the-djmaze/snappymail
1
1
Fork 0
mirror of https://github.com/the-djmaze/snappymail.git synced 2025-01-07 15:27:43 +08:00
Code Issues Projects Releases Packages Wiki Activity
3116 commits 9 branches 203 tags 79 MiB
Commit graph

3116 commits

This branch
This branch
All branches
Author SHA1 Message Date
djmaze
2c363e63a0 small code cleanup ()=>0 to null 2021-11-13 09:45:06 +01:00
djmaze
c561493bd0 Bugfix: detect the AccountSignMe again 2021-11-12 21:53:27 +01:00
djmaze
070fc14c4f OAuth2 draft code made with the old RainLoop code 2021-11-12 10:29:58 +01:00
djmaze
f14ebc6578 v2.9.1a forgot to encrypt sProxyAuthPassword 2021-11-12 10:09:08 +01:00
djmaze
f2c6900ea8 v2.9.1 2021-11-12 10:00:59 +01:00
djmaze
d5ea7dc188 Revert change that shouldn't be commited 2021-11-12 09:57:32 +01:00
djmaze
632e9b9b41 Bugfix: switch from AdditionalAccount to MainAccount 2021-11-12 09:41:17 +01:00
djmaze
ce413b7b7a Some account switch reload improvements 2021-11-12 09:36:08 +01:00
djmaze
9b0f9be23c SetCryptKey() use APP_SALT 
This way the key is something the server has and something the user knows.
So that both can revoke the key validity.
 2021-11-12 08:43:33 +01:00
djmaze
0de87e334c Added MainAccount class for better distinguishing it from the additional ones 2021-11-12 01:04:11 +01:00
djmaze
42bf782c6a When switching to additional account fails, show account update screen 2021-11-11 23:22:04 +01:00
djmaze
4690f367c1 Rename the new PasswordHash() to CryptKey() and added SetCryptKey() to support XOAUTHBEARER/XOAuth2 and others 2021-11-11 23:13:46 +01:00
djmaze
1767ba7ec9 Bugfix and improved Remote.message() and Remote.messageList() by using JSON 2021-11-11 22:52:06 +01:00
djmaze
739aeaded5 Improved the Switch account system for better feedback to user 2021-11-11 21:01:39 +01:00
djmaze
597ea21b70 Prepared code to switch accounts without reload (not working yet) 2021-11-11 17:14:06 +01:00
djmaze
d24e0a3e1b Try to convert the old less secure accounts and sorted order 2021-11-11 15:06:33 +01:00
djmaze
a18d393f54 Revamp the whole accounts system for better management and control. 
This also solves RainLoop/#2134
 2021-11-11 13:34:41 +01:00
djmaze
ef4790d04e Cleanup some classes and improve the Accounts and Contacts 2021-11-10 21:24:19 +01:00
djmaze
7ea4365ccb Bugfix: password should be json encoded 2021-11-10 16:47:32 +01:00
djmaze
7565b0770e PasswordHash should be password or APP_SALT 2021-11-10 16:45:59 +01:00
djmaze
1dd592f81f Contact sync use Account password hash 2021-11-10 15:18:44 +01:00
djmaze
c13724fbbb Bugfix for crypt system 2021-11-10 15:10:28 +01:00
djmaze
b102fc0e4c Improved data encryption for Contacts sync 2021-11-10 14:49:49 +01:00
djmaze
b1e895907f More encrypt/decrypt improvements and fixes 2021-11-10 13:29:50 +01:00
djmaze
59cb0978c7 Cleanup RainLoop used crypt methods 2021-11-10 12:37:36 +01:00
djmaze
9dae4cfa45 More encrypt/decrypt improvements to revamp SSO data to be properly encrypted 2021-11-10 12:30:56 +01:00
djmaze
cda88f438a Cleanup and bugfix encryption 2021-11-10 11:21:31 +01:00
djmaze
414a9509aa Added support for sodium_crypto_aead_xchacha20poly1305_ietf encryption 2021-11-10 10:36:16 +01:00
djmaze
492dee5e1a Improved openssl_encrypt support 2021-11-10 09:14:57 +01:00
djmaze
8ca043b6e4 Improved user authentication system by supporting OpenSSL aes-256-cbc-hmac-sha1 encryption 2021-11-10 00:57:09 +01:00
djmaze
99c72ad9e6 Drop bootstrap .well and .pull-left 
Reduce bootstrap .pull-right usage
 2021-11-09 00:53:42 +01:00
djmaze
d64cfb96ad Drop the .clearfix (old "fix" float stuff) 2021-11-08 22:03:31 +01:00
djmaze
e417a2801b Bugfix: Class 'RainLoop\Actions\Notifications' not found 2021-11-08 21:19:02 +01:00
djmaze
a656fb20aa Bugfix: Class 'RainLoop\Actions\Notifications' not found 2021-11-08 21:16:44 +01:00
djmaze
adf1086c03 Missed two iSpamScore to be int instead of float 2021-11-08 20:56:18 +01:00
djmaze
35433ca5b0 Bugfix: iSpamScore should be int, not float 2021-11-08 20:51:53 +01:00
djmaze
3950ff049c Display <dialog> as flex so that <header> is always top on scroll 2021-11-08 20:41:38 +01:00
djmaze
e4e86d0347 Put a garbage collector in demo plugin 2021-11-08 17:52:40 +01:00
djmaze
5ba3d2edcd Bugfix: system folders initialization failed on first time login 2021-11-08 17:40:52 +01:00
djmaze
70f9f0bd76 Improved demo mode plugin 2021-11-08 17:40:21 +01:00
djmaze
2f97d4bafb v2.9.0 2021-11-08 14:27:22 +01:00
djmaze
0ce29dae24 Bugfix undefined aResult 2021-11-08 13:56:49 +01:00
djmaze
32699c5446 Drop my generateFileNameOld() compatibility due security exploit. 2021-11-08 13:56:35 +01:00
djmaze
7020345739 Bugfix: Security issue with "remember me" 
When (backup)server is compromised it is possible to decrypt RainLoop 'sign_me' files.

Found by further investigating #126
 2021-11-08 12:31:51 +01:00
djmaze
aed4d9e4c2 Resolve #126 and nice for #151 2021-11-08 12:07:44 +01:00
djmaze
40f9f69b42 Wrong return type Model\Account 2021-11-08 10:40:48 +01:00
djmaze
a729a06a6b Improvements to file storage engine for #151 2021-11-08 10:40:31 +01:00
djmaze
f92810069a Improved Auth functions as trait 
and use JSON instead of serialize for encoding/decoding data
 2021-11-08 10:17:57 +01:00
djmaze
98b5989b44 Improved admin layout 2021-11-08 00:18:40 +01:00
djmaze
e8daff85bc Improve the .button-confirm-delete animation 2021-11-07 23:49:01 +01:00