-
Ge0rG
iNPUT🐁: you are kicking Tobias from this MUC all the time :>
-
jonasw
lol
-
jonasw
even thoug you need to pass strict=False for the aioxmpp JID parser too -- it’s unassigned in unicode 3.2 :)
-
Ge0rG
I remember that from my 🤖 abuse
-
jonasw
robotface
-
jonasw
I remember mostly my zalgo abuse
-
Ge0rG
A zalgo nickname, that would be fun.
-
jonasw
it was fun
-
jonasw
/nick j̷̨͚͉͖̝͖̩͖̟͔̥̭̘̃̒̆̏͒͑̋́͆̇ͮ̄̽͋͆ͤo̴̵͂ͩ̉̌ͧ̒ͩ͗̉͒ͤ̐ͥ̚҉̢̪̫͔̳̹̖͙͠n̶̛͍̠͎̞̹͕̜̝̘̯̣̰̲̙̠̖̳̺ͨ̍̏̉̍͌̊ͧ̅̉̀͂͗ͦ̈̍͒̇̋ͅa̛̯̗̫̫͙̦̦̰̹͎͈͔͚͌̆ͦͫ͋̾̏ͭ̕͜͟s̸̴͓̥̰̳̱̻̗̣̳͕̭̜̪͕̙͐ͭ̃̌ͣ̃̑ͬͅͅw̷ͩ̐̅̄ͬ͊̾ͬ͛͘͜҉͔̘̯̪̜̥̰̲͉̩̖̩ͅ
-
jonasw
poezio is confused by it
-
Ge0rG
So I implemented resourceprep for nicknames in yaxim, but then I wasn't able to use emoji nicknames, so I removed that again.
-
jonasw
:D
-
jonasw
implement resourceprep, but ignore unassigned codepoints
-
Ge0rG
Thats not how libidn works :(
-
jonasw
:P
-
Ge0rG
Okay, so I'm in a good mood. I will try to make AndroidStudio work with yaxim again.
-
jonasw
goodbye to your good mood
-
Ge0rG
Ah, another bit of XMPP trivia to dig out: is a user implicitly subscribed to themself? They can't add their own JID to the roster, but are they subscribed? Context: https://prosody.im/issues/1052
-
jonasw
huh
-
Ge0rG
> To take advantage of all the latest features (such as Instant Run), improvements and security fixes, we strongly recommend that you update the Android Gradle plugin to version 3.0.1 and Gradle to version 4.1. Yeah. Last time I said "yes" to that kind of dialog, it broke everything for me.
-
Ge0rG
> Warning:The specified Android SDK Build Tools version (25.0.0) is ignored, as it is below the minimum supported version (26.0.2) for Android Gradle Plugin 3.0.1. Android SDK Build Tools 26.0.2 will be used. There goes my mood again.
-
jonasw
(I’m not sure this is proper on-topic here)
-
jonasw
also, you have been warned :)
-
Ge0rG
It's not. But it's Saturday, and the XSF doesn't work on weekends.
-
jonasw
it does not? oh. docker kill xmpp.net-frontend; docker rm xmpp.net-frontend :)
-
Ge0rG
jonasw: if you are bored, you can also have a look at that self-roster vs self-presence thing ;)
-
jonasw
I’m pretty sure I added meself to the roster before
-
jonasw
yup, works instantly
-
Ge0rG
jonasw: it's not allowed.
-
Ge0rG
I just don't remember where it's written down.
-
jonasw
ah indeed
-
jonasw
it’s only pidgin which pretends that it works
-
iNPUT🐁
Sorry Tobias!
-
jonasw
great, whenever iNPUT🐁 writes, my input line acts up
-
jonasw
.
-
Ge0rG
iNPUT🐁: Tobias isn't there, because "Kicked: jid malformed: The source address is invalid: xsf@muc.xmpp.org/iNPUT🐁"
-
jonasw
Ge0rG, for the purpose of mod_firewall, I’d suggest to treat self as both IN_ROSTER and SUBSCRIBED.
-
Ge0rG
jonasw: yes. But what about rostermanager?
-
jonasw
i don’- care
-
jonasw
why would I need to care?
-
Ge0rG
iNPUT🐁: wouldn't iNPUT🐁🐁 be a more correct nickname? :P
-
Ge0rG
jonasw: because you just wrote the same thing I stated in the ticket, but in other words? :P
-
iNPUT🐁
Ge0rG: I thought about that, but I'll just let Tobias back :P
-
jonasw
you need to renick for that
-
jonasw
and we need to purge your messages from the history probably
-
Ge0rG
Whoops. yax.im's disk is full.
