[00:03:50]
<Wylel> > <@craigvb:matrix.org> so, what do you suggest I try?
can you download the file over http?
[00:04:04]
<Wylel> try in an incognito window as well
[01:50:14]
<craigvb> If I drop it into a browser I get a page loaded yes
[01:58:46]
<craigvb> first 1/2 of the displayed line is the file and 2nd part is about the same length
[02:03:30]
<Wylel> > <@craigvb:matrix.org> first 1/2 of the displayed line is the file and 2nd part is about the same length
okay that has me stumped then, the only other thing I could suggest is to try and do it with the CLI and see if certbot or whatever they use now will do it, or ask on the Lets Encrypt forum (could also post it on the YunoHost forum) and see what happens.
[02:04:39]
<craigvb> darn... had me stumped too
[02:11:07]
<craigvb> Was working fine until the last update, I wonder if they changed something somewhere...there's no ipv6 on the server
[02:12:07]
<craigvb> about 9 more days to work it out <sigh>
[02:15:20]
<craigvb> does the " : " on the end of this make any difference, I left it off obviously as presumed it was a weird piece of formatting in the error message. If it's on, it's a 404 page not found error.
http://muc.vanbeek.nz/.well-known/acme-challenge/_eCrle2EnMqGZNQBQuRtIklFwJdJp1A_6tJSXDp4m_8:
[02:17:51]
<craigvb> anyone know the manual commands to renew a certificate?
[02:23:28]
<Wylel> im not sure what version you started with, but these servers im running right now started with the version before the very last update, and I just did a renewal and it worked fine.
[02:23:28]
<Wylel> I can access that site as well. Have you also tried completely rebooting the server?
[02:23:29]
<Wylel> Another option, try to remove muc.maindomain.tld in DNS temporarily (if its not absolutely necessary), wait for TTL to expire, and then try it again
[02:23:34]
<Wylel> it will then get the option to advance past muc. and hit xmpp-upload. and we can see if i errors out there too
[02:26:49]
<craigvb> we use xmpp chat servers on the domain which I'm pretty sure is the muc cname
[02:27:13]
<craigvb> but it's just for us, suppose I could drop it out for a short spell....
[02:28:18]
<Wylel> That is really my only test I can think of at the moment
[02:29:07]
<craigvb> removed it.... will keep an eye for when it disappears from DNS land
[02:31:41]
<Wylel> I am curious if it works out doing that
[02:52:12]
<craigvb> dns is never fast to change 🙄 might be a bit of a wait :)
[02:53:43]
<Wylel> lol oh I know it
[02:53:51]
<craigvb> won't be as long as the wait after I change it back though 🤔
[06:37:37]
<Craig Cawthron (Toxicdorito)> Hello, Just started on yuno. Moving over from an alternate software.. All my domains that I utilize are through cloudflare, (25 domains to be exact) So... That being said, any specific way to get the API too function? I've tried as mentioned in forums (And my old software provided the same type of system)
Email
Global ID
Zone ID
[06:39:47]
<Craig Cawthron (Toxicdorito)> Keep getting an API error 400, Missing X-Auth-Key, Email, Or Authorization headers
[07:48:01]
<ChriChri[m]> > <@toxicdorito:matrix.org> Keep getting an API error 400, Missing X-Auth-Key, Email, Or Authorization headers
Hey Craig and welcome to yunohost! I moved over from another configuration some weeks ago, too.
You need to describe in detail what you're trying to achive and what you're exactly doing when you get the mentioned error.
trying to achive: there's always more than one way to do it and there might be a better one than you chose - let people here review your decision
detailed describtion: if people trying to help you can reproduce what you do to get an error on their testing installation it is way easier to find out what is going on.
[12:14:49]
<douwe> hey, I hadn't looked at my admin page for a while, but now I can't access it anymore. It says:
```
403 Forbidden
nginx
```
This is on a VPS that I can access through ssh
[12:15:02]
<douwe> the apps I have installed are all accesible
[12:33:24]
<Aleks (he/him/il/lui)> what if you try to access it using the IP address for instance ?
[12:34:51]
<douwe> I get a certificate warning and then the same error
[14:41:44]
<amu> Hello
[14:41:47]
<amu> Anyone using Trilium?
