jjkiers/cloudron-box
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity
9,444 Commits 33 Branches 583 Tags
738b4e60fa59077f6d9903e6101535ebc954620f
Commit Graph

543 Commits

Author SHA1 Message Date
Girish Ramakrishnan
527093ebcb Stash the fqdn in the db for the next multi-domain release 2017-10-29 12:08:27 -07:00
Girish Ramakrishnan
6dd70c0ef2 acme challenges must be answered by default_server 
The challenge must be answered even before app nginx config
is available.
 2017-10-28 23:39:03 -07:00
Girish Ramakrishnan
3dedda32d4 Configure http server to only listen on known vhosts/IP 
For the rest it returns 404

Fixes #446
 2017-10-27 00:10:50 -07:00
Girish Ramakrishnan
d9ab1a78d5 Make the my location customizable 
Fixes #22
 2017-10-25 23:00:43 -07:00
Girish Ramakrishnan
b30def3620 move prerelease check to appstore 2017-10-25 21:34:56 -07:00
Girish Ramakrishnan
2ebe92fec3 Do not chown mail directory 2017-10-16 23:18:37 -07:00
Girish Ramakrishnan
9e9aaf68f0 No need to migrate mail data anymore 2017-10-16 21:13:57 -07:00
Girish Ramakrishnan
e46bdc2caa Force the copy just like tar --overwrite 2017-10-13 23:23:36 -07:00
Girish Ramakrishnan
d97034bfb2 Follow backup format for box backups as well 2017-10-12 11:02:52 -07:00
Girish Ramakrishnan
9e9b8b095e Provider dhparams.pem to the mail container 2017-10-02 01:51:28 -07:00
Johannes Zellner
8b341e2bf8 Only make nginx listen on ipv6 connections if it is supported by the system 
Could not decide on the ejs formatting, never nice for me
 2017-09-29 19:43:37 +02:00
Girish Ramakrishnan
8d3fbc5432 Save backup logs and fix backup progress 2017-09-26 21:09:00 -07:00
Girish Ramakrishnan
e39a5c8872 preserve env in backuptask.js 2017-09-22 11:19:44 -07:00
Johannes Zellner
e50e0f730b Make nginx listen on :: for ipv6 2017-09-20 16:33:25 +02:00
Girish Ramakrishnan
84649b9471 Bring back backuptask 
This is required for various small reasons:

* dir iteration with a way to pass messagein back to the upload() easily
* can be killed independently of box code
* allows us to run sync (blocking) commands in the upload logic
 2017-09-19 12:32:38 -07:00
Girish Ramakrishnan
44435559ab Typo 2017-09-19 10:37:45 -07:00
Girish Ramakrishnan
c351660a9a Implement backup rotation 
Always upload to 'snapshot' dir and then rotate it. This will allow
us to keep pushing incrementally to 'snapshot' and do server side
rotations.
 2017-09-18 21:17:34 -07:00
Girish Ramakrishnan
9bed14a3e8 Enable IP6 in unbound 
On some provider (https://www.nine.ch) disabling IPv6 makes unbound
not respond to the DNS queries.

Also, I was unable to test with prefer-ip6 to 'no' because unbound fails:

unbound[5657]: /etc/unbound/unbound.conf.d/cloudron-network.conf:8: error: unknown keyword 'no'
unbound[5657]: read /etc/unbound/unbound.conf failed: 3 errors in configuration file
 2017-09-18 11:41:02 -07:00
Girish Ramakrishnan
5b77d2f0cf Add commented out debugging section for unbound 2017-09-18 10:38:22 -07:00
Girish Ramakrishnan
6525a467a2 Rework backuptask into tar.js 
This makes it easy to integrate another backup strategy
as the next step
 2017-09-17 18:50:26 -07:00
Girish Ramakrishnan
c8750a3bed merge the logrotate scripts 2017-09-12 22:03:24 -07:00
Girish Ramakrishnan
9710f74250 remove collectd stats when app is uninstalled 2017-09-12 21:34:15 -07:00
Girish Ramakrishnan
9906ed37ae Move mail data inside boxdata directory 
This also makes the noop backend more useful because it will dump things
in data directory and user can back it up as they see fit.
 2017-09-10 00:07:44 -07:00
Girish Ramakrishnan
9026c555f9 snapshots dir is not used anymore 2017-09-09 22:13:15 -07:00
Girish Ramakrishnan
8d2f3b0217 Add note on disabling ssh password auth 2017-09-06 11:36:23 -07:00
Girish Ramakrishnan
fd91ccc844 Update the unbound anchor key 
This helps the unbound recover from any previous out of disk space
situation.

