Cloudron Forum

@andreasdueren A workaround is to set 0.0.0.0/1 128.0.0.0/1 in the allow list . This allows the full internet. But maybe a geo block is better - https://www.ipdeny.com/ipblocks/

@james Perfect, thank you!

Oh I see now it’s in the app title. Sorry completely missed that

@andreasdueren I published this one but it has a bunch of issues from some testing. Each SSO user is 'independent'. They can all separately invite users. If registration is enabled, the app becomes open for all If registration is disabled, invited users cannot login For this reason, even in SSO mode , it is still left open Even if registration is disabled, one user can be registered initially. This is probably a feature. I guess we should report this upstream , if we collect the issues

Nice thanks

First impression of OpenObserve : cool ! Definitely a contender to replace my instance of Seq But a lot to learn about the app and how I can best use it.

@girish Yes a time based window would also be good. So only update if update is > Time old. Whatever is a simple implementation.

https://git.cloudron.io/packages/synapse-app/-/merge_requests/23

@andreasdueren If you can go into detail, please do We all benefit from that.

https://git.cloudron.io/packages/mirotalksfu-app/-/merge_requests/126

@baris Ahhhhh so you are https://github.com/barisusakli That explains a lot. I was thinking, who is this first time poster and how does he know this Welcome to the Cloudrom Forum! And since you are who you are and you are reading this right now Could you give https://forum.cloudron.io/topic/13687/have-chats-been-turned-of-on-purpose a read? Pretty please

@nebulon not sure. Maybe I accidentally removed it when I set up Prometheus

@girish said in Matrix WhatsApp Bridge: "extensions" to apps by third parties is quite a burden for app packages. I understand that it needs to be feasible to maintain these kind of things. Cloudron needs to be profitable after all. I hope we can find some solution for these things, especially if they're simple go binaries like this one.

@girish Much appreciated

The main reason is, that this makes it impossible to test package updates. So customization really can only be supported if the upstream app has a well defined process to do this outside of requiring the user to manually merge files with custom changes which may also be changed in the upstream release.

@necrevistonnezr It's working, but it is running next to Cloudron which isn't really optimal. I wanted to test and see if it breaks anything though, currently there seem to be no issues.

To circle back on this... I deployed Keycloak from the app store. I created a new (local) admin user and deleted the temp one (as per the instructions out of the box). I then used the "Login with Cloudron" button and was able to login to Keycloak (as the non admin user from Cloudron directory) and my Cloudron user shows up in Keycloak . I would be very interested in developing/documenting a tight integration/best practices between Cloudron/Keycloak as a way to greatly extend/enhance Cloudron user management. Setting up various tenants, self service enabling signups in those tenants etc. For example, building user on-boarding / approval workflows (where you bring on a new team member and they need to be provisioned into groups). Right now, only Cloudron Superadmins have the ability to manage groups, and that isn't a privilege I want to hand out I originally planned to have Claude build me a web app and utilize the Cloudron API to build that functionality (and was going to AGPLv3 it). However, perhaps, with Keycloak we don't have to fully re-invent the wheel? IAM is a VERY important requirement/feature to compete with AWS/Azure. It's the next thing my board wants to see as we move through go-live with Cloudron across our various projects/entities. Who would be the key people I would need to work with to get this built out/tested/integrated/streamlined? I realize that Cloudron (as I understand it) isn't currently positioned/targeting "enterprise" or those who may use AWS/Azure. I am happy todo the light/medium/(some) heavy lift work to help get it to where I need it to be. I am a founder/CTO of a company that is in the ramp up/growth phase. I steadfastly refuse to use the "big cloud" and Cloudron has been amazing at eliminating about 90% of system admin duties in a reliable way.