Cloudron users can't create accounts

Yes, that worked for me! That seems strange, but it works.

@james good question:) Yes, I did, multiple times.

I'm having trouble enabling my users to access Loomio. For now, at least, the goal is for all Cloudron users to be able to log in. Here is my env.sh:

And the Cloudron Access Control:

I was able to create an initial account. I'm the Cloudron admin account. But when a less-privileged account tries, here's what happens. They click the key button here:

Then log into Cloudron if they haven't yet. Then they get this:

I try Create Account, and the next screen is this:

I then enter a name, hit enter, and get this:

The logs look like this:

ep 09 13:59:23 [09/Sep/2025:19:59:23 +0000] 172.18.0.1 "GET /socket.io/?channel_token=0a44509556dc6849817ae75c99dc27bb&EIO=4&transport=websocket&sid=DUSj2M0mfdpeHoplAAAG HTTP/1.1" "Mozilla/5.0 (X11; Linux x86_64; rv:142.0) Gecko/20100101 Firefox/142.0" 101 343 "-" 338.888 338.888
Sep 09 13:59:27 I, [2025-09-09T19:59:27.053758 #89] INFO -- : source=rack-timeout id=a9a67a5f-b092-4cc6-871a-507461756d07 wait=3ms timeout=15000ms state=ready
Sep 09 13:59:27 I, [2025-09-09T19:59:27.054568 #89] INFO -- : [a9a67a5f-b092-4cc6-871a-507461756d07] Started POST "/api/v1/registrations" for 2601:280:4681:7f50:d03e:b131:c42b:9dbd at 2025-09-09 19:59:27 +0000
Sep 09 13:59:27 I, [2025-09-09T19:59:27.061332 #89] INFO -- : [a9a67a5f-b092-4cc6-871a-507461756d07] Processing by Api::V1::RegistrationsController#create as JSON
Sep 09 13:59:27 I, [2025-09-09T19:59:27.061437 #89] INFO -- : [a9a67a5f-b092-4cc6-871a-507461756d07] Parameters: {"user" => {"name" => "test", "email" => "[FILTERED]"}, "registration" => {"user" => {"name" => "test", "email" => "[FILTERED]"}}}
Sep 09 13:59:27 I, [2025-09-09T19:59:27.097082 #89] INFO -- : [a9a67a5f-b092-4cc6-871a-507461756d07] Filter chain halted as :permission_check rendered or redirected
Sep 09 13:59:27 I, [2025-09-09T19:59:27.098055 #89] INFO -- : [a9a67a5f-b092-4cc6-871a-507461756d07] Completed 422 Unprocessable Entity in 36ms (Views: 0.2ms | ActiveRecord: 0.0ms (0 queries, 0 cached) | GC: 23.6ms)
Sep 09 13:59:27 I, [2025-09-09T19:59:27.099929 #89] INFO -- : [a9a67a5f-b092-4cc6-871a-507461756d07] source=rack-timeout id=a9a67a5f-b092-4cc6-871a-507461756d07 wait=3ms timeout=15000ms service=46ms state=completed
Sep 09 13:59:27 [09/Sep/2025:19:59:27 +0000] 172.18.0.1 "POST /api/v1/registrations HTTP/1.1" "Mozilla/5.0 (X11; Linux x86_64; rv:142.0) Gecko/20100101 Firefox/142.0" 422 1074 "https://loomio.medlab.host/dashboard" 0.049 0.049
Sep 09 13:59:30 [09/Sep/2025:19:59:30 +0000] 172.18.0.1 "GET / HTTP/1.1" "Mozilla (CloudronHealth)" 301 203 "-" 0.004 0.004
Sep 09 13:59:32 I, [2025-09-09T19:59:32.775609 #81] INFO -- : source=rack-timeout id=de58afb4-baea-43de-bed7-3b260013092f wait=2ms timeout=15000ms state=ready
Sep 09 13:59:32 I, [2025-09-09T19:59:32.776522 #81] INFO -- : [de58afb4-baea-43de-bed7-3b260013092f] Started GET "/api/v1/boot/version?version=3.0.5&release=1757100919&now=1757447973262" for 128.138.65.206 at 2025-09-09 19:59:32 +0000
Sep 09 13:59:32 I, [2025-09-09T19:59:32.778088 #81] INFO -- : [de58afb4-baea-43de-bed7-3b260013092f] Processing by Api::V1::BootController#version as JSON
Sep 09 13:59:32 I, [2025-09-09T19:59:32.778625 #81] INFO -- : [de58afb4-baea-43de-bed7-3b260013092f] Parameters: {"version" => "3.0.5", "release" => "1757100919", "now" => "1757447973262", "boot" => {}}
Sep 09 13:59:32 I, [2025-09-09T19:59:32.782954 #81] INFO -- : [de58afb4-baea-43de-bed7-3b260013092f] Completed 200 OK in 4ms (Views: 0.1ms | ActiveRecord: 0.0ms (0 queries, 0 cached) | GC: 0.8ms)
Sep 09 13:59:32 I, [2025-09-09T19:59:32.783555 #81] INFO -- : [de58afb4-baea-43de-bed7-3b260013092f] source=rack-timeout id=de58afb4-baea-43de-bed7-3b260013092f wait=2ms timeout=15000ms service=8ms state=completed
Sep 09 13:59:32 [09/Sep/2025:19:59:32 +0000] 172.18.0.1 "GET /api/v1/boot/version?version=3.0.5&release=1757100919&now=1757447973262 HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36" 200 1237 "https://loomio.medlab.host/dashboard" 0.010 0.010
Sep 09 13:59:40 [09/Sep/2025:19:59:40 +0000] 172.18.0.1 "GET / HTTP/1.1" "Mozilla (CloudronHealth)" 301 203 "-" 0.004 0.004

