[05:33:05]
<lapineige> > <@rimuatkinson:matrix.org> Sounds good. I will need to buy more RAM so I can run VMs and then do some experiments :)
You may have a look at Zram, if that can help 🙂
[05:34:12]
<Yunohost Git/Infra notifications> Job [#20901](https://ci-apps.yunohost.org/ci/job/20901) for karakeep failed miserably :(
[07:06:17]
<Yunohost Git/Infra notifications> [borg_ynh] fflorent merged [pull request #194](https://github.com/YunoHost-Apps/borg_ynh/pull/194): Run borg compact after pruning repo to really free up disk space.
[07:06:19]
<Yunohost Git/Infra notifications> [borg_ynh] fflorent pushed 1 commit to testing: Run borg compact after pruning repo to really free up disk space. (#194) Co-authored-by: Florent <florent.git@zeteo.m... ([65547d71](https://github.com/YunoHost-Apps/borg_ynh/commit/65547d713df3e56b210abe234c25e7ee64b37141))
[07:59:10]
<Yunohost Git/Infra notifications> Job [#20968](https://ci-apps.yunohost.org/ci/job/20968) for homeassistant failed miserably :(
[07:59:46]
<Yunohost Git/Infra notifications> [borg_ynh] fflorent closed [issue #59](https://github.com/YunoHost-Apps/borg_ynh/issues/59): Change backup time schedule
[07:59:47]
<Yunohost Git/Infra notifications> [borg_ynh] fflorent [commented](https://github.com/YunoHost-Apps/borg_ynh/issues/59#issuecomment-3190885870) on [issue #59](https://github.com/YunoHost-Apps/borg_ynh/issues/59) Change backup time schedule: AFAICT, you may now be able to change the backup frequency by just running this command:
sudo yunohost app config se...
[08:01:22]
<Yunohost Git/Infra notifications> App opencloud failed all tests in job [#20970](https://ci-apps.yunohost.org/ci/job/20970) :(
[08:04:37]
<Yunohost Git/Infra notifications> [borg_ynh] fflorent opened [pull request #214](https://github.com/YunoHost-Apps/borg_ynh/pull/214): Testing
[08:19:20]
<Yunohost Git/Infra notifications> [penpot_ynh] orhtej2 merged [pull request #141](https://github.com/YunoHost-Apps/penpot_ynh/pull/141): Upgrade sources
[08:19:22]
<Yunohost Git/Infra notifications> [penpot_ynh] orhtej2 deleted branch ci-auto-update-sources-250815
[08:33:22]
<Yunohost Git/Infra notifications> [borg_ynh] fflorent [commented](https://github.com/YunoHost-Apps/borg_ynh/issues/135#issuecomment-3190948766) on [issue #135](https://github.com/YunoHost-Apps/borg_ynh/issues/135) [Enhancement] Cache TTL environment variable: Thanks @Vitriia for the idea Indeed, a server I manage took several hours to backup things, the TTL was the culprit.
T...
[08:34:14]
<Yunohost Git/Infra notifications> [borg_ynh] fflorent pushed 1 commit to suffix-files-cache: suffix files cache for better performance According to the documentation: > BORG_FILES_CACHE_SUFFIX > When set to a ... ([7c2789fd](https://github.com/YunoHost-Apps/borg_ynh/commit/7c2789fd4e6d12b1e980ded27c2cc9d386235c8a))
[08:35:48]
<Yunohost Git/Infra notifications> [borg_ynh] fflorent [commented](https://github.com/YunoHost-Apps/borg_ynh/pull/211#discussion_r2278538720) on pull request #211 Suffix files cache: Note to myself: probably worth to remove the old file cache in the upgrade script to save disk space.
[09:16:37]
<nicofrand> From https://doc.yunohost.org/packaging/advanced/sso_ldap_integration/#configuring-ssowat-permissions-for-the-app there should be a "YNH_USER" header set through nginx, for all apps, right? Does that include the redirect app?
[09:17:01]
<nicofrand> Where is this header set anyway? I cannot find anything in /etc/nginx
[09:22:20]
<florent[m]> I think it is `sso_wat` that sets this header
[09:22:44]
<florent[m]> https://github.com/YunoHost/SSOwat/blob/3bd7214303146eac0d9dc6d5e3964d57249a1780/access.lua#L46
[09:24:09]
<florent[m]> > there should be a "YNH_USER" header set through nginx, for all apps, right?
