1 Topic by gianmarcob (edited by gianmarcob 2015-01-08 18:00:56)

  • gianmarcob
  • Member
  • Offline
  • Registered: 2014-08-19
  • Posts: 3

Topic: Per-user whitelists & blacklists update problem

==== Required information ====
- iRedMail version: 0.9.0
- Store mail accounts in which backend (LDAP/MySQL/PGSQL): MySQL
- Linux/BSD distribution name and version:  Ubuntu Server 14.04.1
- Related log if you're reporting an issue:
====
Hello,
with  iRedAdmin-Pro MySQL 1.9.0 (per-user login) does not save when you press the save button with error: WBLIST_UPDATE (looks attachment)

This problem occurs only when you are logged in as user, work fine with global admin.

Any suggestions?

Thank You
Gianmarco

Post's attachments

iRedAdminPROErr.png
iRedAdminPROErr.png 18.99 kb, file has never been downloaded. 

You don't have the permssions to download the attachments of this post.

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

2 Reply by ZhangHuangbin

  • ZhangHuangbin
  • ZhangHuangbin
  • iRedMail Developers
  • Offline
  • Registered: 2009-05-06
  • Posts: 31,088

Re: Per-user whitelists & blacklists update problem

Sorry about this trouble. Below patch fixes this issue. If you're not familiar with patch, mail us to get a patched version.

diff -r 811a0e5a960d -r 04b5bef1bcff controllers/amavisd/wblist.py
--- a/controllers/amavisd/wblist.py    Wed Jan 07 17:47:29 2015 +0800
+++ b/controllers/amavisd/wblist.py    Thu Jan 08 20:11:36 2015 +0800
@@ -28,7 +28,7 @@
     bl_senders = get_wblist_from_form(form, 'bl_sender')
 
     wblist_lib = wblistlib.WBList()
-    qr = wblist_lib.add_wblist(account='@.',
+    qr = wblist_lib.add_wblist(account=account,
                                wl_senders=wl_senders,
                                bl_senders=bl_senders,
                                flush_before_import=False)
diff -r 811a0e5a960d -r 04b5bef1bcff libs/mysql/core.py
--- a/libs/mysql/core.py    Wed Jan 07 17:47:29 2015 +0800
+++ b/libs/mysql/core.py    Thu Jan 08 20:11:36 2015 +0800
@@ -434,6 +434,12 @@
         else:
             return (False, 'INVALID_ACCOUNT_TYPE')
 
+        if len(result) != 1:
+            # Account not found.
+            # Do NOT return msg like 'Account does not ***EXIST***', crackers
+            # can use it to verify valid accounts.
+            return (False, 'INVALID_CREDENTIALS')
+
         # It's a valid account.
         record = result[0]
         password_sql = str(record.password)
diff -r 811a0e5a960d -r 04b5bef1bcff templates/default/macros/msgHandlers.html
--- a/templates/default/macros/msgHandlers.html    Wed Jan 07 17:47:29 2015 +0800
+++ b/templates/default/macros/msgHandlers.html    Thu Jan 08 20:11:36 2015 +0800
@@ -153,6 +153,7 @@
         'NO_ACCOUNT_SELECTED': errorInfo(_('Please select at least one account.')),
         'NOT_ALLOWED': errorInfo(_('Not allowed to create mail user under this domain.')),
         'PERMISSION_DENIED': errorInfo(_("Permission denied.")),
+        'WBLIST_UPDATED': successInfo( _('Records were successfully updated.')),
         }
     %}

3 Reply by gianmarcob

  • gianmarcob
  • Member
  • Offline
  • Registered: 2014-08-19
  • Posts: 3

Re: Per-user whitelists & blacklists update problem

Hi,
with this patch work fine.

Thank You
Gianmarco