00:38 <zarvox> liam: !!! wow!

00:51 <Pilori> Hello, can anybody kindly assist me with a issue im having for viewing a sandstorm spreadsheet?

00:56 <isd> Pilori: Hi! Maybe; could you elaborate? What's the issue? What are app are you using?

00:58 <Pilori> Hello, I am not using any form of app. Im basically trying to access the sandstorm spreadsheet that lists the admin log in info required for my job. I send a token to the email I am logged into in order to view the sheet. The tab is shown on the bottom, however, the content of the sheet is a blank white page. I have tried clearing my browsers cache

00:58 <Pilori> with no luck. any advice?

01:00 <isd> This is something someone else has shared with you? (there's *some* app that's implementing it; sandstorm doesn't have spreadsheets "built in", though if someone's sent you a link I can see that you might not know)

01:01 <Pilori> Yes, someone has shared the link with me for work purposes.

01:02 <isd> Could you send a screenshot? Hard to guess at the problem without knowing the app or even being able to look at it

01:03 <Pilori> sure, no problem.

01:03 <isd> Also, I've got to head out fairly soon. If we can't figure it out by then and no-one else responds tonight, you might have better luck during the week; the core team isn't as active on the weekends, but they're super responsive during the week.

01:04 <isd> Hmm, I actually just opened one of my own ethercalc spreadsheets and got the same thing

01:05 <Pilori> https://drive.google.com/file/d/0Bz8GdM_Hp_wFempDcHhybDJwT1k/view?usp=sharing

01:05 <Pilori> yes, its a blank white page right?

01:06 <isd> Yeah, looks just like that..

01:06 <isd> What browser are you using? I'm getting that in firefox, about to try chromium

01:06 <Pilori> im using chrome at the moment

01:06 <isd> I bet I will be unsuccessful then :(

01:07 <Pilori> (T T)

01:08 <Pilori> Well, I dont want to keep you from doing what you gotta do. I can simply explain to my client that I was not able to access the sheet if anything. Im just glad to hear that Im not the only one experiencing this at the moment.

01:08 <isd> Yeah, same thing in chromium

01:09 <isd> asheesh: I will likely be gone when you get back to your computer. Might want to investigate this when you do.

01:09 <isd> And yeah, I think it's time for me to leave.

01:09 <Pilori> No problem. Will it be okay to send this chat log to my client for proof that I have contacted support?

01:10 <isd> Pilori: fine with me. Note that the channel is publicly logged, so you can just link to the public version if you want (in the topic).

01:11 <Pilori> Okay, thank you.

01:11 <isd> You're welcome

01:29 <asheesh> Pilori & isd: sudo sandstorm update # probably

01:29 <asheesh> Let me dig up some changelogs.

01:30 <asheesh> Per https://github.com/sandstorm-io/sandstorm/blob/master/CHANGELOG.md we did a release on Sep 10 that broke Ethercalc. We did a release today (11th Sep) that fixes it. Sorry about the mess there, and thanks to everyone who reported it.

01:30 <asheesh> Most servers auto-update within 24 hours, so tomorrow the problem may be gone.

01:31 <asheesh> If you do run into this issue with Sandstorm v0.182 or v0.183 then it's a different problem which we don't already know about and which is very important.

01:34 <Pilori> Hello, thank you kindly for the feedback, I will let my client know.

02:58 <Pilori> Just a update, we are able to view the spreadsheet now. Thank you very much.

03:00 <asheesh> Pilori: Great! You're welcome.

23:14 <liam> are Collections broken currently? It's stuck in a websocket retry/closed loop

23:14 <dwrensha> eek

23:14 <liam> collections v 1.1.1 and `sudo sandstorm update` is up to date

23:15 <dwrensha> does the browser console display any error message?

23:16 <liam> no, only 'Grain still in use; staying up for now.'

23:19 <zarvox> Seems to be working fine locally for me. Do websockets work for your server, in general?

23:20 <zarvox> what do you get if you type "Meteor.connection._stream.socket.protocol" in the JS console of your browser, on a Sandstorm page?

23:20 <dwrensha> yeah, Collections definitely needs websockets

23:21 <liam> I see "xhr-polling"

23:21 <zarvox> ahhhh, looks like websockets are not working at all. is there a proxy between you and Sandstorm, or are you connecting directly?

23:22 <zarvox> (I get "websocket" where you have "xhr-polling", FWIW)

23:22 <liam> There's a proxy. I've got nginx in between, nginx forwards any wildcard domain to the ssl version, and the ssl version uses http_proxy

23:22 <zarvox> Ahhhh, you probably need the upgrade handler to proxy websockets.

23:23 <zarvox> https://docs.sandstorm.io/en/latest/administering/faq/#how-do-i-enable-websockets-proxying-or-why-do-some-apps-seem-to-crash-reload

23:24 <liam> oh yeah i didn't even look at the nginx example conf, i just winged it lol

23:24 <liam> i didn't do too bad xD

23:24 <zarvox> :D

23:25 <zarvox> Let me know if that sorts things out or if you'd appreciate a second pair of eyes on anything

23:30 <liam> that fixed it, thanks

23:31 <liam> ( i still see "xhr-polling" but i'm not going to complain because it works :P)

23:32 <zarvox> might need the same treatment in the non-wildcarded domain? *shrug*

23:33 <liam> they are in the same server block

23:43 <liam> zarvox, re phabricator-ss #8, signing the package: i'm a bit hesitant to do this because I think it's misleading. I'm "claiming responsibility," which isn't particularly special, and, more importantly, doesn't prevent tampering with the .spk. That's why I'm using detached signatures now. It verifies the entire .spk is tamperless

23:49 <zarvox> .spk files are always signed by the app key; only you are capable of producing an SPK that validates as signed with that key

23:49 <liam> the app key?

23:50 <zarvox> .spk files that have been tampered with already won't pass the app-id signature check

23:50 <zarvox> the appId in sandstorm-pkgdef.capnp is a public key

23:51 <liam> ecc, fancy. i thought it was just random uuid to prevent apps overwriting each other

23:51 <zarvox> you have the private key in $HOME/.sandstorm/sandstorm-keyring

23:52 <liam> now i'm obligated to tamper with one and find out :P

23:53 <zarvox> Anyway, by having all spks be signed by app keys, it keeps anyone from being able to publish a malicious update to an app you already have installed, and provides a basis for cryptographically connecting a human-intelligible identity to that artifact :)

23:53 <liam> mk, thanks for the explanation :)

23:54 <zarvox> I applaud your general caution, though!