RE: Is there any real alternative to Google Docs / Office 365 out there?

@micmc yes, switching to web assembly has been an important step for libreoffice.

@marcusquinn said in Cloudron CCTV Home Protection:

Eufy Cameras

Yes, I'm using them as well. They are not depend on cloud services for data storage (just pop in a MicroSD card) and can do rtsp to send their signals to one of the above mentioned services. Sadly depends on their cloud for usage of their app. IMHO still a good price/feature balance.

@robi retention by time you could already set through keepWithinSecs i would say.

For the rest (although i would rather recommend to work on the storage limitations) maybe it would be an alternative to backup the Cloudron to disk and have another application pick up the moving to storage and rotation/retention part. There was a restic how to here recently that could help.

@robi so the change you need is rather a retention based on backup size?

@drew said in catchall -> mailing list?:

but I was hoping not to have to.

Just to have it said. setting up these rules is a one time thing. You just have to create a single rule per domain, and no further connection is needed.

If you have a lot of domains and want to automate it, you could even script it through https://manpages.ubuntu.com/manpages/trusty/man1/sieve-connect.1.html.

Hi @robi,

what kind of settings do you want to change? I would always discourage changing source files, simply because any update could potentially overwrite the custom changes.

Even if retention and schedule patterns
are not part of the documentation, looking in the browser console they still can be set with a simple curl request.

curl 'https://my.xxx/api/v1/settings/backup_config' \
  -H 'authorization: Bearer xxx' \
  --data-raw '{"provider":"minio","format":"tgz","bucket":"xxx-9wdeu","prefix":"","accessKeyId":"xxx","secretAccessKey":"●●●●●●●●","endpoint":"https://xxx","region":"us-east-1","acceptSelfSignedCerts":false,"s3ForcePathStyle":true,"retentionPolicy":{"keepWithinSecs":2592000},"schedulePattern":"00 00 23 * * *","memoryLimit":8589934592,"uploadPartSize":20971520,"password":"●●●●●●●●"}' \
  --compressed

Hi @chetbaker
in my opinion there are no real alternatives, at least not when considering the full feature set of Office 365 and the Google Apps ecosystem. So if you want full office document editing the only applications that aim to come close are LibreOffice (or Collabora) and OnlyOffice with any of their supported file storage backends.

If its just some text editor that you want to collaboratively work on then Cryptpad or Hedgedoc could be interesting to look at. But being markdown based with a split red/write pane makes Hedgedoc challenging for a lot of users and the Cryptpad UX also leaves room for improvement.

Document editing has lots of UX challenges to solve, and these challenges are seldomly free to conquer.

@marcusquinn said in Ghost: Urgent Security Update:

App updates really should not be tied to Cloudron updates either

In this specific case it is because the app packaging makes use of a feature only available in Cloudron >=7.2.

https://git.cloudron.io/cloudron/ghost-app/-/commit/ceab152d282cccc12d0cee68b5f4a7e336a8b8dd

@drew said in catchall -> mailing list?:

but why can't I just point the catchall at a mailing list?

The one question I get when reading this is: why a mailing list?

A mailing list is there to distribute a single email to a group of recipients. Can your request maybe also be understood as "give me the ability to select a mailbox on a different cloudron hosted mailbox" or even "give me the ability to specify the recipient email of a catch all rules"?

@scooke said in Amazing app to help with backups and saving space!:

you MUST enter new A records for the bucket and domain of your Minio setup

This is commonly referred to as "path style" vs. "domain style" buckets. Some applications can do both, some just one of the two.

When I was backing up my Synology NAS to my own Minio instance I had a wildcard vhost in Nginx and a wildcard certificate for this.

For domain style buckets to work with Cloudron, the Cloudron app would need to support domain aliases.

@girish i think the cloudflare tunnel integration is intended to make uptime kuma itself accessible.

I stand corrected. You can also use it for private only access. https://developers.cloudflare.com/cloudflare-one/tutorials/warp-to-tunnel/

@ApplegateR if a resource is not directly reachable (private network), then Uptime Kuma can use a proxy (configurable per monitor) to reach the system. Can only be used for http checks however, or at least i dont see how it would work for TCP checks.

I could not find an article explaining this, but https://www.reddit.com/r/selfhosted/comments/vekvve/problem_with_monitoring_websites_behind_authelia/icr8fic?utm_medium=android_app&utm_source=share&context=3 confirms that this is possible.

@BrutalBirdie the way i am reading the documentation gitaly-backup is a "binary"/executable, not the path the backup is written to.