-
Ge0rG
looks like I need better compression for the backups.
-
Ge0rG
Killed another (single) spammer account, that was registered last night via direct TCP instead of SRV.
-
Ge0rG
It's bad when you don't have IP address logs due to nasty NAT
-
jonasw
hm, Kev, do you have a minute or two to give me a few tips on the nginx-php-thing?
-
Kev
I'm just about to go out for a jog, so not many. What's up?
-
jonasw
so AFAICT, the config assumes that everything goes through a single app.php
-
jonasw
this is not the case for this application, and I have no idea how to re-write the config properly. my attempts range from "it offers the php file for download" to "404"
-
Kev
The first of those sounds useful. App-on-demand or something.
-
jonasw
this is what I’ve got now, nginx-wise: server { listen 8000; root /opt/installtree; location / { # try to serve file directly, fallback to app.php try_files $uri =404; } location ~ [^/]\.php(/|$) { fastcgi_split_path_info ^(.+?\.php)(/.*)$; fastcgi_pass unix:/run/php/php7.1-fpm.sock; include fastcgi_params; fastcgi_param SCRIPT_FILENAME $request_filename; fastcgi_param DOCUMENT_ROOT $realpath_root; fastcgi_param HTTP_PROXY ""; fastcgi_index index.php; internal; } error_log /var/log/nginx/rff_error.log; access_log /var/log/nginx/rff_access.log; }
-
jonasw
it’s especially useful for secrets.php :)
-
jonasw
(this one 404s)
-
jonasw
(I haven’t touched the php-cgi-fpm-thing config yet)
-
Kev
That doesn't look immediately stupid.
-
jonasw
\o/
-
Kev
Although I'm not much of a PHP person, and certainly not a running-PHP-in-webservers person.
-
Kev
You almost certainly don't need the location / block, though.
-
jonasw
there are static files in the app which need to be served. are you sureS✎ -
jonasw
there are static files in the app which need to be served. are you sure? ✏
-
Kev
Oh. No, then :)
-
Kev
If you're at giving up stage, do you want to upload what you've got so far somewhere, and maybe someone can help? Maybe even me, although I'm going to struggle to find time over the next few days.
-
jonasw
I’m at the massively-confused-stage
-
jonasw
but sure
-
Kev
There must be *someone* here who's a PHP person.
- jonasw glances at daniel
-
jonasw
even though I think we need an nginx-php-persion
-
jonasw
https://github.com/horazont/xmppoke-frontend-docker there you all go
-
daniel
i'm not an nginx person. when i did php everyone was using apache
-
daniel
and there was this thing called lighttp which the kids today have never heard about
-
jonasw
I have!
-
jonasw
I personally only use apache, though :)
-
jonasw
maybe somebody on members@ will step up :(
-
Zash
Is that a thing that ever happens in a volonteer based org?
-
jonasw
Zash, I did step up
-
SouL
Received the email, crossing fingers to find someone
-
jonasw
also, I tried the classic trick: put something up in the internet which is WRONG
-
jonasw
maybe it helps :)
-
Zash
Sure, but rewriting the entire PHP thing from scratch is too much work.
-
Zash
:P
-
jonasw
Zash, actually, I came to thinking that rewriting that thing in python would probably be much faster than trying to get this PHP thing to work
-
jonasw
anyways, &-ing this for now
-
Ge0rG
jonasw: great job so far!
-
jonasw
thanks
-
Flow
> Ge0rG> Ah, another bit of XMPP trivia to dig out: is a user implicitly subscribed to themself?
-
Flow
are you still intereseted in an answer?
-
Ge0rG
Flow: yes
-
Ge0rG
Flow: it's for me and for https://prosody.im/issues/1052
-
Flow
Ge0rG, I think https://tools.ietf.org/html/rfc6121#section-4.2.2 answers it
-
Ge0rG
Flow: it's related, but technically it doesn't say you are subscribed to yourself
-
Flow
Ge0rG, right, but you also didn't want to know if a roster query for your own JID would return an item, leave alone a subscription state
-
Flow
because you said that one can not be in its own roster. do you happen to have a link to where it's specified?
-
Ge0rG
Flow: no link :(
-
Flow
Ge0rG, you may want to add that to https://wiki.xmpp.org/web/index.php?title=XEP_and_RFC_Remarks (or, but i'm not sure if it's a good fit, to the RFCs errata)
-
Ge0rG
At least it's not restricted in https://xmpp.org/rfcs/rfc6121.html#sub-request-outbound
-
Ge0rG
Maybe it was just a server implementation limitation
-
jonasw
that’d also explain why pidgin fakes it.
