Logbot | #sandstorm

#sandstorm

AUTO⬇

00:01:55 frigginglorious canuky: not sure if its the best, but heres the easiest
00:02:20 frigginglorious simple php redirect
00:04:25 frigginglorious oh, you might need to remove a C_NAME record from your DNS settings, actually.
00:05:17 canuky ok - great ... will get that updated
01:29:45 * asheesh waves.
01:35:13 canucky Me again - still unclear on what I should do to resolve this issue ... we used to have a landing page at 'oet.tru.ca' - this landing page had a link pointing to oet.sandcats.io:6080 ... made the HTTPS changes, which results in former URL oet.tru.ca giving the DNS TXT message
01:35:49 asheesh Ho canucky !
01:35:59 asheesh I was just going to get in touch with you.
01:36:05 canucky Is a PHP redirect the best way to ensure our users coming in via the old URL (oet.tru.ca) get redirected to oet.sandcats.io?
01:36:14 asheesh You have a few options.
01:37:06 asheesh Oh man, I guess you can't create 'sandstorm-www' TXT records on oet.sandcats.io:6080... since we own that and you don't.
01:37:11 asheesh That's kinda tragic.
01:37:19 asheesh Otherwise I'd "just" suggest you add some DNS TXT records.
01:37:51 asheesh If this server runs nginx, then yeah, I'd set up something on port 6080 that redirects people to a different URL. I'd use nginx for that, and I can try to provide such a config if it helps.
01:37:58 asheesh Also good morning, great to hear from you canucky
01:38:31 canucky Sure - looking for whatever approach may be best
01:38:58 canucky Good afternoon :) ( logged in from the Atlantic Timezone )
01:39:34 asheesh Yeah, I'd go with the nginx (or Apache) redirect approach. If you need help with it, just ask, and I am happy to provide.
01:39:57 asheesh Crucially it sounds like you'll be happiest if Sandstorm does *not* listen on port 6080.
01:41:54 asheesh (You can move Sandstorm to port 80 and port 443!)
01:42:48 canucky That's what I have presentlyt
01:42:54 canucky oet.sandcats.io
01:43:30 asheesh Got it, so then what software is listening on port 6080?
01:44:32 asheesh ... oh you *do* want oet.tru.ca port 80 to redirect to oet.sandcats.io ?
01:44:43 asheesh (port 80 , which would then itself redirect to https, port 443) ?
01:45:36 canucky yes - that's the ticket
01:45:41 asheesh BTW if you want I can hop on a video call and you can show me the conf files.
01:45:49 asheesh But I can also try to draw a diagram.
01:46:12 canucky Sure - videocall would be great
01:46:59 asheesh OK, give me ~ 5 min. Just making sure I know how names<=>usernames are mapping, you're Grant, right? If so then I have your video chat info from last time we talked.
01:47:49 canucky Here's my config https://cryptobin.org/40k3f2z5 ... pw: oet
01:48:30 canucky Yup - Grant here
01:56:31 mnutt__ I don’t suppose anyone has looked into making sandstorm’s web UI work in offline mode? It seems like it may conflict with the iframes implementation?
01:59:22 asheesh I would *love* to see that, and I think it's an architectural question to ask kentonv about.
02:10:45 zarvox Yeah, that sounds like it'd need ServiceWorkers, which would need stable hostnames, and also a way to sandbox ServiceWorkers.
02:11:41 zarvox dwrensha: cool to hear that we no longer need AlignedData with the dummy field!
02:23:12 canuky appears I broke something ... removed 6080 from sandstorm.conf ... rebooted and now getting https://oet.sandcats.io/
02:23:43 asheesh You do still have PORT=80 (and no comma) right?
02:23:53 asheesh I don't know what we do in the case of comma but nothing after it.
02:23:56 asheesh Also read the Sandstorm logs.
02:24:02 asheesh /opt/sandstorm/var/log/sandstorm.log
02:24:31 asheesh I see what we do. We crash.
