ClearFlask
FeedbackRoadmapChangelog

Report an issue

Similar
Anon71f29
ย ย ย 

element-attribute violations(s): {img =[]}

We are carrying out the assessment through a self-managed installation.
We are experiencing an issue uploading some media and it is not saved. It appears in the edit but as soon as we click save it disappears.
We use AWS S3 instead of localstack (*same with localstack and got the same error).
I was able to verify that the file is sent to the aws s3 bucket... so we load the log from the server name container, and I see the following error:
14:23:35.222 [http-nio-8080-exec-6] INFO c.s.c.web.security.Sanitizer - HTML policy violation(s) for devops-zzzr7 idea id test-790, element attribute violations: {img =[]}
I use ClearFlask on:
  • [X] Self-hosted (Own domain)
  • [ ] Cloud (clearflask.com)
  • [ ] Haven't tried (yet)
My financial contributions to ClearFlask:
  • [X] I use a free Plan
  • [ ] Thinking about it
  • [ ] Monthly / Yearly Plan
  • [ ] Lifetime Plan
I'd be willing to implement this feature:
  • [ ] Yes
ย 6
Accepted
Matus Faro
ย ย ย 

Notification sanitization is too strict

Notifications are sanitized too strictly with [^A-Za-z0-9 ]+ that makes it impossible for non-english languages to have meaningful notifications including CJK.
ย 1
Accepted
Anonc957b
ย ย ย 

Unable to upload images correctly in the feedback

I am trying to upload images in a feedback, but it would be like this: I found that the image has been successfully uploaded, but when retrieving the image, the URL does not have a port number. So I add the a port number to this property. Now I can see the image on the preview. But after submitting, the image is missing.
I use ClearFlask on:
  • [โˆš] Self-hosted (Own domain)
  • [ ] Cloud (clearflask.com)
  • [ ] Haven't tried (yet)
My financial contributions to ClearFlask:
  • [โˆš] I use a free Plan
  • [ ] Thinking about it
  • [ ] Monthly / Yearly Plan
  • [ ] Lifetime Plan
This is high priority request:
  • [ ] Yes
ย 1
Accepted
Anon7614a
ย ย ย 

Using custom status as Completed

Originally clearflask has a builtin completed status in roadmap task category, but if I delete it and use any other custom status as completed, then the mechanism "completed tasks can be added to announcement on next page" will break because announcement management does not know which status is "completed", so it will mistakely show tasks that can be linked to but with wrong status. I think you may want to add a config to setup a "completed" status just as the "entry status".
ย 1
Considering
Anon7614a
ย ย ย 

Problems of managing users and admins

I found there're might be two systems/mechanisms of user management. One is signing up from xxxx.com/login page and this will by default create a new project with that user and make him as owner. Another is with OAuth/SSO or manually added by the owner, which belongs to current project.
My requirement is, there should be only one project, it has one owner and multiple admins, other normal users should create there account with OAuth. I tested and found following problems:
  1. Cannot directly add existing account as project admin (in the teammate page), I have to send invitation email to the corresponding email address of that user, and he has to do sign up again from the invitation url, he cannot use the existing OAuth created account to login to dashboard as this account has no way to set password (maybe the real reason is there're two different accounts, described below). But because I want only one project, it is better to not allow signing up after initializing the first project.
  2. Actually when signing up the email being input do not really need to be the same as the address which received the invitation, so it seems the user owns two accounts now, one for dashbord admin of the project, another for frontend usage of the same project. Even though the user input same email as his frontend OAuth account, these are still two different accounts, and the admin user has to remember yet another password. The good news is if he use same email, then jumping from dashboard to frontend will automatically use the corresponding frontend account.
  3. After adding new user in the dashboard (ADD button in xxxx.com/dashbord/users), it cannot login from the xxxx.com/login entry and it always says email or password incorrect. It seems this is just a frontend account so cannot login from backend. However there's no way to directly login a frontend account using email and password, so I don't know what's the meaning of manually adding users in the dashboard, is it just used for on-behalf things? Another bug is after deleting this manually created user from dashboard and trying to sign up using the same email, it says the email already exists, so it looks like it's not really deleted, but still exists in database.
ย 3
Considering
Anonc957b
ย ย ย 

