Commit Graph

3917 Commits

Author SHA1 Message Date
Peter
0bc2a16093
Update base image to alpine 3.16 2022-06-05 19:04:51 +02:00
Peter
a21b3cd606
Update base image to alpine 3.16 2022-06-05 19:03:37 +02:00
Peter
1c479684fc
Revert "Update base image to alpine 3.16"
This reverts commit c9dbc7c7b7.
2022-06-05 19:02:21 +02:00
Peter
c9dbc7c7b7
Update base image to alpine 3.16 2022-06-05 19:01:55 +02:00
Peter
c41dc9d8c0
Update base image to alpine 3.16 2022-06-05 19:01:06 +02:00
Peter
1db5841424
Update base image to alpine 3.16 2022-06-05 18:59:56 +02:00
Peter
d13be25f45
Update base image to alpine 3.16 2022-06-05 18:38:16 +02:00
Niklas Meyer
6efd9dc5f9
[Postfix] Update to 3.5.6 (Rebase to Debian 11)
New Postfix Image is: mailcow/postfix:1.67
2022-06-05 14:48:03 +02:00
Niklas Meyer
1edd4012e4
[Web] escapehtml in mailbox.js (#4604)
Co-authored-by: FreddleSpl0it <patschul@posteo.de>
2022-06-03 14:37:56 +02:00
milkmaker
4390c9855a
[Web] Updated lang.de.json [CI SKIP] (#4600)
[Web] Updated lang.de.json [CI SKIP]

Co-authored-by: Peter <magic@kthx.at>
Co-authored-by: milkmaker <milkmaker@mailcow.de>

Co-authored-by: Peter <magic@kthx.at>
2022-05-31 19:59:00 +02:00
DerLinkman
c27ad97287 [DB] Remove pipemes from custom_params 2022-05-20 09:44:11 +02:00
DerLinkman
b1658c0f83 [IMAPSYNC] Hardened pipemess exploit prevention (pipemes) 2022-05-20 09:30:42 +02:00
Niklas Meyer
05b8609073 [Postfix] Update to 3.5.6 (Rebase to Debian 11) 2022-05-19 18:49:01 +02:00
DerLinkman
97df5c3b9c [DB] Update DB Version to remove pipemess parameters 2022-05-19 15:42:13 +02:00
DerLinkman
33e5ad2b5c [Imapsync] Case sensitive PIPEMESS removal 2022-05-19 14:41:21 +02:00
DerLinkman
998cb642a9 [UI] Moved Password Change warning to top for user site 2022-05-19 10:43:06 +02:00
milkmaker
07ac195fea
Translations update from Weblate (#4591)
* [Web] Updated lang.ru.json [CI SKIP]

Co-authored-by: DRago_Angel <alekseev.dmitriy.92@gmail.com>
Co-authored-by: milkmaker <milkmaker@mailcow.de>

* [Web] Updated lang.uk.json [CI SKIP]

[Web] Updated lang.uk.json [CI SKIP]

[Web] Added lang.uk.json [CI SKIP]

Co-authored-by: OGudzik <olegrpg@gmail.com>
Co-authored-by: Oleksii Kruhlenko <a.kruglenko@gmail.com>
Co-authored-by: Peter <magic@kthx.at>
Co-authored-by: milkmaker <milkmaker@mailcow.de>

* [Web] Updated lang.it.json [CI SKIP]

Co-authored-by: Stefano <stefano.vassena@gmail.com>
Co-authored-by: milkmaker <milkmaker@mailcow.de>

