64af278f39
add missing curly brackets
2020-11-21 00:13:07 +01:00
57dabbfc69
Translate welcome and password reset email subjects
2020-11-20 22:38:52 +01:00
279f7a80c5
make appstatus work again for apps
2020-11-20 12:04:58 -08:00
b66fdb10f2
apptask: Use debugApp
2020-11-20 11:21:06 -08:00
84c1703c1a
Translate password reset email
2020-11-20 16:18:24 +01:00
f324d50cef
Translate welcome mail
2020-11-20 16:10:13 +01:00
93a1e6fca8
Avoid translation file caching
2020-11-20 16:10:13 +01:00
aad50fb5b2
add routes to get/set solr config
2020-11-19 20:19:24 -08:00
fb4ba5855b
Make emails translatable
2020-11-20 00:43:12 +01:00
fbe5f42536
Split welcome email between html and text version
2020-11-19 22:29:29 +01:00
0a3aad0205
Add httpPaths support
2020-11-19 11:02:53 -08:00
cde42e5f92
postgresql: rebuild (for new manifest)
2020-11-19 09:35:55 -08:00
fd965072c5
Remove custom dns when creating app container
2020-11-19 01:10:50 -08:00
d703d1cd13
remove httpPort
...
we can just use container IP instead of all this httpPort exporting magic.
this is also required for exposing httpPaths feature (we have to otherwise
have multiple httpPorts).
2020-11-19 00:38:52 -08:00
bd9c664b1a
Free up port 53
...
It's all very complicated.
Approach 1: Simple move unbound to not listen on 0.0.0.0 and only the internal
ones. However, docker has no way to bind only to the "public" interface.
Approach 2: Move the internal unbound to some other port. This required a PR
for haraka - https://github.com/haraka/Haraka/pull/2863 . This works and we use
systemd-resolved by default. However, it turns out systemd-resolved with hog the
lo and thus docker cannot bind again to port 53.
Approach 3: Get rid of systemd-resolved and try to put the dns server list in
/etc/resolv.conf. This is surprisingly hard because the DNS listing can come from
DHCP or netplan or wherever. We can hardcode some public DNS servers but this seems
not a good idea for privacy.
Approach 4: So maybe we don't move the unbound away to different port after all.
However, all the work for approach 2 is done and it's quite nice that the default
resolver is used with the default dns server of the network (probably a caching
server + also maybe has some home network firewalled dns).
So, the final solution is to bind to the make docker bind to the IP explicity.
It's unclear what will happen if the IP changes, maybe it needs a restart.
2020-11-18 23:25:56 -08:00
ae94ff1432
Send Cloudron default language via status call
2020-11-18 23:45:16 +01:00
cbc5ec7d89
List languages from dashboard dist/translation
2020-11-18 18:39:55 +01:00
784c8b2bd2
Add route to get available languages
2020-11-18 00:10:06 +01:00
2388fe5047
Add cloudron global language setting
2020-11-17 22:44:03 +01:00
b5c933494a
linode: cannot destructure null/undefined
...
if we have an error, the destructure will fail
2020-11-16 22:37:53 -08:00
8c0bd97064
mail: owner can be a group
2020-11-13 00:31:34 -08:00
2ca9534715
add some comments on the ldap routes
2020-11-12 22:13:24 -08:00
641704a741
proxyauth: support basic auth
...
this is required for apps like transmission
2020-11-11 15:11:36 -08:00
82d88d375e
sftp: fix crash
2020-11-11 11:13:30 -08:00
751caa7b3b
Prefix base64 image data
2020-11-11 11:24:20 +01:00
7e16128b11
proxyauth: render as ejs tos end app title and icon
2020-11-11 00:36:02 -08:00
008fa09877
proxyauth: redirect correctly after login
2020-11-11 00:01:36 -08:00
045963afe5
serve proxyauth login file from the dashboard
2020-11-10 21:18:50 -08:00
b799df3626
authproxy -> proxyauth
2020-11-10 20:04:31 -08:00
772df6f9af
typo
2020-11-10 19:49:57 -08:00
72cb383f2c
proxy auth: create token secret
2020-11-10 17:20:27 -08:00
625dc7c49b
Add proxyAuth as an addon
2020-11-10 16:50:36 -08:00
86916a94de
allow 401 and 403 errors to pass health check
...
way too many WP sites use some plugin to block health check routes.
maybe some day we will have dynamic health check route settable by user.
2020-11-10 16:50:36 -08:00
71666a028b
add support for protected sites
...
https://docs.nginx.com/nginx/admin-guide/security-controls/configuring-subrequest-authentication/
https://gock.net/blog/2020/nginx-subrequest-authentication-server/
https://github.com/andygock/auth-server
2020-11-10 01:06:39 -08:00
01e6301332
collectd: adjust collectd config when app is stopped and started
2020-11-09 10:37:22 -08:00
13050f7bff
Give log files better names on download
2020-11-09 11:07:16 +01:00
bedcd6fccf
Disable the timeout altogether for chunk to upload
2020-11-06 14:47:14 -08:00
df8a71cd8b
Each chunk can take up to 30 mins to upload
2020-11-06 00:05:53 -08:00
a113ece22b
Still have to preserveEnv for the env vars to make it across sudo
2020-11-05 16:13:42 -08:00
a63c2cfdf2
reverse this since it makes better reading
2020-11-05 16:08:57 -08:00
8f78a9dcde
No need to pass --expose-gc
...
http://sambal.org/2014/02/passing-options-node-shebang-line/ was a cool trick but not needed at all.
https://bitbucket.org/chromiumembedded/cef/issues/483/dont-always-add-the-expose-gc-v8-flag
says it will change behavior in ways we don't want.
2020-11-05 16:07:28 -08:00
02eb362f37
Set the heap size with large backup memory limits
...
I had to also give the server some more swap for the backup to succeed
2020-11-05 16:06:12 -08:00
f79263a92a
backups: periodically dump heap space info
2020-11-05 16:06:09 -08:00
cd95da6d35
Typo in message
2020-11-05 09:59:13 -08:00
5ab2c9afaa
Use new sftp image to fix chown
2020-11-04 15:11:41 +01:00
e77201099d
Encode filemanager route paths correctly and do not expect starts with /
2020-11-04 13:58:53 +01:00
30a4c00f35
Update sftp addon to avoid crash when overwrite property is missing
2020-11-03 21:27:24 +01:00
e68db4ce57
Aim for 60% used space
2020-11-02 23:42:53 -08:00
b5a83ab902
demo: blacklist alltube as well
2020-11-02 15:16:21 -08:00
2c9efea733
Use debug instead of console.error
2020-10-30 11:07:51 -07:00
Johannes Zellner