First two quick questions

@james Nope can't fork, can't create repros either

@girish I don’t have permission to clone repos or anything on the git. Could you test this and deploy if it works?

@girish thanks I'll try that out

This should work for the start.sh:

#!/bin/bash

set -euo pipefail

echo "==> Creating directories"
mkdir -p /app/data/uploads
chown -R cloudron:cloudron /app/data

# Generate secret key on first run
if [ ! -f /app/data/secret_key.txt ]; then
    echo "==> Generating new secret key"
    head -c 48 /dev/urandom | base64 > /app/data/secret_key.txt
fi

# Create .env file on first run with user-configurable options
if [ ! -f /app/data/.env ]; then
    echo "==> Creating .env file with default configuration"
    cat > /app/data/.env <<'EOF'
# Keila Configuration
# This file contains user-configurable options. System-critical settings
# (database, URL, deployment) are managed by Cloudron and cannot be changed here.

# Logging
# Options: debug, info, warning, error
LOG_LEVEL=info

# User Registration
# Set to true to disable new user registration
DISABLE_REGISTRATION=false

# Captcha Configuration (optional)
# Providers: hcaptcha, friendly_captcha
# CAPTCHA_PROVIDER=
# CAPTCHA_SITE_KEY=
# CAPTCHA_SECRET_KEY=

# System Mailer Configuration (optional - uses Cloudron defaults)
# Only uncomment if you need to override Cloudron's email settings
# MAILER_TYPE=smtp
# MAILER_SMTP_FROM_EMAIL=
# MAILER_SMTP_HOST=
# MAILER_SMTP_PORT=587
# MAILER_SMTP_USER=
# MAILER_SMTP_PASSWORD=
# MAILER_ENABLE_STARTTLS=true

# Additional Options
# See https://www.keila.io/docs/configuration for more options
EOF
    chown cloudron:cloudron /app/data/.env
fi

# Load user-configurable environment from .env file
if [ -f /app/data/.env ]; then
    set -a
    source /app/data/.env
    set +a
fi

# Export environment variables for Keila
# Note: System-critical variables below override any values from .env
export PORT=4000
export DB_URL=${CLOUDRON_POSTGRESQL_URL}
export SECRET_KEY_BASE=$(cat /app/data/secret_key.txt)

# Configure URLs from Cloudron environment variables
export URL_HOST=${CLOUDRON_APP_DOMAIN}
export URL_PATH="/"
export URL_SCHEMA="https"
export URL_PORT="443"

# Configure email settings
export MAILER_TYPE=smtp
export MAILER_SMTP_FROM_EMAIL=${CLOUDRON_MAIL_FROM}
export MAILER_SMTP_HOST=${CLOUDRON_MAIL_SMTP_SERVER}
export MAILER_SMTP_PORT=${CLOUDRON_MAIL_SMTP_PORT}
export MAILER_SMTP_USER=${CLOUDRON_MAIL_SMTP_USERNAME}
export MAILER_SMTP_PASSWORD=${CLOUDRON_MAIL_SMTP_PASSWORD}
export MAILER_ENABLE_STARTTLS=false

# Configure user content directory
export USER_CONTENT_DIR=/app/data/uploads

export PGPASSWORD=${CLOUDRON_POSTGRESQL_PASSWORD}
USER_TABLE_EXISTS=$(psql ${CLOUDRON_POSTGRESQL_URL} -XAwt -c "SELECT EXISTS ( SELECT FROM pg_tables WHERE schemaname = 'public' AND tablename = 'users')")
if [[ $USER_TABLE_EXISTS == "t" ]]; then
    ADMIN_EXISTS=$(PGPASSWORD=${CLOUDRON_POSTGRESQL_PASSWORD} psql -h ${CLOUDRON_POSTGRESQL_HOST} -p ${CLOUDRON_POSTGRESQL_PORT} -U ${CLOUDRON_POSTGRESQL_USERNAME} -d ${CLOUDRON_POSTGRESQL_DATABASE} -AXqtc "SELECT count(*) FROM users u JOIN user_groups ug ON ug.user_id=u.id JOIN groups g ON ug.group_id=g.id WHERE g.name='root'")
fi
if [[ ${USER_TABLE_EXISTS:-} == "f" || ${ADMIN_EXISTS:-} -eq 0 ]]; then
    echo "==> Exporting default admin credentials on first run"
    export KEILA_USER="admin@cloudron.local"
    export KEILA_PASSWORD="changeme123"
fi

