jjkiers/cloudron-box
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity
16,289 Commits 33 Branches 583 Tags
c9fe08e7b7ea26f2ff6a086acfd53f8a9fdeba6b
Commit Graph

16289 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Johannes Zellner
c9fe08e7b7 dashboard: also render checklist items in apps.html 2024-07-30 09:47:06 +02:00
Girish Ramakrishnan
468d4dd9b0 ami: imdsv2 support 
https://aws.amazon.com/blogs/security/defense-in-depth-open-firewalls-reverse-proxies-ssrf-vulnerabilities-ec2-instance-metadata-service/

One has to get a token now via PUT. This is because there is a bunch of
open proxies out there which blindly forwarded everything to internal network
including metadata requests. They have found that PUT requests don't cleanly
proxy and also AWS rejects token requests with X-Forwarded-For.
 2024-07-27 14:48:42 +02:00
Johannes Zellner
6056ba6475 Another missing check for manifest.addons 2024-07-27 11:56:36 +02:00
Johannes Zellner
4f03a6fb58 dashboard: mailbox edit dialog is not really a form with submit action 
As a form with a submit button the browser tries to be smart which will
trigger the next button tag as enter action on a textinput
 2024-07-26 18:57:45 +02:00
Girish Ramakrishnan
d8aa4bc5e4 filemanager: fix sending of double header 
we should not proceed to notFoundHandler if proxy handled it just fine
 2024-07-26 11:58:41 +02:00
Girish Ramakrishnan
06e46e0f1e 8.0.3 changes v8.0.3 2024-07-26 09:09:35 +02:00
Girish Ramakrishnan
731295f708 system: simplify logic 2024-07-25 17:50:50 +02:00
Girish Ramakrishnan
9399040cd3 Fix log recursion 
shell.sudo logs output to stdout/stderr intentionally. It is not meant
for scripts that generate much output (basically scripts/* files).

core of the issue is that none of the log commands require to use sudo.
they can just use normal tail. only app logs requires sudo because of the
logPaths directive in the manifest.
 2024-07-25 17:48:58 +02:00
Johannes Zellner
9f9fde5811 frontend: fix clear view in logs viewer 2024-07-25 17:44:20 +02:00
Johannes Zellner
cbc46a8229 dashboard: support links/markdown in checklist items 2024-07-25 17:40:15 +02:00
Girish Ramakrishnan
fb11997430 Add note on automatic upgrades 2024-07-25 17:09:46 +02:00
Girish Ramakrishnan
b6fbc46b58 Revert "Add option to not log shell subprocess stdout+stderr" 
This reverts commit 51bb2d2bc2.
 2024-07-25 11:53:56 +02:00
Johannes Zellner
21de2513e7 frontend: fix all usage of file upload without multipart 2024-07-25 11:18:14 +02:00
Johannes Zellner
51bb2d2bc2 Add option to not log shell subprocess stdout+stderr 
When tailing the box log file this leads to logline recursion
 2024-07-25 10:22:02 +02:00
Girish Ramakrishnan
8d9043e590 logviewer: reduce it back to 100 
a lot of delay with 300
v8.0.2 		2024-07-23 17:27:36 +02:00
Johannes Zellner
59c3e8817c frontend: Reduce initial logs to 300 lines only 2024-07-23 16:33:56 +02:00
Girish Ramakrishnan
3132b3035a 8.0.2 changes 2024-07-23 08:34:26 +02:00
Girish Ramakrishnan
7ebf5ca16a Bring back upload route to keep e2e happy 
let's maybe remove it in next release
 2024-07-23 08:28:44 +02:00
Johannes Zellner
d96f132dc0 frontend: reduce DOM node creation on very fast logstreams and cap to 1k loglines 2024-07-22 23:55:47 +02:00
Girish Ramakrishnan
b26ff08a3c shell: copy over code and signal values from cp object 2024-07-22 21:24:27 +02:00
Girish Ramakrishnan
44678cf5f1 sshfs: if remote copy fails, fallback to sshfs based copy 
remote copy can file if there is no cp in the remote . for example,
if it was a windows server.
 2024-07-22 20:53:19 +02:00
Girish Ramakrishnan
5084ee761e update postgresql conf notes 2024-07-22 18:53:51 +02:00
Girish Ramakrishnan
91f50ae949 mysql: add template custom.cnf 2024-07-22 18:53:51 +02:00
Johannes Zellner
15f04edcf1 frontend: update dependencies 2024-07-22 18:00:33 +02:00
Johannes Zellner
01945675ed Check if addons exists in database import 2024-07-22 16:45:13 +02:00
Johannes Zellner
185c16c3e2 remove apps upload api in favor of sftp container api 2024-07-22 16:20:15 +02:00
Johannes Zellner
d25814b84b Remove stray console.log 2024-07-22 15:07:43 +02:00
Girish Ramakrishnan
a09a3fd012 postgresql: add template custom.conf 2024-07-22 14:44:23 +02:00
Johannes Zellner
871fd83148 Use new sftp service image without multipart file upload 2024-07-22 13:29:56 +02:00
Girish Ramakrishnan
dd8bc493e7 postgresql: add custom.conf include 2024-07-22 12:50:23 +02:00
Johannes Zellner
44d3baf51a dashboard: show longer pretty datetime for backups 2024-07-21 20:45:34 +02:00
Girish Ramakrishnan
c85c0558b9 multipart: cleanup files after reading their contents 
one idea is just use express.raw() . however, we have to implement some
file size limit there.