[14:42:04]
<amu> When installing it for the first time, it asks for a password, I set it, but then I get a "password wrong" when trying to log in
[14:42:23]
<amu> I thought I might have made a mistake, so I uninstalled it and reinstalled it. But now, when asking for a password, it directly tells me "Password is incorrect"
[14:55:27]
<Wylel> I have not tried the app, but does your password have an & in it?
[14:55:52]
<amu> Wylel: Thanks. Nope, it does not.
[14:56:06]
<Wylel> > <@douwe:thorp.eu> I get an certificate warning and then the same error
Try to restart the nginx service and see if it lets you in there. Also run updates.
[14:56:07]
<douwe> restart nginx service: no difference
full upgrade of all apps: in progress
[15:02:43]
<amu> By the way, on my case, I also tried restarting nginx and access Trilium from browser's private-mode new tab: No difference.
[15:34:08]
<douwe> full upgrade of apps complete: no difference
sudo apt update && sudo apt upgrade complete: no difference.
[15:54:31]
<Wylel> > <@douwe:thorp.eu> Wylel: any other ideas?
check the access-log in /var/log/ and see if there are any errors there
[15:57:11]
<douwe> there are many logs in `/var/log/` but none with the name `access-log`
[15:58:33]
<Wylel> > <@douwe:thorp.eu> there are many logs in `/var/log/` but none with the name `access-log`
oh sorry, /var/log/nginx/access.log and error.log
[16:00:57]
<douwe> is this anything usefull? From the error.log:
```
2023/11/02 16:07:10 [warn] 1220234#1220234: could not build optimal proxy_headers_hash, you should increase either proxy_headers_hash_max_size: 512 or proxy_headers_hash_bucket_size: 64; ignoring proxy_headers_hash_bucket_size
2023/11/02 16:07:10 [info] 1220234#1220234: Using 131072KiB of shared memory for nchan in /etc/nginx/nginx.conf:61
```
[16:02:03]
<Wylel> not for this case I dont think
[16:03:42]
<douwe> it's all (recent) there is in the error.log
[16:04:49]
<Wylel> yeah there should be some older logs in rotation
[16:04:50]
<Wylel> with a .log.1 .log.2, bigger ones with .gz at the end.
[16:04:52]
<douwe> yeah, there are many
[16:05:01]
<Wylel> as they rotate, they get compressed to save space
[16:05:03]
<douwe> https://aria.im/_matrix/media/v1/download/thorp.eu/YSuplEvBnbNpYiuqgnNayHfF
[16:05:58]
<Wylel> > <amu> By the way, on my case, I also tried restarting nginx and access Trilium from browser's private-mode new tab: No difference.
I will need to see what the config files look like, but i would imagine something is not being placed there by the installer, or something happened during the install. If you go to your YunoHost Admin > Tools > Logs, find the install log for Trillium and share it with YunoPaste (button on that page) and share that here.
[16:06:59]
<Wylel> > <@douwe:thorp.eu> sent an image.
Yeah. So open the file, if you do a `tail -f /var/log/nginx/access.log` (or error.log) you can see the file update in real time
[16:07:02]
<Wylel> so while that is open in tail, try to access the admin panel
[16:07:04]
<douwe> yeah, tried that. nothing changes...
[16:07:20]
<douwe> wait, I am gonna try the error and access log that are also there, but have the subdomain in their name
[16:08:07]
<Wylel> oh right! im an idiot this morning im sorry, it would be labeled on the domain you are accessing
[16:08:08]
<Wylel> i need coffee so bad
[16:09:07]
<douwe> and now I know what happened
[16:09:27]
<douwe> I got a new internet connection and I didn't whitelist my new IP
[16:09:37]
<douwe> 🤭
[16:09:43]
<Wylel> ahhh
[16:09:45]
<Wylel> well, I am glad you found it!
