Recently dynamic DNS module was fixed to use root ownership and limited
permissions for configuration and status files to avoid other users
reading dynmaic DNS account details. This caused a regression when
Plinth is being run as non-root user. This patch runs the commands to
read the current configuration as root user.
- RTP ports used for voice and video communication can span a wide range
of ports. Some servers seem to restrict the range. However, repro
does not seem to do that. So, open up the full range.
- Very similar to configuration of IPv4 networks.
- Supports 'auto', 'dhcp', 'manual' and 'ignored' modes as supported by
network manager. 'shared' mode is not yet implemented by network
manager.
- Update action to not configure jwchat anymore.
- Update action to not disable jwchat apache configuration. Since the
package is no longer installed, this could cause failures.
- Update action to no refer to jwchat in comments.
- Update jwchat-plinth Apache configuration to not include jwchat
anymore. Keep this file name for now instead of renaming it to
jsxc-plinth as this would introduce additional complexity with little
benefit.
- Install package libjs-jsxc instead of jwchat during xmpp setup.
- Create jsxc front page shortcut instead of for jwchat.
- Perform diagnostics on /http-bind/ URL needed for jwchat instead of
/jwchat.
- Update links that launch XMPP web client.
This is a publicly available view since people should be able to login
even without access to Plinth interface. Also avoid double login.
There should be no security risk in doing this.
Most tables now occupy the full width of the container row. Some of
them are otherwise squished. Also make sure the new fixed container
layout has not reduced the originally intended width of a table.
Now all forms will uniformly occupy the full width of the available
row. Bootstrap originally designed forms this way. However, we were
setting restricted widths on forms as they were too wide. With the new
fixed container layout this is no longer necessary.
Instead of the transitional package 'letsencrypt'.
I believe, there is no need to rename the entire module to certbo since
letsencrypt is stil a more apt name for the module. Let's Encrypt is a
strong brand that people know. The service is still called Let's
Encrypt. Only the automation tool has been renamed to certbot to avoid
confusion of the service name.
Implement killing the publish process from within the action. Don't let
the killing be too generic to avoid potential security issues. Kill
process only if it appears as expected.
After a domain has been imported into a key and later the domain is
removed, handle the case properly.
- Show the Add Domains button only if there are domains that can be
imported.
- Show domains that have been imported into a key but not available in
the system specially.
- Sort list of domains shown.
In a module, when URL is not avialable for a shortcut, send None instead
of an implementation specific detail on how to show description. This
allows use to change the implementation of how description is shown
without changes to modules.
- Refactor reading status log file.
- Fix hardcoded URL path into 500.html.
- Rename 'status logs' to 'status log' for consistency.
- Decorate the personal information warning. Avoid <b>.
- Add heading to status log page.
- Indentation and grammer fixes.
- So that it can be used for other applications also.
- Also remove second status icon in green and use the status loading in
it's place. This is more consistent placement of status icon.
- Also reduce the size of the icon as it is not indication for page
loading (page loading icons are large because they substitute page
content until it is loaded). This makes it consistent with other
status icon.
In a following pull request, we are expected to solve the cache timing
issue. So, show a generic error message instead of one that suggests a
timing problem.
Although there is nothing wrong with the generated POT file and the
encoding is properly set to UTF-8, Weblate failed with following error:
We have not been able to update the source file for the resource
django.pot of the project FreedomBox UI.
The URL we used to update the source file from was
https://raw.githubusercontent.com/freedombox/Plinth/master/plinth/locale/django.pot.
The exact error we encountered was:
'ascii' codec can't encode character u'\u2019' in position 31271:
ordinal not in range(128)
Current check whether the package manager is busy and getting the
unattended upgrades log requires root. This will not allow Plinth to
run as non-root. Fix this by moving the operations to actions script.
Due to permission restrictions on the configuration file (due to stored
password), it is not possible to read it as plinth user. Read it using
sudo instead.
