@james Perfect, thank you!

Yeah, that makes sense. having a warning pop up before deleting an address that’s part of a mailing list would save a lot of confusion. even just a simple check and confirmation message would do the trick.

Oh I see now it’s in the app title. Sorry completely missed that

Nice thanks

How fine-grained would those have to be to be useful in your case? I am asking, since apps only have limited support for unix users and groups.

@Lonkle last time you were here was like pre-ChatGPT?

I fully support this. I know it’s not the same but you can build something like this in your .bashrc (and a cron script) so you have some info on the terminal. Mine looks like this after I ssh into my server: [image: 1757554341579-img_2366-resized.jpeg]

@james correct.

Support for OCSP was removed here - https://forum.cloudron.io/topic/14265/how-to-disable-ocsp-stapling/5 . OCSP is being deprecated in favor of CRLs

@mattcazz yes, definitely . In hindsight, we should have maybe package the mail server more like an "app" . And then just like other apps, it would have gained all the customization of Cloudron apps. The email configuration could then have been inside this "mail server" app. We want to rework mail server to an app after Cloudron 9.

@humptydumpty said in Rotating backup destinations please!: @girish can we specify destinations per app? For instance, Nextcloud to my locally attached SSD, other apps to 3rd party like BackBlaze? This has not been implemented yet. But the plan is that each Backup Target will have an include/exclude list of apps. That way you can have apps backing up to specific targets. The automatic backup enable/disable flag of app will also go away. It will move to the Backup Target UI. You can just exclude the app from all the targets to have it not backed up ...

@imc67 said in Per-application access rules: @umnz said in Per-application access rules: @imc67 I'm not sure what you mean, Cloudron does have a Trusted / Blacklisted IPs and Fail2Ban support. https://docs.cloudron.io/security/ You are answering your own question: look at the subject of this future request and then the docs. What you mentioned is on server level .... not app level Oops, my bad! Take my +1 instead lol.

excited for v9! but this feature would still be really amazing! And if I am not mistaking it shouldnt be too complex to force an external mx lookup?

@canadaduane said in Show app disk usage in Storage tab: For example, I have Open WebUI at "ask.halecraft.org " but this is nowhere visible on the stats page That's odd. I just had a quick look at my stats and I think it's showing me all 60 odd apps I've got installed.

@jdaviescoates said in Custom Haraka Plugin Support for the Mail Addon: I just came across https://github.com/LogicLabs-OU/OpenArchiver https://openarchiver.com/ and figured I'd mention it here in case it's useful. This deserves a separate thread

@Kubernetes Right.. Which is why we had the VPN-to-App requests, which the proxy App could then use to cover the gap via the tunnel.

@girish Yes a time based window would also be good. So only update if update is > Time old. Whatever is a simple implementation.

Great, thanks!

@james we already have --token (primarily meant for CI automation). It's not saved in the cloudron.json intentionally because long-lived tokens should ideally not get saved somewhere. With login, you get a temporary token that is stored in the cache file. I think maybe your point is that we should use API tokens to login in general? I wouldn't mind removing username/password based login entirely. The current auth mechanism of CLI bypasses all the OIDC security mechanisms . CLI tools like npm already now require auth on browser. I think we will move to this in coming releases. Technically, the CLI was not built for end users, it was only for app development. Not sure how many people this impacts. https://www.npmjs.com/package/cloudron does say ~400 a week....