@augusto I've got good news for you: https://forum.cloudron.io/post/41167

@scooke It is totally allowed to rename an open source app. The open source licenses after all do allow to fork the app. The only required thing, most of the time, is to keep the original names and authors in the license files. And also, of course, for copyleft licenses, to share back any change you made to the app.

@girish That worked. By the way, is there a plan to package Keycloak? I managed to run Keycloak and Outline on Cloudron. Keycloak needed some patching to make it work on the read-only system without mounting everything to /app/data. Outline wiki app can be easily set up to authenticate using Keycloak. Both apps seem to be working as they should. Do you think we can publish those apps to the Cloudron App Store? That would be my first experience publishing an app.

Currently, I am packaging the Outline app to directly authenticate with the Cloudron user directory without the need to install Keycloak. If anyone is interested, I published a little more details in my blog. I'm doing another write-up describing the issues I solved while packaging Keylcloak.

@andreasdueren No, it doesn't have to be. The websites are using Wordpress so it was easy to just use of the popular form plugins like Contact Form 7, etc.. I don't mind redirecting users off-site if it means NO SPAM 🙂

@klausagnoletti I'm already there 🙂 but not a Cloudron dev or anything, but yeah it would be amazing the have the existing metabase cloudron app in "flavors" one could be the default app we have now, another one could bootstrap crowdsec db and be a one click install for the underlying crowdsec installed in the host but I have no idea if it's possible.

@marcusquinn said in Why not make Cloudron fully open source again?:

@gabrielcossette If you can't afford Cloudron, you probably have bigger problems.

Maybe I didn't word it correctly, but that's not what I meant. I wanted to express that Cloudron terms and pricing could change in the future, in a way that could not be appropriate anymore for some users. And as the platform is not open source, you have no choice than migrating to a different platform.

It's all about risk management.
Personally, I find it too risky to host all my digital infrastructure on a platform that doesn't provide a good exit strategy.

[...] open-source comes with a lot of admin overhead for discussion and rights-management.

As long as you manage expectations, you can do open source and not burn you out.

You could state: "Hey, feel free to use the code, ask questions and make contributions, but as our team has limited resources (for now), we can't make any promise regarding support. Also, if you are interested in reliable support, check out our commercial offer. 😉"

I have opened a related Feature request a few weeks ago.

@malvim said in Cloudron on a Raspberry pi?:

I currently do own a domain and run cloudron on a rented server, but I'm from Brazil and stuff is pretty bad here right now

We also have a thread on that.. search for "cheap vps" ..
my profile has a link to the affordable VPS servers I use.

The ticker on the front page with the section "Recent App Updates" is dynamically generated.

2ed1f082-b5ca-4fec-b2b5-2f9e5510b691-image.png

@atridad I configured it to work with my existing Mailgun account as I didn't want to deal with my ISP. I had issues with them in the past regarding simpler things like billing Q's and plan changes.. imagine the horror if I ask about technical stuff 😂

For a future project, I'm going to try to run a CR home server on a residential internet plan with SPECTRUM/TIME WARNER. North American residents will understand the struggle lol.

@jdaviescoates And it would be cool if the sign up page could be customizable, with an appearance like the Element sign up page (customizable image background) rather than a bland rectangular box sign up. Something that tells them... You are about to enter an incredible place!

deploy a surfer app and some JS/HTML to take a number of different GET/POST requests and forward them

True, a very reliant and low tech solution that could work! If I don't think of something else anytime soon that's probably what I'll do. I'll update this post when I have that part working as well.

Initially I thought you were aiming at setting up a web page where you can type in any message for you/others, but that removes the API aspects which N8N is for.

No, don't want anyone just being able to send me notifications whenever 🙂

@robi Actually for me, it wasn't really scripted and was more manual in nature.

