2021-03-31 22:18:35 +02:00
|
|
|
use std::str::FromStr;
|
2020-05-03 17:41:53 +02:00
|
|
|
|
2020-07-14 18:00:09 +02:00
|
|
|
use chrono::{DateTime, Local};
|
2019-07-30 19:38:54 +02:00
|
|
|
use percent_encoding::{percent_encode, NON_ALPHANUMERIC};
|
2018-08-15 08:32:19 +02:00
|
|
|
|
2020-07-14 18:00:09 +02:00
|
|
|
use lettre::{
|
|
|
|
message::{header, Mailbox, Message, MultiPart, SinglePart},
|
|
|
|
transport::smtp::authentication::{Credentials, Mechanism as SmtpAuthMechanism},
|
2020-11-18 12:07:08 +01:00
|
|
|
transport::smtp::client::{Tls, TlsParameters},
|
2020-07-14 18:00:09 +02:00
|
|
|
transport::smtp::extension::ClientId,
|
2020-09-11 23:52:20 +02:00
|
|
|
Address, SmtpTransport, Transport,
|
2020-07-14 18:00:09 +02:00
|
|
|
};
|
|
|
|
|
|
|
|
use crate::{
|
|
|
|
api::EmptyResult,
|
|
|
|
auth::{encode_jwt, generate_delete_claims, generate_invite_claims, generate_verify_email_claims},
|
|
|
|
error::Error,
|
|
|
|
CONFIG,
|
|
|
|
};
|
2018-12-19 21:52:53 +01:00
|
|
|
|
2019-02-02 01:09:21 +01:00
|
|
|
fn mailer() -> SmtpTransport {
|
2020-09-11 23:52:20 +02:00
|
|
|
use std::time::Duration;
|
2019-02-02 01:09:21 +01:00
|
|
|
let host = CONFIG.smtp_host().unwrap();
|
|
|
|
|
2020-11-18 12:07:08 +01:00
|
|
|
let smtp_client = SmtpTransport::builder_dangerous(host.as_str())
|
|
|
|
.port(CONFIG.smtp_port())
|
|
|
|
.timeout(Some(Duration::from_secs(CONFIG.smtp_timeout())));
|
|
|
|
|
2020-09-11 23:52:20 +02:00
|
|
|
// Determine security
|
|
|
|
let smtp_client = if CONFIG.smtp_ssl() {
|
2020-11-18 12:07:08 +01:00
|
|
|
let mut tls_parameters = TlsParameters::builder(host);
|
|
|
|
if CONFIG.smtp_accept_invalid_hostnames() {
|
2021-03-04 18:55:12 +01:00
|
|
|
tls_parameters = tls_parameters.dangerous_accept_invalid_hostnames(true);
|
2020-11-18 12:07:08 +01:00
|
|
|
}
|
|
|
|
if CONFIG.smtp_accept_invalid_certs() {
|
2021-03-04 18:55:12 +01:00
|
|
|
tls_parameters = tls_parameters.dangerous_accept_invalid_certs(true);
|
2020-11-18 12:07:08 +01:00
|
|
|
}
|
|
|
|
let tls_parameters = tls_parameters.build().unwrap();
|
|
|
|
|
2019-03-10 14:44:42 +01:00
|
|
|
if CONFIG.smtp_explicit_tls() {
|
2020-11-18 12:07:08 +01:00
|
|
|
smtp_client.tls(Tls::Wrapper(tls_parameters))
|
2019-03-10 14:44:42 +01:00
|
|
|
} else {
|
2020-11-18 12:07:08 +01:00
|
|
|
smtp_client.tls(Tls::Required(tls_parameters))
|
2019-03-10 14:44:42 +01:00
|
|
|
}
|
2018-08-15 08:32:19 +02:00
|
|
|
} else {
|
2020-11-18 12:07:08 +01:00
|
|
|
smtp_client
|
2018-08-15 08:32:19 +02:00
|
|
|
};
|
|
|
|
|
2020-05-03 17:41:53 +02:00
|
|
|
let smtp_client = match (CONFIG.smtp_username(), CONFIG.smtp_password()) {
|
|
|
|
(Some(user), Some(pass)) => smtp_client.credentials(Credentials::new(user, pass)),
|
2018-10-04 00:01:04 +02:00
|
|
|
_ => smtp_client,
|
2018-08-15 17:00:55 +02:00
|
|
|
};
|
|
|
|
|
2020-07-05 01:59:15 +02:00
|
|
|
let smtp_client = match CONFIG.helo_name() {
|
2020-09-11 23:52:20 +02:00
|
|
|
