BTCpayserver

What is the latest news on official support for BTCpayserver on Cloudron?

@jdaviescoates made a great request here and very early in the BookWyrm's development. A lot has improved since then. Here is an ai generated summary. Lets support BookWyrm on Cloudron!

Bookwyrm Improvements: v0.0.1 to v0.8.0

Core Features

• Introduced user export and import functionality, with files now saved to /exports in local storage by default, and automatic deletion of import files post-completion.
• Updated minimum Postgres version to 14 (17 preferred) and Django to 5.2 for enhanced core stability and compatibility.
• Added management command to merge works, improving data handling for book entries.
• Added dates to RSS feeds and sorted them by most recent first for better content delivery.

User Interface/UX

• Display "no rating" instead of blank stars for reviews without ratings, improving visual clarity.
• Use translated shelf names in notifications for shelving other editions, enhancing multilingual support.
• Retain subjects and authors in the new book form even if validation fails, reducing user frustration during input.

Social/Community Features

• Show all reports (not just open ones) when linked from user admin, aiding moderation.
• Fixed federation issues with GoToSocial and inconsistent KeyId in headers, improving interoperability.

Book Management

• Optimized get_audience function by fetching only IDs, streamlining book-related queries.
• Enabled merging of works via a new management command for cleaner book database management.

Performance/Optimization

• Optimized get_audience by only fetching IDs to reduce query overhead.
• Increased default file upload limit to 100MiB, configurable via MAX_UPLOAD_MiB in .env.

Bug Fixes

• Fixed federation with GoToSocial and inconsistent KeyId in headers.
• Retained subjects and authors when new book form fails validation.
• Updated nginx config requirements, including new location blocks for static files and access restrictions to /images/.

Security/Privacy

• Included important security fixes in v0.8.0, with warnings to manually delete publicly available user export files (.gz) from images directories and S3 storage.
• Changed default DEBUG to false for production security; assumed HTTPS unless DOMAIN=localhost.
• Added optional S3 support for export files via new env variables like USE_S3_FOR_EXPORTS=true, with separate credentials for isolation.
• Deprecated USE_HTTPS and enforced HTTPS in production to prevent HTTP URLs in user/object IDs.
• Added nginx config to block access to non-image files in /images/ with 403 responses.

Documentation/Setup

• Introduced NGINX_SETUP env variable (values: reverse-proxy or https, defaults to https) for better proxy and dev environment handling.
• Updated default PORT to 443 (or 80 for localhost) if unset, differing from previous 1333 default.
• Provided detailed upgrade instructions for all environments, including Docker steps like docker compose down, database version upgrade to Postgres 17, and rebuilding with Django 5.2.
• Required manual nginx config updates in v0.7.2 for static file handling and security blocks.

Other

• Enabled optional S3 storage for exports with new env variables like EXPORTS_S3_CUSTOM_DOMAIN and EXPORTS_STORAGE_BUCKET_NAME.
• Encouraged deletion of legacy export files in S3, especially for Backblaze (B2) or Cloudflare (R2) due to potential unsecured buckets.

It doesn't use code from any of the existing web-browsers.

https://ladybird.org/

I tried creating the above post using AI. The formatting wasn't beautiful, so I retried with AI, asking it to improve the formatting. It didn't get much better.

I shall tidy it up later but am leaving it here for a while so you can see how it looks.

Main Page: https://github.com/HenryPenton/train_dashboard
*

• Git: https://github.com/HenryPenton/train_dashboard
• Licence: MIT
• Dockerfile: Yes (pre-built Docker images available)
• Demo: N/A

• ---

• Summary: A full-stack application for live train and tube status updates, route planning, and departure information. Built with Next.js for the frontend and FastAPI for the backend, it integrates with Transport for London (TFL) and Real Time Trains APIs to provide real-time data.

• ---

• Notes: I like this app because it provides a self-hosted, customizable dashboard for monitoring UK public transport, ideal for commuters or enthusiasts who want to avoid proprietary apps. The retro-inspired UI is a nice touch, and it's responsive for use on various devices. Concerns include it being under heavy development, potential bugs, and the need for API credentials from Real Time Trains for full functionality.

