Cannot add group images: Error 403 Forbidden

I just tested this with a fresh installation (com.gitlab.cloudronapp@1.114.1), and I'm unable to add a profile picture to a group. Whenever I try, I get a 403 Forbidden error.

In the logs, I see the following message:

[ActionDispatch::HostAuthorization::DefaultResponseApp] Blocked hosts: localhost:8080

I've already tried changing various settings, but nothing seems to fix the issue. I’m currently stuck. Does anyone know what might be causing this or how to resolve it?

I can't repro the issue on the demo server.

@joseph My answers, step-by-step as you formatted it in your message:

1. Yes.
2. Reachable, Docker-Distribution-Api-Version: registry/2.0

<html>
<head><title>302 Found</title></head>
<body>
<center><h1>302 Found</h1></center>
<hr><center>nginx</center>
</body>
</html>

docker login from the Cloudron server results in the following

Error response from daemon: Get "https:/registry.cloudron.local/v2/": net/http: request canceled while waiting for connection (Client.Timeout exceeded while awaiting headers)

docker login from any other remote works perfectly fine.

@sirthias it's an update to the VPN app. If you click on Updates -> Check for updates, you should see it. The source code of the app is at https://git.cloudron.io/packages/vpn-app (but this is only if you are interested in the source)

Great report @philkunz . I think https://git.cloudron.io/packages/ghost-app/-/merge_requests/163 should fix it . I could reproduce this on blog.cloudron.io .

We prefer a UI-based and use case driven configuration approach to our software. You can even say flexibility is not a goal for this app. There is no way we can support complicated VPN setups that would arise from all the various configurations. Part of the reason this app exists is that the OpenVPN without the UI is really complicated to use for normal people. Of course, people are free to change the source to match their philosophy of how software should be :).

@sirthias I pushed a change with minimal testing, please check.

@archos I have the code updated locally just haven't had a chance to test - work has been busy the past few weeks! Once I test and get it updated for custom deployment I'll put a request in to have it added to the custom apps list

@robi not possible at the moment. You could maybe grab and send when I am back.

@joseph

Error response from daemon: Get "https://registry.cloudron.local/v2/": context deadline exceeded

@joseph it doesn't, gives me a timeout error. I'll add relevant logs in a few minutes.