02:24:31 asheesh Feb 02 18:24:20 rose sandstorm[26770]: *** Uncaught exception ***
02:24:31 asheesh Feb 02 18:24:20 rose sandstorm[26770]: sandstorm/run-bundle.c++:230: failed: invalid config value PORT; portList = 6080,
02:24:34 asheesh Feb 02 18:24:20 rose sandstorm[26770]: stack: 0x4e9523 0x50552c 0x5054f9 0x5054ea 0x4a526f 0x4a4d8a
02:24:49 asheesh (Just tested it on my personal Sandstorm install.)
02:26:03 asheesh canuky: ^
02:26:57 asheesh canuky: Also if you're going to go the static publishing route for doing the redirect, you probably do want port 6080 bound, but you do have the two options anyway.
02:27:03 asheesh Filed https://github.com/sandstorm-io/sandstorm/issues/1456
02:27:22 canuky thx ..
03:17:49 asheesh I hope canuky got his problem solved.
03:22:52 zarvox "TODO(someday): Once UiView tokens can have membrane requirements, we'll need to account for them in this computation."
03:23:01 zarvox Looks like that day is today
03:24:22 dwrensha in permissions.js?
03:25:12 zarvox yeah
03:25:34 dwrensha I think that's going to be ... nontrivial
03:25:38 zarvox ;_;
03:26:24 zarvox Should I put the rest of my Powerbox stuff up for review and punt on that for now, or at least put it in a separate PR, then?
03:28:49 dwrensha Sounds reasonable to me.
03:31:18 asheesh canucky: Howdy
03:31:36 canucky afraid I have myself stuck ... removed 6080 from sandstorm.conf and now having trouble https://oet.sandcats.io
03:31:36 asheesh FWIW will be AFK for a mtg the next 45 min
03:31:55 canucky https://cryptobin.org/70343391 pw: oet
03:40:44 asheesh Great! Is that giving you the results you want? Also semi-AFK until the end of a meeting.
03:41:07 asheesh I noticed you're not listening on port 6080.
03:41:16 asheesh Do you want a Davros/Hacker CMS grain to be around to do that redirect we had mentioned?
03:41:21 asheesh If so, then you need Sandstorm listening on port 6080.
03:41:27 asheesh If you want nginx to do it instead, then that can work too.
03:44:05 canucky Confused as I still expect https://oet.tru.ca:443 to bringup the Dashboard .. no?
03:45:10 canucky sorry https://oet.sandcats.io:443
03:45:16 asheesh Yeah I was just about to clarify that. OK (-:
03:45:27 asheesh Yeah, I 'm surprised to not see this server listening on port 443. Hmm.
03:45:45 asheesh telnet oet.sandcats.io 443
03:45:45 asheesh Trying 206.123.187.3...
03:45:45 asheesh telnet: Unable to connect to remote host: Connection refused
03:46:00 asheesh Can you pastebin me the most recent 100 lines of /opt/sandstorm/var/log/sandstorm.log ?
03:46:15 asheesh It's suspicious, as if maybe you just need to restart Sandstorm to pick up some configuration changes (?)
03:46:27 canucky Give it a shot now 206.123.187.3
03:46:54 asheesh Same problem, seemingly - connection refused.
03:47:17 asheesh I need those logs, I suppose!
03:48:50 canucky https://cryptobin.org/w961r5k2 pw: oet
03:48:56 canucky this is running on ..
03:49:14 asheesh Oh dear, OK. It's failing. So the question is, why is it failing?
03:49:16 asheesh Let me go read run-bundle.
03:49:38 asheesh Hmm.
03:49:56 asheesh Do you have other programs listening on port 80?
03:50:44 asheesh zarvox/kentonv: Is there any good advice for going from "stack: 0x4f1312 0x4f12ca 0x473c1e" into actual line numbers? Should I trust line numbers from a run-bundle crash?
