webmail: when composing a message, show security status in a bar below addressee input field

the bar is currently showing 3 properties:
1. mta-sts enforced;
2. mx lookup returned dnssec-signed response;
3. first delivery destination host has dane records

the colors are: red for not-implemented, green for implemented, gray for error,
nothing for unknown/irrelevant.

the plan is to implement "requiretls" soon and start caching per domain whether
delivery can be done with starttls and whether the domain supports requiretls.
and show that in two new parts of the bar.

thanks to damian poddebniak for pointing out that security indicators should
always be visible, not only for positive/negative result. otherwise users won't
notice their absence.

webmail/api_test.go

@@ -12,6 +12,7 @@ import (
 	"github.com/mjl-/bstore"
 	"github.com/mjl-/sherpa"
 
+	"github.com/mjl-/mox/dns"
 	"github.com/mjl-/mox/mox-"
 	"github.com/mjl-/mox/queue"
 	"github.com/mjl-/mox/store"
@@ -362,4 +363,10 @@ func TestAPI(t *testing.T) {
 	l, full = api.CompleteRecipient(ctx, "cc2")
 	tcompare(t, l, []string{"mjl cc2 <mjl+cc2@mox.example>"})
 	tcompare(t, full, true)
+
+	// RecipientSecurity
+	resolver := dns.MockResolver{}
+	rs, err := recipientSecurity(ctxbg, resolver, "mjl@a.mox.example")
+	tcompare(t, err, nil)
+	tcompare(t, rs, RecipientSecurity{SecurityResultNo, SecurityResultNo, SecurityResultNo})
 }