<kentonv>
linkdd, you installed Sandstorm to two different locations, right? If so the mongo instances shouldn't have any way of finding out about each other, so it's really weird that they'd complain about having the same replica set name.
<linkdd>
kentonv: yes two different locations, and i remember when i was setting up replica set with mongo that the name was used to find nodes automatically in the same network (it still need a rs.join tho)
<linkdd>
so it seems that there is an issue with the replica set configuration
<kentonv>
linkdd, did you reconfigure Mongo's port number after initial installation?
<linkdd>
yes, it is set to 8061 instead of 6081
<kentonv>
ok, I think the problem is that Mongo doesn't like it when its port number changes. It thinks that it's a different member of the replica set and that the master is still on the original port.
dwrensha_kiwi has joined #sandstorm
<kentonv>
I can reproduce this on my machine with only one Sandstorm instance running
<kentonv>
if I change the port number in sandstorm.conf and restart, I get the same error you get
<linkdd>
i started mongod manually to change the replica set configuration but maybe i failed :p
<linkdd>
dwrensha_kiwi: that's what i did
<linkdd>
i'll try again without changing the replica set name this time
dwrensha_kiwi has quit [Client Quit]
<kentonv>
linkdd, does this Sandstorm instance have data in it?
<kentonv>
if it's a fresh install, you could wipe and re-install and make sure to set the port number in the install script.
<linkdd>
kentonv: no data yet
<kentonv>
ok. If you set the port number at install time, it shouldn't have any problems. It only gets mad if it starts up once with one port number, then changes later.
<linkdd>
ok
<linkdd>
there is no variable for it in the install.sh, i'll edit it and make a pull request
<linkdd>
kentonv: anyway, thanks for the amazing work on sandstorm
<kentonv>
linkdd, if you do a type-2 install it will prompt for it
<linkdd>
nice
<kentonv>
hmm but I guess a type-2 install doesn't do sandcats
<kentonv>
I would suggest making a one-time edit to change the default in the install script
aldeka_limechat has quit [Remote host closed the connection]
aldeka_limechat has joined #sandstorm
<linkdd>
kentonv: it works like a charm, thanks <3
<linkdd>
kentonv: would you be interested in an ansible playbook instead of an install.sh ? i could work on it
<linkdd>
and it would be easier to configure before install
<kentonv>
that would require that people are running ansible, though, right?
aldeka_limechat has quit [Ping timeout: 268 seconds]
<linkdd>
yes, but it would be more accessible to sys-admins
<linkdd>
sandstorm is actually the only thing not managed by ansible on my server
<kentonv>
I would be open to providing it as an option. I wouldn't want to get rid of install.sh, though.
<mokomull>
"more accessible to a certain kind of sys-admins"
<mokomull>
does not include everybody :)
<linkdd>
:p
samba_ has joined #sandstorm
_whitelogger has joined #sandstorm
samba_ has quit [Ping timeout: 240 seconds]
NwS has joined #sandstorm
efishta has joined #sandstorm
ShalokShalom has quit [Quit: No Ping reply in 180 seconds.]
ShalokShalom has joined #sandstorm
bennyw has joined #sandstorm
bennyw has quit [Client Quit]
samba_ has joined #sandstorm
frew has quit [Ping timeout: 258 seconds]
jemc has quit [Ping timeout: 276 seconds]
samba_ has quit [Ping timeout: 252 seconds]
jemc has joined #sandstorm
frew has joined #sandstorm
prettyvanilla has joined #sandstorm
prettyvanilla_ has quit [Ping timeout: 240 seconds]
ShalokShalom has quit [Quit: No Ping reply in 180 seconds.]
ShalokShalom has joined #sandstorm
efishta has quit [Remote host closed the connection]
Lionel_Debroux has quit [Ping timeout: 240 seconds]
cozy-user31 has quit [Ping timeout: 240 seconds]
ShalokShalom_ has joined #sandstorm
ShalokShalom has quit [Ping timeout: 276 seconds]
ShalokShalom_ has quit [Read error: Connection reset by peer]
jemc has quit [Ping timeout: 240 seconds]
ill_logic has quit [Quit: ill_logic]
ecloud_wfh is now known as ecloud
afuentes has joined #sandstorm
elensil has joined #sandstorm
afuentes has quit [Ping timeout: 258 seconds]
afuentes has joined #sandstorm
Jan2 has joined #sandstorm
Jan\ has quit [Ping timeout: 240 seconds]
FredFredFred_ has joined #sandstorm
FredFredFred has quit [Ping timeout: 255 seconds]
FredFredFred has joined #sandstorm
FredFredFred_ has quit [Ping timeout: 240 seconds]
ceiphas has joined #sandstorm
<ceiphas>
hi!
<ceiphas>
is there a possibility to crate folders for grains? i do a lot of documents of the same type in sharelatex and want to group them a bit
FredFredFred_ has joined #sandstorm
FredFredFred has quit [Ping timeout: 268 seconds]
bodisiw has joined #sandstorm
FredFredFred has joined #sandstorm
FredFredFred_ has quit [Ping timeout: 240 seconds]
<dwrensha>
ceiphas: the Collections app provides something like folders
<dwrensha>
ceiphas: we've also considered maybe allowing "tagging" of grains, so you could perform filtered searches
<dwrensha>
... but you can roughly achieve the same thing today by including a [tag] string in the grain title
<ceiphas>
dwrensha: that is what i'm doing atm, but tagging or folders would be much appreciated
<dwrensha>
which are you doing? Collections app or grain-title pseudo-tagging?