* Add Ukrainian language code in vars.inc.php

Co-authored-by: DRago_Angel <alekseev.dmitriy.92@gmail.com>
Co-authored-by: OGudzik <olegrpg@gmail.com>
Co-authored-by: Oleksii Kruhlenko <a.kruglenko@gmail.com>
Co-authored-by: Peter <magic@kthx.at>
Co-authored-by: Stefano <stefano.vassena@gmail.com>
2022-05-18 18:20:03 +02:00
FreddleSpl0it
7d5990bf0f
restrict webauthn-tfa-get-args sql query 2022-05-18 10:03:10 +02:00
FreddleSpl0it
4ec982163e
restrict webauthn-tfa-get-args sql query 2022-05-18 09:39:50 +02:00
FreddleSpl0it
3c9502f241
add webauthn console log 2022-05-17 19:02:52 +02:00
Niklas Meyer
3029a2d33d
Change DB Date to newer Date than staging 2022-05-17 15:26:01 +02:00
Niklas Meyer
fa0d2a959d
Merge branch 'feature/tfa-flow' into selection-tfa 2022-05-17 15:23:10 +02:00
Niklas Meyer
f79cac3292
Merge pull request #4590 from FreddleSpl0it/swagger-appPasswd 2022-05-17 08:53:57 +02:00
FreddleSpl0it
7a20a9941e
Update swagger docs - add/app-passwd 2022-05-17 07:03:33 +02:00
Niklas Meyer
24cc960379
[Clamd] Update to ClamAV 0.105
Merge pull request #4589 from mailcow/feature/clamd-0.105
2022-05-16 19:51:18 +02:00
Niklas Meyer
353df6413f
[UI] Increase Mailadmin loading performance
Merge pull request #4562 from marcojarjour/unblock_mailadmin_upstream
2022-05-16 19:30:50 +02:00
Andri Steiner
b68eae16e5
[Web] Swagger UI: explicitly define used OpenAPI specifications (#4587) 2022-05-13 10:40:22 +02:00
DerLinkman
ee844c81d2 Changed Base Docker Image to 0.105.0_base 2022-05-08 18:33:29 +02:00
Niklas Meyer
df33ebb2a0
Merge pull request #4575 from FreddleSpl0it/footable-override-css
[Web] change opacity of footable collapse toggle
2022-05-06 08:59:53 +02:00
Niklas Meyer
d2a6838958
Merge pull request #4574 from FreddleSpl0it/tag-fix
[Web] domain/mailbox tagging check for empty tags
2022-05-06 08:59:21 +02:00
FreddleSpl0it
96b8054e6b
[Web] change opacity of footable collapse toggle 2022-05-06 08:52:44 +02:00
FreddleSpl0it
dfdd2dadb4
[Web] domain/mailbox tagging check for empty tags 2022-05-06 08:30:15 +02:00
FreddleSpl0it
f40e682800
[Web] domain/mailbox tagging check for empty tags 2022-05-06 07:42:45 +02:00
jkellerer
f4dc01d1ec
Ensure return type is consistent (list vs object) 2022-05-05 20:00:40 +02:00
jkellerer
187ddedf96
Fix for /api/v1/get/mailbox/{email} 2022-05-05 19:43:33 +02:00
Niklas Meyer
e454ed4e39 Readded .gitkeep in data/web/templates/cache 2022-05-05 17:25:04 +02:00
FreddleSpl0it
549ff7d100
Add Domain and Mailbox tagging (#4569)
* [Web] define tag tables

* [Web] add mailbox tag functions

* [Web] add domain/mailbox tagging

* [Web] add domain/mailbox tagging

* [Web] add domain/mailbox tagging

* [Web] add domain/mailbox tagging

* [Web] add domain/mailbox tagging

* [Web] add domain/mailbox tagging

* [Web] add domain/mailbox tagging

* [Web] add domain/mailbox tagging

* Include new tags lang in language.en.json

* [Web] add domain/mailbox tagging

* [Web] add domain/mailbox tagging

* [Web] add domain/mailbox tagging

* [Web] add domain/mailbox tagging

* [Web] add domain/mailbox tagging

Co-authored-by: Niklas Meyer <62480600+DerLinkman@users.noreply.github.com>
2022-05-05 08:25:01 +02:00
Niklas Meyer
456b528785
[API] Add version endpoint
Resolves: https://github.com/mailcow/mailcow-dockerized/issues/4553
2022-05-04 14:33:39 +02:00
Marco Jarjour
003a6342a5 Match also mobile id's 2022-04-27 17:43:40 +02:00
Marco Jarjour
fb10764167 Execute API calls only when needed 2022-04-27 15:57:53 +02:00
Lars Lehmann
9e1554f5c7
Add missing break 2022-04-26 13:12:31 +02:00
Lars Lehmann
76ec0e888b
Add version endpoint 2022-04-25 22:44:41 +02:00
Niklas Meyer
892c99fa23
Merge pull request #4556 from mailcow/accessibility
[Web] Make TLS policy toggles accessible
2022-04-25 09:48:15 +02:00
Michael Kuron
28da482ef2 [Web] Make TLS policy toggles accessible
Fixes #4554
2022-04-24 12:25:49 +02:00
Niklas Meyer
936f07336c
[Netfilter] Exclude banning IPs when dovecot server not reacheble
The new docker tag for mailcow/netfilter is 1.47

Thanks to @dragoangel
2022-04-22 16:20:35 +02:00
Dmitriy Alekseev
6c5ab7800e
[Netfilter] Exclude banning IPs when dovecot server not reacheble 2022-04-13 13:01:58 +03:00
andryyy
7e26a2ab98
[Rspamd] Remove neural config due to massive fp 2022-04-13 10:42:11 +02:00
Kristian Feldsam
4e6c398c8c
[Clamd] fix whitelist (#4541)
Signed-off-by: Kristian Feldsam <feldsam@gmail.com>
2022-04-08 21:39:35 +02:00
Kristian Feldsam
d4e829465b
[Dovecot] Disable imapsync job, when auth details are wrong. Fixes #4276 (#4540)
Signed-off-by: Kristian Feldsam <feldsam@gmail.com>
2022-04-08 21:36:21 +02:00
andryyy
372e381a85
[Web] Fix wrong lang string for filter deletion confirmation 2022-04-08 09:39:32 +02:00
DerLinkman
ba45f70a30 [NGINX] Added new Proxy Buffers to the /SOGo Section 2022-04-05 22:49:41 +02:00
andryyy
a2ccf7ef03
[Nginx] Fix Nginx buffer sizes by moving parameters to correct location 2022-04-05 22:34:26 +02:00
Niklas Meyer
53a5254897
[SOGo] Update SOGo to 5.5.1
**Includes Database Changes!**