03:52:04 kentonv asheesh: addr2line, but for non-debug builds it won't be able to give you line numbers, but there's a flag (-f?) that will at least give you function names
03:52:46 asheesh Cool, kentonv, that's a big help!
03:53:22 kentonv also I think -C demangles C++ symbols
03:59:00 asheesh canucky: I have to handle something unrelated over the next 30 minutes, but I do want to make sure we get to the bottom of this. So I'll ping you in ~30 minutes and we'll see where we are. I'm also busy 1p-1:30p but can make time outside of that however is needed.
03:59:13 canucky right on - thnx
03:59:36 canucky will keep poking away at this and keep my IRC window open
04:26:06 jadewang wow, lastpass's UI and outdated docs take lack of user testing to a whole new level
04:26:32 jadewang if anyone here writes or packages a lastpass replacement for Sandstorm, I will personally bake you a cake
04:26:42 jadewang it can even be gluten free if you want
04:38:24 mrdomino now *that* is tempting
04:38:51 mrdomino clipperz sounded pretty uninterested in running on sandstorm
04:39:07 mrdomino so i may have to just write like a web wrapper around pass
04:40:25 |jemc| this looks interesting (and likely packageable), though I haven't looked deeper yet: https://github.com/SpiderOak/Encryptr
04:40:28 mrdomino it might even be easier than porting habitrpg
04:41:18 mrdomino oh that looks like a good candidate actually
05:26:26 chezmichel hi
05:26:56 chezmichel i need help for something, maybe you can help me
05:27:34 asheesh Please go ahead!
05:27:44 chezmichel where ?
05:27:52 asheesh I mean please ask your question!
05:28:34 chezmichel i have just install sandstorm but i can go to http://XXXX.sandcasts.io/admin/settings/xxxxxxxxx
05:28:42 chezmichel 404 not found
05:28:59 chezmichel i try to restart service and force token admin and reset but not result
05:29:22 asheesh Huh. I'm on a call right now but let me diagnose with you in about five minutes.
05:29:34 chezmichel okay thx :)
05:29:39 chezmichel take your time
05:29:43 asheesh You got it.
05:35:20 canucky Question about DNS TXT entries ... I have a Ghost site at 4zeu8cyfcqyju4xwggw0.oet.sandcats.io
05:35:50 asheesh chezmichel: Hi! OK so are you willing to share your sandcats hostname with me, first things first?
05:35:57 asheesh canucky: Great, then what's the question? : P
05:36:16 asheesh (but also the Davros app has really really good directions on setting up DNS TXT record stuff, so I would actually try to get a Davros grain working first)
05:36:22 asheesh (props to mnutt for making something massively usable IMHO)
05:36:23 chezmichel hum i don't know
05:36:30 canucky ok ... will look there first
05:36:47 asheesh FWIW I'm the person who wrote the Sandcats software, if that makes you trust me more.
05:36:56 asheesh But anyway you can send it in a private IRC message; don't have to share here, or email to asheesh@sandstorm.io
05:37:21 chezmichel asheesh but in first time i have a htaccess, but i didn't understand what is it
05:37:41 chezmichel so second time i had 404 not found and now all time 404 not found
05:37:54 chezmichel okay thx :)
05:39:06 chezmichel have you got fail2ban in your htaccess ?
05:39:54 asheesh Sandstorm doesn't use fail2ban nor htaccess, fwiw.
05:40:03 chezmichel okay
05:40:45 asheesh If you can tell me your hostname I can try to see what you see, which might result in me being more helpful!
05:40:52 asheesh I'll stop asking about it, but that's one thing anyway.
05:40:56 asheesh When you visit the URL, do you see the Sandstorm logo?
05:40:59 chezmichel chezmichel.sandcat.io
05:41:01 asheesh Or do you see some totally non-Sandstorm thing?
05:41:06 asheesh OK, cool!
05:41:47 asheesh So it looks to me like you have another web server installed as well. Maybe we can figure out how to have that server play nicely with Sandstorm.