How to enable https with a self-signed certificate

I deployed ClearFlask on an intranet server, so I cannot use Let's Encrypt. Is it possible to use a self-signed certificate to enable HTTPS?
ย 2
Accepted
Anon7614a
ย ย ย 

ScyllaDB will fail due to unsupported TransactWriteItems operation

The readme document recommended using ScyllaDB as an alternative of AWS DynamoDB, so I tried but got the following error:
com.amazonaws.services.dynamodbv2.model.AmazonDynamoDBException: Unsupported operation TransactWriteItems (Service: AmazonDynamoDBv2; Status Code: 400; Error Code: UnknownOperationException; Request ID: null; Proxy: null)
I found that ScyllaDB indeed didn't implement some of the DynamoDB API, including this TransactWriteItems (see https://opensource.docs.scylladb.com/stable/alternator/compatibility.html#unimplemented-api-features)
So I have to use either AWS official services or localstack. ClearFlask is still under evaluation in my team so AWS might not be an affordable way.
I'm not sure if it's a bug and whether clearflask is still compatible with ScyllaDB, as the error message came from aws package, I guess it might because the package had been updated when rebuilding the docker image and it will use these new APIs.
ย 1
Accepted
Anonc957b
ย ย ย 

How to Upload Feedback Using the API๏ผŸ

I want use the api /project/{projectID}/idea api to Upload Feedback, and I keep getting 403 Forbidden response code. It seems that I have to log in to send Feedback. I want to add user feedback functionality to a desktop application, Is there any why to achieve this?
ย 5
Accepted
Sanjeed
ย ย ย 

Is there a helm chart available for this?

To deploy on Kubernetes
ย 1
Accepted
Anon7614a
ย ย ย 

Can I update translation directly with self-host docker instance?

I just want to know if I can use docker volume to easily update any file of the docker instance then update the translation on the fly (withour any build/rebuild), or maybe the only way is to submit a new PR?
I'd like to contribute for the Chinese Simplified translation. I found the currrent translation is not complete and some words are not accurate.
ย 5
Accepted
Nick Douma
ย ย ย 

