1
0
mirror of https://github.com/Mailu/Mailu.git synced 2024-12-14 10:53:30 +02:00
Commit Graph

4693 Commits

Author SHA1 Message Date
Dimitri Huisman
acb878a43f
Use the correct hostname 2024-03-22 15:38:46 +00:00
Dimitri Huisman
18d5fb8a1b
Forgot to create the mailu.io domain as the first step in tests 2024-03-22 15:23:12 +00:00
Dimitri Huisman
2558ae3bc9
Add automatic tests for RESTful API. Fix all remaining issues that I could find with the API. 2024-03-22 15:01:37 +00:00
bors-mailu[bot]
c8e3270724
Merge #3198
3198: Update actions in CI github workflow files r=mergify[bot] a=Diman0

## What type of PR?

update

## What does this PR do?

Update all the actions in the *.yml workflow files to the current version. This is required to get rid of all the warnings in github actions for using node16.

### Related issue(s)

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [ n/a] In case of feature or enhancement: documentation updated accordingly
- [ n/a] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: Dimitri Huisman <diman@huisman.xyz>
2024-03-18 15:46:43 +00:00
bors-mailu[bot]
10ade025ac
Merge #3165
3165: Documentation: config-export had wrong example. r=mergify[bot] a=migs35323

fixing the example command flag.
running the example command to export the configuration throws: Error: [KeyError] 'mail-config'

this is valid for any version of mailu (at the time)

## What type of PR?

documentation

## What does this PR do?




Co-authored-by: migs35323 <92784574+migs35323@users.noreply.github.com>
Co-authored-by: Dimitri Huisman <diman@huisman.xyz>
2024-03-18 15:26:34 +00:00
Dimitri Huisman
df6dcf0d44
update docker/login-action@v2 to docker/login-action@v3 2024-03-18 15:24:43 +00:00
Dimitri Huisman
a8cdd6ca9c
Update actions in CI github workflow files 2024-03-18 15:12:10 +00:00
bors-mailu[bot]
e6fc7c3373
Merge #3197
3197: Address CVE-2024-23829 (CVE for aiohttp) r=mergify[bot] a=Diman0

## What type of PR?

security update

## What does this PR do?

Updates library to patch CVE-2024-23829.

### Related issue(s)


## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [x] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: Dimitri Huisman <diman@huisman.xyz>
2024-03-18 15:10:28 +00:00
Dimitri Huisman
854e9b0a45
cli.rst contained wrong example 2024-03-18 14:34:58 +00:00
Dimitri Huisman
b6743019e8
Address CVE-2024-23829 (CVE for aiohttp) 2024-03-18 14:28:53 +00:00
bors-mailu[bot]
8bf5299f21
Merge #3194
3194: Fix 3113 r=mergify[bot] a=Diman0

## What type of PR?

bug-fix

## What does this PR do?
Fixes swaggerui documentation of all RESTful api end points. The API documentation should now be valid for each endpoint. 

### Related issue(s)
- close #3113 


## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [x] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: Dimitri Huisman <diman@huisman.xyz>
2024-03-18 08:10:44 +00:00
Dimitri Huisman
1f69074771
Undo unintended changes to this file 2024-03-16 16:49:04 +00:00
Dimitri Huisman
b136c16f96
Revert commit. Will add api testing in a later PR 2024-03-16 15:54:09 +00:00
bors-mailu[bot]
42cdd12ab3
Merge #3191
3191: Ensure we also pin ISRG X2 in TLSA r=mergify[bot] a=nextgens

## What type of PR?

enhancement

## What does this PR do?

Ensure we also pin ISRG X2 in TLSA; some users may have opted-in, the CA may change where they issue from, ... this is future-proofing.

