From c872e6a9f01f2947387d06fdd659cc91d797cd73 Mon Sep 17 00:00:00 2001
From: Norman <norman@nstanke.at>
Date: Wed, 5 Nov 2014 17:17:38 +0100
Subject: [PATCH 1/4] iOS Configuration Profile

change name

removed .vagrant

fix guide layout
---
 .gitignore                           |   1 +
 management/templates/mail-guide.html |  17 ++++
 setup/mobileconfig.sh                | 135 +++++++++++++++++++++++++++
 setup/start.sh                       |   2 +-
 4 files changed, 154 insertions(+), 1 deletion(-)
 create mode 100644 setup/mobileconfig.sh
diff --git a/.gitignore b/.gitignore
index e22c1d9f..f3cdb1bc 100644
--- a/.gitignore
+++ b/.gitignore
@@ -4,3 +4,4 @@ management/__pycache__/
 tools/__pycache__/
 externals/
 .env
+.vagrant
diff --git a/management/templates/mail-guide.html b/management/templates/mail-guide.html
index 3d0cec92..05b123c8 100644
--- a/management/templates/mail-guide.html
+++ b/management/templates/mail-guide.html
@@ -59,6 +59,23 @@
 
 					<p>Your device should also provide a contacts list and calendar that syncs to this box when you use this method.</p>
 				</div>
+
+				<div class="col-lg-6">
+					<h4>iOS Mobileconfig</h4>
+
+					<p>Open the following configuration on your iOS device.</p>
+
+					<p><strong><a href="https://{{hostname}}/mailinabox.mobileconfig">https://{{hostname}}/mailinabox.mobileconfig</a></strong></p>
+
+					<p>Use these settings when prompted:</p>
+
+					<table class="table">
+					<tr><th>Username:</th> <td>Your whole email address.</td></tr>
+					<tr><th>Password:</th> <td>Your mail password.</td></tr>
+					</table>
+
+					<p>Your device should also provide a contacts list and calendar that syncs to this box when you use this method.</p>
+				</div>
 			</div>
 		</div>
 
