etherpad 2.2.6

2025-01-13 09:18:13 +01:00 · 2024-12-05 13:20:28 +01:00 · 2024-12-05 13:20:28 +01:00 · f99a1632cd
commit f99a1632cd
parent 7ad3a3356a
5 changed files with 113 additions and 31 deletions
--- a/docker-compose.tmpl.yml
+++ b/docker-compose.tmpl.yml
@ -145,8 +145,8 @@ services:
        - plugin=./repos/bbb-etherpad-plugin
        - skin=./repos/bbb-etherpad-skin
      args:
-        TAG_ETHERPAD: "1.9.4"
-    image: alangecker/bbb-docker-etherpad:1.9.1-s{{ .Env.COMMIT_ETHERPAD_SKIN }}-p{{ .Env.COMMIT_ETHERPAD_PLUGIN }}
+        TAG_ETHERPAD: "2.2.6"
+    image: alangecker/bbb-docker-etherpad:2.2.6-s{{ .Env.COMMIT_ETHERPAD_SKIN }}-p{{ .Env.COMMIT_ETHERPAD_PLUGIN }}
    restart: unless-stopped
    depends_on:
      - redis
--- a/mod/etherpad/Dockerfile
+++ b/mod/etherpad/Dockerfile
@ -7,20 +7,21 @@ RUN apk add git curl

 USER etherpad

-RUN npm install \
-    ep_cursortrace@3.1.16 \
-    git+https://github.com/mconf/ep_pad_ttl.git#360136cd38493dd698435631f2373cbb7089082d \
-    git+https://github.com/mconf/ep_redis_publisher.git#2b6e47c1c59362916a0b2961a29b259f2977b694 \
-    ep_disable_chat@0.0.8 \
+RUN pnpm run plugins i \
+    ep_cursortrace@3.1.18 \
+    ep_disable_chat@0.0.10 \
    ep_auth_session@1.1.1 \
-# remove npm lockfile, because somehow it prevents etherpad from detecting the manual added plugin ep_bigbluebutton_patches
-    && rm package-lock.json package.json
+    --github \
+        mconf/ep_pad_ttl#360136cd38493dd698435631f2373cbb7089082d \
+        mconf/ep_redis_publisher#2b6e47c1c59362916a0b2961a29b259f2977b694
+

 # add skin from git submodule
 COPY --chown=etherpad:0 --from=skin / /opt/etherpad-lite/src/static/skins/bigbluebutton

 # add plugin from git submodule
-COPY --chown=etherpad:0 --from=plugin / /opt/etherpad-lite/node_modules/ep_bigbluebutton_patches
+COPY --chown=etherpad:0 --from=plugin / /ep_bigbluebutton_patches
+RUN pnpm run plugins i --path /ep_bigbluebutton_patches

 COPY settings.json /opt/etherpad-lite/settings.json
 COPY etherpad-export.sh /etherpad-export.sh
--- a/mod/etherpad/entrypoint.sh
+++ b/mod/etherpad/entrypoint.sh
@ -1,5 +1,3 @@
 #!/bin/sh
 echo $ETHERPAD_API_KEY > /tmp/apikey
-export NODE_ENV=production
-
-node /opt/etherpad-lite/node_modules/ep_etherpad-lite/node/server.js --apikey /tmp/apikey
+pnpm run prod --apikey /tmp/apikey
--- a/mod/etherpad/settings.json
+++ b/mod/etherpad/settings.json
@ -140,7 +140,7 @@
   * "full-width-editor" variant (by default editor is rendered as a page, with
   * a max-width of 900px).
   */
-  "skinVariants": "super-light-toolbar super-light-editor light-background",
+  "skinVariants": "",

  /*
   * IP and port which Etherpad should bind at.
@ -162,6 +162,14 @@
   */
  "showSettingsInAdminPage": true,

+  /*
+   * Settings for cleanup of pads
+   */
+  "cleanup": {
+    "enabled": false,
+    "keepRevisions": 5
+  },
+
  /*
   * Node native SSL support
   *
@ -271,6 +279,14 @@
    "pageDown":  true
  },

+  /*
+   * Enables the use of a different server. We have a different one that syncs changes from the original server.
+   * It is hosted on GitHub and should not be blocked by many firewalls.
+   *  https://etherpad.org/ep_infos
+   */
+
+  "updateServer": "https://etherpad.org/ep_infos",
+
  /*
   * Should we suppress errors from being visible in the default Pad Text?
   */
@ -323,14 +339,6 @@
   */
  "soffice": "/etherpad-export.sh",