05:42:05 asheesh What is the value of PORT=... in /opt/sandstorm/sandstorm.conf ?
05:42:11 asheesh canucky: Cool, keep me posted
05:42:18 asheesh And what is the value of BASE_URL=... in /opt/sandstorm/sandstorm.conf ?
05:42:44 asheesh Typically Sandstorm will set itself up on port 6080 when there's another web server, but it looks like port 6080 is firewalled on that computer, so no one can reach Sandstorm.
05:42:48 chezmichel i think it's my fault
05:43:17 asheesh That's fine; I can help anyway.
05:43:51 chezmichel i look my server because i use VM with promox (NAT, SNAT ...)
05:43:57 chezmichel thx
05:44:19 asheesh proxmox looks great. I wish I had something like that in ~2006 when I was setting up a server for me and some friends.
05:44:29 asheesh Is Sandstorm running on a different VM within the server?
05:44:34 asheesh If so, that might explain things, yeah.
05:44:58 chezmichel sandstorm is just in VM jessie
05:45:27 chezmichel in /opt/sandstorm/sandstorm.conf okay i see
05:45:37 asheesh Great - so then probably it thinks it has port 443 & port 80 available, but isn't reachable over the Internet, and needs some ports forwarded
05:46:00 asheesh FWIW in your case I would start by disabling HTTPS and making HTTP work OK, since that's easier to debug.
05:46:02 chezmichel it's possible to change sandcats.io by my domain ?
05:46:17 chezmichel okay
05:46:18 asheesh https://docs.sandstorm.io/en/latest/administering/ssl/ & https://docs.sandstorm.io/en/latest/administering/reverse-proxy/ discuss how to make HTTP route to the Sandstorm
05:46:33 asheesh Yes it is possible, but note that your Sandstorm domain must have wildcard DNS
05:46:35 chezmichel i know, i use iptables all day
05:46:38 asheesh https://docs.sandstorm.io/en/latest/administering/wildcard/ for info on that
05:46:40 asheesh Great!
05:47:00 chezmichel i have a resolution DNS
05:47:06 chezmichel chezmichel.ovh :)
05:47:13 asheesh Excellent; just make sure there is a wildcard, too!
05:47:19 chezmichel greats
05:47:25 asheesh e.g.
05:47:26 asheesh host example.chezmichel.ovh
05:47:26 asheesh Host example.chezmichel.ovh not found: 3(NXDOMAIN)
05:58:21 chezmichel asheesh
05:58:21 chezmichel asheesh thx for information, i configure iptables, DNS ... and i hope it will be good :)
05:58:31 chezmichel good night
05:59:21 canucky ok, I have a Ghost grain at at 4zeu8cyfcqyju4xwggw0.oet.sandcats.io
06:00:08 canucky My DNS TXT is sandstorm-www.ghost.networkeffects.ca. IN TXT 4zeu8cyfcqyju4xwggw0
06:00:37 canucky ghost.networkeffects.ca. IN CNAME 4zeu8cyfcqyju4xwggw0.oet.sandcats.io
06:01:09 chezmichel okay thx :)
06:01:34 chezmichel good night
06:02:12 canucky But still getting the DNS TXT message ghost.networkeffects.ca ...
06:02:56 asheesh canucky: That should do the trick, but your local DNS resolver might have cached the absence of the entry if you ever missed it.
06:03:07 asheesh Giving it ~30 minutes should typically be enough.
06:05:31 canucky ok - will give it some time ... one more question - have a blank index.html file in Davros, but still not getting the contents listed
06:05:35 asheesh Having said that, it is kind of sad that people run into this all the time.
06:06:03 asheesh A blank index.html really should do the trick, so long as it's non-empty. Would you be willing to share the grain with me and I can take a look? You can type @asheesh in the share box and it should autocomplete.
