3189: Bump tika version to 2.9.1 r=mergify[bot] a=nextgens
## What type of PR?
enhancement
## What does this PR do?
Bump tika version to 2.9.1
Bump alpine to 3.9.1
### Related issue(s)
## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.
- [ ] In case of feature or enhancement: documentation updated accordingly
- [ ] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.
Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
3188: Ensure we always send an ISRG root for DANE r=nextgens a=nextgens
## What type of PR?
bug-fix
## What does this PR do?
Ensure we always send an ISRG root for DANE. Rebuild the x509 cert chain ourselves to ensure it's valid.
It's fairly obvious that we can't trust letsencrypt to keep things sane (they are now planning to sign from random intermediaries) nor certbot to be consistent.
### Related issue(s)
- close#3187
- #2138
## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.
- [ ] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.
Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
3181: Ensure that nginx and dovecot are reloaded r=mergify[bot] a=nextgens
## What type of PR?
bug-fix
## What does this PR do?
Ensure that nginx and dovecot are reloaded.
For some reason here the PID files have disappeared and the reload doesn't work.
### Related issue(s)
## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.
- [ ] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.
Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
3138: Update dependencies and re-enable flask toolbar r=nextgens a=ghostwheel42
## What type of PR?
bug-fix
## What does this PR do?
Update python dependencies to versions without known security vulnerabilities.
Also re-enable flask debug toolbar which was disabled earlier.
werkzeug < 2.3.8: CVE-2023-46136
aiohttp < 3.9.0: CVE-2023-49081 CVE-2023-49082
cryptography >= 3.1 < 41.0.6: CVE-2023-49083
jinja2 < 3.1.3: CVE-2024-22195
Co-authored-by: Alexander Graf <ghostwheel42@users.noreply.github.com>
3178: Fix ooo/sieve when proxy protocol is in use r=mergify[bot] a=nextgens
## What type of PR?
bug-fix
## What does this PR do?
Fix ooo/sieve when proxy protocol is in use; If it is enabled we shouldn't talk to front but to the proxy.
I am not proposing to backport this; it will be a 2.1 thing.
### Related issue(s)
- close#3172
- close#3159
## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.
- [ ] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.
Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
3175: update Simplified Chinese translation r=mergify[bot] a=darkclip
## What type of PR?
bugfix for localization
## What does this PR do?
update Simplified Chinese (zh) translation
### Related issue(s)
None
## Prerequisites
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.
Co-authored-by: darkclip <darkclip@users.noreply.github.com>
3150: Add trailing semicolon for DMARC authorisation record r=mergify[bot] a=su-ex
## What type of PR?
bug-fix
## What does this PR do?
Add trailing semicolon for DMARC authorisation records, which seems to be necessary: https://stackoverflow.com/a/72463456
I ran into this when testing my domain with internet.nl.
Co-authored-by: su-ex <codeworks@supercable.onl>
Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
3137: Update run_dev.sh r=mergify[bot] a=ghostwheel42
## What type of PR?
bug-fix
## What does this PR do?
Make `run_dev.sh` more resilient by using sed instead of awk.
Clarify on how to update the python dependencies.
Co-authored-by: Alexander Graf <ghostwheel42@users.noreply.github.com>
3136: Roundcube 1.6.6 r=mergify[bot] a=ctrl-i
## What type of PR?
Roundcube has been updated to version 1.6.6 which contains various small fixes and improvements.
See [release notes](https://github.com/roundcube/roundcubemail/releases/tag/1.6.6)
## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.
- [X] In case of feature or enhancement: documentation updated accordingly
- [X] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.
Co-authored-by: ctrl-i <1422608+ctrl-i@users.noreply.github.com>
3132: Fix 3129, thanks to Games-Crack r=mergify[bot] a=nextgens
## What type of PR?
bug-fix
## What does this PR do?
Add required quotes to traefik-certdumper to ensure that shell characters are usable.
### Related issue(s)
- close#3129
## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.
- [ ] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.
Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
3097: Upgrade alpine and node r=mergify[bot] a=nextgens
## What type of PR?
enhancement
## What does this PR do?
Upgrade alpine to 3.19.0 and node to node 21
That's php 8.3 and snappymail 2.31.0
### Related issue(s)
## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.
- [ ] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.
Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
3120: Update the traefik doc r=mergify[bot] a=nextgens
## What type of PR?
documentation
## What does this PR do?
Update the traefik doc
### Related issue(s)
- #2903
- #3052
## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.
- [ ] In case of feature or enhancement: documentation updated accordingly
- [ ] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.
Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
3109: Long term fix against SMTP smuggling r=mergify[bot] a=nextgens
## What type of PR?
bug-fix
## What does this PR do?
Long term fix against SMTP smuggling, see https://www.postfix.org/smtp-smuggling.html
This can't be hot-patched, you need postfix 3.8.4-r0 (which is now available in alpine 3.18)
https://git.alpinelinux.org/aports/commit/?id=19fa7e7fb3208bea9aded961f07b7ad2bb6493dc
### Related issue(s)
- closes#3108
- #3102
## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.
- [ ] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.
Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
3100: Do not block webmail when we have a valid SSO session r=mergify[bot] a=nextgens
## What type of PR?
bug-fix
## What does this PR do?
Ensure we do not block webmail when we have a valid SSO session
### Related issue(s)
- close #3094
## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.
- [ ] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.
Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
3096: Fix 3095: fix the form validator of forwarding addresses r=nextgens a=nextgens
## What type of PR?
bug-fix
## What does this PR do?
Fix the form validator of forwarding addresses (allow uppercase).
I don't think this warrants a backport but if you think it does add the label.
### Related issue(s)
- closes#3095
## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.
- [ ] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.
Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>