[15:31:00]
<ChriChri[m]> > <@chrichri:librem.one> https://github.com/YunoHost/issues/issues/2265
Updated this with information about a workaround. But I have questions:
* It seems that my snappymail had been downgraded between beginning of Sep and now - is it just me or is the string in ˋapplication.iniˋ misleading or has that been intentionally?
* Can someone reproduce this (empty the admin account and password fields in ˋapplication.iniˋ and start over)?
* Is the downgrade somehow related to the problem that ldap users can't login anymore?
[16:32:31]
<orhtej2> > <@chrichri:librem.one> Updated this with information about a workaround. But I have questions:
> * It seems that my snappymail had been downgraded between beginning of Sep and now - is it just me or is the string in ˋapplication.iniˋ misleading or has that been intentionally?
> * Can someone reproduce this (empty the admin account and password fields in ˋapplication.iniˋ and start over)?
> * Is the downgrade somehow related to the problem that ldap users can't login anymore?
Downgraded from what to what?
[16:34:01]
<orhtej2> As far as I can tell the version on master only increments so unless you installed from custom branches this shouldn't be the case
[17:31:03]
<bejelit> Hi, is it possible to install 2 xmpp accounts on a yunohost server?
I have 2 domains on njalla.
The one I configured by default works.
[17:36:54]
<Aleks (he/him/il/lui)> yes every user account has an associated xmpp account
[17:37:43]
<bejelit> but with a different domain than the default one?
[17:40:03]
<ChriChri[m]> > As far as I can tell the version on master only increments so unless you installed from custom branches this shouldn't be the case
That's been a strange thing... But now the string is showing the actual version. It doesn't seem important.
[17:41:43]
<bejelit> sorry, my mistake.
I hadn't activated xmpp in the second domain
[18:27:07]
<ChriChri[m]> > <@chrichri:librem.one> That's been a strange thing... But now the string is showing the actual version. It doesn't seem important.
O.k. - the _ldap user login_ part seems solved: I just misread what happended. Since on any occasion the configuration had been altered or lost altogether the default domain has not been configured anymore. The error message about ldap from the log has been confusing, but the behaviour now after fixing stuff is the same as before: users can login by just giving their username without domain.
That leaves only the question about _the login problem on the admin page_ open.
[18:46:25]
<xananax> My xmpp server is having invalid certificates. Checking the cert of muc.mydomain.tld, it is for yunohost.org and signed by yunohost.org. This is the certificate:
[18:46:25]
<xananax> https://aria.im/_matrix/media/v1/download/matrix.org/JxGvOOPszxwFkoTunqareYYQ
[18:47:16]
<xananax> My main domain seems set up correctly though:
[18:47:19]
<xananax> https://aria.im/_matrix/media/v1/download/matrix.org/fsYLwnGJfkJXgnAHiIqomBeB
[18:48:39]
<xananax> I don't understand how this is happening, and there doesn't seem to be a way from the interface to create letsencrypt certs for muc and xmpp-upload
[18:49:20]
<xananax> Should I manually run certbot from my server for those domains (is there a way to roll them up in the automated certificates renewal?)
[18:54:21]
<isAAAc> what is your domain name ?
[19:00:06]
<xananax> poto.cafe, muc.poto.cafe, xmpp-upload.poto.cafe. First has a valid cert, the two others don't
[19:00:43]
<xananax> Or at any rate `muc.*` doesn't, not sure about xmpp-upload
[19:01:00]
<xananax> https://poto.cafe, https://muc.poto.cafe, https://xmpp-upload.poto.cafe. First has a valid cert, the two others don't
[19:01:46]
<xananax> Hmmm?? it seems the problem fixed itself?
[19:05:32]
<isAAAc> perhaps a cache issue from your browser ?
[19:09:42]
<isAAAc> `curl --insecure -vvI https://xmpp-upload.poto.cafe 2>&1 | awk 'BEGIN { cert=0 } /^\* SSL connection/ { cert=1 } /^\*/ { if (cert) print }'` tells ok
but not for `muc.`
[19:10:34]
<xananax> No several of my users were not managing to connect, from different regions of the world
[19:10:41]
<xananax> I did reset the cert on my main domain manually
[19:10:54]
<xananax> I suppose this reset also muc?
[19:11:50]
<xananax> > `curl --insecure -vvI https://xmpp-upload.poto.cafe 2>&1 | awk 'BEGIN { cert=0 } /^\* SSL connection/ { cert=1 } /^\*/ { if (cert) print }'` tells ok
> but not for `muc.`
neat one-liner, thanks!
[19:12:36]
<isAAAc> not mine but great one yes :)
https://serverfault.com/questions/661978/displaying-a-remote-ssl-certificate-details-using-cli-tools
[19:22:41]
<xananax> Ah actually see, it's weird. I am not getting SSL errors from my browser, but in the xmpp client I am. If you check the certificate served by `muc`, it is:
`curl --insecure -vvI https://muc.poto.cafe 2>&1 | awk 'BEGIN { cert=0 } /^\* SSL connection/ { cert=1 } /^\*/ { if (cert) print }'`
[19:22:43]
<xananax> https://aria.im/_matrix/media/v1/download/matrix.org/ujLrUBetKrqAnlWRiOfXipCa
[19:22:58]
<xananax> Notice the issuer is yunohost
[19:23:46]
<xananax> In contrast, for `poto.cafe`:
[19:23:47]
<xananax> https://aria.im/_matrix/media/v1/download/matrix.org/eLFjBeRVgdCZFKaHKoejKhKL
[19:24:07]
<xananax> Something is still wrong, but I'm not sure what or how to fix it
[19:25:06]
<orhtej2> > <@Xananax:matrix.org> Something is still wrong, but I'm not sure what or how to fix it
Go to webadmin, domains muc and see what's installed as certificate maybe?
[19:26:00]
<xananax> The `muc` domain is not visible in the admin, it's part of the switch "allow xmpp on this domain". It doesn't appear as a separate domain
[19:29:29]
<orhtej2> 🤷
[21:13:17]
<miro5001> Yunohost.org is down. Does it affect the diagnosis or the autodns?
[21:24:02]
<miro5001> Failed to authenticate on registrar's API. Most probably the credentials are incorrect?
Ovh vps and domain
[21:25:09]
<miro5001> I have deleted all the dns zones and tried to push them from the webadmin
[21:26:23]
<orhtej2> Ahhhh
[22:13:32]
<lapineige> > <@miro5001:matrix.org> Yunohost.org is down. Does it affect the diagnosis or the autodns?
It works here
[22:16:33]
<xananax> doesn't load for me neither
[22:20:46]
<orhtej2> now it's loading again