06:06:07 canucky still trying to resolve that oet.tru.ca redirect issue
06:06:58 asheesh I'm in that pad we were using earlier today
06:07:06 neynah If you missed Drew's Powerbox UI talk! https://youtu.be/8gP9H8cEnlw
06:07:07 canucky just sent
06:07:25 canucky ok - in there too
06:12:53 asheesh Great (-:
06:34:00 asheesh https://news.ycombinator.com/ front page Sandstorm ya
06:34:01 asheesh y
06:34:39 neynah yay!
06:38:20 synchrone @asheesh: can you elaborate why the ua-filtering after all
06:38:29 asheesh Yeah, was just going to get into that on the github issue.
06:38:32 asheesh It's subtle, so here goes.
06:38:34 synchrone (irc format suits for CS sec 101 better :) )
06:38:40 asheesh (agreed)
06:39:02 asheesh (also this like a 501 Experimental Hands-On Research thing, not 101) (-;
06:39:08 asheesh Here are some facts.
06:39:29 asheesh 1. All API tokens get used on the same hostname (api.yoursandstorm.example.com) at the moment.
06:39:46 asheesh 2. The bearer token ("Authorization: Bearer asdfasdfasdfasdfa") is what routes, as well as authorizes the request.
06:40:20 asheesh 2.a. This strikes nearly everyone as crazy but one subtle upside is that it means there's really just one thing, not two things, so there's less room for error.
06:40:51 asheesh 3. CalDAV and CardDAV are treated as "the app exporting an API" to HTTP clients that are not web browsers.
06:41:09 neynah Can someone help nfabellar: https://twitter.com/nfabellar/status/694498170412224512
06:41:13 asheesh Really the definition of API in Sandstorm is, "HTTP requests whose response is not going to be rendered by a browser's normal text/html response processing"
06:41:22 asheesh so far soo good synchrone ? If not, then ask questions now because it gets crazier soon.
06:41:25 asheesh neynah: OK
06:41:36 neynah ty! :D
06:41:56 synchrone so far i'm with you
06:42:00 asheesh Great synchrone.
06:42:14 asheesh So we optionally allow apps to use HTTP Basic auth instead of an "Authorization: Bearer ..." header.
06:42:23 asheesh This does mean that browsers can theoretically render these responses now.
06:42:38 asheesh This results in a few problems.
06:42:47 asheesh 1. "Ambient authorization" aka cross-site request forgery.
06:43:40 asheesh If someone knows that you're using CardDAV on api.oasis.sandstorm.io and you're unlucky enough to have entered the basic auth thing into your browser, and therefore it remembers it,
06:44:16 asheesh someone on attacker.com can make a HTML page
06:44:18 asheesh <img src=
06:44:36 asheesh <img src="https://api.oasis.sandstorm.io/mycarddata&deleteCards=yes">
06:44:47 asheesh and if the app had a bug where GET-ing that resulted in card deletion, then you'd be very sad.
06:44:51 synchrone GET would not be destroying your data and attacker.com won't see the response
06:45:02 asheesh Right, but turns out you can do cross-origin POST as well.
06:45:13 synchrone true
06:45:14 asheesh So now you're really getting somewhere.
06:45:31 synchrone but not see the response... but post might be modifying\deleting
06:45:56 asheesh Right, yeah, modifying & deleting is already pretty bad.
06:46:21 synchrone you'd have to be unlucky enough to auth your browser for Basic... which is wrong but you think it should disallow users by design from harming their own security
06:46:36 synchrone ok i see
06:46:58 asheesh So non-browser clients are great, and all browser clients are a mess. What to do?
06:47:04 synchrone so we'd rather need a way to identify browsers from non-browsers
06:47:17 synchrone on request
06:47:22 asheesh Yeah. There are a few behavioral things we can look for.
06:47:31 asheesh _Maybe_ "Accept: text/html" is enough to tell a browser from a non-browser.
06:47:52 asheesh But then again mobile app WebView would do that.
