From 0c30b74935ea2f5f8a83a853c43694080f8a9c86 Mon Sep 17 00:00:00 2001 From: Simon Robinson Date: Wed, 12 Jul 2023 20:31:24 +0100 Subject: [PATCH 01/15] Consistent, clearer formatting of IPv4 vs. IPv6 addresses --- emailproxy.py | 67 ++++++++++++++++++++++++++++----------------------- 1 file changed, 37 insertions(+), 30 deletions(-) diff --git a/emailproxy.py b/emailproxy.py index 04f7fce..85f7cbd 100644 --- a/emailproxy.py +++ b/emailproxy.py @@ -6,7 +6,7 @@ __author__ = 'Simon Robinson' __copyright__ = 'Copyright (c) 2023 Simon Robinson' __license__ = 'Apache 2.0' -__version__ = '2023-07-11' # ISO 8601 (YYYY-MM-DD) +__version__ = '2023-07-12' # ISO 8601 (YYYY-MM-DD) import abc import argparse @@ -275,6 +275,14 @@ def error(*args): def error_string(error): return getattr(error, 'message', repr(error)) + @staticmethod + def format_host_port(address): + host, port, *_ = address + with contextlib.suppress(ValueError): + ip = ipaddress.ip_address(host) + host = '[%s]' % host if type(ip) is ipaddress.IPv6Address else host + return '%s:%d' % (host, port) + @staticmethod def get_last_error(): error_type, value, _traceback = sys.exc_info() @@ -758,13 +766,13 @@ def start_redirection_receiver_server(token_request): redirect_listen_type = 'redirect_listen_address' if token_request['redirect_listen_address'] else 'redirect_uri' parsed_uri = urllib.parse.urlparse(token_request[redirect_listen_type]) parsed_port = 80 if parsed_uri.port is None else parsed_uri.port - Log.debug('Local server auth mode (%s:%d): starting server to listen for authentication response' % ( - parsed_uri.hostname, parsed_port)) + Log.debug('Local server auth mode (%s): starting server to listen for authentication response' % + Log.format_host_port((parsed_uri.hostname, parsed_port))) class LoggingWSGIRequestHandler(wsgiref.simple_server.WSGIRequestHandler): def log_message(self, _format_string, *args): - Log.debug('Local server auth mode (%s:%d): received authentication response' % ( - parsed_uri.hostname, parsed_port), *args) + Log.debug('Local server auth mode (%s): received authentication response' % Log.format_host_port( + (parsed_uri.hostname, parsed_port)), *args) class RedirectionReceiverWSGIApplication: def __call__(self, environ, start_response): @@ -790,20 +798,22 @@ def __call__(self, environ, start_response): redirection_server.server_close() if 'response_url' in token_request: - Log.debug('Local server auth mode (%s:%d): closing local server and returning response' % ( - parsed_uri.hostname, parsed_port), token_request['response_url']) + Log.debug('Local server auth mode (%s): closing local server and returning response' % + Log.format_host_port((parsed_uri.hostname, parsed_port)), token_request['response_url']) else: # failed, likely because of an incorrect address (e.g., https vs http), but can also be due to timeout - Log.info('Local server auth mode (%s:%d):' % (parsed_uri.hostname, parsed_port), 'request failed - if', - 'this error reoccurs, please check `%s` for' % redirect_listen_type, token_request['username'], - 'is not specified as `https` mistakenly. See the sample configuration file for documentation') + Log.info('Local server auth mode (%s):' % Log.format_host_port((parsed_uri.hostname, parsed_port)), + 'request failed - if this error reoccurs, please check `%s` for' % redirect_listen_type, + token_request['username'], 'is not specified as `https` mistakenly. See the sample ' + 'configuration file for documentation') token_request['expired'] = True except socket.error as e: - Log.error('Local server auth mode (%s:%d):' % (parsed_uri.hostname, parsed_port), 'unable to start local', - 'server. Please check that `%s` for %s is unique across accounts, specifies a port number, and ' - 'is not already in use. See the documentation in the proxy\'s sample configuration file.' % ( - redirect_listen_type, token_request['username']), Log.error_string(e)) + Log.error('Local server auth mode (%s):' % Log.format_host_port((parsed_uri.hostname, parsed_port)), + 'unable to start local server. Please check that `%s` for %s is unique across accounts, ' + 'specifies a port number, and is not already in use. See the documentation in the proxy\'s ' + 'sample configuration file.' % (redirect_listen_type, token_request['username']), + Log.error_string(e)) token_request['expired'] = True del token_request['local_server_auth'] @@ -1114,11 +1124,11 @@ def __init__(self, proxy_type, connection, socket_map, connection_info, server_c bool(custom_configuration['local_certificate_path'] and custom_configuration['local_key_path'])) def info_string(self): - debug_string = '; %s:%d->%s:%d' % (self.connection_info[0], self.connection_info[1], self.server_address[0], - self.server_address[1]) if Log.get_level() == logging.DEBUG else '' + debug_string = '; %s->%s' % (Log.format_host_port(self.connection_info), Log.format_host_port( + self.server_address)) if Log.get_level() == logging.DEBUG else '' account = '; %s' % self.server_connection.authenticated_username if \ self.server_connection and self.server_connection.authenticated_username else '' - return '%s (%s:%d%s%s)' % (self.proxy_type, self.local_address[0], self.local_address[1], debug_string, account) + return '%s (%s%s%s)' % (self.proxy_type, Log.format_host_port(self.local_address), debug_string, account) def handle_read(self): byte_data = self.recv(RECEIVE_BUFFER_SIZE) @@ -1521,10 +1531,10 @@ def create_socket(self, socket_family=socket.AF_UNSPEC, socket_type=socket.SOCK_ return def info_string(self): - debug_string = '; %s:%d->%s:%d' % (self.connection_info[0], self.connection_info[1], self.server_address[0], - self.server_address[1]) if Log.get_level() == logging.DEBUG else '' + debug_string = '; %s->%s' % (Log.format_host_port(self.connection_info), Log.format_host_port( + self.server_address)) if