studio/people
Archived
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
This repository has been archived on 2026-03-24. You can view files and clone it. You cannot open issues or pull requests or push a commit.
Files
2ddfef59d84af689b9ac946cc3870837d0f1593a
people/src/backend/mailbox_manager/utils/dimail.py

642 lines
24 KiB
Python
Raw Normal View History

✨(dimail) add reset password method allow domain owner and admins to reset password for a mailbox they manage. The request is sent to dimail, which responds with a new randomly generated password. This new password is sent to secondary email.
2025-03-21 18:13:10 +01:00
# pylint: disable=line-too-long
✨(mailboxes) add mail provisioning api integration We want people to create new mailboxes in La Régie. This commit adds integration with intermediary dimail-api, which will in turn send our email creation request to Open-Xchange.
2024-08-05 12:20:44 +02:00
"""A minimalist client to synchronize with mailbox provisioning API."""
🐛(dimail) fix unexpected status_code for proper debug Remove duplicate and catch errors more gracefully. Fixes tests accordingly.
2024-10-24 17:40:32 +02:00
import json
✨(mailbox) send new mailbox confirmation email send mailbox information upon creating a new mailbox
2024-09-20 18:08:02 +02:00
import smtplib
✨(dimail) synchronize mailboxes from dimail to our db Synchronize mailboxes existing on dimail's api and not on our side, on domains we are administrating.
2024-10-09 17:18:38 +02:00
from email.errors import HeaderParseError, NonASCIILocalPartDefect
from email.headerregistry import Address
✨(mailboxes) add mail provisioning api integration We want people to create new mailboxes in La Régie. This commit adds integration with intermediary dimail-api, which will in turn send our email creation request to Open-Xchange.
2024-08-05 12:20:44 +02:00
from logging import getLogger
from django.conf import settings
✨(oidc) add django-oauth-toolkit w/ configuration This allows to use `people` as an identity provider using OIDC and local users. This commit is partial, because it does not manage a way to create "local" users and the login page is the admin one, which can't be used for non staff users or login with email.
2025-01-14 11:43:42 +01:00
from django.contrib.auth.hashers import make_password
✨(mailbox) send new mailbox confirmation email send mailbox information upon creating a new mailbox
2024-09-20 18:08:02 +02:00
from django.contrib.sites.models import Site
from django.core import exceptions, mail
from django.template.loader import render_to_string
from django.utils.translation import gettext_lazy as _
🐛(mailbox) fix mailbox creation email language Don't forget to translate mail content before sending.
2025-03-09 23:55:00 +01:00
from django.utils.translation import override
✨(mailboxes) add mail provisioning api integration We want people to create new mailboxes in La Régie. This commit adds integration with intermediary dimail-api, which will in turn send our email creation request to Open-Xchange.
2024-08-05 12:20:44 +02:00
import requests
from rest_framework import status
from urllib3.util import Retry
✨(dimail) check domain health Call dimail to check if a domain still works. Turn domain into failure status if dimail returns broken state. And enable domain if dimail returns ok state.
2024-12-27 20:07:18 +01:00
from mailbox_manager import enums, models
✨(dimail) synchronize mailboxes from dimail to our db Synchronize mailboxes existing on dimail's api and not on our side, on domains we are administrating.
2024-10-09 17:18:38 +02:00
✨(mailboxes) add mail provisioning api integration We want people to create new mailboxes in La Régie. This commit adds integration with intermediary dimail-api, which will in turn send our email creation request to Open-Xchange.
2024-08-05 12:20:44 +02:00
logger = getLogger(__name__)
adapter = requests.adapters.HTTPAdapter(
max_retries=Retry(
total=4,
backoff_factor=0.1,
status_forcelist=[500, 502],
allowed_methods=["PATCH"],
)
)
session = requests.Session()
session.mount("http://", adapter)
session.mount("https://", adapter)
class DimailAPIClient:
"""A dimail-API client."""
👽️(mailboxes) fix mailbox creation after dimail api improvement Latest dimail modification lead to a bug in our app, preventing mailbox creation from working properly. I swapped old dimail url to new one, mirrored dimail modification and fixed tests and tada!
2024-08-26 19:10:43 +02:00
API_URL = settings.MAIL_PROVISIONING_API_URL
♻️(dimail) separate headers request from mailbox request I want to separate headers request form mailbox request, as we were previously catching the same errors twice. It should be clearer now.
2024-09-09 19:03:59 +02:00
API_CREDENTIALS = settings.MAIL_PROVISIONING_API_CREDENTIALS
✨(api) define dimail timeout as a setting Allow to param dimail timeout for each env
2025-03-06 16:32:21 +01:00
API_TIMEOUT = settings.MAIL_PROVISIONING_API_TIMEOUT
👽️(mailboxes) fix mailbox creation after dimail api improvement Latest dimail modification lead to a bug in our app, preventing mailbox creation from working properly. I swapped old dimail url to new one, mirrored dimail modification and fixed tests and tada!
2024-08-26 19:10:43 +02:00
🛂(dimail) simplify interop with dimail In this commit, we stop creating /users and /allows in dimail for our dbs to be in sync. People with stop impersonating users in dimail and will create mailboxes using its own credentials.
2025-04-14 16:05:31 +02:00
def get_headers(self):
♻️(dimail) separate headers request from mailbox request I want to separate headers request form mailbox request, as we were previously catching the same errors twice. It should be clearer now.
2024-09-09 19:03:59 +02:00
"""
🛂(dimail) simplify interop with dimail In this commit, we stop creating /users and /allows in dimail for our dbs to be in sync. People with stop impersonating users in dimail and will create mailboxes using its own credentials.
2025-04-14 16:05:31 +02:00
Return Bearer token. Requires MAIL_PROVISIONING_API_CREDENTIALS setting,
♻️(dimail) separate headers request from mailbox request I want to separate headers request form mailbox request, as we were previously catching the same errors twice. It should be clearer now.
2024-09-09 19:03:59 +02:00
to get a token from dimail /token/ endpoint.
"""
✨(dimail) add reset password method allow domain owner and admins to reset password for a mailbox they manage. The request is sent to dimail, which responds with a new randomly generated password. This new password is sent to secondary email.
2025-03-21 18:13:10 +01:00
try:
response = requests.get(
f"{self.API_URL}/token/",
headers={"Authorization": f"Basic {self.API_CREDENTIALS}"},
timeout=self.API_TIMEOUT,
)
except requests.exceptions.ConnectionError as error:
logger.error(
"Connection error while trying to reach %s.",
self.API_URL,
exc_info=error,
)
raise error
✨(mailboxes) add mail provisioning api integration We want people to create new mailboxes in La Régie. This commit adds integration with intermediary dimail-api, which will in turn send our email creation request to Open-Xchange.
2024-08-05 12:20:44 +02:00
♻️(dimail) refacto to better handle 500 errors from dimail simple refacto to catch all 500 errors, including when asking for new token.