06:48:37 asheesh Cross-origin POST from a web browser can be detected via the MIME type of the POST.
06:48:50 asheesh But you can't tell it's cross-origin that way, just that it's a browser doing the POST.
06:48:54 synchrone hmm: Request URL:http://addaae64e46fe8a33db23c907715e274.local.sandstorm.io:6080/radicale/owner/calendar.ics \n Request Method:PROPFIND \n Accept:application/xml, text/xml, */*; q=0.01
06:49:16 synchrone so at least okayish browser-based clients do their Accept correctly
06:50:05 synchrone ..but i guess you can control it if you're sending xhr from evil.com ?
06:50:36 asheesh I think modifying headers like that requires pre-flight CORS and we can deny that.
06:50:54 synchrone sooo we're denying CORS on API subdomain?
06:51:43 asheesh I don't actually remember... let me see.
06:51:59 asheesh https://github.com/sandstorm-io/sandstorm/blob/cad4863f3d90123152bb2444c8597c9f390a5e92/shell/server/proxy.js#L838
06:52:29 asheesh Yeah, hmm, we allow XHR CORS to modify the headers, presumably including "Accept"
06:52:33 asheesh (...and User-Agent? Hmm)
06:53:49 synchrone ok, Accept is modifiable in full https://nas.syn.im/index.php/apps/files_sharing/publicpreview?y=1920&x=1080&a=true&scalingup=0&t=oILg3uHHGBzpyYn
06:54:39 asheesh Literally lol'd at "Accept: unicorns"
06:54:52 asheesh What about User-Agent, out of curiosity?
06:55:02 synchrone https://dvcs.w3.org/hg/xhr/raw-file/tip/Overview.html#dom-xmlhttprequest-setrequestheader
06:55:05 synchrone Terminate these steps if header is a case-insensitive match for one of the following headers:
06:55:13 synchrone includes UA but not Accept
06:55:34 asheesh So FWIW this would be drastically easier if CalDAV/CardDAV clients "could just" use an authorization header that browsers don't accept.
06:55:40 asheesh Of course, that's actually a lot to ask, I realize!
06:56:05 synchrone mostly cause *Dav are old and unmaintained and their development is slow ...
06:56:15 synchrone what's called "enterprisey"
06:56:34 asheesh That and approximately no one thinks "Hey, what HTTP needs is special features that we will carefully refuse to implement in web browsers" (-:
06:57:41 synchrone webbrowsers wanna be first-class platforms, and they have the right to
06:57:54 asheesh "well then they can fix their confused deputy problems and then we'll talk"
06:58:01 asheesh But yeah, indeed, HTTP is the web browser protocol.
07:04:15 synchrone what about Origin header
07:04:27 synchrone is it also contained with actual request, not just preflight?
07:05:09 synchrone at least chrome does attach itit
07:05:21 synchrone it's not settable via js
07:05:43 synchrone ok, i'll be back in 2 hrs
07:08:39 asheesh Right; I need to figure out how reliable that is. Thanks for digging into this, synchrone.
07:08:48 asheesh mrdomino: ^ you might find this topic interesting/amusing.
07:23:52 zarvox https://wiki.mozilla.org/Security/Origin indicates some ways you can make an Origin header be present or absent
08:04:40 ocdtrekkie Oops.
08:04:53 ocdtrekkie I was responding to a thing, and asheesh and kentonv were responding to that thing at the same time.
08:05:05 kentonv heh
08:06:46 asheesh ace condition!
08:06:54 asheesh not race - we're all aces!
08:08:58 asheesh Howdy ngf - welcome!
08:19:28 asheesh Hey uh anyone want to give a talk at the Linux Foundation Collaboration Summit?
08:19:31 asheesh http://events.linuxfoundation.org/events/collaboration-summit/program/cfp
08:19:35 asheesh CFP Close: February 2, 2016
08:19:35 asheesh CFP Notifications: February 12, 2016
08:19:44 asheesh I nominate mnutt
08:20:09 asheesh "Distribute software, not SaaS"
08:27:51 asheesh apparently phildini is tentatively interested in going to http://www.linuxfestnorthwest.org/2016/present !
