Commit Graph

54 Commits

Author SHA1 Message Date
ralf
afbc13462c * Mail/GMail/Microsoft365: update refresh-token, if we get one and redirects to IdP, if refresh-token is expired 2023-11-21 17:15:03 +02:00
ralf
6ef78f1d64 stop Chrome from autofilling passwords and do NOT display a password for OAuth when editing an account 2023-03-14 10:20:10 +01:00
ralf
7d121f8215 fix TypeError and missing padding after OAuth authentication in wizard 2023-03-08 11:08:53 +01:00
ralf
178047d8d6 * Mail/OAuth: fix mail account creation failed for regular EGroupware users / non-admins 2023-02-20 15:37:06 +01:00
ralf
b0f5cfbcdb improve OAuth mail authentication by not opening wizard multiple time
also avoid authentication loop, if there is an error
2023-01-25 13:38:40 +01:00
ralf
dc3e8c5b7d fix OAuth to also be triggered by name of imap-server, eg. for custom domains 2023-01-23 21:11:33 +01:00
ralf
c49f7849bb * Mail: OAuth authentication for Microsoft (Office365, outlook.com, ...) and GMail 2023-01-16 16:56:51 -06:00
ralf
4a70021f41 WIP Oauth authentication for Office365:
- add all Microsoft email domains
- using login.microsoftonline.com/common as OAuth provider URL
- use mail-server name to detect custom mail domains
--> auth with IMAP agains outlook.office365.com still NOT working, probably needs some kind of further verification / being an Microsoft partner
2023-01-12 19:33:31 -06:00
ralf
71aabaea73 WIP OAuth for mail:
fixing some typos to test with Office365
2022-12-25 15:19:14 -06:00
ralf
14b6a9a5ab WIP OAuth authentication for mail: working now with Gmail 2022-12-25 14:49:37 -06:00
ralf
f85aa4dcbb Adding GMail to supported OAuth providers, thought the app is not (yet) approved by Google 2022-12-24 15:39:11 -06:00
ralf
dc832ce12b WIP OAuth/OpenIDConnect authentication for mail / Office365 mail services
Mail wizzard triggers on a *.onmicrosoft.com domain and then automatically uses Office365 servers with OpenIDConnect authentication
- access- and refresh-token get acquired with https://outlook.office.com/IMAP.AccessAsUser.All scope
ToDo:
- find out why Microsoft denies access with the returned access-token
- store access-token for its lifetime in the cache
- store refresh-token instead of password, to get a new access-token, if it's expired
--> add OAuth logic to mail client (not just wizard)
2022-12-23 14:33:19 -06:00
ralf
711eac8934 fix Admin > Mail account to work in master:
- using <et2-select-account multiple="true"
- convert from account_id=0 --> [] and back for saving
- remove TS code switching multiple on and off via previously removed button
--> must not be back-ported to 21.1!
2022-07-20 19:12:12 +02:00
ralf
d94bdb24a6 fix empty account-data (caused by wrong expression) breaking mail accounts when storing 2022-07-18 14:10:30 +02:00
ralf
94e74f8db4 * Mail/Dovecot: allow to use admin credentials to access mail when no session password is available, e.g. for SSO 2022-07-05 15:16:01 +02:00
Ralf Becker
d40a1d992a fix not working multiple users for single mail account
replaced legacy-options and type attribute with the actual ones
2021-11-27 11:21:54 +02:00
Ralf Becker
519114ea1a fix PHP 8.0 TypeError: strlen(): Argument #1 ($str) must be of type string, array given 2021-11-10 15:23:25 +01:00
Ralf Becker
6a3df9355c fix PHP 8.0 error creating a new mail-accounts
"new" > 0 === true :(
2021-10-25 14:44:40 +02:00
Ralf Becker
8604fc3181 fix PHP 8.0 TypeError:
- array_combine(): Argument #1 ($keys) must be of type array, null given
- count(): Argument #1 ($value) must be of type Countable|array, null given
2021-10-12 11:44:24 +02:00
Ralf Becker
4495bb56c4 fix PHP 8.0 error reading identity "new", when trying to create a new identity 2021-10-11 15:10:27 +02:00
Ralf Becker
d2c85cfe86 fix PHP 8.0 errors: key(): Argument #1 ($array) must be of type array, null given
guarding key() from calling with null eg. $button = key($content['button']) --> key($content['button'] ?? []) or check before !empty($content['button'])