As a preparation for 5.5.2 the database as well as some NGINX Settings have been changed.
2022-04-01 15:20:09 +02:00
milkmaker
c433daf024
[Web] Updated lang.fr.json [CI SKIP] (#4529)
Co-authored-by: crep7424 <guillaume@crepieux.eu>

Co-authored-by: crep7424 <guillaume@crepieux.eu>
2022-03-31 21:05:40 +02:00
Peter
fd7269d455
[ClamAV] Move to official ClamAV Docker container (#4525)
Since ClamAV starts to offer Docker containers this PR introduces said containers so we don't need to build the container on our own anymore. This was an easy task until v0.104, but then ClamAV changed its buildprocess to use cmake and with v0.105 it also needs the Rust toolchain -> https://docs.clamav.net/manual/Installing/Installing-from-source-Unix.html#ubuntu--debian

Here are the main changes for the new container

Creates clamd-db-vol-1 volume
Still uses the same config files
Downloads ClamAV databases in said volume
Smaller container footprint 13MB vs 150MB

---

* [ClamAV] Move to official ClamAV Docker container

* [ClamAV] Remove vim + nano

* [ClamAV] Use normal version in docker-compose
2022-03-28 11:07:47 +02:00
milkmaker
48589d20e2
[Web] Updated lang.fr.json [CI SKIP] (#4523)
Co-authored-by: crep7424 <guillaume@crepieux.eu>

Co-authored-by: crep7424 <guillaume@crepieux.eu>
2022-03-25 18:00:50 +01:00
Aiko Appeldorn
be9cbcf5ac
[Postfix] update postscreen access list (#4515) 2022-03-23 11:49:46 +01:00
Niklas Meyer
b04faddac4 Modified Buffer Size in site-defaults.conf 2022-03-23 11:14:07 +01:00
DerLinkman
e925187dda Revert "[Web] add github version tag - adjust css"
This reverts commit a0c09af67e.
2022-03-22 19:53:21 +01:00
Niklas Meyer
06f380a17a [DB] Removed empty space behind c_value 2022-03-22 19:47:53 +01:00
Niklas Meyer
67882414e1 [DB] Update DB Version to 22032022_1330
For SOGo 5.5.1 and newer
2022-03-22 19:47:53 +01:00
Niklas Meyer
2b149fb8ea [DB] Update schema for longer passwords in sogo 2022-03-22 19:47:53 +01:00
Michael Kuron
e911452d0c
Enable autodiscover to work with app passwords (#4516)
Fixes #4513
2022-03-22 19:41:34 +01:00
Vincent Simon
deac5ad2fe [Web] Fix resource.php and /cache/ warning message
If http://mail.example.tld/cache/ or http://mail.example.tld/resource.php are called without the required parameters it returns one or two warnings
2022-03-20 22:05:28 +01:00
Niklas Meyer
f097267bcd
Merge branch 'mailcow:staging' into staging 2022-03-20 22:04:46 +01:00
FreddleSpl0it
161130c116
[Web] Fix missing rspamd description (#4512)
* [Web] fix missing rspamd description

* [Web] fix missing rspamd description
2022-03-19 23:21:00 +01:00
Perry Toone
a03b8f28ae
Update lang.en.json (#4511)
* Update lang.en.json

Minor grammar correction in whitelist area.

* Update lang.en.json

Co-authored-by: Peter <magic@kthx.at>
2022-03-19 23:12:21 +01:00
FreddleSpl0it
6d3798ad08
[Web] fix yubi otp 2022-03-19 20:18:31 +01:00
FreddleSpl0it
70921b8d15
[Web] tfa extra debugging 2022-03-18 08:45:02 +01:00
FreddleSpl0it
b185f83fc3
[Web] tfa extra debugging 2022-03-18 08:37:22 +01:00
Niklas Meyer
bb9ae02ccc
Merge branch 'mailcow:staging' into staging 2022-03-17 22:56:23 +01:00
DerLinkman
d52323df2d [WEB] Changed Version to footer margin top to 20px 2022-03-17 21:57:27 +01:00
FreddleSpl0it
e7fe52a625
[Web] increase mysql publicKey field length 2022-03-14 10:31:59 +01:00
FreddleSpl0it
49c506eed9
[Web] multiple tfa - user support 2022-03-14 10:31:59 +01:00
FreddleSpl0it
21fadf6df2
[Web] multiple tfa - domainadmin support 2022-03-14 10:31:58 +01:00
FreddleSpl0it
5fcccbc97d
[Web] add verify selected tfa 2022-03-14 10:31:56 +01:00
FreddleSpl0it
3ef2b6cfa2
[Web] add verify selected tfa 2022-03-14 10:31:51 +01:00
andryyy
7692685122 Merge remote-tracking branch 'origin/staging' into staging 2022-03-14 08:36:18 +01:00
andryyy
b820096656 [Web] Delete related spam aliases when deleting alias domain 2022-03-14 08:35:21 +01:00
FreddleSpl0it
a0c09af67e [Web] add github version tag - adjust css 2022-03-12 22:39:56 +01:00
Peter
eddaf7a975
Revert "Before update on 2022-03-02_17_04_05"
This reverts commit 24275ffdbf.
2022-03-05 23:31:41 +01:00
FreddleSpl0it
bdd8b4a5ab
[Web] Footer fix (#4500)
* Fix issue forms