SMTP send error using self-host option

Using the self-host docker-compose file and the latest clearflask-server image (with digest ed1f3a04bec9), and an external SMTP server configured as such:
# Select generic SMTP ('smtp') or Amazon SES ('ses')
com.smotana.clearflask.core.push.provider.EmailServiceImpl$Config.useService=smtp
# For SMTP
com.smotana.clearflask.core.push.provider.EmailServiceImpl$Config.smtpStrategy=SMTP
com.smotana.clearflask.core.push.provider.EmailServiceImpl$Config.smtpHost=outgoing.server.net
com.smotana.clearflask.core.push.provider.EmailServiceImpl$Config.smtpPort=587
com.smotana.clearflask.core.push.provider.EmailServiceImpl$Config.smtpUser=user@tld.com
com.smotana.clearflask.core.push.provider.EmailServiceImpl$Config.smtpPassword=xxxx
com.smotana.clearflask.core.push.provider.EmailServiceImpl$Config.emailDisplayName=Clearflask
com.smotana.clearflask.core.push.provider.EmailServiceImpl$Config.fromEmailLocalPart=noreply
com.smotana.clearflask.core.push.provider.EmailServiceImpl$Config.fromEmailDomainOverride=company.com
com.smotana.clearflask.core.push.provider.EmailServiceImpl$Config.bccEmails=nick.douma@company.com
I seem to get an error about building the email body, a class cast exception from multipart_mixed to a DataContentHandler:
clearflask-server_1   | 14:29:57.645 [pool-28-thread-1] ERROR o.s.i.util.concurrent.NamedRunnable - Failed to run sendMail process
clearflask-server_1   | org.simplejavamail.mailer.internal.MailerException: Failed to send email [ID: '<1617344838.3.1706797737574@21f994d5da02>'], reason: Unknown error
clearflask-server_1   | 	at org.simplejavamail.mailer.internal.SendMailClosure.handleException(SendMailClosure.java:85)
clearflask-server_1   | 	at org.simplejavamail.mailer.internal.SendMailClosure.executeClosure(SendMailClosure.java:76)
clearflask-server_1   | 	at org.simplejavamail.mailer.internal.AbstractProxyServerSyncingClosure.run(AbstractProxyServerSyncingClosure.java:56)
clearflask-server_1   | 	at org.simplejavamail.internal.util.concurrent.NamedRunnable.run(NamedRunnable.java:40)
clearflask-server_1   | 	at java.base/java.util.concurrent.CompletableFuture$AsyncRun.run(CompletableFuture.java:1736)
clearflask-server_1   | 	at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128)
clearflask-server_1   | 	at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628)
clearflask-server_1   | 	at java.base/java.lang.Thread.run(Thread.java:829)
clearflask-server_1   | Caused by: java.lang.ClassCastException: class com.sun.mail.handlers.multipart_mixed cannot be cast to class jakarta.activation.DataContentHandler (com.sun.mail.handlers.multipart_mixed and jakarta.activation.DataContentHandler are in unnamed module of loader org.apache.catalina.loader.ParallelWebappClassLoader @2e237e39)
clearflask-server_1   | 	at jakarta.activation.MailcapCommandMap.getDataContentHandler(MailcapCommandMap.java:620)
clearflask-server_1   | 	at jakarta.activation.MailcapCommandMap.createDataContentHandler(MailcapCommandMap.java:591)
clearflask-server_1   | 	at jakarta.activation.DataHandler.getDataContentHandler(DataHandler.java:591)
clearflask-server_1   | 	at jakarta.activation.DataHandler.writeTo(DataHandler.java:290)
clearflask-server_1   | 	at jakarta.mail.internet.MimeBodyPart.writeTo(MimeBodyPart.java:1683)
clearflask-server_1   | 	at jakarta.mail.internet.MimeMessage.writeTo(MimeMessage.java:1911)
clearflask-server_1   | 	at org.eclipse.angus.mail.smtp.SMTPTransport.sendMessage(SMTPTransport.java:1305)
clearflask-server_1   | 	at org.simplejavamail.mailer.internal.util.TransportRunner.lambda$sendMessage$0(TransportRunner.java:61)
clearflask-server_1   | 	at org.simplejavamail.mailer.internal.util.TransportRunner.runOnSessionTransport(TransportRunner.java:81)
clearflask-server_1   | 	at org.simplejavamail.mailer.internal.util.TransportRunner.sendMessage(TransportRunner.java:56)
clearflask-server_1   | 	at org.simplejavamail.mailer.internal.SendMailClosure.executeClosure(SendMailClosure.java:69)
clearflask-server_1   | 	... 6 common frames omitted
clearflask-server_1   | 	Suppressed: jakarta.mail.MessagingException: Exception reading response
clearflask-server_1   | 		at org.eclipse.angus.mail.smtp.SMTPTransport.readServerResponse(SMTPTransport.java:2509)
clearflask-server_1   | 		at org.eclipse.angus.mail.smtp.SMTPTransport.close(SMTPTransport.java:1401)
clearflask-server_1   | 		at org.simplejavamail.mailer.internal.util.TransportRunner.runOnSessionTransport(TransportRunner.java:82)
clearflask-server_1   | 		... 8 common frames omitted
clearflask-server_1   | 	Caused by: java.net.SocketTimeoutException: Read timed out
clearflask-server_1   | 		at java.base/java.net.SocketInputStream.socketRead0(Native Method)
clearflask-server_1   | 		at java.base/java.net.SocketInputStream.socketRead(SocketInputStream.java:115)
clearflask-server_1   | 		at java.base/java.net.SocketInputStream.read(SocketInputStream.java:168)
clearflask-server_1   | 		at java.base/java.net.SocketInputStream.read(SocketInputStream.java:140)
clearflask-server_1   | 		at java.base/sun.security.ssl.SSLSocketInputRecord.read(SSLSocketInputRecord.java:478)
clearflask-server_1   | 		at java.base/sun.security.ssl.SSLSocketInputRecord.readHeader(SSLSocketInputRecord.java:472)
clearflask-server_1   | 		at java.base/sun.security.ssl.SSLSocketInputRecord.bytesInCompletePacket(SSLSocketInputRecord.java:70)
clearflask-server_1   | 		at java.base/sun.security.ssl.SSLSocketImpl.readApplicationRecord(SSLSocketImpl.java:1454)
clearflask-server_1   | 		at java.base/sun.security.ssl.SSLSocketImpl$AppInputStream.read(SSLSocketImpl.java:1065)
clearflask-server_1   | 		at org.eclipse.angus.mail.util.TraceInputStream.read(TraceInputStream.java:107)
clearflask-server_1   | 		at java.base/java.io.BufferedInputStream.fill(BufferedInputStream.java:252)
clearflask-server_1   | 		at java.base/java.io.BufferedInputStream.read(BufferedInputStream.java:271)
clearflask-server_1   | 		at org.eclipse.angus.mail.util.LineInputStream.readLine(LineInputStream.java:104)
clearflask-server_1   | 		at org.eclipse.angus.mail.smtp.SMTPTransport.readServerResponse(SMTPTransport.java:2489)
clearflask-server_1   | 		... 10 common frames omitted
I've tried all non-TLS and TLS mechanisms supported. When dumping the packets, it seems that the connection goes correctly until the STARTTLS command, and after that nothing is else is sent until the remote server closes the connection. Seems like something goes wrong with building the sender/recipient, or the email body.
Am I configuring this wrong, or is this a bug?
ย 5
Accepted
Anon7614a
ย ย ย 

