CouchPotato

For once, this post is not really to request an app, but to announce that my package for it is ready ^^

https://git.cloudron.io/mehdi/couchpotato-app

http://couchpota.to/

@girish said in What's coming in 6.4:

Specifically, we moved from callback based programming to more modern async/await.

Great ! Honestly, that was long overdue ^^ I think it is a great time investment, as it will definitely speed up future developments significantly.

I quite agree with @timconsidine . We could have these apps on Cloudron, but with a big fat red warning that says the app is unsupported :

• zero user support
• larger backups
• no auto-update

If unhappy: bother the original author.

I am strongly against replacing the server in the current OpenVPN app.

However, it totally makes sense as a new, separate, app.

@ruihildt said in Why not make Cloudron fully open source again?:

I'm sad not to be able to recommend Cloudron as the best open source paas since the license change.
It has in effect changed my relation to the project, from an invested advocate to a simple client.

I totally agree with this part. More than that, I would never have picked up Cloudron at all at the beginning if it weren't open source.

And as to contributions, I am the author of one of these rare contributions ^^ (to make the platform compatible with the OpenVPN app), and I would definitely not have contributed if it were not open source.

TLDR: I am 100% in favor of switching back to an open source licence.

(As for the precise licence, I do not really care, be it MIT, Apache, GPL, AGPL ... whatever.)

I am a regular user of cryptpad, and I can confirm it works well ! It's basically an Etherpad, but with end2end encryption. Would love to see it on cloudron.

@infogulch said in Scaling / High Availability Cloudron Setup:

I'd rather have multi-node app management than distributed app runtime. Manage all your cloudron nodes and assign apps between them, migrate them etc, but most apps can still only be deployed to one cloudron instance at a time. At least I think this would be a better scaling/ha goal for a v1 implementation.

I totally agree, and I think it's the way the cloudron team is headed for the V1

@LoudLemur

Gitea is a fork of Gogs, so they are quite similar : both are lightweight and efficient, but quite minimalist.

GitLab is much heavier, but has much more features.

I suggest going with Gitea if you only need Git hosting + basic issue tracker. I suggest GitLab if you are interested in having integrated CI, more complete issue tracking, package manager, ... basically every bells and whistles you could think of and then some ^^

@lonk It combines Jellyfin (for which there's already an app now), Transmission, SickChill, Couchpotato (the 3 I just mentioned), a custom file manager (built before Cloudron had one), and a custom TV Shows and Movies streaming interface (built before I integrated Jellyfin). Plus a few custom things, like a script to auto-remove finished torrents on transmission, and a script to auto-convert videos to MP4 for easy streaming in the browser (for my custom streaming interface. I disabled it now that I mainly use jellyfin, which handles this automatically).

@girish @nebulon My Transmission app is done, tests and all https://git.cloudron.io/mehdi/transmission-app

In my opinion, it's ready to push to store. It may need a bit more doc, but other than that it's good to go

BTW, the proxyAuth addon rocks !

@Lonk Here's the code : https://git.cloudron.io/cloudron/box

I think the cloudron team still accepts Merge Requests, even if it's not Open Source, as long as you sign a contributor's agreement (https://cla.cloudron.io/)

Slowly rolling-out automatic updates, but allowing manual updates immediately, seems a great idea to me.

Personally, from a security standpoint, I would totally not recommend Cloudflare. Their model is literally performing a (authorized) man-in-the-middle attack on your traffic. They have access to all your data.

I'm not saying they're nefarious. I'm just saying that for the minute benefit they offer, I don't think it's worth it to add yet another entity to the chain of trust.

@fbartels said in 2FA for all LDAP apps:

and rotate them regularly

(Forcing password rotation when there has been no indication of compromise has actually been proven experimentally to lower security, rather than enhance it : if encourages users to chose simpler passwords, because they're gonna have to remember more passwords)

In short, I am quite against letting go of these restrictions. I think their benefit is huge. I know it makes it a pain to package some apps, but I still think it's worth it.

As for more specific points:

@girish said in Deploying apps that treat code as data:

Latest versions of node don't allow symlinking node_modules anymore

Do you have a source on this ? I am very surprised, as a lot of nodejs utilities use symlinks in node_modules, things like Lerna (https://lerna.js.org/), or even native npm link.

@girish said in Deploying apps that treat code as data:

Koel wants to write to public directory to storage cover art. This is also the folder that contains all the js/css/webpack output! It also has code accessing things via relative paths. So, symlinking public to writable portion doesn't work.

You could do it the other way around :

• in Dockerfile, rename de folder /app/code/public2
• create a symlink from /app/code/public to /app/data/public
• in start.sh create /app/data/public, and inside it create symlinks to everything in /app/code/public2

A bit hacky, but it should work I think

@cbeams You just say on the forum that it's been package, give a link to the repo, and the Cloudron team will get to it

@marcusquinn said in Best privacy chat apps:

Telegram seems good but Signal being open-source seems better.

Security professional opinion : Telegram is . It's no better than facebook messenger. No encryption by default. I don't know how they managed to create the public perception that they are privacy-focused.

@girish I think a reasonable default would be to blacklist all non-local IPs (RFC 1918) by default. That way, connecting from VPNs should work, connecting from LAN should work, but connecting from public internet would require manual white-listing.

@marcusquinn said in What's coming in 6.0:

If I can add File Permissions management to the Wishlist for the nice new File Manager please.

Seeing the screenshot in girish's post here (more precisely the icons of the actions on the right), I think it's already done for the next version

@ei8fdb It's not only files, there also are databases that you would have to import into the database app on your target server. But yeah, basically it's no harder than moving the data from a non-cloudron install into another non-cloudron install