* [GH-Actions][stale] Update to v5.0.0

* [Web] fix version footer

* [Web] fix footer - hard coded repo url

Co-authored-by: Peter <magic@kthx.at>
2022-03-05 23:27:36 +01:00
andryyy
98bc947d00 [Web] Update composer libs
- Removing symfony/deprecation-contracts (v2.4.0)
  - Upgrading ddeboer/imap (1.12.1 => 1.13.1)
  - Upgrading directorytree/ldaprecord (v2.6.3 => v2.10.1)
  - Upgrading illuminate/contracts (v8.53.1 => v9.3.0)
  - Upgrading nesbot/carbon (2.51.1 => 2.57.0)
  - Upgrading phpmailer/phpmailer (v6.5.0 => v6.6.0)
  - Upgrading psr/container (1.1.1 => 2.0.2)
  - Upgrading psr/log (1.1.4 => 3.0.0)
  - Upgrading psr/simple-cache (1.0.1 => 2.0.0)
  - Upgrading robthree/twofactorauth (1.8.0 => 1.8.1)
  - Upgrading symfony/polyfill-ctype (v1.23.0 => v1.24.0)
  - Upgrading symfony/polyfill-mbstring (v1.23.1 => v1.24.0)
  - Upgrading symfony/polyfill-php80 (v1.23.1 => v1.24.0)
  - Upgrading symfony/translation (v5.3.4 => v6.0.5)
  - Upgrading symfony/translation-contracts (v2.4.0 => v3.0.0)
  - Upgrading symfony/var-dumper (v5.3.6 => v6.0.5)
  - Upgrading tightenco/collect (v8.34.0 => v8.83.2)
  - Upgrading twig/twig (v3.3.2 => v3.3.8)
2022-03-02 20:08:44 +01:00
andryyy
24275ffdbf Before update on 2022-03-02_17_04_05 2022-03-02 20:03:09 +01:00
FreddleSpl0it
a1ffaae3d5 [Web] add github version tag - adjust css 2022-03-02 16:57:07 +01:00
Niklas Meyer
c520f21d28
🐄 Moorch Update 2022 - ClamAV, Dovecot & Olefy Update (#4497)
* [API] Fix minor issue in api docs

* [GH-Actions][stale] Add neverstale label to exempt list

* [Web] add github version tag

* [Web] add github version tag

* [Web] add github version tag

* [Web] add github version tag

* [Web] add github version tag

* [Web] add github version tag error handling

* [Web] add github version tag error handling

* Passwordless SOGo auth: support for calendar invitations and calendar/contacts subscriptions

Inviting someone to a calendar event triggers a request to /SOGo/so/otheruser@example.com/freebusy.ifb/ajaxRead. Subscribing to someone's calendar/contacts triggers a request to /SOGo/so/otheruser@example.com/foldersSearch. The email address in the URL is different from the logged-in user, which needs to be handled appropriately by sogo-auth.php.

* [Web] add github version tag - adjust css

* [Compose] Update SOGo Autoreply Schedule to 5m

Based on the advice of inverse (SOGo developer). Thanks to https://github.com/jmber

Closes: https://github.com/mailcow/mailcow-dockerized/issues/4436

* [Web] add github version tag - move twig globals

* [Web] add github version tag - missing </div>

* Passwordless SOGo auth: improvements for when accessing other users

* [WebAuthn] fido2 passwordless auth - fix (#4440)

* [WebAuthn] fido2 revert

* [WebAuthn] set UV flags to 'discouraged'

* [WebAuthn] revert - set UV flags to 'discouraged'

* Update clamav to 0.104.2

* Update clamav to 0.104.2

* Update dovecot to 2.3.18

Update gosu to 1.14
Use debian bullseye as base

* [Web] Updated lang.es.json [CI SKIP] (#4453)

Co-authored-by: Fijxu <fijxu@zzls.xyz>
Co-authored-by: milkmaker <milkmaker@mailcow.de>

Co-authored-by: Fijxu <fijxu@zzls.xyz>

* Fix broken documentation links (#4458)

* Fix broken documentation links

* Fix a few more broken documentation links

* Fix broken documentation links in translation files

* Fall back to empty string if WATCHDOG_NOTIFY_EMAIL undefined (#4457)

By default, `.env` (`mailcow.conf`) does not define `WATCHDOG_NOTIFY_EMAIL`.

