RE: What is default username and password of newly installed app?

The First Time Usage dialog is shown by clicking app configure -> book/docs icon -> First Time Setup.

[1.6.1]

• Update SnappyMail to 2.18.2
• Full changelog
• GnuPG directory failed when /tmp/snappymail is not writable
• Cannot change password with plugin #526
• Contact stored in MySQL to MEDIUMTEXT #519
• Broken hasCheckedOrSelected()
• Deprecation message is inserted at the top of mail source window #515
• Selector Shift + Arrow made checkboxes "checked" in a weird way
• TypeError: s.parentNode.closest is not a function #516
• Security: disable spellcheck everywhere by default due to Chrome/Edge sending data you enter to their servers.
• Added plain message tel uri detection
• Log some info for "Carddav sync with Nextcloud always read only" #520
• Squire WYSIWYG should be a bit faster now
• Ask closing SnappyMail in mobile view when viewing a message
• Don't clear MessagelistUserStore when switching layout
• Reduce "Request is aborted" message is often diplayed #518
• Update Vietnamese by @Arxwel
• Workaround for Firefox issue #368 and #513
• Drop the knockout.js tasks from compiled code
• Drop Knockout.js loading components asynchronous
• Use Optional chaining in vendors/* code
• Drop search capa to always allow it
• Drop unused TextAreaComponent
• Speedup and reduce all code a bit

[2.32.3]

• Update Rocket.Chat to 5.1.3
• Full changelog
• MongoInvalidArgumentError on overwriting existing setting (#26880)
• Check if messsage.replies exist on new message template (#26652)
• Error when mentioning a non-member of a public channel (#26917)
• Importer fails when file includes user without an email. (#26836)

AFAIK, Snipe-IT does not support plugins.

@eddowding So, you would prefer a unified view instead of selecting the domain first? In any case, would be great if you can create a separate topic with your suggestion since this topic was about cloudron user+mailboxes initially. Would be good to hear!

@allanbowe Please try with the latest package. For good measure, I added the client_max_body_size directive to the top level.

[1.69.0]

• Update GitLab to 15.4.0
• Release announcement
• Limit the maximum number of custom domains per project
• Getting started with GitLab Pages just got easier
• Improved CI/CD integration in VS Code
• Sortable, filterable data-driven tables in Markdown
• API endpoint to get group transfer locations
• Identify bot users with a badge
• Improved topic management for administrators with topic merge
• Schedule when to clear status from the user profile page
• Streamlined sign-in page
• Add assignees to a task
• Comments on designs save automatically
• Manually create, name, and schedule iterations in a cadence
• Move cards on a board to the top or bottom of lists
• Design improvements to the Admin Area list of runners
• Static Analysis analyzer updates

I double checked and client_max_body_size is set to 0 everywhere (meaning no limit in nginx side). Can you check the size of the artifact that you are trying to upload?

@allanbowe Atleast, on nginx side, it allows uploads of all size. We use the upstream nginx config file https://github.com/gitlabhq/gitlabhq/blob/master/lib/support/nginx/gitlab#L88 which has client_max_body_size 0.

I guess we can have Cubby list the volumes and show them as a virtual directory ? Would something like that work ?

@Jeyakumarrathnaselvi Are you having to install new npm modules because you are developing some directus plugin/extension?

@Jeyakumarrathnaselvi said in i want to configure metabase LDAP using directus LDAP info:

how to get the directus ldap information and update it here?

Can you explain a bit more about this since I don't know Directus all that well. Does Directus have it's own LDAP service/server built-in ?

The Metabase auth information comes from environment variables in the package, they cannot be changed. You can install the app with Cloudron user management disabled and those values should be editable (you have to re-install the app).

@JLX89 Since web fonts are subject to CORS, can you let upstream know that they need to set the CORS headers in the app for the resources they expect to be accessed across origin?

@LoudLemur @timconsidine We actually have such discussions quite often Surfer, Cubby and File manager have 3 separate file manager systems by now and often we wonder if we should merge them all. Unfortunately, they all use different UI frameworks making it hard to componentize.

@JOduMonT Can you check if the IPv4 address is listed correctly in the Network view?

It's also possible you are on a very old version of Cloudron (like Cloudron 6, where we initially introduced translations). You have to clear the browser cache in that case.

@saint Since this is mountpoint type, you have to SSH and check why it's not mounted using journactl and mount commands. I guess you set this mountpoint manually ? Check the output of mountpoint /media/sync/server_io_mba

[1.9.1]

• Update Chatwoot to 2.9.1
• Full changelog
• Minor help center related fixes

There is a new patch release coming up, so maybe that brings in some fixes.

Interesting, I guess this provides optimizations over imagemagik. There hasn't been any release since 2 years though - https://github.com/h2non/imaginary/releases/tag/v1.2.4 . I am not sure why nextcloud offloads basic functionality to some externa project of unknown maintenance state

@plusone-nick said in Change Add User API:

NOTE: Just noticed that the users I create when using and when bypassing the Form are "Active" upon creation despite not verifying via the email

Users are added enabled, by default.

