Commit Graph

37 次程式碼提交

作者 SHA1 備註 提交日期
downtownallday
f5521b45b5 Add tests for dmarc reject and spf softfail 2020-12-21 08:46:12 -05:00
downtownallday
aeb27f74e3 Break out MiaB-LDAP code from _init.sh so _init.sh can be shared with cloud-in-a-box 2020-11-02 12:59:59 -05:00
downtownallday
a7370beae0 Merge remote-tracking branch 'fspoettel/admin-panel-2fa' into totp
# Conflicts:
#	management/daemon.py
#	management/mfa.py
2020-10-29 16:56:36 -04:00
downtownallday
100acb119b Add a totpMruTokenTime value to record the time when the mru token was used
Use the totpMruTokenTime as the id to uniquely identify a totp entry
2020-09-30 11:00:58 -04:00
downtownallday
00fc94d3c1 Merge remote-tracking branch 'fspoettel/admin-panel-2fa' into totp
# Conflicts:
#	management/auth.py
#	management/daemon.py
#	management/mailconfig.py
#	setup/mail-users.sh
2020-09-28 23:25:16 -04:00
downtownallday
7c29628530 Separate miab and miab-ldap migrations
Add tests for migrating from miab w/totp (migration 13) to miab-ldap
2020-09-16 09:00:27 -04:00
downtownallday
b6ba3a054c Fix regexp: \d => [0-9] 2020-09-12 20:07:50 -04:00
downtownallday
752da93a37 Refactor: move code for obtaining totp tokens to tests/lib/totp.sh 2020-09-10 18:19:29 -04:00
downtownallday
c0431474c9 Detect warning ahead of errors 2020-09-10 17:50:06 -04:00
downtownallday
445cd812e6 Check system logs for errors 2020-09-10 17:07:33 -04:00
downtownallday
ba85b6fd7b Ignore named connection reset error and reduce reported slapd log output 2020-09-10 16:35:19 -04:00
downtownallday
5852a7aabb Add QA tests for TOTP 2020-09-10 15:24:47 -04:00
downtownallday
22bfef6f59 Display and allow chaninging a comment/description for aliases. Change the default comment for required aliases to "Required alias". 2020-08-25 12:00:55 -04:00
downtownallday
ebf9088c42 Treat spamhous warning as a warning 2020-07-05 18:41:47 -04:00
downtownallday
af4242fb0c Add an encryption-at-rest restart/remount test 2020-06-23 07:49:47 -04:00
downtownallday
a5ab29c83f Add Vagrant support for running automated tests 2020-06-21 09:13:54 -04:00
downtownallday
1bd7b2c4c7 1. Better code organization & simplify
2. Add "populate" data for upgrades - enabled in both system-setup scripts
3. Add "upgrade" test runner suite
2020-06-19 12:12:49 -04:00
downtownallday
6a93af9670 Fix upgrade job failure 2020-06-14 16:48:21 -04:00
downtownallday
b0090edd52 Test upgrade to LDAP from upstream Mail-in-a-Box/sqlite 2020-06-14 13:51:00 -04:00
downtownallday
1f35e9ef91 Move directory setup/mods.d to local 2020-06-11 21:18:05 -04:00
downtownallday
0e857916eb Update wording 2020-06-11 08:08:31 -04:00
downtownallday
6baf4993db Ensure root user has a mailbox for sendmail -bv delivery report 2020-06-11 06:45:49 -04:00
downtownallday
f4fda41705 Output formatting changes 2020-06-10 07:21:47 -04:00
downtownallday
2f1082a290 More debug output 2020-06-10 00:19:59 -04:00
downtownallday
83cb7cbcbe Automated QA tests for remote nextcloud 2020-06-09 20:46:59 -04:00
downtownallday
44f7392e9e Last commit fixed things, so just cleaning up with this commit 2020-06-03 09:41:27 -04:00
downtownallday
ceca4a3cff again 2020-06-02 23:27:24 -04:00
downtownallday
bb66a7c32b again 2020-06-02 18:18:35 -04:00
downtownallday
773ae77cf3 again 2020-06-02 17:54:02 -04:00
downtownallday
5e1c60f5a2 again 2020-06-02 17:27:53 -04:00
downtownallday
8d033a4bdd again 2020-06-02 17:11:58 -04:00
downtownallday
c0a2e048b3 again 2020-06-02 16:58:05 -04:00
downtownallday
504de9874f More systemctl reset attempts for travis 2020-06-02 15:37:42 -04:00
downtownallday
c91012a338 Add option to skip tests requiring remote smtp 2020-06-02 15:18:56 -04:00
downtownallday
e56084d682 Try resetting nsd restart count to avoid errors in mgmt tests 2020-06-02 14:48:26 -04:00
downtownallday
f2e970fe38 Dump the output from failed tests 2020-06-02 13:04:16 -04:00
downtownallday
1f0d2ddb92 Issue #1340 - LDAP backend for accounts
This commit will:

1. Change the user account database from sqlite to OpenLDAP
2. Add policyd-spf to postfix for SPF validation
3. Add a test runner with some automated test suites

Notes:

User account password hashes are preserved.

There is a new Roundcube contact list called "Directory" that lists the users in LDAP (MiaB users), similar to what Google Suite does.

Users can still change their password in Roundcube.

OpenLDAP is configured with TLS, but all remote access is blocked by firewall rules. Manual changes are required to open it for remote access (eg. "ufw allow proto tcp from <HOST> to any port ldaps").

The test runner is started by executing tests/runner.sh. Be aware that it will make changes to your system, including adding new users, domains, mailboxes, start/stop services, etc. It is highly unadvised to run it on a production system!

The LDAP schema that supports mail delivery with postfix and dovecot is located in conf/postfix.schema. This file is copied verbatim from the LdapAdmin project (GPL, ldapadmin.org). Instead of including the file in git, it could be referenced by URL and downloaded by the setup script if GPL is an issue or apply for a PEN from IANA.

Mangement console and other services should not appear or behave any differently than before.
2020-01-17 17:03:21 -05:00