Some(helo_name) => smtp_client.hello_name(ClientId::Domain(helo_name)),
|
2020-07-05 01:59:15 +02:00
|
|
|
None => smtp_client,
|
|
|
|
};
|
|
|
|
|
2020-03-14 22:30:50 +01:00
|
|
|
let smtp_client = match CONFIG.smtp_auth_mechanism() {
|
|
|
|
Some(mechanism) => {
|
2021-04-06 22:54:42 +02:00
|
|
|
let allowed_mechanisms = [SmtpAuthMechanism::Plain, SmtpAuthMechanism::Login, SmtpAuthMechanism::Xoauth2];
|
2020-09-12 21:47:24 +02:00
|
|
|
let mut selected_mechanisms = vec![];
|
|
|
|
for wanted_mechanism in mechanism.split(',') {
|
|
|
|
for m in &allowed_mechanisms {
|
2021-03-31 22:18:35 +02:00
|
|
|
if m.to_string().to_lowercase()
|
2021-04-06 22:54:42 +02:00
|
|
|
== wanted_mechanism.trim_matches(|c| c == '"' || c == '\'' || c == ' ').to_lowercase()
|
2021-03-31 22:18:35 +02:00
|
|
|
{
|
2020-09-14 20:47:46 +02:00
|
|
|
selected_mechanisms.push(*m);
|
2020-09-12 21:47:24 +02:00
|
|
|
}
|
|
|
|
}
|
2021-03-31 22:18:35 +02:00
|
|
|
}
|
2020-03-14 22:30:50 +01:00
|
|
|
|
2020-09-12 21:47:24 +02:00
|
|
|
if !selected_mechanisms.is_empty() {
|
|
|
|
smtp_client.authentication(selected_mechanisms)
|
|
|
|
} else {
|
|
|
|
// Only show a warning, and return without setting an actual authentication mechanism
|
2021-04-06 22:54:42 +02:00
|
|
|
warn!("No valid SMTP Auth mechanism found for '{}', using default values", mechanism);
|
2020-09-12 21:47:24 +02:00
|
|
|
smtp_client
|
2019-08-24 01:22:14 +02:00
|
|
|
}
|
2019-09-05 21:56:12 +02:00
|
|
|
}
|
2019-08-24 01:22:14 +02:00
|
|
|
_ => smtp_client,
|
|
|
|
};
|
|
|
|
|
2020-09-11 23:52:20 +02:00
|
|
|
smtp_client.build()
|
2018-08-15 08:32:19 +02:00
|
|
|
}
|
|
|
|
|
2019-02-10 19:12:34 +01:00
|
|
|
fn get_text(template_name: &'static str, data: serde_json::Value) -> Result<(String, String, String), Error> {
|
|
|
|
let (subject_html, body_html) = get_template(&format!("{}.html", template_name), &data)?;
|
|
|
|
let (_subject_text, body_text) = get_template(template_name, &data)?;
|
|
|
|
Ok((subject_html, body_html, body_text))
|
|
|
|
}
|
|
|
|
|
|
|
|
fn get_template(template_name: &str, data: &serde_json::Value) -> Result<(String, String), Error> {
|
|
|
|
let text = CONFIG.render_template(template_name, data)?;
|
2019-01-13 01:39:29 +01:00
|
|
|
let mut text_split = text.split("<!---------------->");
|
|
|
|
|
|
|
|
let subject = match text_split.next() {
|
|
|
|
Some(s) => s.trim().to_string(),
|
|
|
|
None => err!("Template doesn't contain subject"),
|
|
|
|
};
|
|
|
|
|
2020-09-11 23:52:20 +02:00
|
|
|
use newline_converter::unix2dos;
|
2019-01-13 01:39:29 +01:00
|
|
|
let body = match text_split.next() {
|
2020-09-11 23:52:20 +02:00
|
|
|
Some(s) => unix2dos(s.trim()).to_string(),
|
2019-01-13 01:39:29 +01:00
|
|
|
None => err!("Template doesn't contain body"),
|
|
|
|
};
|
|
|
|
|
|
|
|
Ok((subject, body))
|
|
|
|
}
|
|
|
|
|
2019-02-02 01:09:21 +01:00
|
|
|
pub fn send_password_hint(address: &str, hint: Option<String>) -> EmptyResult {
|
2019-01-13 01:39:29 +01:00
