/archivar

Download mails and their attachments from an pop3/imap account and store them

Primary LanguageGoThe UnlicenseUnlicense

Publish Archivar Docker

Archivar

Is a small golang tool to archive/move resources from one location to another, for example archiving mails sent to a specific mailadress on a webdav storage. Previously I used IFTTT or YahooPipelines for these tasks but I wanted to keep working with GO and tinker around.

THIS - IS - (TO BE) - HEAVILY - OVERENGINEERED but clean enough

DIAGRAM

┌──────────────┐  ┌──────────────┐  ┌─────────────┐  ┌──────────────┐
│ GATHERER     │  │ FILTERS      │  │ PROCESSOR   │  │ ARCHIVER     │
│ │            │  │ │            │  │ │           │  │ │            │
│ │►IMAP       ├─►│ │►Filename   ├─►│ │►SANATIZER ├─►│ │►WEBDAV     │
│ │►WEBDAV     │  │ └►Filesize   │  │ └►ENCRYPTER │  │ │►GDRIVE     │
│ └►FILESYSTEM │  │              │  │             │  │ └►FILESYSTEM │
└──┬───────────┤  └───┬──────────┤  └─┬───────────┤  └──┬───────────┤
   │ DOWNLOAD  │      │ FILTER   │    │ PROCESS   │     │ UPLOAD    │
   │ DELETE    │      │ │►ACCEPT │    └───────────┘     └───────────┘
   └───────────┘      │ │►REJECT │
                      │ └►MISS   │
                      └──────────┘

Example

See etc/archivar.yaml.dist for a full example.

Minimal example config

# etc/archivar.yaml
Jobs:
  imap_to_webdav:
    Gatherer: imap_mail_account
    Archiver: webdav_nextcloud
Gatherers:
  imap_mail_account:
    Type: imap
    Config:
      Server: server:993
      Username:
      Password:
      # DeleteDownloaded: False
      # AllowInsecureSSL: False
Archivers:
  webdav_nextcloud:
    Type: webdav
    Config:
      Username:
      Password:
      Server: https://server/remote.php/dav/files/username/
      UploadDirectory: /upload/
# docker-compose.yml
# with bind-mount
version: "2.3"

services:
  archivar:
    image: docker.pkg.github.com/rwese/archivar/archivar:latest
    ## semver images
    # image: docker.pkg.github.com/rwese/archivar/archivar:0
    # image: docker.pkg.github.com/rwese/archivar/archivar:0.2
    # image: docker.pkg.github.com/rwese/archivar/archivar:0.2.1
    restart: unless-stopped
    volumes:
      - "./etc:/etc/go-archivar"

TODO

  • General
    • Solution to remember already archived things
    • How to handle Processors adding files
    • Tests now that things shape up
      • Archiver
      • Filters
      • Gatherer
      • Processors
    • Prometheus Instrumenting
    • More docs
    • added PublicKey for file encryption/decryption and key-generation
    • Use Factories to reduce "new" logic
    • Middleware-like for Processors and Filters
    • Use Github-Actions
    • Use Github-Packages for DockerImages
    • MultiStaged DockerFile
    • MUST find a better naming for ´/internal` packages, no named imports
  • Gatherers
    • POP3
    • Dropbox
    • Google Drive
    • FileSystem
    • IMAP
    • Webdav
    • Reddit
      • Saved Posts
      • Top/New/Hot of Subreddit
      • w/o Post Comments?
  • Archivers
    • Dropbox
    • FileSystem
    • Google Drive
    • Webdav
  • Processors
    • Sanatizer (Filename)
    • Encryption
      • Passphrase Support for decryption
      • Encrypt Metadata
    • OCR
    • Anti Virus (rly?)
  • Filters
    • Filename
    • Filesize
    • Image (Size, Dpi)
  • cleanup logging
    • properly apply log levels to output
  • deamonize - let's call it "daemonized"
    • graceful shutdown
  • global service structgen to hold logger and other global stuff

Jobs

Definition

Each job consists of 1:Gatherer -> [x:Filters -> x:Processors] -> 1:Archiver

Jobs:
  imap_to_webdav:
    Interval: 600
    Gatherer: imap_mail_account
    Archiver: webdav_nextcloud
    Filters:
      - pdf_only
      - filesize_filter
    Processors:
      - only_nice_chars_and_trim

Gatherers

FILESYSTEM

Gatherers:
  <gatherer_name>:
    Type: filesystem
    Config:
      Directory: /home/user/input_directory
      # DeleteDownloaded: true

IMAP

Gatherers:
  <gatherer_name>:
    Type: imap
    Inbox: INBOX // is the default
    InboxPrefix: gmail_label // every gmail label starting with
    Config:
      Server: server:993
      Username:
      Password:
      # DeleteDownloaded: False
      # AllowInsecureSSL: False

Optional config options:

Config Description Default
TimestampFormat Go date style definition of timestamp which is used for generating paths and filenames. (unoffical docs, offical docs) 20060102_150405
PathPattern definition of directory path where files are stored {mail_dir}/{mail_to}/{mail_to_detail}/{mail_date}-{mail_subject_safe}
FilePattern definition of filename for the stored files {attachment_filename}
MaxSubjectLength Char limit for mail subject if used in file or path pattern 0 (unlimited)
MoveProcessedToFolder Moves mail to specified mail folder after processing (has no effect if DeleteDownloaded is set to True) <none>
WithSeen Defines if mails with "Seen" flag should be fetched or not False
WithDeleted Defines if mails with "Deleted" flag should be fetched or not False

Available variables in file and path patterns

Variable Description Example
mail_from Full "From" address From: example+test@example.com -> example+test@example.com
mail_from_user User part of "From" address From: example+test@example.com -> example
mail_from_detail Detail part of "From" address From: example+test@example.com -> test
mail_from_domain Domain part of "From" address From: example+test@example.com -> example.com
mail_to Full "To" address To: example+test@example.com -> example+test@example.com
mail_to_user User part of "To" address To: example+test@example.com -> example
mail_to_detail Detail part of "To" address To: example+test@example.com -> test
mail_to_domain Domain part of "To" address To: example+test@example.com -> example.com
mail_subject Mail subject (raw, cut at MaxSubjectLength) Subject: "Re: Quote" -> "Re: Quote"
mail_subject_safe Mail subject (safe for filenames, cut at MaxSubjectLength) Subject: "Re: Quote" -> "Re Quote" (without colon)
mail_date Mail date in format defined in TimestampFormat TimestampFormat: "2006-01-02" -> "2024-10-13"
mail_dir Mail folder path InboxPrefix: "test" -> "test"
attachment_filename Filename of attachment Attachment-Filename "invoice.pdf" -> "invoice.pdf"

WEBDAV

Gatherers:
  <gatherer_name>:
    Type: webdav
    Config:
      Username:
      Password:
      Server: https://server/remote.php/dav/files/username/
      UploadDirectory: /input_directory/

Archivers

Filesystem

Store files directly on the filesystem, write access required, works with nfs or similar.

Archivers:
  <archiver_name>:
    Type: filesystem
    Config:
      Directory: /home/user/archivar/

Google-Drive

The setup of this archiver is a little complicated as it requires a client registration etc etc. I will extend the documentation when I get to it. (i try)

Archivers:
  <archiver_name>:
  google_drive:
    Type: gdrive
    OAuthToken: >
      {
        "access_token":"<your token here>",
        "token_type":"Bearer",
        "refresh_token":"<your refresh token here>",
        "expiry":"some-date"
      }
    ClientSecrets: >
      {"installed":
        {
          "client_id":"some_client_id",
          "project_id":"archivar",
          "auth_uri":"https://accounts.google.com/o/oauth2/auth",
          "token_uri":"https://oauth2.googleapis.com/token",
          "auth_provider_x509_cert_url":"https://www.googleapis.com/oauth2/v1/certs",
          "client_secret":"some_client_secret",
          "redirect_uris":["urn:ietf:wg:oauth:2.0:oob","http://localhost"]
        }
      }
    UploadDirectory: /archivar/

Webdav

Archivers:
  <archiver_name>:
    Type: webdav
    Config:
      Username:
      Password:
      Server: https://server/remote.php/dav/files/username/
      UploadDirectory: /upload/

Filters

Filters are used to filter files provided by the gatherer.

Possible results:

  • Allow
  • Reject
  • Miss

Filesize

Verify if file is at least MinSizeBytes and/or is below MaxSizeBytes.

Filters:
  min_1B_max_100MB:
    Type: filesize
        Config:
          MinSizeBytes: 100
          MaxSizeBytes: 100000000

Filename

Test the Filename against defined regex's.

Tests are always Allow -> Reject -> Miss (Allow).

  • If you wish to not allow missed regex's have a . regex.
  • All regexes are partial by default if you wish full match use ^abcd$
  • Case-insensitive is (?i)
Filters:
  pdf_only:
    Type: filename
        Config:
          Allow:
            - (?i).pdf$
          Reject:

Processors

Sanatizer

Is used to perform manipulation filenames on the gathered files.

Processors:
  only_nice_chars_and_trim:
    Type: sanatizer
    Config:
      TrimWhitespaces: True
      CharacterBlacklistRegexs:
        - "[^[:word:]-_. ]"

Encrypter

Encrypter will encrypt, duh, files with the PublicKey given.

The Process works using EncryptOAEP(RSA-OAEP) to encrypt the AES passphrase which is prepended to the encrypted fileBody both are then base64 encoded.

For decryption you can use the cli command:

./archivar encrypter decrypt \
--privateKey myKey.sec \
--srcFile /archive/somefile.txt.encrypted \
--destFile /archive/somefile.txt

I will work on the cli commands when the need arises, for now this works.

Passphrase support is TODO.

To split the encrypted-key from the encrypted-body you can use split:

./archivar encrypter split --srcFile /archive/somefile.txt.encrypted

Processors:
  basic_encrypter:
    Type: encrypter
    Config:
      AddExtension: .thisIsEncryptedForMe
      DontRename: false # Default false
      PublicKey: |
        -----BEGIN RSA PUBLIC KEY-----
        << Enter your public key to encrypt files for >>
        -----END RSA PUBLIC KEY-----

Notes