Comments (4)
Is there any backup strategy or jsut the backup of the regular databases?
I do backup the database and the files (webdav) (see here for my personal setup that includes Davis)
can this services be integrated with a SSO proxy like authentik?
So far no (You're talking about the admin part, right?)
is there a way to check the user disk usage or the user data?
Not now, but that would be a nice feature I guess (the disk usage). What do you mean by 'user data'?
what is the use of login with a user into http://192.168.178.7:9000/dav/?
It's just an UI, provided by SabreDAV, that allows to interact directly in the browser with the DAV implementation
once you login, how do you disconnect the session?
Admin: by login out in the menu
DAV: you don't "really" log out, it's HTTP Auth (so the credentials are sent by your browser with each request)
if you could make some variable for a default config like allowing TODOs and note into calendars
A variable that would allow or disallow the usage of VEVENT,VTODO,VJOURNAL
for every calendar ?
, or how big the numbers of calendars/entries in the address book
Do you mean a limit to the number of calendars or entries that users can create ?
if you could do it reading some variables for the user from the LDAP then an extra few points for that.
The only limitation to this is that I'm pretty much a n00b in LDAP, but why not!
from davis.
Is there any backup strategy or jsut the backup of the regular databases?
I do backup the database and the files (webdav) (see here for my personal setup that includes Davis)
ok, got it. I have to admit that this would not be my preferred solution, because something like a database upgrade or switch to another infraestructure can be problematic if there is not any easy way to port the data.
can this services be integrated with a SSO proxy like authentik?
So far no (You're talking about the admin part, right?)
both parts, the admin and also the user part for the *dav protocols. I am having the feeling that it would be wise not to expose this service to internet without an extra security layer, and i was thinking into authentik with a sso as a solution.
are you exposing this service to internet? what is your feeling about that. Personally i am a bit worried about brute force attacks into an account.
is there a way to check the user disk usage or the user data?
Not now, but that would be a nice feature I guess (the disk usage). What do you mean by 'user data'?
the current data synchronized to the backend. The idea is to avoid abuse or even in case of the account is hacked to check if somebody is uploading tons of "not allowed" data to the account.
what is the use of login with a user into http://192.168.178.7:9000/dav/?
It's just an UI, provided by SabreDAV, that allows to interact directly in the browser with the DAV implementation
once you login, how do you disconnect the session?
Admin: by login out in the menu DAV: you don't "really" log out, it's HTTP Auth (so the credentials are sent by your browser with each request)
and when you log with a regualar user credential?
if you could make some variable for a default config like allowing TODOs and note into calendars
A variable that would allow or disallow the usage of
VEVENT,VTODO,VJOURNAL
for every calendar ?
at least a variable to set the default config.
, or how big the numbers of calendars/entries in the address book
Do you mean a limit to the number of calendars or entries that users can create ?
for example
if you could do it reading some variables for the user from the LDAP then an extra few points for that.
The only limitation to this is that I'm pretty much a n00b in LDAP, but why not!
i am asking those questions because in my use case i selfhost for my family and some friends (around 10 ligght users, not very tech savvy) and even if those numbers are not really high, it can easily became a burden the manual configuration / problem resolution for each of them. so i try automatize everything and i need to maintain always the idea of wrong password leaked into my concerns.
So thanks a lot for your answes
from davis.
are you exposing this service to internet? what is your feeling about that. Personally i am a bit worried about brute force attacks into an account.
I am, and I'm feeling ok. The security is strong enough (given you have strong passwords) to avoid the casual, passing-by hacker. If someone wants to target me personally, they would have far easier ways to do so from which I can't really protect myself, so I wouldn't be concerned by a simple, reasonably safe login form.
That being said, I'm currently investigating authelia (for other services), so I might add an option for that (ie: OIDC) on the admin part. For the regular user, the *dav protocol doesn't permit it, so 🤷🏼
The idea is to avoid abuse or even in case of the account is hacked to check if somebody is uploading tons of "not allowed" data to the account.
Got it. I might look into it, but it's not a priority. Happy to review a PR though.
and when you log with a regualar user credential?
That's what I said: you don't "really" log out, it's HTTP Auth (so the credentials are sent by your browser with each request). If you want to log out, clear your browser session I guess?
at least a variable to set the default config.
It'd be possible I guess, yes
Do you mean a limit to the number of calendars or entries that users can create ?
I'm not sure it makes sense. Calendars grow because past events are not deleted, so I wouldn't limit the number of events. Same for contacts. I don't really see what you'd be trying to mitigate here
from davis.
Do you mean a limit to the number of calendars or entries that users can create ?
I'm not sure it makes sense. Calendars grow because past events are not deleted, so I wouldn't limit the number of events. Same for contacts. I don't really see what you'd be trying to mitigate here
here i am more concerned about a calendar taking gigas of space because somebody is uploading files to the events. even if you limit the size of the attached files you only need to split the undesired file into pieces to bypass this soution.
In the end the most practical thing is to hard limit the space and/or add watchers for the space.
Dont know, perhaps i am bit too strict/paranoid here.
from davis.
Related Issues (20)
- (Possibility to) hide version number on public page HOT 1
- [Bug] Deleting shared calendar leads to exception for viewing the shared calendars HOT 4
- Specifying admin user via LDAP HOT 2
- new install - 500 error on startup - no db tables created HOT 4
- are you aware of the problems with google and microsoft .ics files? HOT 10
- LDAP password is logged in clear text HOT 15
- Password storage for LDAP and IMAP login HOT 1
- sabre framework response with error 500 with PHP 8.2 HOT 13
- [Feature Request] Let public calendars be shareable
- Geo-Request not Working HOT 8
- `AddressBookType` class does not exist HOT 2
- DAVx5 cannot connect a new account to v4.2.0 HOT 16
- Logging directory with davis version 4.2.x HOT 2
- Username could not be found HOT 10
- Recreate a deletet user: Internal server error HOT 3
- Upgrade with MySQL backend : "Data too long for column 'carddata'" HOT 5
- Authorization in admin ui HOT 5
- [Crosspost] Have a calender to be subscribable without authentication HOT 6
- LDAP: Bind failed HOT 10
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from davis.