-  /*
-   * Path to the Tidy executable.
-   *
-   * Tidy is used to improve the quality of exported pads.
-   * Setting it to null disables Tidy.
-   */
-  "tidyHtml": null,
-
  /*
   * Allow import of file types other than the supported ones:
   * txt, doc, docx, rtf, odt, html & htm
@ -364,6 +372,22 @@
   * Settings controlling the session cookie issued by Etherpad.
   */
  "cookie": {
+    /*
+     * How often (in milliseconds) the key used to sign the express_sid cookie
+     * should be rotated. Long rotation intervals reduce signature verification
+     * overhead (because there are fewer historical keys to check) and database
+     * load (fewer historical keys to store, and less frequent queries to
+     * get/update the keys). Short rotation intervals are slightly more secure.
+     *
+     * Multiple Etherpad processes sharing the same database (table) is
+     * supported as long as the clock sync error is significantly less than this
+     * value.
+     *
+     * Key rotation can be disabled (not recommended) by setting this to 0 or
+     * null, or by disabling session expiration (see sessionLifetime).
+     */
+    "keyRotationInterval": 86400000, // = 1d * 24h/d * 60m/h * 60s/m * 1000ms/s
+
    /*
     * Value of the SameSite cookie property. "Lax" is recommended unless
     * Etherpad will be embedded in an iframe from another site, in which case
@ -375,7 +399,51 @@
     * significant usability drawbacks vs. "Lax". See
     * https://stackoverflow.com/q/41841880 for discussion.
     */
-    "sameSite": "None"
+    "sameSite": "None",
+
+    /*
+     * How long (in milliseconds) after navigating away from Etherpad before the
+     * user is required to log in again. (The express_sid cookie is set to
+     * expire at time now + sessionLifetime when first created, and its
+     * expiration time is periodically refreshed to a new now + sessionLifetime
+     * value.) If requireAuthentication is false then this value does not really
+     * matter.
+     *
+     * The "best" value depends on your users' usage patterns and the amount of
+     * convenience you desire. A long lifetime is more convenient (users won't
+     * have to log back in as often) but has some drawbacks:
+     *   - It increases the amount of state kept in the database.
+     *   - It might weaken security somewhat: The cookie expiration is refreshed
+     *     indefinitely without consulting authentication or authorization
+     *     hooks, so once a user has accessed a pad, the user can continue to
+     *     use the pad until the user leaves for longer than sessionLifetime.
+     *   - More historical keys (sessionLifetime / keyRotationInterval) must be
+     *     checked when verifying signatures.
+     *
+     * Session lifetime can be set to infinity (not recommended) by setting this
+     * to null or 0. Note that if the session does not expire, most browsers
+     * will delete the cookie when the browser exits, but a session record is
+     * kept in the database forever.
+     */
+    "sessionLifetime": 864000000, // = 10d * 24h/d * 60m/h * 60s/m * 1000ms/s
+
+    /*
+     * How long (in milliseconds) before the expiration time of an active user's
+     * session is refreshed (to now + sessionLifetime). This setting affects the
+     * following:
+     *   - How often a new session expiration time will be written to the
+     *     database.
+     *   - How often each user's browser will ping the Etherpad server to
+     *     refresh the expiration time of the session cookie.
+     *
+     * High values reduce the load on the database and the load from browsers,
+     * but can shorten the effective session lifetime if Etherpad is restarted
+     * or the user navigates away.
+     *
+     * Automatic session refreshes can be disabled (not recommended) by setting
+     * this to null.
+     */
+    "sessionRefreshInterval": 86400000 // = 1d * 24h/d * 60m/h * 60s/m * 1000ms/s
  },

  /*
@ -475,7 +543,7 @@
  /*
   * Restrict socket.io transport methods
   */
-  "socketTransportProtocols" : ["xhr-polling", "jsonp-polling", "htmlfile"],
+  "socketTransportProtocols" : ["websocket", "polling"],

  "socketIo": {
    /*
@ -485,7 +553,7 @@
     * value to work properly, but increasing the value increases susceptibility
     * to denial of service attacks (malicious clients can exhaust memory).
     */
-    "maxHttpBufferSize": 10000
+    "maxHttpBufferSize": 50000
  },

  /*
@ -550,6 +618,13 @@
   */
  "importMaxFileSize": 52428800, // 50 * 1024 * 1024

+  /*
+    The authentication method used by the server.
+    The default value is sso
+    If you want to use the old authentication system, change this to apikey
+   */
+  "authenticationMethod": "apikey",
+
  /*
   * From Etherpad 1.8.5 onwards, when Etherpad is in production mode commits from individual users are rate limited
   *
@ -566,7 +641,6 @@
    "points": 100
  },

-
  /*
   * Toolbar buttons configuration.
   *
@ -596,6 +670,13 @@
   */
  "loglevel": "INFO",

+    /*
+   * The log layout type to use.
+   *
+   * Valid values: basic, colored
+   */
+   "logLayoutType": "colored",
+
  /* Override any strings found in locale directories */
  "customLocaleStrings": {
    "de": {
@ -633,8 +714,10 @@
  },

  /* Disable Admin UI tests */
-  "enableAdminUITests": false
-}
-
-
+  "enableAdminUITests": false,

+  /*
+   * Enable/Disable case-insensitive pad names.
+   */
+  "lowerCasePadIds": false
+}
--- a/repos/bbb-etherpad-plugin
+++ b/repos/bbb-etherpad-plugin
@ -1 +1 @@
-Subproject commit 068ded573380087e120713d1ccc3c86713ec8c88
+Subproject commit 927747e0e18500f027a91bea2742e6061d388e28