cloudron-box

Author	SHA1	Message	Date
Girish Ramakrishnan	638fe2e6c8	ldap: add rootDSE test	2022-03-31 21:18:56 -07:00
Girish Ramakrishnan	3295d2b727	settings: remove licenseKey this is unused	2022-03-31 12:47:45 -07:00
Johannes Zellner	c4689a8385	Add registerWithSetupToken() to be used	2022-03-31 17:29:44 +02:00
Girish Ramakrishnan	d09d6c21fa	sshfs: fix bug where sshfs mounts were generated without unbound dependancy	2022-03-30 21:39:15 -07:00
Girish Ramakrishnan	7ec1594428	create a separate support user This creates a separate user named 'cloudron-support' using which we can provide remote support. The hyphen username convention follows the systemd sytem username convention. With a separate user, we don't need to ask users to keep changing PermitRootLogin (and remind them to change it back). Using a sudo user has various advantages: * https://askubuntu.com/questions/687249/why-does-ubuntu-have-a-disabled-root-account * https://wiki.debian.org/sudo * https://askubuntu.com/questions/16178/why-is-it-bad-to-log-in-as-root The yellowtent user is also locked down further - no password and no shell login.	2022-03-30 15:08:20 -07:00
Girish Ramakrishnan	529f6fb2cd	sftp: fix private key file permissions on restore	2022-03-30 11:58:21 -07:00
Girish Ramakrishnan	724f5643bc	suppress grep message	2022-03-30 11:10:00 -07:00
Girish Ramakrishnan	74e849e2a1	backup cleaner: do not clean when provider is not mounted	2022-03-30 10:17:20 -07:00
Girish Ramakrishnan	bfb233eca1	installer.sh: move installation of docker/node/nginx etc no need to dup the code in two places. i think this will also fix the unbound/resolvconf DNS resolution issue. this way unbound is configured and is what gets used when docker is installed. https://forum.cloudron.io/topic/6660/help-please-failing-setup-of-cloudron https://forum.cloudron.io/topic/6632/help-me-please-got-error-while-installing-the-cloudron-on-a-fresh-ubuntu-20-04-x64-server https://forum.cloudron.io/topic/6561/that-install-script-fails-74-times-out-of-75	2022-03-29 22:34:03 -07:00
Girish Ramakrishnan	5b27eb9c54	initializeBaseUbuntuImage: create yellowtent user	2022-03-29 21:41:46 -07:00
Girish Ramakrishnan	faf91d4d00	sshfs and mount.nfs are in base image now	2022-03-29 21:32:48 -07:00
Girish Ramakrishnan	dbb803ff5e	cifs: use credentials file this supports special characters in passwords better https://forum.cloudron.io/topic/6577/failed-to-mount-inactive-mount-error-13-when-mounting-cifs-from-synology	2022-03-29 21:26:58 -07:00
Girish Ramakrishnan	0dea2d283b	move sshfs key write logic to renderMountFile	2022-03-29 20:15:55 -07:00
Girish Ramakrishnan	cbc44da102	create sshfs dir in start.sh	2022-03-29 20:13:41 -07:00
Girish Ramakrishnan	3f633c9779	dns: check for CNAME record Check if CNAME record exists and remove it if overwrite is set	2022-03-29 13:53:34 -07:00
Girish Ramakrishnan	6933ccefe2	Update nginx to 1.20.0-1	2022-03-28 13:25:05 -07:00
Girish Ramakrishnan	54aeff1419	ldap: send rootDSE response some apps like osTicket require this	2022-03-25 14:15:18 -07:00
Girish Ramakrishnan	14f9d7fe25	cloudron-setup: add a redo flag to workaround dns failures temporary hotfix for dns issues some VMs are having: https://forum.cloudron.io/topic/6660/help-please-failing-setup-of-cloudron https://forum.cloudron.io/topic/6632/help-me-please-got-error-while-installing-the-cloudron-on-a-fresh-ubuntu-20-04-x64-server https://forum.cloudron.io/topic/6561/that-install-script-fails-74-times-out-of-75	2022-03-25 10:33:49 -07:00
Girish Ramakrishnan	144e98abab	image name cannot start with '/' https://forum.cloudron.io/topic/6689/cannot-uninstall-custom-app https://stackoverflow.com/questions/43091075/docker-restrictions-regarding-naming-image	2022-03-24 10:03:40 -07:00
Girish Ramakrishnan	e0e0c049c8	add link to upstream issue	2022-03-23 09:52:17 -07:00
Johannes Zellner	ef0f9c5298	Fixup cn attribute for ldap to be according to spec Bring back `b54c4bb399`	2022-03-22 10:19:21 -07:00
Girish Ramakrishnan	d13905377c	firewall: do not add duplicate ldap redirect rules	2022-03-21 12:25:30 -07:00
