1
0
mirror of https://github.com/Mailu/Mailu.git synced 2024-12-22 22:13:11 +02:00
Commit Graph

3858 Commits

Author SHA1 Message Date
Florent Daigniere
04f6bd2633 simplify 2022-11-16 12:23:14 +01:00
Florent Daigniere
d43e7f72df ghostwheel42's suggestion 2022-11-16 11:55:12 +01:00
Florent Daigniere
1f895d5f82 ghostwheel42's suggestion 2022-11-16 11:53:52 +01:00
Florent Daigniere
031a157ad9 fix the linux/arm/v7 build 2022-11-15 17:25:44 +01:00
bors[bot]
04a196c417
Merge #2525 #2534
2525: Switch to GrapheneOS's hardened_malloc r=mergify[bot] a=nextgens

## What type of PR?

Feature

## What does this PR do?

Switch to GrapheneOS's hardened_malloc

This was suggested during the dev meeting of the 18/09/22.

It may break things and it may make things unbearably slow... but it should also make the exploitation of memory corruption bugs a lot harder.

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [ ] In case of feature or enhancement: documentation updated accordingly
- [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


2534: Close #2533: document SQLALCHEMY_DATABASE_URI r=mergify[bot] a=nextgens

## What type of PR?

documentation

## What does this PR do?

document SQLALCHEMY_DATABASE_URI

### Related issue(s)
- closes #2533

## Prerequisites
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.

- [x] In case of feature or enhancement: documentation updated accordingly
- [ ] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file.


Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
2022-11-15 12:28:19 +00:00
bors[bot]
40bdf7a6d9
Merge #2530
2530: disable SESSION_COOKIE_SECURE when TLS_FLAVOR=notls r=mergify[bot] a=nextgens

## What type of PR?

bug-fix

## What does this PR do?

People are unlikely to proxy everything

### Related issue(s)
- closes #2527

Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
2022-11-15 12:20:49 +00:00
bors[bot]
3b150ff9a4
Merge #2532
2532: Allow JS debugging, speed-up asset-build, disable redirect-debug. r=mergify[bot] a=ghostwheel42

## What type of PR?

bug-fix

## What does this PR do?

Another bugfix to the run_dev.sh helper

Co-authored-by: Alexander Graf <ghostwheel42@users.noreply.github.com>
2022-11-15 11:49:36 +00:00
Florent Daigniere
b9e5560fb6 Better way to express the same thing
Thanks @ghostwheel42
2022-11-15 12:47:38 +01:00
Florent Daigniere
63513608b9 Close #2533: document SQLALCHEMY_DATABASE_URI 2022-11-15 11:17:15 +01:00
Florent Daigniere
66de1dcec8 Change the logic
The idea here is that if you have set SESSION_COOKIE_SECURE we should
honor that... and if you haven't we should try to do the right thing.
2022-11-15 10:47:20 +01:00
Florent Daigniere
81628149a2 don't fake the library 2022-11-15 09:17:06 +01:00
Florent Daigniere
9b2f018be6 add --no-cache 2022-11-15 09:09:47 +01:00
Florent Daigniere
76f8517e00 This is still required (as TLS_FLAVOR isn't set) 2022-11-14 19:38:17 +01:00
Florent Daigniere
b9564c0bc9 This shouldn't have been commited 2022-11-14 19:37:04 +01:00
Florent Daigniere
19af2944d7 Refactor as requested 2022-11-14 19:05:41 +01:00
Alexander Graf
6b470ac403
Allow proper JS debugging, speed-up assets dev-build, disable redirect-debug by default. 2022-11-14 17:40:26 +01:00
Florent Daigniere
7aad1158fb @ghostwheel42 will fix it in another PR 2022-11-14 17:31:31 +01:00
Florent Daigniere
a566cb07d6 fix 2022-11-14 16:51:05 +01:00
Florent Daigniere
08b3a2814b Merge branch 'master' of https://github.com/Mailu/Mailu into notls 2022-11-14 16:50:46 +01:00
Florent Daigniere
385b6ac85d Use string formatting 2022-11-14 16:47:43 +01:00
Florent Daigniere
6474108056 Use a join() instead 2022-11-14 16:36:37 +01:00
Florent Daigniere
fb75cca2f4 Merge branch 'master' of https://github.com/Mailu/Mailu into fetchmail-improvements 2022-11-14 16:28:07 +01:00
Florent Daigniere
c0c91691fd Fix the issue on /admin/fetch/edit 2022-11-14 16:24:09 +01:00
bors[bot]
d8e2a2960b
Merge #2531
2531: run_dev.sh: Use FLASK_DEBUG, fix assets, show startup errors. r=mergify[bot] a=ghostwheel42

