mailtrain

Mailtrain v2

Mailtrain is a self hosted newsletter application built on Node.js (v14+) and MySQL (v8+) or MariaDB (v10+).

This is version 2 of Mailtrain. It mostly implements all features of v1 and add some more. It is a complete rewrite, so you will have to install it from scratch.

If you are upgrading from Mailtrain v1, backup the DB and use it for Mailtrain v2. Mailtrain v2 should be able to upgrade the DB to the new schema.

Features

• Subscriber lists management
• List segmentation
• Custom fields
• Email templates (including MJML-based templates)
• Custom reports
• Automation (triggered and RSS campaigns)
• Multiple users with granular user permissions and flexible sharing
• Hierarchical namespaces for enterprise-level situations
• Builtin Zone-MTA (https://github.com/zone-eu/zone-mta) for close-to-zero setup of mail delivery

Recommended minimal hardware Requirements

• 2 vCPU
• 4096 MB RAM

Quick Start Preparation

Mailtrain creates three URL endpoints, which are referred to as "trusted", "sandbox" and "public". This allows Mailtrain to guarantee security and avoid XSS attacks in the multi-user settings. The function of these three endpoints is as follows:

• trusted - This is the main endpoint for the UI that a logged-in user uses to manage lists, send campaigns, etc.
• sandbox - This is an endpoint not directly visible to a user. It is used to host WYSIWYG template editors.
• public - This is an endpoint for subscribers. It is used to host subscription management forms, files and archive.

The recommended deployment of Mailtrain would use 3 DNS entries that all points to the same IP address. For example as follows:

• lists.example.com - public endpoint (A record lists under example.com domain)
• mailtrain.example.com - trusted endpoint (CNAME record mailtrain under example.com domain that points to lists)
• sbox-mailtrain.example.com - sandbox endpoint (CNAME record sbox-mailtrain under example.com domain that points to lists)

Installation on fresh CentOS 7 or Ubuntu 18.04 LTS (public website secured by SSL)

This will setup a publicly accessible Mailtrain instance. All endpoints (trusted, sandbox, public) will provide both HTTP (on port 80) and HTTPS (on port 443). The HTTP ports just issue HTTP redirect to their HTTPS counterparts.

The script below will also acquire a valid certificate from Let's Encrypt. If you are hosting Mailtrain on AWS or some other cloud provider, make sure that before running the installation script you allow inbound connection to ports 80 (HTTP) and 443 (HTTPS).

Note, that this will automatically accept the Let's Encrypt's Terms of Service. Thus, by running this script below, you agree with the Let's Encrypt's Terms of Service (https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf).

1. Login as root. (I had some problems running npm as root on CentOS 7 on AWS. This seems to be fixed by the seemingly extraneous su within sudo.)

   sudo su -
   

2. Install GIT

   For Centos 7 type:

   yum install -y git
   

   For Ubuntu 18.04 LTS type

   apt-get install -y git
   

3. Download Mailtrain using git to the /opt/mailtrain directory

   cd /opt
   git clone https://github.com/Mailtrain-org/mailtrain.git
   cd mailtrain
   git checkout v2
   

4. Run the installation script. Replace the urls and your email address with the correct values. NOTE that running this script you agree Let's Encrypt's conditions.

   For Centos 7 type:

   bash setup/install-centos7-https.sh mailtrain.example.com sbox-mailtrain.example.com lists.example.com admin@example.com
   

   For Ubuntu 18.04 LTS type:

   bash setup/install-ubuntu1804-https.sh mailtrain.example.com sbox-mailtrain.example.com lists.example.com admin@example.com
   

5. Start Mailtrain and enable to be started by default when your server starts.

   systemctl start mailtrain
   systemctl enable mailtrain
   

6. Open the trusted endpoint (like https://mailtrain.example.com)

7. Authenticate as admin:test

8. Update your password under admin/Account

9. Update your settings under Administration/Global Settings.

10. If you intend to sign your email by DKIM, set the DKIM key and DKIM selector under Administration/Send Configurations.