Any thoughts on why this Cloudron user can't log in on Loomio?

Thanks in advance, and thank you for supporting this excellent app.

@nichu42 thanks for engaging. Honestly it could go either way. That does appear to be the default meaning of "forwarding" in the Rainloop filter. But it would be fine if all the messages came from the same address if need be.

Here's the latest I'm seeing in the logs:

ug 21 11:55:17 128.138.65.244 - - [21/Aug/2025:17:55:17 +0000] "GET / HTTP/1.1" 200 3875 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:141.0) Gecko/20100101 Firefox/141.0"
Aug 21 11:55:17 128.138.65.244 - - [21/Aug/2025:17:55:17 +0000] "GET /_media/wiki/logo.png HTTP/1.1" 200 45912 "https://handbook.medlab.host/" "Mozilla/5.0 (X11; Linux x86_64; rv:141.0) Gecko/20100101 Firefox/141.0"
Aug 21 11:55:17 128.138.65.244 - - [21/Aug/2025:17:55:17 +0000] "GET /lib/exe/css.php?t=dokuwiki&tseed=ef7ebc214c4220eb1d63337ef774614f HTTP/1.1" 200 22131 "https://handbook.medlab.host/" "Mozilla/5.0 (X11; Linux x86_64; rv:141.0) Gecko/20100101 Firefox/141.0"
Aug 21 11:55:17 128.138.65.244 - - [21/Aug/2025:17:55:17 +0000] "GET /lib/exe/jquery.php?tseed=8faf3dc90234d51a499f4f428a0eae43 HTTP/1.1" 200 96922 "https://handbook.medlab.host/" "Mozilla/5.0 (X11; Linux x86_64; rv:141.0) Gecko/20100101 Firefox/141.0"
Aug 21 11:55:17 128.138.65.244 - - [21/Aug/2025:17:55:17 +0000] "GET /lib/exe/js.php?t=dokuwiki&tseed=ef7ebc214c4220eb1d63337ef774614f HTTP/1.1" 200 27334 "https://handbook.medlab.host/" "Mozilla/5.0 (X11; Linux x86_64; rv:141.0) Gecko/20100101 Firefox/141.0"
Aug 21 11:55:17 128.138.65.244 - - [21/Aug/2025:17:55:17 +0000] "GET /lib/exe/taskrunner.php?id=start&1755798917 HTTP/1.1" 200 42 "https://handbook.medlab.host/" "Mozilla/5.0 (X11; Linux x86_64; rv:141.0) Gecko/20100101 Firefox/141.0"
Aug 21 11:55:17 128.138.65.244 - - [21/Aug/2025:17:55:17 +0000] "GET /lib/images/license/button/cc-by-nc-sa.png HTTP/1.1" 200 396 "https://handbook.medlab.host/" "Mozilla/5.0 (X11; Linux x86_64; rv:141.0) Gecko/20100101 Firefox/141.0"
Aug 21 11:55:17 128.138.65.244 - - [21/Aug/2025:17:55:17 +0000] "GET /lib/tpl/dokuwiki/images/apple-touch-icon.png HTTP/1.1" 200 6336 "https://handbook.medlab.host/" "Mozilla/5.0 (X11; Linux x86_64; rv:141.0) Gecko/20100101 Firefox/141.0"
Aug 21 11:55:17 128.138.65.244 - - [21/Aug/2025:17:55:17 +0000] "GET /lib/tpl/dokuwiki/images/button-css.png HTTP/1.1" 200 297 "https://handbook.medlab.host/" "Mozilla/5.0 (X11; Linux x86_64; rv:141.0) Gecko/20100101 Firefox/141.0"
Aug 21 11:55:17 128.138.65.244 - - [21/Aug/2025:17:55:17 +0000] "GET /lib/tpl/dokuwiki/images/button-donate.gif HTTP/1.1" 200 187 "https://handbook.medlab.host/" "Mozilla/5.0 (X11; Linux x86_64; rv:141.0) Gecko/20100101 Firefox/141.0"
Aug 21 11:55:17 128.138.65.244 - - [21/Aug/2025:17:55:17 +0000] "GET /lib/tpl/dokuwiki/images/button-dw.png HTTP/1.1" 200 398 "https://handbook.medlab.host/" "Mozilla/5.0 (X11; Linux x86_64; rv:141.0) Gecko/20100101 Firefox/141.0"
Aug 21 11:55:17 128.138.65.244 - - [21/Aug/2025:17:55:17 +0000] "GET /lib/tpl/dokuwiki/images/button-html5.png HTTP/1.1" 200 305 "https://handbook.medlab.host/" "Mozilla/5.0 (X11; Linux x86_64; rv:141.0) Gecko/20100101 Firefox/141.0"
Aug 21 11:55:17 128.138.65.244 - - [21/Aug/2025:17:55:17 +0000] "GET /lib/tpl/dokuwiki/images/button-php.gif HTTP/1.1" 200 207 "https://handbook.medlab.host/" "Mozilla/5.0 (X11; Linux x86_64; rv:141.0) Gecko/20100101 Firefox/141.0"
Aug 21 11:55:17 128.138.65.244 - - [21/Aug/2025:17:55:17 +0000] "GET /lib/tpl/dokuwiki/images/favicon.ico HTTP/1.1" 200 7406 "https://handbook.medlab.host/" "Mozilla/5.0 (X11; Linux x86_64; rv:141.0) Gecko/20100101 Firefox/141.0"
Aug 21 11:55:17 128.138.65.244 - - [21/Aug/2025:17:55:17 +0000] "GET /lib/tpl/dokuwiki/images/page-gradient.png HTTP/1.1" 200 209 "https://handbook.medlab.host/lib/exe/css.php?t=dokuwiki&tseed=ef7ebc214c4220eb1d63337ef774614f" "Mozilla/5.0 (X11; Linux x86_64; rv:141.0) Gecko/20100101 Firefox/141.0"