Basically ran the cloudron list command, then copied out all the WordPress manifest ID types and put it together in a command sequence like this:

cloudron push --app <www.example1.com> /Users/<username>/Desktop/php.ini /app/data/php.ini && \ cloudron push --app <www.example2.com> /Users/<username>/Desktop/php.ini /app/data/php.ini && \ cloudron push --app <www.example3.com> /Users/<username>/Desktop/php.ini /app/data/php.ini && \ cloudron push --app <www.example4.com> /Users/<username>/Desktop/php.ini /app/data/php.ini && \ cloudron push --app <www.example5.com> /Users/<username>/Desktop/php.ini /app/data/php.ini && \ cloudron push --app <www.example6.com> /Users/<username>/Desktop/php.ini /app/data/php.ini && \ cloudron push --app <www.example7.com> /Users/<username>/Desktop/php.ini /app/data/php.ini && \ cloudron push --app <www.example8.com> /Users/<username>/Desktop/php.ini /app/data/php.ini && \ cloudron push --app <www.example9.com> /Users/<username>/Desktop/php.ini /app/data/php.ini && \ cloudron push --app <www.example0.com> /Users/<username>/Desktop/php.ini /app/data/php.ini

...etc.

I haven't scripted it, but I will certainly look into doing that in the future if these types of tasks come up more often.

Hmm I had another crack at this, but after I try to mount the drive from the rclone command line, it sits there for ages and does not complete. 😞

I tried mounting and it seems to work (gets a green light) but then a backup errors.

"taskId": "2441", "errorMessage": "Unable to chown:ENOENT: no such file or directory, chown '/mnt/backups/snapshot/app_21c3ed5d-24b5-46a7-afd9-874c5e23e2c8.tar.gz'", "timedOut": false, "backupId": null

All tips / ideas appreciated.

Flatpack and Appimage formats do not provide the kind of process and filesystem isolation that Docker does. I would not be comfortable running run a service like Cloudron if it allowed running things other than well-defined/managed containers.

Yes, there are ways to break isolation and escalate out of a Docker container, but flatpack apps can, essentially, write anywhere on my system. Updating the ecosystem is also much more difficult; by comparison, it is possible to auto-build Docker containers from source and track recent updates/manage timely security vulns in a way that flatpack/appimage packages do not/rarely do.

perfect, thanks, will try it out and get back if it's not working 🙂

@girish Thanks!

@d19dotca thanks, will look into all of that

@robi I checked my IP. It's not the one I posted. The IP probably changes as @girish mentioned.

Yup, we are also in DigitalOcean, AWS Markplace, Vultr as well. Time4VPS also has an image but it's outdated, unfortunately we don't control that image. If anyone knows other hosting providers where we should integrate let us know 😄 Even better if you have a contact in those providers...

I'm installing a new Cloudron and got bit by this again.. can't get mosh to work without manually tweaking iptables.

iptables -I INPUT 1 -p udp --dport 60000:60010 -j ACCEPT

@sam_uk : it's a very interesting and good discussion.

Like @scooke, I'm not sure it's my place to comment much, as it is entirely up to @girish & @nebulon how they want to take things forward.

I can certainly see that some arrangement like this would get massive thumbs-up from the OS community, and consequently could lead to a significant (huge?) uptake of Cloudron by OS enthusiasts. Meaning there could be a self-interested benefit to Cloudron doing it. But I'm not sure there is something broken which needs fixing, so maybe leave well alone.

And having said all that, as valuable and excellent a platform as Cloudron is, it's a gateway for deploying and managing OS apps. Does Cloudron itself have to be OS? It's still fantastic and I'm no less of a fan, even if it isn't. If some evil empire body does acquire it, well, life becomes less easy, rather than being directly threatened.

While the apps that I deploy on Cloudron should be OS wherever possible, it doesn't matter that much to me that the tool I am using to deploy is not OS. I just want it to continue its stability and grow its functionality even further. I use a Mac as primary desktop, and I don't stop doing so because Apple operating system is not open. Cloudron has amply demonstrated their reliability. I don't need it to be OS in order to trust it and use it.

Just my 2p, others may have different considerations.

Ah okay, totally fair then. I’ve not personally noticed things represented in MBps but if my experience doesn’t match the usual that others see then I can appreciate that view. 🙂 thanks guys.

@nebulon said in Add Modsecurity NGINX WAF:

@mastadamus I don't know much about this plugin/addon for nginx, but it kinda seems to be only part of Nginx Plus, which we are not using in Cloudron. Also if that matters here, the main nginx is only used as a reverse proxy.

I understand. Thank you for your answer.