So I implemented resourceprep for nicknames in yaxim, but then I wasn't able to use emoji nicknames, so I removed that again.
jonasw
:D
jonasw
implement resourceprep, but ignore unassigned codepoints
Ge0rG
Thats not how libidn works :(
jonasw
:P
Kevhas left
Kevhas left
nycohas left
nycohas joined
Ge0rG
Okay, so I'm in a good mood. I will try to make AndroidStudio work with yaxim again.
jonasw
goodbye to your good mood
@Alacerhas left
lumihas joined
@Alacerhas left
Ge0rG
Ah, another bit of XMPP trivia to dig out: is a user implicitly subscribed to themself? They can't add their own JID to the roster, but are they subscribed? Context: https://prosody.im/issues/1052
jonasw
huh
Ge0rG
> To take advantage of all the latest features (such as Instant Run), improvements and security fixes, we strongly recommend that you update the Android Gradle plugin to version 3.0.1 and Gradle to version 4.1.
Yeah. Last time I said "yes" to that kind of dialog, it broke everything for me.
Ge0rG
> Warning:The specified Android SDK Build Tools version (25.0.0) is ignored, as it is below the minimum supported version (26.0.2) for Android Gradle Plugin 3.0.1. Android SDK Build Tools 26.0.2 will be used.
There goes my mood again.
jonasw
(I’m not sure this is proper on-topic here)
Tobiashas joined
Tobiashas joined
jonasw
also, you have been warned :)
Ge0rG
It's not. But it's Saturday, and the XSF doesn't work on weekends.
jonasw
it does not? oh. docker kill xmpp.net-frontend; docker rm xmpp.net-frontend :)
Ge0rG
jonasw: if you are bored, you can also have a look at that self-roster vs self-presence thing ;)
zinidhas joined
jonasw
I’m pretty sure I added meself to the roster before
jonasw
yup, works instantly
Ge0rG
jonasw: it's not allowed.
Ge0rG
I just don't remember where it's written down.
jonasw
ah indeed
jonasw
it’s only pidgin which pretends that it works
iNPUT🐁
Sorry Tobias!
jonasw
great, whenever iNPUT🐁 writes, my input line acts up
jonasw
.
Ge0rG
iNPUT🐁: Tobias isn't there, because "Kicked: jid malformed: The source address is invalid: xsf@muc.xmpp.org/iNPUT🐁"
jonasw
Ge0rG, for the purpose of mod_firewall, I’d suggest to treat self as both IN_ROSTER and SUBSCRIBED.
Ge0rG
jonasw: yes. But what about rostermanager?
jonasw
i don’- care
jonasw
why would I need to care?
Ge0rG
iNPUT🐁: wouldn't iNPUT🐁🐁 be a more correct nickname? :P
Ge0rG
jonasw: because you just wrote the same thing I stated in the ticket, but in other words? :P
iNPUT🐁
Ge0rG: I thought about that, but I'll just let Tobias back :P
jonasw
you need to renick for that
jonasw
and we need to purge your messages from the history probably
Ge0rG
Whoops. yax.im's disk is full.
iNPUT🐁has left
stefandxmhas left
Ge0rG
looks like I need better compression for the backups.
lovetoxhas joined
jubalhhas joined
zinidhas left
Guushas left
Guushas left
nycohas left
nycohas joined
ralphmhas joined
sonnyhas left
sonnyhas joined
zinidhas joined
Guushas left
Zashhas joined
Ge0rGhas left
jubalhhas left
Ge0rG
Killed another (single) spammer account, that was registered last night via direct TCP instead of SRV.
Ge0rG
It's bad when you don't have IP address logs due to nasty NAT
jubalhhas joined
jerehas joined
zinidhas left
jerehas joined
ralphmhas joined
Ge0rGhas left
stefandxmhas joined
Ge0rGhas joined
Ge0rGhas left
nycohas left
zinidhas joined
Ge0rGhas joined
ralphmhas joined
ralphmhas joined
lskdjfhas joined
jmpmanhas joined
zinidhas left
zinidhas joined
stefandxmhas left
lskdjfhas joined
sonnyhas left
sonnyhas joined
Zashhas left
Zashhas left
Zashhas left
Zashhas left
Zashhas left
Ge0rGhas joined
Guushas left
Neustradamushas left
jubalhhas joined
ralphmhas joined
jonasw
hm, Kev, do you have a minute or two to give me a few tips on the nginx-php-thing?