I do wonder... when a user registers in your app, they should not be added into Cloudron immediately yet. Instead, the app should wait for email verification and when the email gets verified, only then it should get added into Cloudron. Is that how your app flow works?

@plusone-nick said in Change Add User API:

I am suggesting that the Password field be removed

Not sure I follow. The password field is already optional, you can just not specify it when creating a user. Is that what you want? Don't set the password field to null or an empty string, that will result in an error.

We plan to develop it with a lot more speed in the coming months. But if you have some missing priority feature, let us know.

[2.9.5]

• Update minio to 2022-09-22T18-57-27Z
• Changelog
• nable cross compile for openbsd/amd64 by @harshavardhana in #15701
• Implement KMS methods for keys, policies and identities by @reivaj05 in #15673
• Remove deprecated io/ioutil by @klauspost in #15707
• helm: specify service account for the jobs by @cowjen01 in #15706
• site replication: clear config if remove --all specified by @poornas in #15716
• Fix cancellation leaks by @jiuker in #15721

[2.8.23]

• Update n8n to 0.195.4

[1.19.1]

• Update Directus to 9.18.1
• Full changelog
• #15611 Add support for <collection>.items.query filter hook (by @mtgerb)
• #15693 Graphql: Fix required PK on create / update (by @joselcvarela)
• #15162 Implemented an option to filter M2A fields using graphql. (by @maximka1221)

@Aswini Since we get a massive amount of spam with generic text like this, can you confirm you are not a bot, please? Thanks.

@d19dotca that's a good idea for the public release notes, I have made it alphabetical there (this is the one you see when you click update on Cloudron, usually it is more high level and not commit based). This changelog in the repo is really just internal and not meant to be read by end users. I know I posted it on the forum, but was just trying to give a heads up for curious people

[1.5.1]

• Update AdGuard Home to 0.108.0-b.15
• Full changelog
• The minimum DHCP message size is reassigned back to BOOTP's constraint of 300 bytes (#4904).
• Panic when adding a static lease within the disabled DHCP server (#4722).

[2.9.4]

• Update minio to 2022-09-17T00-09-45Z
• Changelog
• limit number of buckets to 500k by @harshavardhana in #15668
• Add StopDiskAtLimit by @klauspost in #15670
• add vulncheck action to CI by @aead in #15676
• Persist in-memory replication stats to disk by @poornas in #15594
• prometheus: Track errors during REST read/write calls by @vadmeste in #15678
• Fix S3 Select CSV -> JSON with variable field count by @klauspost in #15677
• use go1.19.1 for vulncheck by @harshavardhana in #15680
• Pass groups claim into condition values by @donatello in #15679
• panic if replication config could not be read from disk by @poornas in #15685
• update docs to add cycle in scanner by @sinhaashish in #15686
• Fix flaky TestGetObjectWithOutdatedDisks by @klauspost in #15687
• When listing, do not count delete markers by @klauspost in #15689

I guess we want to mention the bandwidth which is probably more important than the initial latency?

[1.23.0]

• Update Kimai to 1.25.0
• Full changelog
• Configurable calendar drag and drop behavior (#3537)
• Added keyboard shortcuts (#3536)
• Translations update from Hosted Weblate (#3523) (#3532) (#3542)
• Make project and customer available in export summaries (#3543)

[1.34.1]

• Update LimeSurvey to 5.4.1

[1.13.6]

• Update Grafana to 9.1.6
• Changelog
• DataSource: Adding possibility to hide queries from the inspector. #54892, @mckn
• Inspect: Hide Actions tab when it is empty. #55272, @ryantxu
• PanelMenu: Remove hide legend action as it was showing on all panel types. #54876, @torkelo
• Provisioning Contact points: Support disableResolveMessage via YAML. #54122, @mmusenbr
• PublicDashboards: Support subpaths when generating pubdash url. #55204, @owensmallwood

@Refugee_Ranger said in Enormous Security Hazard:

Cloudron will configure Cloudflare for DNS only

By default, Cloudron configures any new app for DNS only. You have to go to the Cloudflare dashboard to enable proxying. Once you enable it in Cloudflare, Cloudron will preserve the proxying flag.

There is a bug in the current release that the code crashes when trying to send a notification if a backup failed. This is fixed . I think in the coming releases we can explore more notification options but atleast now you should get an email.

If it's password issue, there are some instructions here - https://matomo.org/faq/how-to/faq_191/

@kyleh2946 did I understand correctly that you can login but the screen shows you have no permissions ? i.e authentication worked but authorization failed? A screenshot or equivalent would help me understand better.

@eddowding Ah, perfect. I actually sent you a note from support early today morning, but that was probably too late.

Just preparing the release. Updated the changelog if anyone is interested - https://git.cloudron.io/cloudron/box/-/blob/master/CHANGES#L2511 . The CI is running now, hopefully this is done this week.

As @msbt mentioned, that window pops up when WordPress does not have write permissions to the files.

