Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


Skip to content

Feature Requests

New ideas, Feature Requests

757 Topics 5.8k Posts
  • OCSP Stapling for TLS/SSL

    Solved
    7
    1 Votes
    7 Posts
    1k Views
    girishG
    I got some mails about this last week and some people wondered what the situation with Cloudron is. I thought I will update it here. Let's Encrypt is discontinuing support for OCSP altogether in the coming weeks - https://letsencrypt.org/2024/12/05/ending-ocsp/ . A brief summary is that OCSP and CRL are two methods a browser can use to check the validity of an already issued certificate. OCSP involves querying a URL and CRL involves downloading a database of revoked certificate serial numbers. OCSP has a big privacy issue - when you visit example.com , the OCSP check can make the CA log the domain + IP (willing or forced by law). The "OCSP Must Staple" was a way to circumvent this but this hasn't gained much traction . As to what this means to Cloudron... nothing really. We did not enable OCSP Must Staple in the first place because nginx required some manual priming and downtime to make it work reliably (a point noted in the above URL).
  • OpenID Connect group restrictions?

    Moved
    6
    1 Votes
    6 Posts
    369 Views
    J
    @nebulon ah, "web site hosted outside of Cloudron" . So this is for app proxy? @krumel you are also using app proxy?
  • Add cache header to profile picture

    4
    2 Votes
    4 Posts
    94 Views
    nebulonN
    Currently, the URL is fixed which makes it hard to cache when avatar changes and the browser. However since the profile avatar is not a public route, we could look into having that delivered by the backend dynamically based on some hash. That might be a good idea, then we can set the cache to forever basically.
  • Need AAAA records for ip6 server address for email deliverability

    14
    2 Votes
    14 Posts
    518 Views
    marcusquinnM
    @charlesnw yes, the OP is a recommendation to add this as a health check notification. I don't think it would be practical to try and automate the setup, when a simple notification to advise it is missing and needs the user to setup with their hosting would save from a lot of bounced mail head-scratching. I solved this for myself through accidental discovery. There's no greater crime than wasting someone's time, and any user not knowing this is needed could lose unlimited amounts of time not knowing this is the problem. Basic need. Basic solution. No reason to debate if this is a good idea. Just persuade that it would be a respectful thing to implement. As I say, I'm alright. I'm giving time to this thread to help save others from lost time from not knowing this is their issue.
  • Logging - targets, retention etc

    8
    2 Votes
    8 Posts
    135 Views
    BrutalBirdieB
    @necrevistonnezr uhhhmmm Since I set up everything with ansible, I once found this out, put in my playbook and forgot about it. That it does not exist in the deb doc is questionable.
  • Make Cloudron SSO login more explicit

    10
    1
    3 Votes
    10 Posts
    414 Views
    nebulonN
    Indeed, the login view has changed for Cloudron 9, and we will keep that in mind to make it clearer what the app and the auth provider is. @perelin for the OpenID login button in the apps. As far as I am aware, penpot does not have support to customize that, yet. Maybe you can create an upstream feature request with penpot about this.
  • EntraID / AzureAD LDAP wrapper

    activedirectory ldap
    7
    1 Votes
    7 Posts
    400 Views
    N
    @JLX89 said in EntraID / AzureAD LDAP wrapper: How about just using an Enterprise App with SCIM Provisioning? That would be great
  • Add DNS Provider - Infomaniak

    domains dns
    1
    2
    3 Votes
    1 Posts
    99 Views
    No one has replied
  • 4 Votes
    18 Posts
    1k Views
    K
    @girish That sounds great! The last two incidents were this would have helped me were developing over several days (exploding Rocket.Chat logs and syslog.js), so this should be within the necessary precision to prevent this type of situation.
  • Akamai (Linode) ObjectStorage

    Solved backups linode
    4
    1 Votes
    4 Posts
    77 Views
    apesorgukA
    @nebulon Thank you so much. Very helpful and quick.
  • Logfiles without typos

    Solved
    2
    1
    3 Votes
    2 Posts
    52 Views
    nebulonN
    Amazing that is some very old typo apparently, never noticed either! It is now fixed with https://git.cloudron.io/platform/box/-/commit/f82f3fa8587a99f71d840981d77acb0aca87ac2e
  • 1 Votes
    2 Posts
    542 Views
    L
    9.2.14 is the latest Manticore version. https://github.com/manticoresoftware/manticoresearch/releases/tag/9.2.14 Here are the improvements since Manticore was first requested: https://github.com/manticoresoftware/manticoresearch/compare/9.2.14...6.0.4
  • Elasticsearch

    Moved elasticsearch
    42
    0 Votes
    42 Posts
    3k Views
    L
    @girish Perhaps the Nextcloud Talk High Performance Backend as well as the Elasticsearch could be installed together onto the same server, somehow. There is also Manticore: https://forum.cloudron.io/topic/9753/manticore-search-oss-fast-database-for-search-alternative-for-elasticsearch
  • 6 Votes
    14 Posts
    1k Views
    C
    Yes, you are all correct, I just did Hetzner bucket w/ S3 credentials, backed up to it, and restored the apps from there. Super easy. Thank you.
  • UPS support

    Moved
    7
    2 Votes
    7 Posts
    722 Views
    matix131997M
    @joseph Hey, I'll provide a link here, where the exact details of the package are given. I think there should be no problem. https://packages.ubuntu.com/oracular/nut-client
  • Option to disable ssl sessions

    2
    0 Votes
    2 Posts
    76 Views
    philkunzP
    No SSL Session requires a complete ssl handshake, whenever a new connection is established. Otherwise Chrome will skip the ssl handshake and omit SNI in ClientHello, only providing the session ticket ID, which the proxy has no way of knowing it.
  • Add Storj as Backup option

    10
    1
    2 Votes
    10 Posts
    609 Views
    S
    @d19dotca You are right in the aspect of it being a CDN style backup service. It takes your data and splits it up into 64MB segments and disperses it around their different nodes in the world. When you request to download a file from your Storj service, it can rebuild a copy of that file with only 24 of the closest nodes to your location, no matter where you are in the world. Yes, some of those segments will be in Canada.
  • Support multiple private docker registries

    3
    4 Votes
    3 Posts
    467 Views
    LanhildL
    @Lonkle How'd you do this? I'm running into issues as I have multiple Cloudron servers with custom apps and only the ability to configure a single docker registry
  • Add a"Staff Choice" badge/filter to App Store apps

    20
    1
    5 Votes
    20 Posts
    2k Views
    perelinP
    @girish said in Add a"Staff Choice" badge/filter to App Store apps: I don't want to be part of the decision-making of our end user. First off: im new here. Just discovered Cloudron a few weeks ago. Super impressed! And quite a nice community. And here goes my point: You are already part of the decision making. Or at least together with the community that votes for packages to get included. The App Store is already a curated selection But I can see the direction you are coming from. I mean in the end a feature like GH Stars would safe me 2 clicks, so I would say its definitely a nice-to-have and nothing more. Thanks for the good work!
  • Bug: When I change email account owner, aliases disappear

    1
    1 Votes
    1 Posts
    72 Views
    No one has replied