feat: restrict smtp sender address (#3637)

* fix: check if sender address is custom domain * fix: check if sender address is custom domain * fix: check if sender address is custom domain Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2025-08-11 19:17:32 +00:00 · 2022-05-16 16:08:47 +02:00
parent 40de8d5b3b
commit 5c0f527a49
39 changed files with 510 additions and 153 deletions
--- a/internal/repository/instance/domain.go
+++ b/internal/repository/instance/domain.go
@@ -18,17 +18,17 @@ const (
 	InstanceDomainRemovedEventType    = domainEventPrefix + "removed"
 )

-func NewAddInstanceDomainUniqueConstraint(orgDomain string) *eventstore.EventUniqueConstraint {
+func NewAddInstanceDomainUniqueConstraint(domain string) *eventstore.EventUniqueConstraint {
 	return eventstore.NewAddGlobalEventUniqueConstraint(
 		UniqueInstanceDomain,
-		orgDomain,
+		domain,
 		"Errors.Instance.Domain.AlreadyExists")
 }

-func NewRemoveInstanceDomainUniqueConstraint(orgDomain string) *eventstore.EventUniqueConstraint {
+func NewRemoveInstanceDomainUniqueConstraint(domain string) *eventstore.EventUniqueConstraint {
 	return eventstore.NewRemoveGlobalEventUniqueConstraint(
 		UniqueInstanceDomain,
-		orgDomain)
+		domain)
 }

 type DomainAddedEvent struct {
@@ -59,15 +59,15 @@ func NewDomainAddedEvent(ctx context.Context, aggregate *eventstore.Aggregate, d
 }

 func DomainAddedEventMapper(event *repository.Event) (eventstore.Event, error) {
-	orgDomainAdded := &DomainAddedEvent{
+	domainAdded := &DomainAddedEvent{
 		BaseEvent: *eventstore.BaseEventFromRepo(event),
 	}
-	err := json.Unmarshal(event.Data, orgDomainAdded)
+	err := json.Unmarshal(event.Data, domainAdded)
 	if err != nil {
 		return nil, errors.ThrowInternal(err, "INSTANCE-3noij", "unable to unmarshal instance domain added")
 	}

-	return orgDomainAdded, nil
+	return domainAdded, nil
 }

 type DomainPrimarySetEvent struct {
@@ -96,15 +96,15 @@ func NewDomainPrimarySetEvent(ctx context.Context, aggregate *eventstore.Aggrega
 }

 func DomainPrimarySetEventMapper(event *repository.Event) (eventstore.Event, error) {
-	orgDomainAdded := &DomainPrimarySetEvent{
+	domainAdded := &DomainPrimarySetEvent{
 		BaseEvent: *eventstore.BaseEventFromRepo(event),
 	}
-	err := json.Unmarshal(event.Data, orgDomainAdded)
+	err := json.Unmarshal(event.Data, domainAdded)
 	if err != nil {
 		return nil, errors.ThrowInternal(err, "INSTANCE-29jöF", "unable to unmarshal instance domain added")
 	}

-	return orgDomainAdded, nil
+	return domainAdded, nil
 }

 type DomainRemovedEvent struct {
@@ -133,13 +133,13 @@ func NewDomainRemovedEvent(ctx context.Context, aggregate *eventstore.Aggregate,
 }

 func DomainRemovedEventMapper(event *repository.Event) (eventstore.Event, error) {
-	orgDomainRemoved := &DomainRemovedEvent{
+	domainRemoved := &DomainRemovedEvent{
 		BaseEvent: *eventstore.BaseEventFromRepo(event),
 	}
-	err := json.Unmarshal(event.Data, orgDomainRemoved)
+	err := json.Unmarshal(event.Data, domainRemoved)
 	if err != nil {
 		return nil, errors.ThrowInternal(err, "INSTANCE-BngB2", "unable to unmarshal instance domain removed")
 	}

