Postiz - social media scheduling tool

I'm excited to see this in production!

So, basically, these codes work:

Add a new key:

su - cloudron -c 'source /app/code/.venv/bin/activate; ltmanage keys --api-keys-db-path /app/data/db/api_keys.db add 120'

Show all created keys:
su - cloudron -c 'source /app/code/.venv/bin/activate; ltmanage keys --api-keys-db-path /app/data/db/api_keys.db'

But, the remove key doesn't seem to work for me (I don't understand the formatting) and it would be great to have a character set version as well such as from LibreTranslate: ltmanage keys add 120 --char-limit 5000

Okay, sorry for the rapid fire.

Rock on! This is perfect and super helpful.

According to folks on their forum, there's another step to lock down:

https://community.libretranslate.com/t/locking-down-api-key-on-self-hosted-through-cloudron/1767/2

We may need to update the docs here on cloudron:

To configure requirement for api key to use, set --req-limit to 0 and add the --api-keys flag. Requests made without a proper api key will be rejected.

Has anyone been able to integrate vikunja via n8n to kimai? That seems to be one of the avenues to solve the lack of a time tracking option with vikunja.

Hello,

I am new to this and wanted to ask a couple questions. I am planning on installing at Hetzner and using a domain I picked up through Cloudflare. There is no one-click install, but I am not sure that would be the best idea for me regardless to not know what's going on fully.

I understand this script is all I need to run on the latest version of Ubuntu LTS, which right now is 24.04.

wget https://cloudron.io/cloudron-setup
chmod +x ./cloudron-setup
./cloudron-setup

My question is twofold:

• Since my plan is to use Cloudron for my own company and in the future roll out to clients we have, is it wiser for me to go the route of a dedicated vCPU or a shared VCPU?
  
• Second, I want to make sure that I secure this as best as we can. Should I, or should I not, 1. disable the root user, 2. setup the non-root user and enable its keygen, 3. install Fail2Ban, and/or 4. install Crowdsec BEFORE I go through the installation as described with the wget command? Should I do this after I install Cloudron or does Cloudron do some of these items itself? Are any of these four steps here unnecessary?

Thank you for the help in advance. If there is anything that a NEW user should ask but I am missing here, please let me know where to look for insight. Cloudron seems like the best solution for me right now, but I just want to make sure I get the initial install done right so that I can focus on deploying the apps and not on the integrity of my initial installation.

Matt

If I install a key, do I need to comment out the line below so that it is locked down to only users with api keys?

Thank you all so much. This is extremely helpful and will guide how I set up things. I appreciate better now that you can migrate very easily with Cloudron. So that part doesn't give me any reservations.

I didn't think of email and blacklists so thanks for pointing out a blindspot.

One more quick question. Do you recommend installing CrowdSec or not? Maybe it's overkill?

@nebulon it is more confusing this way. Is there a way to set it up so that once the server is rebooted, the notification stays, but the "reboot" button becomes a grayed out button that says "reboot completed". Then leave the notification as a form of a log, I would say.