### Related issue(s)
- #3187 

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [ ] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
2024-03-11 15:41:12 +00:00
Florent Daigniere
a1d8ff630f review2 2024-03-11 14:45:59 +01:00
bors-mailu[bot]
f44a7b3066
Merge #3184
3184: Remove redundant variable assignment r=mergify[bot] a=strugee

## What type of PR?

Bugfix

## What does this PR do?

See diff; this variable is set again two lines down

### Related issue(s)

None

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [x] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: AJ Jordan <alex@strugee.net>
2024-03-11 13:05:26 +00:00
Florent Daigniere
58b1738d8c api 2024-03-11 11:15:15 +01:00
Florent Daigniere
0171c6d0f8 review 2024-03-11 11:12:53 +01:00
Florent Daigniere
b2d37c4323 Make it clear that there may be more than one 2024-03-11 10:26:38 +01:00
Florent Daigniere
7089cfea48 Ensure we also pin ISRG X2 in TLSA 2024-03-11 10:21:54 +01:00
bors-mailu[bot]
d76e543b2d
Merge #3189
3189: Bump tika version to 2.9.1 r=mergify[bot] a=nextgens

## What type of PR?

enhancement

## What does this PR do?

Bump tika version to 2.9.1
Bump alpine to 3.9.1

### Related issue(s)

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [ ] In case of feature or enhancement: documentation updated accordingly
- [ ] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
2024-03-10 15:46:20 +00:00
Florent Daigniere
851c4f8403 Alpine 3.19.1 2024-03-10 16:44:18 +01:00
Florent Daigniere
df4d817329 Bump tika version to 2.9.1 2024-03-10 16:44:03 +01:00
bors-mailu[bot]
2dad43a207
Merge #3188
3188: Ensure we always send an ISRG root for DANE r=nextgens a=nextgens

## What type of PR?

bug-fix

## What does this PR do?

Ensure we always send an ISRG root for DANE. Rebuild the x509 cert chain ourselves to ensure it's valid.

It's fairly obvious that we can't trust letsencrypt to keep things sane (they are now planning to sign from random intermediaries) nor certbot to be consistent.

### Related issue(s)
- close #3187
- #2138

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [ ] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
2024-03-10 15:37:15 +00:00
Florent Daigniere
494147eedf Need newer cryptography 2024-03-10 16:17:49 +01:00
Florent Daigniere
8c842ff3aa Create a fake husky to fix the CI 2024-03-10 15:52:59 +01:00
Florent Daigniere
86adf07461 Ensure we always send an ISRG root for DANE 2024-03-10 12:19:40 +01:00
AJ Jordan
9f304c0013
Remove redundant variable assignment 2024-03-07 00:40:02 -05:00
bors-mailu[bot]
a7cf68163a
Merge #3181
3181: Ensure that nginx and dovecot are reloaded r=mergify[bot] a=nextgens

## What type of PR?

bug-fix

## What does this PR do?

Ensure that nginx and dovecot are reloaded.
For some reason here the PID files have disappeared and the reload doesn't work.

### Related issue(s)

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [ ] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
2024-03-05 10:21:51 +00:00
Florent Daigniere
dec5fecdb4 Ensure that nginx and dovecot are reloaded 2024-03-05 10:12:45 +01:00
bors-mailu[bot]
1612b11e62
Merge #3138
3138: Update dependencies and re-enable flask toolbar r=nextgens a=ghostwheel42

## What type of PR?

bug-fix

## What does this PR do?

Update python dependencies to versions without known security vulnerabilities.
Also re-enable flask debug toolbar which was disabled earlier.

werkzeug < 2.3.8: CVE-2023-46136
aiohttp < 3.9.0: CVE-2023-49081 CVE-2023-49082
cryptography >= 3.1 < 41.0.6: CVE-2023-49083
jinja2 < 3.1.3: CVE-2024-22195

Co-authored-by: Alexander Graf <ghostwheel42@users.noreply.github.com>
2024-02-29 17:45:16 +00:00
bors-mailu[bot]
d752e96805
Merge #3178
3178: Fix ooo/sieve when proxy protocol is in use r=mergify[bot] a=nextgens

## What type of PR?

bug-fix

## What does this PR do?

Fix ooo/sieve when proxy protocol is in use; If it is enabled we shouldn't talk to front but to the proxy.