2024-09-06 17:18:27 +02:00
if response.status_code == status.HTTP_200_OK:
🛂(dimail) simplify interop with dimail In this commit, we stop creating /users and /allows in dimail for our dbs to be in sync. People with stop impersonating users in dimail and will create mailboxes using its own credentials.
2025-04-14 16:05:31 +02:00
headers = {
"Content-Type": "application/json",
"Authorization": f"Bearer {response.json()['access_token']}",
}
✏️(typo) fix typos Did you know ? "Successful" actually takes two esses.
2025-05-16 18:46:17 +02:00
logger.info("Token successfully granted by mail-provisioning API.")
♻️(dimail) refacto to better handle 500 errors from dimail simple refacto to catch all 500 errors, including when asking for new token.
2024-09-06 17:18:27 +02:00
return headers
🐛(dimail) improve handling of dimail errors on failed mailbox creation dimail is called twice when creating a mailbox (once for the token, and once for the post on mailbox endpoint). we want to clarify the status_codes and messages of each error to inform user and ease debug
2024-09-03 18:29:28 +02:00
if response.status_code == status.HTTP_403_FORBIDDEN:
logger.error(
🧑‍💻(mailboxes) add and improve some tests Add and improve some tests linked to mailbox creation.
2024-11-19 16:06:52 +01:00
"[DIMAIL] 403 Forbidden: Could not retrieve a token,"
"please check 'MAIL_PROVISIONING_API_CREDENTIALS' setting.",
✨(mailboxes) add mail provisioning api integration We want people to create new mailboxes in La Régie. This commit adds integration with intermediary dimail-api, which will in turn send our email creation request to Open-Xchange.
2024-08-05 12:20:44 +02:00
)
♻️(dimail) separate headers request from mailbox request I want to separate headers request form mailbox request, as we were previously catching the same errors twice. It should be clearer now.
2024-09-09 19:03:59 +02:00
raise exceptions.PermissionDenied(
"Token denied. Please check your MAIL_PROVISIONING_API_CREDENTIALS."
)
✨(mailboxes) add mail provisioning api integration We want people to create new mailboxes in La Régie. This commit adds integration with intermediary dimail-api, which will in turn send our email creation request to Open-Xchange.
2024-08-05 12:20:44 +02:00
♻️(dimail) rename some methods of DimailAPIClient Use more intuitive and shorter names for actions available in DimailAPIClient.
2024-11-20 17:56:27 +01:00
return self.raise_exception_for_unexpected_response(response)
✨(mailboxes) add mail provisioning api integration We want people to create new mailboxes in La Régie. This commit adds integration with intermediary dimail-api, which will in turn send our email creation request to Open-Xchange.
2024-08-05 12:20:44 +02:00
♻️(dimail) rename some methods of DimailAPIClient Use more intuitive and shorter names for actions available in DimailAPIClient.
2024-11-20 17:56:27 +01:00
def create_domain(self, domain_name, request_user):
✨(dimail) send domain creation request to dimail Send domain creation request to dimail when someone creates a domain in people.
2024-10-23 18:44:14 +02:00
"""Send a domain creation request to dimail API."""
payload = {
✨(dimail) fix domain creation request to fit latest dimail Adapt domain creationg request to latest protocol version, also make error reporting more robust: don't assume utf-8 but use the response's encoding, don't assume the error is JSON (it won't be when getting a 500) but reproduce the whole thing instead.
2024-11-07 18:22:40 +01:00
"name": domain_name,
"context_name": domain_name, # for now, we put each domain on its own context
♻️(dimail) refacto setup_dimail_db to call dimail client Management command "setup_dimail_db" called dimail directly, thus creating duplicated code. It now calls "create_domain" and "create_allow" methods from DimailAPIClient (create_user is left unchanged to create special users such as dimail admin or people)
2025-03-19 18:59:30 +01:00
"features": ["webmail", "mailbox", "alias"],
✨(dimail) fix domain creation request to fit latest dimail Adapt domain creationg request to latest protocol version, also make error reporting more robust: don't assume utf-8 but use the response's encoding, don't assume the error is JSON (it won't be when getting a 500) but reproduce the whole thing instead.
2024-11-07 18:22:40 +01:00
"delivery": "virtual",
✨(dimail) send domain creation request to dimail Send domain creation request to dimail when someone creates a domain in people.
2024-10-23 18:44:14 +02:00
}
try:
response = session.post(
f"{self.API_URL}/domains/",
json=payload,
headers={"Authorization": f"Basic {self.API_CREDENTIALS}"},
verify=True,
✨(api) define dimail timeout as a setting Allow to param dimail timeout for each env
2025-03-06 16:32:21 +01:00
timeout=self.API_TIMEOUT,
✨(dimail) send domain creation request to dimail Send domain creation request to dimail when someone creates a domain in people.
2024-10-23 18:44:14 +02:00
)
except requests.exceptions.ConnectionError as error:
logger.error(
"Connection error while trying to reach %s.",
self.API_URL,
exc_info=error,
)
raise error
if response.status_code == status.HTTP_201_CREATED:
logger.info(
"Domain %s successfully created on dimail by user %s",
domain_name,
request_user,
)
return response
♻️(dimail) rename some methods of DimailAPIClient Use more intuitive and shorter names for actions available in DimailAPIClient.
2024-11-20 17:56:27 +01:00
return self.raise_exception_for_unexpected_response(response)
✨(dimail) send domain creation request to dimail Send domain creation request to dimail when someone creates a domain in people.
2024-10-23 18:44:14 +02:00
♻️(dimail) refacto setup_dimail_db to call dimail client Management command "setup_dimail_db" called dimail directly, thus creating duplicated code. It now calls "create_domain" and "create_allow" methods from DimailAPIClient (create_user is left unchanged to create special users such as dimail admin or people)
2025-03-19 18:59:30 +01:00
def create_mailbox(self, mailbox, request_user=None):
✨(mailboxes) add mail provisioning api integration We want people to create new mailboxes in La Régie. This commit adds integration with intermediary dimail-api, which will in turn send our email creation request to Open-Xchange.
2024-08-05 12:20:44 +02:00
"""Send a CREATE mailbox request to mail provisioning API."""
payload = {
📝(dimail) add some info about data required to create mailbox Prepare generic mailbox implementation
2025-03-18 15:40:46 +01:00
# givenName value can be empty
✨(dimail) send pending mailboxes upon domain activation send creation requests to dimail for all pending mailboxes when domain goes from "pending" to "enabled".
2025-01-10 18:25:07 +01:00
"givenName": mailbox.first_name,
📝(dimail) add some info about data required to create mailbox Prepare generic mailbox implementation
2025-03-18 15:40:46 +01:00
# surName value can be empty
✨(dimail) send pending mailboxes upon domain activation send creation requests to dimail for all pending mailboxes when domain goes from "pending" to "enabled".
2025-01-10 18:25:07 +01:00
"surName": mailbox.last_name,
📝(dimail) add some info about data required to create mailbox Prepare generic mailbox implementation
2025-03-18 15:40:46 +01:00
# displayName value has to be unique
✨(dimail) send pending mailboxes upon domain activation send creation requests to dimail for all pending mailboxes when domain goes from "pending" to "enabled".
