jjkiers/cloudron-box
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity
19,064 Commits 33 Branches 583 Tags
58cf7c720fb87f3ef2c8a11c0110a2ac7dd73e24
Commit Graph

734 Commits

Author SHA1 Message Date
Girish Ramakrishnan 7654f36e23 Do temporary redirect instead 
Permanent redirect can be cached forever in the browser which
means that changing redirect settings appear to not work.
 2018-07-15 17:43:36 -07:00
Johannes Zellner 3d0da34960 Create nginx configs for app redirects 2018-06-29 23:14:06 +02:00
Girish Ramakrishnan 1c32224a8a Move backup logs to make the REST API work 2018-06-15 09:47:34 -07:00
Girish Ramakrishnan 0fc4f4bbff Explicitly pass port and logdir 2018-06-11 22:53:12 -07:00
Girish Ramakrishnan 0b82146b3e Install cloudron-syslog service file from box repo 2018-06-11 22:42:49 -07:00
Johannes Zellner 898d928dd6 logrotate files under platformdata must be owned by root 2018-06-06 18:45:54 +02:00
Johannes Zellner c578a048dd Ensure app logrotate file is owned by root 2018-06-06 18:39:52 +02:00
Johannes Zellner 2a475c1199 Add logrotate for app and addon logs 2018-06-06 17:36:48 +02:00
Johannes Zellner c39240c518 Install cloudron-syslog 2018-06-06 14:09:50 +02:00
Johannes Zellner ddaa52163b Update ssl ciphers according to mozillas recommendation 2018-04-11 15:15:29 +02:00
Johannes Zellner 799c1ba05d Improve on the csp header restriction 2018-04-11 13:00:08 +02:00
Johannes Zellner 838838b90d nginx would drop other headers if add_header is defined in the location section 2018-04-11 12:29:57 +02:00
Johannes Zellner 573d0e993e Add CSP header for dashboard 2018-04-10 17:59:06 +02:00
Girish Ramakrishnan e33ebe7304 Revert "mysql: increase max_allowed_packet" 
This reverts commit 9123ea7016.

Not needed. This was a db corruption issue
 2018-03-22 21:49:08 -07:00
Girish Ramakrishnan 9123ea7016 mysql: increase max_allowed_packet 
some cloudrons are reporting some errors after 2.0. maybe all those
additional joins/fields we put in is causing this
 2018-03-21 17:52:22 -07:00
Girish Ramakrishnan a07c4423c4 Rename webadmin to dashboard 
The box nginx config has to be re-generated but this is always
done at box restart time
 2018-03-15 14:14:23 -07:00
Girish Ramakrishnan 2b9e90397d Do not delete the old conf dir (migration might use it) 2018-02-02 15:44:49 -08:00
Girish Ramakrishnan f85b7a4336 How many commits to fix a typo? 2018-02-01 22:24:41 -08:00
Girish Ramakrishnan f4a021b751 Fix path to nginx cert 2018-02-01 21:58:42 -08:00
Johannes Zellner 5521e17313 Remove progress.json generation in start.sh 2018-01-31 11:56:51 +01:00
Johannes Zellner 35d2755cfb Remove splashpage logic 2018-01-31 09:24:43 +01:00
Girish Ramakrishnan 7907dd5c4f migrate any existing host.cert/key to domain based host.cert/key 
we don't remove the old one's yet since existing nginx config
might still be referencing them (not sure)
 2018-01-30 22:09:55 -08:00
Girish Ramakrishnan be66d1ff4d arg_fqdn is no more 2018-01-30 21:27:27 -08:00
Girish Ramakrishnan b2363271aa add config.adminDomain 2018-01-28 14:26:41 -08:00
Girish Ramakrishnan 9ff1b19c3f Remove unused config.zoneName 2018-01-27 09:26:17 -08:00
Girish Ramakrishnan e9be2a7fb7 Remove is_custom_domain use (use adminFqdn instead) 2018-01-17 21:07:13 -08:00
Girish Ramakrishnan cef0cd4b25 config.token() and arg_token are not used anymore 2018-01-17 15:39:32 -08:00
Girish Ramakrishnan 915cfbe7dd Remove use of isCustomDomain 
Use adminFqdn instead as needed
 2018-01-11 00:35:12 -08:00
Girish Ramakrishnan c56a24d4fb Autoprovision from autoprovision.json 
This is done so that CaaS restore code path can provision correctly
 2017-11-27 22:41:32 -08:00
Girish Ramakrishnan 172d5bbdff Remove obsolete setting (now migrated into domains table) 2017-11-24 22:45:32 -08:00
Girish Ramakrishnan 4acd0bcdac Remove --restore-url and --restore-key 2017-11-23 13:33:41 -08:00
Girish Ramakrishnan ac94a0b7f2 Add route to restore box from backup 
Part of #439
 2017-11-22 23:08:59 -08:00
Girish Ramakrishnan 7306f1ddea chown the toplevel mail directory 
this helps the restore box logic extract without sudo
 2017-11-22 23:08:01 -08:00
Johannes Zellner 321bfc6130 Create initial domain record in start.sh if fqdn was provided 2017-11-20 20:01:50 +01:00
Johannes Zellner 0bf9ab0a2b No need to put static database config in cloudron.conf 2017-11-15 02:29:36 +01:00
Johannes Zellner c629db9597 Remove preinstall app bundle support 2017-11-14 23:09:17 +01:00
Girish Ramakrishnan 014b77b7aa Fix LE cert renewal failures 
LE contacts the server by hostname and not by IP. This means that
when installing and reconfiguring the app it hits the default_server
route since nginx configs for the app are not generated at.