• ---

• Alternative to / Libhunt link: No direct self-hosted alternatives found, but related transportation projects at https://www.libhunt.com/topic/transportation (e.g., https://selfhosted.libhunt.com/trs-alternatives for CLI timetables)
• Screenshots:
• 
• :

https://immich.app/blog/google-flags-immich-as-dangerous

@marcusquinn made a great application request here. The Qdrant project has become increasingly useful for AI and a lot has happened since the initial request to make the project even better. Here is an ai generated summary:

Summary of New Features and Improvements in Qdrant from v1.1.0 to v1.15.5

Based on the changelog from this GitHub comparison, here's a categorized breakdown of the major updates. Early versions (1.1–1.2) laid the foundation with vector search and HNSW indexing, while later releases added scalability, hybrid search, and performance tweaks. This evolved Qdrant into a robust vector database for AI applications.

Vector Search and AI Features

• Hybrid Search Support: Introduced sparse vectors alongside dense ones (e.g., BM25/TF-IDF generalization for keyword matching in transformer models, starting ~1.3–1.4).
• Recommendation Strategies: New options like sum_scores for relevance feedback and server-side score boosting with custom formulas (v1.14.x).
• Local BM25 Inference: Added built-in BM25 scoring (v1.15.x), cutting reliance on external models for text ranking.

Performance and Optimization

• HNSW Graph Improvements: Incremental building on segment merges (v1.14.x), parallel batch searches, and memory optimizations.
• Memory/Disk Management: Better disk cache eviction (v1.14.x), adjustable log buffers, and vector quantization reducing RAM usage by ~97% (since ~1.3).
• SIMD Acceleration: x86-64 and Neon support for faster vector computations (ongoing from ~1.5).
• Async I/O and WAL: Write-ahead logging for data durability and io_uring for max NAS throughput (major in 1.5–1.10).

Storage, Sharding, and Scalability

• Distributed Deployment: Full horizontal scaling with sharding/replication and zero-downtime updates (matured in 1.10–1.15).
• Mutable Map Index: Boosted performance for full-text, integer, and other indexes (v1.15.x).
• On-Disk Storage: Dynamic on-disk vectors with cache controls (replaced deprecated mmap_threshold in 1.15.x).
• Resharding/Recovery: Improved shard recovery against crashes and aborted resharding for dead replicas (v1.14.x).

Security and Access Control

• JWT/Payload Filters: JWT for read-only access and payload-based filters (deprecated in 1.15; now collection-level ACLs).
• Access Controls: Shift to secure, collection-based permissions (recommended since 1.15).

Web UI and User Experience

• Enhancements: Query auto-completion (v1.14.x) and shard distribution in cluster views (v1.15.x). Debian packages now include web UI (v1.15.x).

Payload and Filtering

• Advanced Filtering: JSON payloads, keyword/full-text matching, numerical/geo ranges, and complex conditions (e.g., should, must, must_not). Optimized query planning with payload indexes (steady improvements since ~1.2).

Bug Fixes and Consistency

• Key fixes: Delayed flush wrappers prevent lost index updates (1.14.x); storage issues for nulls/booleans deferred until flush (1.15.x); linear decay range bounds corrections (1.15.x).
• Others: Scroll locks, segment mods, date-time errors in formulas, and corrupt point eviction (across 1.14–1.15).

Deprecations and Removals

• Removed init_from for consistency (use migrations/snapshots; 1.15.x).
• Deprecated max_optimization_threads (1.15.x), Lock API, and payload-based JWT filters.
• Deprecated mmap_threshold in favor of on_disk (1.15.x).

Overall, Qdrant went from basic vector search to an enterprise-grade tool emphasizing hybrid search, reliability, and AI integration. Full details in the GitHub link. Let me know if you want more on a specific version or category!

• Main Page: https://cobalt.tools/
• Git: https://github.com/imputnet/cobalt
• Licence: AGPL v3.0
• Dockerfile: Install: Use cobalt.tools online; or docker run -p 3501:3501 cobalt/cobalt for self-host.
• ? https://github.com/imputnet/cobalt/issues/722
• Demo: https://cobalt.tools/

---

• Summary: Download videos and watch them offline instead of viewing them on proprietary platforms.

---

• Notes: large development effort, it works and does so across several platfroms. Docker support might be tricky

---

• Alternative to / Libhunt link: eg invidious, yt-dlg, yt-dlp, https://tartube.sourceforge.io/ https://www.libhunt.com/r/cobalt
• Screenshots:
  
  

@nebulon Thanks, we ran into this issue, too. What is it in Cloudron 9 that immich requires?

@marcusquinn Thanks for that. Looks like my post is a duplicate of:
https://forum.cloudron.io/topic/13141/litellm-openrouter-self-hosted-alternative-proxy-provides-access-to-openai-bedrock-anthropic-gemini-etc?_=1759700788590

(I posted 3 apps, checked the first one, and then forgot to check if the other two had already been requested!)