Log.get_level() == logging.DEBUG else '' account = '; %s' % self.authenticated_username if self.authenticated_username else '' - return '%s (%s:%d%s%s)' % (self.proxy_type, self.local_address[0], self.local_address[1], debug_string, account) + return '%s (%s%s%s)' % (self.proxy_type, Log.format_host_port(self.local_address), debug_string, account) def handle_connect(self): Log.debug(self.info_string(), '--> [ Client connected ]') @@ -1861,9 +1871,9 @@ def __init__(self, proxy_type, local_address, server_address, custom_configurati self.client_connections = [] def info_string(self): - return '%s server at %s:%d (%s) proxying %s:%d (%s)' % ( - self.proxy_type, self.local_address[0], self.local_address[1], - 'TLS' if self.ssl_connection else 'unsecured', self.server_address[0], self.server_address[1], + return '%s server at %s (%s) proxying %s (%s)' % ( + self.proxy_type, Log.format_host_port(self.local_address), + 'TLS' if self.ssl_connection else 'unsecured', Log.format_host_port(self.server_address), 'STARTTLS' if self.custom_configuration['starttls'] else 'SSL/TLS') def handle_accept(self): @@ -2373,13 +2383,10 @@ def get_config_menu_servers(proxies, server_type): if not heading_appended: items.append(pystray.MenuItem('%s servers:' % server_type, None, enabled=False)) heading_appended = True - formatted_host = proxy.local_address[0] - with contextlib.suppress(ValueError): - ip = ipaddress.ip_address(formatted_host) - formatted_host = '[%s]' % formatted_host if type(ip) is ipaddress.IPv6Address else formatted_host - items.append(pystray.MenuItem('%s %s:%d ➝ %s:%d' % ( - ('Y_SSL' if proxy.ssl_connection else 'N_SSL') if sys.platform == 'darwin' else '', formatted_host, - proxy.local_address[1], proxy.server_address[0], proxy.server_address[1]), None, enabled=False)) + items.append(pystray.MenuItem('%s %s ➝ %s' % ( + ('Y_SSL' if proxy.ssl_connection else 'N_SSL') if sys.platform == 'darwin' else '', + Log.format_host_port(proxy.local_address), Log.format_host_port(proxy.server_address)), + None, enabled=False)) if heading_appended: items.append(pystray.Menu.SEPARATOR) return items From 4c5ede348eae3922c8d4e6e35bcdf55fa9aa979d Mon Sep 17 00:00:00 2001 From: Simon Robinson Date: Fri, 14 Jul 2023 20:52:02 +0530 Subject: [PATCH 02/15] Ensure the GUI menu updates when new catch-all accounts are seen Closes #175 --- emailproxy.py | 8 +++++++- 1 file changed, 7 insertions(+), 1 deletion(-) diff --git a/emailproxy.py b/emailproxy.py index 85f7cbd..9b5faa0 100644 --- a/emailproxy.py +++ b/emailproxy.py @@ -6,7 +6,7 @@ __author__ = 'Simon Robinson' __copyright__ = 'Copyright (c) 2023 Simon Robinson' __license__ = 'Apache 2.0' -__version__ = '2023-07-12' # ISO 8601 (YYYY-MM-DD) +__version__ = '2023-07-14' # ISO 8601 (YYYY-MM-DD) import abc import argparse @@ -159,6 +159,7 @@ class NSObject: RESPONSE_QUEUE = queue.Queue() # responses from user WEBVIEW_QUEUE = queue.Queue() # authentication window events (macOS only) QUEUE_SENTINEL = object() # object to send to signify queues should exit loops +MENU_UPDATE = object() # object to send to trigger a force-refresh of the GUI menu (new catch-all account added) PLIST_FILE_PATH = pathlib.Path('~/Library/LaunchAgents/%s.plist' % APP_PACKAGE).expanduser() # launchctl file location CMD_FILE_PATH = pathlib.Path('~/AppData/Roaming/Microsoft/Windows/Start Menu/Programs/Startup/%s.cmd' % @@ -681,6 +682,7 @@ def get_account_with_catch_all_fallback(option): access_token = response['access_token'] if not config.has_section(username): AppConfig.add_account(username) # in wildcard mode the section may not yet exist + REQUEST_QUEUE.put(MENU_UPDATE) # make sure the menu shows the newly-added account config.set(username, 'token_salt', token_salt) config.set(username, 'access_token', OAuth2Helper.encrypt(fernet, access_token)) config.set(username, 'access_token_expiry', str(current_time + response['expires_in'])) @@ -2881,6 +2883,10 @@ def post_create(self, icon): data = REQUEST_QUEUE.get() # note: blocking call if data is QUEUE_SENTINEL: # app is closing break + if data is MENU_UPDATE: + if icon: + icon.update_menu() + break if not data['expired']: Log.info('Authorisation request received for', data['username'], '(local server auth mode)' if self.args.local_server_auth else '(external auth mode)' if From 56c4d7beb03faec96d96c395534256daebabb00d Mon Sep 17 00:00:00 2001 From: Simon Robinson Date: Thu, 10 Aug 2023 08:55:55 +0100 Subject: [PATCH 03/15] Catch additional connection errors; update Docker sample link Closes #186 --- README.md | 4 ++-- emailproxy.py | 7 ++++--- 2 files changed, 6 insertions(+), 5 deletions(-) diff --git a/README.md b/README.md index 2aec9ec..8b3299f 100644 --- a/README.md +++ b/README.md @@ -73,7 +73,7 @@ See the [sample configuration file](emailproxy.config) for further details. ## Optional arguments and configuration When starting the proxy there are several optional arguments that can be set to customise its behaviour. -- `--no-gui` will launch the proxy without an icon, which allows it to be run as a `systemctl` service as demonstrated in [this example](https://github.com/simonrob/email-oauth2-proxy/issues/2#issuecomment-839713677), or fully headless as demonstrated in [various](https://github.com/michaelstepner/email-oauth2-proxy-aws) [other](https://github.com/interone-ms/email-oauth2-proxy/commits/feature/docker-build) subprojects. +- `--no-gui` will launch the proxy without an icon, which allows it to be run as a `systemctl` service as demonstrated in [this example](https://github.com/simonrob/email-oauth2-proxy/issues/2#issuecomment-839713677), or fully headless as demonstrated in [various](https://github.com/michaelstepner/email-oauth2-proxy-aws) [other](https://github.com/blacktirion/email-oauth2-proxy-docker) subprojects. Please