Using it in `docker-compose.yml` without having it defined leads to Compose v2 displaying this warning on startup:

> WARNING: The WATCHDOG_NOTIFY_EMAIL variable is not set. Defaulting to a blank string.

Related to https://github.com/mailcow/mailcow-dockerized/issues/4315

* [Web] Updated lang.sk.json [CI SKIP] (#4461)

Co-authored-by: Lukáš Matula <lukas@gbely.net>
Co-authored-by: milkmaker <milkmaker@mailcow.de>

Co-authored-by: Lukáš Matula <lukas@gbely.net>

* oletools: disable template injection detection (#4464)

Seems to be causing a lot of false positives lately

* Fix minor typo in comment (#4466)

Correction of the comment, so that the explanation is correct and can be understood.

* Update issue templates to issue forms (#4465)

This PR updates the issue templates to GitHubs new issue forms

* [Web] Fix padding issue in UI admin panel (#4481)

* [Web] fix admin panel padding issue

* [Web] fix admin panel padding issue

* [Web] Updated lang.sk.json [CI SKIP] (#4489)

Co-authored-by: Lukáš Matula <lukas@gbely.net>
Co-authored-by: milkmaker <milkmaker@mailcow.de>

Co-authored-by: Lukáš Matula <lukas@gbely.net>

* increase opcache.interned_strings_buffer to 16 (#4487)

since version 23.0.2 Nextcloud recommends having a value greater than 8 for `opcache.interned_strings_buffer`. As this memory will be only used when needed this should have no impact on installations that are not using nextcloud.

related discussion: https://help.nextcloud.com/t/nextcloud-23-02-opcache-interned-strings-buffer/134007/19
related nextcloud issue: https://github.com/nextcloud/server/issues/31223

* nextcloud - add missing redirections (#4366)

adds missing location directives to the nginx configuration of nextcloud 22, to prevent warnings in nextcloud admin center of missing redirections

* Update imapsync to 2.178 (#4491)

* Update and fix oletools (#4479)

As noticed by @MAGICCC (#4464 (comment)), our olefy image does not work anymore if you rebuild it. This is because @HeinleinSupport recently updated their repository with the changes from @decalage2's repository, which renamed olvba3 to olevba. Since @HeinleinSupport does not recommend using its own patched branch and is very slow in pulling in changes from upstream (@decalage2), let's switch to the latter. This also allowed me to revert #4464.

Finally, a minor patch to rspamd is necessary. While the documentation says

In the extended mode the oletools module will not trigger on specific categories, but will always set a threat string with all found flags when at least a macro was found.

This is not actually true -- it only sets it when suspicious or autoexec threats were detected. But it's a one-line patch to make rspamd behave as documented and we should submit that patch to @rspamd too. With this patch, I have confirmed that Mailcow will reject any incoming, non-whitelisted message containing attachments with macros.

* [Web] Fix excluded domain list in quaratine view

Previously excluded domains from quarantine were not shown.

* [Dovecot] Update syslogng Version to 3.28 (#4496)

Co-authored-by: Niklas Meyer <niklas.meyer@tinc.gmbh>

Co-authored-by: ntimo <git@nowitzki.me>
Co-authored-by: Peter <magic@kthx.at>
Co-authored-by: FreddleSpl0it <patschul@posteo.de>
Co-authored-by: FreddleSpl0it <75116288+FreddleSpl0it@users.noreply.github.com>
Co-authored-by: Michael Kuron <mkuron@users.noreply.github.com>
Co-authored-by: milkmaker <milkmaker@mailcow.de>
Co-authored-by: Fijxu <fijxu@zzls.xyz>
Co-authored-by: Slavi Pantaleev <slavi@devture.com>
Co-authored-by: Lukáš Matula <lukas@gbely.net>
Co-authored-by: Max <mail@heavygale.de>
Co-authored-by: Michael Cramer <michael@bigmichi1.de>
Co-authored-by: Robert Christian <soulsymphonies@users.noreply.github.com>
Co-authored-by: André <andre.peters@debinux.de>
Co-authored-by: Niklas Meyer <niklas.meyer@tinc.gmbh>
2022-03-02 16:32:17 +01:00
Michael Gerdemann
b1314bd9a3
[dovecot] Fix delayed quarantine notification (#4470)
Fixes: #4469
2022-03-02 11:17:08 +01:00
Niklas Meyer
89fdd1986d
Jan(moo)uary Update 2022 - Revision A (2022-01a) (#4445)
* [API] Fix minor issue in api docs

* [GH-Actions][stale] Add neverstale label to exempt list

* [Web] add github version tag

* [Web] add github version tag error handling

* Passwordless SOGo auth: support for calendar invitations and calendar/contacts subscriptions

Inviting someone to a calendar event triggers a request to /SOGo/so/otheruser@example.com/freebusy.ifb/ajaxRead. Subscribing to someone's calendar/contacts triggers a request to /SOGo/so/otheruser@example.com/foldersSearch. The email address in the URL is different from the logged-in user, which needs to be handled appropriately by sogo-auth.php.

