I have also made a writeup of this on my blog

@jdaviescoates said in Role required to enable mailbox creation:

@nebulon said in Role required to enable mailbox creation:

it may actually make a lot of sense to allow the usermanager role to also manage mail related things. Not sure yet, feedback welcome.

Yes, I think User Managers should be able to create email accounts too, given that in many cases a new user will also need a mailbox.

And I can only agree with that guys.

@girish I just logged into Wordpress (dev) with my CR user that has 2FA enabled and it didn't ask me for the code. Is there an option I need to enable somewhere or is this feature still on the to-do list?

@lonkle not yet, currently not planned for any release.

New Relic is proprietary analytics trackers et al:-

https://reports.exodus-privacy.eu.org/en/trackers/130/

Not to be trusted for embedding into Cloudron!

Haven't tried but echo "yes" | ./cloudron-setup probably works as well to automate reboot.

@atrilahiji I definitely like this idea! I know I've had to delete an app the odd time that I'm not sure if I will need later or not. My workarounds so far are to change the URL of the app to something like "app-old" or to make sure I download the backup info file first before deleting the app. Your idea is much cleaner and would be an awesome addition! It will allow for extra redundancy if for example we delete an app so it can be replaced by a new app at the same URL and something goes wrong, we can quickly revert back in such a case.

@nebulon Ahhh @robi was making a funny 🙂

@scooke comrade! 😆 🇷🇺

@girish Ahhhh yes this works! Thank you very much.

@girish - this is not possible to do unfortunately in Cloudron it seems, but kindly tell me if I'm doing something wrong here.

The redirect works for filtering out spam, in other words only non-spam messages get through to the endpoint email using a filter like this:

# rule:[Forward non-spam messages] if allof (not header :contains "x-spam-status" "Yes,") { redirect "<externalEmailAddress>"; }

However, all messages marked as spam still save in the mailbox regardless of any filters I set to discard them. In my case, I want the spam messages to be discarded/deleted automatically as there's no sense in them remaining in the "forwarding only" mailbox. It seems maybe there's a priority filter going on elsewhere in Cloudron that's overriding my sieve filter?

Using a filter like this:

# rule:[Discard spam messages on arrival] if allof (header :contains "x-spam-status" "Yes,") { discard; stop; }

... will still save the email in the Spam folder. I've tried variations of it too but no-dice. Basically I can't get any filters to work when it's an identified spam message, only filters when it's NOT spam.

Here's a way to reproduce it:

Set this filter in Roundcube: # rule:[Discard spam messages on arrival] if allof (header :contains "x-spam-status" "Yes,") { discard; stop; }

Send a message to the email account using the GTUBE string which SpamAssassin automatically marks with 1000 points, it's basically a test for spam filters: XJS*C4JDBQADN1.NSBN3*2IDNEN*GTUBE-STANDARD-ANTI-UBE-TEST-EMAIL*C.34X

See if the message is really discarded per the sieve filter or if it's still arriving in the Spam folder. In my cases, they still arrive in the Spam folder which seems to be incorrect behaviour.

Edit: I wrote a dedicated bug for this instead: https://forum.cloudron.io/topic/5189/can-t-discard-spam-messages-on-arrival-using-sieve-filters/1

Right, if Cloudron is no longer in control of a domain, switch that domain to manual or No-OP so all the other expected things don't keep failing.

Added in 6.3

I think enabling 2fa on your Cloudron will prevent brute-forcing already and the validation REST call on the server is pretty light-weight, so I don't think adding a captcha will be of great benefit.

@girish Always so quick to fix these things - thank you so much for your attention to this as always! 🙂

@murgero Exactly, I was thinking for stuff like Nextcloud or Moodle specifically.

@krashdeez-0 I would recommend to use a minio instance on another server for backups. This is widely used already by our users and is a lot more stable than Nextcloud.

@marcusquinn Yeah, I have another idea once differential backups become available..

Have the template App be backed up locally, while others remotely, keep things fast.

Let's see which we get first.

@marcusquinn yes, I think for a start if it's just a simple popup with some customizable markdown, I think it's easy to add this.

@hillside502 yes, would be cool to map home networks and the upcoming Cloudron Multiserver.. and any ActivityPub App federations.

@imc67 CIFS has to be tested on your specific mount because each CIFS mount is totally different (since it's network based and also depends on remote disk speed etc). But it's good to have a ball park number in any case.

Agree would be good to add, currently you can already just setup the DNS records with AAAA to point to the Cloudron and that should work fine. I think the automation of that is just what is lacking, next to maybe some mail DNS record related things, but not 100% sure.
Given that ipv4 is supported everywhere and at least I am not aware of a VPS provider who does not give ipv4 addresses, we have handled that as low priority so far.

I am curious in which circumstances you have ipv6 only clients? Maybe we are missing a crucial use-case.

@necrevistonnezr True, but imapfilter ( or another workaround ) is here today for you to achieve what you want. Beats waiting for the feature you're asking for which might be available sometime soon, later .... or never.

Fixed now 😄

@girish No, I don't have a lot of experience with postgresql. The strategy you describe aligns with my understanding of mysql's philosophy, but postgresql seems to require admins be more explicit. E.g. granting permissions to an arbitrary quoted LIKE pattern is documented in mysql, but postgresql's GRANT docs don't mention anything of the like and look like they require the specific object to exist (by nature of being a valid identifier) before granting permissions. Though I could be mistaken.

OK, I have fixed the expiry.

@girish thank you, subscribed. Desperately looking forward for the mail access restriction in 6.3, wish you a nice smooth release! 😊

@marcusquinn the API is also BitPay compatible btw. I think Coinbase is okay. In an ideal world, a public ledger really is the best. Since you and I both know that's not the world we live in, Monero serves an understandable need currently unsolved by Bitcoin. But that's the beauty of open source, right?

Thankfully, I have heard it is not hard to get a Monero daemon and payment integration running on btcpayserver via a docker flag. Along with an officially supported WordPress plugin, Point-of-Sale, crowdsourcing, shop, and invoice functions for any supported currency, this makes a nice little package for someone to get their community started with cryptocurrency.

Honestly, given that so many money services support purchasing BTC these days with QR-code scanning/sending and whatnot, I think giving Cloudron users the ability to get this going would be great. It may resonate with the kind of people looking for a self-hosted setup.

They have great docs
https://docs.btcpayserver.org/

Well-funded dev team
https://github.com/btcpayserver/btcpayserver/commits/master

And a demo running for anyone wanting to check it out
https://mainnet.demo.btcpayserver.org/