|
|
|
let template_name = if hint.is_some() {
|
2019-01-19 16:52:12 +01:00
|
|
|
"email/pw_hint_some"
|
2018-09-11 13:04:34 +02:00
|
|
|
} else {
|
2019-01-19 16:52:12 +01:00
|
|
|
"email/pw_hint_none"
|
2018-09-11 13:04:34 +02:00
|
|
|
};
|
2018-08-15 10:17:05 +02:00
|
|
|
|
2019-02-10 21:40:20 +01:00
|
|
|
let (subject, body_html, body_text) = get_text(template_name, json!({ "hint": hint, "url": CONFIG.domain() }))?;
|
2019-03-03 16:11:55 +01:00
|
|
|
|
2021-02-19 20:17:18 +01:00
|
|
|
send_email(address, &subject, body_html, body_text)
|
2019-01-04 16:32:51 +01:00
|
|
|
}
|
|
|
|
|
2019-11-25 06:28:49 +01:00
|
|
|
pub fn send_delete_account(address: &str, uuid: &str) -> EmptyResult {
|
2019-12-27 18:37:14 +01:00
|
|
|
let claims = generate_delete_claims(uuid.to_string());
|
2019-11-25 06:28:49 +01:00
|
|
|
let delete_token = encode_jwt(&claims);
|
|
|
|
|
|
|
|
let (subject, body_html, body_text) = get_text(
|
|
|
|
"email/delete_account",
|
|
|
|
json!({
|
|
|
|
"url": CONFIG.domain(),
|
|
|
|
"user_id": uuid,
|
|
|
|
"email": percent_encode(address.as_bytes(), NON_ALPHANUMERIC).to_string(),
|
|
|
|
"token": delete_token,
|
|
|
|
}),
|
|
|
|
)?;
|
|
|
|
|
2021-02-19 20:17:18 +01:00
|
|
|
send_email(address, &subject, body_html, body_text)
|
2019-11-25 06:28:49 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
pub fn send_verify_email(address: &str, uuid: &str) -> EmptyResult {
|
2019-12-27 18:37:14 +01:00
|
|
|
let claims = generate_verify_email_claims(uuid.to_string());
|
2019-11-25 06:28:49 +01:00
|
|
|
let verify_email_token = encode_jwt(&claims);
|
|
|
|
|
|
|
|
let (subject, body_html, body_text) = get_text(
|
|
|
|
"email/verify_email",
|
|
|
|
json!({
|
|
|
|
"url": CONFIG.domain(),
|
|
|
|
"user_id": uuid,
|
|
|
|
"email": percent_encode(address.as_bytes(), NON_ALPHANUMERIC).to_string(),
|
|
|
|
"token": verify_email_token,
|
|
|
|
}),
|
|
|
|
)?;
|
|
|
|
|
2021-02-19 20:17:18 +01:00
|
|
|
send_email(address, &subject, body_html, body_text)
|
2019-11-25 06:28:49 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
pub fn send_welcome(address: &str) -> EmptyResult {
|
|
|
|
let (subject, body_html, body_text) = get_text(
|
|
|
|
"email/welcome",
|
|
|
|
json!({
|
|
|
|
"url": CONFIG.domain(),
|
|
|
|
}),
|
|
|
|
)?;
|
|
|
|
|
2021-02-19 20:17:18 +01:00
|
|
|
send_email(address, &subject, body_html, body_text)
|
2019-11-25 06:28:49 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
pub fn send_welcome_must_verify(address: &str, uuid: &str) -> EmptyResult {
|
2019-12-27 18:37:14 +01:00
|
|
|
let claims = generate_verify_email_claims(uuid.to_string());
|
2019-11-25 06:28:49 +01:00
|
|
|
let verify_email_token = encode_jwt(&claims);
|
|
|
|
|
|
|
|
let (subject, body_html, body_text) = get_text(
|
|
|
|
"email/welcome_must_verify",
|
|
|
|
json!({
|
|
|
|
"url": CONFIG.domain(),
|
|
|
|
"user_id": uuid,
|
|
|
|
"token": verify_email_token,
|
|
|
|
}),
|
|
|
|
)?;
|
|
|
|
|
