6ca8ed437d
Merge pull request #732 from Nebukadneza/add_front_certificate_reload
...
Add certificate watcher for external certs to reload nginx
2018-12-08 20:11:09 +02:00
1aa97c9914
Add certificate watcher for external certs to reload nginx
...
In case of TLS_FLAVOR=[mail,cert], the user supplies their own certificates.
However, since nginx is not aware of changes to these files, it cannot
reload itself e.g. when the certs get renewed.
To solve this, let’s add a small daemon in the place of
`letsencrypt.py`, which uses a flexible file-watching framework and
reloads nginx in the case the certificates change ….
2018-12-07 16:20:42 +00:00
9dd447e23b
Add login method to smtp_auth under ssl
...
Fixes #704
2018-12-06 01:00:16 +02:00
42e2dbe35d
Standarize image by using shared / similair layers
2018-10-31 19:17:23 +02:00
603b6e7390
Merge pull request #2 from usrpro/fix-nginx-healthcheck
...
Fix nginx healthcheck
2018-10-21 22:44:44 +02:00
81b24f61e8
Merge branch 'master' into feat-healthchecks
2018-10-21 20:58:59 +03:00
c3e89967fb
Fix front health checking
...
- Specified seperated /health path in order to allow for healthcheck even if webmail and admin are not seletectd. This also allows healthchecking fom external services like DNS load balancers;
- Make curl not to fail on TLS because localhost is not included in the certificates.
2018-10-21 20:45:41 +03:00
bce1487338
Merge pull request #576 from hacor/master
...
Kubernetes fixed for production
2018-10-20 22:30:38 +00:00
78bd5aea1c
enable http2, because it's that easy
2018-10-19 22:46:36 -06:00
d4f32c3e7d
remove rewrite if webmail is on root
2018-10-18 14:27:28 +02:00
3098343360
Merged conflicts
2018-10-17 07:32:56 +02:00
4ea12deae7
Added kubernetes to Mailu
2018-10-17 07:22:55 +02:00
39272ab05c
add healthcheck for http services
2018-10-16 21:38:12 +02:00
de43060ef8
Move to Alpine:3.8 and fixing #522
2018-10-11 14:06:26 +03:00
2cba045013
Explicitely declare required volumes, fixes #568
2018-09-28 17:28:46 +02:00
3dca1a834c
Pin alpine 3.7 until we fix the certbot issue, see #522
2018-08-01 21:56:29 +02:00
75a1bf967c
Merge pull request #502 from hoellen/webmail-messagesize
...
Use message_size_limit variable from env for webmail client_max_body_size
2018-06-28 21:29:30 +02:00
c51e1b9eef
webmail client_max_body_size with message_size_limit and 8M tolerance
2018-06-28 19:23:08 +02:00
81a6a7cbf6
Use message_size variable from env for webmail
2018-06-25 15:51:20 +02:00
a1fb8442e3
Add posibilty to run webmail on root '/'
2018-06-25 15:45:43 +02:00
6828231c28
Fix the path of the nginx pid in startup scripts, fixes #483
2018-06-02 10:23:33 +02:00
50f9f379e9
Flexible filenames for TLS via envvars (flavours 'cert' and 'mail' only)
2018-05-01 14:04:18 +02:00
d1dbba2d3a
Add expose instructions in Dockerfiles, fixes #392
2018-04-21 14:46:01 +02:00
b9e67635f4
Use HOST_ADMIN in "Forwarding authentication server". Fixes #436 .
2018-04-07 12:40:32 -05:00
dfb5463c94
Relax the frame filtering to allow roundcube to display previews
2018-02-11 22:56:26 +01:00
04278b6cbf
Pass the full host to the backend, fixes #372
2018-02-06 18:56:41 +01:00
6c56c8e298
Specify the client max body size in the front, related to #371
2018-01-28 10:35:55 +01:00
f538e33dcf
Parametrize hosts
...
Allows to use mailu without docker-compose when hostnames are not set up
by docker itself but provided via a separate resolver.
Use case: use mailu using nomad scheduler and consul resolver instead of
docker-compose. Other servers are provided by the DNS resolver that
resolves names like admin.service.consul or webmail.service.consul.
These names needs to be configurable.
2018-01-24 22:54:41 +01:00
6ec0fe7036
Adding options for mail-letsencrypt
2018-01-04 16:23:28 +01:00
d0b8de72e4
Do not deny HTTP access upon TLS error when the flavor is mail
2017-12-17 15:09:10 +01:00
bfc898c2d8
Move dhparam to /conf
2017-12-17 14:47:02 +01:00
f1ad2cf4d0
Use a predefined dhparam.pem, This fixes issue #322
2017-12-17 14:47:02 +01:00
acb5d7da38
Use relative redirect for / to the webmail
2017-12-04 22:42:12 +01:00
2dfc91ac4d
Use a map for passing x-forwarded-proto along
2017-12-04 22:19:17 +01:00
a4f46ced49
Properly use x-forwarded-proto with redirects in the webui, related to #347
2017-12-04 21:16:08 +01:00
48d736feef
Configure a resolver for the mail server to populate xclient hostnames
2017-12-04 20:28:54 +01:00
4761646616
Make sure stale pid files are dealt with, fix #341
2017-12-03 11:28:26 +01:00
743eb81908
Fix the Webdav behavior with Radicale, related to #334
2017-11-30 22:03:42 +01:00
328001a417
Merge pull request #329 from HorayNarea/patch-1
...
Disable ssl_session_tickets, see https://wiki.mozilla.org/Security/Server_Side_TLS#TLS_tickets_.28RFC_5077.29
2017-11-21 22:16:25 +01:00
f3ae318132
Perform webdav authentication in nginx, fixes #330
2017-11-20 00:09:19 +01:00
8920982213
Properly pass the request uri to the authentication backend
2017-11-18 16:40:01 +01:00
97dd9ed77c
Fix a missing variable in the nginx config
2017-11-18 15:22:38 +01:00
d61ba8e651
disable ssl_session_tickets
2017-11-15 12:34:00 +01:00
eb32871904
Force nginx to run dns queries at runtime
2017-11-13 21:40:22 +01:00
ad7c5e48c5
automatically set nginx-worker based on CPU-count
2017-11-12 23:21:00 +01:00
f362ecdb19
Fix the missing trailing space on /webmail, fixes #304
2017-11-10 16:04:40 +01:00
1a3f85fbc2
Make the rspamd webui available, fixes #157
2017-11-10 14:49:36 +01:00
92f2025d7c
Enable pop3 on the frontend, fix #313
2017-11-10 10:15:30 +01:00
bfa50c5aa7
Add a new TLS flavor named 'mail'
2017-11-07 16:16:41 +01:00
edbea372e9
Merge branch 'master' into refactor-repo
2017-11-04 18:40:53 +01:00
Tim Möhlmann
Dario Ernst
Thomas Sänger
mergify[bot]
Paul Williams
hoellen
Hans Cornelis
kaiyou
hoellen
Dennis Twardowsky
Scott
Mildred Ki'Lya
SunMar
Greg Fitzgerald