[16:09:46]
<douwe> now... how do I add an IP to the whitelist over ssh...? 😬
[16:12:42]
<douwe> haha, no worry, we are getting somewhere:
"2023/11/02 17:06:34 \[error\] 1217080#1217080: \*834 access forbidden by rule, client: xxx.xxx.xxx.xxx, server: server, request: "GET /yunohost/admin/ HTTP/2.0", host: "domain.server.nl"
[16:12:42]
<Wylel> good question, lets see if its in the `yunohost tools` command
[16:15:56]
<Wylel> > <@douwe:thorp.eu> now... how do I add an IP to the whitelist over ssh...? 😬
I dont have it enabled, but I *think* the setting is stored in `/etc/yunohost/settings.yml`
[16:16:02]
<Wylel> Thats where some of the other changed admin settings are
[16:17:45]
<amu> Wylel: Thanks. I'm in. purge dit it: yunohost app remove -p trilium
[16:17:48]
<amu> Well, I also upgraded yunohost, but I don't think that helped.
[16:18:35]
<Wylel> > <amu> Wylel: Thanks. I'm in. purge dit it: yunohost app remove -p trilium
gotcha, are you able to reinstall?
[16:19:10]
<amu> Yeap. That's it. I reinstalled and everything went smoothly
[16:25:04]
<Wylel> > <amu> Yeap. That's it. I reinstalled and everything went smoothly
awesome!
[16:42:05]
<djx> Is there any sort of bounty area for YunoHost improvements? For example, could a few people who want to see improvements for an app like GitLab put some money into a bounty for it?
[16:43:01]
<djx> Right now I'm faced with giving Cloudron a try to see if they have better GitLab support (for $15/month) or spend time improving the app for YNH myself. Due to time constraints, it's going to be the first one. I'd much rather put the money towards YNH than Cloudron.
[17:03:56]
<Wylel> > <djx> Is there any sort of bounty area for YunoHost improvements? For example, could a few people who want to see improvements for an app like GitLab put some money into a bounty for it?
I do not think so.
[18:27:38]
<craigvb> how long does it take for a cname to get removed from dns after you delete it 🤔
[18:29:07]
<Aleks (he/him/il/lui)> it's immediate, but there may be cache in various DNS resolvers accross the world, which is to expire according to the TTL (time to live) of the record you just deleted
[18:29:29]
<craigvb> ttl was 900, deleted it about 10-12 hours ago, still hasn't changed
[18:30:58]
<craigvb> I hate DNS :)
[18:31:43]
<Wylel> yeah, DNS is a pain most of the time
[18:31:44]
<Chatpitaine Caverne> > <@craigvb:matrix.org> I hate DNS :)
That's not the worse hate on this planet.
[18:32:19]
<Wylel> I cant tell you how many times I have run across an issue and DNS has been the problem the entire time
[19:19:46]
<djx> A haiku about DNS:
It's not DNS
There is a no way it's DNS
It was DNS
[19:23:12]
<craigvb> it's ALWAYS DNS
[19:26:19]
<craigvb> the weakest link in the internet
[19:29:40]
<douwe> > <@wylelb:matrix.org> Thats where some of the other changed admin settings are
Wylel, the changes I make in that doc don't seem to be used by the server. I tried restarting the nginx service, rebooting the VPS, but I keep being blocked. Also, I set that the whitelist should not be used at all. To no avail. Any other thing you know I might need to do?
[19:46:33]
<Wylel> > <@douwe:thorp.eu> Wylel, the changes I make in that doc don't seem to be used by the server. I tried restarting the nginx service, rebooting the VPS, but I keep being blocked. Also, I set that the whitelist should not be used at all. To no avail. Any other thing you know I might need to do?
Unfortunately no, im not sure about the whitelist in the admin panel, and a quick search for it in the docs didnt bring anything up (but I have taken a mental note that should probably be added there). I would ask on the forum.
[19:51:32]
<douwe> will do! Thnx for your help already 👍️
[22:09:01]
<Wylel> > <@douwe:thorp.eu> Wylel, the changes I make in that doc don't seem to be used by the server. I tried restarting the nginx service, rebooting the VPS, but I keep being blocked. Also, I set that the whitelist should not be used at all. To no avail. Any other thing you know I might need to do?
Just thought about this, make those changes to the file and try a `yunohost tools regenconf` (I believe that is the command) to regen the config file and see if that fixes it.