2025-01-10 18:25:07 +01:00
"displayName": f"{mailbox.first_name} {mailbox.last_name}",
✨(mailboxes) add mail provisioning api integration We want people to create new mailboxes in La Régie. This commit adds integration with intermediary dimail-api, which will in turn send our email creation request to Open-Xchange.
2024-08-05 12:20:44 +02:00
}
🛂(dimail) simplify interop with dimail In this commit, we stop creating /users and /allows in dimail for our dbs to be in sync. People with stop impersonating users in dimail and will create mailboxes using its own credentials.
2025-04-14 16:05:31 +02:00
headers = self.get_headers()
✨(mailboxes) add mail provisioning api integration We want people to create new mailboxes in La Régie. This commit adds integration with intermediary dimail-api, which will in turn send our email creation request to Open-Xchange.
2024-08-05 12:20:44 +02:00
try:
response = session.post(
✨(dimail) send pending mailboxes upon domain activation send creation requests to dimail for all pending mailboxes when domain goes from "pending" to "enabled".
2025-01-10 18:25:07 +01:00
f"{self.API_URL}/domains/{mailbox.domain.name}/mailboxes/{mailbox.local_part}",
✨(mailboxes) add mail provisioning api integration We want people to create new mailboxes in La Régie. This commit adds integration with intermediary dimail-api, which will in turn send our email creation request to Open-Xchange.
2024-08-05 12:20:44 +02:00
json=payload,
♻️(dimail) separate headers request from mailbox request I want to separate headers request form mailbox request, as we were previously catching the same errors twice. It should be clearer now.
2024-09-09 19:03:59 +02:00
headers=headers,
✨(mailboxes) add mail provisioning api integration We want people to create new mailboxes in La Régie. This commit adds integration with intermediary dimail-api, which will in turn send our email creation request to Open-Xchange.
2024-08-05 12:20:44 +02:00
verify=True,
✨(api) define dimail timeout as a setting Allow to param dimail timeout for each env
2025-03-06 16:32:21 +01:00
timeout=self.API_TIMEOUT,
✨(mailboxes) add mail provisioning api integration We want people to create new mailboxes in La Régie. This commit adds integration with intermediary dimail-api, which will in turn send our email creation request to Open-Xchange.
2024-08-05 12:20:44 +02:00
)
👽️(mailboxes) fix mailbox creation after dimail api improvement Latest dimail modification lead to a bug in our app, preventing mailbox creation from working properly. I swapped old dimail url to new one, mirrored dimail modification and fixed tests and tada!
2024-08-26 19:10:43 +02:00
except requests.exceptions.ConnectionError as error:
✨(mailboxes) add mail provisioning api integration We want people to create new mailboxes in La Régie. This commit adds integration with intermediary dimail-api, which will in turn send our email creation request to Open-Xchange.
2024-08-05 12:20:44 +02:00
logger.error(
"Connection error while trying to reach %s.",
👽️(mailboxes) fix mailbox creation after dimail api improvement Latest dimail modification lead to a bug in our app, preventing mailbox creation from working properly. I swapped old dimail url to new one, mirrored dimail modification and fixed tests and tada!
2024-08-26 19:10:43 +02:00
self.API_URL,
exc_info=error,
✨(mailboxes) add mail provisioning api integration We want people to create new mailboxes in La Régie. This commit adds integration with intermediary dimail-api, which will in turn send our email creation request to Open-Xchange.
2024-08-05 12:20:44 +02:00
)
👽️(mailboxes) fix mailbox creation after dimail api improvement Latest dimail modification lead to a bug in our app, preventing mailbox creation from working properly. I swapped old dimail url to new one, mirrored dimail modification and fixed tests and tada!
2024-08-26 19:10:43 +02:00
raise error
✨(mailboxes) add mail provisioning api integration We want people to create new mailboxes in La Régie. This commit adds integration with intermediary dimail-api, which will in turn send our email creation request to Open-Xchange.
2024-08-05 12:20:44 +02:00
if response.status_code == status.HTTP_201_CREATED:
logger.info(
✨(dimail) allow la regie to request a token for another user allow la regie to request a token for another dimail user, to better track who created/modified which ressource.
2024-09-20 16:31:41 +02:00
"Mailbox successfully created on domain %s by user %s",
✨(dimail) send pending mailboxes upon domain activation send creation requests to dimail for all pending mailboxes when domain goes from "pending" to "enabled".
2025-01-10 18:25:07 +01:00
str(mailbox.domain),
♻️(dimail) refacto setup_dimail_db to call dimail client Management command "setup_dimail_db" called dimail directly, thus creating duplicated code. It now calls "create_domain" and "create_allow" methods from DimailAPIClient (create_user is left unchanged to create special users such as dimail admin or people)
2025-03-19 18:59:30 +01:00
request_user,
✨(mailboxes) add mail provisioning api integration We want people to create new mailboxes in La Régie. This commit adds integration with intermediary dimail-api, which will in turn send our email creation request to Open-Xchange.
2024-08-05 12:20:44 +02:00
)
🐛(dimail) improve handling of dimail errors on failed mailbox creation dimail is called twice when creating a mailbox (once for the token, and once for the post on mailbox endpoint). we want to clarify the status_codes and messages of each error to inform user and ease debug
2024-09-03 18:29:28 +02:00
return response
if response.status_code == status.HTTP_403_FORBIDDEN:
✅(dimail) fix logger response in unauthorized response a test was broken because of logger not logging errors
2024-09-23 12:50:28 +02:00
logger.error(
"[DIMAIL] 403 Forbidden: you cannot access domain %s",
✨(dimail) send pending mailboxes upon domain activation send creation requests to dimail for all pending mailboxes when domain goes from "pending" to "enabled".
2025-01-10 18:25:07 +01:00
str(mailbox.domain),
✅(dimail) fix logger response in unauthorized response a test was broken because of logger not logging errors
2024-09-23 12:50:28 +02:00
)
✨(mailboxes) manage bad secret sent to dimail API - manage 403 returned by dimail API when mail domain secret is not valid - improve some tests - improve MailboxFactory to mock success for dimail API POST call - override 403.html to return a nice failing error in django admin - an error message is displayed on mailbox creation form of frontend
2024-08-08 18:28:01 +02:00
raise exceptions.PermissionDenied(
🗃️(models) remove 'secret' field from mailbox model We remove 'secret' field, as it won't be of use in interactions between la Régie and dimail. Régie credentials will be stored and used as project variable.
2024-08-30 15:49:04 +02:00
"Permission denied. Please check your MAIL_PROVISIONING_API_CREDENTIALS."
👽️(mailboxes) fix mailbox creation after dimail api improvement Latest dimail modification lead to a bug in our app, preventing mailbox creation from working properly. I swapped old dimail url to new one, mirrored dimail modification and fixed tests and tada!