Some more confusions about voting and comment

  1. When using "I want this" instead of simple arrow, it will not show the voting count, and the be-lit-on button will return to grey after refreshing, is this an expected behavior? Why?
  2. When adding comment, the comment itself will automatically has one upvote, is this an expected behavior? Why?
  3. When deleting a comment, the comment will be marked as deleted and still be shown at its original place, and there's no way to completely remove/clear it, is this an expected behavior? Why?
  4. There's no cancel button when editing a comment, I think the simple way could be clicking any blank area to exit editing mode without saving it.
I found clearflask is powerful but really needs more documents to explain its design, especially for these puzzling things, thanks.
ย 4
Accepted
Anon7614a
ย ย ย 

Cannot add more than 10 tags

When adding more than 10 tags to a category in admin dashboard, the dashboard UI will start having some confusions and when click PUBLISH button it will raise error Connection failure processing configSetAdmin. Then when refresh the page another error Connection failure processing configGetAllAndUserBindAllAdmin will raise and the dashboard could never be accessible again even after restarting the services. That means this bug will break the whole site.
ย 3
Accepted
Adam Kuล›mierz
ย ย ย 

Error executing 'CREATE FUNCTION

Hi, I can see the following errors in the logs:
Error executing 'CREATE FUNCTION vote_wilson
(...)
END  ' (line 34): FUNCTION vote_wilson already exists
Error executing 'CREATE FUNCTION exp_decay
(...)
END  ' (line 21): FUNCTION exp_decay already exists
Is this something I should be worried about?
ย 5
Accepted
Anon5b743
ย ย ย 