Installation on fresh CentOS 7 or Ubuntu 18.04 LTS (local installation)

This will setup a locally accessible Mailtrain instance (primarily for development and testing). All endpoints (trusted, sandbox, public) will provide only HTTP as follows:

• http://localhost:3000 - trusted endpoint
• http://localhost:3003 - sandbox endpoint
• http://localhost:3004 - public endpoint

1. Login as root. (I had some problems running npm as root on CentOS 7 on AWS. This seems to be fixed by the seemingly extraneous su within sudo.)

   sudo su -
   

2. Install git

   For Centos 7 type:

   yum install -y git
   

   For Ubuntu 18.04 LTS type:

   apt-get install -y git
   

3. Download Mailtrain using git to the /opt/mailtrain directory

   cd /opt
   git clone https://github.com/Mailtrain-org/mailtrain.git
   cd mailtrain
   git checkout v2
   

4. Run the installation script. Replace the urls and your email address with the correct values. NOTE that running this script you agree Let's Encrypt's conditions.

   For Centos 7 type:

   bash setup/install-centos7-local.sh
   

   For Ubuntu 18.04 LTS type:

   bash setup/install-ubuntu1804-local.sh
   

5. Start Mailtrain and enable to be started by default when your server starts.

   systemctl start mailtrain
   systemctl enable mailtrain
   

6. Open the trusted endpoint http://localhost:3000

7. Authenticate as admin:test

Deployment with Docker and Docker compose

This setup starts a stack composed of Mailtrain, MongoDB, Redis, and MariaDB. It will setup a locally accessible Mailtrain instance with HTTP endpoints as follows.

• http://localhost:3000 - trusted endpoint
• http://localhost:3003 - sandbox endpoint
• http://localhost:3004 - public endpoint

To make this publicly accessible, you should add reverse proxy that makes these endpoints publicly available over HTTPS. If using the proxy, you also need to set the URL bases and --withProxy parameter via MAILTRAIN_SETTING as shown below. An example of such proxy would be:

• http://localhost:3000 -> https://mailtrain.example.com
• http://localhost:3003 -> https://sbox-mailtrain.example.com
• http://localhost:3004 -> https://lists.example.com

To deploy Mailtrain with Docker, you need the following two dependencies installed:

• Docker
• Docker Compose

These are the steps to start Mailtrain via docker-compose:

1. Download Mailtrain's docker-compose build file

   curl -O https://raw.githubusercontent.com/Mailtrain-org/mailtrain/v2/docker-compose.yml
   

2. Deploy Mailtrain via docker-compose (in the directory to which you downloaded the docker-compose.yml file). This will take quite some time when run for the first time. Subsequent executions will be fast.

   docker-compose up
   

3. Open the trusted endpoint http://localhost:3000

4. Authenticate as admin:test

The instructions above use an automatically built Docker image on DockerHub (https://hub.docker.com/r/mailtrain/mailtrain). If you want to build the Docker image yourself (e.g. when doing development), use the docker-compose-local.yml located in the project's root directory.

Deployment with Docker and Docker compose (for development)

This setup starts a stack like above, but is tweaked to be used for local development using docker containers.

1. Clone this repository

2. Bring up the development stack

   docker-compose -f docker-compose-develop.yml up -d
   

3. Connect to a shell inside the container

   docker-compose exec mailtrain bash
   

4. Run these commands once to install all the node modules and build the client webapp

   cd /app
   bash setup/reinstall-modules.sh
   cd /app/client && npm run build && cd /app
   
   

5. Start the server for the first time with this command, to generate the server/config/production.yaml

   bash docker-entrypoint.sh
   

Docker Environment Variables

When using Docker, you can override the default Mailtrain settings via the following environment variables. These variables have to be defined in the docker-compose config file. You can give them a value directly in the docker-compose.yml config file.