@BrutalBirdie in the past I had to adjust $PATH for a few things within the Cloudron app container, so I thought that may be the case here as well.

In general gitaly-backup can be found in the container I assume?

Hi @BrutalBirdie,

https://docs.gitlab.com/ee/raketasks/backup_restore.html#gitaly-backup-for-repository-backup-and-restore

speaks about specifying the option directly in one of the ruby files, did you try that out as well already?

Hi @tuejon,

With Cloudron it's generally not supported or recommended to install software other than cloudron on the system or do manual modifications of e.g. nginx. Instead you should install all software from the cloudron app store.

Depending on what you want to host you could just copy the files into a lamp or surfer instance. Or if the software is more complicated you could create a custom app for it. These custom apps can be something completely private and not exposed to anybody else.

Hi @timconsidine,
I'm not exactly sure, where you see these 3gb. Is that in Cloudron or in the monitor history of Kuma itself?

@MooCloud_Matt said in Make it easier to use your own app:

and update the app

Ah, right. I was not considering that the user could use the cli with the operator role to update the app, but that would of course make sense.

And +1 for the ci/cd approach. Here it would not even matter what capabilities operators have for updating apps, since you could have one "global" token stored in your ci for pipelines to make use of.

Personally I am using Drone as my Cloudron based CI, the source for my instance is at https://github.com/fbartels/cloudron-drone-app

@ekevu123 said in Make it easier to use your own app:

If I can give access to a maintainer for only one app and it doesn't require server access to install it. So, if I could install something like an empty app in Cloudron and then have someone else figure things out in the terminal.

That actually already works, but is mainly useful for static/php apps. You can add an "operator" to an app. This operator then has access to the logs, files manager and terminal for the given app.

@Jan-Macenka I would expect that you need to change the destination port to https…:443.

I think there is a misunderstanding here.

@abargel said in OpenVPN shows local IP address:

OpenVPN shows as remote IP the IP address of my local router, instead of that of the VPS on which it is installed.

This is correct. The "remote ip" is the actual (public) ip address of your client. Since you are sitting at home and connecting through your router, this will show your current public ip address.

Only when you're connected to your vpn and e.g. opening https://ip.me/, then you will see the public ip of your server.

@Mastadamus ah, very interesting.

@Mastadamus slightly off topic, but how does greynoise compare to crowded?

@ekevu123 said in Disk usage:

although it should be Nextcloud data.

do you have your Nextcloud data on a mount?

@micmc said in Hosting subdomain with Apache2 virtual hosts:

you need to do so from another server.

Or within a (custom) app

@JOduMonT you're right. "official" was the wrong wording. What I meant was use is to use the notes functionality of Nextcloud and then use an app on ios that is designed to sync with it.

Which honestly is a bit of a pity since most note sync applications are markdown or plaintext, while systems like Apple Notes and Microsoft Onenote allow for more functionality (multimedia, cross application integration and stylus support).

@marcusquinn that sounds like the webassembly changes of LibreOffice were merged to Collabora

• https://fosdem.org/2022/schedule/event/lotech_lowa/
• https://news.ycombinator.com/item?id=30356020

Just noticed the following in the 7.2.4 changelog 🥳

initial xfs support

@girish said in Mail and Notes:

of storing notes as IMAP data

Exactly that. Notes created this way (which are plain text btw) still show up in a "Notes" folder in e.g. Roundcube.

There was a discussion about this on the nextcloud forum and there the conclusion was to use the official nextcloud app instead of apple notes.

https://help.nextcloud.com/t/sync-ios-notes-with-nextcloud/71103

@humptydumpty to reliably update i ended up always updating the docker tag to the desired version. With the tag updated you just need to run flyctl deploy again.

@msbt yes, I would imagine that one could wrap the agent into a Cloudron app, but I honestly do not see that much of a value to it.

Reasons:

• the agent does not have a webinterface by default (but one can be enabled with https://docs.drone.io/runner/docker/configuration/reference/drone-ui-disable/)
• the agent does not store anything, so needs no backups
• needs manual configuration for address of drone server and shared secret anyways

I just have a small docker-compose.yml on any system that I want to act as a runner (my laptop, desktop, ..., even on my cloudron instance).

@msbt said in Drone:

this could make it easier to set up, right?

In the end drone and woodpecker are meant to run workloads in containers. So it does not make much difference if the agent comes as a binary or a container that is configured to interact with the docker socket.