ralphmhas joined
zinidhas left
lskdjfhas joined
jabberatdemohas left
danielhas left
efrithas joined
danielhas left
danielhas joined
danielhas left
danielhas joined
zinidhas joined
moparisthebesthas joined
archas left
archas joined
zinidhas left
jabberatdemohas joined
Kev
I'm just about to go out for a jog, so not many. What's up?
jonasw
so AFAICT, the config assumes that everything goes through a single app.php
jonasw
this is not the case for this application, and I have no idea how to re-write the config properly. my attempts range from "it offers the php file for download" to "404"
Kev
The first of those sounds useful. App-on-demand or something.
jonasw
this is what I’ve got now, nginx-wise:
server {
listen 8000;
root /opt/installtree;
location / {
# try to serve file directly, fallback to app.php
try_files $uri =404;
}
location ~ [^/]\.php(/|$) {
fastcgi_split_path_info ^(.+?\.php)(/.*)$;
fastcgi_pass unix:/run/php/php7.1-fpm.sock;
include fastcgi_params;
fastcgi_param SCRIPT_FILENAME $request_filename;
fastcgi_param DOCUMENT_ROOT $realpath_root;
fastcgi_param HTTP_PROXY "";
fastcgi_index index.php;
internal;
}
error_log /var/log/nginx/rff_error.log;
access_log /var/log/nginx/rff_access.log;
}
jonasw
it’s especially useful for secrets.php :)
jonasw
(this one 404s)
jonasw
(I haven’t touched the php-cgi-fpm-thing config yet)
la|r|mahas joined
danielhas left
la|r|mahas left
la|r|mahas joined
Kev
That doesn't look immediately stupid.
jonasw
\o/
Kev
Although I'm not much of a PHP person, and certainly not a running-PHP-in-webservers person.
Kev
You almost certainly don't need the location / block, though.
jonasw
there are static files in the app which need to be served. are you sureS✎
jonasw
there are static files in the app which need to be served. are you sure? ✏
Kev
Oh. No, then :)
danielhas left
Kev
If you're at giving up stage, do you want to upload what you've got so far somewhere, and maybe someone can help? Maybe even me, although I'm going to struggle to find time over the next few days.
jonasw
I’m at the massively-confused-stage
jonasw
but sure
Kev
There must be *someone* here who's a PHP person.
jonaswglances at daniel
jonasw
even though I think we need an nginx-php-persion
lskdjfhas joined
jonasw
https://github.com/horazont/xmppoke-frontend-docker there you all go
la|r|mahas left
daniel
i'm not an nginx person. when i did php everyone was using apache
la|r|mahas joined
daniel
and there was this thing called lighttp which the kids today have never heard about
jonasw
I have!
jonasw
I personally only use apache, though :)
jonasw
maybe somebody on members@ will step up :(
Zash
Is that a thing that ever happens in a volonteer based org?
jonasw
Zash, I did step up
SouL
Received the email, crossing fingers to find someone
jonasw
also, I tried the classic trick: put something up in the internet which is WRONG
jonasw
maybe it helps :)
Zash
Sure, but rewriting the entire PHP thing from scratch is too much work.
Zash
:P
jonasw
Zash, actually, I came to thinking that rewriting that thing in python would probably be much faster than trying to get this PHP thing to work
jonasw
anyways, &-ing this for now
Ge0rG
jonasw: great job so far!
jonasw
thanks
sonnyhas left
sonnyhas joined
sonnyhas left
sonnyhas joined
Flow
> Ge0rG> Ah, another bit of XMPP trivia to dig out: is a user implicitly subscribed to themself?
Flow
are you still intereseted in an answer?
Ge0rG
Flow: yes
Ge0rG
Flow: it's for me and for https://prosody.im/issues/1052
Flow
Ge0rG, I think https://tools.ietf.org/html/rfc6121#section-4.2.2 answers it
Ge0rG
Flow: it's related, but technically it doesn't say you are subscribed to yourself
Flow
Ge0rG, right, but you also didn't want to know if a roster query for your own JID would return an item, leave alone a subscription state
Flow
because you said that one can not be in its own roster. do you happen to have a link to where it's specified?
