This appears to be S3 compliant, so I guess the generic S3 backend in Cloudron already would work?

Where is this slated release wise?

@girish said in Hiding superadmin to deliver 'managed' cloudron to clients.:

@micmc said in Hiding superadmin to deliver 'managed' cloudron to clients.:

And I guess, that is what would or should happen if we choose to hide the owner. I haven't thought really about this one but yeah, well thought and that should the be case also indeed, the superuser would not be seen in apps as well.

We had this idea of creating a "service account" - https://git.cloudron.io/cloudron/box/-/issues/771 (which is scheduled for 7.3). I think this will get you this feature.

This is how we see how great minds encounter! 😛

Also, there's the discussion about the "email admin" role to which your issue above refers too as well, which several of us have followed as well, which have popped several ideas and views as well and has brought to the creation of such feature.

@briankb-0 NodeBB FTforumW. 👍

@girish Yes there is. .ipfs is not a "normal" TLD. It's for websites which are on IPFS, which is an alternate decentralized protocol. Kinda like .onion domains for serving websites on tor.

However, i don't really know how cloudron could support it, as I believe it does not use standard http/s at all, so regular apps would not work.

@nebulon said in Enable LDAP and Cloudron SSO After App is Installed:

Essentially there is no technical reason why the LDAP/SSO feature

There's many variation in app support:

What happens to existing users? I think it will be hard for us to write user migration docs for each app (because I have often seen one has to straight up edit the database).

Many apps do not support multiple auth providers. So, if you switch to LDAP or viceversa, you cannot login with your previous users anymore (to migrate data).

@nebulon woohoo! Thank you

I still really want to be able to filter apps by LDAP support 🙂

@girish
Did anything come of this...?

@fbartels I hear ya, not the main use case, but the subsetting feature with starting a new DB from previous prod data is the killer feature here.

@jdaviescoates that's a great circle find! well done 😄

It could be a nice sidecar type container that box runs for all it's notifications which makes cloudron that much better by default..

+1 for the feature.
Would be very, very helpful for us to have as well!

@3246 yes, kind of like a torrent file where you can select priority per file/dir and which ones to skip.

not sure a pause is needed, but more like a pre-start selection.

I'm sure @staff can enumerate mail and other core services as required items but with flexible priority/order.

Not only that, but while we're pondering that manual selection process with manual clicks, the essential bits can already be restored and ready for the next prioritized components.

How much of this will change with Multi-Cloudron?

@d19dotca I'm excited by the potential for https://ntfy.sh.
Maybe a cloudron official instance which sets up channels for all customers, so cloudron-generated notifications can be delivered to a customer.
Or maybe there's a better way. I just think ntfy.sh is so easy to implement into scripts.

Yes, this is high on our list. Just finishing up the backup async rewrite! Almost there with 7.2.

@tamayers yes this should be nice to set scan just only for where is write and read file. Not docker configure.

This will be part of 7.2.1

@girish I think it'd be good for admins to have control over that setting (I don't think it's configurable is it?), that is after-all the original intention of the OP, to have a GUI to set email autoexpunge configs. But for me personally, I'd like to do something similar on Trash folder.

This is now implemented and will be part of the next release.

@girish to give you a few more ideas, this is how FlyWheel implemented their backups add-on with both restic and rclone.

https://github.com/getflywheel/local-addon-backups

I think you'll find it helpful.

@girish Yes, that's a better way of saying it, haha. I wasn't really articulating myself as well as I normally do today. 👼 But yes, essentially making mail server aliases would be fantastic and allow for a better user experience especially for our own downstream customers.

@Mastadamus said in Please include ability to serve HTTP unencrypted over port 80 for network traffic inspection purposes:

You can decrypt if you are using Diffie Helman. As far as I can determine currently the cloudron only accepts ECDH algorithms

Indeed, it cannot be decoded because PFS is a property of ECDH. See also Right, I guess this is because of PFS - https://serverfault.com/questions/869354/decoding-ssl-packets-with-cipher-tls-ecdhe-rsa-in-wireshark

I think having a way to support reverse proxies in front of cloudron would help the situation. It seems many people are hitting this limitation when they deploy at home.

@d19dotca
that is also because Nginx uses FPM and not FastCGI(Apache in some cases can use FPM) for PHP, which give already a good boost.

NextCloud and WP could take good advantage of it, and Nginx could help solve the issue of the main image being too "fatty" 😉

It's easy to use Nginx in a multi-layer image.

@d19dotca This would be very helpful! +1

It seems they don't offer SMTP relay as per https://www.mailerlite.com/help/does-mailerlite-offer-smtp-simple-mail-transfer-protocol . Their partner company mailersend has it - https://www.mailersend.com/help/smtp-relay . If you can, please try using mailersend with Cloudron's External SMTP Server option - https://docs.cloudron.io/email/#relay-outbound-mails . If that works well, I can add it to the dropdown (the dropdown is really just a UI template to prefill things).

@d19dotca that's correct. There is no difference between using S3 compat vs Wasabi option since as you guessed they are just templates for pre-filling. Also, when you update, it won't get automatically changed to Wasabi, it will remain as s3 compatible.

The change is entirely just UI - https://git.cloudron.io/cloudron/dashboard/-/commit/8dfc142905171160ba41bdb592933bd2dd60748d

There is a much simpler way to keep things in sync in a p2p fashion with GunDB.

The trickier part is integrating with the different apps in a way where it can use that data.

@girish said in Mailing feature: add users and groups as members:

When added to a list, are you expecting the primary email of the user to be used ?

Indeed 🙂