2021-02-19 20:17:18 +01:00
|
|
|
send_email(address, &subject, body_html, body_text)
|
2019-11-25 06:28:49 +01:00
|
|
|
}
|
|
|
|
|
2019-01-04 16:32:51 +01:00
|
|
|
pub fn send_invite(
|
|
|
|
address: &str,
|
2019-01-06 05:03:49 +01:00
|
|
|
uuid: &str,
|
|
|
|
org_id: Option<String>,
|
|
|
|
org_user_id: Option<String>,
|
2019-01-04 16:32:51 +01:00
|
|
|
org_name: &str,
|
2019-01-06 05:03:49 +01:00
|
|
|
invited_by_email: Option<String>,
|
2019-01-04 16:32:51 +01:00
|
|
|
) -> EmptyResult {
|
2019-01-06 05:03:49 +01:00
|
|
|
let claims = generate_invite_claims(
|
2019-01-13 01:39:29 +01:00
|
|
|
uuid.to_string(),
|
|
|
|
String::from(address),
|
|
|
|
org_id.clone(),
|
|
|
|
org_user_id.clone(),
|
2019-11-02 17:39:01 +01:00
|
|
|
invited_by_email,
|
2019-01-13 01:39:29 +01:00
|
|
|
);
|
2019-01-06 05:03:49 +01:00
|
|
|
let invite_token = encode_jwt(&claims);
|
2019-01-13 01:39:29 +01:00
|
|
|
|
2019-02-10 19:12:34 +01:00
|
|
|
let (subject, body_html, body_text) = get_text(
|
2019-01-19 16:52:12 +01:00
|
|
|
"email/send_org_invite",
|
2019-01-13 01:39:29 +01:00
|
|
|
json!({
|
2019-01-25 18:23:51 +01:00
|
|
|
"url": CONFIG.domain(),
|
2021-02-19 20:17:18 +01:00
|
|
|
"org_id": org_id.as_deref().unwrap_or("_"),
|
|
|
|
"org_user_id": org_user_id.as_deref().unwrap_or("_"),
|
2019-07-30 19:38:54 +02:00
|
|
|
"email": percent_encode(address.as_bytes(), NON_ALPHANUMERIC).to_string(),
|
2019-01-13 01:39:29 +01:00
|
|
|
"org_name": org_name,
|
|
|
|
"token": invite_token,
|
|
|
|
}),
|
|
|
|
)?;
|
2019-01-04 16:32:51 +01:00
|
|
|
|
2021-02-19 20:17:18 +01:00
|
|
|
send_email(address, &subject, body_html, body_text)
|
2019-01-04 16:32:51 +01:00
|
|
|
}
|
|
|
|
|
2019-02-02 01:09:21 +01:00
|
|
|
pub fn send_invite_accepted(new_user_email: &str, address: &str, org_name: &str) -> EmptyResult {
|
2019-02-10 19:12:34 +01:00
|
|
|
let (subject, body_html, body_text) = get_text(
|
2019-01-19 16:52:12 +01:00
|
|
|
"email/invite_accepted",
|
2019-01-13 01:39:29 +01:00
|
|
|
json!({
|
2019-01-25 18:23:51 +01:00
|
|
|
"url": CONFIG.domain(),
|
2019-01-13 01:39:29 +01:00
|
|
|
"email": new_user_email,
|
|
|
|
"org_name": org_name,
|
|
|
|
}),
|
|
|
|
)?;
|
2019-01-04 16:32:51 +01:00
|
|
|
|
2021-02-19 20:17:18 +01:00
|
|
|
send_email(address, &subject, body_html, body_text)
|
2019-01-04 16:32:51 +01:00
|
|
|
}
|
|
|
|
|
2019-02-02 01:09:21 +01:00
|
|
|
pub fn send_invite_confirmed(address: &str, org_name: &str) -> EmptyResult {
|
2019-02-10 19:12:34 +01:00
|
|
|
let (subject, body_html, body_text) = get_text(
|
2019-01-19 16:52:12 +01:00
|
|
|
"email/invite_confirmed",
|
2019-01-13 01:39:29 +01:00
|
|
|
json!({
|
2019-01-25 18:23:51 +01:00
|
|
|
"url": CONFIG.domain(),
|
2019-01-13 01:39:29 +01:00
|
|
|
"org_name": org_name,
|
|
|
|
}),
|
|
|
|
)?;
|
2019-01-04 16:32:51 +01:00
|
|
|
|
2021-02-19 20:17:18 +01:00
|
|
|
send_email(address, &subject, body_html, body_text)
|
2018-08-15 08:32:19 +02:00
|
|
|
}
|
2018-12-15 03:54:03 +01:00
