Enterprise requests #2125
Description
- replies@flowcrypt.com oddity when replying to web portal message from browser extension #4701
- attachments not sent through email provider for fes message #4702
- pass phrase session length should be configurable with client configuration flowcrypt-ios#1805
- notify users when their keys expire soon #4703
- [3S/difficult] shared mailboxes evaluate shared mailboxes (delegated rights) and mailing lists #2688
later:
- [3S/medium] audit trail enterprise audit trail for certain actions #2690
- [2S/easy] pubkey bulk import Refactor Contacts public key import to be able to import many keys #2311
mitigated
- [3S/medium] report exceptions to FES instead of backend report errors to FES when appropriate #3162 (mitigation - enterprise does not send any reports)
- [2S/difficult/specific] allow importing and using key with 3rd party revocation with a warning allow use of keys with 3rd party revocation with a warning #2676 - fixed as a byproduct of updating OpenPGP.js - no longer errors, but no warning. For now acceptable.
- [2S/difficult/specific] allow importing and using key without self-signature with a warning allow importing and using key without self-signature with a big warning #1158 - these were public keys created from s/mime certs. Since we now have s/mime functionality, it will be more worthwhile to focus on that (because addressing this issue directly would require maintaining OpenPGP.js fork).
done
- Add OrgRule FORBID_STORING_PASS_PHRASE OrgRule FORBID_STORING_PASS_PHRASE #2752
- Add OrgRule PASS_PHRASE_CHOSEN_BY_USER OrgRule PASS_PHRASE_CHOSEN_BY_USER #3596 (June 2021)
- disable web portal on servers side for certain enterprise users (June 2021)
- use FES for password messages web portal use FES to upload password protected messages when available #3672 (July 2021)
- support wildcard * in disallow_attester_search_for_domains allow a wildcard * in disallow_attester_search_for_domains #3563 (July 2021)
- pass phrase in session to expire in 4 hours pass phrase in session to last maximum exactly 4 hours #3565 (August 2021)
- [3S/medium] import s/mime key Allow importing of private s/mime keys (only in Settings as additional key) #2969
- [3S/easy] sign outgoing s/mime messages allow signing of outgoing s/mime emails #2970 (once Allow importing of private s/mime keys (only in Settings as additional key) #2969 is done)
- EKM integration get access token from EKM during setup #3325
- [3S/medium] rotate keys though WKD ability to store more than one public key per recipient #3332 process / update revoked and expired keys from WKD response #3018
- grab org rules from FES instead of backend get OrgRules from EnterpriseServer (FES) instead of FlowCryptComApi #3015
- forbid external publishing of pubkeys option to forbid publishing public keys externally #2516
- forbid looking up pubs externally for recipients on chosen domains forbid looking up pubs externally for recipients on selected domains #2517
- use openid tokens for login use openid tokens for login #2011
- treat each email account individually treat each email account individually #1743
- enterprise org - load domain rules dynamically enterprise org - load domain rules dynamically #2123
- prioritize HKP results that actually contain searched email prioritize HKP results that actually contain searched email #2108
- on-prem keyserver integration FlowCrypt Email Key Manager integration #2590
- WKD lookup look up keys with WKD #2681
- add limited s/mime compatibility when sending email add limited s/mime compatibility when sending email - PoC #2124
- replace primary key ability to remove any private key when > 1 used #409
- enforce message signing when encrypting a message enforce message signing when encrypting #3475
- [3S/medium] periodically sync private keys with EKM re-pull keys from the EKM periodically #2602
- [3S/easy] periodically update client configuration update client configuration each time settings page is refreshed or gmail content script loaded #4510
- pass phrase session length should be configurable with client configuraiton #4613
- pass phrase session length should be configurable with client configuration flowcrypt-android#1962