Ge0rG
Flow: no link :(
Flow
Ge0rG, you may want to add that to https://wiki.xmpp.org/web/index.php?title=XEP_and_RFC_Remarks (or, but i'm not sure if it's a good fit, to the RFCs errata)
jabberatdemohas left
Ge0rG
At least it's not restricted in https://xmpp.org/rfcs/rfc6121.html#sub-request-outbound
Ge0rG
Maybe it was just a server implementation limitation
jonasw
that’d also explain why pidgin fakes it.
jonasw
or maybe not
jonasw
I’d trust pidgin to ignore explicit errors in that regard...
Ge0rG
Ah, https://xmpp.org/rfcs/rfc6121.html#roster-add-errors -
> Interoperability Note: Some servers return a <not-allowed/> stanza error to the client if the value of the <item/> element's 'jid' attribute matches the bare JID <localpart@domainpart> of the user's account.
Flow
Ge0rG, so it is allowed, good to know
Ge0rG
Flow: it's not forbidden in that single place, at least.
Zashhas left
ralphmhas joined
Guushas joined
Guus
Jonasw, php-wise, what do you need?
Guus
Last time I looked, php 4 was just released
Guus
but I'm confident that together, we should be able to make something work :)
jonasw
Guus, essentially, that docker container just 404s
jonasw
and I have no idea why
Guus
which container?
jonasw
could be nginx, could be php-fpm
jonasw
oh, I thought you read that email
Guus
I did
Guus
but not close enough, probably :)
jonasw
there’s a link to a github repo
Guus
ah, I missed that
Guus
ah, wife just assigned me chores :)
Guus
I'll be back in ~45 minutes
stefandxmhas joined
jonasw
heh
jonasw
that’s what I’d say too, if I was about to debug nginx-php-things
jonasw
:)
ralphmhas joined
la|r|mahas joined
lovetoxhas left
Zashhas left
stefandxmhas left
efrithas left
efrithas joined
sonnyhas left
sonnyhas joined
Guushas left
efrithas left
efrithas joined
efrithas left
efrithas joined
efrithas left
efrithas joined
marchas left
marchas left
Guushas left
Ge0rGhas joined
ralphmhas left
pep.
jonasw, I'm tring to run your xmppoke-frontend-docker. composer.json is not in xmppoke-frontend, is it left as an exercice to the reader? :x
pep.
xnyhps, ^
jonasw
what is a composer.json?
jonasw
there’s no such thing
pep.
There are mentions of that in your Dockerfile
jonasw
pep., the docker stuff expected some stuff which the frontend thing doesn’t do
jonasw
yeah
jonasw
ignore that
pep.
k
jonasw
I need to strip that out
jonasw
(that’s from kevins template which expects things I don’t know about adn which aren’t in xmppoke-frontend either, so I dropped that)
pep.
k
pep.
composer.json is just python's requirements.txt equivalent✎
jonasw
ah
pep.
composer.json is just python's requirements.txt's equivalent ✏
jonasw
I don’t think there are any requirements
pep.
Ok, stripping that out
efrithas left
jubalhhas left
zinidhas joined
sezuanhas left
sezuanhas joined
ralphmhas joined
zinidhas left
jubalhhas joined
jubalhhas left
Zashhas left
danielhas left
Guus
jonasw: that postgres instance is not in poker, is it?
stefandxmhas joined
marchas joined
jonasw
Guus, no, it isn’t
jonasw
didn’t proceed that far yet, I was about to use my local postgresql instance
Guus
that probably explains why my browser is timing out
jonasw
uh, but you got the PHP stuff to work?
Guus
ah, yeah, php now complains
jonasw
amazing!
jonasw
care to make a PR?
Guus
well, I simply removed everythign I didn't understand and used the apache-based default
jonasw
ah, so s/nginx/apache/?
Guus
let me show you, one sec
ralphmhas joined
Guus
I didn't get that huge startup script - if there was anything important apart from the secrets in there, it's now missing.
jonasw
I’m all in for simplicity
Guus
also, I _detest_ docker for its installation procedures.
Guus
messed up my entire setup :(
jonasw
how that?
Guus
a) make it run b) make it right.