When doing in the daily cert renew, the nginx configs exist and we
are unable to renew the certs.
 2017-11-02 11:43:43 -07:00
Girish Ramakrishnan d8d2572aa1 Keep restarting mysql until it succeeds 
MySQL restarts randomly fail on our CI systems. This is easily
reproducible:

root@smartserver:~# cp /tmp/mysql.cnf . && systemctl restart mysql && echo "Yes"
Yes
root@smartserver:~# cp /tmp/mysql.cnf . && systemctl restart mysql && echo "Yes"
Yes
root@smartserver:~# cp /tmp/mysql.cnf . && systemctl restart mysql && echo "Yes"
Job for mysql.service failed. See "systemctl status mysql.service" and "journalctl -xe" for details.

There also seems some apparmor issue:
[ 7389.111704] audit: type=1400 audit(1509404778.110:829): apparmor="DENIED" operation="open" profile="/usr/sbin/mysqld" name="/sys/devices/system/node/" pid=15618 comm="mysqld" requested_mask="r" denied_mask="r" fsuid=112 ouid=0

The apparmor issue is reported in https://bugs.launchpad.net/ubuntu/+source/mysql-5.7/+bug/1610765,
https://bugs.launchpad.net/ubuntu/+source/mysql-5.7/+bug/1658233 and
https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1658239
 2017-10-30 16:14:20 -07:00
Girish Ramakrishnan 96a98a74ac Move the mysql block 
The e2e is failing sporadically with:

==> Changing ownership
==> Adding automated configs
mysql: [Warning] Using a password on the command line interface can be insecure.
ERROR 2002 (HY000): Can't connect to local MySQL server through socket '/var/run/mysqld/mysqld.sock' (2)

Maybe the dhparam creation is doing something causing mysql to not respond.
 2017-10-30 08:03:47 -07:00
Girish Ramakrishnan d0a244e392 stash adminLocation also 2017-10-29 19:09:03 -07:00
Johannes Zellner d53f0679e5 Also stash the zoneName to settings 2017-10-29 22:40:15 +01:00
Girish Ramakrishnan 527093ebcb Stash the fqdn in the db for the next multi-domain release 2017-10-29 12:08:27 -07:00
Girish Ramakrishnan 6dd70c0ef2 acme challenges must be answered by default_server 
The challenge must be answered even before app nginx config
is available.
 2017-10-28 23:39:03 -07:00
Girish Ramakrishnan 3dedda32d4 Configure http server to only listen on known vhosts/IP 
For the rest it returns 404

Fixes #446
 2017-10-27 00:10:50 -07:00
Girish Ramakrishnan d9ab1a78d5 Make the my location customizable 
Fixes #22
 2017-10-25 23:00:43 -07:00
Girish Ramakrishnan b30def3620 move prerelease check to appstore 2017-10-25 21:34:56 -07:00
Girish Ramakrishnan 2ebe92fec3 Do not chown mail directory 2017-10-16 23:18:37 -07:00
Girish Ramakrishnan 9e9aaf68f0 No need to migrate mail data anymore 2017-10-16 21:13:57 -07:00
Girish Ramakrishnan e46bdc2caa Force the copy just like tar --overwrite 2017-10-13 23:23:36 -07:00
Girish Ramakrishnan d97034bfb2 Follow backup format for box backups as well 2017-10-12 11:02:52 -07:00