@UweG If the modules are deployed dynamically, this won't work (yet). We are yet to figure how to handle such dynamic node module installations. I think @ajtatum had similar issues as well. Have to look into this when we find some more time.

I am up for it as well Anytime in Oct works. @luckow (/ @BrutalBirdie) has helped organize these in the past, so I will ask their help again...

@nightmare welcome to cloudron!

• I assume MYIP is the public IP? You can check your IP using something like https://www.whatismyip.com/ .

• If that is correct, then you have to make sure port 80 and port 443 are forwarded from the router to your home server (internal IP).

• Then, can you check if you are able to connect from outside of your network. For example, from your mobile phone maybe using https://PUBLICIP?

• If that connect, then I would check connecting from inside the network. If it doesn't connect just from inside the network, then you have to check if your router supports so called hairpinning - https://en.wikipedia.org/wiki/Network_address_translation#NAT_hairpinning . This feature allows you to connect from within your internal network but using your public IP.

Can you test the above and let us know?

Also, if you just recently purchased the domain on GoDaddy, then it will appear find on GoDaddy itself but it takes a bit of time to propagate to the world.

@stevespaw On your PC or on the server, if you run host -t NS <domain.com> , do you see that it points to GoDaddy ? The output should contain domains of the form domaincontrol.com.

[2.0.4]

• Update Moodle to 4.0.4
• Release notes

[3.14.3]

• Update OpenProject to 12.2.3
• Full changelog
• Fixed: Installing custom plugins in packaged installations

@tobiasReichel Is it an option to use the Jumpcloud LDAP integration using https://docs.cloudron.io/user-management/#external-directory ? This way you don't need to configure GitLab specifically to use Jumpcloud.

[1.36.1]

• Update LDAP plugin to 4.5.2

@benborges Ah ok. Maybe you can wait for 7.3. Please update to that and try to update again and we can debug further. There are some cgroup v2 related fixes for Ubuntu 22 in 7.3 which affect docker container creation, it's possible you hit that case.

@benborges said in Upgrading to Ubuntu 22 - Recreating containers:

box.log output this every few minutes

the message is displayed to indicate that box code itself is running but something is causing the platform to not start/initialization is not completed. Do you have the logs of above these lines? There will be a docker run xxx failing most likely.

@benborges It shouldn't take so long to recreate containers. Maybe 3-5 minutes, but that's about it.

Do you have the logs in /home/yellowtent/platformdata/logs/box.log ? Usually, it will have an indication of why things are stuck.

@3246 I think setting that env first and then running the command would work.

export DATABASE_URL="${CLOUDRON_POSTGRESQL_URL}?sslmode=disable"

Then, run the reset command.

Since 7.2, you can also run a "service" using the cron section - https://docs.cloudron.io/apps/#cron .

So:

@service /usr/bin/node /app/data/nodeapp.js

Strange why your ISP thinks it's dangerous. Is there any more information ? Looks like here atleast.

This is implemented in 7.3

[0.8.0]

• Update Immich to 1.28.1
• Full changelog
• feat(web) add all server checks to CI - fix lint issues by @jbaez in https://github.com/immich-app/immich/pull/633
• feat(web) add web UI components tests setup by @jbaez in https://github.com/immich-app/immich/pull/612
• feat(web) add web test / check commands and workflow to run in CI by @jbaez in https://github.com/immich-app/immich/pull/642
• fix(web) fix Notification components possible memory leaks by @jbaez in https://github.com/immich-app/immich/pull/650
• feat(web) add scrollbar with timeline information by @alextran1502 in https://github.com/immich-app/immich/pull/658

[4.14.0]

• Update Ghost to 5.14.0
• Full changelog
• Added history log for staff actions - Daniel Lockyer
• Added optional data-attribute to enable and disable auto redirection. (#15335) - Ronald Langeveld
• Fix sidebar members number not updated after member create & delete (#15378) - Hakim Razalan
• Fixed validation errors for duplicate members (#15362) - Hakim Razalan
• Fixed square brackets being % encoded in URLs (#14977) - rw4nn
• Fixed error when deleting tag and missing slugs on tags list - Kevin Ansfield
• Fixed product card images causing very wide emails in Outlook (#15374) - Kevin Ansfield
• Fixed incorrect member count on sidebar (#15330) - Ronald Langeveld
• Fixed archived tiers appearing in Portal Links UI (#15351) - Hakim Razalan

[2.9.3]

• Update minio to 2022-09-07T22-25-02Z
• Changelog
• avoid printing io.ErrUnexpectedEOF for .metacache objects by @harshavardhana in #15642
• do not print object not found errors in MRF healing by @harshavardhana in #15646
• fis deadlock caused by unlocking a non-existing lock by @yudoutingle in #15635
• fix: use optimized json.NewEncoder instead for metrics by @harshavardhana in #15648
• Reuse madmin.ClusterRegistrationInfo by @anjalshireesh in #15654
• verify RenameData() versions to be consistent by @harshavardhana in #15649
• allow non-standards fallback for Expires header by @harshavardhana in #15655
• allow non-standards fallback for all http.TimeFormats by @harshavardhana in #15662