2024-08-26 19:10:43 +02:00
)
♻️(dimail) rename some methods of DimailAPIClient Use more intuitive and shorter names for actions available in DimailAPIClient.
2024-11-20 17:56:27 +01:00
return self.raise_exception_for_unexpected_response(response)
♻️(dimail) refacto to better handle 500 errors from dimail simple refacto to catch all 500 errors, including when asking for new token.
2024-09-06 17:18:27 +02:00
♻️(dimail) refacto setup_dimail_db to call dimail client Management command "setup_dimail_db" called dimail directly, thus creating duplicated code. It now calls "create_domain" and "create_allow" methods from DimailAPIClient (create_user is left unchanged to create special users such as dimail admin or people)
2025-03-19 18:59:30 +01:00
def create_user(self, user_id):
"""Send a request to dimail, to create a new user there. In dimail, user ids are subs."""
✨(dimail) automate allows requests to dimail Automatically send user creation and allow creation requests to dimail upon creating domain access.
2024-11-20 19:14:48 +01:00
♻️(dimail) refacto setup_dimail_db to call dimail client Management command "setup_dimail_db" called dimail directly, thus creating duplicated code. It now calls "create_domain" and "create_allow" methods from DimailAPIClient (create_user is left unchanged to create special users such as dimail admin or people)
2025-03-19 18:59:30 +01:00
payload = {"name": user_id, "password": "no", "is_admin": "false", "perms": []}
✨(dimail) automate allows requests to dimail Automatically send user creation and allow creation requests to dimail upon creating domain access.
2024-11-20 19:14:48 +01:00
try:
response = session.post(
f"{self.API_URL}/users/",
headers={"Authorization": f"Basic {self.API_CREDENTIALS}"},
json=payload,
verify=True,
✨(api) define dimail timeout as a setting Allow to param dimail timeout for each env
2025-03-06 16:32:21 +01:00
timeout=self.API_TIMEOUT,
✨(dimail) automate allows requests to dimail Automatically send user creation and allow creation requests to dimail upon creating domain access.
2024-11-20 19:14:48 +01:00
)
except requests.exceptions.ConnectionError as error:
logger.error(
"Connection error while trying to reach %s.",
self.API_URL,
exc_info=error,
)
raise error
if response.status_code == status.HTTP_201_CREATED:
logger.info(
'[DIMAIL] User "%s" successfully created on dimail',
♻️(dimail) refacto setup_dimail_db to call dimail client Management command "setup_dimail_db" called dimail directly, thus creating duplicated code. It now calls "create_domain" and "create_allow" methods from DimailAPIClient (create_user is left unchanged to create special users such as dimail admin or people)
2025-03-19 18:59:30 +01:00
user_id,
✨(dimail) automate allows requests to dimail Automatically send user creation and allow creation requests to dimail upon creating domain access.
2024-11-20 19:14:48 +01:00
)
return response
if response.status_code == status.HTTP_409_CONFLICT:
logger.info(
'[DIMAIL] Attempt to create user "%s" which already exists.',
♻️(dimail) refacto setup_dimail_db to call dimail client Management command "setup_dimail_db" called dimail directly, thus creating duplicated code. It now calls "create_domain" and "create_allow" methods from DimailAPIClient (create_user is left unchanged to create special users such as dimail admin or people)
2025-03-19 18:59:30 +01:00
user_id,
✨(dimail) automate allows requests to dimail Automatically send user creation and allow creation requests to dimail upon creating domain access.
2024-11-20 19:14:48 +01:00
)
return response
return self.raise_exception_for_unexpected_response(response)
♻️(dimail) refacto setup_dimail_db to call dimail client Management command "setup_dimail_db" called dimail directly, thus creating duplicated code. It now calls "create_domain" and "create_allow" methods from DimailAPIClient (create_user is left unchanged to create special users such as dimail admin or people)
2025-03-19 18:59:30 +01:00
def create_allow(self, user_id, domain_name):
✨(dimail) automate allows requests to dimail Automatically send user creation and allow creation requests to dimail upon creating domain access.
2024-11-20 19:14:48 +01:00
"""Send a request to dimail for a new 'allow' between user and the domain."""
payload = {
♻️(dimail) refacto setup_dimail_db to call dimail client Management command "setup_dimail_db" called dimail directly, thus creating duplicated code. It now calls "create_domain" and "create_allow" methods from DimailAPIClient (create_user is left unchanged to create special users such as dimail admin or people)
2025-03-19 18:59:30 +01:00
"user": user_id,
✨(dimail) automate allows requests to dimail Automatically send user creation and allow creation requests to dimail upon creating domain access.
2024-11-20 19:14:48 +01:00
"domain": domain_name,
}
try:
response = session.post(
f"{self.API_URL}/allows/",
headers={"Authorization": f"Basic {self.API_CREDENTIALS}"},
json=payload,
verify=True,
✨(api) define dimail timeout as a setting Allow to param dimail timeout for each env
2025-03-06 16:32:21 +01:00
timeout=self.API_TIMEOUT,
✨(dimail) automate allows requests to dimail Automatically send user creation and allow creation requests to dimail upon creating domain access.
2024-11-20 19:14:48 +01:00
)
except requests.exceptions.ConnectionError as error:
logger.error(
"Connection error while trying to reach %s.",
self.API_URL,
exc_info=error,
)
raise error
if response.status_code == status.HTTP_201_CREATED:
logger.info(
'[DIMAIL] Permissions granted for user "%s" on domain %s.',
♻️(dimail) refacto setup_dimail_db to call dimail client Management command "setup_dimail_db" called dimail directly, thus creating duplicated code. It now calls "create_domain" and "create_allow" methods from DimailAPIClient (create_user is left unchanged to create special users such as dimail admin or people)
2025-03-19 18:59:30 +01:00
user_id,
✨(dimail) automate allows requests to dimail Automatically send user creation and allow creation requests to dimail upon creating domain access.
2024-11-20 19:14:48 +01:00
domain_name,
)
return response
if response.status_code == status.HTTP_409_CONFLICT:
logger.info(
'[DIMAIL] Attempt to create already existing permission between "%s" and "%s".',
♻️(dimail) refacto setup_dimail_db to call dimail client Management command "setup_dimail_db" called dimail directly, thus creating duplicated code. It now calls "create_domain" and "create_allow" methods from DimailAPIClient (create_user is left unchanged to create special users such as dimail admin or people)
2025-03-19 18:59:30 +01:00
user_id,
✨(dimail) automate allows requests to dimail Automatically send user creation and allow creation requests to dimail upon creating domain access.
2024-11-20 19:14:48 +01:00
domain_name,
)
return response
return self.raise_exception_for_unexpected_response(response)
♻️(dimail) rename some methods of DimailAPIClient Use more intuitive and shorter names for actions available in DimailAPIClient.
2024-11-20 17:56:27 +01:00
def raise_exception_for_unexpected_response(self, response):
♻️(dimail) refacto to better handle 500 errors from dimail simple refacto to catch all 500 errors, including when asking for new token.
2024-09-06 17:18:27 +02:00
"""Raise error when encountering an unexpected error in dimail."""