Guus
docker vs docker.io vs docker-ce vs docker-whatever?!
jonasw
apt install docker.io docker-compose works for me :/
Guus
it complained about mismatched versions (I think your compose uses a version 3, while my executable didn't see beyond 2)
Guus
but, whatever. It now runs
pep.
`pacman -S docker`? :)
Guus
let me PR
jonasw
Guus, thank you :)
pep.
I'm also having a look btw
Guus
PR done
Guus
I'm somewhat worried about having passwords in secrets.php - is that visible to end-users?
jonasw
I sure hope not
jonasw
but I’ll tackle that later
jonasw
(I think modifying common.php to include from somewhere non-docrooty should be possible)
jonasw
there’s also that huge patch from Holger which needs to be dissected
pep.
Guus, that can be hidden by the web server for a start, but yeah otherwise, it's meh
Guus
also, php's docker page suggests adding a php.ini, which we're not doing. might be another good improvement
Guus
but, lets first make it run
jonasw
let’s give this a shot :)
Kev
Passwords should come in from envvars.
jonasw
they do
pep.
jonasw, PHP should get them from envvars
jonasw
pep., Guus made it so that they do
pep.
I see, right
Guus
yeah, that's what I did - I think the upstream code requires them to be in a file though
jonasw
doesn’t matter in the end, I think
jonasw
I mean this way it’s not even a problem if a user can downloda secrets.php
jonasw
because the values aren’t in there
jonasw
I’m still not happy how that thing compiles everything from source :/
Guus
well, if its interpreted....
jonasw
Guus, if it’s interpreted, the values aren’t printed
Guus
ah, true.
jonasw
neat
jonasw
now waiting for my postgres to come up :)
pep.
I wonder if there's a way to change the docker-compose conf with args. To not have :80 used locally when testing. But that's a detail
Fatal error: Uncaught Error: Call to undefined function idn_to_utf8() in /var/www/html/result.php:25 Stack trace: #0 {main} thrown in /var/www/html/result.php on line 25
pep.
jonasw, that's where composer.json comes into play :P
jonasw
I think that’s a PHP module
Guus
https://hub.docker.com/r/library/php/ <-- has some documentation on how to add extensions
jonasw
need to figure out the extension name though
pep.
err, PHP
Kev
Add php7.1-intl to the apt line.
Kev
I think that'll do it.
Guus
intl
Kev
Oh, it's there already.
Guus
exactly
Kev
Hmm.
jonasw
uhm
jonasw
you’re looking at different files
Kev
No idea then, that should already be available.
jonasw
Kev, guus essentially re-wrote everything
Kev
I'm looking at the dockerfile I sent over.
jonasw
yeah
pep.
Kev, 7.2 with the PR
Kev
I shall leave you all to it then.
jonasw
:)
Kev
I feel pleased I spent that time sorting out the files I sent over :p
jonasw
Kev, sorry
Guus
I'm not invested in whatever I did
Guus
I basically punched it until something worked
jonasw
Kev, if you can figure out why it didn’t work, I’m happy to go back to yours, because I’m still a bit uneasy with the PHP docker images.
Kev
'PHP docker images'?
jonasw
https://hub.docker.com/r/library/php/
Kev
Not those ones that mount the source into the image?
stefandxmhas left
Guus
I read somewhere that they provide the source as a tarball?
Guus
unsure
ralphmhas joined
Guus
it runs. :)
danielhas left
@Alacerhas left
@Alacerhas joined
Guus
jonasw, need me for anything else?
jonasw
I don’t think so
jonasw
thanks a lot
jonasw
and one more apology towards Kev
Guuswanders off
zinidhas joined
Alexhas joined
Alexhas left
@Alacerhas left
jonasw
yeha
jonasw
I just queued the first test :)
jonasw
now for the postgresql …
@Alacerhas joined
jonasw
wat, jabber.org is weird. Pre-TLS, they only offer DIGEST-MD5. Post-TLS, they offer: CRAM-MD5, DIGEST-MD5, LOGIN, PLAIN, SCRAM-SHA-1, SCRAM-SHA-1-PLUS
Zash
Wat
Zash
Also, wat
jonasw
I wonder whether it’s related to this: https://github.com/cyrusimap/cyrus-sasl/issues/379