|
|
|
|
2020-07-08 06:30:18 +02:00
|
|
|
pub fn send_new_device_logged_in(address: &str, ip: &str, dt: &DateTime<Local>, device: &str) -> EmptyResult {
|
2019-07-22 08:26:24 +02:00
|
|
|
use crate::util::upcase_first;
|
|
|
|
let device = upcase_first(device);
|
|
|
|
|
2020-12-12 07:47:54 +01:00
|
|
|
let fmt = "%A, %B %_d, %Y at %r %Z";
|
2019-07-22 08:26:24 +02:00
|
|
|
let (subject, body_html, body_text) = get_text(
|
|
|
|
"email/new_device_logged_in",
|
|
|
|
json!({
|
|
|
|
"url": CONFIG.domain(),
|
|
|
|
"ip": ip,
|
|
|
|
"device": device,
|
2020-12-12 07:47:54 +01:00
|
|
|
"datetime": crate::util::format_datetime_local(dt, fmt),
|
2019-07-22 08:26:24 +02:00
|
|
|
}),
|
|
|
|
)?;
|
|
|
|
|
2021-02-19 20:17:18 +01:00
|
|
|
send_email(address, &subject, body_html, body_text)
|
2019-07-22 08:26:24 +02:00
|
|
|
}
|
|
|
|
|
2019-08-03 08:07:14 +02:00
|
|
|
pub fn send_token(address: &str, token: &str) -> EmptyResult {
|
|
|
|
let (subject, body_html, body_text) = get_text(
|
|
|
|
"email/twofactor_email",
|
|
|
|
json!({
|
|
|
|
"url": CONFIG.domain(),
|
|
|
|
"token": token,
|
|
|
|
}),
|
|
|
|
)?;
|
|
|
|
|
2021-02-19 20:17:18 +01:00
|
|
|
send_email(address, &subject, body_html, body_text)
|
2019-08-03 08:07:14 +02:00
|
|
|
}
|
|
|
|
|
2019-11-25 06:28:49 +01:00
|
|
|
pub fn send_change_email(address: &str, token: &str) -> EmptyResult {
|
|
|
|
let (subject, body_html, body_text) = get_text(
|
|
|
|
"email/change_email",
|
|
|
|
json!({
|
|
|
|
"url": CONFIG.domain(),
|
|
|
|
"token": token,
|
|
|
|
}),
|
|
|
|
)?;
|
|
|
|
|
2021-02-19 20:17:18 +01:00
|
|
|
send_email(address, &subject, body_html, body_text)
|
2019-11-25 06:28:49 +01:00
|
|
|
}
|
|
|
|
|
2020-02-26 11:02:22 +01:00
|
|
|
pub fn send_test(address: &str) -> EmptyResult {
|
|
|
|
let (subject, body_html, body_text) = get_text(
|
|
|
|
"email/smtp_test",
|
|
|
|
json!({
|
|
|
|
"url": CONFIG.domain(),
|
|
|
|
}),
|
|
|
|
)?;
|
|
|
|
|
2021-02-19 20:17:18 +01:00
|
|
|
send_email(address, &subject, body_html, body_text)
|
2020-02-26 11:02:22 +01:00
|
|
|
}
|
|
|
|
|
2021-02-19 20:17:18 +01:00
|
|
|
fn send_email(address: &str, subject: &str, body_html: String, body_text: String) -> EmptyResult {
|
2020-01-30 22:11:53 +01:00
|
|
|
let address_split: Vec<&str> = address.rsplitn(2, '@').collect();
|
|
|
|
if address_split.len() != 2 {
|
|
|
|
err!("Invalid email address (no @)");
|
|
|
|
}
|
|
|
|
|
2020-01-30 22:33:50 +01:00
|
|
|
let domain_puny = match idna::domain_to_ascii_strict(address_split[0]) {
|
2020-01-30 22:11:53 +01:00
|
|
|
Ok(d) => d,
|
|
|
|
Err(_) => err!("Can't convert email domain to ASCII representation"),
|
|
|
|
};
|
|
|
|
|
2020-01-30 22:33:50 +01:00
|
|
|
let address = format!("{}@{}", address_split[1], domain_puny);
|
2020-01-30 22:11:53 +01:00
|
|
|
|
2021-01-31 20:07:42 +01:00
|
|
|
let html = SinglePart::builder()
|
|
|
|
// We force Base64 encoding because in the past we had issues with different encodings.