echo "==> Starting Keila"
exec gosu cloudron:cloudron /app/code/bin/keila start

@luckow said in First two quick questions:

How can I disable registration

Secondly: There is text marked in red in the captcha: Please contact the site admin if you see this

Yes we should probably prepoulate these values:

DISABLE_REGISTRATION:true	Disable user registration by setting this variable to true

Captcha
Keila can use hCaptcha or Friendly Captcha to protect your sign-up forms. Configure the captcha provider with the following variables:

CAPTCHA_PROVIDER		hcaptcha	Captcha provider, one of hcaptcha or friendly_captcha
CAPTCHA_SITE_KEY		-	Captcha provider site key
CAPTCHA_SECRET_KEY		-	Captcha provider secret key
CAPTCHA_URL		variable	Captcha provider verification URL, defaults to https://hcaptcha.com/siteverify for hcaptcha and https://api.friendlycaptcha.com/api/v1/siteverify for friendly_captcha

Updated Elastic to v9.1.5
https://git.due.ren/andreas/elasticsearch-cloudron/releases/tag/v9.1.5

Updated bridge to v0.2510.0

https://git.due.ren/andreas/mautrix-whatsapp-cloudron/releases/tag/v2.0.0

@rompo Schon versucht die app neu zu starten?

I'm hitting a road block with this package. @girish any advice?

Go's smtp.PlainAuth (used by Museum) refuses to send credentials (the TOTP) over unencrypted connections for security. Cloudron's sendmail on port 2525 requires authentication but is unencrypted, causing the error: "unencrypted connection".

What I Tried:

1: Port 2525 without auth → 550 "cannot deliver mail" (requires auth)
2: Port 2525 with auth → "unencrypted connection" (PlainAuth rejects)
3: Port 2587 with STARTTLS → Certificate validation fails (x509: certificate is valid for *.tld.com, not mail)
4: Port 2465 with TLS → Same certificate issue

@joseph Yes, upgrade worked fine for me too. Took forever, probably almost an hour but I'm running it on a super low powered VPS. Does that mean no more embedded Chromium or did you package it in? Not using it, just curious.

@msbt Haha what a shitshow I'm glad I am not using MinIO

@nebulon im Sorry I don't know what to tell you except for this is what fixed it. which prisma returns nothing:

root@37e3d748-cecb-49e4-b218-88d23a2b37a4:/app/pkg# which prisma
root@37e3d748-cecb-49e4-b218-88d23a2b37a4:/app/pkg# 

@keldorn yes that’s what I did too. Reinstalled them broke again

@Package-Updates Is this now using the slim version?

@nebulon said in Fix Rallly start.sh:

That error is even more peculiar. So the start.sh just runs prisma which should be in the path and part of the app image: https://git.cloudron.io/packages/rallly-app/-/blob/main/start.sh?ref_type=heads#L54

Are there any variables in the /app/data/env which may interfere with prisma or the PATH ?

I haven't touched the devault ENV

SECRET_PASSWORD='STRING'
NEXTAUTH_SECRET='STRING'

# Comma separated list of email addresses that are allowed to register and login.
# You can use wildcard syntax to match a range of email addresses.
# Example: "john@example.com,jane@example.com" or "*@example.com"
ALLOWED_EMAILS=

@girish said in Fix Rallly start.sh:

Strange, in bash, both are the same. Given that CLOUDRON_MAIL_SMTP_PORT is just a number.

