Cryptpad support

Support apps
,
1

Mon serveur YunoHost

Matériel: Serveur dédié acheté en ligne
Version de YunoHost: 4.3.6.3
J’ai accès à mon serveur : En SSH | Par la webadmin
Êtes-vous dans un contexte particulier ou avez-vous effectué des modificiations particulières sur votre instance ? : oui
Un peu de configurations diverses pour personnaliser mon instance…

Bonjour

Configurer Cryptpad pour le support par mail

En tentant d’activer la Télémétrie dans Cryptpad et d’accepter de recevoir des conseils des développeurs de Cryptpad, on a un compte-rendu de ce qui peut être amélioré…
Je voulais demander si le test en échec n°15 (2ème de la liste) qui correspond à:
This instance's encrypted support ticket functionality has not been enabled. This can make it difficult for its users to safely report issues that concern sensitive information. This can be configured via the admin panel's Support tab
est possible de résoudre, c’est à dire configurer le mail du support.

Les tests me renvoient ceci:

This instance is running CryptPad v4.11.0.

You appear to be using a firefox/gecko browser on UNIX to view this page.

21 / 25 tests passed.

Details found below

httpUnsafeOrigin and httpSafeOrigin are equivalent. In order for CryptPad’s security features to be as effective as intended they must be different. See cryptpad/config/config.js. Changes to cryptpad/config/config.js will require a server restart in order for /api/config to be updated.
Failed test number 2
Returned value
false
This instance’s encrypted support ticket functionality has not been enabled. This can make it difficult for its users to safely report issues that concern sensitive information. This can be configured via the admin panel’s Support tab.
Failed test number 15
Returned value
“”
/sheet/inner.html does not have the required 'content-security-policy' headers set. This is most often related to incorrectly configured sandbox domains or reverse proxies.
Failed test number 17
Returned value
false
/common/onlyoffice/v4/web-apps/apps/spreadsheeteditor/main/index.html does not have the required 'content-security-policy' headers set. This is most often related to incorrectly configured sandbox domains or reverse proxies.
Failed test number 18
Returned value
false

Quand je vais sur la configuration du Support, j’ai ce message:
Initialisation du support
Vous pouvez configurer une messagerie de support afin de fournir aux utilisateurs de votre instance CryptPad un moyen de vous contacter de manière sécurisée en cas de problème avec leur compte.

Votre serveur n’est pas configuré pour avoir une messagerie de support. Si vous souhaitez activer cette messagerie pour recevoir des messages des utilisateurs, vous devez demander à l’administrateur du serveur d’exécuter le script situé dans “./scripts/generate-admin-keys.js”, de stocker la clé publique générée dans “config.js” puis de vous envoyer la clé privée.

Je me demandait en premier, cette clé ne serait-elle pas celle de la clé publique déjà ajoutée pour être administrateur ? Est-il risquer de lancer ce script ? Est-il possible de configurer ce support et le mail vers l’administrateur de l’instance Cryptpad ??

2

This is the config part you should be looking for:

/var/www/cryptpad//config/config.js

    /*  CryptPad's administration panel includes a "support" tab
     *  wherein administrators with a secret key can view messages
     *  sent from users via the encrypted forms on the /support/ page
     *
     *  To enable this functionality:
     *    run `node ./scripts/generate-admin-keys.js`
     *    save the public key in your config in the value below
     *    add the private key via the admin panel
     *    and back it up in a secure manner
     *
     */
    supportMailboxPublicKey: '',

I haven’t tried it…

3

Ok, I see it is possible from now to do it from the admin console:
https://docs.cryptpad.fr/fr/admin_guide/installation.html#configure-support-mailbox

4

So, I try from the admin panel, I can see a private key in the support but I don’t see the public key. I have also Flush the cache to access the mailbox: General tab > Flush HTTP Cache. But In the file config.js the public key is not edited for supportMailboxPublicKey: '',
I don’t know where I can found it. Or perhaps I need reboot Cryptpad.
Is it possible reboot on ly Cryptpad without rebooting the server itself ?

5

Ok, it seems if I do like this from the admin panel, I don’t need complete this array. When I execute the test I have this:

This instance is running CryptPad v4.11.0.

You appear to be using a firefox/gecko browser on UNIX to view this page.

22 / 25 tests passed.

Details found below

httpUnsafeOrigin and httpSafeOrigin are equivalent. In order for CryptPad’s security features to be as effective as intended they must be different. See cryptpad/config/config.js. Changes to cryptpad/config/config.js will require a server restart in order for /api/config to be updated.
Failed test number 2
Returned value
false
/sheet/inner.html does not have the required 'content-security-policy' headers set. This is most often related to incorrectly configured sandbox domains or reverse proxies.
Failed test number 17
Returned value
false
/common/onlyoffice/v4/web-apps/apps/spreadsheeteditor/main/index.html does not have the required 'content-security-policy' headers set. This is most often related to incorrectly configured sandbox domains or reverse proxies.
Failed test number 18
Returned value
false
7

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.