Nicolas Höft
2e0fc3ca09
feat(core): Add PBKDF2 support
...
Extend NSData+Crypto to support PBKDF2 with SHA1 HMAC as dovecot
is using it since v2.3.0.
The format hashed passwords is {PBKDF2}$1$<salt>$<rounds>$<hashed value in hex>
The implementation of pkcs#5 PBKDF2 is taken from openbsd (with minor
adjustments) as OpenSSL and GnuTLS would require quite new versions to
support this hash.
2020-06-03 08:17:08 +02:00
InverseBot
8f7df73a29
chore(js/css): update generated files
2020-06-03 01:43:03 -04:00
Francis Lachapelle
8b1b938899
refactor(preferences): replace comma-separated list of addresses by md-chips
2020-06-02 15:10:00 -04:00
Ludovic Marcotte
42587f7422
fix(core): improved debugging on bogus groups
2020-06-02 15:05:54 -04:00
InverseBot
d3a4136516
chore(js/css): update generated files
2020-05-29 00:38:51 -04:00
Francis Lachapelle
6af55414fb
fix(web(js)): handle SAML assertion expiration
2020-05-28 14:53:31 -04:00
Ludovic Marcotte
105ca88aef
fix(core): improve debugging on invalid group sources
2020-05-28 14:02:09 -04:00
Francis Lachapelle
008b8e51cc
chore(npm): update autoprefixer
2020-05-28 08:44:21 -04:00
Francis Lachapelle
cd37e989db
feat(core(js)): improve Google Authenticator on login page, add QR code
...
Fixes #5038
2020-05-28 08:41:10 -04:00
Francis Lachapelle
c1acce0725
feat(core(js)): improve Google Authenticator on login page, add QR code
...
Fixes #5038
2020-05-27 18:01:17 -04:00
Francis Lachapelle
a0320400d2
Merge pull request #277 from fpiecka/master
...
chore: Allow settings override in sogo-backup.sh
2020-05-27 10:59:38 -04:00
Ludovic Marcotte
05dc51ec30
feat(core): handle groups when setting ACLs ( fixes #4171 )
2020-05-26 10:03:16 -04:00
Ludovic Marcotte
5b6096e32c
fix(core): improve debbuging when dealing with groups
2020-05-26 09:25:25 -04:00
Ludovic Marcotte
e37ae5fec5
fix(core): disable ASM version of blowfish on i386
2020-05-21 08:51:56 -04:00
Fedor Piecka
789113bb44
Allow settings override in sogo-backup.sh
...
Allow a sysadmin to override BACKUP_DIR and DAYS_TO_KEEP by setting an environment variable.
2020-05-19 11:11:55 +02:00
InverseBot
513c17bc2f
chore(js/css): update generated files
2020-05-16 00:40:13 -04:00
Extra Fu
30c0d8a425
Merge pull request #272 from the-nic/feat/blowfish
...
Add BLF-CRYPT password scheme support
2020-05-15 19:12:44 -04:00
Nicolas Höft
789b55c274
NSData+Crypto: add password verification function
...
This will allow for using specific verification, depending on the
scheme.
2020-05-15 22:53:15 +02:00
Ludovic Marcotte
798ad1502c
fix(core): adjust syntax for Python > 2
2020-05-15 12:45:20 -04:00
Francis Lachapelle
07c06db69d
refactor(mail(js)): replace ckEditor directive by sgCkeditor component
...
This refactoring
1. simplifies updating the CKEditor source code;
2. allows many instances of the CKEditor on the same page;
3. fixes the cursor positioning on focus.
2020-05-15 11:37:56 -04:00
Ludovic Marcotte
9f861bd629
docs: Adjusted Thunderbird's v68 manifest info
2020-05-15 09:31:04 -04:00
Nicolas Höft
c3a4f4aeb4
fix(core): NSData+String: Simplify generateSalt function
...
Instead of converting binary data to base64 in order to get printable
data, use a white list of characters allowed and select from those.
This also makes sure we will get the right amount of characters as
requested, not potentially longer strings.
2020-05-15 07:43:38 +02:00
Nicolas Höft
8c612fc0a2
feat(core): Add BLF-CRYPT scheme.
...
Dovecot promotes the use of BLF-CRYPT as a hashing scheme [1].
However, as not all libc-crypt() implementations support this scheme,
use the implementation added in a previous commit.
Also, update the references to the dovecot implementation and a small
test case for testing the blowfish implementation.