diff --git a/setup/mobileconfig.sh b/setup/mobileconfig.sh
new file mode 100644
index 00000000..b8bcdd3e
--- /dev/null
+++ b/setup/mobileconfig.sh
@@ -0,0 +1,135 @@
+#!/bin/bash
+#
+# iOS Configuration Profile
+# ----------------------------------------------
+#
+# Mobileconfig for iOS users to setup IMAP, Contacts & Calendars
+#
+# https://developer.apple.com/library/ios/featuredarticles/iPhoneConfigurationProfileRef/Introduction/Introduction.html
+
+source setup/functions.sh # load our functions
+source /etc/mailinabox.conf # load global vars
+
+echo "Generate iOS Configuration Profile"
+
+echo "<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+<dict>
+  <key>PayloadContent</key>
+  <array>
+    <dict>
+      <key>CalDAVAccountDescription</key>
+      <string>Mail-in-a-box Calendar</string>
+      <key>CalDAVHostName</key>
+      <string>$PRIMARY_HOSTNAME</string>
+      <key>CalDAVPort</key>
+      <real>443</real>
+      <key>CalDAVPrincipalURL</key>
+      <string>/cloud/remote.php/caldav/calendars/</string>
+      <key>CalDAVUseSSL</key>
+      <true/>
+      <key>PayloadDescription</key>
+      <string>CalDAV-Account</string>
+      <key>PayloadDisplayName</key>
+      <string>CalDAV (Mail-in-a-box Calendar)</string>
+      <key>PayloadIdentifier</key>
+      <string>com.mailinabox.setup.CalDAV</string>
+      <key>PayloadOrganization</key>
+      <string></string>
+      <key>PayloadType</key>
+      <string>com.apple.caldav.account</string>
+      <key>PayloadUUID</key>
+      <string>$(cat /proc/sys/kernel/random/uuid)</string>
+      <key>PayloadVersion</key>
+      <integer>1</integer>
+    </dict>
+    <dict>
+      <key>EmailAccountDescription</key>
+      <string>Mail-in-a-box Mail</string>
+      <key>EmailAccountType</key>
+      <string>EmailTypeIMAP</string>
+      <key>IncomingMailServerAuthentication</key>
+      <string>EmailAuthPassword</string>
+      <key>IncomingMailServerHostName</key>
+      <string>$PRIMARY_HOSTNAME</string>
+      <key>IncomingMailServerPortNumber</key>
+      <integer>993</integer>
+      <key>IncomingMailServerUseSSL</key>
+      <true/>
+      <key>OutgoingMailServerAuthentication</key>
+      <string>EmailAuthPassword</string>
+      <key>OutgoingMailServerHostName</key>
+      <string>$PRIMARY_HOSTNAME</string>
+      <key>OutgoingMailServerPortNumber</key>
+      <integer>587</integer>
+      <key>OutgoingMailServerUseSSL</key>
+      <true/>
+      <key>OutgoingPasswordSameAsIncomingPassword</key>
+      <true/>
+      <key>PayloadDescription</key>
+      <string>E-Mail-Account</string>
+      <key>PayloadDisplayName</key>
+      <string>IMAP-Account</string>
+      <key>PayloadIdentifier</key>
+      <string>com.mailinabox.setup.E-Mail</string>
+      <key>PayloadOrganization</key>
+      <string></string>
+      <key>PayloadType</key>
+      <string>com.apple.mail.managed</string>
+      <key>PayloadUUID</key>
+      <string>$(cat /proc/sys/kernel/random/uuid)</string>
+      <key>PayloadVersion</key>
+      <integer>1</integer>
+      <key>PreventAppSheet</key>
+      <false/>
+      <key>PreventMove</key>
+      <false/>
+      <key>SMIMEEnabled</key>
+      <false/>
+    </dict>
+    <dict>
+      <key>CardDAVAccountDescription</key>
+      <string>Mail-in-a-box Contacts</string>
+      <key>CardDAVHostName</key>
+      <string>$PRIMARY_HOSTNAME</string>
+      <key>CardDAVPort</key>
+      <integer>443</integer>
+      <key>CardDAVPrincipalURL</key>
+      <string>/cloud/remote.php/carddav/addressbooks/</string>
+      <key>CardDAVUseSSL</key>
+      <true/>
+      <key>PayloadDescription</key>
+      <string>CardDAV-Accounts</string>
+      <key>PayloadDisplayName</key>
+      <string>CardDAV</string>
+      <key>PayloadIdentifier</key>
+      <string>com.mailinabox.setup.carddav</string>
+      <key>PayloadOrganization</key>
+      <string></string>
+      <key>PayloadType</key>
+      <string>com.apple.carddav.account</string>
+      <key>PayloadUUID</key>
+      <string>$(cat /proc/sys/kernel/random/uuid)</string>
+      <key>PayloadVersion</key>
+      <integer>1</integer>
+    </dict>
+  </array>
+  <key>PayloadDescription</key>
+  <string>Mail, Contacts &amp; Calendar</string>
+  <key>PayloadDisplayName</key>
+  <string>Mail-in-a-box</string>
+  <key>PayloadIdentifier</key>
+  <string>com.mailinabox.setup</string>
+  <key>PayloadOrganization</key>
+  <string></string>
+  <key>PayloadRemovalDisallowed</key>
+  <false/>
+  <key>PayloadType</key>
+  <string>Configuration</string>
+  <key>PayloadUUID</key>
+  <string>$(cat /proc/sys/kernel/random/uuid)</string>
+  <key>PayloadVersion</key>
+  <integer>1</integer>
+</dict>
+</plist>" > "$STORAGE_ROOT/www/default/mailinabox.mobileconfig";
diff --git a/setup/start.sh b/setup/start.sh
index d84669b3..c47aaee2 100755
--- a/setup/start.sh
+++ b/setup/start.sh
@@ -125,6 +125,7 @@ source setup/webmail.sh
 source setup/owncloud.sh
 source setup/zpush.sh
 source setup/management.sh
+source setup/mobileconfig.sh
 