one case this does not handle is aborted uploads from a box.service restart.
for this rare case, a server reboot will clean up /tmp anyway.
 2024-07-19 23:11:26 +02:00
Girish Ramakrishnan
7f11699fac remove urlencoded 
we don't use this in our API
 2024-07-19 22:44:22 +02:00
Girish Ramakrishnan
525e48ae59 json middleware is part of Express v4.16.0 2024-07-19 22:26:24 +02:00
Johannes Zellner
a6369a7dde Fix linter error 2024-07-19 22:24:34 +02:00
Girish Ramakrishnan
d5ea99603f backups: give is a low oomScoreAdjust to not get killed 2024-07-19 13:05:09 +02:00
Girish Ramakrishnan
083432cbfe test: add EnsureFileSizeStream test 2024-07-18 15:39:45 +02:00
Girish Ramakrishnan
dbbce4160d tgz: underflow/overflow proxy stream 
In tar, the entry header contains the file size. If we don't provide it those many bytes, the tar will become corrupt
Linux provides no guarantee of how many bytes can be read from a file. This is the case with sqlite and log files
which are accessed by other processes when tar is in action. This class handles overflow and underflow
 2024-07-18 15:13:38 +02:00
Girish Ramakrishnan
885aac69c5 tgz: handle addEntryToPack to error 2024-07-18 14:47:31 +02:00
Girish Ramakrishnan
b3c301fc2a lint 2024-07-18 13:31:29 +02:00
Girish Ramakrishnan
01deb4d285 update: updateConfig can be missing values, selectively update db v8.0.1 2024-07-17 08:58:43 +02:00
Girish Ramakrishnan
aeddaa4566 apps: rework portBindings 
ports is REST API input . Map of env var to the host port
portBinding is the database structure. Map of env var to host port, count, type etc

also, rename portCount -> count in various places to keep things consistent
 2024-07-17 00:25:47 +02:00
Girish Ramakrishnan
eb314ef507 lint 2024-07-16 22:07:22 +02:00
Girish Ramakrishnan
620c49cf76 Fix signature of checkForPortBindingsConflict 2024-07-16 19:31:54 +02:00
Girish Ramakrishnan
6d73dfdb40 parse port count as integer 2024-07-16 19:28:22 +02:00
Girish Ramakrishnan
232cdb8cb1 cloudron-support: do cert check before site check 2024-07-16 19:21:09 +02:00
Girish Ramakrishnan
fd53174099 lint 2024-07-16 10:32:37 +02:00
Girish Ramakrishnan
9bf240d83b update: handle change in secondary domains and multiDomain flag 2024-07-16 10:32:31 +02:00
Girish Ramakrishnan
421567ff14 Add to changes 2024-07-15 21:52:04 +02:00
Girish Ramakrishnan
ce05008fce setup: when activated redirect to adminFqdn 2024-07-15 21:52:01 +02:00