I am not proposing to backport this; it will be a 2.1 thing.

### Related issue(s)
- close #3172
- close #3159

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [ ] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
2024-02-29 16:56:53 +00:00
Florent Daigniere
2afa9dca51 Fix ooo/sieve when proxy protocol is in use 2024-02-29 13:06:15 +01:00
bors-mailu[bot]
3d21ff18e9
Merge #3175
3175: update Simplified Chinese translation r=mergify[bot] a=darkclip

## What type of PR?

bugfix for localization

## What does this PR do?

update Simplified Chinese (zh) translation

### Related issue(s)

None

## Prerequisites
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: darkclip <darkclip@users.noreply.github.com>
2024-02-22 20:02:23 +00:00
darkclip
dba60c1c59 add changelog 2024-02-22 14:47:11 +08:00
darkclip
1ce76f92cb update zh translation 2024-02-22 14:38:20 +08:00
migs35323
26a8c2b6bb
correction: config-export had wrong example.
fixing the example command flag.
2024-02-12 15:58:01 +00:00
bors-mailu[bot]
9d0325fa15
Merge #3150
3150: Add trailing semicolon for DMARC authorisation record r=mergify[bot] a=su-ex

## What type of PR?

bug-fix

## What does this PR do?

Add trailing semicolon for DMARC authorisation records, which seems to be necessary: https://stackoverflow.com/a/72463456
I ran into this when testing my domain with internet.nl.


Co-authored-by: su-ex <codeworks@supercable.onl>
Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
2024-02-05 17:36:59 +00:00
Florent Daigniere
98a6bab0ca towncrier 2024-02-05 18:33:48 +01:00
su-ex
324b723efa
Add trailing semicolon for DMARC authorisation record
This seems to be necessary: https://stackoverflow.com/a/72463456
2024-01-26 12:59:44 +01:00
Dimitri Huisman
6627dd2924
API: Create user did not handle exception of duplicate user 2024-01-24 10:57:30 +00:00
Dimitri Huisman
8f86ffc6fd
Fix #3113. RESTful API was not correctly documented. 2024-01-22 10:44:30 +00:00
bors-mailu[bot]
e0c5dc5fe5
Merge #3137
3137: Update run_dev.sh r=mergify[bot] a=ghostwheel42

## What type of PR?

bug-fix

## What does this PR do?

Make `run_dev.sh` more resilient by using sed instead of awk.
Clarify on how to update the python dependencies.


Co-authored-by: Alexander Graf <ghostwheel42@users.noreply.github.com>
2024-01-21 18:02:28 +00:00
Alexander Graf
a1e395c581
Update dependencies and re-enable flask toolbar 2024-01-21 18:42:51 +01:00
Alexander Graf
40f26f1ce3
Define copy msg more precisely 2024-01-21 18:38:33 +01:00
Alexander Graf
4213da1ce1
Replace awk with sed 2024-01-21 17:26:27 +01:00
Alexander Graf
b706a16e6b
Improve usage message 2024-01-21 16:03:47 +01:00
bors-mailu[bot]
ed3542a52d
Merge #3136
3136: Roundcube 1.6.6 r=mergify[bot] a=ctrl-i

## What type of PR?

Roundcube has been updated to version 1.6.6 which contains various small fixes and improvements.

See [release notes](https://github.com/roundcube/roundcubemail/releases/tag/1.6.6)

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [X] In case of feature or enhancement: documentation updated accordingly
- [X] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: ctrl-i <1422608+ctrl-i@users.noreply.github.com>
2024-01-21 12:59:32 +00:00
ctrl-i
3e187206ac
Create 3130.misc
Updated roundcube to 1.6.6
2024-01-21 09:34:00 +00:00
ctrl-i
8c848d4926
Update Dockerfile
Updated roundcube to the latest version 1.6.6
2024-01-21 09:32:39 +00:00