 # Write the DNS and nginx configuration files.
 sleep 5 # wait for the daemon to start
@@ -160,4 +161,3 @@ openssl x509 -in $STORAGE_ROOT/ssl/ssl_certificate.pem -noout -fingerprint \
 echo
 echo Then you can confirm the security exception and continue.
 echo
-

From 5775cab17544f39dab119780a72e7bcd74cea61a Mon Sep 17 00:00:00 2001
From: Norman <norman@nstanke.at>
Date: Thu, 6 Nov 2014 15:33:08 +0100
Subject: [PATCH 2/4] various fixes

---
 conf/nginx.conf       |  5 ++++-
 setup/mobileconfig.sh | 32 ++++++++++++++++----------------
 2 files changed, 20 insertions(+), 17 deletions(-)

diff --git a/conf/nginx.conf b/conf/nginx.conf
index b8751bd5..241bcebe 100644
--- a/conf/nginx.conf
+++ b/conf/nginx.conf
@@ -34,6 +34,10 @@ server {
 		access_log off;
 	}
 
+	location = /mailinabox.mobileconfig {
+		alias /var/lib/mailinabox/mobileconfig.xml;
+	}
+
 	# Roundcube Webmail configuration.
 	rewrite ^/mail$ /mail/ redirect;
 	rewrite ^/mail/$ /mail/index.php;
@@ -80,4 +84,3 @@ server {
 