✨(dimail) fix domain creation request to fit latest dimail Adapt domain creationg request to latest protocol version, also make error reporting more robust: don't assume utf-8 but use the response's encoding, don't assume the error is JSON (it won't be when getting a 500) but reproduce the whole thing instead.
2024-11-07 18:22:40 +01:00
try:
💚(ci) also save Dimail logs from E2E test runs To help debug with Dimail interop, save logs from the Dimail container. Also fix the tests' expectations…
2024-11-12 14:42:44 +01:00
error_content = json.loads(
response.content.decode(response.encoding).replace("'", '"')
)
except json.decoder.JSONDecodeError:
✨(dimail) fix domain creation request to fit latest dimail Adapt domain creationg request to latest protocol version, also make error reporting more robust: don't assume utf-8 but use the response's encoding, don't assume the error is JSON (it won't be when getting a 500) but reproduce the whole thing instead.
2024-11-07 18:22:40 +01:00
error_content = response.content.decode(response.encoding)
♻️(dimail) refacto to better handle 500 errors from dimail simple refacto to catch all 500 errors, including when asking for new token.
2024-09-06 17:18:27 +02:00
✨(dimail) synchronize mailboxes from dimail to our db Synchronize mailboxes existing on dimail's api and not on our side, on domains we are administrating.
2024-10-09 17:18:38 +02:00
raise requests.exceptions.HTTPError(
🐛(dimail) enhance sentry log for dimail error Remove duplicate sentry log and fix failure if response content has an unexpected format
2025-03-27 15:41:00 +01:00
f"[DIMAIL] unexpected error: {response.status_code} {error_content}"
🐛(dimail) add status code in case of unexpected error add status code in case of unexpected error
2024-10-03 19:04:08 +02:00
)
✨(mailbox) send new mailbox confirmation email send mailbox information upon creating a new mailbox
2024-09-20 18:08:02 +02:00
🐛(mailbox) fix mailbox creation email language Don't forget to translate mail content before sending.
2025-03-09 23:55:00 +01:00
def notify_mailbox_creation(self, recipient, mailbox_data, issuer=None):
✨(mailbox) send new mailbox confirmation email send mailbox information upon creating a new mailbox
2024-09-20 18:08:02 +02:00
"""
Send email to confirm mailbox creation
and send new mailbox information.
"""
✨(dimail) add reset password method allow domain owner and admins to reset password for a mailbox they manage. The request is sent to dimail, which responds with a new randomly generated password. This new password is sent to secondary email.
2025-03-21 18:13:10 +01:00
title = _("Your new mailbox information")
template_name = "new_mailbox"
self._send_mailbox_related_email(
title, template_name, recipient, mailbox_data, issuer
)
def notify_mailbox_password_reset(self, recipient, mailbox_data, issuer=None):
"""
Send email to notify of password reset
and send new password.
"""
title = _("Your password has been updated")
template_name = "reset_password"
self._send_mailbox_related_email(
title, template_name, recipient, mailbox_data, issuer
)
# pylint: disable=too-many-arguments
# pylint: disable=too-many-positional-arguments
def _send_mailbox_related_email(
self, title, template_name, recipient, mailbox_data, issuer=None
):
"""
Send email with new mailbox or password reset information.
"""
context = {
"title": title,
"site": Site.objects.get_current(),
"webmail_url": settings.WEBMAIL_URL,
"mailbox_data": mailbox_data,
}
✨(mailbox) send new mailbox confirmation email send mailbox information upon creating a new mailbox
2024-09-20 18:08:02 +02:00
try:
🐛(mailbox) fix mailbox creation email language Don't forget to translate mail content before sending.
2025-03-09 23:55:00 +01:00
with override(issuer.language if issuer else settings.LANGUAGE_CODE):
mail.send_mail(
✨(dimail) add reset password method allow domain owner and admins to reset password for a mailbox they manage. The request is sent to dimail, which responds with a new randomly generated password. This new password is sent to secondary email.
2025-03-21 18:13:10 +01:00
context["title"],
render_to_string(f"mail/text/{template_name}.txt", context),
🐛(mailbox) fix mailbox creation email language Don't forget to translate mail content before sending.
2025-03-09 23:55:00 +01:00
settings.EMAIL_FROM,
[recipient],
✨(dimail) add reset password method allow domain owner and admins to reset password for a mailbox they manage. The request is sent to dimail, which responds with a new randomly generated password. This new password is sent to secondary email.
2025-03-21 18:13:10 +01:00
html_message=render_to_string(
f"mail/html/{template_name}.html", context
),
🐛(mailbox) fix mailbox creation email language Don't forget to translate mail content before sending.
2025-03-09 23:55:00 +01:00
fail_silently=False,
)
✨(mailbox) send new mailbox confirmation email send mailbox information upon creating a new mailbox
2024-09-20 18:08:02 +02:00
except smtplib.SMTPException as exception:
logger.error(
✨(dimail) add reset password method allow domain owner and admins to reset password for a mailbox they manage. The request is sent to dimail, which responds with a new randomly generated password. This new password is sent to secondary email.
2025-03-21 18:13:10 +01:00
"Failed to send mailbox information to %s was not sent: %s",
✨(mailbox) send new mailbox confirmation email send mailbox information upon creating a new mailbox
2024-09-20 18:08:02 +02:00
recipient,
exception,
)
✨(dimail) add reset password method allow domain owner and admins to reset password for a mailbox they manage. The request is sent to dimail, which responds with a new randomly generated password. This new password is sent to secondary email.
2025-03-21 18:13:10 +01:00
else:
logger.info(
"Information for mailbox %s sent to %s.",
mailbox_data["email"],
recipient,
)
✨(dimail) synchronize mailboxes from dimail to our db Synchronize mailboxes existing on dimail's api and not on our side, on domains we are administrating.
2024-10-09 17:18:38 +02:00
♻️(dimail) rename some methods of DimailAPIClient Use more intuitive and shorter names for actions available in DimailAPIClient.
2024-11-20 17:56:27 +01:00
def import_mailboxes(self, domain):
✨(mailbox) allow to disable mailbox We send a request to dimail API and change mailbox status to disabled. A disabled mailbox can no longer be used thus access to webmail is disabled for user.
2024-11-22 19:49:27 +01:00
"""Import mailboxes from dimail - open xchange in our database.
✨(dimail) synchronize mailboxes from dimail to our db Synchronize mailboxes existing on dimail's api and not on our side, on domains we are administrating.
2024-10-09 17:18:38 +02:00
This is useful in case of acquisition of a pre-existing mail domain.
Mailboxes created here are not new mailboxes and will not trigger mail notification."""
try:
response = session.get(
f"{self.API_URL}/domains/{domain.name}/mailboxes/",
headers=self.get_headers(),
verify=True,
✨(api) define dimail timeout as a setting Allow to param dimail timeout for each env
2025-03-06 16:32:21 +01:00
timeout=self.API_TIMEOUT,
✨(dimail) synchronize mailboxes from dimail to our db Synchronize mailboxes existing on dimail's api and not on our side, on domains we are administrating.
