mirror/postfixadmin
0
0
Fork 0
mirror of https://github.com/postfixadmin/postfixadmin.git synced 2024-09-20 03:36:20 +02:00
Code
1,912 Commits 10 Branches 55 Tags 16 MiB
5e93dfe604
Commit Graph

1912 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
David Goodwin
8bd435039b
Merge pull request #92 from leeclemens/feature-91/mysql-ssl 
Add support for MySQL connections over SSL
 2017-11-19 13:48:50 +00:00
Lee Clemens
ebbd9025e4 Add support for MySQL connections over SSL 2017-11-14 19:53:59 -05:00
David Goodwin
dbbc40b327 add example docker compose settings 2017-11-13 20:07:44 +00:00
David Goodwin
ba47f2df2a update docker entrypoint - require db connection params; default to sqlite; revert to using upgrade.php as we do not need the setup.php checks 2017-11-13 20:04:51 +00:00
David Goodwin
72f32f0b3d
Merge pull request #90 from pbkwee/patch-1 
singular correction.  Update en.lang
 2017-11-12 07:30:49 +00:00
pbkwee
f217524524
Update en.lang 
"Your email address or password are not correct".  Message indicates one thing is wrong.  So use is not are.
 2017-11-12 12:40:01 +13:00
David Goodwin
5720e73732 + cd docker 2017-11-11 13:46:32 +00:00
David Goodwin
a77d08a92c initial Docker readme 2017-11-11 13:44:48 +00:00
David Goodwin
699267a915 fall back to sqlite for docker image 2017-11-11 13:44:37 +00:00
David Goodwin
356ca84144
Merge pull request #64 from J0WI/docker 
[WIP] add Dockerfile
 2017-11-11 13:26:32 +00:00
David Goodwin
0f09b8c176 _db_add_field() calls table_by_key - so avoid calling it twice ... 2017-11-11 12:53:11 +00:00
David Goodwin
17e347de7f Add id autoincrement field to log table; ought to fix #89 2017-11-11 12:52:15 +00:00
David Goodwin
90d3a0ded7 see #86 - remove unnecessary config user/group 2017-11-02 21:55:28 +00:00
David Goodwin
56e1215994 upgrade.php: output current/target version 2017-10-22 20:15:19 +01:00
root
4670182d79 fix invalid value for token_validity 2017-10-12 14:54:47 +08:00
Christian Boltz
fe5e256b6d Merge pull request #79 from Ecodev/harden-password-reset 
Harden password reset process
 2017-10-09 22:44:10 +02:00
Sylvain Tissot
ffb84283c2
Harden password reset process 
The improvements are:

- Die with an explicit message when a user is trying to reset his lost password and the option is disabled in config
- Redirect user to main page after password change using relative URL
- Don't leak info whether user exists or has recovery info defined
- Throttle password reset requests to prevent brute force attacks
- Show phone/alt email fields in mailbox/admin edit form only when the password reset option is enabled
- Make database upgrade code compatible with other databases types
- Use the existing password generator to generate OTP. It is now stored in database, unique to each user, valid only for 1 hour and can only by used once.
 2017-10-09 11:45:51 +09:00
David Goodwin
8bb6000072 Merge pull request #60 from Vilican/master 
Security fixes
 2017-10-06 11:19:26 +01:00
David Goodwin
db06ac919c Merge pull request #82 from evaryont/sqlite-v1837 
Upgrade SQlite db to v1837
 2017-10-06 10:02:08 +01:00
Colin Shea
f568309ef5 Upgrade SQlite db to v1837 
Includes a TODO for v1836. Not sure if it's needed... Haven't ran into
any issues yet.
 2017-10-05 18:46:34 -07:00
jowi
39dca79879 Add SQLite and PDO support 2017-09-21 23:09:38 +02:00
David Goodwin
c5136c408d improve config file loading when installed from a debian package 2017-09-19 13:24:13 +01:00
jowi
ec2cc0041e fix postgres dependency 2017-09-18 02:58:12 +02:00
Christian Boltz
ae56c2b700
Fix syntax error in viewlog.php 
Reported in issue #74
 2017-09-13 18:02:56 +02:00
David Goodwin
dd06aa75e0 attempt at fixing various .deb issues - link templates_c to /var/cache/postfixadmin; add postfixadmin-cli to deb and symlink into /usr/bin 2017-09-07 15:00:52 +01:00
David Goodwin
252d42dcc0 fix perms (executable) 2017-09-07 14:54:32 +01:00
David Goodwin
5c2e3d1e00 possible changes for deb package to include postfixadmin-cli in /usr/bin 2017-09-07 14:34:51 +01:00
David Goodwin
6258cc669d update quilt patches 2017-09-07 14:22:57 +01:00
David Goodwin
2fc36e82ad see #74 - fix undefined $CONF[page_size] 2017-09-05 21:12:45 +01:00
David Goodwin
4b999b3f6b improve mysqli connection settings - see https://github.com/postfixadmin/postfixadmin/issues/73 2017-09-05 10:09:36 +01:00
Matyáš Koc
3c95ec4a09 Add CSRF token 2017-09-03 14:55:50 +02:00
Matyáš Koc
9f30aa5ff4 Handle logout in a new way (user login) 2017-09-03 14:52:52 +02:00
Matyáš Koc
74c29f8a10 Handle logout in a new way (admin login) 2017-09-03 14:51:59 +02:00
David Goodwin
82e7bdfda3 fix surname typo 2017-09-01 09:07:34 +01:00
David Goodwin
9dbeb68f9a add TODO 2017-08-31 12:47:25 +01:00
David Goodwin
2b04b72072 remove unnecessary nesting, reindent, make it print out what it might do before breaking stuff etc 2017-08-31 12:45:33 +01:00
David Goodwin
9b16645c0f Merge pull request #70 from Seitanas/master 
virtualmaildel.php with PHP mysqli extension.
 2017-08-31 12:30:08 +01:00
Seitanas
72288b8402 Updated to use PHP mysqli extension. 2017-08-31 11:59:47 +03:00
David Goodwin
0b70b5c686 resync debian/control with debian stretch 2017-08-30 08:33:29 +01:00
jowi
dbe8475ed2 pgsql support (wip) 2017-08-24 03:25:28 +02:00
David Goodwin
9841c7c86b bump file 2017-08-22 21:16:18 +01:00
David Goodwin
c476a61ec4 clear stat cache so the is_writeable() result will eventually change with subsequent page reloads if the user has actually fixed the dir 2017-08-22 21:16:09 +01:00
David Goodwin
14ec596cbf bump Smarty to v1.3.31 (various fixes); add custom modifier.needle.php 2017-08-22 21:15:28 +01:00
David Goodwin
a40e99c8ed renamed to INSTALL.md 2017-08-22 20:48:42 +01:00
Christian Boltz
2251c00fb8
disable password reset until it is secure 
For some unknown reason, the insecure version of pull request 18 (which
uses easily guessable reset codes) was merged. This commit disables the
password reset until someone makes it secure.

See the comments in https://github.com/postfixadmin/postfixadmin/pull/18
for details.
 2017-08-22 14:35:40 +02:00
David Goodwin
f3b2fe68f1 Merge pull request #18 from Ecodev/password-reset 
#75 Enable users to reset their passwords
 2017-08-21 13:50:14 +01:00
Sylvain Tissot
7a0b3b3750 Fix typo in french language file #18 2017-08-21 13:55:18 +02:00
Sylvain Tissot
9c9ba64a7f Allows a user or admin to reset his/her forgotten password with a code sent by email/SMS #18 2017-08-21 13:05:25 +02:00
David Goodwin
25f50f262d update for https://github.com/postfixadmin/postfixadmin/issues/66 2017-08-15 09:29:04 +01:00
David Goodwin
1f63a9df89 update Install.txt -> Install.md 2017-08-14 21:44:20 +01:00