[1] https://doc.dovecot.org/configuration_manual/authentication/password_schemes/
Fixes #4958
2020-05-15 07:43:38 +02:00
Nicolas Höft
562f81f21f
fix(core): NSData+String: Dont mix tabs and spaces
2020-05-15 07:43:38 +02:00
Nicolas Höft
3040c275d8
feat(core): Add blowfish implementation from openwall
...
Using version 1.3, see https://www.openwall.com/crypt/
2020-05-15 07:43:38 +02:00
Ludovic Marcotte
96986280ee
fix(eas): avoid doing bogus truncation
2020-05-14 15:46:55 -04:00
Extra Fu
b53d1254d9
Merge pull request #274 from the-nic/feature/smtp-ssl-tls
...
feat(core): support smtps
2020-05-14 12:15:51 -04:00
Nicolas Höft
589cfaa2f4
feat(core): Support smtps and STARTTLS for SMTP
...
Support uri schemes for SMTP, enabling STARTTLS and SMTPS for SMTP
connections.
The new format for configuration value SMTPServer supports passing a
URI scheme (either smtp:// or smtps://). To support old configurations,
if no scheme is given, smtp:// is assumed.
Fixes #31
2020-05-14 08:47:05 +02:00
Ludovic Marcotte
7ef507bdb4
fix(packaging): fixes for centos/rhel v8 support
2020-05-13 11:14:40 -04:00
InverseBot
fb117f48c8
chore(js/css): update generated files
2020-05-13 01:03:39 -04:00
Ludovic Marcotte
a102a94ac5
fix(packaging): enable mfa on focal
2020-05-12 13:44:10 -04:00
Francis Lachapelle
f31a07fd74
Revert "fix(packaging): don't enable mfa on squeeze"
...
This reverts commit e9cc088153
.
2020-05-12 11:20:42 -04:00
Francis Lachapelle
964e6f0cb1
fix(mail(js)): encode HTML entities when computing height of textarea
...
Fixes #5020
2020-05-12 11:16:32 -04:00
Ludovic Marcotte
d7979871bc
fix(packaging): fixed condition syntax
2020-05-12 07:59:00 -04:00
Ludovic Marcotte
e9cc088153
fix(packaging): don't enable mfa on squeeze
2020-05-12 07:46:59 -04:00
InverseBot
a0e5699e60
chore(js/css): update generated files
2020-05-08 10:40:46 -04:00
Francis Lachapelle
272fa8f898
fix(calendar(js)): fix event blocks width in day view
...
Fixes #5017
2020-05-08 09:51:55 -04:00
Francis Lachapelle
312817b7ae
chore(debian): fix rules for MFA
2020-05-08 09:15:43 -04:00
Francis Lachapelle
e8f0471bcf
feat(core(js)): improve Google Authenticator on login page, add QR code
...
Closes #2722
2020-05-07 16:45:37 -04:00
Ludovic Marcotte
f78300a12e
feat(core): initial Google Authenticator support for 2FA
2020-05-07 07:22:24 -04:00
Francis Lachapelle
33d3154d15
chore(release): 4.3.2
2020-05-06 17:07:38 -04:00
Francis Lachapelle
7b5c787718
fix(core): LDAP group expansion must use all user sources
2020-05-05 12:18:37 -04:00
Francis Lachapelle
5da7903ce1
chore(tool): fallback to NGImap4ConnectionStringSeparator
...
When using a master user to update the Sieve scripts through sogo-tool,
we may not be able to detect the IMAP delimiter. Therefore, we must
fallback to the default NGImap4ConnectionStringSeparator.
Fixes #4919
2020-05-05 10:53:02 -04:00
InverseBot
1fa4b8871d
chore(js/css): update generated files
2020-05-05 01:18:29 -04:00
Francis Lachapelle
e7da4c19b8
fix(web(js)): improve encoding of folder paths in XHR calls
...
Fixes #4989
2020-05-04 18:44:20 -04:00
Ludovic Marcotte
cbf3d89f3e
Merge branch 'master' of https://github.com/inverse-inc/sogo
2020-05-04 12:57:40 -04:00
Ludovic Marcotte
7929fd394f
fix(core): skip folder check during ACL subscribe
2020-05-04 12:57:11 -04:00
Francis Lachapelle
8f7b2bfbed
fix(core): LDAP group expansion must use all user sources
2020-05-04 12:25:16 -04:00
root
8a4e79963f
fix(core): skip folder check during ACL subscribe
2020-05-04 09:57:49 -04:00
InverseBot
d29c00827c
chore(js/css): update generated files
2020-05-03 01:18:12 -04:00