1
0
mirror of https://github.com/Mailu/Mailu.git synced 2024-12-20 20:22:38 +02:00
Commit Graph

2803 Commits

Author SHA1 Message Date
Pierre Jaury
382030a7aa Revert to using 'latest' for testing 2016-09-03 14:16:13 +02:00
Pierre Jaury
d60ef1991c Add a rainloop Webmail image, fixes #58 2016-09-03 14:10:42 +02:00
Pierre Jaury
f5b9f569ca Add a link to the demo server documentation 2016-09-03 12:39:30 +02:00
kaiyou
cbc6bb5dd6 Merge pull request #55 from kaiyou/feat-refactor-permissions
Refactor the access control code
2016-08-31 13:45:50 +02:00
Pierre Jaury
40b9883c8c Filter outgoing email headers, fixes #52 2016-08-29 22:41:31 +02:00
Pierre Jaury
92bbfde195 Add a PNG logo for rendering 2016-08-29 21:17:29 +02:00
Pierre Jaury
56e6c7565e Add a draft logo 2016-08-29 21:15:20 +02:00
Pierre Jaury
e24da96e58 Add some documentation to access decorators 2016-08-29 20:30:59 +02:00
Pierre Jaury
09bec055fd Fix domain deletion permissions 2016-08-29 20:22:44 +02:00
Pierre Jaury
c1f9b61dac Add a simple permission audit script 2016-08-29 20:18:00 +02:00
Pierre Jaury
f8dcef22ef Fix the manager deletion behaviour 2016-08-29 19:40:18 +02:00
Pierre Jaury
f541a951de Remove obsolete utils module 2016-08-29 19:36:37 +02:00
Pierre Jaury
713318f097 Clean imports and remove calls to the utils module 2016-08-29 19:35:09 +02:00
Pierre Jaury
ee9a416696 Implement the decorator-based access control for all views 2016-08-29 19:24:39 +02:00
Pierre Jaury
4e4f2b8037 First shot at improving access control, related to #42
A couple of things are important to note for this commit:
- it only implements the new access control for alias and admin management
- the access control code is located in access.py

The idea behind simpler access control is auditability. There have been a
couple of bugs related to functions not checking permissions properly. If
checking permissions is as simple as decorating a function, exporting the
permission scheme for an audit should be simple.

Also, this still does not address the information leakage related to 404 errors
when an object does not exist, independently of permissions the user has over
the domain.
2016-08-28 15:23:57 +02:00
Pierre Jaury
3ea3bc1d8e Enforce permission checks for admin management 2016-08-27 15:05:30 +02:00
kaiyou
ee6e9b2690 Add a reference to the Freenode IRC channel. 2016-08-27 14:39:58 +02:00
Pierre Jaury
6dc9131b97 Fix the wildcard migration script, fixes #53 2016-08-23 22:46:21 +02:00
Pierre Jaury
26f7f5a73b Change the env file name in the README file 2016-08-21 16:06:59 +02:00
Pierre Jaury
bac20081ee Split the environment file into sections 2016-08-21 15:53:00 +02:00
Pierre Jaury
d2d84acd5f Comment all 'build' directives 2016-08-21 15:08:29 +02:00
Pierre Jaury
e3197f9156 Have the admin interface listen on localhost 2016-08-21 15:01:07 +02:00
Pierre Jaury
1b6c514dc5 Disable the frontend Web server by default 2016-08-21 14:24:07 +02:00
Pierre Jaury
a8eafc508a Default listen on localhost only 2016-08-20 17:01:12 +02:00
Pierre Jaury
7ac44eabeb Add a VERSION variable to avoid modifying the docker-compose file 2016-08-20 16:52:44 +02:00
Pierre Jaury
14ec783ef7 Add a dynamic Webmail option with a 'none' container 2016-08-20 16:48:29 +02:00
Pierre Jaury
cf84b82c57 Move the configuration file to .env to support global variables 2016-08-20 16:32:10 +02:00
Pierre Jaury
581a0882af Pull images from Docker Hub by default 2016-08-20 14:49:42 +02:00
Pierre Jaury
8fc95a96d2 Disable debug and set an explicit default secret key 2016-08-20 14:35:42 +02:00
Pierre Jaury
ef5d3a77c6 Pull images from Docker Hub by default 2016-08-20 14:34:52 +02:00
Pierre Jaury
8601d5b8db Fix #49 when deleting a global admin 2016-08-20 12:46:29 +02:00
Pierre Jaury
1273571299 Add a changelog 2016-08-20 12:43:30 +02:00
Pierre Jaury
0d3c75aa89 Fix a migration issue with wildcard aliases 2016-08-20 12:23:55 +02:00
Pierre Jaury
bfe9ededbc Fix spam filtering when the score is negative 2016-08-19 21:59:04 +02:00
Pierre Jaury
2602ef2883 Add a feature item about freedom 2016-08-19 19:38:19 +02:00
Pierre Jaury
e916998bb2 Apply the BetterCrypto nginx configuration, related to #45 2016-08-19 15:07:16 +02:00
Pierre Jaury
3d1e5523d4 Use a non-starttls configuration for SMTPS port, related to #45 2016-08-19 15:06:52 +02:00
Pierre Jaury
a6ab917aea Do not enforce TLS on the default SMTP port, related to #45 2016-08-19 15:04:51 +02:00
Pierre Jaury
e3e9012183 Add a link to the BetterCrypto reference 2016-08-19 13:55:34 +02:00
Pierre Jaury
c0f6a3e387 Apply the BetterCrypto Dovecot configuration, related to #45 2016-08-19 13:54:47 +02:00
Pierre Jaury
8909033c26 Apply the BetterCrypto Postfix configuration, related to #45 2016-08-19 13:51:56 +02:00
Pierre Jaury
5a3242d9d3 Apply the BetterCrypto Postfix configuration, related to #45 2016-08-19 13:49:58 +02:00
Pierre Jaury
5bc0948248 Add some documentation to the Postfix configuration 2016-08-19 13:43:01 +02:00
kaiyou
207e351276 Merge pull request #43 from d-fens/patch-2
Update postfix SSL/TLS configuration
2016-08-19 13:33:52 +02:00
kaiyou
2f9319e454 Merge pull request #44 from d-fens/patch-1
Update dovecot SSL/TLS configuration
2016-08-19 13:33:43 +02:00
d-fens
a3d8daa585 Update postfix SSL/TLS configuration
Ensure that RC4 and SSLv3 is not used. This is based off mailinabox project settings, while not the most ideal settings this improves the configuration from what it is currently.
2016-08-19 12:20:50 +01:00
d-fens
62b1df04a0 Update dovecot SSL/TLS configuration
Ensure that RC4 and SSLv3 is not used. This is based off mailinabox project settings, while not the most ideal settings this improves the configuration from what it is currently.
2016-08-19 12:19:05 +01:00
Pierre Jaury
84769cab3e Switch to form-based confirmations, fixes #20 2016-08-19 10:49:05 +02:00
Pierre Jaury
5a69ada041 Add an action confirmation form, related to #20 2016-08-19 10:36:13 +02:00
Pierre Jaury
6bfdabe8c1 Format the authors file properly 2016-08-18 21:26:21 +02:00