Thanks!

Bumping! A bit desperate for help here! Thanks:)

I'm afraid that's not it; I just transferred the pages/ directory. Nothing else.

I recently switched an email address from sending via Cloudron to sending via Amazon SES. I was hoping this would improve deliverability and get rid of persistent errors around the PTR configuration. But now forwarding messages to a gmail address through Rainloop doesn't work. I'm getting this error:

This is a permanent error; I've given up. Sorry it didn't work out.

Intended Recipients: <ADDRESS2@EXAMPLE.COM>
Failure Reason: Error: 554 Message rejected: Email address is not verified. The following identities failed the check in region US-EAST-2: ADDRESS1@EXAMPLE.COM


Original-Envelope-Id: <e4dce8d2-4e99-4de8-8c4d-10ac774a4fb7@EXAMPLE.COM>
Reporting-MTA: dns;my.medlab.host
Arrival-Date: Tue, 19 Aug 2025 14:47:08 +0000

Final-Recipient: rfc822;ADDRESS2@EXAMPLE.COM
Action: failed
Remote-MTA: 3.22.8.243
Diagnostic-Code: smtp;554 Message rejected: Email address is not verified. The following identities failed the check in region US-EAST-2: ADDRESS1@EXAMPLE.COM 

Obviously I cannot verify the addresses that people are writing me from, since I don't control those addresses or domains.

Is there a way to properly forward messages from arbitrary email addresses if using SES for delivery?

Thanks for your assistance.

Update: one the new reinstallation, login worked once, and I thought it was fixed. But when I tried logging in on another computer, or logging out and logging in again, the error came back. l'm back where I started with a fresh install.

Any other ideas about how I can diagnose this? Thank you for your help.

Ended up just reinstalling and migrating. Works fine. Thank goodness it is a relatively simple wiki!