 	# ADDITIONAL DIRECTIVES HERE
 }
-
diff --git a/setup/mobileconfig.sh b/setup/mobileconfig.sh
index b8bcdd3e..489a93d9 100644
--- a/setup/mobileconfig.sh
+++ b/setup/mobileconfig.sh
@@ -20,7 +20,7 @@ echo "<?xml version="1.0" encoding="UTF-8"?>
   <array>
     <dict>
       <key>CalDAVAccountDescription</key>
-      <string>Mail-in-a-box Calendar</string>
+      <string>Mail-in-a-Box Calendar</string>
       <key>CalDAVHostName</key>
       <string>$PRIMARY_HOSTNAME</string>
       <key>CalDAVPort</key>
@@ -30,11 +30,11 @@ echo "<?xml version="1.0" encoding="UTF-8"?>
       <key>CalDAVUseSSL</key>
       <true/>
       <key>PayloadDescription</key>
-      <string>CalDAV-Account</string>
+      <string>$PRIMARY_HOSTNAME (Mail-in-a-Box)</string>
       <key>PayloadDisplayName</key>
-      <string>CalDAV (Mail-in-a-box Calendar)</string>
+      <string>$PRIMARY_HOSTNAME calendar</string>
       <key>PayloadIdentifier</key>
-      <string>com.mailinabox.setup.CalDAV</string>
+      <string>email.mailinabox.mobileconfig.$PRIMARY_HOSTNAME.CalDAV</string>
       <key>PayloadOrganization</key>
       <string></string>
       <key>PayloadType</key>
@@ -46,7 +46,7 @@ echo "<?xml version="1.0" encoding="UTF-8"?>
     </dict>
     <dict>
       <key>EmailAccountDescription</key>
-      <string>Mail-in-a-box Mail</string>
+      <string>Mail-in-a-Box Mail</string>
       <key>EmailAccountType</key>
       <string>EmailTypeIMAP</string>
       <key>IncomingMailServerAuthentication</key>
@@ -68,11 +68,11 @@ echo "<?xml version="1.0" encoding="UTF-8"?>
       <key>OutgoingPasswordSameAsIncomingPassword</key>
       <true/>
       <key>PayloadDescription</key>
-      <string>E-Mail-Account</string>
+      <string>$PRIMARY_HOSTNAME (Mail-in-a-Box)</string>
       <key>PayloadDisplayName</key>
-      <string>IMAP-Account</string>
+      <string>$PRIMARY_HOSTNAME mail</string>
       <key>PayloadIdentifier</key>
-      <string>com.mailinabox.setup.E-Mail</string>
+      <string>email.mailinabox.mobileconfig.$PRIMARY_HOSTNAME.E-Mail</string>
       <key>PayloadOrganization</key>
       <string></string>
       <key>PayloadType</key>
@@ -90,7 +90,7 @@ echo "<?xml version="1.0" encoding="UTF-8"?>
     </dict>
     <dict>
       <key>CardDAVAccountDescription</key>
-      <string>Mail-in-a-box Contacts</string>
+      <string>Mail-in-a-Box Contacts</string>
       <key>CardDAVHostName</key>
       <string>$PRIMARY_HOSTNAME</string>
       <key>CardDAVPort</key>
@@ -100,11 +100,11 @@ echo "<?xml version="1.0" encoding="UTF-8"?>
       <key>CardDAVUseSSL</key>
       <true/>
       <key>PayloadDescription</key>
-      <string>CardDAV-Accounts</string>
+      <string>$PRIMARY_HOSTNAME (Mail-in-a-Box)</string>
       <key>PayloadDisplayName</key>
-      <string>CardDAV</string>
+      <string>$PRIMARY_HOSTNAME contacts</string>
       <key>PayloadIdentifier</key>
-      <string>com.mailinabox.setup.carddav</string>
+      <string>email.mailinabox.mobileconfig.$PRIMARY_HOSTNAME.carddav</string>
       <key>PayloadOrganization</key>
       <string></string>
       <key>PayloadType</key>
@@ -116,11 +116,11 @@ echo "<?xml version="1.0" encoding="UTF-8"?>
     </dict>
   </array>
   <key>PayloadDescription</key>
-  <string>Mail, Contacts &amp; Calendar</string>
+  <string>$PRIMARY_HOSTNAME (Mail-in-a-Box)</string>
   <key>PayloadDisplayName</key>
-  <string>Mail-in-a-box</string>
+  <string>$PRIMARY_HOSTNAME</string>
   <key>PayloadIdentifier</key>
-  <string>com.mailinabox.setup</string>
+  <string>email.mailinabox.mobileconfig.$PRIMARY_HOSTNAME</string>
   <key>PayloadOrganization</key>
   <string></string>
   <key>PayloadRemovalDisallowed</key>
@@ -132,4 +132,4 @@ echo "<?xml version="1.0" encoding="UTF-8"?>
   <key>PayloadVersion</key>
   <integer>1</integer>
 </dict>
-</plist>" > "$STORAGE_ROOT/www/default/mailinabox.mobileconfig";
+</plist>" > "/var/lib/mailinabox/mobileconfig.xml";

From 7db80458ddd7ce8d464dec2b55513c31cba07fd7 Mon Sep 17 00:00:00 2001
From: Norman <norman@nstanke.at>
Date: Thu, 6 Nov 2014 15:42:22 +0100
Subject: [PATCH 3/4] fix description

---
 setup/mobileconfig.sh | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/setup/mobileconfig.sh b/setup/mobileconfig.sh
index 489a93d9..d2462093 100644
--- a/setup/mobileconfig.sh
+++ b/setup/mobileconfig.sh
@@ -20,7 +20,7 @@ echo "<?xml version="1.0" encoding="UTF-8"?>
   <array>
     <dict>
       <key>CalDAVAccountDescription</key>
-      <string>Mail-in-a-Box Calendar</string>
+      <string>$PRIMARY_HOSTNAME calendar</string>
       <key>CalDAVHostName</key>
       <string>$PRIMARY_HOSTNAME</string>
       <key>CalDAVPort</key>
@@ -46,7 +46,7 @@ echo "<?xml version="1.0" encoding="UTF-8"?>
     </dict>
     <dict>
       <key>EmailAccountDescription</key>
-      <string>Mail-in-a-Box Mail</string>
+      <string>$PRIMARY_HOSTNAME mail</string>
       <key>EmailAccountType</key>
       <string>EmailTypeIMAP</string>
       <key>IncomingMailServerAuthentication</key>
@@ -90,7 +90,7 @@ echo "<?xml version="1.0" encoding="UTF-8"?>
     </dict>
     <dict>
       <key>CardDAVAccountDescription</key>
-      <string>Mail-in-a-Box Contacts</string>
+      <string>$PRIMARY_HOSTNAME contacts</string>
       <key>CardDAVHostName</key>
       <string>$PRIMARY_HOSTNAME</string>
       <key>CardDAVPort</key>

