Log message:
mail/roundcube: update to 1.6.1

1.6.1 (2022-01-23)

* Kill session if refreshing oauth token fails (#8734)
* Fix various PHP 8.1 warnings (#8628, #8644, #8667, #8656, #8647)
* Password: Remove references to %c variable that has been removed before
  (#8633)
* Fix anchor links in HTML mail (#8632)
* Fix bug where config creation in Installer did ignore options in the form
  (#8634)
* Fix bug where renamed options were removed from the config on installto.sh
  (update.sh) run (#8643)
* Fix favicon rewrite rule in .htaccess (#8654)
* Fix various PHP 8.2 warnings
* Fix bug where it wasn't possible to create more than one response record
  on SQLite and Postgres (#8664)
* Fix support for ManageSieve over implicit SSL (#8670)
* Fix bug where "about:blank" page could trigger "load \ 
error" (#8554)
* Fix bug where setting 'Clear Trash on Logout' to 'all messages' didn't
  work (#8687)
* Fix bug where the attachment menu wouldn't disappear after an action is
  selected (#8691)
* Fix bug where some dialogs in an eml attachment preview would not close on
  mobile (#8627)
* Fix bug where multiline data:image URI's in emails were stripped from the
  message on display (#8613)
* Fix fatal error on identity page if Enigma plugin is misconfigured (#8719)
* Fix so N property always exists in a vCard export (#8771)
* Fix authenticating to Courier IMAP with passwords containing a '~'
  character (#8772)
* Fix handling of smtp/imap port options on configuration file update
  (#8756)
* Fix bug where array values could not be saved in utils/save_pref action
  (#8781)
* Add workaround for using Roundcube behind a reverse proxy with a subpath:
  'request_path' option (#8738, #8770)
* Fix bug where "Invalid skin name" error was logged on preferences save if
  there's only one skin (#8825)
* Fix SIGBUS raised in ImageMagick when more than one process tried to
  generate a thumbnail of the same image attachment (#8511)
* Fix bug where updater does not update the vendor packages (#8642)
* Fix missing mail composing textarea on reply/draft with a long plain text
  content (#8866)

Log message:
mail/roundcube: update to 1.6.0

pkgsrc changes:
* Add "USE_TOOLS+= pax" to plugins.mk.
* Add some note to MESSAGES.
* update DESCR.

1.6.0 (2022-07-28)

We proudly announce the release of the next major version 1.6 of Roundcube
webmail.  With this milestone we cleaned up the codebase and bring full
support for PHP 8.1.  The most noteworthy changes, as already announced with
the beta release, are:

* PHP 8.1 support
* Dropped support for PHP < 7.3
* Support responses (snippets) in HTML format
* Option to purge deleted mails older than 30, 60 or 90 days
* Unified and simplified services connection config options
* Removed the Classic and Larry skins from the release packages
* SQLite: Use foreign keys, require SQLite >= 3.6.19

See the full changelog in the release notes on the Github download page.

Breaking Changes to 1.5 and prior versions

The following config options have either been removed or renamed:

1. IMAP:

   * renamed default_host to imap_host
   * removed default_port option (non-standard port can be set via
     imap_host)
   * set "localhost:143" as a default for imap_host

2. SMTP:

* renamed smtp_server to smtp_host
* removed smtp_port option (non-standard port can be set via smtp_host)
* set "localhost:587" as a default for smtp_host

3. LDAP:

* removed port option from ldap_public array (non-standard port can be set
  via host)
* removed use_tls option from ldap_public array (use tls:// prefix in host)

4. Managesieve:

* removed managesieve_port option (non-standard port can be set via
  managesieve_host)
* removed managesieve_usetls option (set tls:// prefix to managesieve_host)

Log message:
mail/roundcube: update to 1.5.3

1.5.3 (2022-06-26)

* Enigma: Fix initial synchronization of private keys
* Enigma: Fix double quoted-printable encoding of pgp-signed messages with
  no attachments (#8413)
* Fix various PHP8 warnings (#8392)
* Fix mail headers injection via the subject field on mail compose (#8404)
* Fix bug where small message/rfc822 parts could not be decoded (#8408)
* Fix setting HTML mode on reply/forward of a signed message (#8405)
* Fix handling of RFC2231-encoded attachment names inside of a
  message/rfc822 part (#8418)
* Fix bug where some mail parts (images) could have not be listed as
  attachments (#8425)
* Fix bug where attachment icons were stuck at the top of the messages list
  in Safari (#8433)
* Fix handling of message/rfc822 parts that are small and are multipart
  structures with a single part (#8458)
* Fix bug where session could time out if DB and PHP timezone were different
  (#8303)
* Fix bug where DSN flag state wasn't stored with a draft (#8371)
* Fix broken encoding of HTML content encapsulated in a RTF attachment
  (#8444)
* Fix problem with aria-hidden=true on toolbar menus in the Elastic
  skin (#8517)
* Fix bug where title tag content was displayed in the body if it contained
  HTML tags (#8540)
* Fix support for DSN specification without host e.g. pgsql:///dbname
  (#8558)

Log message:
*: Revbump packages that use Python at runtime without a PKGNAME prefix

Log message:
*: recursive bump for perl 5.36

Log message:
mail/roundcube: update to 1.5.2

This update contains security fix.

Roundcube Webmail 1.5.1 (2021-11-28)

This is the first service release to update the new stable version 1.5.  It
provides a bunch of small fixes and improvements after getting your feedback
from the 1.5.0 release.  See the full changelog below.

