@timka said in MySQL and Postgresql as standalone apps:

@girish I had the same need and was surprised that there's no option. So I Would really appreciate it! PostgreSQL /MySQL, MongoDB and REDIS would be perfect 😉 🙂

also Elastic/OpenSearch 😉

@Benoit said in Create app "packages" for 'managed' cloudrons:

It could be a manageable app store by the super admin of the cloudron. He could hide the default app store for non technical clients and choose what apps need to be accessible with a customization on the description of these apps. it could be an interface with toggle buttons to activate or deactivate some apps. And you can choose the text you want to show for each app activated. the process to install would be the same. Be careful for me in the back, it is the same app store but it is the front what is different and more compatible with newbies and non tech users.

Certainly, this is another way of seeing and doing things to accomplish this, and it's great ideas as well. That's the reason for such forum and how genius software are created. We have here a crowd of people with amazing backgrounds of all sorts and it's the main reason we've a rich community.

it is a big improvement but it does not seem impossible to do for super @girish ;). Perhaps i don't see all the difficulties it could engage.
Anyway it could be a more comprehensible interface to help the onboarding of new users.

Ah, you're conscious all is possible with @girish right? 😛

@robi I decided to move both, appsdata and boxdata.

I'm thinking perhaps there should be a (hidden by default) Advanced section that can be expanded when installing an app that would let you

Edit RAM Choose to leave email stuff to app etc.

This appears to be S3 compliant, so I guess the generic S3 backend in Cloudron already would work?

Where is this slated release wise?

@girish said in Hiding superadmin to deliver 'managed' cloudron to clients.:

@micmc said in Hiding superadmin to deliver 'managed' cloudron to clients.:

And I guess, that is what would or should happen if we choose to hide the owner. I haven't thought really about this one but yeah, well thought and that should the be case also indeed, the superuser would not be seen in apps as well.

We had this idea of creating a "service account" - https://git.cloudron.io/cloudron/box/-/issues/771 (which is scheduled for 7.3). I think this will get you this feature.

This is how we see how great minds encounter! 😛

Also, there's the discussion about the "email admin" role to which your issue above refers too as well, which several of us have followed as well, which have popped several ideas and views as well and has brought to the creation of such feature.

@briankb-0 NodeBB FTforumW. 👍

@girish Yes there is. .ipfs is not a "normal" TLD. It's for websites which are on IPFS, which is an alternate decentralized protocol. Kinda like .onion domains for serving websites on tor.

However, i don't really know how cloudron could support it, as I believe it does not use standard http/s at all, so regular apps would not work.

@nebulon said in Enable LDAP and Cloudron SSO After App is Installed:

Essentially there is no technical reason why the LDAP/SSO feature

There's many variation in app support:

What happens to existing users? I think it will be hard for us to write user migration docs for each app (because I have often seen one has to straight up edit the database).

Many apps do not support multiple auth providers. So, if you switch to LDAP or viceversa, you cannot login with your previous users anymore (to migrate data).

@nebulon woohoo! Thank you

I still really want to be able to filter apps by LDAP support 🙂

@girish
Did anything come of this...?

@fbartels I hear ya, not the main use case, but the subsetting feature with starting a new DB from previous prod data is the killer feature here.

@jdaviescoates that's a great circle find! well done 😄

It could be a nice sidecar type container that box runs for all it's notifications which makes cloudron that much better by default..

+1 for the feature.
Would be very, very helpful for us to have as well!

@3246 yes, kind of like a torrent file where you can select priority per file/dir and which ones to skip.

not sure a pause is needed, but more like a pre-start selection.

I'm sure @staff can enumerate mail and other core services as required items but with flexible priority/order.

Not only that, but while we're pondering that manual selection process with manual clicks, the essential bits can already be restored and ready for the next prioritized components.

How much of this will change with Multi-Cloudron?

@d19dotca I'm excited by the potential for https://ntfy.sh.
Maybe a cloudron official instance which sets up channels for all customers, so cloudron-generated notifications can be delivered to a customer.
Or maybe there's a better way. I just think ntfy.sh is so easy to implement into scripts.

Yes, this is high on our list. Just finishing up the backup async rewrite! Almost there with 7.2.

@tamayers yes this should be nice to set scan just only for where is write and read file. Not docker configure.

This will be part of 7.2.1

@girish I think it'd be good for admins to have control over that setting (I don't think it's configurable is it?), that is after-all the original intention of the OP, to have a GUI to set email autoexpunge configs. But for me personally, I'd like to do something similar on Trash folder.

@andres-moya Can your app use LDAP?

This is now implemented and will be part of the next release.

@girish to give you a few more ideas, this is how FlyWheel implemented their backups add-on with both restic and rclone.

https://github.com/getflywheel/local-addon-backups

I think you'll find it helpful.

@girish Yes, that's a better way of saying it, haha. I wasn't really articulating myself as well as I normally do today. 👼 But yes, essentially making mail server aliases would be fantastic and allow for a better user experience especially for our own downstream customers.

@Mastadamus said in Please include ability to serve HTTP unencrypted over port 80 for network traffic inspection purposes:

You can decrypt if you are using Diffie Helman. As far as I can determine currently the cloudron only accepts ECDH algorithms

Indeed, it cannot be decoded because PFS is a property of ECDH. See also Right, I guess this is because of PFS - https://serverfault.com/questions/869354/decoding-ssl-packets-with-cipher-tls-ecdhe-rsa-in-wireshark

I think having a way to support reverse proxies in front of cloudron would help the situation. It seems many people are hitting this limitation when they deploy at home.