@girish yes, I've been following the woodpecker project also already for a while. it seems quite active. On the other hand I have not noticed any limitations in my usage of Drone so far. Also the "agent less single node" limitation is something I cannot confirm, multiple runners here without any problems.

@micmc I would recommend to remove the spammers message and link from your post

@colonelpanic said in Unable to access Joplin Server API:

Joplin Data API

I think there is a misunderstanding here. The described api is something that the desktop application of Joplin implements. It also says directly at the beginning of the page:

This API is available when the clipper server is running.

The server seems to only have a (delta) syncing api and not full rest access to the data.

Hi @archos

I think their ux is a bit odd when it comes to changing the default quota. When you go into the admin panel and change the limit under "User storage" the "set limit" button changes into a "are you sure?" with a countdown. If you do not click a second time on the button the limit stays at its old value.

Hi everyone,

I saw a post yesterday on Reddit showing how to use the Google Cloud free tier to run Uptime Kuma. One of the alternatives for free hosting mentioned in the post was fly.io and since their tooling intrigued me I have since then started hosting Uptime Kuma on their platform (combined with notifications through Telegram to be as independent from my own infrastructure as possible).

Their free tier includes a vm to run own code or a docker container along with 1cpu and 256mb of ram. this can be coupled with a persistent storage volume of 3gb, so plenty of resources for Uptime Kuma. In addition to this they allow usage of own domain names so you can have your status page at https://status.mydomain.com instead of on one of their subdomains.

All you need is the following toml file to deploy the Uptime Kuma container on fly.io:

# fly.toml file generated for mykuma

app = "mykuma"

kill_signal = "SIGINT"
kill_timeout = 5
processes = []

[build]
  image = "louislam/uptime-kuma:1"

[mounts]
source="kuma"
destination="/app/data"

[env]
  PORT = "8080"

[experimental]
  allowed_public_ports = []
  auto_rollback = true

[[services]]
  http_checks = []
  internal_port = 8080
  processes = ["app"]
  protocol = "tcp"
  script_checks = []

  [services.concurrency]
    hard_limit = 25
    soft_limit = 20
    type = "connections"

  [[services.ports]]
    force_https = true
    handlers = ["http"]
    port = 80

  [[services.ports]]
    handlers = ["tls", "http"]
    port = 443

  [[services.tcp_checks]]
    grace_period = "1s"
    interval = "15s"
    restart_limit = 0
    timeout = "2s"

The configuration refers to a volume called "kuma", which needs to be created before the app can be deployed by running flyctl volumes create kuma.

I have written a bit more in detail about on on my blog: https://blog.9wd.eu/posts/flyio/ (first draft status, may need refinement)

LXC is certainly a nice tool, I am using wherever possible. But instead of starting lxc containers on a Cloudron host, I would rather do it the other way around and have one of my LXCs a Cloudron container (at some point I have to try how well Cloundron runs on ZFS).

Plus I do see challenges on the networking side, like what if you want to run an app on e.g. port 25, 110, 143, 443, 993, 995, ... Ideally you will want to have a dedicated ip per vm.

But I do agree that some sort of integration of external servers into Cloudron would be neat. Maybe a little agent sitting on external servers and establishing a private network with the Cloudron server. This agent could then expose the Cloudron usermanagement to the external server and allow easy use of Cloudron as the mail relay. Bonus points for direct integration into the Cloudron Dashboard for running webapplications. Maybe a simplified healthcheck and monitoring could be possible from the Cloudron host as well.

@jdaviescoates said in Better notifications:

going to do this using Uptime Kuma

In case you have not yet seen it, I have explained how to query the Cloudron API from Uptime Kuma in this post:

https://forum.cloudron.io/post/46795

Hi @necrevistonnezr,

I have domain name field where I can enter my mail domain in the username generator. Values entered there seem to persist.

@robi their claim is

Seed your development database with real data

Slitting apps over multiple servers does not seem to be their goal.

@luckow i ran into this as well a while ago: https://forum.cloudron.io/topic/6670/bug-amount-of-notifications-shown-is-not-correct/1

For me it’s either the git cli directly, or git lens in vs code. Although the latter feels more technical, than the cli.

@robi said in ntfy.sh : self-hostable notifications:

our Server Monitor App

Which app is that exactly?

@robi said in ntfy.sh : self-hostable notifications:

each monitor each other.

yeah, if you want to be serious about monitoring then it should run with a different provider and in a different region than the rest of your stack. Or even better pay someone else to host a geo distributed monitoring for you.

For my own use case Uptime Kuma is quite sufficient and can also send notification via Telegram.