2024-10-09 17:18:38 +02:00
)
except requests.exceptions.ConnectionError as error:
logger.error(
"Connection error while trying to reach %s.",
self.API_URL,
exc_info=error,
)
raise error
if response.status_code != status.HTTP_200_OK:
♻️(dimail) rename some methods of DimailAPIClient Use more intuitive and shorter names for actions available in DimailAPIClient.
2024-11-20 17:56:27 +01:00
return self.raise_exception_for_unexpected_response(response)
✨(dimail) synchronize mailboxes from dimail to our db Synchronize mailboxes existing on dimail's api and not on our side, on domains we are administrating.
2024-10-09 17:18:38 +02:00
🐛(admin) fix mailbox import from dimail importing mailboxes from dimail was broken due to a change of format in dimail's response.
2025-08-28 15:15:08 +02:00
dimail_mailboxes = response.json()
✨(dimail) synchronize mailboxes from dimail to our db Synchronize mailboxes existing on dimail's api and not on our side, on domains we are administrating.
2024-10-09 17:18:38 +02:00
people_mailboxes = models.Mailbox.objects.filter(domain=domain)
imported_mailboxes = []
for dimail_mailbox in dimail_mailboxes:
if not dimail_mailbox["email"] in [
str(people_mailbox) for people_mailbox in people_mailboxes
]:
try:
# sometimes dimail api returns email from another domain,
# so we decide to exclude this kind of email
address = Address(addr_spec=dimail_mailbox["email"])
if address.domain == domain.name:
# creates a mailbox on our end
mailbox = models.Mailbox.objects.create(
first_name=dimail_mailbox["givenName"],
last_name=dimail_mailbox["surName"],
local_part=address.username,
domain=domain,
🐛(dimail) fix imported mailboxes should be enabled instead of pending Importing mailboxes creates pending mailboxes ... but these mailboxes are already active and, for most, functional. We thus mark them as "enabled".
2025-01-22 17:08:53 +01:00
status=enums.MailboxStatusChoices.ENABLED,
✨(oidc) add django-oauth-toolkit w/ configuration This allows to use `people` as an identity provider using OIDC and local users. This commit is partial, because it does not manage a way to create "local" users and the login page is the admin one, which can't be used for non staff users or login with email.
2025-01-14 11:43:42 +01:00
password=make_password(None), # unusable password
✨(dimail) synchronize mailboxes from dimail to our db Synchronize mailboxes existing on dimail's api and not on our side, on domains we are administrating.
2024-10-09 17:18:38 +02:00
)
imported_mailboxes.append(str(mailbox))
else:
logger.warning(
"Import of email %s failed because of a wrong domain",
dimail_mailbox["email"],
)
except (HeaderParseError, NonASCIILocalPartDefect) as err:
logger.warning(
"Import of email %s failed with error %s",
dimail_mailbox["email"],
err,
)
return imported_mailboxes
✨(mailbox) allow to disable mailbox We send a request to dimail API and change mailbox status to disabled. A disabled mailbox can no longer be used thus access to webmail is disabled for user.
2024-11-22 19:49:27 +01:00
♻️(dimail) refacto setup_dimail_db to call dimail client Management command "setup_dimail_db" called dimail directly, thus creating duplicated code. It now calls "create_domain" and "create_allow" methods from DimailAPIClient (create_user is left unchanged to create special users such as dimail admin or people)
2025-03-19 18:59:30 +01:00
def disable_mailbox(self, mailbox, request_user=None):
✨(mailbox) allow to disable mailbox We send a request to dimail API and change mailbox status to disabled. A disabled mailbox can no longer be used thus access to webmail is disabled for user.
2024-11-22 19:49:27 +01:00
"""Send a request to disable a mailbox to dimail API"""
response = session.patch(
f"{self.API_URL}/domains/{mailbox.domain.name}/mailboxes/{mailbox.local_part}",
json={"active": "no"},
🛂(dimail) simplify interop with dimail In this commit, we stop creating /users and /allows in dimail for our dbs to be in sync. People with stop impersonating users in dimail and will create mailboxes using its own credentials.
2025-04-14 16:05:31 +02:00
headers=self.get_headers(),
✨(mailbox) allow to disable mailbox We send a request to dimail API and change mailbox status to disabled. A disabled mailbox can no longer be used thus access to webmail is disabled for user.
2024-11-22 19:49:27 +01:00
verify=True,
✨(api) define dimail timeout as a setting Allow to param dimail timeout for each env
2025-03-06 16:32:21 +01:00
timeout=self.API_TIMEOUT,
✨(mailbox) allow to disable mailbox We send a request to dimail API and change mailbox status to disabled. A disabled mailbox can no longer be used thus access to webmail is disabled for user.
2024-11-22 19:49:27 +01:00
)
if response.status_code == status.HTTP_200_OK:
logger.info(
"Mailbox %s successfully desactivated on domain %s by user %s",
str(mailbox),
str(mailbox.domain),
♻️(dimail) refacto setup_dimail_db to call dimail client Management command "setup_dimail_db" called dimail directly, thus creating duplicated code. It now calls "create_domain" and "create_allow" methods from DimailAPIClient (create_user is left unchanged to create special users such as dimail admin or people)
2025-03-19 18:59:30 +01:00
request_user,
✨(mailbox) allow to disable mailbox We send a request to dimail API and change mailbox status to disabled. A disabled mailbox can no longer be used thus access to webmail is disabled for user.
2024-11-22 19:49:27 +01:00
)
return response
return self.raise_exception_for_unexpected_response(response)
✨(mailbox) allow to activate mailbox We send a request to dimail API and change mailbox status to enabled.
2024-11-26 12:26:54 +01:00
♻️(dimail) refacto setup_dimail_db to call dimail client Management command "setup_dimail_db" called dimail directly, thus creating duplicated code. It now calls "create_domain" and "create_allow" methods from DimailAPIClient (create_user is left unchanged to create special users such as dimail admin or people)
2025-03-19 18:59:30 +01:00
def enable_mailbox(self, mailbox, request_user=None):
✨(mailbox) allow to activate mailbox We send a request to dimail API and change mailbox status to enabled.
2024-11-26 12:26:54 +01:00
"""Send a request to enable a mailbox to dimail API"""
response = session.patch(
f"{self.API_URL}/domains/{mailbox.domain.name}/mailboxes/{mailbox.local_part}",
🐛(mailbox) fix activate mailbox feature Fix 422 Unprocessable Entity error returned by dimail because of some missing data sent.
2024-12-12 14:33:56 +01:00
json={
"active": "yes",
"givenName": mailbox.first_name,
"surName": mailbox.last_name,
"displayName": f"{mailbox.first_name} {mailbox.last_name}",
},
🛂(dimail) simplify interop with dimail In this commit, we stop creating /users and /allows in dimail for our dbs to be in sync. People with stop impersonating users in dimail and will create mailboxes using its own credentials.
