-05-05 20:01:53 +02:00
andryyy
f7e5f8b51f
[Web] Minor changes 2019-05-05 14:01:17 +02:00
André Peters
2d5e8a20ef
Merge pull request #2574 from emericklaw/mobileconfig-specialcharacters
Handle mobileconfig display names with special characters
2019-05-04 23:10:03 +02:00
hunter-nl
99eb61a449
Update init_db.inc.php
imapsync table column "returned_text" changed into type "longtext". "mediumtext" is to small for imapsync output on large mailbox.
db version value updated.
2019-05-04 12:13:51 +02:00
emericklaw
12d46cf072
Updated to not convert quotes
I missed using ENT_NOQUOTES since XML only needs & and <> to be replaced in tags, spotted by @mkuron
2019-05-03 17:54:33 +01:00
emericklaw
472a99ff00
Handle mobileconfig display names with special characters
If the account display name contained special characters like & the mobileconfig would fail to import on the iOS device.
2019-05-03 13:31:10 +01:00
Geitenijs
9dc7d05fa4
Update lang.nl.php 2019-05-01 17:54:27 +02:00
André Peters
48984270dd
Merge pull request #2569 from Howaner/quarantine-domain-alias
Added domain alias handling to quarantine mails and added recipients row to quarantine mail display
2019-05-01 15:54:46 +02:00
Howaner
5bb7b5b368 Fixed XSS 2019-05-01 01:03:16 +02:00
Howaner
17918b3e21 Added domain alias handling to quarantine mails and added recipients row to quarantine mail display
If a mail is sent to a domain alias domain and rejected, mailcow does not currently store the mail in quarantine.
This commit adds domain alias handling to the reject code and should fix this behavior.

Also added displaying of recipient addresses into the quarantine mail dialog to be able to see what mail address was "leaked".
2019-05-01 00:56:12 +02:00
andryyy
59a8a3864a
[Web] Minor fixes 2019-04-30 22:51:17 +02:00
André Peters
18729e2b49
Merge pull request #2567 from Howaner/mailpreview-fix
Updated php-mime-mail-parser library to 5.1 to really fix webui html preview
2019-04-30 22:49:25 +02:00
Howaner
9ce80d0eb5 Updated php-mime-mail-parser library to 5.1 to really fix webui html preview 2019-04-30 21:41:56 +02:00
André Peters
7c5094b8ec
Update 014-mailcow.js 2019-04-29 20:24:35 +02:00
André Peters
b6607e090e
Update 014-mailcow.js 2019-04-29 19:43:30 +02:00
Howaner
4bac1da451 Updated php-mime-mail-parser library to 5.0 to fix webui html preview
Preview versions of php-mime-mail-parser uses iconv for the most cases and iconv isn't properly supported in alpine php
2019-04-28 20:22:37 +02:00
andryyy
3e3e526568
[Dovecot] Update to 2.3.5.2
[Compose] Update Dovecot image
2019-04-25 18:10:28 +02:00
andryyy
9b303dcc0e
[Dovecot] Set default_vsz_limit = 1024 M
[Web] Form cache for user passwd change modal disabled
2019-04-24 14:46:45 +02:00
Kristián Feldsam
be2877c875 JSON API Consume json in request body.
Draft docs https://feldhostmailhosting.docs.apiary.io

Signed-off-by: Kristián Feldsam <feldsam@gmail.com>
2019-04-20 21:57:39 +02:00
andryyy
c8047b9555 [Web] Change session timeout handling
[Rspamd] Add missing spamassassin.conf
2019-04-14 13:01:47 +02:00