Can use generic subject without pgp (#1847)
* improve wording for hide my subject option * can use generic subject on a non-pgp mailbox --------- Co-authored-by: Son NK <son@simplelogin.io>
This commit is contained in:
parent
40ff4604c8
commit
5714403976
|
@ -191,25 +191,16 @@ def mailbox_detail_route(mailbox_id):
|
||||||
)
|
)
|
||||||
elif request.form.get("form-name") == "generic-subject":
|
elif request.form.get("form-name") == "generic-subject":
|
||||||
if request.form.get("action") == "save":
|
if request.form.get("action") == "save":
|
||||||
if not mailbox.pgp_enabled():
|
|
||||||
flash(
|
|
||||||
"Generic subject can only be used on PGP-enabled mailbox",
|
|
||||||
"error",
|
|
||||||
)
|
|
||||||
return redirect(
|
|
||||||
url_for("dashboard.mailbox_detail_route", mailbox_id=mailbox_id)
|
|
||||||
)
|
|
||||||
|
|
||||||
mailbox.generic_subject = request.form.get("generic-subject")
|
mailbox.generic_subject = request.form.get("generic-subject")
|
||||||
Session.commit()
|
Session.commit()
|
||||||
flash("Generic subject for PGP-encrypted email is enabled", "success")
|
flash("Generic subject is enabled", "success")
|
||||||
return redirect(
|
return redirect(
|
||||||
url_for("dashboard.mailbox_detail_route", mailbox_id=mailbox_id)
|
url_for("dashboard.mailbox_detail_route", mailbox_id=mailbox_id)
|
||||||
)
|
)
|
||||||
elif request.form.get("action") == "remove":
|
elif request.form.get("action") == "remove":
|
||||||
mailbox.generic_subject = None
|
mailbox.generic_subject = None
|
||||||
Session.commit()
|
Session.commit()
|
||||||
flash("Generic subject for PGP-encrypted email is disabled", "success")
|
flash("Generic subject is disabled", "success")
|
||||||
return redirect(
|
return redirect(
|
||||||
url_for("dashboard.mailbox_detail_route", mailbox_id=mailbox_id)
|
url_for("dashboard.mailbox_detail_route", mailbox_id=mailbox_id)
|
||||||
)
|
)
|
||||||
|
|
|
@ -878,21 +878,22 @@ def forward_email_to_mailbox(
|
||||||
headers_to_keep.append(headers.AUTHENTICATION_RESULTS)
|
headers_to_keep.append(headers.AUTHENTICATION_RESULTS)
|
||||||
delete_all_headers_except(msg, headers_to_keep)
|
delete_all_headers_except(msg, headers_to_keep)
|
||||||
|
|
||||||
|
if mailbox.generic_subject:
|
||||||
|
LOG.d("Use a generic subject for %s", mailbox)
|
||||||
|
orig_subject = msg[headers.SUBJECT]
|
||||||
|
orig_subject = get_header_unicode(orig_subject)
|
||||||
|
add_or_replace_header(msg, "Subject", mailbox.generic_subject)
|
||||||
|
sender = msg[headers.FROM]
|
||||||
|
sender = get_header_unicode(sender)
|
||||||
|
msg = add_header(
|
||||||
|
msg,
|
||||||
|
f"""Forwarded by SimpleLogin to {alias.email} from "{sender}" with "{orig_subject}" as subject""",
|
||||||
|
f"""Forwarded by SimpleLogin to {alias.email} from "{sender}" with <b>{orig_subject}</b> as subject""",
|
||||||
|
)
|
||||||
|
|
||||||
# create PGP email if needed
|
# create PGP email if needed
|
||||||
if mailbox.pgp_enabled() and user.is_premium() and not alias.disable_pgp:
|
if mailbox.pgp_enabled() and user.is_premium() and not alias.disable_pgp:
|
||||||
LOG.d("Encrypt message using mailbox %s", mailbox)
|
LOG.d("Encrypt message using mailbox %s", mailbox)
|
||||||
if mailbox.generic_subject:
|
|
||||||
LOG.d("Use a generic subject for %s", mailbox)
|
|
||||||
orig_subject = msg[headers.SUBJECT]
|
|
||||||
orig_subject = get_header_unicode(orig_subject)
|
|
||||||
add_or_replace_header(msg, "Subject", mailbox.generic_subject)