2025-04-14 16:05:31 +02:00
headers=self.get_headers(),
✨(mailbox) allow to activate mailbox We send a request to dimail API and change mailbox status to enabled.
2024-11-26 12:26:54 +01:00
verify=True,
✨(api) define dimail timeout as a setting Allow to param dimail timeout for each env
2025-03-06 16:32:21 +01:00
timeout=self.API_TIMEOUT,
✨(mailbox) allow to activate mailbox We send a request to dimail API and change mailbox status to enabled.
2024-11-26 12:26:54 +01:00
)
if response.status_code == status.HTTP_200_OK:
logger.info(
"Mailbox %s successfully enabled on domain %s by user %s",
str(mailbox),
str(mailbox.domain),
♻️(dimail) refacto setup_dimail_db to call dimail client Management command "setup_dimail_db" called dimail directly, thus creating duplicated code. It now calls "create_domain" and "create_allow" methods from DimailAPIClient (create_user is left unchanged to create special users such as dimail admin or people)
2025-03-19 18:59:30 +01:00
request_user,
✨(mailbox) allow to activate mailbox We send a request to dimail API and change mailbox status to enabled.
2024-11-26 12:26:54 +01:00
)
return response
return self.raise_exception_for_unexpected_response(response)
✨(dimail) check domain health Call dimail to check if a domain still works. Turn domain into failure status if dimail returns broken state. And enable domain if dimail returns ok state.
2024-12-27 20:07:18 +01:00
✨(admin) send pending mailboxes from admin Provides an admin action to send all pending mailboxes for an active domain. This allows quick fixes when mailboxes fell out of sync.
2025-05-07 11:42:13 +02:00
def send_pending_mailboxes(self, domain):
"""Send requests for all pending mailboxes of a domain. Returns a list of failed mailboxes for this domain."""
failed_mailboxes = []
✨(dimail) send pending mailboxes upon domain activation send creation requests to dimail for all pending mailboxes when domain goes from "pending" to "enabled".
2025-01-10 18:25:07 +01:00
for mailbox in domain.mailboxes.filter(
status=enums.MailboxStatusChoices.PENDING
):
✨(admin) send pending mailboxes from admin Provides an admin action to send all pending mailboxes for an active domain. This allows quick fixes when mailboxes fell out of sync.
2025-05-07 11:42:13 +02:00
try:
response = self.create_mailbox(mailbox)
except requests.exceptions.HTTPError:
failed_mailboxes.append(str(mailbox))
✨(mailbox) remove secondary email as required field The secondary email address is no longer required for all creation processes and we should not force the user to provide and store an insecure email address.
2025-04-08 22:14:08 +02:00
else:
✨(admin) send pending mailboxes from admin Provides an admin action to send all pending mailboxes for an active domain. This allows quick fixes when mailboxes fell out of sync.
2025-05-07 11:42:13 +02:00
mailbox.status = enums.MailDomainStatusChoices.ENABLED
mailbox.save()
if mailbox.secondary_email and mailbox.secondary_email != str(mailbox):
# send confirmation email
self.notify_mailbox_creation(
recipient=mailbox.secondary_email,
mailbox_data=response.json(),
)
else:
logger.warning(
"Email notification for %s creation not sent "
"because no valid secondary email found",
mailbox,
)
return {"failed_mailboxes": failed_mailboxes}
✨(dimail) manage 'action required' status for MailDomain Adapt fetch domain status call to manage internal and external fixes required. Use the new status 'action required' to manage actions expected from support. Call a new dimail endpoint to run a fix for internal checks when all external checks are OK.
2025-02-04 13:26:15 +01:00
def check_domain(self, domain):
"""Send a request to dimail to check domain health."""
✨(domains) check status after creation Fetch domain status from dimail just after domain creation.
2025-02-12 18:48:22 +01:00
try:
response = session.get(
f"{self.API_URL}/domains/{domain.name}/check/",
headers={"Authorization": f"Basic {self.API_CREDENTIALS}"},
verify=True,
✨(api) define dimail timeout as a setting Allow to param dimail timeout for each env
2025-03-06 16:32:21 +01:00
timeout=self.API_TIMEOUT,
✨(domains) check status after creation Fetch domain status from dimail just after domain creation.
2025-02-12 18:48:22 +01:00
)
except requests.exceptions.ConnectionError as error:
logger.error(
"Connection error while trying to reach %s.",
self.API_URL,
exc_info=error,
)
✨(domains) allow to run all fetch domain data from dimail Fetch domain status and expected config from dimail.
2025-02-16 17:57:58 +01:00
raise error
✨(dimail) manage 'action required' status for MailDomain Adapt fetch domain status call to manage internal and external fixes required. Use the new status 'action required' to manage actions expected from support. Call a new dimail endpoint to run a fix for internal checks when all external checks are OK.
2025-02-04 13:26:15 +01:00
if response.status_code == status.HTTP_200_OK:
return response.json()
return self.raise_exception_for_unexpected_response(response)
def fix_domain(self, domain):
"""Send a request to dimail to fix a domain.
Allow to fix internal checks."""
response = session.get(
f"{self.API_URL}/domains/{domain.name}/fix/",
headers={"Authorization": f"Basic {self.API_CREDENTIALS}"},
verify=True,
✨(api) define dimail timeout as a setting Allow to param dimail timeout for each env
2025-03-06 16:32:21 +01:00
timeout=self.API_TIMEOUT,
✨(dimail) manage 'action required' status for MailDomain Adapt fetch domain status call to manage internal and external fixes required. Use the new status 'action required' to manage actions expected from support. Call a new dimail endpoint to run a fix for internal checks when all external checks are OK.
2025-02-04 13:26:15 +01:00
)
if response.status_code == status.HTTP_200_OK:
logger.info(
"Domain %s successfully fixed by dimail",
str(domain),
)
return response.json()
return self.raise_exception_for_unexpected_response(response)
def fetch_domain_status(self, domain):
"""Send a request to check and update status of a domain."""
dimail_response = self.check_domain(domain)
✨(domains) check status after creation Fetch domain status from dimail just after domain creation.
2025-02-12 18:48:22 +01:00
if dimail_response:
dimail_state = dimail_response["state"]
# if domain is not enabled and dimail returns ok status, enable it
if (
domain.status != enums.MailDomainStatusChoices.ENABLED
and dimail_state == "ok"
):
✨(admin) send pending mailboxes from admin Provides an admin action to send all pending mailboxes for an active domain. This allows quick fixes when mailboxes fell out of sync.
2025-05-07 11:42:13 +02:00
self.send_pending_mailboxes(domain)
✨(domains) check status after creation Fetch domain status from dimail just after domain creation.
2025-02-12 18:48:22 +01:00
domain.status = enums.MailDomainStatusChoices.ENABLED
✨(domains) store last check domain results Store results of last dimail check on a domain.
2025-02-10 12:21:58 +01:00
domain.last_check_details = dimail_response
✨(dimail) manage 'action required' status for MailDomain Adapt fetch domain status call to manage internal and external fixes required. Use the new status 'action required' to manage actions expected from support. Call a new dimail endpoint to run a fix for internal checks when all external checks are OK.