From b04addda9a4346bcab0ce18e8144a9939a7d45d0 Mon Sep 17 00:00:00 2001
From: Joshua Tauberer <jt@occams.info>
Date: Fri, 14 Nov 2014 13:49:01 +0000
Subject: [PATCH 4/4] move the mobileconfig into the conf directory as a plain
 XML file and handle substitutions and copying to /var in web.sh

---
 .gitignore                                    |  1 -
 setup/mobileconfig.sh => conf/ios-profile.xml | 72 +++++++++----------
 setup/start.sh                                |  1 -
 setup/web.sh                                  | 13 ++++
 4 files changed, 46 insertions(+), 41 deletions(-)
 rename setup/mobileconfig.sh => conf/ios-profile.xml (62%)

diff --git a/.gitignore b/.gitignore
index f3cdb1bc..e22c1d9f 100644
--- a/.gitignore
+++ b/.gitignore
@@ -4,4 +4,3 @@ management/__pycache__/
 tools/__pycache__/
 externals/
 .env
-.vagrant
diff --git a/setup/mobileconfig.sh b/conf/ios-profile.xml
similarity index 62%
rename from setup/mobileconfig.sh
rename to conf/ios-profile.xml
index d2462093..19460c00 100644
--- a/setup/mobileconfig.sh
+++ b/conf/ios-profile.xml
@@ -1,28 +1,22 @@
-#!/bin/bash
-#
-# iOS Configuration Profile
-# ----------------------------------------------
-#
-# Mobileconfig for iOS users to setup IMAP, Contacts & Calendars
-#
-# https://developer.apple.com/library/ios/featuredarticles/iPhoneConfigurationProfileRef/Introduction/Introduction.html
-
-source setup/functions.sh # load our functions
-source /etc/mailinabox.conf # load global vars
-
-echo "Generate iOS Configuration Profile"
-
-echo "<?xml version="1.0" encoding="UTF-8"?>
+<?xml version="1.0" encoding="UTF-8"?>
 <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<!--
+ iOS Configuration Profile
+ ----------------------------------------------
+
+ Mobileconfig for iOS users to setup IMAP, Contacts & Calendars
+
+ https://developer.apple.com/library/ios/featuredarticles/iPhoneConfigurationProfileRef/Introduction/Introduction.html
+-->
 <plist version="1.0">
 <dict>
   <key>PayloadContent</key>
   <array>
     <dict>
       <key>CalDAVAccountDescription</key>
-      <string>$PRIMARY_HOSTNAME calendar</string>
+      <string>PRIMARY_HOSTNAME calendar</string>
       <key>CalDAVHostName</key>
-      <string>$PRIMARY_HOSTNAME</string>
+      <string>PRIMARY_HOSTNAME</string>
       <key>CalDAVPort</key>
       <real>443</real>
       <key>CalDAVPrincipalURL</key>
@@ -30,29 +24,29 @@ echo "<?xml version="1.0" encoding="UTF-8"?>
       <key>CalDAVUseSSL</key>
       <true/>
       <key>PayloadDescription</key>
-      <string>$PRIMARY_HOSTNAME (Mail-in-a-Box)</string>
+      <string>PRIMARY_HOSTNAME (Mail-in-a-Box)</string>
       <key>PayloadDisplayName</key>
-      <string>$PRIMARY_HOSTNAME calendar</string>
+      <string>PRIMARY_HOSTNAME calendar</string>
       <key>PayloadIdentifier</key>
-      <string>email.mailinabox.mobileconfig.$PRIMARY_HOSTNAME.CalDAV</string>
+      <string>email.mailinabox.mobileconfig.PRIMARY_HOSTNAME.CalDAV</string>
       <key>PayloadOrganization</key>
       <string></string>
       <key>PayloadType</key>
       <string>com.apple.caldav.account</string>
       <key>PayloadUUID</key>
-      <string>$(cat /proc/sys/kernel/random/uuid)</string>
+      <string>UUID1</string>
       <key>PayloadVersion</key>
       <integer>1</integer>
     </dict>
     <dict>
       <key>EmailAccountDescription</key>
-      <string>$PRIMARY_HOSTNAME mail</string>
+      <string>PRIMARY_HOSTNAME mail</string>
       <key>EmailAccountType</key>
       <string>EmailTypeIMAP</string>
       <key>IncomingMailServerAuthentication</key>
       <string>EmailAuthPassword</string>
       <key>IncomingMailServerHostName</key>
-      <string>$PRIMARY_HOSTNAME</string>
+      <string>PRIMARY_HOSTNAME</string>
       <key>IncomingMailServerPortNumber</key>
       <integer>993</integer>
       <key>IncomingMailServerUseSSL</key>