note that on its own this mode is only of use if you have already authorised your accounts through the proxy in GUI mode, or are importing a pre-authorised proxy configuration file from elsewhere. Unless this option is used in conjunction with `--external-auth` or `--local-server-auth`, accounts that have not yet been authorised (or for whatever reason require re-authorisation) will time out when authenticating, and an error will be printed to the log. @@ -230,7 +230,7 @@ See the documentation and examples in this branch for further details, additiona ## Related projects and alternatives Michael Stepner has created a [Terraform configuration](https://github.com/michaelstepner/email-oauth2-proxy-aws) that helps run this proxy on a lightweight cloud server (AWS EC2). Thiago Macieira has provided a [makefile and systemd configuration files](https://github.com/thiagomacieira/email-oauth2-proxy/tree/Add_a_Makefile_and_systemd_configuration_files_to_install_system_wide). -For Docker, interone-ms has provided an [example configuration](https://github.com/interone-ms/email-oauth2-proxy/commits/feature/docker-build) (though please note that the fork is otherwise outdated, and it is better to use this repository for the proxy script itself). +For Docker, blacktirion has an [example configuration](https://github.com/blacktirion/email-oauth2-proxy-docker). If you already use postfix, the [sasl-xoauth2](https://github.com/tarickb/sasl-xoauth2) plugin is probably a better solution than running this proxy. Similarly, if you use an application that is able to handle OAuth 2.0 tokens but just cannot retrieve them itself, then [pizauth](https://github.com/ltratt/pizauth), [mailctl](https://github.com/pdobsan/mailctl) or [oauth-helper-office-365](https://github.com/ahrex/oauth-helper-office-365) may be more appropriate. diff --git a/emailproxy.py b/emailproxy.py index 9b5faa0..fc35e56 100644 --- a/emailproxy.py +++ b/emailproxy.py @@ -6,7 +6,7 @@ __author__ = 'Simon Robinson' __copyright__ = 'Copyright (c) 2023 Simon Robinson' __license__ = 'Apache 2.0' -__version__ = '2023-07-14' # ISO 8601 (YYYY-MM-DD) +__version__ = '2023-08-10' # ISO 8601 (YYYY-MM-DD) import abc import argparse @@ -1610,9 +1610,10 @@ def handle_error(self): error_type, value = Log.get_last_error() if error_type == TimeoutError and value.errno == errno.ETIMEDOUT or \ issubclass(error_type, ConnectionError) and value.errno in [errno.ECONNRESET, errno.ECONNREFUSED] or \ - error_type == OSError and value.errno in [0, errno.ENETDOWN, errno.EHOSTUNREACH]: + error_type == OSError and value.errno in [0, errno.ENETDOWN, errno.EHOSTDOWN, errno.EHOSTUNREACH]: # TimeoutError 60 = 'Operation timed out'; ConnectionError 54 = 'Connection reset by peer', 61 = 'Connection - # refused; OSError 0 = 'Error' (typically network failure), 50 = 'Network is down', 65 = 'No route to host' + # refused; OSError 0 = 'Error' (typically network failure), 50 = 'Network is down', 64 = 'Host is down'; + # 65 = 'No route to host' Log.info(self.info_string(), 'Caught network error (server) - is there a network connection?', 'Error type', error_type, 'with message:', value) self.close() From f7b165e8b0c51fb1cd59c402550f9cf4c991af3e Mon Sep 17 00:00:00 2001 From: Simon Robinson Date: Thu, 10 Aug 2023 19:37:50 +0100 Subject: [PATCH 04/15] Add hint about encryption mismatch Note: this is not triggered in all cases, and depends on client behaviour (e.g., Geary triggers this; `openssl s_client` does not) See #185 --- README.md | 3 +++ emailproxy.py | 5 ++++- 2 files changed, 7 insertions(+), 1 deletion(-) diff --git a/README.md b/README.md index 8b3299f..9e39fd3 100644 --- a/README.md +++ b/README.md @@ -171,6 +171,9 @@ This can be achieved using `telnet`, [PuTTY](https://www.chiark.greenend.org.uk/ For example, to test the Office 365 IMAP server from the [example configuration](emailproxy.config), first open a connection using `telnet localhost 1993`, and then send a login command: `a1 login e@mail.com password`, replacing `e@mail.com` with your email address, and `password` with any value you like during testing (see above for why the password is irrelevant). If you have already authorised your account with the proxy you should see a response starting with `a1 OK`; if not, this command should trigger a notification from the proxy about authorising your account. +If you are using a [secure local connection](emailproxy.config) the interaction with the remote email server is the same as above, but you will need to use a local debugging tool that supports encryption. +The easiest approach here is to use [OpenSSL](https://www.openssl.org/): `openssl s_client -crlf -connect localhost:1993`. + If you are having trouble actually connecting to the proxy, it is always worth double-checking the `local_address` that you are using. The proxy defaults to `::` for this parameter, which in most cases resolves to `localhost` for both IPv4 and IPv6 configurations, but it is possible that this differs depending on your environment. If you are unable to connect to the proxy from your client, it is worth setting this value explicitly – see the [sample configuration file](emailproxy.config) for further details about how to do this. diff --git a/emailproxy.py b/emailproxy.py index fc35e56..c280ca8 100644 --- a/emailproxy.py +++ b/emailproxy.py @@ -1205,7 +1205,10 @@ def log_info(self, message, message_type='info'): def handle_close(self): error_type, value = Log.get_last_error() if error_type and value: - Log.info(self.info_string(), 'Caught connection error (client) -', error_type.__name__, ':', value) + message = 'Caught connection error (client)' + if error_type == ConnectionResetError: + message = '%s [ Are you attempting an encrypted connection to a non-encrypted server? ]' % message + Log.info(self.info_string(), message, '-', error_type.