08:29:04 phildini dah. I enjoy talking about webapps, a linux conference seems an amusing place to do so.
08:29:20 asheesh we b apps
08:29:40 frigginglorious I like that. We B Apps. A company has to have already taken that
08:31:10 frigginglorious Hey, do y'all know off hand how much ram the Sandstorm Demo has available when you spin up a test directly from the website?
08:31:49 |jemc| phildini: you live near bellingham, wa? I live about 30 min away from there
08:32:20 phildini hah, no. I live in the Bay Area, similar to most of the Sandcats.
08:32:32 phildini I hear Bellingham is nice, though.
08:33:47 asheesh Oh maybe |jemc| would be especially interested in attending and/or giving a talk and/or running a BoF!
08:34:04 asheesh I missed the word "you" in there.
08:36:45 |jemc| yeah, maybe
08:37:05 |jemc| seems like probably worth going to, since it's so close
08:37:26 asheesh Too close for comfort!!
08:37:29 asheesh Never mind; kidding!
08:39:37 zarvox frigginglorious: "same as any other grain on Oasis" AFAIK, which I think is basically "however much a worker machine has". I don't think we currently cap memory usage, though we do plan to account/bill for it.
08:41:18 digitalcircuit zarvox: in context of the original question, does that include billing for memory usage of app demos?
08:45:14 frigginglorious zarvox: Thanks for that. I have a feeling my digitalocean server could go down if a bunch of peeps log in during a live demo ;)
08:47:06 zarvox digitalcircuit: we don't have anyone to bill in particular for app demos, so doubtful
08:47:12 frigginglorious I wanna see how many people i can get logged into a Groove Basin session to simultaneously stream that song that Darude about the software
08:47:52 frigginglorious that Darude wrote *
08:48:01 digitalcircuit zarvox: alright!
08:48:43 zarvox If you're likely to write a very memory-hungry app and post an appdemo link expecting a lot of traffic, a heads-up would not go unappreciated ;)
08:50:22 frigginglorious Sometime between 6 and 8 PM CST on Feb 16th!
09:19:10 jadewang @nolan @ocdtrekkie you guys are <3
09:19:39 jadewang can I quote excerpts from your HN comments in a blog post?
09:35:00 mnutt__ I keep on meaning to work on the etag / PATCH changes, but have been procrastinating hoping to get some test coverage in place for sandstorm *dav support. I'm thinking of packaging a tiny webdav server spk and then hit it with webdav commands via selenium. Any reason this wouldn't work, or better approaches?
09:36:05 zarvox This is pretty good, and approximately what we do in our integration tests.
09:36:56 zarvox It would be amazingly great if we could integrate it into sandstorm/tests/ , so we can make sure we avoid regressing, since we run those tests for every PR. :)
09:40:52 mnutt__ that would be my plan. it's a little odd that the tests just pull spk's down off apps.sandstorm.io, but I guess there isn't anything wrong with it
09:41:57 zarvox Some tests even install packages from a Davros grain's static publishing folder on Alpha!
09:42:37 zarvox Actually, hmm. Were you planning to make the webdav command requests from the browser, or from the node-that-drives-the-browser?
09:42:57 zarvox and would the tests themselves live in the spk, or in sandstorm/tests?
10:18:51 frigginglorious I just followed the tutorial and packaged a simple diceroller app I wrote for D&D.
10:19:41 frigginglorious Its incredible how easy working with sandstorm is. Seriously amazing.
10:19:47 kentonv :D
10:41:44 mnutt__ zarvox: the tests would be in sandstorm/tests, I guess if it could be done from node-that-drives-the-browser it'd be a bit more efficient
13:01:10 frigginglorious I'm titling my talk: Utilizing Open Source Web Apps Painlessly with Sandstorm.