-
jonasw
or maybe not
-
jonasw
I’d trust pidgin to ignore explicit errors in that regard...
-
Ge0rG
Ah, https://xmpp.org/rfcs/rfc6121.html#roster-add-errors - > Interoperability Note: Some servers return a <not-allowed/> stanza error to the client if the value of the <item/> element's 'jid' attribute matches the bare JID <localpart@domainpart> of the user's account.
-
Flow
Ge0rG, so it is allowed, good to know
-
Ge0rG
Flow: it's not forbidden in that single place, at least.
-
Guus
Jonasw, php-wise, what do you need?
-
Guus
Last time I looked, php 4 was just released
-
Guus
but I'm confident that together, we should be able to make something work :)
-
jonasw
Guus, essentially, that docker container just 404s
-
jonasw
and I have no idea why
-
Guus
which container?
-
jonasw
could be nginx, could be php-fpm
-
jonasw
oh, I thought you read that email
-
Guus
I did
-
Guus
but not close enough, probably :)
-
jonasw
there’s a link to a github repo
-
Guus
ah, I missed that
-
Guus
ah, wife just assigned me chores :)
-
Guus
I'll be back in ~45 minutes
-
jonasw
heh
-
jonasw
that’s what I’d say too, if I was about to debug nginx-php-things
-
jonasw
:)
-
pep.
jonasw, I'm tring to run your xmppoke-frontend-docker. composer.json is not in xmppoke-frontend, is it left as an exercice to the reader? :x
-
pep.
xnyhps, ^
-
jonasw
what is a composer.json?
-
jonasw
there’s no such thing
-
pep.
There are mentions of that in your Dockerfile
-
jonasw
pep., the docker stuff expected some stuff which the frontend thing doesn’t do
-
jonasw
yeah
-
jonasw
ignore that
-
pep.
k
-
jonasw
I need to strip that out
-
jonasw
(that’s from kevins template which expects things I don’t know about adn which aren’t in xmppoke-frontend either, so I dropped that)
-
pep.
k
-
pep.
composer.json is just python's requirements.txt equivalent✎ -
jonasw
ah
-
pep.
composer.json is just python's requirements.txt's equivalent ✏
-
jonasw
I don’t think there are any requirements
-
pep.
Ok, stripping that out
-
Guus
jonasw: that postgres instance is not in poker, is it?
-
jonasw
Guus, no, it isn’t
-
jonasw
didn’t proceed that far yet, I was about to use my local postgresql instance
-
Guus
that probably explains why my browser is timing out
-
jonasw
uh, but you got the PHP stuff to work?
-
Guus
ah, yeah, php now complains
-
jonasw
amazing!
-
jonasw
care to make a PR?
-
Guus
well, I simply removed everythign I didn't understand and used the apache-based default
-
jonasw
ah, so s/nginx/apache/?
-
Guus
let me show you, one sec
-
Guus
I didn't get that huge startup script - if there was anything important apart from the secrets in there, it's now missing.
-
jonasw
I’m all in for simplicity
-
Guus
also, I _detest_ docker for its installation procedures.
-
Guus
messed up my entire setup :(
-
jonasw
how that?
-
Guus
a) make it run b) make it right.
-
Guus
docker vs docker.io vs docker-ce vs docker-whatever?!
-
jonasw
apt install docker.io docker-compose works for me :/
-
Guus
it complained about mismatched versions (I think your compose uses a version 3, while my executable didn't see beyond 2)
-
Guus
but, whatever. It now runs
-
pep.
`pacman -S docker`? :)
-
Guus
let me PR
-
jonasw
Guus, thank you :)
-
pep.
I'm also having a look btw
-
Guus
PR done
-
Guus
I'm somewhat worried about having passwords in secrets.php - is that visible to end-users?
-
jonasw
I sure hope not
-
jonasw
but I’ll tackle that later
-
jonasw
(I think modifying common.php to include from somewhere non-docrooty should be possible)
-
jonasw
there’s also that huge patch from Holger which needs to be dissected
-
pep.
Guus, that can be hidden by the web server for a start, but yeah otherwise, it's meh
-
Guus
also, php's docker page suggests adding a php.ini, which we're not doing. might be another good improvement
-
Guus
but, lets first make it run
-
jonasw
let’s give this a shot :)
-
Kev
Passwords should come in from envvars.
-
jonasw
they do
-
pep.
jonasw, PHP should get them from envvars
-
jonasw
pep., Guus made it so that they do
-
pep.