* [Web] add github version tag - adjust css

* [Compose] Update SOGo Autoreply Schedule to 5m

Based on the advice of inverse (SOGo developer). Thanks to https://github.com/jmber

Closes: https://github.com/mailcow/mailcow-dockerized/issues/4436

* [Web] add github version tag - move twig globals

* [Web] add github version tag - missing </div>

* Passwordless SOGo auth: improvements for when accessing other users

* [WebAuthn] fido2 passwordless auth - fix (#4440)

* [WebAuthn] fido2 revert

* [WebAuthn] set UV flags to 'discouraged'

* [WebAuthn] revert - set UV flags to 'discouraged'

Co-authored-by: ntimo <git@nowitzki.me>
Co-authored-by: Peter <magic@kthx.at>
Co-authored-by: FreddleSpl0it <patschul@posteo.de>
Co-authored-by: FreddleSpl0it <75116288+FreddleSpl0it@users.noreply.github.com>
Co-authored-by: Michael Kuron <mkuron@users.noreply.github.com>
2022-02-01 15:26:48 +01:00
El-Virus
ea1a412749
Fix missing "lbuchs", after resolving last conflict
It seems that when solving the conflict in my pr when the latest staging branch was merged to master, I accidentally deleted "lbuchs", I added it back
2022-01-21 15:46:44 +01:00
El-Virus
db82327d9a
Merge branch 'staging' into master 2022-01-21 15:40:37 +01:00
Kristian Feldsam
f4c9a6941a [Web] Updated lang.cs.json
Signed-off-by: Kristian Feldsam <feldsam@gmail.com>
2022-01-21 14:18:20 +01:00
Niklas Meyer
355ea71877
Merge pull request #4428 from FreddleSpl0it/master
Migrating from U2F to WebAuthn for 2FA
2022-01-21 12:19:25 +01:00
Niklas Meyer
fac8d9d28a
[Netfilter] Update to Alpine 3.15 + GeoIP Fix
Added xtables-addon to netfilter container to handle iptables rules with geoip
**Commited by: @marcvorwerk**
2022-01-21 09:22:25 +01:00
FreddleSpl0it
af1b90fa18
[WebAuthn] rename env var 2022-01-20 14:37:20 +01:00
Niklas Meyer
9c7faa9fe8
[Netfilter] Update to Alpine 3.15 2022-01-20 10:11:39 +01:00
Niklas Meyer
8f89968421
[SOGo] Update SOGo to 5.5.0 + syslog Version Update (in Config)
This PR is updating SOGo to the new 5.5.0 Release (https://github.com/inverse-inc/sogo/releases/tag/SOGo-5.5.0) <-- Available in master.

It also includes the nsyslog Update to 3.28 (since the new SOGo builds are using a newer version), which fix a warning message inside the sogo container that the nsyslog version is outdated and can be upgraded to 3.28

This new release will have the Docker Image Tag: mailcow/sogo:1.106
2022-01-20 10:04:01 +01:00
FreddleSpl0it
7df2bb28f8
[WebAuthn] disable rootCA default 2022-01-19 21:35:21 +01:00
FreddleSpl0it
0f464658cc
[WebAuthn] disable webauthn rootca by mailcow.conf 2022-01-19 19:10:43 +01:00
Niklas Meyer
d4fe4a7f87
[Watchdog] Update to Alpine 3.15 2022-01-19 16:43:27 +01:00
Niklas Meyer
a195e6e121
[SOGo] Update syslog-ng-redis_slave Version to 3.28 2022-01-19 10:31:34 +01:00
Niklas Meyer
a5e84b483a
[SOGo] Update syslog-ng Version to 3.28 2022-01-19 10:30:57 +01:00
Niklas Meyer
9f8a16b8c1
[Olefy] Use local olefy.py (instead of Github)
This is temporarily until the issue fix is merged into master.
2022-01-18 20:55:44 +01:00
Niklas Meyer
cbb64e316e
[Olefy] Add local Olefy.py
Temporarily fix for https://github.com/HeinleinSupport/olefy/pull/14
2022-01-18 20:53:03 +01:00
Niklas Meyer
c08e520a75
[Olefy] Update to Alpine 3.15 2022-01-18 20:51:49 +01:00
Niklas Meyer
6fcb52bcc6
[Config (Clamd)] Update SSL Path to new style (dynamic)
Thanks to @mkuron this fix will change the ssl path to be dynamic (not hardcoded) to ensure that acme is still working with Alpine 3.15 or higher.

