André

Have not checked, enotime, but I will re-open it then. :)

We could add WebAuthn/TFA to users, disable IMAP and SMTP for those accounts and put a proxy in front of SOGo to authenticate via key. Only app passwords would work...

@mkuron it's an older topic, but what's your opinion on this?

I would prefer the way of an authentication proxy and allow for more mechanisms than TOTP. :)

I know that is widely desired, but it is a bunch of work to migrate everything. Perhaps in the future. :)

Yes, this should be implemented.

We will probably not change to Caddy. I simply don't see a reason to do that. It will break many setups, all custom Nginx sites will be useless or would...

I really doubt Nginx is less stable. Caddy is great, but that's just not what we decided to use. If we used Caddy, we would have been blamed why we...

As long as this is just to play around, it’s fine. Don’t ever merge this to master, please, before several things are fixed and there is an official release.

Hi, there is no fullchain.pem in mailcow as cert.pem is the fully chained certificate. Please **do not** push untested to master.