SMTP Connection

I've just installed a docker based instance and am encountering issues configuring SMTP. This instance is from the latest docker containers ( ghcr.io/clearflask/clearflask-server:latest ) or rather a copy from yesterday.
My configuration:
com.smotana.clearflask.core.push.provider.EmailServiceImpl$Config.smtpStrategy=SMTP_TLS
com.smotana.clearflask.core.push.provider.EmailServiceImpl$Config.smtpHost=smtp.sparkpostmail.com
com.smotana.clearflask.core.push.provider.EmailServiceImpl$Config.smtpPort=587
com.smotana.clearflask.core.push.provider.EmailServiceImpl$Config.smtpUser=SMTP_Injection
com.smotana.clearflask.core.push.provider.EmailServiceImpl$Config.smtpPassword=redacted
com.smotana.clearflask.core.push.provider.EmailServiceImpl$Config.emailDisplayName=displayname
com.smotana.clearflask.core.push.provider.EmailServiceImpl$Config.fromEmailLocalPart=noreply
com.smotana.clearflask.core.push.provider.EmailServiceImpl$Config.fromEmailDomainOverride=redacted.com
the container itself (clearflask-server) can connect (have tested with nmap) on the cli. However when the web app tries to connect I see logs such as:
Caused by: javax.mail.MessagingException: Could not connect to SMTP host: smtp.sparkpostmail.com, port: 587 Caused by: javax.net.ssl.SSLHandshakeException: No appropriate protocol (protocol is disabled or cipher suites are inappropriate)
The server requires TLSv1.2 which is not mentioned as disabled in the java.security file and it seems likely this is the correct configuration and a "workable" situation.
openssl s_client -connect smtp.sparkpostmail.com:587 -starttls smtp
Server response snippit:
-----END CERTIFICATE----- subject=CN = *.sparkpostmail.com
issuer=C = US, O = DigiCert Inc, OU = www.digicert.com, CN = RapidSSL TLS RSA CA G1
No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA Server Temp Key: ECDH, P-256, 256 bits
SSL handshake has read 4579 bytes and written 473 bytes Verification: OK
New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES256-GCM-SHA384
An item I see that may be an issue is the wildcard certificate?
I have followed a suggestion from a previous query on this topic and added the following env var to the server container, however am not seeing any related logs.
`JAVA_OPTS="-Djavax.net.debug=ssl"`
I have also followed the email providers suggestions, no joy: https://support.sparkpost.com/docs/faq/smtp-connection-problems
Can anyone provide some additional suggestions for debugging?
ย 3ย ย ย ย 7
Accepted
Tomek
ย ย ย 

Crash when customising the public feedback filtering by category:task and status:ideas

Description When customising the public feedback filtering by category:task and status:ideas, the app crashes.
To Reproduce
  1. Go to Settings > Advanced > Layout > Feedback > Explorer
  2. Set default filtering: category:task and status:ideas
  3. Save changes
  4. Go to public view of feedback/feature requests
Expected behaviour The public feedback list has default filters on.
Screenshots
ย 2
Accepted
Tomek
ย ย ย 

Can't add tags to the task

Problem: Task tagging doesn't work. Editing only works if I have previously imported a file with tagged tasks.
ย 1
Accepted
Adam Kuล›mierz
ย ย ย 

Log Level

Hi, how can I change the log level of the server as it generates a lot of DEBUG and TRACE messages. I have tried adding - JAVA_OPTS="-Dorg.slf4j.simpleLogger.defaultLogLevel=WARN -Dlog4j.rootLogger=WARN" to docker environments but to no luck. I'm using docker-compose.self-host.yml.
ย 1
Accepted
Anon1e45f
ย ย ย 

Integrate with Meilisearch

It would be interesting to add the possibility of integration with Meilisearch as an alternative to ElasticSearch.
ย 1
Accepted
Abdennour Alem
ย ย ย 

