Roundcube Webmail 1.2.0

This is the next major version 1.2 of Roundcube webmail.
It introduces new features since version 1.1 primarily focusing on security and PGP encryption:

• PHP7 compatibility
• PGP encryption via Mailvelope (browser) or the Enigma plugin (server-side)
• Drag-n-drop attachments from mail preview to compose window
• Mail messages searching with predefined date interval
• Improved security measures to protect from brute-force attacks

And of course plenty of small improvements and bug fixes.

As already announced with the 1.2-beta release, PGP encryption comes in two flavours: client-side using the Mailvelope browser extension and server-side with the Enigma plugin using GnuPG on the server.

Support with the Mailvelope browser plugin comes out of the box and is enabled if the Mailvelope API is detected in a user's browser. The Mailvelope documentation explains how to enable it for your site.

The features of the Enigma plugin, which comes with the release package and simply needs to be activated for your Roundcube installation are explained in this blog post.

IMPORTANT: with this version, we finally deprecate some old Roundcube library functions. Please test your plugins thoroughly and look for deprecation warnings in the logs.

With the release of Roundcube 1.2.0, the previous stable release branches 1.0.x and 1.1.x will switch in to LTS low maintenance mode which means they will only receive important security updates but no longer any regular improvement updates.

CHANGELOG (since 1.2-rc)

• Enigma: Added enigma_debug option
• Fix message list multi-select/deselect issue (#5219)
• Fix bug where getting HTML editor content could steal focus from other form controls (#5223)
• Fix bug where contact search menu fields where always unchecked in Larry skin
• Fix autoloading of 'html' class
• Fix bug where Encrypt button appears when switching editor to HTML (#5235)
• Fix XSS issue in href attribute on area tag (#5240)

See the complete Changelog in the wiki.