This PR is included in the Docker tag: mailcow/acme:1.81 (including the Alpine 3.15 update)
2022-01-18 16:48:50 +01:00
Niklas Meyer
1e6f927ac5
[Config (Clamd)] Update SSL Path to new style (dynamic) 2022-01-18 16:44:48 +01:00
Marc Vorwerk
f16d36eb74 Added xtables-addon to netfilter container to handle iptables rules with geoip 2022-01-18 16:27:40 +01:00
Niklas Meyer
f9e28b8d82
[Clamd] Rebuild on Bullseye Base 2022-01-18 15:14:45 +01:00
FreddleSpl0it
5712192bcb
[WebAuthn] fix error on android 2022-01-18 11:40:06 +01:00
FreddleSpl0it
0e4ddacf92
[WebAuthn] cleanup 2022-01-18 10:23:32 +01:00
FreddleSpl0it
6788c528cf
[WebAuthn] fix reload 2022-01-18 10:14:18 +01:00
FreddleSpl0it
c0b05fd592
[WebAuthn] fix u2f modal 2022-01-18 10:14:18 +01:00
FreddleSpl0it
8316e763fa
[WebAuthn] remove old u2f functions 2022-01-18 10:14:18 +01:00
FreddleSpl0it
a849d03a00
[WebAuthn] show user deprecated warning 2022-01-18 10:14:18 +01:00
FreddleSpl0it
2a52d876b0
change YubiKey to Device @ lang.tfa.key_id 2022-01-18 10:14:18 +01:00
FreddleSpl0it
ab21c7a06b
prevent user from registering authenticator multiple times 2022-01-18 10:14:18 +01:00
FreddleSpl0it
9c596691d2
add fido2 platform internal authentication 2022-01-18 10:14:18 +01:00
FreddleSpl0it
3d250bfa49
add fido2 android support by including cids 2022-01-18 10:14:18 +01:00
FreddleSpl0it
c11b6557db
migrating from u2f-api.js to webauthn [cleanup] 2022-01-18 10:14:18 +01:00
Niklas Meyer
e3417397af
[Clamd] Update to 0.103.5 2022-01-15 17:17:27 +01:00
FreddlePat
23d6cf90ae migrating from u2f-api.js to webauthn [apple faceid bug fix] 2022-01-13 19:12:13 +01:00
FreddleSpl0it
c39a20502a
migrating from u2f-api.js to webauthn [array alert bug fix] 2022-01-13 14:52:50 +01:00
FreddleSpl0it
ab0f8fa8b0
migrating from u2f-api.js to webauthn 2022-01-13 08:17:06 +01:00
FreddleSpl0it
59c8116247
migrating from u2f-api.js to webauthn 2022-01-13 08:15:56 +01:00
FreddlePat
d97a220834 migrating from u2f-api.js to webauthn 2022-01-12 21:59:35 +01:00
FreddlePat
68abd6a535 migrating from u2f-api.js to webauthn 2022-01-12 21:57:21 +01:00
FreddlePat
be4af41e64 migrating from u2f-api.js to webauthn 2022-01-12 21:26:42 +01:00
FreddlePat
d1d134038f migrating from u2f-api.js to webauthn 2022-01-12 21:09:18 +01:00
milkmaker
6ef8b90c76
[Web] Updated lang.fr.json [CI SKIP] (#4417)
Co-authored-by: crep7424 <guillaume@crepieux.eu>

Co-authored-by: crep7424 <guillaume@crepieux.eu>
2022-01-09 16:23:17 +01:00
Michael Kuron
526b3f885b
Merge pull request #4410 from AlexBeakes/master
Fix pip3 issue that broke netfilter Dockerfile build
2022-01-05 22:36:20 +01:00
Alex Beakes
a0b0d36e22
Fix pip3 uninstall error 2022-01-02 03:51:09 +03:00
El-Virus
ea1a02bd7d
Fix "The operation is insecure." when trying to register fido2 device.
navigator.credentials.create(); Doesn't accept a port in the "id" parameter. So, when trying to register a fido2 device via WebAuthn throws: "The operation is insecure." on firefox and "The relying party ID is not a registrable domain suffix of, nor equal to the current domain." on Chrome or Edge.
This commit replaces `$_SERVER['HTTP_HOST']` with `$_SERVER['SERVER_NAME']` when initializing `$WebAuthn` which excludes the port to formulate correct requests.
Now Mailcow allows the registration of fido2 devices when running in a non-standard port(eg. 443).
2021-12-26 17:11:06 +01:00
Razvan
36e29710da
[Web] Updated lang.ro.json (#4396)
[Web] Updated lang.ro.json
2021-12-22 19:34:50 +01:00
Niklas Meyer
e8ca588884
[Solr] Remove breached class from log4j-core.jar (#4390) 2021-12-17 12:43:05 +01:00
milkmaker
3a94926913
[Web] Updated lang.it.json [CI SKIP] (#4386)
Co-authored-by: Stefano <stefano.vassena@gmail.com>