@girish What is the procedure to merge this dupe with @jagan 's earlier request here?

https://forum.cloudron.io/topic/13141/litellm-openrouter-self-hosted-alternative-proxy-provides-access-to-openai-bedrock-anthropic-gemini-etc?_=1759700788590

I can see the topic tools, merge option, but it is a bit confusing on how to paste/include jagan's thread.

@timconsidine SillyTavern is good for multi-modal integration, like text-to-speech, speech-to-text, image generation and for making sustaining context a bit easier for drama/RPGs.

Since you are curious, some of the other app requests I recently made are there so that cloudron would support some of the tools most frequently used by ai, according to OpenRouter statistics.

Here is how ai (GPT5) explains it:

Short answer: SillyTavern and LibreChat target different use cases. Having LibreChat doesn’t make SillyTavern redundant.

Why someone would pick SillyTavern
Character/roleplay first: Built-in support for character cards, group chats/party mode, world info/lorebooks, long-form memory and style presets tailored for RP and creative writing.
Strong local-LLM focus: Connects directly to many non–OpenAI-compatible backends (e.g., KoboldCpp, text-generation-webui, llama.cpp) as well as OpenAI/Anthropic/Ollama/OpenRouter. Great for people running purely local models.
Immersive extras: Optional “SillyTavern-Extras” for TTS/STT, translation, and image generation integrations for story/RP flows.
Lightweight and personal: Mostly a client/front-end; simple to run, low overhead, well-suited to single-user creative use.

Where LibreChat shines
General-purpose, ChatGPT-like UX: Good for Q&A, productivity, and teams.
Multi-user and org features: Auth, sharing, and workspace-style flows.
Standards-based backends: Primarily OpenAI-compatible APIs (also works with Ollama and other compatible gateways).
Tools/RAG/file workflows: Better fit for business/knowledge tasks and agents.

• Main Page: https://www.newapi.ai/en/
• Git: https://github.com/QuantumNous/new-api
• Licence: Apache 2 / Dual-Use https://github.com/QuantumNous/new-api?tab=License-1-ov-file#readme
• Dockerfile: Yes https://github.com/QuantumNous/new-api/blob/main/Dockerfile
• Demo: link

---

• Summary: next-generation large model gateway and AI asset management system, based on One API for secondary development. The project aims to provide a unified interface for managing and using various AI model services, including but not limited to OpenAI, Anthropic, Midjourney, and more.

---

• Notes: why you like it/concerns

---

• Alternative to / Libhunt link: e.g. https://selfhosted.libhunt.com/umap-alternatives
• Screenshots: images, brand logo

• Main Page: https://www.litellm.ai/
• Git: https://github.com/BerriAI/litellm
• Licence: MIT? https://github.com/BerriAI/litellm?tab=License-1-ov-file#readme
• Dockerfile: Yes https://github.com/QuantumNous/new-api/blob/main/Dockerfile
• Demo: Youtube video on main page

---

• Summary:
• Call 100+ LLMs using the OpenAI Input/Output Format
• Translate inputs to provider's completion, embedding, and image_generation endpoints
• (Consistent output, text responses will always be available at ['choices'][0]['message']['content']
• Retry/fallback logic across multiple deployments (e.g. Azure/OpenAI) - Router
• Track spend & set budgets per project LiteLLM Proxy Server

---

• Notes: Supported LLM providers:
  https://docs.litellm.ai/docs/providers

---

• Alternative to / Libhunt link: OpenRouter
  https://alternativeto.net/software/litellm/

• Screenshots: images, brand logo

• Main Page: https://sillytavern.app/
• Git: https://github.com/SillyTavern/SillyTavern
• Licence: AGPL-3.0 license
• Dockerfile: Yes https://github.com/SillyTavern/SillyTavern/blob/release/Dockerfile
• Demo:

---

• Summary: locally installed user interface that allows you to interact with text generation LLMs, image generation engines, and TTS voice models. Our goal is to empower users with as much utility and control over their LLM prompts as possible, embracing the steep learning curve as part of the fun.

---

• Notes: Multi-modal ai support
  https://docs.sillytavern.app/

---

• Alternative to / Libhunt link: https://www.libhunt.com/r/SillyTavern
• Screenshots: images, brand logo

@BrutalBirdie I still can't understand why Foundry isn't officially supported on Cloudron yet.

This far-sighted request for App Flowy was made by @marcusquinn years ago and there has been tons of development made since then. Lets try and support AppFlowy on Cloudron:

https://github.com/AppFlowy-IO/AppFlowy/compare/0.0.1...0.10.0

via Arya ai:

Since its release, AppFlowy has strategically positioned itself as a powerful, open-source alternative to Notion, appealing to a specific and growing segment of users.

