jjkiers/cloudron-box
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity
18,328 Commits 33 Branches 583 Tags
aaed5a47d73888c4e695b745b5295b7a97f3cec0
Commit Graph

1139 Commits

Author SHA1 Message Date
Girish Ramakrishnan
8ccae822fe update changelog 2025-09-15 15:50:54 +02:00
Girish Ramakrishnan
ac7001b96e reverseproxy: remove OCSP support 
OCSP is getting deprecated in favor CRLs. Lets Encrypt has already
removed the OCSP URL in the certs and the OCSP validation server
is being decommissioned .

https://letsencrypt.org/2024/12/05/ending-ocsp/
 2025-09-04 09:43:49 +02:00
Girish Ramakrishnan
20b75b4065 rsync: integrity check 2025-08-16 19:29:59 +05:30
Girish Ramakrishnan
1fb0ed9545 port bindings: use enabledByDefault 2025-08-01 12:20:45 +02:00
Girish Ramakrishnan
83ab701d02 eventlog: add backup target eventlog 2025-07-25 12:23:41 +02:00
Girish Ramakrishnan
f7d4f9d94e Add to changelog 2025-07-18 14:41:03 +02:00
Girish Ramakrishnan
3bd41013c0 profile: avatar cannot be changed when profile locked 
admins can now upload user avatars
 2025-07-02 13:03:15 +02:00
Girish Ramakrishnan
d1df48ebb1 add to changes 2025-07-02 09:10:42 +02:00
Johannes Zellner
cb3dffc7fc Use docker 28.1.1 since that is the highest on ubuntu 20 focal 2025-06-30 22:30:54 +02:00
Girish Ramakrishnan
a7aec70bc1 mail: add rbl6 
abuse.ch is using spamhaus
sorbs is dead
 2025-06-28 14:17:51 +02:00
Girish Ramakrishnan
565859b2aa relay: force STARTTLS when testing outbound relay 
haraka only supports STARTTLS
 2025-06-27 10:23:05 +02:00
Girish Ramakrishnan
27c4069187 Update node to 22.7.0 2025-06-25 11:17:57 +02:00
Girish Ramakrishnan
4b2c0b0771 Update docker to 28.3.0 2025-06-25 11:16:42 +02:00
Girish Ramakrishnan
313c90ff85 database: change charset to utf8mb4 
part of #836
 2025-06-19 10:39:40 +02:00
Girish Ramakrishnan
fb39aa32bb tasks: fix update failed notification 
https://forum.cloudron.io/topic/13408/update-to-cloudron-8.3-error

We get a Task xx crashed with code null in the notification.

The crux of the issue is that we use KillMode=control-group. This ends
up sending SIGTERM signal to box code and all the sudo in parallel. The box
code then sees the sudo die and records the task as failed.

To fix, we switch to KillMode=mixed. This gives box code a chance to handle SIGTERM
first. It cleans out its task list and kills all the sudo.
 2025-06-17 23:47:04 +02:00
Girish Ramakrishnan
73a56830b0 apps: do not start redis when app is stopped 
stopped apps stop the container and the services. a good reason to
not delete them is to keep the image around and it's quick to start up again.

only update is not allowed during the app is stopped (because the start.sh
cannot be run).

