Where communities thrive


  • Join over 1.5M+ people
  • Join over 100K+ communities
  • Free without limits
  • Create your own community
People
Repo info
Activity
  • 17:08

    albogdano on master

    fixed minor UI issues readme fixed a possible NPE and 3 more (compare)

  • 10:25
    b-morgenthaler opened #35
  • 10:25
    b-morgenthaler opened #35
  • Apr 02 22:10
    albogdano closed #32
  • Apr 02 22:10
    albogdano closed #32
  • Apr 02 15:24

    albogdano on master

    moved /api.html to /apidocs in … readme added new options to enable cus… (compare)

  • Apr 01 23:25
    albogdano closed #34
  • Apr 01 23:25
    albogdano closed #34
  • Apr 01 23:25

    albogdano on master

    readme added new options to customize … (compare)

  • Apr 01 19:42
    Travis Erudika/scoold (master) fixed (187)
  • Apr 01 19:37

    albogdano on master

    updated Para client to 1.37.0 added webhooks CRUD API (REST h… (compare)

  • Apr 01 17:15
    albogdano labeled #34
  • Apr 01 17:15
    albogdano labeled #34
  • Apr 01 17:15
    albogdano opened #34
  • Apr 01 17:15
    albogdano opened #34
  • Apr 01 15:32
    Travis Erudika/scoold (master) still failing (186)
  • Apr 01 15:30
    Travis Erudika/scoold (master) still failing (185)
  • Apr 01 15:28

    albogdano on master

    updated landing page (compare)

  • Apr 01 15:27

    albogdano on master

    updated landing page (compare)

b-morgenthaler
@b-morgenthaler
but still, the main issue is fixed :-)
Alex Bogdanovski
@albogdano
yey!
b-morgenthaler
@b-morgenthaler
I am out... see you around for the next rare issue ;-)
Alex Bogdanovski
@albogdano
see you later!
sawyerw-cadwell
@sawyerw-cadwell
@albogdano is there the ability to add a spell-checker to the application?
Or would that be handled completely by the browser?
Alex Bogdanovski
@albogdano
@sawyerw-cadwell no, because that's usually handled by the browser
sawyerw-cadwell
@sawyerw-cadwell
OK thanks!
sawyerw-cadwell
@sawyerw-cadwell
Do you need me to enter the feature request to allow attachments other than images?
Alex Bogdanovski
@albogdano
that's on the todo list already, so no
sawyerw-cadwell
@sawyerw-cadwell
OK :)
Alex Bogdanovski
@albogdano
sawyerw-cadwell
@sawyerw-cadwell
Ah, I did not check on pro :)
sawyerw-cadwell
@sawyerw-cadwell
Is there a way to add a custom link in either the header or footer? I see in the section about UI Customization that I can clone the repo and edit the files, but how would I get those changes to reflect in pro?
Alex Bogdanovski
@albogdano
@sawyerw-cadwell that is not currently possible in Pro without having access to the source code
sawyerw-cadwell
@sawyerw-cadwell
OK thanks.
Alex Bogdanovski
@albogdano
what kind of link do you want to add?
sawyerw-cadwell
@sawyerw-cadwell
Our company is coming up with internal guidelines on the best way to use Scoold. We wanted an easy link to a Google drive file or something like that for easy reference.
We can just post it on our Intranet site instead.
Alex Bogdanovski
@albogdano
:thumbsup:
sawyerw-cadwell
@sawyerw-cadwell
Would you be able to provide us with a custom .jar that has a question mark icon in the header (probably to the right of the user dropdown) that links to /help ?
I setup an nginx redirect to the Intranet site for /help
Alex Bogdanovski
@albogdano
I'll add support for a customizable box in the header. you will be able to edit its HTML
sawyerw-cadwell
@sawyerw-cadwell
OK thanks!
Alex Bogdanovski
@albogdano
@sawyerw-cadwell you can now modify the contents of the welcome header using para.welcome_message = "Hello and welcome to <a href='https://scoold.com'>Scoold</a>!"
pikrakpzu
@pikrakpzu

Hello!

Yesterday we had security tests of our installation of ScooldPro, and we must fix few things.

Starting with most relevant:

  1. How to disable read access for anonymous users?
  2. How to change auth cookie to 15min of user inactivity? While logged in at morning it still alive after ~4 hours.
  3. How to disable image uploads? Until we secure them with anti virus we can not use them. Images are checked only for valid extensions, that allows to upload any files with a virus signature.
  4. How to disable /api and /api.html? Tried with para.api_enabled = false but they were still available. While disabled /api/questions response was 403 Unauthenticated access is that correct?
  5. How to generate API key? Followed https://github.com/Erudika/scoold#rest-api but can't see that part under Administration page.
  6. What does environment property HOME = /root visible in Administration page means? How to change it?

Until we fix them we have no permission to start even within internal network. :(

Thanks in advance!

Alex Bogdanovski
@albogdano
@pikrakpzu
  1. para.is_default_space_public = false
  2. para.session_timeout = 900 (seconds, default is 24h in seconds)
  3. will be possible in the next release (soon)
  4. /api and /api.html will be disabled in the next release (thanks!)
  5. keys can only be generated when para.api_enabled = true. to generate a key manually you need to generate a JWT signed with your para.app_secret_key this is also explained in the README
  6. that's just an env variable from your OS - not controlled by Scoold
pikrakpzu
@pikrakpzu
Thanks a lot!
I will apply these settings and let you know if everything works.
Alex Bogdanovski
@albogdano
@sawyerw-cadwell Additionally, you will be able to edit the links in the footer:
# footer HTML - add your own links, etc.
para.footer_html = "<a href=\"https://my.link\">Link</a>"
# show standard footer links
para.footer_links_enabled = true
sawyerw-cadwell
@sawyerw-cadwell
Great, thanks @albogdano
Do I need to download a new version of Scoold pro?
Alex Bogdanovski
@albogdano
yes, but it's not released yet. I'll probably release it tomorrow
sawyerw-cadwell
@sawyerw-cadwell
OK perfect.
Thanks for the quick fix!
Alex Bogdanovski
@albogdano
you're welcome!
b-morgenthaler
@b-morgenthaler
@sawyerw-cadwell for your internal guideline, just a thought (and that's how we handled it): we use sticky questions with all info, users need to know to get started with Scoold Pro.
@albogdano a user (non admin user) asked what the space "all spaces" is for. I wasn't aware that this space is existing, since I didn't configure it (at least not on purpose) and I don't see it (as admin user I see the "default space" at the place where regular user see the "all spaces"). any idea?
Alex Bogdanovski
@albogdano
@b-morgenthaler it shows aggregated posts from all your spaces
mainly questions and users
admins have full access to all spaces so it's not visible
b-morgenthaler
@b-morgenthaler
Ok. So this is by design for all regular users
Alex Bogdanovski
@albogdano
yes
b-morgenthaler
@b-morgenthaler
Understood, thanks
sawyerw-cadwell
@sawyerw-cadwell
OK thanks @b-morgenthaler
sawyerw-cadwell
@sawyerw-cadwell
@albogdano when going to /questions/favtags
And you have no favorite tags, it throws a critical error
Can you update to say something like "You do not have any favorite tags set".
2020-04-03 10_01_38-Cadwell Q&A _ We'll fix this... eventually. - Opera.png
Alex Bogdanovski
@albogdano
@sawyerw-cadwell thanks for the bug report. I'll fix that