__name__, ':', value) self.close() def close(self): From bb93f2e092e5a3409781e0b24b390d04061f5f87 Mon Sep 17 00:00:00 2001 From: Simon Robinson Date: Fri, 11 Aug 2023 20:39:05 +0100 Subject: [PATCH 05/15] Work around pystray issue; suppress unnecessary warning --- emailproxy.py | 9 ++++++--- 1 file changed, 6 insertions(+), 3 deletions(-) diff --git a/emailproxy.py b/emailproxy.py index c280ca8..5f4de88 100644 --- a/emailproxy.py +++ b/emailproxy.py @@ -6,7 +6,7 @@ __author__ = 'Simon Robinson' __copyright__ = 'Copyright (c) 2023 Simon Robinson' __license__ = 'Apache 2.0' -__version__ = '2023-08-10' # ISO 8601 (YYYY-MM-DD) +__version__ = '2023-08-11' # ISO 8601 (YYYY-MM-DD) import abc import argparse @@ -68,8 +68,10 @@ no_gui_parser.add_argument('--external-auth', action='store_true') no_gui_args = no_gui_parser.parse_known_args()[0] if not no_gui_args.no_gui: - # noinspection PyDeprecation - import pkg_resources # from setuptools - to be changed to importlib.metadata and packaging.version once 3.8 is min. + with warnings.catch_warnings(): + warnings.simplefilter('ignore', DeprecationWarning) + # noinspection PyDeprecation + import pkg_resources # from setuptools - to change to importlib.metadata and packaging.version once min. is 3.8 import pystray # the menu bar/taskbar GUI import timeago # the last authenticated activity hint from PIL import Image, ImageDraw, ImageFont # draw the menu bar icon from the TTF font stored in APP_ICON @@ -2286,6 +2288,7 @@ def macos_nsworkspace_notification_listener_(self, notification): self.exit(self.icon) def create_icon(self): + Image.ANTIALIAS = Image.LANCZOS # temporary fix for pystray incompatibility with PIL >= 10.0.0 icon_class = RetinaIcon if sys.platform == 'darwin' else pystray.Icon return icon_class(APP_NAME, App.get_image(), APP_NAME, menu=pystray.Menu( pystray.MenuItem('Servers and accounts', pystray.Menu(self.create_config_menu)), From c9f54ced678f712a8d80abe1bf8ba876e9d37bd9 Mon Sep 17 00:00:00 2001 From: Simon Robinson Date: Wed, 16 Aug 2023 18:10:03 +0100 Subject: [PATCH 06/15] Add locking wrapper to ConfigParser --- emailproxy.py | 121 +++++++++++++++++++++++++++++++------------------- 1 file changed, 75 insertions(+), 46 deletions(-) diff --git a/emailproxy.py b/emailproxy.py index 5f4de88..bf3a0aa 100644 --- a/emailproxy.py +++ b/emailproxy.py @@ -6,7 +6,7 @@ __author__ = 'Simon Robinson' __copyright__ = 'Copyright (c) 2023 Simon Robinson' __license__ = 'Apache 2.0' -__version__ = '2023-08-11' # ISO 8601 (YYYY-MM-DD) +__version__ = '2023-08-16' # ISO 8601 (YYYY-MM-DD) import abc import argparse @@ -405,16 +405,61 @@ def save(store_id, config_dict, create_secret=True): Log.error('Unable to get AWS SDK client; cannot cache credentials to AWS Secrets Manager') +class ConcurrentConfigParser: + """Add locking to a ConfigParser object""" + + def __init__(self): + self.config = configparser.ConfigParser() + self.lock = threading.Lock() + + def read(self, filename): + with self.lock: + self.config.read(filename) + + def sections(self): + with self.lock: + return self.config.sections() + + def add_section(self, section): + with self.lock: + self.config.add_section(section) + + def get(self, section, option, fallback=None): + with self.lock: + if not self.config.has_section(section): + return fallback + return self.config.get(section, option, fallback=fallback) + + def getint(self, section, option, fallback=None): + with self.lock: + return self.config.getint(section, option, fallback=fallback) + + def getboolean(self, section, option, fallback=None): + with self.lock: + return self.config.getboolean(section, option, fallback=fallback) + + def set(self, section, option, value): + with self.lock: + if not self.config.has_section(section): + self.config.add_section(section) + self.config.set(section, option, value) + + def remove_option(self, section, option): + with self.lock: + if self.config.has_option(section, option): + self.config.remove_option(section, option) + + def write(self, file): + with self.lock: + self.config.write(file) + + class AppConfig: """Helper wrapper around ConfigParser to cache servers/accounts, and avoid writing to the file until necessary""" _PARSER = None _LOADED = False - _GLOBALS = None - _SERVERS = [] - _ACCOUNTS = [] - # note: removing the unencrypted version of `client_secret_encrypted` is not automatic with --cache-store (see docs) _CACHED_OPTION_KEYS = ['token_salt', 'access_token', 'access_token_expiry', 'refresh_token', 'last_activity', 'client_secret_encrypted'] @@ -425,20 +470,15 @@ class AppConfig: @staticmethod def _load(): AppConfig.unload() - AppConfig._PARSER = configparser.ConfigParser() + AppConfig._PARSER = ConcurrentConfigParser() AppConfig._PARSER.read(CONFIG_FILE_PATH) - config_sections = AppConfig._PARSER.sections() - if APP_SHORT_NAME in config_sections: - AppConfig._GLOBALS = AppConfig._PARSER[APP_SHORT_NAME] - else: - AppConfig._GLOBALS = configparser.SectionProxy(AppConfig._PARSER, APP_SHORT_NAME) - # cached account credentials can be stored in the configuration file (default) or, via `--cache-store`, a # separate local file or external service (such as a secrets manager) - we combine these sources at load time if CACHE_STORE != CONFIG_FILE_PATH: # it would be cleaner to avoid specific options here, but best to load unexpected sections only when enabled - allow_catch_all_accounts = AppConfig._GLOBALS.getboolean('allow_catch_all_accounts', fallback=False) + allow_catch_all_accounts = AppConfig._PARSER.getboolean(APP_SHORT_NAME, 'allow_catch_all_accounts', + fallback=False) cache_file_parser = AppConfig._load_cache(CACHE_STORE) cache_file_accounts = [s for s in cache_file_parser.sections() if '@' in s] @@ -449,12 +489,6 @@ def _load(): if option in AppConfig._CACHED_OPTION_KEYS: AppConfig._PARSER.set(account, option, cache_file_parser.get(account, option)) - if allow_catch_all_accounts: - config_sections = AppConfig._PARSER.sections() # new sections may have been added - - AppConfig._SERVERS = [s for s in config_sections if CONFIG_SERVER_MATCHER.match(s)] - AppConfig._ACCOUNTS = [s for s in config_sections if '@' in s] - AppConfig._LOADED = True @staticmethod @@ -478,34 +512,25 @@ def unload(): AppConfig._PARSER = None AppConfig._LOADED = False - AppConfig._GLOBALS = None - AppConfig._SERVERS = [] - AppConfig._ACCOUNTS = [] - @staticmethod def reload(): AppConfig.unload() return AppConfig.get() @staticmethod - def globals(): + def get_global(name, fallback): AppConfig.get() # make sure config is loaded - return AppConfig._GLOBALS + return AppConfig._PARSER.getboolean(APP_SHORT_NAME, name, fallback) @staticmethod def servers(): AppConfig.get() # make sure config is loaded - return AppConfig._SERVERS + return [s for s in AppConfig._PARSER.sections() if CONFIG_SERVER_MATCHER.match(s)] @staticmethod def accounts(): AppConfig.get() # make sure config is loaded - return AppConfig._ACCOUNTS - - @staticmethod - def add_account(username): - AppConfig._PARSER.add_section(username) - AppConfig._ACCOUNTS = [s for s in AppConfig._PARSER.sections() if '@' in s] + return [s for s in AppConfig._PARSER.sections() if '@' in s] @staticmethod def save(): @@ -513,18 +538,21 @@ def save(): if CACHE_STORE != CONFIG_FILE_PATH: # in `--cache-store` mode we ignore everything except _CACHED_OPTION_KEYS (OAuth 2.0 tokens, etc) output_config_parser = configparser.ConfigParser() - output_config_parser.read_dict(AppConfig._PARSER) # a deep copy of the current configuration + with AppConfig._PARSER.lock: + output_config_parser.read_dict(AppConfig._PARSER) # a deep copy of the current configuration + config_accounts = AppConfig.accounts() - for account in AppConfig._ACCOUNTS: + for account in config_accounts: for option in output_config_parser.options(account): if option not in AppConfig._CACHED_OPTION_KEYS: output_config_parser.remove_option(account, option) for section in output_config_parser.sections(): - if section not in AppConfig._ACCOUNTS or len(output_config_parser.options(section)) <= 0: + if section not in config_accounts or len(output_config_parser.options(section)) <= 0: output_config_parser.remove_section(section) - AppConfig._save_cache(CACHE_STORE, output_config_parser) + with AppConfig._PARSER.lock: + AppConfig._save_cache(CACHE_STORE, output_config_parser) else: # by default we cache to the local configuration file, and rewrite all values each time @@ -557,10 +585,11 @@ def get_oauth2_credentials(username, password, recurse_retries=True): if invalid). Returns either (True, '[OAuth2 string for authentication]') or (False, '[Error message]')""" # we support broader catch-all account names (e.g., `@domain.com` / `@`) if enabled - valid_accounts = [username in AppConfig.accounts()] - if AppConfig.globals().getboolean('allow_catch_all_accounts', fallback=False): + config_accounts = AppConfig.accounts() + valid_accounts = [username in config_accounts] + if AppConfig.get_global('allow_catch_all_accounts', fallback=False): user_domain = '@%s' % username.split('@')[-1] - valid_accounts.extend([account in AppConfig.accounts() for account in [user_domain, '@']]) + valid_accounts.extend([account in config_accounts for account in [user_domain, '@']]) if not any(valid_accounts): Log.error('Proxy config file entry missing for account', username, '- aborting login') @@ -572,7 +601,7 @@ def get_oauth2_credentials(username, password, recurse_retries=True): def get_account_with_catch_all_fallback(option): fallback = None - if AppConfig.globals().getboolean('allow_catch_all_accounts', fallback=False): + if AppConfig.get_global('allow_catch_all_accounts', fallback=False): fallback = config.get(user_domain, option, fallback=config.get('@', option, fallback=None)) return config.get(username, option, fallback=fallback) @@ -682,8 +711,8 @@ def get_account_with_catch_all_fallback(option): oauth2_flow, username, password) access_token = response['access_token'] - if not config.has_section(username): - AppConfig.add_account(username) # in wildcard mode the section may not yet exist + if username not in config.sections(): + config.add_section(username) # in wildcard mode the section may not yet exist REQUEST_QUEUE.put(MENU_UPDATE) # make sure the menu shows the newly-added account config.set(username, 'token_salt', token_salt) config.set(username, 'access_token', OAuth2Helper.encrypt(fernet, access_token)) @@ -695,7 +724,7 @@ def get_account_with_catch_all_fallback(option): Log.info('Warning: no refresh token returned for', username, '- you will need to re-authenticate', 'each time the access token expires (does your `oauth2_scope` value allow `offline` use?)') - if AppConfig.globals().getboolean('encrypt_client_secret_on_first_use', fallback=False): + if AppConfig.get_global('encrypt_client_secret_on_first_use', fallback=False): if client_secret: # note: save to the `username` entry even if `user_domain` exists, avoiding conflicts when using # incompatible `encrypt_client_secret_on_first_use` and `allow_catch_all_accounts` options @@ -712,8 +741,8 @@ def get_account_with_catch_all_fallback(option): except InvalidToken as e: # if invalid details are the reason for failure we remove our cached version and re-authenticate - this can # be disabled by a configuration setting, but note that we always remove credentials on 400 Bad Request - if e.args == (400, APP_PACKAGE) or AppConfig.globals().getboolean('delete_account_token_on_password_error', - fallback=True): + if e.args == (400, APP_PACKAGE) or