@@ -60,7 +54,7 @@ echo "<?xml version="1.0" encoding="UTF-8"?>
       <key>OutgoingMailServerAuthentication</key>
       <string>EmailAuthPassword</string>
       <key>OutgoingMailServerHostName</key>
-      <string>$PRIMARY_HOSTNAME</string>
+      <string>PRIMARY_HOSTNAME</string>
       <key>OutgoingMailServerPortNumber</key>
       <integer>587</integer>
       <key>OutgoingMailServerUseSSL</key>
@@ -68,17 +62,17 @@ echo "<?xml version="1.0" encoding="UTF-8"?>
       <key>OutgoingPasswordSameAsIncomingPassword</key>
       <true/>
       <key>PayloadDescription</key>
-      <string>$PRIMARY_HOSTNAME (Mail-in-a-Box)</string>
+      <string>PRIMARY_HOSTNAME (Mail-in-a-Box)</string>
       <key>PayloadDisplayName</key>
-      <string>$PRIMARY_HOSTNAME mail</string>
+      <string>PRIMARY_HOSTNAME mail</string>
       <key>PayloadIdentifier</key>
-      <string>email.mailinabox.mobileconfig.$PRIMARY_HOSTNAME.E-Mail</string>
+      <string>email.mailinabox.mobileconfig.PRIMARY_HOSTNAME.E-Mail</string>
       <key>PayloadOrganization</key>
       <string></string>
       <key>PayloadType</key>
       <string>com.apple.mail.managed</string>
       <key>PayloadUUID</key>
-      <string>$(cat /proc/sys/kernel/random/uuid)</string>
+      <string>UUID2</string>
       <key>PayloadVersion</key>
       <integer>1</integer>
       <key>PreventAppSheet</key>
@@ -90,9 +84,9 @@ echo "<?xml version="1.0" encoding="UTF-8"?>
     </dict>
     <dict>
       <key>CardDAVAccountDescription</key>
-      <string>$PRIMARY_HOSTNAME contacts</string>
+      <string>PRIMARY_HOSTNAME contacts</string>
       <key>CardDAVHostName</key>
-      <string>$PRIMARY_HOSTNAME</string>
+      <string>PRIMARY_HOSTNAME</string>
       <key>CardDAVPort</key>
       <integer>443</integer>
       <key>CardDAVPrincipalURL</key>
@@ -100,27 +94,27 @@ echo "<?xml version="1.0" encoding="UTF-8"?>
       <key>CardDAVUseSSL</key>
       <true/>
       <key>PayloadDescription</key>
-      <string>$PRIMARY_HOSTNAME (Mail-in-a-Box)</string>
+      <string>PRIMARY_HOSTNAME (Mail-in-a-Box)</string>
       <key>PayloadDisplayName</key>
-      <string>$PRIMARY_HOSTNAME contacts</string>
+      <string>PRIMARY_HOSTNAME contacts</string>
       <key>PayloadIdentifier</key>
-      <string>email.mailinabox.mobileconfig.$PRIMARY_HOSTNAME.carddav</string>
+      <string>email.mailinabox.mobileconfig.PRIMARY_HOSTNAME.carddav</string>
       <key>PayloadOrganization</key>
       <string></string>
       <key>PayloadType</key>
       <string>com.apple.carddav.account</string>
       <key>PayloadUUID</key>
-      <string>$(cat /proc/sys/kernel/random/uuid)</string>
+      <string>UUID3</string>
       <key>PayloadVersion</key>
       <integer>1</integer>
     </dict>
   </array>
   <key>PayloadDescription</key>
-  <string>$PRIMARY_HOSTNAME (Mail-in-a-Box)</string>
+  <string>PRIMARY_HOSTNAME (Mail-in-a-Box)</string>
   <key>PayloadDisplayName</key>
-  <string>$PRIMARY_HOSTNAME</string>
+  <string>PRIMARY_HOSTNAME</string>
   <key>PayloadIdentifier</key>
-  <string>email.mailinabox.mobileconfig.$PRIMARY_HOSTNAME</string>
+  <string>email.mailinabox.mobileconfig.PRIMARY_HOSTNAME</string>
   <key>PayloadOrganization</key>
   <string></string>
   <key>PayloadRemovalDisallowed</key>
@@ -128,8 +122,8 @@ echo "<?xml version="1.0" encoding="UTF-8"?>
   <key>PayloadType</key>
   <string>Configuration</string>
   <key>PayloadUUID</key>
-  <string>$(cat /proc/sys/kernel/random/uuid)</string>
+  <string>UUID4</string>
   <key>PayloadVersion</key>
   <integer>1</integer>
 </dict>
-</plist>" > "/var/lib/mailinabox/mobileconfig.xml";
+</plist>
diff --git a/setup/start.sh b/setup/start.sh
index c47aaee2..22759c60 100755
--- a/setup/start.sh
+++ b/setup/start.sh
@@ -125,7 +125,6 @@ source setup/webmail.sh
 source setup/owncloud.sh
 source setup/zpush.sh
 source setup/management.sh
-source setup/mobileconfig.sh
 