Yeah no idea. But these were my logs (I think, pulled this out of my clipboard manager):

Oct 18 08:14:43 => Healthcheck error: Error: connect ECONNREFUSED 172.18.16.158:3000
Oct 18 08:14:43 => Healthcheck error: Error: connect ECONNREFUSED 172.18.16.158:3000
Oct 18 08:14:43 => Healthcheck error: Error: connect ECONNREFUSED 172.18.16.158:3000
Oct 18 08:14:43 => Healthcheck error: Error: connect ECONNREFUSED 172.18.16.158:3000
Oct 18 08:14:44 /app/pkg/start.sh: line 54: prisma: command not found
Oct 18 08:14:44 => Updating permissions
Oct 18 08:14:44 => prisma migrate
Oct 18 08:14:55 => Healthcheck error: Error: connect EHOSTUNREACH 172.18.16.158:3000
Oct 18 08:15:03 => Healthcheck error: Error: connect EHOSTUNREACH 172.18.16.158:3000
Oct 18 08:15:13 => Healthcheck error: Error: connect EHOSTUNREACH 172.18.16.158:3000
Oct 18 08:15:23 => Healthcheck error: Error: connect EHOSTUNREACH 172.18.16.158:3000
Oct 18 08:15:33 => Healthcheck error: Error: connect EHOSTUNREACH 172.18.16.158:3000
Oct 18 08:15:44 => Healthcheck error: Error: connect EHOSTUNREACH 172.18.16.158:3000
Oct 18 08:15:48 /app/pkg/start.sh: line 54: prisma: command not found
Oct 18 08:15:48 => Updating permissions
Oct 18 08:15:48 => prisma migrate
Oct 18 08:15:57 => Healthcheck error: AbortError: The operation was aborted
Oct 18 08:16:03 => Healthcheck error: Error: connect EHOSTUNREACH 172.18.16.158:3000
Oct 18 08:16:13 => Healthcheck error: Error: connect EHOSTUNREACH 172.18.16.158:3000
Oct 18 08:16:23 => Healthcheck error: Error: connect EHOSTUNREACH 172.18.16.158:3000
Oct 18 08:16:33 => Healthcheck error: Error: connect EHOSTUNREACH 172.18.16.158:3000
Oct 18 08:16:43 => Healthcheck error: Error: connect EHOSTUNREACH 172.18.16.158:3000
Oct 18 08:16:49 => Updating permissions
Oct 18 08:16:49 => prisma migrate
Oct 18 08:16:49 /app/pkg/start.sh: line 54: prisma: command not found
Oct 18 08:17:03 => Healthcheck error: AbortError: The operation was aborted
Oct 18 08:17:07 => Healthcheck error: AbortError: The operation was aborted
Oct 18 08:17:13 => Healthcheck error: Error: connect EHOSTUNREACH 172.18.16.158:3000
Oct 18 08:17:23 => Healthcheck error: Error: connect EHOSTUNREACH 172.18.16.158:3000

login dashboard has minor CSP error:

kjFizNC6g5WWSmRHHlAqzX34uPV4YhB8kglL3_b3O5A:1 Refused to load the font 'data:font/woff2;base64,d09GMk9UVE8AAA/IAAkAAAAAIi4AAA9/A4EBAAAAAAAAAAAAAAAAAAAAAAAAAAAAATYCJAQGBmADgRwFiH0AghwHIA22GYUWESMRdnLSigfwXxK0JUN3PWgtIVtGtFABIUcjR8vMKvVNUhctBQIndOh7wFzNSdpf090C0MDGNSSuod3GJyMkmSUKlm72kk6vLpKqU4SDLlGqOoHx7wzNIRzzvZseTSBF/CoWaAkVRa5inol55lqxm5oz/9pr/qq+GXmakr21m0KxnJeWZ3dOoSo0//sTGj5e/r///znN1cDq77IugUrslFAFYg2CIfrG8Y3Q37GCqLAnZVKJvSuQC/x0zjP8v7/fp1rJjZ8tzGQcKS6iBFIAJMtql0EBKwIFJDuugO7Ztucm55fDg6nLQiMNIEFoAX1WesldzzU7W7qlB5C8/++0N/TOuYAMJkEJWxa0H6VUF8my5XljyWqW/HtHCdpC8/dzpf3Zo1xx...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' because it violates the following Content Security Policy directive: "font-src https: 'self'".