@d19dotca said in Trigger full backup from cli / scripted migration:

email

Yes, email would be my main concern as well, as this comes from unknown third parties. Other cases would be systems where customers could upload data.

In my original case I wanted to see if I can reach minimal disruption for my own migration. I made a small writeup of my my approach in https://blog.9wd.eu/posts/cloudron-migration/.

Notify.sh is indeed quite a cool project and has also seen good growth over the last few months.

Depending on the use case I prefer to rely on third parties for checks/notifications. What good is a chat or email notification if my mail or chat server are down as well

Slightly more complicated curl, but this posts a message into a telegram message:

curl https://api.telegram.org/bot$telegramApi/sendMessage -d chat_id=$telegramChat -d text="Backup successful 😀"

Hi @girish
somehow I missed to reply to you, so now more than one year later

The dry run option indeed seems pretty handy. Depending on the apps running on the server I see myself using that in the future.

@d19dotca said in Email / Dovecot, possible data corruption:

or do I need to be running this from inside of a container instead perhaps?

Yes, exactly that.

root@my-cloudron:~# docker exec mail doveadm -h
usage: doveadm [-Dv] [-f <formatter>] <command> [<args>]
               
  acl          add|debug|delete|get|recalc|remove|rights|set
  altmove      [-u <user>|-A] [-S <socket_path>] [-r] <search query>
  auth         cache|login|lookup|test
  backup       [-u <user>|-A] [-S <socket_path>] [-fPRU] [-l <secs>] [-r <rawlog path>] [-m <mailbox>] [-g <mailbox_guid>] [-n <namespace> | -N] [-x <exclude>] [-s <state>] [-t <start date>] -d|<dest>
  batch        [-u <user>|-A] [-S <socket_path>] <sep> <cmd1> [<sep> <cmd2> [..]]
  config       [doveconf parameters]
  copy         [-u <user>|-A] [-S <socket_path>] <destination> [user <source user>] <search query>
  deduplicate  [-u <user>|-A] [-S <socket_path>] [-m] <search query>
  dict         get|inc|iter|set|unset
  director     add|down|dump|flush|kick|map|move|remove|ring|status|up|update
  dump         [-t <type>] <path>
  exec         <binary> [binary parameters]
  expunge      [-u <user>|-A] [-S <socket_path>] [-m] <search query>
  fetch        [-u <user>|-A] [-S <socket_path>] <fields> <search query>
  flags        add|remove|replace
  force-resync [-u <user>|-A] [-S <socket_path>] [-f] <mailbox mask>
  fs           copy|delete|get|iter|iter-dirs|metadata|put|stat
  fts          expand|lookup|optimize|rescan|tokenize
  help         <cmd>
  import       [-u <user>|-A] [-S <socket_path>] [-U source-user] [-s] <source mail location> <dest parent mailbox> <search query>
  index        [-u <user>|-A] [-S <socket_path>] [-q] [-n <max recent>] <mailbox mask>
  instance     list|remove
  kick         [-a <anvil socket path>] <user mask>[|]<ip/bits>
  log          errors|find|reopen|test
  mailbox      cache|cache|create|delete|list|metadata|mutf7|path|rename|status|subscribe|unsubscribe|update
  move         [-u <user>|-A] [-S <socket_path>] <destination> [user <source user>] <search query>
  oldstats     dump|reset|top
  penalty      [-a <anvil socket path>] [<ip/bits>]
  process      status
  proxy        kick|list
  purge        [-u <user>|-A] [-S <socket_path>] 
  pw           [-l] [-p plaintext] [-r rounds] [-s scheme] [-t hash] [-u user] [-V]
  rebuild      attachments
  reload       
  replicator   add|dsync-status|remove|replicate|status
  save         [-u <user>|-A] [-S <socket_path>] [-m mailbox]
  search       [-u <user>|-A] [-S <socket_path>] <search query>
  service      status|stop
  sieve        activate|deactivate|delete|get|list|put|rename
  sis          deduplicate|find
  stats        dump
  stop         
  sync         [-u <user>|-A] [-S <socket_path>] [-1fPRU] [-l <secs>] [-r <rawlog path>] [-m <mailbox>] [-g <mailbox_guid>] [-n <namespace> | -N] [-x <exclude>] [-s <state>] [-t <start date>] -d|<dest>
  user         [-a <userdb socket path>] [-x <auth info>] [-f field] [-e <value>] [-u] <user mask> [...]
  who          [-a <anvil socket path>] [-1] [<user mask>] [<ip/bits>]
  zlibconnect  <host> [<port>]

@stefano said in Replace Google to backup Android and iOS photos:

Is Nextcloud the only reliable solution? Or do I have other options?