-	return orgDomainRemoved, nil
+	return domainRemoved, nil
 }
--- a/internal/repository/instance/policy_domain.go
+++ b/internal/repository/instance/policy_domain.go
@@ -22,7 +22,8 @@ func NewDomainPolicyAddedEvent(
 	ctx context.Context,
 	aggregate *eventstore.Aggregate,
 	userLoginMustBeDomain,
-	validateOrgDomain bool,
+	validateOrgDomain,
+	smtpSenderAddressMatchesInstanceDomain bool,
 ) *DomainPolicyAddedEvent {
 	return &DomainPolicyAddedEvent{
 		DomainPolicyAddedEvent: *policy.NewDomainPolicyAddedEvent(
@@ -32,6 +33,7 @@ func NewDomainPolicyAddedEvent(
 				DomainPolicyAddedEventType),
 			userLoginMustBeDomain,
 			validateOrgDomain,
+			smtpSenderAddressMatchesInstanceDomain,
 		),
 	}
 }
--- a/internal/repository/org/policy_domain.go
+++ b/internal/repository/org/policy_domain.go
@@ -23,7 +23,8 @@ func NewDomainPolicyAddedEvent(
 	ctx context.Context,
 	aggregate *eventstore.Aggregate,
 	userLoginMustBeDomain,
-	validateOrgDomains bool,
+	validateOrgDomains,
+	smtpSenderAddressMatchesInstanceDomain bool,
 ) *DomainPolicyAddedEvent {
 	return &DomainPolicyAddedEvent{
 		DomainPolicyAddedEvent: *policy.NewDomainPolicyAddedEvent(
@@ -33,6 +34,7 @@ func NewDomainPolicyAddedEvent(
 				DomainPolicyAddedEventType),
 			userLoginMustBeDomain,
 			validateOrgDomains,
+			smtpSenderAddressMatchesInstanceDomain,
 		),
 	}
 }
--- a/internal/repository/policy/policy_domain.go
+++ b/internal/repository/policy/policy_domain.go
@@ -19,8 +19,9 @@ const (
 type DomainPolicyAddedEvent struct {
 	eventstore.BaseEvent `json:"-"`

-	UserLoginMustBeDomain bool `json:"userLoginMustBeDomain,omitempty"`
-	ValidateOrgDomains    bool `json:"validateOrgDomains,omitempty"`
+	UserLoginMustBeDomain                  bool `json:"userLoginMustBeDomain,omitempty"`
+	ValidateOrgDomains                     bool `json:"validateOrgDomains,omitempty"`
+	SMTPSenderAddressMatchesInstanceDomain bool `json:"smtpSenderAddressMatchesInstanceDomain,omitempty"`
 }

 func (e *DomainPolicyAddedEvent) Data() interface{} {
@@ -34,13 +35,15 @@ func (e *DomainPolicyAddedEvent) UniqueConstraints() []*eventstore.EventUniqueCo
 func NewDomainPolicyAddedEvent(
 	base *eventstore.BaseEvent,
 	userLoginMustBeDomain,
-	validateOrgDomains bool,
+	validateOrgDomains,
+	smtpSenderAddressMatchesInstanceDomain bool,
 ) *DomainPolicyAddedEvent {

 	return &DomainPolicyAddedEvent{
-		BaseEvent:             *base,
-		UserLoginMustBeDomain: userLoginMustBeDomain,
-		ValidateOrgDomains:    validateOrgDomains,
+		BaseEvent:                              *base,
+		UserLoginMustBeDomain:                  userLoginMustBeDomain,
+		ValidateOrgDomains:                     validateOrgDomains,
+		SMTPSenderAddressMatchesInstanceDomain: smtpSenderAddressMatchesInstanceDomain,
 	}
 }

@@ -60,8 +63,9 @@ func DomainPolicyAddedEventMapper(event *repository.Event) (eventstore.Event, er
 type DomainPolicyChangedEvent struct {
 	eventstore.BaseEvent `json:"-"`

-	UserLoginMustBeDomain *bool `json:"userLoginMustBeDomain,omitempty"`
-	ValidateOrgDomains    *bool `json:"validateOrgDomains,omitempty"`
+	UserLoginMustBeDomain                  *bool `json:"userLoginMustBeDomain,omitempty"`
+	ValidateOrgDomains                     *bool `json:"validateOrgDomains,omitempty"`
+	SMTPSenderAddressMatchesInstanceDomain *bool `json:"smtpSenderAddressMatchesInstanceDomain,omitempty"`
 }

 func (e *DomainPolicyChangedEvent) Data() interface{} {
@@ -102,6 +106,12 @@ func ChangeValidateOrgDomains(validateOrgDomain bool) func(*DomainPolicyChangedE
 	}
 }

+func ChangeSMTPSenderAddressMatchesInstanceDomain(smtpSenderAddressMatchesInstanceDomain bool) func(*DomainPolicyChangedEvent) {
+	return func(e *DomainPolicyChangedEvent) {
+		e.SMTPSenderAddressMatchesInstanceDomain = &smtpSenderAddressMatchesInstanceDomain
+	}
+}
+
 func DomainPolicyChangedEventMapper(event *repository.Event) (eventstore.Event, error) {
 	e := &DomainPolicyChangedEvent{
 		BaseEvent: *eventstore.BaseEventFromRepo(event),