|
|
||||||
sender = msg[headers.FROM]
|
|
||||||
sender = get_header_unicode(sender)
|
|
||||||
msg = add_header(
|
|
||||||
msg,
|
|
||||||
f"""Forwarded by SimpleLogin to {alias.email} from "{sender}" with "{orig_subject}" as subject""",
|
|
||||||
f"""Forwarded by SimpleLogin to {alias.email} from "{sender}" with <b>{orig_subject}</b> as subject""",
|
|
||||||
)
|
|
||||||
|
|
||||||
try:
|
try:
|
||||||
msg = prepare_pgp_message(
|
msg = prepare_pgp_message(
|
||||||
|
|
|
@ -137,123 +137,115 @@
|
||||||
</form>
|
</form>
|
||||||
</div>
|
</div>
|
||||||
</div>
|
</div>
|
||||||
<div class="card" {% if not mailbox.pgp_enabled() %}
|
</div>
|
||||||
disabled {% endif %}>
|
<div class="card" id="generic-subject">
|
||||||
<form method="post">
|
<form method="post" action="#generic-subject">
|
||||||
{{ csrf_form.csrf_token }}
|
{{ csrf_form.csrf_token }}
|
||||||
<input type="hidden" name="form-name" value="generic-subject">
|
<input type="hidden" name="form-name" value="generic-subject">
|
||||||
<div class="card-body">
|
|
||||||
<div class="card-title">
|
|
||||||
Hide email subject when PGP is enabled
|
|
||||||
<div class="small-text mt-1">
|
|
||||||
When PGP is enabled, you can choose to use a <b>generic</b> subject for the forwarded emails.
|
|
||||||
The original subject is then added into the email body.
|
|
||||||
<br />
|
|
||||||
As PGP does not encrypt the email subject and the email subject might contain sensitive information,
|
|
||||||
this option will allow a further protection of your email content.
|
|
||||||
</div>
|
|
||||||
</div>
|
|
||||||
<div class="alert alert-info">
|
|
||||||
As the email is encrypted, a subject like "Email for you"
|
|
||||||
will probably be rejected by your mailbox since it sounds like a spam.
|
|
||||||
<br />
|
|
||||||
Something like "Encrypted Email" would work much better :).
|
|
||||||
</div>
|
|
||||||
<div class="form-group">
|
|
||||||
<label class="form-label">Generic Subject</label>
|
|
||||||
<input name="generic-subject" {% if not mailbox.pgp_enabled() %}
|
|
||||||
disabled {% endif %} class="form-control" maxlength="78" placeholder="Generic Subject" value="{{ mailbox.generic_subject or "" }}">
|
|
||||||
</div>
|
|
||||||
<button class="btn btn-primary" name="action" {% if not mailbox.pgp_enabled() %}
|
|
||||||
disabled {% endif %} value="save">
|
|
||||||
Save
|
|
||||||
</button>
|
|
||||||
{% if mailbox.generic_subject %}
|
|
||||||
|
|
||||||
<button class="btn btn-danger float-right" name="action" value="remove">Remove</button>
|
|
||||||
{% endif %}
|
|
||||||
</div>
|
|
||||||
</form>
|
|
||||||
</div>
|
|
||||||
</div>
|
|
||||||
<hr />
|
|
||||||
<h2 class="h4">Advanced Options</h2>
|
|
||||||
{% if spf_available %}
|
|
||||||
|
|
||||||
<div class="card" id="spf">
|
|
||||||
<form method="post">
|
|
||||||
{{ csrf_form.csrf_token }}
|
|
||||||
<input type="hidden" name="form-name" value="force-spf">
|
|
||||||
<div class="card-body">
|
|
||||||
<div class="card-title">
|
|
||||||
Enforce SPF
|
|
||||||
<div class="small-text">
|
|
||||||
To avoid email-spoofing, SimpleLogin blocks email that
|
|
||||||
<em data-toggle="tooltip"
|
|
||||||
title="Email that has your mailbox as envelope-sender address">seems</em> to come from your
|
|
||||||
mailbox
|
|
||||||
but sent from <em data-toggle="tooltip"
|
|
||||||
title="IP Address that is not known by your mailbox email service">unknown</em>
|
|
||||||
IP address.