 # Write the DNS and nginx configuration files.
 sleep 5 # wait for the daemon to start
diff --git a/setup/web.sh b/setup/web.sh
index d8d4644a..fd0b557c 100755
--- a/setup/web.sh
+++ b/setup/web.sh
@@ -40,6 +40,19 @@ tools/editconf.py /etc/php5/fpm/pool.d/www.conf -c ';' \
 # since it depends on what domains we're serving, which we don't know
 # until mail accounts have been created.
 
+# Create the iOS Mobile Configuration file which is exposed via the
+# nginx configuration at /mailinabox-mobileconfig.
+mkdir -p /var/lib/mailinabox
+chmod a+rx /var/lib/mailinabox
+cat conf/ios-profile.xml \
+	| sed "s/PRIMARY_HOSTNAME/$PRIMARY_HOSTNAME/" \
+	| sed "s/UUID1/$(cat /proc/sys/kernel/random/uuid)/" \
+	| sed "s/UUID2/$(cat /proc/sys/kernel/random/uuid)/" \
+	| sed "s/UUID3/$(cat /proc/sys/kernel/random/uuid)/" \
+	| sed "s/UUID4/$(cat /proc/sys/kernel/random/uuid)/" \
+	 > /var/lib/mailinabox/mobileconfig.xml
+chmod a+r /var/lib/mailinabox/mobileconfig.xml
+
 # make a default homepage
 if [ -d $STORAGE_ROOT/www/static ]; then mv $STORAGE_ROOT/www/static $STORAGE_ROOT/www/default; fi # migration #NODOC
 mkdir -p $STORAGE_ROOT/www/default

Username:	Your whole email address.
Password:	Your mail password.