Cloudron 9.0 (beta) bug reports

Possibly a bug - Maybe more of a specification/documentation situation.

I updated one of our servers from v8.3.2 to v9.0.7 yesterday. The overnight S3 backup to a local device failed with the following error:

Backup endpoint is not active: Error listing objects. code: undefined message: self-signed certificate HTTP: undefined

Up until now, the server was configured to backup to a s3-v4 compatible storage location using https and allowing self signed certificate.

While troubleshooting, changing the s3 endpoint from https to http and updating the cloudron config accordingly resolved the issue and allowed for backup to proceed.
To note:

• the (local) address and port of the S3 endpoint have not changed
• I regenerated the self signed certificate and made another attempt but got no luck here either.

I am not clear whether https id part of the s3 specifications or not. However, https with S3 worked fine with 8.3.2 so it is:

• either a bug in v9.0.7
• or a change / normalization within cloudron for which a more meaningful error message (or form validation) and/or documentation would be helpful.

Hopefully this helps.

I believe that this is what I tried to convey here also.

Would be a nice addition indeed especially if made available not only for LAMP/Surfer app (already a good start) but also others ones.

Thanks for the update.

I had noticed this last week when checking if IT-tools had some DNS query tools and noticed the fork had.
Seems it also has a lot more - Interesting.

Hi - You can find the list of Cloudron packaged app that are SSO enabled here: https://www.cloudron.io/appstatus.html

While this list speaks to a SSO managed by / for Cloudron, I am under the understanding that, for each of these apps, if you leave user management to the app when installting the app on Cloudron, you should be able to configured SSO to work with your Keycloak instance.

Hopefully this is a correct assumption.

I hope that this helps.

Not sure if this is a support request per se - feel free to move.

Description

It is currently not possible to install apps on my.demo.cloudron.io due to the following error:
Unable to detect ipv6. API server (ipv6.api.cloudron.io) unreachable

Steps to reproduce

Attempting to install any apps from the app store return this issue.

@james "hostname" as in the name of your machine locally, the result to the hostname command in the local shell.
I am pretty sure we speak about the same things - all good then.

Thanks!

I do not think it does, but I though I would check prior to doing this:

• Does change the server hostname have in impact on Cloudron?
• Are there things to watch for, be careful with?

Thanks,

Hi there - thanks for the great work on v9.
For the little I played with, it looks and feels great so far.

From the demo server, I will pinch in with a couple of questions/comments too:

• 1 - Branding - Footer: This seems to be available only from the login page and not from the dashboard anymore. is this intended?

In v8, we store some references and links to internal help documentation etc in the footer. So I wonder if/what could replace this in v9?

• 2 - The help menu:
  • Is this something visible to all users? No it is not, tried and saw.
  • Related to the point above, instead of the footer, potentially, I would love the opportunity to have such an help menu option for non-admin users, so long as the content is editable / amendable by admin. I hope that I make sense

• 3 - Log out - This is for sure a matter of tastes and colour etc.. but since I got confused initially: working on a fairly big screen I looked for the logout button for longer than I believe I should. Instinctively (or maybe from previous version) I was looking for it below the username as I clicked on it.
  Then I noticed it on the profile page.
  Maybe it is only me, but should it remain there, then I would suggest potentially a change of colour, to something that pops up a little bit more.

• 4 - Menu item for user with User Manager priviledges (possibly this is not tied to v9 entirely)
  At the moment, a user with a user manager role see the following menu items

Clicking on the LDAP/OpenID/Settings option open the "My Apps" page.
While I think it is right that the User Manager does not have access to these options, I think that the options should simply not be visible, rather that to open another / different page. This is likely to create confusion.

I hope that it makes sense.
Speaking personally, v9 gives already a very nice feeling.
This is it for now and my short play around - I might pop back in later on with more.
Many thanks for all the work and support in the background!

@girish This sounds very good, but rather like a major change/update (or maybe not?) - Only question remains, and I know that this might be challenging, especially having v9 just out: when is the Cloudron team likely to look into this ? Is this something planned for a specific Cloudron version?

No worries if you cannot give an indications - I can also easily understand.

Hi,

Let's consider this:

• Cloudron Server A is the IdP, home to the user directory, the Directory Server
• Cloudron Server B is syncing the user directory with Cloudron Server A via the External Directory Connector.

Question: Is there a way to sync only part of the user directory such as only users of a certain group? Maybe by adding some arguments to the Server URL?

While not massively critical, this would:

• reduce maintenance (unnecessary overhead of deleting old users etc..)
• reduce vector of potential attack on cloudron server B

Thanks a lot!

Also from here - Thank you

Maybe just a heads up:

According to dev in the following post, it seems as the plugin used by Cloudron for SSO in wordpress, Openid-connect-generic, has a new home.

https://github.com/forumone/openid-connect-wp-dist

Albeit, not much has happened in the last year, since the fork.
Also, there is no mention of this in the wordpress plugin directory.

The plugin, while working, has been tested for the last 3 major release of Wordpress.

Calling on the Wordpress experts here:

Is there a way to restrict login to the dashboard and only OIDC (remove native login access)?

This does not seem to be part of the OIDC plugin that Cloudron currently uses.
Maybe via another plugin? or directly editing the wp-login.php?

I will take any advice.

Thanks,

---

• Title: Scrypted

---

• Main Page: https://scrypted.app/
• Git: https://github.com/koush/scrypted
• Licence: See individual project directories for licensing, as it will vary throughout the repository. Some plugins may have dependencies that require GPL compliance.
• Dockerfile: No, but docker compose available
• Demo: Demo of Scrypted + Scrypted NVR: https://demo.scrypted.app/#/demo

---

• Summary: Scrypted is an open source video integration platform. Using various Plugins, Scrypted can receive streams from a range of cameras and send them to other platforms (HomeKit, Google Home, Alexa, Home Assistant).

---

• Notes: Provide a gateway for a large number of integrations.
  Additionally but not part of the package: Scrypted NVR is a Scrypted plugin that can be locally installed. It provides 24/7 recording, smart detections, notifications, and accompanying mobile and desktop apps. The Scrypted NVR plugin is NOT open source (as far as I can tell) and subject to cost.

---

• Alternative to: e.g. Zoneminder
• Screenshots:
  

without hijacking the thread, I recently came accross this which I think could be considered as a potential alternative: https://www.scrypted.app/ and though it might be worth mentioning. while the core app is open-source and dockerizable, the NVR plug-in is not and subject to a subscription, as far as I can see.

Possibly this could make for another app in the wishlist, should there be interest.

@brerlapn @josephcosta Thanks for your suggestions - while I am aware of xbrowsersync / floccus, it does not quite fit what I am after and the gap that Firefox Sync Server would fill for me: Syncing browser parameters/extensions and session.
Hence my appreciation if ever Firefox Sync Server ever comes to Cloudron.

I would find this helpful.
Currently, I am using Syncthing to sync Librewolf portable between devices. However I still encounter regular conflicts - Nothing major, but just some annoyances I could do without. My biggest pain in this setup is the heavy limitation for cross platforming.
And so Firefox Sync would alleviate these pain points however minor or major they are. So would be welcome.

@andreasdueren on behalf of a potential user, yes it is - and I would very much like to see this in Cloudron App store too.

Thank you very much for your answers @froodle - Looking forward to more success for StirlingPDF.