<ceiphas>
title pseudo tagging, but the title gets rather long, and i have dozens of grains with similar titles
FredFredFred_ has joined #sandstorm
FredFredFred has quit [Ping timeout: 252 seconds]
samba_ has joined #sandstorm
bodisiw has quit [Quit: Leaving]
TML__ is now known as TML
Psy-Q has joined #sandstorm
jemc has joined #sandstorm
samba_ has quit [Ping timeout: 256 seconds]
samba_ has joined #sandstorm
<Psy-Q>
we're looking at running sandstorm for our users (university students and staff) so they have a self-service portal for web apps. but because the containers can't reach the outside world, some web apps are pretty crippled compared to "full" versions (e.g. wordpress, can't install themes from theme marketplace)
<Psy-Q>
is this something that's being worked on? maybe with a sort of whitelist of hosts per app?
FredFredFred_ has quit [Ping timeout: 240 seconds]
<realitygaps>
the wordpress is a fork anyways right?
wolcen has joined #sandstorm
aldeka_limechat has joined #sandstorm
Telesight has joined #sandstorm
FredFredFred_ has joined #sandstorm
FredFredFred has quit [Ping timeout: 268 seconds]
Jan\ has joined #sandstorm
Jan2 has quit [Ping timeout: 260 seconds]
FredFredFred has joined #sandstorm
FredFredFred_ has quit [Ping timeout: 252 seconds]
FredFredFred_ has joined #sandstorm
FredFredFred has quit [Ping timeout: 240 seconds]
FredFredFred has joined #sandstorm
FredFredFred_ has quit [Ping timeout: 256 seconds]
afuentes has quit [Ping timeout: 245 seconds]
leeola has joined #sandstorm
samba_ has joined #sandstorm
<leeola>
I'm curious, what feature(s) of sandstorm make use of wildcard domains so much? From a home-deployment side, that seems to be the most complex, imo
<leeola>
I know sandstorm has offerings to mitigate the complexity, but if i want to run an internal-only sandstorm, it seems quite complex
<leeola>
Well that doesn't really explain it though, other than security. Are paths / ports insecure or something?
isd has joined #sandstorm
<leeola>
I'd guess paths are just complex, and ports are not big enough
<dwrensha>
back in the early days, in 2014, Sandstorm actually did use ports
<dwrensha>
it behaved really weirdly for apps that tried to used localStorage
<dwrensha>
like, one grain would get opened with another grain's local storage, because Sandstorm was reusing the host/port
wolcen has joined #sandstorm
<leeola>
ah hah
<leeola>
Appreciate the insight
bodisiw has quit [Quit: Leaving]
<leeola>
Hmm, is a fully offline sandstorm environment even possible? I'm seeing to even install sandstorm i need to either send emails or login with google/etc. I had hoped i could create an admin account (with identity provider, user/pass), and then not allow signups after that unless i manually create a new one myself
<leeola>
I am reading posts discussing this issue, so it sounds like you can't, but i'm just trying to make sure
<isd>
leeola: I think the only offline-only auth option is the dev accounts, which don't actually do any authentication, and are (as advertized) only suitable for dev.
<leeola>
Alright, thanks for the confirmation. Bummer
<dwrensha>
leeola: you could run your own LDAP server
<dwrensha>
you should be able to install sandstorm without creating a user
_-___-_ has joined #sandstorm
_-___-_ has left #sandstorm [#sandstorm]
<samba_>
dwrensha: is there any doc about ldap server + sandstorm?
<dwrensha>
we used to charge $$ for it, so some of the docs might outdatedly refer to the need for a "feature key"
<samba_>
is still a "for work" feature, or is now open ?
<samba_>
also, should I install a sep openldap server and then configure sandstorm right?
<samba_>
*separated
<kentonv>
dwrensha, I think I updated all the docs, but not old blog posts
<kentonv>
samba_, "Sandstorm for Work" doesn't exist anymore -- all of its features are now part of the regular Sandstorm build.
samba_ has quit [Ping timeout: 240 seconds]
foxmask has joined #sandstorm
<foxmask>
o/
<foxmask>
would it be interesting to have an app like IFTTT.com to the collection of the existing apps ?
FredFredFred_ has joined #sandstorm
FredFredFred has quit [Ping timeout: 260 seconds]
<kentonv>
foxmask, we want to port Huginn at some point, but we need to do more work allowing apps to talk to the outside world through the Powerbox, otherwise it's not very useful.
<leeola>
is there a stupidly simple ldap server compatible with sandstorm that anyone recommends? Never ran one before, and am looking to avoid complexity (hence looking into sandstorm)
<dwrensha>
leeola: when I was playing around with it, I used openldap. I would not describe it as stupidly simple.
<dwrensha>
someone should implement an LDAP server sandstorm app
<mokomull>
I'm not sure I want to teach Sandstorm how to proxy X.500 over CapnP
<dwrensha>
I was imagining low-level proxying over TcpPort
<mokomull>
oh, heh, I didn't know that existed >_< I haven't touched much more than HTTP
<isd>
I remember setting up openldap being... not fun. I don't know of a good alternative (or, actually, any alternative) though.
isd has quit [Quit: Leaving.]
<mokomull>
If you ignore the parts where the documentation tells you to use the LDIF format for configuration, it's not terrible. Just don't use the ancient BDB backend.
<kentonv>
FWIW I think SAML is superior to LDAP, but it's even harder to set up.
<mokomull>
I haven't found enough things that support SAML for me to have messed with that one yet.
jadewang has quit [Remote host closed the connection]