Yeah, you can use it to make your app compatible with yunohost's SSO.
> Does that include the redirect app?
Not sure what you mean?
[09:24:39]
<nicofrand> The redirect app already passes some headers through proxy_set_header
[09:24:50]
<nicofrand> but this YNH_USER does not seem to be included
[09:25:03]
<florent[m]> Aah, right, redirect_ynh!
[09:25:22]
<nicofrand> How can I pass it? `proxy_set_header YNH_USER $http_ynh_user;` does not seem to do the trick
[09:25:29]
<nicofrand> ah yes, redirect_ynh, sorry
[09:25:44]
<florent[m]> No worry! :)
[09:27:17]
<florent[m]> Right, and you're trying to use `redirect_ynh` as a reverse-proxy, aren't you?
[09:49:57]
<tituspijean[m]> Thank you! I'm in a bit of a conundrum now, since there is no user and registration is closed by default. 😅
[09:50:25]
<florent[m]> I would say, this should work out of the box, but have not checked or played with it. 🤔
[09:51:06]
<nicofrand> Do you know if there should be a variable name for that YNH_HEADER ?
[09:53:11]
<nicofrand> $http_ynh_user does not throw any nginx error if used but it remains empty…
[09:53:45]
<florent[m]> AFAICT, you may either look for:
- `ynh_user` for the user name
- `ynh_user_email` for the user email
In nodejs, I write them in lowercase, but I don't know for other languages.
[09:53:52]
<florent[m]> Probably worth to dump the headers
[09:54:08]
<florent[m]> BTW, could you share what you are trying to do? So we have more context
[09:54:32]
<florent[m]> (If that's OK, of course)
[09:54:50]
<nicofrand> The kresus app will soon allow the configuration of a HTTP header field to be set, with the login of an authenticated user
[09:55:05]
<nicofrand> ideally the kresus_ynh will use that instead of one instance per user
[09:55:16]
<tituspijean[m]> sorry I did not delve in your discussion, check this: https://github.com/YunoHost-Apps/forgejo_ynh/commit/aaff313d50a308647a543c06b449d8926696a78d
it looks like there's the `protect_against_basic_auth_spoofing ` app setting to set to false
[09:55:19]
<nicofrand> but right now I'd just want to test it through my docker instance of kresus
[09:56:38]
<nicofrand> ah, will try thanks
[09:58:45]
<florent[m]> `protect_against_basic_auth_spoofing` is the answer you were looking for or is this about another subject?
[09:59:52]
<nicofrand> I am still trying to set it
[10:00:00]
<nicofrand> from the cli
[10:00:54]
<tituspijean[m]> you might need to run `yunohost app ssowatconf` after setting it up
[10:01:27]
<florent[m]> Hmm, I don't connect the dots, but curious to see whether your issue is solved after that
[10:01:54]
<tituspijean[m]> `yunohost app setting redirect protect_against_basic_auth_spoofing -v false`
[10:02:00]
<florent[m]> BTW, thank you as well to the other contributors for your work on Kresus :)
[10:02:17]
<nicofrand> How can I transform `
ynh_app_setting_set --key=protect_against_basic_auth_spoofing --value=false` in a `yuinohost app setting command?
[10:02:18]
<tituspijean[m]> Yeah I might be leading you in a useless rabbit hole 😶🌫️
[10:02:37]
<nicofrand> And wouldn't that allow clients to pass the header directly?
[10:03:38]
<tituspijean[m]> I cannot help you on the technical details, sorry. That's black magic to me. :/
[10:04:49]
<nicofrand> That does not solve the issue anyway
[10:06:03]
<nicofrand> I used `yunohost app setting redirect protect_against_basic_auth -v false`
[10:06:24]
<nicofrand> ah, missed "spoofing"
[10:07:39]
<nicofrand> same once fixed
[10:09:02]
<tituspijean[m]> have you run `yunohost app ssowatconf` afterwards?
[10:09:11]
<nicofrand> https://forum.yunohost.org/t/sso-in-python-after-update-to-yunohost-12/32799/4 :/
[10:11:00]
<tituspijean[m]> ah there's also the nginx reload
[10:12:03]
<nicofrand> I did the nginx reload
[10:12:51]
<nicofrand> still not better
[10:14:20]
<tituspijean[m]> then I'm out of ideas, sorry :|
[10:15:20]
<nicofrand> the `$http_ynh_user` is set, but empty :(