part of #269
 2017-09-03 17:48:26 -07:00
Girish Ramakrishnan
b81a92d407 disable ip6 in unbound as well 
part of #412
 2017-08-31 11:41:35 -07:00
Girish Ramakrishnan
57d5c2cc47 Use IPv4 address to connect to mysql 
Fixes #412
 2017-08-31 10:59:14 -07:00
Girish Ramakrishnan
f34840d127 remove old data migration paths 2017-08-29 13:08:31 -07:00
Girish Ramakrishnan
3aebf51360 Fix upload of large files to apps 
6a0ef7a1c1 broke the upload for apps

e2e test is being added
 2017-08-23 10:22:54 -07:00
Girish Ramakrishnan
6a0ef7a1c1 Allow larger files to be uploaded 
Note that other upload APIs like avatar are still limited to 1m by
the nginx config
 2017-08-20 19:15:54 -07:00
Girish Ramakrishnan
9e558924bb df plugin replaces with _ and not - 
Part of #348
 2017-08-15 09:32:42 -07:00
Girish Ramakrishnan
57891c64b5 use check_output instead 
Aug 14 19:10:46 collectd[12651]: close failed in file object destructor:
Aug 14 19:10:46 collectd[12651]: IOError: [Errno 10] No child processes
 2017-08-14 12:31:58 -07:00
Johannes Zellner
2f51088e67 Add logrotate support for *.log files in /run mounts of apps 
logrotate config files may contain arbitrary commands which are
exectued as root, thus the config files have to be owned by root.
This is the reason we need the sudo scripts :-/

To test the generated scripts, just run:
$ logrotate /etc/logrotate.conf -v

Fixes #396
 2017-08-12 00:04:00 +02:00
Girish Ramakrishnan
5fe73c5a46 Replace df plugin with custom df plugin 
The built-in df plugin cannot do the following:
    * if we choose by type ext4, we want to skip devicemapper (on scaleway)
    * the MountPoint of the appsdata directory is not possible to know at install time

Fixes #398
 2017-08-11 01:39:51 -07:00
Girish Ramakrishnan
86d23a4d35 Switch default storage backend to overlay2 
This does not try to migrate existing cloudrons from devicemapper.
We will possibly do that in a future version.

61e130fb7 takes care of checking that we run on ext4

https://cloudron.io/documentation/server/#using-overlay2-backend-for-docker

Fixes #364
 2017-08-10 14:11:03 -07:00
Girish Ramakrishnan
f17bde2d97 Add motd message for cloudron admins about updates 
Fixes #351
 2017-08-10 12:14:51 -07:00
Girish Ramakrishnan
392492be04 Only collect info on the / mountpoint 
The original intention was to collect information on the data
dirs as well but we have long moved away from that design.
On some VPS like scaleway, this ends up collecting info on
devicemapper stuff (which are on ext4, not sure why).

In future, we should collect info of other disks as well (#348)

Fixes #389
 2017-08-03 11:45:23 -07:00
Girish Ramakrishnan
eb99f8b844 escape and quote the robotsTxt when templating 
for now, we restrict the string length to 4096 since that is what
nginx allows
 2017-07-23 19:56:28 -07:00
Girish Ramakrishnan
db7a4b75ae log the host in nginx logs 2017-07-21 09:43:44 -07:00
Girish Ramakrishnan
b5aed7b00a Set full path for nginx access log 2017-07-18 21:49:12 -07:00
Dick Tang
67486b8177 add X-Forwarded-Port in nginx reverse proxy for jetpack 
jetpack require X-Forward for the port, or "requested method jetpack.jsonAPI does not exist"
ref: https://github.com/ViBiOh/docker-wordpress/issues/1
 2017-07-18 15:58:46 +00:00
Girish Ramakrishnan
6dd4d40692 parse and save zoneName to cloudron.conf 
part of #377
 2017-07-17 09:16:06 -07:00
Girish Ramakrishnan
acd00222e5 Allow per-app configuration of robots.txt 
https://developers.google.com/search/reference/robots_txt has
the specification

Part of #344
 2017-07-14 15:25:05 -05:00
Girish Ramakrishnan
49de39a1f3 Set max ttl to 5 minutes 
This means the web ui will atleast work in 5 minutes.

Fixes #373
 2017-07-07 09:50:29 -05:00
Girish Ramakrishnan
50e712a93e preserve existing docker storage driver 
fixes #364
 2017-06-30 16:50:31 -05:00
Girish Ramakrishnan
f45da2efc4 Merge branch 'http2' into 'master' 
Add HTTP/2 support to NGINX configs

See merge request !9
 2017-05-12 23:23:41 +00:00
Girish Ramakrishnan
180cafad0c Fix restore of unencrypted backups 2017-05-08 15:48:32 -07:00
Ian Fijolek
788004245a Add HTTP/2 support to NGINX configs 
This easy fix should improve performance with newer browsers especially
for applications that require many files to be sent over the wire
*cough*Nextcloud11*cough*

NGINX blog post about HTTP/2 support: https://www.nginx.com/blog/nginx-1-9-5/
 2017-05-02 22:00:55 +00:00
Girish Ramakrishnan
be5221d5b8 bash gymnastics for password with spaces 2017-05-01 11:40:08 -07:00