|
|
||||||
<br />
|
|
||||||
Only turn off this option if you know what you're doing :).
|
|
||||||
</div>
|
|
||||||
</div>
|
|
||||||
<label class="custom-switch cursor mt-2 pl-0" data-toggle="tooltip" {% if mailbox.force_spf %}
|
|
||||||
title="Disable SPF enforcement" {% else %} title="Enable SPF enforcement" {% endif %}>
|
|
||||||
<input type="checkbox" name="spf-status" class="custom-switch-input" {{ "checked" if mailbox.force_spf else "" }}>
|
|
||||||
<span class="custom-switch-indicator"></span>
|
|
||||||
</label>
|
|
||||||
</div>
|
|
||||||
</form>
|
|
||||||
</div>
|
|
||||||
{% endif %}
|
|
||||||
<div class="card" id="authorized-address">
|
|
||||||
<div class="card-body">
|
<div class="card-body">
|
||||||
<div class="card-title">
|
<div class="card-title">
|
||||||
Authorized addresses
|
Hide email subject
|
||||||
<div class="small-text">
|
<div class="small-text mt-1">
|
||||||
Emails sent from these addresses to a <b>reverse-alias</b> are considered as being sent
|
The original subject will be added to the email body and all forwarded emails will have the generic subject.
|
||||||
from {{ mailbox.email }}
|
<br />
|
||||||
|
This option is often used when PGP is enabled.
|
||||||
|
As PGP does not encrypt the email subject, it allows a further protection of your email content.
|
||||||
</div>
|
</div>
|
||||||
</div>
|
</div>
|
||||||
{% if mailbox.authorized_addresses | length == 0 %}
|
<div class="form-group">
|
||||||
|
<label class="form-label">Generic Subject</label>
|
||||||
|
<input name="generic-subject"
|
||||||
|
class="form-control"
|
||||||
|
maxlength="78"
|
||||||
|
placeholder="Generic Subject"
|
||||||
|
value="{{ mailbox.generic_subject or "" }}">
|
||||||
|
</div>
|
||||||
|
<button class="btn btn-primary" name="action" value="save">Save</button>
|
||||||
|
{% if mailbox.generic_subject %}
|
||||||
|
|
||||||
{% else %}
|
<button class="btn btn-danger float-right" name="action" value="remove">Remove</button>
|
||||||
<ul>
|
|
||||||
{% for authorized_address in mailbox.authorized_addresses %}
|
|
||||||
|
|
||||||
<li>
|
|
||||||
{{ authorized_address.email }}
|
|
||||||
<form method="post" action="#authorized-address" style="display: inline">
|
|
||||||
{{ csrf_form.csrf_token }}
|
|
||||||
<input type="hidden" name="form-name" value="delete-authorized-address">
|
|
||||||
<input type="hidden"
|
|
||||||
name="authorized-address-id"
|
|
||||||
value="{{ authorized_address.id }}">
|
|
||||||
<input type="submit" class="btn btn-sm btn-outline-warning" value="Delete">
|
|
||||||
</form>
|
|
||||||
</li>
|
|
||||||
{% endfor %}
|
|
||||||
</ul>
|
|
||||||
{% endif %}
|
{% endif %}
|
||||||
<form method="post" action="#authorized-address" class="form-inline">
|
|
||||||
{{ csrf_form.csrf_token }}
|
|
||||||
<input type="hidden" name="form-name" value="add-authorized-address">
|
|
||||||
<input type="email" name="email" size="50" class="form-control" required>
|
|
||||||
<input type="submit" class="btn btn-primary" value="Add">
|
|
||||||
</form>
|
|
||||||
</div>
|
</div>
|
||||||
|
</form>
|
||||||
|
</div>
|
||||||
|
<hr />
|
||||||
|
<h2 class="h4">Advanced Options</h2>
|
||||||
|
{% if spf_available %}
|
||||||
|
|
||||||
|
<div class="card" id="spf">
|
||||||
|
<form method="post">
|
||||||
|
{{ csrf_form.csrf_token }}
|
||||||
|
<input type="hidden" name="form-name" value="force-spf">
|
||||||
|
<div class="card-body">
|
||||||
|
<div class="card-title">
|
||||||
|
Enforce SPF
|
||||||
|
<div class="small-text">
|
||||||
|
To avoid email-spoofing, SimpleLogin blocks email that
|
||||||
|
<em data-toggle="tooltip"
|
||||||
|
title="Email that has your mailbox as envelope-sender address">seems</em> to come from your
|
||||||
|
mailbox
|
||||||
|
but sent from <em data-toggle="tooltip"
|
||||||
|
title="IP Address that is not known by your mailbox email service">unknown</em>
|
||||||
|
IP address.
