Commit graph

1845 commits

Author SHA1 Message Date
Son Nguyen Kim
16d8737770
Merge pull request #171 from SibrenVasse/secure_cookie
Session cookie flags.
2020-05-09 18:03:15 +02:00
Son NK
e84e4d50c7 add logging 2020-05-09 17:48:57 +02:00
Son NK
295c2fd03f Hide the SPF toggle 2020-05-09 17:34:59 +02:00
Son NK
0add756654 make sure SPF exception does not stop reply-phase 2020-05-09 17:34:49 +02:00
Son NK
7654992fc2 refactoring: replace "X-SimpleLogin-Client-IP" by constant 2020-05-09 17:31:37 +02:00
Son NK
bd68a52158 make sure to remove "X-SimpleLogin-Client-IP" during forward 2020-05-09 17:30:21 +02:00
Son NK
4cf868e5f1 Fix enforce-spf.md 2020-05-09 17:26:39 +02:00
Son NK
2d8f056e11 Fix wording 2020-05-09 17:26:26 +02:00
Son NK
5ec0ea5f6c Report error when SPF fails on emails sent from mailbox. Return 451 instead of 550 to avoid bounce emails. 2020-05-09 14:52:39 +02:00
Son NK
a3a8a13840 Add enforce-spf doc 2020-05-09 14:52:04 +02:00
Son NK
acf628f8f2 fix migration script 2020-05-09 14:50:53 +02:00
Son Nguyen Kim
e23887bb37
Merge pull request #164 from SibrenVasse/spf
Enforce SPF
2020-05-09 14:37:09 +02:00
Sibren Vasse
001079bdc5 Enforce SPF 2020-05-09 14:15:08 +02:00
Sibren Vasse
e7c3a127b8 Set samesite and secure attributes of session cookie. Enable strong session protection. 2020-05-09 14:13:37 +02:00
Son Nguyen Kim
8417bb5ed8
Merge pull request #169 from simple-login/github-action
Apply github action on PR, upgrade to action v2 and use cache
2020-05-09 09:06:54 +02:00
devStorm
d236f906ad
🐛 WebAuthn bug fixes
- User may not have name
- user_verification should be discouraged to work on iOS
2020-05-08 14:21:38 -07:00
Son NK
225fd4bbb0 name -> repository for docker/build-push-action@v1 2020-05-08 22:30:09 +02:00
Son NK
e68eab44b0 allow user who has TOTP enabled to continue using the mobile app 2020-05-08 20:23:13 +02:00
Son NK
88b957fe8b Apply github action on PR, upgrade to action v2 and use cache 2020-05-08 20:15:57 +02:00
Son NK
2c1daf5bb1 reformat main.yml 2020-05-08 20:14:20 +02:00
Son NK
75a28c53cf fix grammar mistake 2020-05-08 13:40:21 +02:00
Son NK
ad194c46f2 remove lifetime licence in pricing page 2020-05-08 12:38:42 +02:00
Son NK
cf35fe2646 Put all aliases belonging to a domain to global trash when the domain is deleted 2020-05-07 22:50:45 +02:00
Son NK
9898d85722 Put all aliases belonging to a directory to global trash when this directory is deleted 2020-05-07 22:42:39 +02:00
Son NK
7a1f944887 Put all aliases belonging to a mailbox to global trash when this mailbox is deleted 2020-05-07 22:40:53 +02:00
Son NK
0441e5e2a9 Remove DeletedAlias.user_id column 2020-05-07 22:40:30 +02:00
Son NK
5b4eafce50 fix formatting 2020-05-07 22:28:49 +02:00
Son NK
2f5a03dcad make sure to add alias into global trash when deleting it 2020-05-07 22:27:27 +02:00
Son NK
300f1d7032 Override Alias.create to check in global trash first 2020-05-07 22:23:36 +02:00
Son Nguyen Kim
18e50e4a28
Merge pull request #167 from simple-login/disable-social-login-signup
disable sign-up via social login
2020-05-07 22:02:08 +02:00
Son NK
ccb30a2def disable sign-up via social login 2020-05-07 22:01:14 +02:00
Son Nguyen Kim
a785e664e9
Merge pull request #165 from simple-login/same-mailbox-different-user
Same mailbox different user
2020-05-07 21:56:36 +02:00
Son Nguyen Kim
891c06fb15
Merge pull request #166 from simple-login/fido-api
return 403 if user enables FIDO
2020-05-07 21:56:23 +02:00
Son NK
f929f23acc return 403 if user enables FIDO 2020-05-07 21:54:36 +02:00
Son NK
c85ea1538e Allow the same mailbox used by different user 2020-05-07 21:47:11 +02:00
Son NK
f8e896541d replace Mailbox.email unique constraint by (email, user_id) 2020-05-07 21:46:16 +02:00
Son Nguyen Kim
149a06dd68
Merge pull request #163 from simple-login/fix-custom-domain
fix: wrongly set alias custom_domain
2020-05-07 20:49:42 +02:00
Son NK
806f7016ae fix: wrongly set alias custom_domain when custom_domain is in EMAIL_ALIAS 2020-05-07 20:48:11 +02:00
Son Nguyen Kim
f5efab940c
Merge pull request #162 from simple-login/fido-beta
Add Fido as a beta feature
2020-05-07 19:28:54 +02:00
Son NK
101ab408b2 black format 2020-05-07 18:01:12 +02:00
Son NK
985e4ee2f8 sql migration for fido 2020-05-07 17:59:29 +02:00
Son NK
0a497c9f67 put migration generation into a script 2020-05-07 17:59:21 +02:00
Son NK
ef2a385563 redirect user to TOTP in welcome email 2020-05-07 17:58:36 +02:00
Son NK
4709237b92 only user with can_use_fido can use fido 2020-05-07 17:58:24 +02:00
Son NK
18d62a81d1 add User.can_use_fido 2020-05-07 17:56:25 +02:00
Son NK
84c529c867 optimize import 2020-05-07 17:49:29 +02:00
Son NK
fe1262686e black format 2020-05-07 17:48:44 +02:00
Son Nguyen Kim
e35fb631cf
Merge pull request #159 from developStorm/master
Implement WebAuthn
2020-05-07 17:47:06 +02:00
devStorm
2290a90b09
Use try-else 9b8340f3e0 (r421465450) 2020-05-07 05:41:34 -07:00
devStorm
b0c39635a5
Remove credential_id variable 2020-05-07 05:37:03 -07:00