Primary Reasons for Choosing AppFlowy Over Notion

• Data Ownership and Privacy: This is AppFlowy’s strongest selling point. Unlike Notion, which stores all user data on its own servers, AppFlowy is self-hostable. Users can choose to run it entirely locally on their machine or on their own private server. This means you truly own your data, a critical factor for businesses handling sensitive information, developers, and privacy-conscious individuals who are wary of vendor lock-in and third-party data access.

• Open-Source Nature: Being open-source (licensed under AGPLv3 and a commercial license) provides transparency, community-driven development, and freedom from the feature roadmap of a single corporation. Developers can audit the code for security, contribute to its development, and create custom extensions. This fosters a level of trust and flexibility that closed-source SaaS platforms like Notion cannot offer.

• Offline-First Functionality: AppFlowy is designed from the ground up to work seamlessly offline. All changes are saved locally instantly and synced to the cloud only when you configure it to do so. This provides a faster, more reliable user experience without the constant latency of web requests, a common frustration with Notion’s web-based architecture.

• Customization and Extensibility: The open-source model allows for deep customization. Users are not limited to the templates and blocks Notion provides. The community can (and has) built custom plugins, widgets, and integrations tailored to highly specific workflows, something that would require official support within Notion’s walled garden.

Key Advances and New Features (Post-November 2021)

Since its initial launch, AppFlowy has evolved from a promising prototype into a robust productivity platform. Its main advancements include:

• Robust Self-Hosting & Sync: The development of AppFlowy Cloud (as an optional service) and the ability to self-host a sync server using Docker. This provides a flexible sync solution that mimics Notion’s convenience but on infrastructure you control.
• Expanded Database & View Capabilities: Steady implementation of core database features, including multiple view types (Kanban, Calendar, Grid), advanced filtering and sorting, and formula support, bringing it closer to parity with Notion’s powerful database functionalities.
• Plugin System & AI Integration: A major leap forward has been the development of an API and plugin system. This has allowed for the integration of AI tools, most notably through official and community-made plugins. Users can now leverage AI (like OpenAI’s models) directly within their AppFlowy workspace to generate content, summarize text, and more, all while keeping their data private if self-hosted.
• Mobile Applications: The release of increasingly stable and feature-rich iOS and Android applications, which was a critical gap in its early days. This has made it a truly multi-platform contender.
• User Interface Refinements: Continuous UI/UX improvements, including a more polished design, slash commands, block-based editing, and customizable layouts, making it not just a powerful tool but also a pleasant one to use daily.

https://forum.cloudron.io/topic/12472/please-use-this-template-to-make-an-app-wishlist-request/13

@timconsidine Maybe this might be a good app for you to add?

@tachy said in spliit:

Hi,
I forked the Spliit GitHub project and with very little configuration, I got it up and running :

CloudronManifest.json

{
  "id": "spliit.cloudron",
  "title": "Spliit",
  "author": "spliit-app",
  "version": "1.0.0",
  "httpPort": 3000,
  "addons": {
    "postgresql": {}
  },
  "manifestVersion": 2
}

diff --git a/scripts/container-entrypoint.sh b/scripts/container-entrypoint.sh
index f6b0572..3a20463 100755
--- a/scripts/container-entrypoint.sh
+++ b/scripts/container-entrypoint.sh
@@ -2,5 +2,8 @@
 
 set -euxo pipefail
 
+export POSTGRES_PRISMA_URL=${CLOUDRON_POSTGRESQL_URL}
+export POSTGRES_URL_NON_POOLING=${CLOUDRON_POSTGRESQL_URL}
 npx prisma migrate deploy
 exec npm run start

docker build Dockerfile -t docker-registry.*******/spliit
docker push docker-registry.*******/spliit
cloudron install --image docker-registry.*******/spliit

The only hiccup is the health check with a documented bug. The app needs to be called with an Accept-Language header, but Cloudron manifest cannot specify headers to my knowledge. So I can't enable the healthcheck.
https://github.com/spliit-app/spliit/issues/221

Enjoy

@timconsidine said in CCAI : Cloudron Custom App Installer:

Cloudflare Turnstile

We had a thread here about CAPTCHA alternatives quite a while ago. One issue with Cloudflare is that it is unfortunately rapidly becoming a single choke-point for the whole internet. I ran a quick AI search for Free Software alternatives to proprietary Turnstile. This is what was suggested:

Several open source alternatives to Cloudflare Turnstile exist, focusing on privacy-friendly bot protection, spam prevention, and user verification without relying on proprietary services. These often use proof-of-work (PoW) mechanisms to verify legitimacy invisibly or with minimal user friction, similar to Turnstile's approach. They are typically self-hostable, allowing full control and avoiding central choke points. Below is a list of notable options, including key features and implementation details.