While personally I back up my pictures to my Synology NAS at home using Synology Moments, there are as far as I can see three solutions on Cloudron that offer native functionality for this.

• Nextcloud you already mentioned
  • through their mobile clients
• Emby/Jellyfin
  • their mobile client also has the possibility to auto upload pictures. Otherwise I don't have the feeling its much of an image viewer
• Syncthing
  • they also offer clients that can automatically sync data such as pictures. I tried it a few times in the past, but my dealbreaker always was that I cannot easily run it for multiple user ids on the same server (my nas)

Apart from that there are also apps that could just upload to any webdav, or even s3 bucket. s3 could be provided by Minio and Webdav is offered as a protocol e.g. by the Surfer app (although otherwise its more a webserver and not a personal file storage).

@JLX89 maybe you want to add a retry to this. So that it's only marked as down at the e.g. second failed check.

Ah yes, I forgot that you can also add the api token as a url parameter

@JLX89 said in Cloudron Health Check Endpoint:

Body

Since this refers to the request body you could empty this field, as the value you have in there is simply the response that the Cloudron api would deliver.

Since I am always missing notifications in Cloudron (don't log into the dashboard often enough) I decided to add a monitor for it to Uptime Kuma.

• Add New Monitor
• Monitor Type: HTTP(s) - Keyword
• URL: https://my.domain.com/api/v1/notifications?acknowledged=false&page=1&per_page=2
• Keyword: "notifications":[]
• Heartbeat Interval: 360 (could be higher however, I don't need instant alerts for new notifications)

Since the api only works with auth, we also need to send a header for this. For this paste the following in the "Headers" field:

{
    "authorization": "Bearer xxx"
}

The xxx needs to be replaced with a valid api token, which can be created in the user profile.

Everything you can see on the Cloudron dashboard comes from the Cloudron api. So if further checks are needed I always recommend to pop out the network console and check which endpoints get requested for the data you need.

@girish said in The site is depective:

But maybe a combination of x and then number and hyphen. Still...

I am wondering if this is needed at all. Instead of my.x1-domain.com you can also do my.server1.domain.com or my.x1.domain.com.

And you can add the domain.com domain to all cloudrons as well and easily serve forum.domain.com entries.

Hi @JLX89,

the health status of a given app can be retrieved from the Cloudron api. See https://docs.cloudron.io/api.html#tag/Apps/paths/~1apps~1{appid}/get for the relevant request.

You would need to add an auth header to your request. From what I can see Uptime Kuma does not have the possibility to perform operations on the json response of the api, but you could do a keyword match instead.

Hi @3246,

I have not tested it, but the heart of cloudron is as far as I know the "box" service. So I'd suggest disabling this service through systemd. Or even better mount your volumes as a systemd unit and make the box service dependent on it.

@msbt said in Cal.com (was Calendso) - Calendly Alternative:

I've been working on a package but I'm a bit stuck

Do you have your wip uploaded somewhere? I just rediscovered cal.com and would like to give it a spin. Would have started an app of my own, but its always easier to test and improve.

@qwinter said in What are pros and cons of surfer:

you don't have a CDN

I would say this is the biggest factor. With the services mentioned making the files available is somebody else's job. when you do it through surfer its running on your own server.

I am using it to host a few sites and simple download servers. Websites can either be public, protected by a simple password or require a user on the same cloudron box.

And I can easily automate uploads through the surfer cli in my Drone CI pipeline.

What is not part of surfer, but may be available through the cdn provider may be automatic statistics or forms.

Hi @girish, ah that fully explains why I cannot interact with the processes running in the container. While your design idea is probably suitable for most cases it won't really work for this specific one.

But no harm done, then I will just add a cron service to my app container directly.

thanks for organising @luckow!

So that we can plan better, please specify

I'm vegan

I'm vegetarian

I'm flexitarian

I have special intolerances

no nuts

no gluten

no ....

I prefer

beer

white wine

red wine

sparkling wine

club mate

I will bring a plus one to the event:

So that we can plan better, please specify

I'm vegan

I'm vegetarian

I'm flexitarian

I have special intolerances

no nuts

no gluten

no ....

I prefer

beer

white wine

red wine

sparkling wine

@nebulon I have not yet checked if the pid also exists in another container, but I have verified that the pid in general is the correct one for the container itself.