mirror of
https://github.com/foxcpp/maddy.git
synced 2025-04-05 22:17:39 +03:00
170 lines
4.3 KiB
Go
170 lines
4.3 KiB
Go
package maddy
|
|
|
|
import (
|
|
"crypto/tls"
|
|
"errors"
|
|
"fmt"
|
|
"log"
|
|
"net"
|
|
"os"
|
|
"strings"
|
|
"sync"
|
|
|
|
appendlimit "github.com/emersion/go-imap-appendlimit"
|
|
move "github.com/emersion/go-imap-move"
|
|
imapbackend "github.com/emersion/go-imap/backend"
|
|
imapserver "github.com/emersion/go-imap/server"
|
|
"github.com/emersion/maddy/config"
|
|
"github.com/emersion/maddy/module"
|
|
"github.com/foxcpp/go-sqlmail/imap/children"
|
|
)
|
|
|
|
type IMAPEndpoint struct {
|
|
name string
|
|
serv *imapserver.Server
|
|
listeners []net.Listener
|
|
Auth module.AuthProvider
|
|
Store module.Storage
|
|
|
|
tlsConfig *tls.Config
|
|
listenersWg sync.WaitGroup
|
|
}
|
|
|
|
func NewIMAPEndpoint(instName string, globalCfg map[string]config.Node, rawCfg config.Node) (module.Module, error) {
|
|
endp := new(IMAPEndpoint)
|
|
endp.name = instName
|
|
var (
|
|
errorLog *log.Logger
|
|
insecureAuth bool
|
|
ioDebug bool
|
|
)
|
|
|
|
cfg := config.Map{}
|
|
cfg.Custom("auth", false, true, defaultAuthProvider, authDirective, &endp.Auth)
|
|
cfg.Custom("storage", false, true, defaultStorage, storageDirective, &endp.Store)
|
|
cfg.Custom("tls", true, true, nil, tlsDirective, &endp.tlsConfig)
|
|
cfg.Bool("insecure_auth", false, &insecureAuth)
|
|
cfg.Bool("io_debug", false, &insecureAuth)
|
|
cfg.Custom("errors", false, false, func() (interface{}, error) {
|
|
return log.New(os.Stderr, "imap ", log.LstdFlags), nil
|
|
}, errorsDirective, &errorLog)
|
|
|
|
if _, err := cfg.Process(globalCfg, &rawCfg); err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
addresses := make([]Address, 0, len(rawCfg.Args))
|
|
for _, addr := range rawCfg.Args {
|
|
saddr, err := standardizeAddress(addr)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("invalid address: %s", instName)
|
|
}
|
|
if saddr.Scheme != "imap" && saddr.Scheme != "imaps" {
|
|
return nil, fmt.Errorf("imap %s: imap or imaps scheme must be used, got %s", instName, saddr.Scheme)
|
|
}
|
|
addresses = append(addresses, saddr)
|
|
}
|
|
|
|
endp.serv = imapserver.New(endp)
|
|
endp.serv.AllowInsecureAuth = insecureAuth
|
|
endp.serv.TLSConfig = endp.tlsConfig
|
|
if ioDebug {
|
|
endp.serv.Debug = os.Stderr
|
|
}
|
|
|
|
if err := endp.enableExtensions(); err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
for _, addr := range addresses {
|
|
var l net.Listener
|
|
var err error
|
|
l, err = net.Listen(addr.Network(), addr.Address())
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to bind on %v: %v", addr, err)
|
|
}
|
|
log.Printf("imap: listening on %v\n", addr)
|
|
|
|
if addr.IsTLS() {
|
|
if endp.tlsConfig == nil {
|
|
return nil, errors.New("can't bind on IMAPS endpoint without TLS configuration")
|
|
}
|
|
l = tls.NewListener(l, endp.tlsConfig)
|
|
}
|
|
|
|
endp.listeners = append(endp.listeners, l)
|
|
|
|
endp.listenersWg.Add(1)
|
|
addr := addr
|
|
go func() {
|
|
if err := endp.serv.Serve(l); err != nil && !strings.HasSuffix(err.Error(), "use of closed network connection") {
|
|
log.Printf("imap: failed to serve %s: %s\n", addr, err)
|
|
}
|
|
endp.listenersWg.Done()
|
|
}()
|
|
}
|
|
|
|
if endp.serv.AllowInsecureAuth {
|
|
log.Printf("imap %s: authentication over unencrypted connections is allowed, this is insecure configuration and should be used only for testing!", endp.name)
|
|
}
|
|
if endp.serv.TLSConfig == nil {
|
|
log.Printf("imap %s: TLS is disabled, this is insecure configuration and should be used only for testing!", endp.name)
|
|
endp.serv.AllowInsecureAuth = true
|
|
}
|
|
|
|
return endp, nil
|
|
}
|
|
|
|
func (endp *IMAPEndpoint) Name() string {
|
|
return "imap"
|
|
}
|
|
|
|
func (endp *IMAPEndpoint) InstanceName() string {
|
|
return endp.name
|
|
}
|
|
|
|
func (endp *IMAPEndpoint) Version() string {
|
|
return VersionStr
|
|
}
|
|
|
|
func (endp *IMAPEndpoint) Close() error {
|
|
for _, l := range endp.listeners {
|
|
l.Close()
|
|
}
|
|
if err := endp.serv.Close(); err != nil {
|
|
return err
|
|
}
|
|
endp.listenersWg.Wait()
|
|
return nil
|
|
}
|
|
|
|
func (endp *IMAPEndpoint) Login(username, password string) (imapbackend.User, error) {
|
|
if !endp.Auth.CheckPlain(username, password) {
|
|
return nil, imapbackend.ErrInvalidCredentials
|
|
}
|
|
|
|
return endp.Store.GetUser(username)
|
|
}
|
|
|
|
func (endp *IMAPEndpoint) EnableChildrenExt() bool {
|
|
return endp.Store.(children.Backend).EnableChildrenExt()
|
|
}
|
|
|
|
func (endp *IMAPEndpoint) enableExtensions() error {
|
|
exts := endp.Store.Extensions()
|
|
for _, ext := range exts {
|
|
switch ext {
|
|
case "APPENDLIMIT":
|
|
endp.serv.Enable(appendlimit.NewExtension())
|
|
case "CHILDREN":
|
|
endp.serv.Enable(children.NewExtension())
|
|
case "MOVE":
|
|
endp.serv.Enable(move.NewExtension())
|
|
}
|
|
}
|
|
return nil
|
|
}
|
|
|
|
func init() {
|
|
module.Register("imap", NewIMAPEndpoint)
|
|
}
|