14:16:24 dalanmiller Hi #sandstorm
14:16:40 dalanmiller I'm having some issues with the Gitlab grain, where can I create an issue? Is there a Github repo?
14:37:19 jadewang hi, lemme grab you the link
14:37:37 jadewang https://github.com/dwrensha/gitlab-sandstorm
14:38:00 jadewang @dalanmiller, you'll want to file the issue on the sandstorm port
14:38:54 jadewang You'll also find a "report issue" link on the app's grain list
14:39:27 jadewang @frigginglorious -- looking forward to your talk!
14:40:44 jadewang @frigginglorious, can you add yourself to the wiki? https://github.com/sandstorm-io/sandstorm/wiki/Sandstorm-Talks
14:43:14 neynah frigginglorious there are blank Sandstorm-themes slides here if you need them: https://docs.google.com/presentation/d/1niJzuaJlC6VmxIVWdi88EP7mvAl6VX3f0vpF70nIf-4/edit?usp=sharing :)
14:43:17 frigginglorious jadewang: I was going to do that after the talk, hopefully there will be a decent video. But yessir I will
14:44:39 jadewang @frigginglorious, if you have a link with RSVP information, we'd love to tweet it out
14:44:45 jadewang (for your talk)
14:50:11 frigginglorious neynah: Thank you, I will be grabbing some of those background images. I was already a fan of Reveal js, but Hacker Slides is far too nice of a tool. Couldnt think of using Google Docs, especially for this!
14:52:16 neynah Np frigginglorious. Yeah, I really should move the slide BGs to a Lychee grain or something more reasonable. :)
14:53:02 jadewang @frigginglorious drenshaw has a trick
14:53:15 jadewang use a davros or hackercms grain to serve the image
14:53:25 jadewang from an obscure url
14:54:11 jadewang and I think Drew's most recent slides has the incantations for how to use bg images in hackerslides
14:54:41 frigginglorious oh yeah, i didnt even think about how to save the images XD
14:55:53 jadewang (I think @paulproteus even uses davros for static publishing)
15:02:59 zarvox
15:03:14 zarvox https://ejx0akq2jxz2vqxsdkw1.oasis.sandstorm.io/slides.md
15:04:41 neynah I've added the slides to a Lychee album if that's more convenient for you :) https://oasis.sandstorm.io/shared/FS2h3qRC5kHRCvlvb1waK0KPg8sQiGbyhmX_7RPcQiL
15:24:00 frigginglorious neynah: Killer! that is bookmarked :)
17:31:28 Tasqa Hi, I was just browsing on the website to see the new apps
17:31:44 Tasqa it seems sandstorm has come a long way since the indiegogo
17:32:07 Tasqa Is there a page somewhere where we can do suggestions for new apps?
19:23:13 synchrone Hi everyone
19:24:47 synchrone i'm trying to package an app with 2 document types in it. I did define multiple actions like framadate app does, but on my dev instance both options actually launch the same action (the last one in the list) https://github.com/synchrone/sandstorm-radicale/blob/master/.sandstorm/sandstorm-pkgdef.capnp#L28
19:25:50 synchrone so in this code, both actions launch .caldavCommand, but if I switch their positions in the actions = [] array - both options start to launch .carddavCommand
19:25:59 sandstormnoob hi
19:26:56 sandstormnoob how do we upgrade the ghost version in the standstorm ? Is there any roadmap to upgrade by the sandstorm team ?
21:31:37 Tcf Is there any idea to build a dashboard for Sandstorm?
21:32:18 Tcf When I'm logged in I get sent to my grains. I would really like to have the possibility to see how much space, feeds etc when I log in
21:32:21 Tcf Just an idea
21:32:55 Tcf Or if you could decide what is your starting page, then you could build an app that is the dashboard
23:13:12 Tcf Today I had some problem playing go on oasis also. it did not register the new moves
23:16:41 Tcf Cannot give you any error message