postfixadmin-3.2-bp152.3.13

- update to PostfixAdmin 3.2:
  - new directory layout (see below)
  - enable users to reset their passwords by mail or SMS
    ($CONF['forgotten_user_password_reset'],
    $CONF['forgotten_admin_password_reset'], $CONF['sms_send_function'])
  - allow local alias targets (without @domain)
  - add $CONF['edit_alias'] to disable "edit alias" function for users
  - add php_crypt $CONF["encrypt"] option
  - add support for MySQL connections over SSL
  - and more - see CHANGELOG.TXT for the full list
- move out of /srv/www/htdocs/postfixadmin - PHP code moved to
  /usr/share/postfixadmin/, smarty cache to /var/cache/postfixadmin/ and
  the config files to /etc/postfixadmin/ (no automated migration!)
- add apache config file to glue everything together. Note that the
  /postfixadmin alias is *not* enabled by default to avoid that it is
  active on all vhosts. Run "a2enflag POSTFIXADMIN" if you want that.
- adjust perl requirements for latest vacation.pl
- drop apache2-devel / httpd-devel BuildRequires - no longer needed with
  the new directory layout
- package /usr/bin/postfixadmin-cli symlink

- update to PostfixAdmin 3.1:
  - several broadcast improvements
  - better static DB connection cache to avoid hundreds of mysqli
    connections when doing lots of escape_string() calls
  - add favicon to fix session handling in chrome (#44)
  - various small fixes and improvements, see CHANGELOG.TXT

- update to PostfixAdmin 3.0.2:
  - SECURITY: don't allow to delete protected aliases (CVE-2017-5930, boo#1024211)
  - fix VacationHandler for PostgreSQL
  - AliasHandler: restrict mailbox subquery to allowed and specified domains
    to improve performance on setups with lots of mailboxes
  - allow switching between dovecot:* password schemes while still accepting
    passwords hashed using the previous dovecot:* scheme
  - FetchmailHandler: use a valid date as default for 'date'
  - fix date formatting in non-english languages when using PostgreSQL
  - various small fixes

- update to PostfixAdmin 3.0:
  - add sqlite backend option
  - add configurable smtp helo (CONF["smtp_client"])
  - new translation: ro (Romanian)
  - language update: tw, cs, de
  - fix escaping in gen_show_status() (could be used to DOS list-virtual by
    creating a mail address with special chars)
  - add CSRF protection for POST requests
  - list.tpl: base edit/editactive/delete links in list.tpl on $RAW_item to
    avoid double escaping, and fix some corner cases
  - fix db_quota_text() for postgresql (concat() vs. ||)
  - change default date for 'created' and 'updated' columns from 0000-00-00
    (which causes problems with MySQL strict mode) to 2000-01-01
  - allow punicode even in TLDs
  - update Smarty to 3.1.29
  - add checks to login.php and cli to ensure database layout is up to date
  - whitelist '-1' as valid value for postfixadmin-cli
  - don't stripslashes() the password in pacrypt
  - various small bugfixes
- drop patch postfixadmin-upstream-fixes-r1802-1817.diff (upstream)
- add Requires: perl(Encode), needed by vacation.pl

- add postfixadmin-upstream-fixes-r1802-1817.diff:
  fix escaping in gen_show_status() and double escaping in list.php
  (http://sourceforge.net/p/postfixadmin/bugs/356/)

- several fixes for the Fedora and CentOS build:
  - don't scan scripts in the ADDITIONS directory to avoid adding excessive
    dependencies
  - use centos_ver instead of centos_version (which isn't available in CentOS 7)
  - change docroot to /var/www/html
  - change apache group to "apache"

- update to PostfixAdmin 2.93 aka 3.0 beta3
  - add list.php for list view (replaces list-*.php and fixes some
    bugs they included)
  - add FetchmailHandler (replaces fetchmail.php)
  - several bugfixes and small improvements
  - see CHANGELOG.TXT for all details

- update to PostfixAdmin 2.92 aka 3.0 beta2
  - remove upstream postfixadmin-svn.diff and postfixadmin-svn2.diff
  - additional changes over the two patches: the version number ;-)

- add postfixadmin-svn2.diff with changes from upstream SVN (r1705):
  - add workaround for MariaDB to fix deleting aliases (bug#325)
  - $CONF[default_aliases] can now use the new domain as alias target (patch#124)
  - check that vacation start/end date are not in the past (patch#122)
  - update vacation INSTALL.TXT with more secure locations
  - update Smarty to 3.1.21
- make dependency on Zend Framework versioned - PostfixAdmin needs 1.x
  (2.x is totally different and incompatible)

- add postfixadmin-svn.diff with changes from upstream SVN (r1689):
  - AliasHandler: don't clean goto field when making alias inactive (bug#316)
  - list-virtual: display quota even if $CONF[used_quotas] == NO (bug#307)
  - vacation.pl: fix postgresql queries in vacation.pl (bug#315)
  - fix query in AliasHandler getList which caused an empty list on some
    systems (bug#313)
  - fetchmail.pl: fix ssl extra options (cert check, cert path, fingerprint)
  - fix logging (run setup.php to fix old log entries) (bug#317)
  - fetchmail.php: change error_reporting() to exclude E_NOTICE (bug#322)
  - fr.lang translation update (patch#123)
- make postfixadmin-cli executable

- update to PostfixAdmin 2.91 aka 3.0 beta1
  - new commandline client postfixadmin-cli
  - vacation start and end date
  - (nearly) complete rewrite to *Handler classes
  - smarty templates
  - and much more, see upstream CHANGELOG.TXT

- update to PostfixAdmin 2.3.7 (bugfix release)
  changes that were not included in the package yet:
  - SECURITY: fix SQL injection in show_gen_status() (CVE-2014-2655, bnc#870434)
  - don't trim() mail address to avoid that aliases starting with a space are
    allowed. This fixes http://sourceforge.net/p/postfixadmin/bugs/210/ and
    https://sourceforge.net/p/postfixadmin/feature-requests/113/
  - update regex in check_domain() to support new, longer TLDs like .international
  - vacation.pl: encode subject
  - vacation.pl: disable use of TLS by default due to a bug in Mail::Sender 0.8.22
    (you can re-enable it with $smtp_tls_allowed)
- remove postfixadmin-2.3-branch.diff

- rework pre section
  * if useradd -r then groupadd -r, too

- add postfixadmin-2.3-branch.diff with all changes between 2.3.6 release
  and SVN r1521:
  - lt.lang, da.lang translation update
  - when enabling/disabling a mailbox, also update the corresponding alias
  - fix creating superadmin in setup.php with MariaDB (more strict SQL)
  - trim() localpart in create-mailbox to avoid mailbox names with leading space
  - mark vacation_notification.notified field as latin1 to avoid overlong index

- update to PostfixAdmin 2.3.6 (bugfix release)
  changes that were not included in the package yet:
  - fix double inclusion of config.inc.php in setup.php
  - fix bool and date handling in fetchmail
- remove upstreamed patches

- more cross-distributin %if: pwdutils, php_any_db

- require php-mbstring as setup.php reports this as a hard dependency

- fix footer link (upstream r1402)
- focus username field in login form (upstream r1404)
- change existing vacation user (< 2012-02-13) to group vacation

- add some %if for cross-distribution handling

- add vacation user to the vacation group (instead of the default "users")