User not persisted after restart

It's something really weird, but user is actually not persisted after restarting the docker containers. Default stack with localstack and all volumes are persisted on the host, same way as the docker-compose.yml of the repo. Is there anything to set in config ?
ย 2
Accepted
Abdennour Alem
ย ย ย 

Unable to create another project

Hi !
First, thanks about this awesome tool. I have an issue about creating a second project.
As you can see in the above image, it seems that the domain is conflicting with my other projet. But the portal domain input is not editable. So I have change my other project domain and subdomain as follow:
But I am still getting the issue and nothing seems to fix it.
ย 6
Accepted
Arthur Nascimento
ย ย ย 

Discussing architecture

Hello, discovered clear flask in this discussing in reddit: https://www.reddit.com/r/aws/comments/yh6bzf/aws_solution_to_unlimited_custom_domain_for/
I'm interested to know, how your implementation of having custom domain for customer is working.
Can you contact me in my email? arthurnascimentolauck@gmail.com
Thank you!
ย 4
Accepted
Anon43357
ย ย ย 

Announcements must be saved as a draft before they can be published

I use the cloud version of ClearFlask. As soon as I try to publish a newly created announcement via the primary "Submit" button, nothing happens. You have to save the article as a draft beforehand. After that, the primary button works as expected.
I noticed that this only happens when the switch to inform subscribers is activated.
ย 2
Accepted
Anon9e525
ย ย ย 

Image upload leaves broken picture

Our team has a self hosted clearflask instance behind an nginx proxy server. It is working fine but every time we want to upload an image the only thing being shown is this:
According to our Nginx logs the upload resulted in an HTTP 200
SOME_VALID_IP - - [18/Apr/2023:14:35:25 +0000] "POST /api/v1/project/OUR_PROJECT_ID/content/upload HTTP/2.0" 200 313 "https://clearflask.VALID_DOMAIN_NAME.dev/dashboard/feedback" "Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/112.0"
SOME_VALID_IP - - [18/Apr/2023:14:35:26 +0000] "POST /api/v1/project/OUR_PROJECT_ID/content/upload HTTP/2.0" 200 312 "https://clearflask.VALID_DOMAIN_NAME.dev/dashboard/feedback" "Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/112.0"
SOME_VALID_IP - - [18/Apr/2023:14:35:26 +0000] "POST /api/v1/project/OUR_PROJECT_ID/content/upload HTTP/2.0" 200 313 "https://clearflask.VALID_DOMAIN_NAME.dev/dashboard/feedback" "Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/112.0"
SOME_VALID_IP - - [18/Apr/2023:14:35:26 +0000] "POST /api/v1/project/OUR_PROJECT_ID/content/upload HTTP/2.0" 200 315 "https://clearflask.VALID_DOMAIN_NAME.dev/dashboard/feedback" "Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/112.0"
SOME_VALID_IP - - [18/Apr/2023:14:35:26 +0000] "POST /api/v1/project/OUR_PROJECT_ID/content/upload HTTP/2.0" 200 312 "https://clearflask.VALID_DOMAIN_NAME.dev/dashboard/feedback" "Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/112.0"
We already tried our best to disable all restrictions for the nginx instance with no luck, i mean the 200 code did not change, but pictures are still broken.
Also while filtering through our clearflask logs we did not find any suspicious things at first glance: (our IP's and company name were removed) logs.txt
The docker-compose we are using is this one: (as txt file because github does not support .yml files in messages it seems) (ENV variables are set and working!) docker-compose.yml.txt
Any help or advice would be appreciated as we cannot really find similar problems on the internet.
ย 7
Accepted
SuperDev
ย ย ย 

Clearflask connect has hardcoded values

Hi, our team doesn't like that the values are hardcoded, and as such makes it impossible to deploy on our infastructure. Would you happen to have a way or solution to solve this problem?
Any help is appreciated. Thanks in advance.
ย 8
Accepted
Powered byย 
ClearFlask