Important note for MySQL and MariaDB database backends

The change to full UTF-8 support in MySQL/MariaDB didn't work for everybody
migrating an existing DB.  Hence here's an important notice from the
UPGRADING instructions:

If you use MySQL < 5.7.7 or MariaDB < 10.2.2 make sure to configure it with:

	innodb_large_prefix=1
	innodb_file_per_table=1
	innodb_file_format=Barracuda

This version is considered stable and we recommend to update all productive
installations of Roundcube with it.  Please do backup your data before
updating!

CHANGELOG

* Fix importing contacts with no email address (#8227)
* Fix so session's search scope is not used if search is not active (#8199)
* Fix some PHP8 warnings (#8239)
* Fix so dark mode state is retained after closing the browser (#8237)
* Fix bug where new messages were not added to the list on refresh if
  skip_deleted=true (#8234)
* Fix colors on "Show source" page in dark mode (#8246)
* Fix handling of dark_mode_support:false setting in skins meta.json - also
  when devel_mode=false (#8249)
* Fix database initialization if db_prefix is a schema prefix (#8221)
* Fix undefined constant error in Installer on Windows (#8258)
* Fix installation/upgrade on MySQL 5.5 - Index column size too large (#8231)
* Fix regression in setting of contact listing name (#8260)
* Fix bug in Larry skin where headers toggle state was reset on full page
  preview (#8203)
* Fix bug where \u200b characters were added into the recipient input
  preventing mail delivery (#8269)
* Fix charset conversion errors on PHP < 8 for charsets not supported by
  mbstring (#8252)
* Fix bug where adding a contact to trusted senders via "Always allow
  from..." button didn't work (#8264, #8268)
* Fix bug with show_images setting where option 1 and 3 were swapped (#8268)
* Fix PHP fatal error on an undefined constant in contacts import action
  (#8277)
* Fix fetching headers of multiple message parts at once in
  rcube_imap_generic::fetchMIMEHeaders() (#8282)
* Fix bug where attachment download could sometimes fail with a CSRF check
  error (#8283)
* Fix an infinite loop when parsing environment variables with float/integer
  values (#8293)
* Fix so 'small-dark' logo has more priority than the 'small' logo (#8298)

Roundcube Webmail 1.5.2 (2021-12-30)

This is the second service release to update the new stable version 1.5.  It
provides a bunch of small fixes and improvements to the OAuth feature as
well as a security fix to a recently reported XSS vulnerability.  See the
full changelog below.

Security fix

* Cross-site scripting (XSS) via HTML messages with malicious CSS content

This version is considered stable and we recommend to update all productive
installations of Roundcube with it.  Please do backup your data before
updating!

CHANGELOG

* OAuth: pass 'id_token' to 'oauth_login' plugin hook (#8214)
* OAuth: fix expiration of short-lived oauth tokens (#8147)
* OAuth: fix relative path to assets if /index.php/foo/bar url is used
  (#8144)
* OAuth: no auto-redirect on imap login failures (#8370)
* OAuth: refresh access token in 'refresh' plugin hook (#8224)
* Fix so folder search parameters are honored by subscriptions_option plugin
  (#8312)
* Fix password change with Directadmin driver (#8322, #8329)
* Fix so css files in plugins/jqueryui/themes will be minified too (#8337)
* Fix handling of unicode/special characters in custom From input (#8357)
* Fix some PHP8 compatibility issues (#8363)
* Fix chpass-wrapper.py helper compatibility with Python 3 (#8324)
* Fix scrolling and missing Close button in the Select image dialog in
  Elastic/mobile (#8367)
* Security: fix cross-site scripting (XSS) via HTML messages with malicious
  CSS content

Log message:
mail/roundcube: update to 1.5.0

1.5.0 (2021-10-17)

Quote from release announce:

We proudly announce the final release of the next major version 1.5 of
Roundcube webmail. With this milestone we introduce new features and full
PHP 8.0 support. The most noteworthy additions are:

   - Dark mode for Elastic skin
   - OAuth2/XOauth support (with plugin hooks)
   - Collected recipients and trusted senders
   - Moving recipients between inputs with drag & drop
   - Full unicode support with MySQL database
   - Support of IMAP LITERAL- extension RFC 7888
     <https://datatracker.ietf.org/doc/html/rfc7888>
   - Support of RFC 2231 <https://datatracker.ietf.org/doc/html/rfc2231>
     encoded names
   - Cache refactoring

Log message:
mail: Replace RMD160 checksums with BLAKE2s checksums

All checksums have been double-checked against existing RMD160 and
SHA512 hashes

The following distfiles were unfetchable (possibly fetched
conditionally?):

./mail/qmail/distinfo netqmail-1.05-TAI-leapsecs.patch

Log message:
mail: Remove SHA1 hashes for distfiles

Log message:
roundcube: use PKG_SYSCONFDIR for plug-in configuration files

This moves the configuration files for Roundcube plug-ins to $PKG_SYSCONFDIR,
where they should belong instead of $RC_DIR/$PLUGIN_DIR.

This works without any further patches, because Roundcube falls back to
RCUBE_CONFIG_DIR.'/'.$this->ID . '.inc.php' for plug-ins basically.

Bumps PKGREVISION for the plug-ins using ../../mail/roundcube/plugins.mk
(enigma, password, and zipdownload).

Tested on NetBSD/amd64.

OK taca@