background:1  GET https://my.tld.com/api/v1/cloudron/background 404 (Not Found)

Then on, enter password additional error:

style-CMkpM2bh.js:12426  POST https://my.tld.com/openid/interaction/kjFizNC6g5WWSmRHHlAqzX34uPV4YhB8kglL3_b3O5A/login 401 (Unauthorized)
request @ style-CMkpM2bh.js:12426
post @ style-CMkpM2bh.js:12456
onSubmit @ oidc_login-oGYAt-kS.js:60
callWithErrorHandling @ style-CMkpM2bh.js:1922
callWithAsyncErrorHandling @ style-CMkpM2bh.js:1929
emit @ style-CMkpM2bh.js:5971
onClick @ style-CMkpM2bh.js:13965
callWithErrorHandling @ style-CMkpM2bh.js:1922
callWithAsyncErrorHandling @ style-CMkpM2bh.js:1929
invoker @ style-CMkpM2bh.js:7517

and on the 2FA page the TOTP Token Submit button doesn't use the translation but displays login.signInAction

These errors persist on the dashboard:

(index):59 Refused to load the font 'data:font/woff2;base64,d09GMk9UVE8AAA/IAAkAAAAAIi4AAA9/A4EBAAAAAAAAAAAAAAAAAAAAAAAAAAAAATYCJAQGBmADgRwFiH0AghwHIA22GYUWESMRdnLSigfwXxK0JUN3PWgtIVtGtFABIUcjR8vMKvVNUhctBQIndOh7wFzNSdpf090C0MDGNSSuod3GJyMkmSUKlm72kk6vLpKqU4SDLlGqOoHx7wzNIRzzvZseTSBF/CoWaAkVRa5inol55lqxm5oz/9pr/qq+GXmakr21m0KxnJeWZ3dOoSo0//sTGj5e/r///znN1cDq77IugUrslFAFYg2CIfrG8Y3Q37GCqLAnZVKJvSuQC/x0zjP8v7/fp1rJjZ8tzGQcKS6iBFIAJMtql0EBKwIFJDuugO7Ztucm55fDg6nLQiMNIEFoAX1WesldzzU7W7qlB5C8/++0N/TOuYAMJkEJWxa0H6VUF8my5XljyWqW/HtHCdpC8/dzpf3Zo1xx...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' because it violates the following Content Security Policy directive: "font-src https: 'self'".

utils-CAYJrJwJ.js:529 Already activated
index-B27HHYVP.js:41649 Cloudron dashboard v9.0.3
uid-7a405c74-4ed4-4512-9b5c-cdc35e949680:1  GET https://my.tld.com/api/v1/profile/avatar/uid-7a405c74-4ed4-4512-9b5c-cdc35e949680?ts=1760915353587 404 (Not Found)

@james said in Fix Rallly start.sh:

Hello @andreasdueren
Like I wrote, I just installed Rallly from the app store where it is:

export SMTP_PORT=${CLOUDRON_MAIL_SMTP_PORT}

and there was no issue.
So I must assume there is something else going on.

I'm just telling you what I experienced. It kept refusing to load without the quotation marks.

@james This line in the start.sh file breaks the app. At some point it didn't start anymore after an update and the logs led me to it, thought I may have done something and manually changed it. But I think every upgrade changes it back and breaks it again.

@Package-Updates said in Beszel - Package Updates:

Add ability to view container status, health, details, and basic logs. (#​928 )

That maens it can now read/display the CLOUDRON_APP_DOMAIN. Is there a way to overwrite the container name from the UUID to this value?