AppConfig.get_global('delete_account_token_on_password_error', + fallback=True): config.remove_option(username, 'token_salt') config.remove_option(username, 'access_token') config.remove_option(username, 'access_token_expiry') @@ -2360,7 +2389,7 @@ def create_config_menu(self): if len(config_accounts) <= 0: items.append(pystray.MenuItem(' No accounts configured', None, enabled=False)) else: - catch_all_enabled = AppConfig.globals().getboolean('allow_catch_all_accounts', fallback=False) + catch_all_enabled = AppConfig.get_global('allow_catch_all_accounts', fallback=False) catch_all_accounts = [] for account in config_accounts: if account.startswith('@') and catch_all_enabled: From c807c4b68555a5a27a4b26c7a04bc01be94a7f6a Mon Sep 17 00:00:00 2001 From: Simon Robinson Date: Wed, 16 Aug 2023 20:26:26 +0100 Subject: [PATCH 07/15] Adjust Windows icon colour based on system theme --- emailproxy.py | 19 ++++++++++++++++--- 1 file changed, 16 insertions(+), 3 deletions(-) diff --git a/emailproxy.py b/emailproxy.py index 5f4de88..35c7a22 100644 --- a/emailproxy.py +++ b/emailproxy.py @@ -6,7 +6,7 @@ __author__ = 'Simon Robinson' __copyright__ = 'Copyright (c) 2023 Simon Robinson' __license__ = 'Apache 2.0' -__version__ = '2023-08-11' # ISO 8601 (YYYY-MM-DD) +__version__ = '2023-08-16' # ISO 8601 (YYYY-MM-DD) import abc import argparse @@ -2288,7 +2288,9 @@ def macos_nsworkspace_notification_listener_(self, notification): self.exit(self.icon) def create_icon(self): - Image.ANTIALIAS = Image.LANCZOS # temporary fix for pystray incompatibility with PIL >= 10.0.0 + with warnings.catch_warnings(): + warnings.simplefilter('ignore', DeprecationWarning) + Image.ANTIALIAS = Image.LANCZOS # temporary fix for pystray <= 0.19.4 incompatibility with PIL >= 10.0.0 icon_class = RetinaIcon if sys.platform == 'darwin' else pystray.Icon return icon_class(APP_NAME, App.get_image(), APP_NAME, menu=pystray.Menu( pystray.MenuItem('Servers and accounts', pystray.Menu(self.create_config_menu)), @@ -2302,12 +2304,23 @@ def create_icon(self): @staticmethod def get_image(): # we use an icon font for better multiplatform compatibility and icon size flexibility - icon_colour = 'white' # note: value is irrelevant on macOS - we set as a template to get the platform's colours + icon_colour = 'white' # see below: colour is handled differently per-platform icon_character = 'e' icon_background_width = 44 icon_background_height = 44 icon_width = 40 # to allow for padding between icon and background image size + # the colour value is irrelevant on macOS - we configure the menu bar icon as a template to get the platform's + # colours - but on Windows (and in future potentially Linux) we need to set based on the current theme type + if sys.platform == 'win32': + import winreg + try: + key = winreg.OpenKey(winreg.HKEY_CURRENT_USER, + r'Software\Microsoft\Windows\CurrentVersion\Themes\Personalize') + icon_colour = 'white' if winreg.QueryValueEx(key, 'AppsUseLightTheme')[0] == 0 else 'black' + except FileNotFoundError: + pass + # find the largest font size that will let us draw the icon within the available width minimum_font_size = 1 maximum_font_size = 255 From 10cbfacb71c0eaeb067e3edddc0641cfb75747e4 Mon Sep 17 00:00:00 2001 From: Simon Robinson Date: Wed, 16 Aug 2023 20:45:24 +0100 Subject: [PATCH 08/15] Only apply pystray workaround if pillow is >= 10.0.0 --- emailproxy.py | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/emailproxy.py b/emailproxy.py index 35c7a22..75a073b 100644 --- a/emailproxy.py +++ b/emailproxy.py @@ -2290,7 +2290,10 @@ def macos_nsworkspace_notification_listener_(self, notification): def create_icon(self): with warnings.catch_warnings(): warnings.simplefilter('ignore', DeprecationWarning) - Image.ANTIALIAS = Image.LANCZOS # temporary fix for pystray <= 0.19.4 incompatibility with PIL >= 10.0.0 + # noinspection PyDeprecation + if pkg_resources.parse_version( + pkg_resources.get_distribution('pillow').version) >= pkg_resources.parse_version('10.0.0'): + Image.ANTIALIAS = Image.LANCZOS # temporary fix for pystray <= 0.19.4 incompatibility with PIL 10.0.0+ icon_class = RetinaIcon if sys.platform == 'darwin' else pystray.Icon return icon_class(APP_NAME, App.get_image(), APP_NAME, menu=pystray.Menu( pystray.MenuItem('Servers and accounts', pystray.Menu(self.create_config_menu)), From 013f3feddc6b3a300ccea49523cebe956beb7c87 Mon Sep 17 00:00:00 2001 From: Simon Robinson Date: Thu, 24 Aug 2023 20:36:40 +0100 Subject: [PATCH 09/15] More helpful error message when local certificate/key is not present --- emailproxy.py | 9 ++++++--- 1 file changed, 6 insertions(+), 3 deletions(-) diff --git a/emailproxy.py b/emailproxy.py index 5f4de88..cafb587 100644 --- a/emailproxy.py +++ b/emailproxy.py @@ -6,7 +6,7 @@ __author__ = 'Simon Robinson' __copyright__ = 'Copyright (c) 2023 Simon Robinson' __license__ = 'Apache 2.0' -__version__ = '2023-08-11' # ISO 8601 (YYYY-MM-DD) +__version__ = '2023-08-24' # ISO 8601 (YYYY-MM-DD) import abc import argparse @@ -1957,8 +1957,11 @@ def create_socket(self, socket_family=socket.AF_UNSPEC, socket_type=socket.SOCK_ if self.ssl_connection: # noinspection PyTypeChecker ssl_context = ssl.create_default_context(purpose=ssl.Purpose.CLIENT_AUTH) - ssl_context.load_cert_chain(certfile=self.custom_configuration['local_certificate_path'], - keyfile=self.custom_configuration['local_key_path']) + try: + ssl_context.load_cert_chain(certfile=self.custom_configuration['local_certificate_path'], + keyfile=self.custom_configuration['local_key_path']) + except FileNotFoundError as e: + raise FileNotFoundError('Unable to open `local_certificate_path` and/or `local_key_path`') from e # suppress_ragged_eofs=True: see test_ssl.py documentation in https://github.com/python/cpython/pull/5266 