I can't confirm it is activated because I can't log into the system. But that plugin is in the filesystem:

I also have this in my conf/local.php file: $conf['plugin']['oauthgeneric']['scopes'] = array();

I don't know, might need to just reinstall.

Yep, it works fine on a fresh install.

On the bad one, I'm also seeing this error show up in the DokuWiki public UX: OAuth: An error occured during the request to the oauth provider: [HTTP 400]

I just discovered that our Dokuwiki installation is not letting me log in. We use the Cloudron SSO for this app. Is anyone else having this issue? Here are the errors I'm seeing:

Aug 18 09:30:50 128.138.65.244 - - [18/Aug/2025:15:30:50 +0000] "GET /start?do=login&sectok= HTTP/1.1" 200 3788 "https://handbook.medlab.host/doku.php?error=access_denied&iss=https%3A%2F%2Fmy.medlab.host%2Fopenid" "Mozilla/5.0 (X11; Linux x86_64; rv:140.0) Gecko/20100101 Firefox/140.0"
Aug 18 09:30:50 128.138.65.244 - - [18/Aug/2025:15:30:50 +0000] "GET /lib/exe/js.php?t=dokuwiki&tseed=036a9200978e727d84cf7845cf2cdc2a HTTP/1.1" 200 27334 "https://handbook.medlab.host/start?do=login&sectok=" "Mozilla/5.0 (X11; Linux x86_64; rv:140.0) Gecko/20100101 Firefox/140.0"
Aug 18 09:30:50 128.138.65.244 - - [18/Aug/2025:15:30:50 +0000] "GET /lib/exe/taskrunner.php?id=start&1755531050 HTTP/1.1" 200 42 "https://handbook.medlab.host/start?do=login&sectok=" "Mozilla/5.0 (X11; Linux x86_64; rv:140.0) Gecko/20100101 Firefox/140.0"
Aug 18 09:30:52 128.138.65.244 - - [18/Aug/2025:15:30:52 +0000] "GET /start?oauthlogin=generic HTTP/1.1" 302 - "https://handbook.medlab.host/start?do=login&sectok=" "Mozilla/5.0 (X11; Linux x86_64; rv:140.0) Gecko/20100101 Firefox/140.0"
Aug 18 09:30:54 128.138.65.244 - - [18/Aug/2025:15:30:54 +0000] "GET /doku.php?error=access_denied&iss=https%3A%2F%2Fmy.medlab.host%2Fopenid HTTP/1.1" 200 3929 "https://my.medlab.host/" "Mozilla/5.0 (X11; Linux x86_64; rv:140.0) Gecko/20100101 Firefox/140.0"
Aug 18 09:30:54 128.138.65.244 - - [18/Aug/2025:15:30:54 +0000] "GET /lib/exe/taskrunner.php?id=start&1755531054 HTTP/1.1" 200 42 "https://handbook.medlab.host/doku.php?error=access_denied&iss=https%3A%2F%2Fmy.medlab.host%2Fopenid" "Mozilla/5.0 (X11; Linux x86_64; rv:140.0) Gecko/20100101 Firefox/140.0"

Just to confirm that the user being rejected is indeed permissioned:

And in local.php:

Thanks in advance for any insights!

I hope we can get this added! Minetest is now called Luanti, and it is available as a Flatpack if that helps: https://flathub.org/apps/org.luanti.luanti

@robi Thanks—yes, I uninstalled it.

@joseph Hostinger's responses was like "We're not responsible for our third-party scanning tool."

And @BrutalBirdie I guess it's good that the free version of Monarx at least can't (or supposedly doesn't) delete files autonomously?

Thanks, @BrutalBirdie @nebulon, I appreciate your feedback. @nebulon are you implying this is a security concern? I share that and might just turn off the malware scanner.

I've got my Cloudron running on a Hostinger VPS, and it has started getting the attention of Hostinger's built-in malware scanner.

The files in question appear to be node-related README files on various apps. For instance, stuff like:

/var/lib/docker/overlay2/126fc8372bdf65b1c50de1d1b818c4b69d05786ede10742be2ad17c2167cff23/diff/app/code/node_modules/devalue/README.md

/var/lib/docker/overlay2/01a2a6266e84fe08aa03dcf6a3e2c43c48eefef48590ae04c84af4eae316a261/merged/app/code/node_modules/devalue/README.md

I am not sure why they are being flagged. Can anyone confirm that I should not be concerned about this? Or otherwise?

Thanks.

Question: What should be the correct directory ownership and permissions setting for the ollama-home folder on a mounted Volume?

As I said above, I'm using the Filesystem mode for the volume. Should I use another?