Alternatively, you can just declare them there leaving their value empty (see https://docs.docker.com/compose/environment-variables/#pass-environment-variables-to-containers). In that case, the value can be provided via a file called .env or via environment variables (e.g. URL_BASE_TRUSTED=https://mailtrain.domain.com (and more env-vars..) docker-compose -f docker-compose.yml build (or up))

!!!WARNING!!! Always set ADMIN_PASSWORD, as it will leave your instance otherwise vurnerable with the default password being test!

Parameter Description

ADMIN_PASSWORD sets Admin Password, Admin users name can be changed, but password will always be overwritten by this, please set it always, as it otherwise defaults to test

ADMIN_ACCESS_TOKEN sets Access Token for API, this is optional

PORT_TRUSTED sets the trusted port of the instance (default: 3000)

PORT_SANDBOX sets the sandbox port of the instance (default: 3003)

PORT_PUBLIC sets the public port of the instance (default: 3004)

URL_BASE_TRUSTED sets the external trusted url of the instance (default: http://localhost:3000), e.g. https://mailtrain.example.com

URL_BASE_SANDBOX sets the external sandbox url of the instance (default: http://localhost:3003), e.g. https://sbox-mailtrain.example.com

URL_BASE_PUBLIC sets the external public url of the instance (default: http://localhost:3004), e.g. https://lists.example.com

WWW_HOST sets the address that the server binds to (default: 0.0.0.0)

WWW_PROXY use if Mailtrain is behind an http reverse proxy (default: false)

WWW_SECRET sets the secret for the express session (default: $(pwgen -1))

MONGO_HOST sets mongo host (default: mongo)

WITH_REDIS enables or disables redis (default: true)

REDIS_HOST sets redis host (default: redis)

REDIS_PORT sets redis host (default: 6379)

MYSQL_HOST sets mysql host (default: mysql)

MYSQL_PORT sets mysql port (default: 3306)

MYSQL_DATABASE sets mysql database (default: mailtrain)

MYSQL_USER sets mysql user (default: mailtrain)

MYSQL_PASSWORD sets mysql password (default: mailtrain)

WITH_LDAP use if you want to enable LDAP authentication

LDAP_HOST LDAP Host for authentication (default: ldap)

LDAP_PORT LDAP port (default: 389)

LDAP_SECURE use if you want to use LDAP with ldaps protocol

LDAP_BIND_USER User for LDAP connexion

LDAP_BIND_PASS Password for LDAP connexion

LDAP_FILTER LDAP filter

LDAP_BASEDN LDAP base DN

LDAP_UIDTAG LDAP UID tag (e.g. uid/cn/username)

WITH_ZONE_MTA enables or disables builtin Zone-MTA (default: true)

POOL_NAME sets builtin Zone-MTA pool name (default: os.hostname())

WITH_CAS use if you want to use CAS

CAS_URL CAS base URL

CAS_NAMETAG The field used to save the name (default: username)

CAS_MAILTAG The field used to save the email (default: mail)

CAS_NEWUSERROLE The role of new users (default: nobody)

CAS_NEWUSERNAMESPACEID The namespace id of new users (default: 1)

LOG_LEVEL sets log level among `silly

DEFAULT_LANGUAGE sets default language (default: en-US)

WITH_POSTFIXBOUNCE enables PostfixBounce TCP listener (default: false)

POSTFIXBOUNCE_PORT sets PostfixBounce Listening TCP-Port (default: 5699)

POSTFIXBOUNCE_HOST sets PostfixBounce Listening Host (default: 127.0.0.1)

If you don't want to modify the original docker-compose.yml, you can put your overrides to another file (e.g. docker-compose.override.yml) -- like the one below.

version: '3'
services:
  mailtrain:
    environment:
    - URL_BASE_TRUSTED
    - URL_BASE_SANDBOX
    - URL_BASE_PUBLIC

GPL-V3.0