|
|
|
|
.header(header::ContentTransferEncoding::Base64)
|
2020-09-11 23:52:20 +02:00
|
|
|
.header(header::ContentType("text/html; charset=utf-8".parse()?))
|
2021-02-19 20:17:18 +01:00
|
|
|
.body(body_html);
|
2020-09-11 23:52:20 +02:00
|
|
|
|
2021-01-31 20:07:42 +01:00
|
|
|
let text = SinglePart::builder()
|
|
|
|
// We force Base64 encoding because in the past we had issues with different encodings.
|
|
|
|
.header(header::ContentTransferEncoding::Base64)
|
2020-09-11 23:52:20 +02:00
|
|
|
.header(header::ContentType("text/plain; charset=utf-8".parse()?))
|
2021-02-19 20:17:18 +01:00
|
|
|
.body(body_text);
|
2020-09-11 23:52:20 +02:00
|
|
|
|
2020-11-18 12:07:08 +01:00
|
|
|
let smtp_from = &CONFIG.smtp_from();
|
2020-05-03 17:41:53 +02:00
|
|
|
let email = Message::builder()
|
2021-04-06 22:54:42 +02:00
|
|
|
.message_id(Some(format!("<{}@{}>", crate::util::get_uuid(), smtp_from.split('@').collect::<Vec<&str>>()[1])))
|
2020-05-03 17:41:53 +02:00
|
|
|
.to(Mailbox::new(None, Address::from_str(&address)?))
|
2021-04-06 22:54:42 +02:00
|
|
|
.from(Mailbox::new(Some(CONFIG.smtp_from_name()), Address::from_str(smtp_from)?))
|
2020-05-03 17:41:53 +02:00
|
|
|
.subject(subject)
|
2021-03-31 22:18:35 +02:00
|
|
|
.multipart(MultiPart::alternative().singlepart(text).singlepart(html))?;
|
2019-03-07 20:21:10 +01:00
|
|
|
|
2020-09-14 20:47:46 +02:00
|
|
|
match mailer().send(&email) {
|
|
|
|
Ok(_) => Ok(()),
|
|
|
|
// Match some common errors and make them more user friendly
|
2021-03-22 20:00:57 +01:00
|
|
|
Err(e) => {
|
|
|
|
if e.is_client() {
|
2021-03-31 22:18:35 +02:00
|
|
|
err!(format!("SMTP Client error: {}", e));
|
2021-03-22 20:00:57 +01:00
|
|
|
} else if e.is_transient() {
|
|
|
|
err!(format!("SMTP 4xx error: {:?}", e));
|
|
|
|
} else if e.is_permanent() {
|
|
|
|
err!(format!("SMTP 5xx error: {:?}", e));
|
2021-03-31 22:18:35 +02:00
|
|
|
} else if e.is_timeout() {
|
2021-03-22 20:00:57 +01:00
|
|
|
err!(format!("SMTP timeout error: {:?}", e));
|
|
|
|
} else {
|
|
|
|
Err(e.into())
|
|
|
|
}
|
2020-09-14 20:47:46 +02:00
|
|
|
}
|
|
|
|
}
|
2019-01-13 01:39:29 +01:00
|
|
|
}
|