feat(auth): OAuth2 role-based mailbox access for OAUTHBEARER (#283)

* feat(auth): Add oauth2 role-based access

* feat(auth): Enhance role access evaluation with safe mailbox component checks

244 task move socketmap service from silver repo to raven repo (#245)

* Feature: Add group email support to LMTP server with IDP integration

* Feature: Enhance group email resolution with user profile fetching and organization unit handling

* Feature: Refactor group email handling by removing domain parameter and updating related methods

* Feature: Improve group email handling by refactoring resolver initialization and enhancing test coverage

* feat(socketmap): Implement socketmap service with alias and domain handling

- Add configuration loading from environment variables.
- Implement alias resolution with caching.
- Add domain existence check against Thunder IDP.
- Create handlers for user existence and virtual domains.
- Introduce netstring protocol for communication.
- Implement TCP server to handle socketmap requests.
- Add Thunder authentication and user validation logic.
- Enhance security with input sanitization and error handling.
- Update entrypoint script to support socketmap service.

* feat(groupresolver): Refactor email resolution by removing domain parameter and updating related methods

* feat(application): centralize application ID retrieval from environment variables and thunder logs

* fix(config): correct import order for blobstorage package

* feat(socketmap): enhance socketmap service by improving environment variable handling and error logging

* feat(socketmap): update socketmap service Dockerfile to use alpine 3.18 and refactor alias resolution logic
feat(config): add UUID regex for application ID extraction and enhance test coverage for application ID retrieval
fix(auth): improve error handling during auth payload marshalling in Thunder authentication

* fix(thunder): ensure secure TLS configuration for HTTP client with InsecureSkipVerify

* feat(socketmap): enhance user validation by adding group address support and refactor caching logic

* fix(user): correct import order for config package

* Delete internal/socketmap/README.md

refactor: remove password_initialized handling from user creation and…

… authentication flows (#231)

* refactor: remove password_initialized handling from user creation and authentication flows

* refactor: sanitize log outputs to prevent log injection vulnerabilities

* fix: specify Go version as 1.25 in linters workflow

* refactor: update Go version format in linters workflow and sanitize log outputs to prevent injection vulnerabilities

* fix: Correct gosec #nosec rule IDs (G704 for SSRF, G706 for log injection)

- Changed #nosec G107 to G704 for SSRF suppressions in auth.go and server.go
- Changed #nosec G115 to G706 for log injection suppressions
- All HTTP client.Do() calls use G704 (URL from validated config)
- All log.Printf() calls with sanitized input use G706
- Local gosec scan now shows 0 issues

196 bug same attachment is sent and received is stored twice (#199)

* feat: move blob table to shared.db for global deduplication

* resolve deduplication when content decoding

* refactor: update blob storage functions to use encoding parameter

* fix: improve database closure error handling in deduplication tests

Repo update (#162)

* docs: update README to enhance service descriptions and add missing ports

* docs: update security policy to clarify supported versions and fix PGP key path

* docs: simplify and update DELIVERY_SERVICE.md for clarity and conciseness

docs: update README to clarify Raven Mail Server architecture and con…

…figuration (#79)

task implement RENAME command and add corresponding test cases (#38)