## What type of PR?

bug-fix

## What does this PR do?

fixes bug in run_dev.sh

Co-authored-by: Alexander Graf <ghostwheel42@users.noreply.github.com>
2022-11-14 14:49:13 +00:00
Alexander Graf
b0b64a8e63
Use FLASK_DEBUG, fix assets, show startup errors. 2022-11-14 15:44:12 +01:00
Florent Daigniere
505bb79a78 Don't set the secure Cookie flag if TLS_FLAVOR=notls 2022-11-14 15:11:11 +01:00
Florent Daigniere
9c7dfbeb24 Doc 2022-11-14 13:43:42 +01:00
Florent Daigniere
08a9ab9a56 Improve fetchmail 2022-11-14 12:18:35 +01:00
Florent Daigniere
455180043d doh 2022-11-14 09:34:43 +01:00
Florent Daigniere
56a106ad60 Only one labs section in the conf file 2022-11-13 15:25:46 +01:00
Florent Daigniere
071ad15a97 Better snappymail defaults 2022-11-13 14:34:25 +01:00
Florent Daigniere
6b2cb95a7d This is not required anymore 2022-11-13 14:17:37 +01:00
Florent Daigniere
a508eeaafb Use /dev/shm for tmp 2022-11-13 14:16:44 +01:00
Florent Daigniere
f2f430af5d Redirect the logs where they belong 2022-11-13 14:07:40 +01:00
Florent Daigniere
06c0c78956 Hardening: run the http and php as different users 2022-11-13 13:44:35 +01:00
Florent Daigniere
d7b80e94a4 try again. 2022-11-12 16:21:28 +01:00
Florent Daigniere
7ebac75045 fix tests 2022-11-12 16:11:38 +01:00
Florent Daigniere
f3a91d1a18 enable APCu 2022-11-12 16:00:55 +01:00
Florent Daigniere
b488e57602 debug 2022-11-12 15:39:11 +01:00
Florent Daigniere
225322fe88 More hardening 2022-11-12 15:34:43 +01:00
Florent Daigniere
ad17b10c8e redirects should be HTTP/302 2022-11-12 15:31:47 +01:00
Florent Daigniere
4517ce23a6 Aliases be damned. 2022-11-12 15:28:01 +01:00
Florent Daigniere
6d8cc9083b test 2022-11-12 15:21:04 +01:00
Florent Daigniere
729838c8fe Grrr. 2022-11-12 15:12:22 +01:00
Florent Daigniere
1379a58352 Basic hardening 2022-11-12 14:50:30 +01:00
Florent Daigniere
50f94a282f doh 2022-11-12 14:35:17 +01:00
Florent Daigniere
710dde1faf Fix #948: ensure the admin panel is disabled 2022-11-12 14:27:32 +01:00
Florent Daigniere
7e722cd0c3 fix #2250: ensure rainloop uses _ADDRESS 2022-11-12 14:10:50 +01:00
Florent Daigniere
224f2f4508 This isn't used anymore
The healthcheck is now done by fpm
2022-11-12 14:01:01 +01:00
Florent Daigniere
a8d405cb48 Verify the gpg signature of webmails 2022-11-12 12:25:03 +01:00