2021-10-06 16:08:32 +02:00
Ralf Becker
cb8cac15dc fix mail account creation under PHP 8.0
PHP 8.0: "new" > 0 === true
PHP<8.0: "new" > 0 === false
2021-10-06 12:31:23 +02:00
Hadi Nategh
1fd43b0bdd * Mail: fix updating/deleting mail accounts does not refresh the mail tree no more 2021-09-01 16:23:38 +02:00
Ralf Becker
c37581f43c * EPL/mail: support SpamTitan REST API to manage spam, requires an API token 2021-02-08 17:31:49 +02:00
nathangray
836a3b07e3 Mail: Only show EPL version needed blur if EPL is not available 2020-06-08 13:30:57 -06:00
Ralf Becker
d95894d530 use etemplate-exec-id as CSRF token for ajax requests 2020-01-29 11:08:44 +01:00
Alexandros Sigalas
b328bf151a Fixed, PHP Warning: count(): Parameter must be an array or an object that implements Countable in 2019-03-03 15:16:43 +01:00
nathangray
d805e9f467 Stop using deprecated each(), using foreach(), key() or current() instead 2019-02-12 14:13:45 -07:00
Hadi Nategh
c5c09c4f9f Deprecate CKEDITOR and remove it from source 2019-01-25 12:41:13 +01:00
Ralf Becker
104cae6081 fix smime key got immediatly deleted again 2018-04-10 14:52:14 +02:00
Ralf Becker
e72c7c76b6 * EMail/sMime: allow non-admin users to upload their keys 2018-04-10 13:15:09 +02:00
Ralf Becker
ed68be0cdf * Mail/SMime: fix not working storage of public key in mail account
We failed silently, when browser reported something different then "application/x-pkcs12" eg. "application/octet-stream". Now we let OpenSSL decide if file contains a valid SMime key.
2018-02-15 14:45:47 +01:00
Hadi Nategh
1903025cc9 Allow folder notification on INBOX only for popup_only chain 2017-10-06 17:38:26 +02:00
Hadi Nategh
1d24707143 S/MIME:
- Allow user to upload certificate even for readonly account
- Allow user to delete certificate
2017-09-13 16:05:43 +02:00
Hadi Nategh
3f06a89db5 S/MIME:
- Store full binary (pkcs12) certificate into credentials
- Extract cacert from pkcs12 and feed it into signing process
- Implement p12 export
2017-08-30 17:00:28 +02:00
Hadi Nategh
668cbaaacb S/MIME:
- Store email address associated with certificate into cred_email
2017-08-28 12:35:21 +02:00
Hadi Nategh
bbea403298 W.I.P S/MIME:
- Generate private key and certificate
- Add export buttons for private key and certificate
- Add certificate field
2017-08-22 17:25:29 +02:00
Ralf Becker
472a3a242e need to read identity first 2017-07-12 19:12:14 +02:00
Ralf Becker
d801769d52 if admin explicitly set a non-alias, we need to add it to aliases to keep it after storing signature by user 2017-07-12 18:58:47 +02:00
Ralf Becker
79c1d2e41c * Admin/EMail: allow admins to always add arbitrary aliases, even if not allowed for regular user 2017-07-12 18:43:05 +02:00
Ralf Becker
a9e750c8b2 WIP spam workflow and SpamTitian integration 2017-05-31 15:10:58 +02:00
Hadi Nategh
009682b949 * Mail: Make sure there's folder to notify before attempting to write the notifications 2017-04-24 14:28:08 +02:00
Hadi Nategh
73e2243b33 Fix email identity with no domain part set 2017-04-24 11:39:02 +02:00
Hadi Nategh
83768e932d * Mail: Fix create new identity can not save email address 2017-03-30 16:05:22 +02:00
Hadi Nategh
dc4a825c54 WIP of SMIME support: Import certificate key into pkey in addressbook 2017-01-26 17:44:30 +01:00
Hadi Nategh
34e04a1315 WIP of SMIME support: Implement an interface for importing smime private key into mail account 2017-01-25 18:06:17 +01:00
Ralf Becker
fb5429992e need to set ident_email_alias selectbox too, if changing identity 2016-10-28 14:53:51 +02:00
Ralf Becker
7d02313af2 do not make ident_email_alias select-box readonly for regular users editing their sigature 2016-10-28 14:46:17 +02:00
Ralf Becker
74e2c62b48 * Admin/Mail: allow to limit users to only create identities for aliases 2016-10-28 14:27:59 +02:00
leithoff
2b925a44af give more details about possible error 2016-06-24 14:28:49 +02:00