|
||||||
|
<br />
|
||||||
|
Only turn off this option if you know what you're doing :).
|
||||||
|
</div>
|
||||||
|
</div>
|
||||||
|
<label class="custom-switch cursor mt-2 pl-0" data-toggle="tooltip" {% if mailbox.force_spf %}
|
||||||
|
title="Disable SPF enforcement" {% else %} title="Enable SPF enforcement" {% endif %}>
|
||||||
|
<input type="checkbox" name="spf-status" class="custom-switch-input" {{ "checked" if mailbox.force_spf else "" }}>
|
||||||
|
<span class="custom-switch-indicator"></span>
|
||||||
|
</label>
|
||||||
|
</div>
|
||||||
|
</form>
|
||||||
|
</div>
|
||||||
|
{% endif %}
|
||||||
|
<div class="card" id="authorized-address">
|
||||||
|
<div class="card-body">
|
||||||
|
<div class="card-title">
|
||||||
|
Authorized addresses
|
||||||
|
<div class="small-text">
|
||||||
|
Emails sent from these addresses to a <b>reverse-alias</b> are considered as being sent
|
||||||
|
from {{ mailbox.email }}
|
||||||
|
</div>
|
||||||
|
</div>
|
||||||
|
{% if mailbox.authorized_addresses | length == 0 %}
|
||||||
|
|
||||||
|
{% else %}
|
||||||
|
<ul>
|
||||||
|
{% for authorized_address in mailbox.authorized_addresses %}
|
||||||
|
|
||||||
|
<li>
|
||||||
|
{{ authorized_address.email }}
|
||||||
|
<form method="post" action="#authorized-address" style="display: inline">
|
||||||
|
{{ csrf_form.csrf_token }}
|
||||||
|
<input type="hidden" name="form-name" value="delete-authorized-address">
|
||||||
|
<input type="hidden"
|
||||||
|
name="authorized-address-id"
|
||||||
|
value="{{ authorized_address.id }}">
|
||||||
|
<input type="submit" class="btn btn-sm btn-outline-warning" value="Delete">
|
||||||
|
</form>
|
||||||
|
</li>
|
||||||
|
{% endfor %}
|
||||||
|
</ul>
|
||||||
|
{% endif %}
|
||||||
|
<form method="post" action="#authorized-address" class="form-inline">
|
||||||
|
{{ csrf_form.csrf_token }}
|
||||||
|
<input type="hidden" name="form-name" value="add-authorized-address">
|
||||||
|
<input type="email" name="email" size="50" class="form-control" required>
|
||||||
|
<input type="submit" class="btn btn-primary" value="Add">
|
||||||
|
</form>
|
||||||
</div>
|
</div>
|
||||||
</div>
|
</div>
|
||||||
</div>
|
</div>
|
||||||
{% endblock %}
|
</div>
|
||||||
{% block script %}
|
{% endblock %}
|
||||||
<script src="/static/js/utils/drag-drop-into-text.js"></script>
|
{% block script %}
|
||||||
<script>
|
<script src="/static/js/utils/drag-drop-into-text.js"></script>
|
||||||
|
<script>
|
||||||
$(".custom-switch-input").change(function (e) {
|
$(".custom-switch-input").change(function (e) {
|
||||||
$(this).closest("form").submit();
|
$(this).closest("form").submit();
|
||||||
});
|
});
|
||||||
enableDragDropForPGPKeys('#pgp-public-key');
|
enableDragDropForPGPKeys('#pgp-public-key');
|
||||||
</script>
|
</script>
|
||||||
{% endblock %}
|
{% endblock %}
|
||||||
|
|
Loading…
Reference in a new issue