2025-02-04 13:26:15 +01:00
domain.save()
✨(domains) check status after creation Fetch domain status from dimail just after domain creation.
2025-02-12 18:48:22 +01:00
# if dimail returns broken status, we need to extract external and internal checks
# and manage the case where the domain has to be fixed by support
elif dimail_state == "broken":
✨(dimail) manage 'action required' status for MailDomain Adapt fetch domain status call to manage internal and external fixes required. Use the new status 'action required' to manage actions expected from support. Call a new dimail endpoint to run a fix for internal checks when all external checks are OK.
2025-02-04 13:26:15 +01:00
external_checks = self._get_dimail_checks(
dimail_response, internal=False
)
internal_checks = self._get_dimail_checks(
dimail_response, internal=True
)
✨(domains) check status after creation Fetch domain status from dimail just after domain creation.
2025-02-12 18:48:22 +01:00
# manage the case where the domain has to be fixed by support
if not all(external_checks.values()):
domain.status = enums.MailDomainStatusChoices.ACTION_REQUIRED
✨(domains) store last check domain results Store results of last dimail check on a domain.
2025-02-10 12:21:58 +01:00
domain.last_check_details = dimail_response
✨(dimail) manage 'action required' status for MailDomain Adapt fetch domain status call to manage internal and external fixes required. Use the new status 'action required' to manage actions expected from support. Call a new dimail endpoint to run a fix for internal checks when all external checks are OK.
2025-02-04 13:26:15 +01:00
domain.save()
✨(domains) check status after creation Fetch domain status from dimail just after domain creation.
2025-02-12 18:48:22 +01:00
# if all external checks are ok but not internal checks, we need to fix
# internal checks
✨(dimail) manage 'action required' status for MailDomain Adapt fetch domain status call to manage internal and external fixes required. Use the new status 'action required' to manage actions expected from support. Call a new dimail endpoint to run a fix for internal checks when all external checks are OK.
2025-02-04 13:26:15 +01:00
elif all(external_checks.values()) and not all(
internal_checks.values()
):
✨(domains) check status after creation Fetch domain status from dimail just after domain creation.
2025-02-12 18:48:22 +01:00
# a call to fix endpoint is needed because all external checks are ok
dimail_response = self.fix_domain(domain)
# we need to check again if all internal and external checks are ok
external_checks = self._get_dimail_checks(
dimail_response, internal=False
)
internal_checks = self._get_dimail_checks(
dimail_response, internal=True
)
if all(external_checks.values()) and all(internal_checks.values()):
domain.status = enums.MailDomainStatusChoices.ENABLED
domain.last_check_details = dimail_response
domain.save()
elif all(external_checks.values()) and not all(
internal_checks.values()
):
domain.status = enums.MailDomainStatusChoices.FAILED
domain.last_check_details = dimail_response
domain.save()
# if no health check data is stored on the domain, we store it now
if not domain.last_check_details:
domain.last_check_details = dimail_response
domain.save()
✨(domains) store last check domain results Store results of last dimail check on a domain.
2025-02-10 12:21:58 +01:00
✨(dimail) manage 'action required' status for MailDomain Adapt fetch domain status call to manage internal and external fixes required. Use the new status 'action required' to manage actions expected from support. Call a new dimail endpoint to run a fix for internal checks when all external checks are OK.
2025-02-04 13:26:15 +01:00
return dimail_response
def _get_dimail_checks(self, dimail_response, internal: bool):
checks = {
key: value
for key, value in dimail_response.items()
if isinstance(value, dict) and value.get("internal") is internal
}
return {key: value.get("ok", False) for key, value in checks.items()}
✨(domains) get domain expected config for DNS Call dimail to get DNS configuration values to make an external domain work and save it in our db. Add values to serializer for displaying.
2025-02-12 23:11:10 +01:00
def fetch_domain_expected_config(self, domain):
"""Send a request to dimail to get domain specification for DNS configuration."""
try:
response = session.get(
f"{self.API_URL}/domains/{domain.name}/spec/",
headers={"Authorization": f"Basic {self.API_CREDENTIALS}"},
verify=True,
✨(api) define dimail timeout as a setting Allow to param dimail timeout for each env
2025-03-06 16:32:21 +01:00
timeout=self.API_TIMEOUT,
✨(domains) get domain expected config for DNS Call dimail to get DNS configuration values to make an external domain work and save it in our db. Add values to serializer for displaying.
2025-02-12 23:11:10 +01:00
)
except requests.exceptions.ConnectionError as error:
logger.exception(
"Connection error while trying to reach %s.",
self.API_URL,
exc_info=error,
)
return []
if response.status_code == status.HTTP_200_OK:
# format the response to log an error if api response changed
try:
dimail_expected_config = [
{
"target": item["target"],
"type": item["type"],
"value": item["value"],
}
for item in response.json()
]
domain.expected_config = dimail_expected_config
domain.save()
return dimail_expected_config
except KeyError as error:
logger.exception(
"[DIMAIL] spec expected response format changed: %s",
error,
)
return []
else:
logger.exception(
"[DIMAIL] unexpected error : %s %s",
response.status_code,
response.content,
exc_info=False,
)
return []
✨(dimail) add reset password method allow domain owner and admins to reset password for a mailbox they manage. The request is sent to dimail, which responds with a new randomly generated password. This new password is sent to secondary email.
2025-03-21 18:13:10 +01:00
def reset_password(self, mailbox):
"""Send a request to reset mailbox password."""
if not mailbox.secondary_email or mailbox.secondary_email == str(mailbox):
raise exceptions.ValidationError(
"Password reset requires a secondary email address. Please add a valid secondary email before trying again."
)
try:
response = session.post(
f"{self.API_URL}/domains/{mailbox.domain.name}/mailboxes/{mailbox.local_part}/reset_password/",
🐛(dimail) fix broken auth while resetting passwords Dimail client's "reset password" method was using basic auth while dimail expects a token for this endpoint. Fixed it.
2025-05-16 18:47:33 +02:00
headers=self.get_headers(),
✨(dimail) add reset password method allow domain owner and admins to reset password for a mailbox they manage. The request is sent to dimail, which responds with a new randomly generated password. This new password is sent to secondary email.
2025-03-21 18:13:10 +01:00
verify=True,
timeout=self.API_TIMEOUT,
)
except requests.exceptions.ConnectionError as error:
logger.exception(
"Connection error while trying to reach %s.",
self.API_URL,
exc_info=error,
)
raise error
if response.status_code == status.HTTP_200_OK:
# send new password to secondary email
self.notify_mailbox_password_reset(
recipient=mailbox.secondary_email,
mailbox_data={
"email": response.json()["email"],
"password": response.json()["password"],
},
)
logger.info(
"[DIMAIL] Password reset on mailbox %s.",
mailbox,
)
return response
return self.raise_exception_for_unexpected_response(response)
Reference in New Issue Copy Permalink