diff --git a/docs/FAQ/Requirements.md b/docs/FAQ/Requirements.md index c060964e2..c929bff5e 100644 --- a/docs/FAQ/Requirements.md +++ b/docs/FAQ/Requirements.md @@ -1,8 +1 @@ -Wekan works on x64. There is not yet version for [Raspberry Pi](https://github.com/wekan/wekan/issues/1053). - -Wekan requires MongoDB 3.2.x . For other requirements and versions see [VirtualBox scripts](https://github.com/wekan/wekan-maintainer/tree/master/virtualbox) or [Dockerfile](https://github.com/wekan/wekan/blob/main/Dockerfile). - -Known bugs with other versions: -- Node 6.x: 100% CPU usage. -- MongoDB 3.4.x: Wekan crashes when uploading attachment. -- [Hardened kernel prevents creating new Wekan boards at Sandstorm](https://github.com/wekan/wekan/issues/1398) +WeKan Requiremens are at https://wekan.github.io/install/ \ No newline at end of file diff --git a/docs/Platforms/FOSS/Sandstorm/Sandstorm.md b/docs/Platforms/FOSS/Sandstorm/Sandstorm.md index f01edb0d3..16da6ef70 100644 --- a/docs/Platforms/FOSS/Sandstorm/Sandstorm.md +++ b/docs/Platforms/FOSS/Sandstorm/Sandstorm.md @@ -1,7 +1,12 @@ +- At some cases [Hardened kernel may prevent creating new Wekan boards at Sandstorm](https://github.com/wekan/wekan/issues/1398) + # Sandstorm at Debian and Ubuntu ### Sandstorm CloudFlare DNS settings +Sandstorm works when configured to full domain, with CloudFlare SSL/TLS, with Caddy. +Not subdomain, not sub-url, and not with Let's Encrypt that AFAIK does not support wildcard SSL/TLS. + Source: https://github.com/sandstorm-io/sandstorm/issues/3714#issuecomment-2366866243 For me, it works at CloudFlare DNS using TLS Strict checking and DNS setting clicking to orange cloud icon to make TLS proxy with Origin certificate, that is at /etc/caddy/certs/example.com.pem with above private key and below cert. @@ -13,17 +18,52 @@ DNS records: ``` Caddyfile, proxy to KVM VM that is running Debian and Sandstorm: ``` +# Full domain where Sandstorm login is. Not subdomain. Not sub-url. *.example.com example.com { tls { load /etc/caddy/certs alpn http/1.1 } + # If KVM VM, it's IP address: + #reverse_proxy 123.123.123.123:80 + # Localhost port 81, when not in KVM VM + reverse_proxy 127.0.0.1:81 +} - reverse_proxy 123.123.123.123:80 +blog.somecompany.com { + tls { + load /etc/caddy/certs + alpn http/1.1 + } + # Blog hosted at Sandstorm WordPress + reverse_proxy 127.0.0.1:81 +} + +othercompany.com { + tls { + load /etc/caddy/certs + alpn http/1.1 + } + # Website hosted at Sandstorm Hacker CMS + reverse_proxy 127.0.0.1:81 } ``` -At /opt/sandstorm/sandstorm.conf is domain, http port etc. +If having Sandstorm inside of KVM VM: https://github.com/wekan/wekan/blob/main/docs/Platforms/FOSS/Snap/Many-Snaps-on-LXC.md +At /opt/sandstorm/sandstorm.conf is domain where Sandstorm login is, http port etc. +``` +SERVER_USER=sandstorm +PORT=81 +MONGO_PORT=6081 +BIND_IP=127.0.0.1 +BASE_URL=https://example.com +WILDCARD_HOST=*.example.com +UPDATE_CHANNEL=dev +ALLOW_DEV_ACCOUNTS=false +SMTP_LISTEN_PORT=25 +#SANDCATS_BASE_DOMAIN=sandcats.io +#HTTPS_PORT=443 +``` Some related info at: https://github.com/wekan/wekan/wiki/Caddy-Webserver-Config