Girish Ramakrishnan	6f1023e0cd	Add to changes	2022-03-18 10:27:04 -07:00
Girish Ramakrishnan	eeddc233dd	more changes v7.1.4	2022-03-16 09:05:41 -07:00
Girish Ramakrishnan	f48690ee11	dyndns: fix typo	2022-03-15 09:53:54 -07:00
Girish Ramakrishnan	3b0bdd9807	support: send the server IPv4 when remote support enabled	2022-03-14 21:30:54 -07:00
Girish Ramakrishnan	6dc5c4f13b	ldap: add dummy apps search route for directus	2022-03-14 09:17:49 -07:00
Girish Ramakrishnan	9bb5096f1c	nginx: enable underscores in headers chatwoot requires this https://www.chatwoot.com/docs/self-hosted/deployment/caprover#api-requests-failing-with-you-need-to-sign-in-or-sign-up-before-continuing They are apparently disabled by default since they conflict with some CGI headers: https://stackoverflow.com/questions/22856136/why-do-http-servers-forbid-underscores-in-http-header-names https://www.nginx.com/resources/wiki/start/topics/tutorials/config_pitfalls/?highlight=disappearing%20http%20headers#missing-disappearing-http-headers	2022-03-13 23:04:34 -07:00
Girish Ramakrishnan	af42008fd3	Enable IPv6 on new interfaces with net_admin cap	2022-03-12 09:14:37 -08:00
Johannes Zellner	d6875d4949	Add test coverage support	2022-03-11 00:52:41 +01:00
Girish Ramakrishnan	4396bd3ea7	wildcard: handle ENODATA	2022-03-08 17:14:42 -08:00
Girish Ramakrishnan	db03053e05	cloudflare: remove async	2022-03-08 14:30:27 -08:00
Girish Ramakrishnan	193dff8c30	Better log v7.1.3	2022-03-03 10:08:34 -08:00
Girish Ramakrishnan	59582d081a	port25check: log the error message	2022-03-03 09:58:58 -08:00
Girish Ramakrishnan	ef684d32a2	port25checker: Use random tick to not bombard our checker service	2022-03-03 09:57:41 -08:00
Girish Ramakrishnan	fc2a326332	mysql: Fix default collation https://github.com/mattermost/mattermost-server/issues/19602#issuecomment-1057360142 > SELECT @@character_set_database, @@collation_database; This will show utf8mb4 and utf8mb4_0900_ai_ci (was utf8mb4_unicode_ci) To see the table schemas: > SELECT table_schema, table_name, table_collation FROM information_schema.tables;	2022-03-02 22:34:30 -08:00
Girish Ramakrishnan	e66a804012	ufw may not be installed	2022-03-02 19:36:32 -08:00
Girish Ramakrishnan	5afa7345a5	route53: check permissions to perform route53:ListResourceRecordSets otherwise, at install time we see "DNS credentials for xx are invalid. Update it in Domains & Certs view" the exact error from route 53 is: User: arn:aws:iam::xx:user/yy is not authorized to perform: route53:ListResourceRecordSets on resource: arn:aws:route53:::hostedzone/zz because no identity-based policy allows the route53:ListResourceRecordSets action	2022-03-02 10:44:52 -08:00
Girish Ramakrishnan	c100be4131	dns: filter out link local addresses Unlike IPv4, IPv6 requires a link-local address on every network interface on which the IPv6 protocol is enabled, even when routable addresses are also assigned	2022-03-01 12:13:59 -08:00
Girish Ramakrishnan	d326d05ad6	sysinfo: add noop provider	2022-03-01 12:05:01 -08:00
Girish Ramakrishnan	eb0662b245	Up the json size to 2mb for block list route https://forum.cloudron.io/topic/6575/cloudron-7-1-2-firewall-not-ipv6-ready	2022-03-01 11:57:50 -08:00
Johannes Zellner	b92641d1b8	Update ldapjs to 2.3.2	2022-03-01 17:36:09 +01:00
Girish Ramakrishnan	7912d521ca	7.1.3 changes	2022-02-28 14:26:37 -08:00
Johannes Zellner	71dac64c4c	Only allow impersonation for equal or less powerful roles	2022-02-28 20:42:33 +01:00
Girish Ramakrishnan	aab6f222b3	better log	2022-02-28 11:04:44 -08:00
Girish Ramakrishnan	1cb1be321c	remove usage of deprecated fs.rmdir	2022-02-25 16:43:20 -08:00
Girish Ramakrishnan	2434e81383	backups: fix incorrect mountpoint check with managed mounts v7.1.2	2022-02-25 12:53:05 -08:00
Girish Ramakrishnan	62142c42ea	Fix crash	2022-02-25 11:03:16 -08:00
Girish Ramakrishnan	0ae30e6447	disable routes/test/apps-test for now	2022-02-24 20:50:35 -08:00
Girish Ramakrishnan	1a87856655	eventlog: log event on alias update	2022-02-24 20:30:42 -08:00

1 2 3 4 5 ...

10934 Commits