ALTCHA

Description: A privacy-first CAPTCHA alternative that uses PoW to protect websites, APIs, and forms from spam and bots without tracking users. It's designed for seamless integration and escalates to code challenges only for high-risk cases.
Key Features: Frictionless verification, WCAG 2.2 AA accessibility compliance, support for 50+ languages, no cookies or fingerprinting, and optional Sentinel for advanced threat detection (e.g., rate limiting, ML-based analysis).
How it Works: The widget runs a PoW challenge in the background; if solved, it generates a token for server validation. Self-hostable via Docker, AWS, Azure, or Kubernetes.
Licensing and Cost: MIT license for the core (fully open source and free); Sentinel is commercial for enterprise needs.
Advantages over Turnstile: Smaller bundle size (30 kB vs. 85+ kB), faster load times (0 ms when bundled), and stricter privacy compliance (GDPR, HIPAA, etc.) with no data leakage.

mCaptcha

Description: A no-nonsense, PoW-based CAPTCHA system emphasizing user experience and privacy, acting as a drop-in replacement for traditional CAPTCHAs like reCAPTCHA.
Key Features: Seamless UX without image puzzles, robust against NAT users (no IP reliance), API-compatible with reCAPTCHA/hCaptcha, and focused on making bot attacks computationally expensive.
How it Works: Clients solve adjustable PoW challenges; the backend verifies them. It's fully automated and doesn't contribute to third-party ML training.
Licensing and Cost: AGPL for the core, with client libraries under permissive free software licenses; entirely free and open source.
Advantages over Turnstile: Fully self-hosted with no external dependencies, stronger emphasis on not profiling users, and libre software ethos.

Cap

Description: A lightweight, modern PoW CAPTCHA using SHA-256 hashes, designed for speed and simplicity as a direct alternative to Turnstile.
Key Features: Invisible and floating modes, standalone REST API for any language/framework, customizable difficulty, and WASM solvers for web/Node.js.
How it Works: The widget generates and solves challenges via Web Workers; the server validates them. Supports checkpoints for progressive verification.
Licensing and Cost: Apache 2.0 license; fully open source and free.
Advantages over Turnstile: Tiny size (12 kB widget), no tracking/fingerprinting, lower error rates, and higher customizability (full backend/frontend tweaks).

Anubis

Description: A Web AI Firewall utility that weighs connections with PoW challenges to block scrapers, bots, and DDoS attacks before they reach your site.
Key Features: Heuristic-based bot detection, customizable rules/policies, non-JS challenge support, and integration as a reverse proxy.
How it Works: Responds to requests with a JS (or non-JS) PoW program; only solved challenges grant access. Tunable difficulty makes scraping unprofitable.
Licensing and Cost: Open source (repository on GitHub); free to use and self-host.
Advantages over Turnstile: Explicitly targets AI scrapers and bots, supports broader heuristics beyond PoW, and has been used to mitigate real DDoS incidents.

mosparo

Description: A rule-based spam protection tool for online forms, functioning like an email spam filter rather than a traditional CAPTCHA.
Key Features: Checks form data against custom rules, honeypot fields for bot detection, accessibility compliance, and multi-language support.
How it Works: Integrates into forms to validate submissions server-side based on patterns/rules; blocks spam without user-visible challenges.
Licensing and Cost: Open source under a permissive license; free and self-hostable via Docker.
Advantages over Turnstile: Less intrusive (no challenges for legitimate users), focuses on content analysis over behavior, and fully accessible for screen readers/keyboards.

Procaptcha

Description: A privacy-focused verification tool redefining CAPTCHA with unique security approaches, often listed as an open source option for bot protection.
Key Features: Emphasizes privacy and security without conventional puzzles; details are limited but include freemium elements for scaling.
How it Works: Uses alternative verification methods (potentially PoW or similar); self-hostable with open components.
Licensing and Cost: Open source with freemium model (free tier available).
Advantages over Turnstile: Open source core allows modifications, though less detailed comparisons are available.

Perhaps this would work as the Docker:
https://github.com/greenbender/inn-docker

Does anybody want to package INN to let people run a newsnet server using Cloudron?