self.set_socket(ssl_context.wrap_socket(new_socket, server_side=True, suppress_ragged_eofs=True, From 952b2555facebdae6526bfbf7b0c770f9b05de60 Mon Sep 17 00:00:00 2001 From: Simon Robinson Date: Fri, 25 Aug 2023 22:22:35 +0100 Subject: [PATCH 10/15] Fix regression in 4c5ede3 that caused an exit after catch-all auth Fixes #190 --- emailproxy.py | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/emailproxy.py b/emailproxy.py index cafb587..48ada13 100644 --- a/emailproxy.py +++ b/emailproxy.py @@ -6,7 +6,7 @@ __author__ = 'Simon Robinson' __copyright__ = 'Copyright (c) 2023 Simon Robinson' __license__ = 'Apache 2.0' -__version__ = '2023-08-24' # ISO 8601 (YYYY-MM-DD) +__version__ = '2023-08-25' # ISO 8601 (YYYY-MM-DD) import abc import argparse @@ -2896,7 +2896,7 @@ def post_create(self, icon): if data is MENU_UPDATE: if icon: icon.update_menu() - break + continue if not data['expired']: Log.info('Authorisation request received for', data['username'], '(local server auth mode)' if self.args.local_server_auth else '(external auth mode)' if From df420ad802ca211f134b9814796b898acf92027d Mon Sep 17 00:00:00 2001 From: Simon Robinson Date: Mon, 28 Aug 2023 22:53:24 +0100 Subject: [PATCH 11/15] Target pystray <= 0.19.4 only now that PR #147 has been merged --- emailproxy.py | 11 +++++++---- 1 file changed, 7 insertions(+), 4 deletions(-) diff --git a/emailproxy.py b/emailproxy.py index 75a073b..6c0cca2 100644 --- a/emailproxy.py +++ b/emailproxy.py @@ -6,7 +6,7 @@ __author__ = 'Simon Robinson' __copyright__ = 'Copyright (c) 2023 Simon Robinson' __license__ = 'Apache 2.0' -__version__ = '2023-08-16' # ISO 8601 (YYYY-MM-DD) +__version__ = '2023-08-28' # ISO 8601 (YYYY-MM-DD) import abc import argparse @@ -2288,12 +2288,15 @@ def macos_nsworkspace_notification_listener_(self, notification): self.exit(self.icon) def create_icon(self): + # temporary fix for pystray <= 0.19.4 incompatibility with PIL 10.0.0+; fixed once pystray PR #147 is released with warnings.catch_warnings(): warnings.simplefilter('ignore', DeprecationWarning) # noinspection PyDeprecation - if pkg_resources.parse_version( - pkg_resources.get_distribution('pillow').version) >= pkg_resources.parse_version('10.0.0'): - Image.ANTIALIAS = Image.LANCZOS # temporary fix for pystray <= 0.19.4 incompatibility with PIL 10.0.0+ + pystray_version = pkg_resources.get_distribution('pystray').version + pillow_version = pkg_resources.get_distribution('pillow').version + if pkg_resources.parse_version(pystray_version) <= pkg_resources.parse_version('0.19.4') and \ + pkg_resources.parse_version(pillow_version) >= pkg_resources.parse_version('10.0.0'): + Image.ANTIALIAS = Image.LANCZOS icon_class = RetinaIcon if sys.platform == 'darwin' else pystray.Icon return icon_class(APP_NAME, App.get_image(), APP_NAME, menu=pystray.Menu( pystray.MenuItem('Servers and accounts', pystray.Menu(self.create_config_menu)), From 246ec314e17aea4f000d02657cc36ce8bd7c2a78 Mon Sep 17 00:00:00 2001 From: Simon Robinson Date: Sat, 2 Sep 2023 20:41:54 +0100 Subject: [PATCH 12/15] Check `SystemUsesLightTheme` rather than `AppsUseLightTheme` --- emailproxy.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/emailproxy.py b/emailproxy.py index 6c0cca2..acd9320 100644 --- a/emailproxy.py +++ b/emailproxy.py @@ -2323,7 +2323,7 @@ def get_image(): try: key = winreg.OpenKey(winreg.HKEY_CURRENT_USER, r'Software\Microsoft\Windows\CurrentVersion\Themes\Personalize') - icon_colour = 'white' if winreg.QueryValueEx(key, 'AppsUseLightTheme')[0] == 0 else 'black' + icon_colour = 'black' if winreg.QueryValueEx(key, 'SystemUsesLightTheme')[0] == 0 else 'white' except FileNotFoundError: pass From a62a1d6c25b71d188472263e43beb8b8e4003558 Mon Sep 17 00:00:00 2001 From: Simon Robinson Date: Sun, 3 Sep 2023 20:52:30 +0100 Subject: [PATCH 13/15] Fix theme icon colour logic --- emailproxy.py | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/emailproxy.py b/emailproxy.py index acd9320..46b96ab 100644 --- a/emailproxy.py +++ b/emailproxy.py @@ -6,7 +6,7 @@ __author__ = 'Simon Robinson' __copyright__ = 'Copyright (c) 2023 Simon Robinson' __license__ = 'Apache 2.0' -__version__ = '2023-08-28' # ISO 8601 (YYYY-MM-DD) +__version__ = '2023-09-03' # ISO 8601 (YYYY-MM-DD) import abc import argparse @@ -2323,7 +2323,7 @@ def get_image(): try: key = winreg.OpenKey(winreg.HKEY_CURRENT_USER, r'Software\Microsoft\Windows\CurrentVersion\Themes\Personalize') - icon_colour = 'black' if winreg.QueryValueEx(key, 'SystemUsesLightTheme')[0] == 0 else 'white' + icon_colour = 'black' if winreg.QueryValueEx(key, 'SystemUsesLightTheme')[0] else 'white' except FileNotFoundError: pass From 8f4362cb8027855e4ea8be836ba723d64823c4f1 Mon Sep 17 00:00:00 2001 From: Simon Robinson Date: Fri, 25 Aug 2023 21:59:49 +0100 Subject: [PATCH 14/15] Fix locking when saving to cache store --- emailproxy.py | 9 ++++++--- 1 file changed, 6 insertions(+), 3 deletions(-) diff --git a/emailproxy.py b/emailproxy.py index bf3a0aa..a902378 100644 --- a/emailproxy.py +++ b/emailproxy.py @@ -453,6 +453,10 @@ def write(self, file): with self.lock: self.config.write(file) + def items(self): + with self.lock: + return self.config.items() # used in read_dict when saving to cache store + class AppConfig: """Helper wrapper around ConfigParser to cache servers/accounts, and avoid writing to the file until necessary""" @@ -538,9 +542,8 @@ def save(): if CACHE_STORE != CONFIG_FILE_PATH: # in `--cache-store` mode we ignore everything except _CACHED_OPTION_KEYS (OAuth 2.0 tokens, etc) output_config_parser = configparser.ConfigParser() - with AppConfig._PARSER.lock: - output_config_parser.read_dict(AppConfig._PARSER) # a deep copy of the current configuration - config_accounts = AppConfig.accounts() + output_config_parser.read_dict(AppConfig._PARSER) # a deep copy of the