Co-authored-by: Stefano <stefano.vassena@gmail.com>
2021-12-15 18:48:09 +01:00
HolzHannes
97e3227fbe
added key CalDAVPassword and key CardDAVPassword
If the user is choosing the config with app password, it is now also used for CalDav and CardDav.
2021-12-15 16:22:16 +01:00
Niklas Meyer
2f9d8213b6
[Alpine] Update to 3.15 (#4372) 2021-12-14 14:10:31 +01:00
andryyy
9c5fd91484 Merge branch 'hotfix' into staging 2021-12-12 10:50:50 +01:00
andryyy
a5660cdf31 [SOGo] Faster GC: fix for too many SQL connections 2021-12-12 10:42:53 +01:00
Niklas Meyer
8248b80d4b
Merge pull request #4361 from TomK32/patch-1
Add a note about creating a backup before starting over
2021-12-10 23:37:33 +01:00
milkmaker
42d7563626
[Web] Updated lang.it.json [CI SKIP] (#4367)
Co-authored-by: Stefano <stefano.vassena@gmail.com>

Co-authored-by: Stefano <stefano.vassena@gmail.com>
2021-12-09 21:11:59 +01:00
DerLinkman
03542bfa71
[Dovecot] Update to 2.3.17.1 (#4365) 2021-12-08 20:17:30 +01:00
DerLinkman
77ac84eaa4
[WEB] fixed wrong value entry in Pushover.twig (#4363) 2021-12-08 19:23:28 +01:00
roswitina
2892a1b264
Typo lang.de.json (#4359) 2021-12-08 19:10:54 +01:00
milkmaker
41819d354f
Translations update from Weblate (#4364)
* [Web] Updated lang.it.json [CI SKIP]

[Web] Updated lang.it.json [CI SKIP]

Co-authored-by: Stefano <stefano.vassena@gmail.com>
Co-authored-by: milkmaker <milkmaker@mailcow.de>

* [Web] Updated lang.sk.json [CI SKIP]

Co-authored-by: Lukáš Matula <lukas@gbely.net>

Co-authored-by: Stefano <stefano.vassena@gmail.com>
Co-authored-by: Lukáš Matula <lukas@gbely.net>
2021-12-08 19:09:30 +01:00
andryyy
e4d23b7887
[Web] Add default sieve accessq 2021-12-07 13:56:56 +01:00
Thomas R. Koll
43559af0cc
Add a not about creating a backup before starting over
I was stupid/tired enough to copy and run that `docker-compose down -v`. Hopefully this little change will prevent others from loosing their data as well.
Btw, I did get that page after my disk space was running out.
2021-12-05 18:59:39 +01:00
milkmaker
e94b1b9f96
Translations update from Weblate (#4351)
* [Web] Updated lang.it.json

[Web] Updated lang.it.json

[Web] Updated lang.it.json

[Web] Updated lang.it.json

[Web] Updated lang.it.json

[Web] Updated lang.it.json

[Web] Updated lang.it.json

[Web] Updated lang.it.json

[Web] Updated lang.it.json

[Web] Updated lang.it.json

[Web] Updated lang.it.json

[Web] Updated lang.it.json

[Web] Updated lang.it.json

[Web] Updated lang.it.json

Co-authored-by: Peter <magic@kthx.at>
Co-authored-by: Stefano <stefano.vassena@gmail.com>
Co-authored-by: milkmaker <milkmaker@mailcow.de>

* [Web] Updated lang.hu.json

Co-authored-by: milkmaker <milkmaker@mailcow.de>
Co-authored-by: y9-csillagd <csillag.david@y9.hu>

Co-authored-by: Peter <magic@kthx.at>
Co-authored-by: Stefano <stefano.vassena@gmail.com>
Co-authored-by: y9-csillagd <csillag.david@y9.hu>
2021-11-29 18:25:37 +01:00
Valentin Brandner
b4823a3675
[web] Fix several raw html flags in twig (#4325)
* [Update, Config] Add subject for watchdog emails

* [Web] Fixed sender_acl_disabled var in twig

* [Web] Fixed add_relayhost_hint var in twig

* [Web] Fixed merged_vars_hint var in twig

Co-authored-by: Valentin <vbrandner.itsb-b2018@fh-salzburg.ac.at>
Co-authored-by: Valentin <git@voidl.de>
2021-11-29 00:16:46 +01:00
Kristian Feldsam
08f8eeb2e6 [web] fixed html in alerts
Signed-off-by: Kristian Feldsam <feldsam@gmail.com>
2021-11-28 22:49:18 +01:00