I see, right
-
Guus
yeah, that's what I did - I think the upstream code requires them to be in a file though
-
jonasw
doesn’t matter in the end, I think
-
jonasw
I mean this way it’s not even a problem if a user can downloda secrets.php
-
jonasw
because the values aren’t in there
-
jonasw
I’m still not happy how that thing compiles everything from source :/
-
Guus
well, if its interpreted....
-
jonasw
Guus, if it’s interpreted, the values aren’t printed
-
Guus
ah, true.
-
jonasw
neat
-
jonasw
now waiting for my postgres to come up :)
-
pep.
I wonder if there's a way to change the docker-compose conf with args. To not have :80 used locally when testing. But that's a detail
-
jonasw
https://sotecware.net/images/dont-puush-me/1_VdnTsM33q5rg2DBpWfM_XjS4EnHCjjS__RzU9QGsg.png
-
jonasw
neat!
-
jonasw
thanks a lot, Guus
-
Guus
hurray!
-
Guus
I think you did the hard work, jonasw :)
-
jonasw
now I need to get some dependencies in order d)
-
jonasw
Fatal error: Uncaught Error: Call to undefined function idn_to_utf8() in /var/www/html/result.php:25 Stack trace: #0 {main} thrown in /var/www/html/result.php on line 25
-
pep.
jonasw, that's where composer.json comes into play :P
-
jonasw
I think that’s a PHP module
-
Guus
https://hub.docker.com/r/library/php/ <-- has some documentation on how to add extensions
-
jonasw
need to figure out the extension name though
-
pep.
err, PHP
-
Kev
Add php7.1-intl to the apt line.
-
Kev
I think that'll do it.
-
Guus
intl
-
Kev
Oh, it's there already.
-
Guus
exactly
-
Kev
Hmm.
-
jonasw
uhm
-
jonasw
you’re looking at different files
-
Kev
No idea then, that should already be available.
-
jonasw
Kev, guus essentially re-wrote everything
-
Kev
I'm looking at the dockerfile I sent over.
-
jonasw
yeah
-
pep.
Kev, 7.2 with the PR
-
Kev
I shall leave you all to it then.
-
jonasw
:)
-
Kev
I feel pleased I spent that time sorting out the files I sent over :p
-
jonasw
Kev, sorry
-
Guus
I'm not invested in whatever I did
-
Guus
I basically punched it until something worked
-
jonasw
Kev, if you can figure out why it didn’t work, I’m happy to go back to yours, because I’m still a bit uneasy with the PHP docker images.
-
Kev
'PHP docker images'?
-
jonasw
https://hub.docker.com/r/library/php/
-
Kev
Not those ones that mount the source into the image?
-
Guus
I read somewhere that they provide the source as a tarball?
-
Guus
unsure
-
Guus
it runs. :)
-
Guus
jonasw, need me for anything else?
-
jonasw
I don’t think so
-
jonasw
thanks a lot
-
jonasw
and one more apology towards Kev
- Guus wanders off
-
jonasw
yeha
-
jonasw
I just queued the first test :)
-
jonasw
now for the postgresql …
-
jonasw
wat, jabber.org is weird. Pre-TLS, they only offer DIGEST-MD5. Post-TLS, they offer: CRAM-MD5, DIGEST-MD5, LOGIN, PLAIN, SCRAM-SHA-1, SCRAM-SHA-1-PLUS
-
Zash
Wat
-
Zash
Also, wat
-
jonasw
I wonder whether it’s related to this: https://github.com/cyrusimap/cyrus-sasl/issues/379
-
Zash
<starttls xmlns='urn:ietf:params:xml:ns:xmpp-tls'><required/></starttls><mechanisms ... why???
-
Zash
Why offer SASL at all?
-
jonasw
maybe the order isn’t fixed?
-
Zash
Does M-Link use Cyrus SASL?
-
jonasw
dunno
-
Zash
-rfc 6331
-
Bunneh
Zash: Moving DIGEST-MD5 to Historic. A. Melnikov. July 2011. (Status: INFORMATIONAL) https://tools.ietf.org/html/rfc6331
-
jonasw
Zash, is there an ETA for a 0.9 bugfix release?
-
jonasw
I wanna put that in my release notes
-
jonasw
or rather, if you aren’t planning on having such a thing soon, I’ll put that in there
-
Zash
Weeks ago
-
jonasw
ha, okay
-
Zash
Waiting for MattJ to have time to tag+sign a tarball AFAIK
-
jonasw
will the MUC fix be included?
-
Zash
Yes
-
jonasw
thanks for the info :)
-
jonasw
how about 0.10?
-
Zash
Pretty much the same answers
-
Zash
Except being the stable release, we'd also build .debs and such
-
edhelas
Would it be possible to enforce default sizes for the avatars in XMPP ?