current configuration + config_accounts = [s for s in output_config_parser.sections() if '@' in s] for account in config_accounts: for option in output_config_parser.options(account): From 33e7eccd61829282e6575e033253c6bfe9a11212 Mon Sep 17 00:00:00 2001 From: Simon Robinson Date: Sat, 26 Aug 2023 22:29:12 +0100 Subject: [PATCH 15/15] Simplify config unload/reload; add locking --- emailproxy.py | 60 ++++++++++++++++++++++++--------------------------- 1 file changed, 28 insertions(+), 32 deletions(-) diff --git a/emailproxy.py b/emailproxy.py index a902378..d157b6f 100644 --- a/emailproxy.py +++ b/emailproxy.py @@ -6,7 +6,7 @@ __author__ = 'Simon Robinson' __copyright__ = 'Copyright (c) 2023 Simon Robinson' __license__ = 'Apache 2.0' -__version__ = '2023-08-16' # ISO 8601 (YYYY-MM-DD) +__version__ = '2023-08-26' # ISO 8601 (YYYY-MM-DD) import abc import argparse @@ -462,7 +462,7 @@ class AppConfig: """Helper wrapper around ConfigParser to cache servers/accounts, and avoid writing to the file until necessary""" _PARSER = None - _LOADED = False + _PARSER_LOCK = threading.Lock() # note: removing the unencrypted version of `client_secret_encrypted` is not automatic with --cache-store (see docs) _CACHED_OPTION_KEYS = ['token_salt', 'access_token', 'access_token_expiry', 'refresh_token', 'last_activity', @@ -473,27 +473,26 @@ class AppConfig: @staticmethod def _load(): - AppConfig.unload() - AppConfig._PARSER = ConcurrentConfigParser() - AppConfig._PARSER.read(CONFIG_FILE_PATH) + config_parser = ConcurrentConfigParser() + config_parser.read(CONFIG_FILE_PATH) # cached account credentials can be stored in the configuration file (default) or, via `--cache-store`, a # separate local file or external service (such as a secrets manager) - we combine these sources at load time if CACHE_STORE != CONFIG_FILE_PATH: # it would be cleaner to avoid specific options here, but best to load unexpected sections only when enabled - allow_catch_all_accounts = AppConfig._PARSER.getboolean(APP_SHORT_NAME, 'allow_catch_all_accounts', - fallback=False) + allow_catch_all_accounts = config_parser.getboolean(APP_SHORT_NAME, 'allow_catch_all_accounts', + fallback=False) cache_file_parser = AppConfig._load_cache(CACHE_STORE) cache_file_accounts = [s for s in cache_file_parser.sections() if '@' in s] for account in cache_file_accounts: - if allow_catch_all_accounts and account not in AppConfig._PARSER.sections(): # missing sub-accounts - AppConfig._PARSER.add_section(account) + if allow_catch_all_accounts and account not in config_parser.sections(): # missing sub-accounts + config_parser.add_section(account) for option in cache_file_parser.options(account): if option in AppConfig._CACHED_OPTION_KEYS: - AppConfig._PARSER.set(account, option, cache_file_parser.get(account, option)) + config_parser.set(account, option, cache_file_parser.get(account, option)) - AppConfig._LOADED = True + return config_parser @staticmethod def _load_cache(cache_store_identifier): @@ -507,38 +506,34 @@ def _load_cache(cache_store_identifier): @staticmethod def get(): - if not AppConfig._LOADED: - AppConfig._load() - return AppConfig._PARSER + with AppConfig._PARSER_LOCK: + if AppConfig._PARSER is None: + AppConfig._PARSER = AppConfig._load() + return AppConfig._PARSER @staticmethod def unload(): - AppConfig._PARSER = None - AppConfig._LOADED = False - - @staticmethod - def reload(): - AppConfig.unload() - return AppConfig.get() + with AppConfig._PARSER_LOCK: + AppConfig._PARSER = None @staticmethod def get_global(name, fallback): - AppConfig.get() # make sure config is loaded - return AppConfig._PARSER.getboolean(APP_SHORT_NAME, name, fallback) + return AppConfig.get().getboolean(APP_SHORT_NAME, name, fallback) @staticmethod def servers(): - AppConfig.get() # make sure config is loaded - return [s for s in AppConfig._PARSER.sections() if CONFIG_SERVER_MATCHER.match(s)] + return [s for s in AppConfig.get().sections() if CONFIG_SERVER_MATCHER.match(s)] @staticmethod def accounts(): - AppConfig.get() # make sure config is loaded - return [s for s in AppConfig._PARSER.sections() if '@' in s] + return [s for s in AppConfig.get().sections() if '@' in s] @staticmethod def save(): - if AppConfig._LOADED: + with AppConfig._PARSER_LOCK: + if AppConfig._PARSER is None: # intentionally using _PARSER not get() so we don't (re)load if unloaded + return + if CACHE_STORE != CONFIG_FILE_PATH: # in `--cache-store` mode we ignore everything except _CACHED_OPTION_KEYS (OAuth 2.0 tokens, etc) output_config_parser = configparser.ConfigParser() @@ -554,8 +549,7 @@ def save(): if section not in config_accounts or len(output_config_parser.options(section)) <= 0: output_config_parser.remove_section(section) - with AppConfig._PARSER.lock: - AppConfig._save_cache(CACHE_STORE, output_config_parser) + AppConfig._save_cache(CACHE_STORE, output_config_parser) else: # by default we cache to the local configuration file, and rewrite all values each time @@ -646,7 +640,7 @@ def get_account_with_catch_all_fallback(option): # try reloading remotely cached tokens if possible if not access_token and CACHE_STORE != CONFIG_FILE_PATH and recurse_retries: - AppConfig.reload() + AppConfig.unload() return OAuth2Helper.get_oauth2_credentials(username, password, recurse_retries=False) # we hash locally-stored tokens with the given password @@ -2782,7 +2776,9 @@ def load_and_start_servers(self, icon=None, reload=True): # we allow reloading, so must first stop any existing servers self.stop_servers() Log.info('Initialising', APP_NAME, '(version %s)' % __version__, 'from config file', CONFIG_FILE_PATH) - config = AppConfig.reload() if reload else AppConfig.get() + if reload: + AppConfig.unload() + config = AppConfig.get() # load server types and configurations server_load_error = False