all other operations like cpu/memory/device/service changes/data dir/location change
are all allowed.
 2025-06-14 21:03:10 +02:00
Girish Ramakrishnan
c44926c2cd redis: disable by default when optional 
this simply increases complexity of local setups since redis is
only used as a cache and not for persistent data
 2025-06-14 10:40:48 +02:00
Girish Ramakrishnan
155a348802 mongodb: reduce verbosity of logs 2025-06-12 22:27:57 +02:00
Girish Ramakrishnan
f48231e309 oidc: do not notify login of ghost users 2025-06-12 00:25:28 +02:00
Girish Ramakrishnan
a93c85ebc9 profile: drop gravatar support 
gravatar is owned by an external entity (Automattic) and we have an
unnecessary dep to this service. users can just upload a profile pic
 2025-06-08 18:12:40 +02:00
Girish Ramakrishnan
4615418000 graphs: replace collectd with our custom collector 
collectd (with the python plugin) seems semi-abandoned. replace
with our own. we have more control over how to collect things instead
of relying on random plugins.
 2025-05-20 12:19:40 +02:00
Girish Ramakrishnan
e829c2031c Update haraka to 3.1.1 2025-05-20 10:04:53 +02:00
Girish Ramakrishnan
5a10a8dd46 mail: rename delivered -> sent and received -> saved in event log 2025-05-09 19:11:59 +02:00
Girish Ramakrishnan
1bbdabc42f registry config: create table and migrate existing setting 2025-05-07 15:56:13 +02:00
Girish Ramakrishnan
0cf0c7a27c notifications: add low disk space notification 2025-05-07 13:19:20 +02:00
Girish Ramakrishnan
a31281df40 8.3.2 changes 2025-05-07 10:38:07 +02:00
Girish Ramakrishnan
65f066d391 sshfs: implement rm via ssh 
this is similar to change we did for cp -r . sshfs is often flaky with lots
of concurrent operations
 2025-04-09 15:48:53 +02:00
Girish Ramakrishnan
16caeb5400 Update haraka to 3.1.0 2025-03-29 08:44:50 +01:00
Girish Ramakrishnan
bba9de7b76 8.3.1 changes 
(cherry picked from commit f93462d88c)
 2025-03-18 23:40:59 +01:00
Girish Ramakrishnan
5d88e86462 sendmail: add requiresValidCertificate 
some apps really want a valid certificate to send mail and upstream
authors won't add support to skip self-signed certs or skip host name
check in cert. In our case, the issue is that we use 'mail' as the
server name despite having valid certs.

this flag will set the server name to the full mail server fqdn and
also reconfigure the app as needed when the mail server name changes.

we also set up the mail server name to resolve to internal IP because
no mail port is exposed when we are not receiving emails!
 2025-03-08 13:15:53 +01:00
Girish Ramakrishnan
5342dae5b3 tokens: add ip restriction 2025-03-07 17:50:50 +01:00
Girish Ramakrishnan
78e835dd5f add the 8.3 changelog 2025-03-03 17:04:34 +01:00
Girish Ramakrishnan
3aa103e114 add changelog entry 2025-03-02 10:08:15 +01:00
Girish Ramakrishnan
3f3bb4d3b7 base image 5.0.0 2025-02-28 22:52:05 +01:00
Girish Ramakrishnan
558620cdfa deprecate ubuntu 20.04 support 2025-02-26 16:38:04 +01:00
Girish Ramakrishnan
f78f6634fa ldap: automatically detect if server supports pagination 2025-02-26 12:18:32 +01:00
Girish Ramakrishnan
12794a499d domains: validate domain configs in a cron 
no email notification yet, we have to rework this notifications/eventlog stuff
 2025-02-17 19:11:11 +01:00
Girish Ramakrishnan
cb6d531300 storage: automatically abort old multipart uploads in s3 2025-02-13 11:09:15 +01:00
Girish Ramakrishnan
42f493b2c3 docker: update to 27.5.1 2025-02-05 14:48:13 +01:00
Girish Ramakrishnan
5a766c583c node: update to 22.13.1 2025-02-05 14:48:13 +01:00
Girish Ramakrishnan
1247dbe999 8.2.4 changes 2025-02-01 09:27:59 +01:00
Girish Ramakrishnan
ac0426d97d notification: update failure mail 2025-01-24 18:44:44 +01:00
Girish Ramakrishnan
837d5803c8 backups: add preserve attributes checkbox 2025-01-24 13:59:01 +01:00
Girish Ramakrishnan
abb40b3ad7 mail: rebuild index 2025-01-23 17:47:49 +01:00
Girish Ramakrishnan
dfd54b7b54 mail: disable ocr in tika 2025-01-23 17:23:34 +01:00
Girish Ramakrishnan
0280059c13 notifications: server reboot email 2025-01-19 11:18:49 +01:00
Girish Ramakrishnan
6fcfa6cac0 mail: add ipv6 rdns check 2025-01-08 17:28:28 +01:00
Girish Ramakrishnan
73e1e6881e docker: fix parsing of imageRef if no namespace 2025-01-03 10:10:06 +01:00
Girish Ramakrishnan
2ae05baec3 add to changelog 2025-01-02 23:53:00 +01:00
Girish Ramakrishnan
9d890e1c21 security: fix issue where '/' symlink allows admins to get ssh access 
* create a volume
* create symlink to /
* now, create another volume with that symlink as host directory
 2025-01-02 11:18:39 +01:00