FYI - you're sharing links that use HTTP and require logging in. There are no redirects to HTTPS, s

FYI - you're sharing links that use HTTP and require logging in. There are no redirects to HTTPS, so it's not the safest as credentials may be shared in plaintext.
Also, not sure where you got universal.blue.discourse.group from - I believe it should be universal-blue.discourse.group

FFerociously Cuddly Zee using 545 here

RobertOP•12/2/23, 11:17 PM

Sorry, I mean Bluefin, Bazzite, main etc

RRobert Sorry, I mean Bluefin, Bazzite, main etc

Ferociously Cuddly Zee•12/2/23, 11:17 PM

oh right using Bazzite lol forgive me I thought I was in the Bazzite channel I can move there if thats better

RobertOP•12/2/23, 11:22 PM

@KyleGospo would be better to answer this I'm afraid...

I think you should be able to rebase to ghcr.io/ublue-os/bazzite-nvidia:39-20231130ghcr.io/ublue-os/bazzite-nvidia:39-20231130, which will be before we enabled the v545 builds, but you will no longer receive updates until you rebase back onto the original image

Maybe would be best to ask the question in the Bazzite channel and Kyle or someone else who daily-drives Bazzite would be able to help

RRobert @KyleGospo would be better to answer this I'm afraid... I think you should be a...

Ferociously Cuddly Zee•12/2/23, 11:24 PM

cool will do sorry for asking in the wrong place lol

RRobert FYI - you're sharing links that use HTTP and require logging in. There are no r...

RobertOP•12/2/23, 11:26 PM

Am I looking in the right place? I can't seem to find it...
https://universal-blue.discourse.group/c/general/4?ascending=false&order=activity

Universal Blue

General

Feel free to leave feedback, ask questions, and hang out!

RRobert FYI - you're sharing links that use HTTP and require logging in. There are no r...

j0rge•12/2/23, 11:46 PM

oh thanks, fixing

RobertOP•12/2/23, 11:48 PM

I've taken on a new role at my company focused on cybersecurity, so a login page on http is a major red flag. These now stand out much more than they did before

j0rge•12/2/23, 11:48 PM

I think that was a wrong url

j0rge•12/2/23, 11:48 PM

now the post is totally missing?

RobertOP•12/2/23, 11:49 PM

I couldn't see the post at all. Your link went to a ublue login page, and I didn't want to proceed.

And I couldn't see one on the other site

j0rge•12/2/23, 11:49 PM

yeah I think that was the old instance

j0rge•12/2/23, 11:49 PM

the URL was wrong, it was an old bookmark or something

j0rge•12/2/23, 11:51 PM

I fixed my bookmarks, I'll repost

j0rge•12/2/23, 11:56 PM

ok there we go!

RobertOP•12/2/23, 11:56 PM

Perfect! Links work

j0rge•12/2/23, 11:57 PM

anything else I should add?

RobertOP•12/2/23, 11:57 PM

I think that's everything. 4.8.0 was in the images for a couple hours, so I doubt it will break anyone's workflows

as in I doubt anyone is using anything introduced in 4.8.0

j0rge•12/2/23, 11:58 PM

yeah, but also it's nice to have a saving throw

�

𝒃𝒓𝒊「𝘴𝘩𝘦/𝘩𝘦𝘳」•12/3/23, 2:52 AM

I’m wondering if/where I or we could document this https://github.com/ublue-os/bling/issues/77 somewhere. It’s caused by having installed 1Password and/or its CLI via the RPM packages before — if you integrate 1Password into your ostree image via bling, but you’ve ever installed the RPM packages on a deployment before, the GIDs won’t match and it’ll complain

GitHub

1password CLI doesn't work · Issue #77 · ublue-os/bling

Despite I've enabled 1password CLI integration, it says: [ERROR] 2023/11/25 22:32:53 connecting to desktop app: read: connection reset, make sure 1Password CLI is installed correctly, then open...

�

𝒃𝒓𝒊「𝘴𝘩𝘦/𝘩𝘦𝘳」•12/3/23, 2:55 AM

I wrote a simple script that I put in a GitHub gist in the last comment that will renumber the groups to whatever they should. Like, maybe we could put it in some kind of FAQ or something?

�

𝒃𝒓𝒊「𝘴𝘩𝘦/𝘩𝘦𝘳」•12/3/23, 2:59 AM

I also wonder what others think about this https://discord.com/channels/1072614816579063828/1084120222400774325/1180667556432969738

In short, 1Password silently crashes if it’s integrated on your image and rpm-ostree deploys an update. I think what’s going on is that 1Password thinks it’s being tampered with and panics/dies, because the destination of the /opt/1Password symlink gets shuffled around

j0rge•12/3/23, 2:59 AM

https://universal-blue.discourse.group/c/general/4

Universal Blue

General

Feel free to leave feedback, ask questions, and hang out!

j0rge•12/3/23, 3:00 AM

post it there and tag it with documentationdocumentation

�

𝒃𝒓𝒊「𝘴𝘩𝘦/𝘩𝘦𝘳」•12/3/23, 3:00 AM

Sounds good, thanks!

j0rge•12/3/23, 3:01 AM

it's awesome, it categorizes them like this: https://universal-blue.discourse.group/docs

but each one also has a thread of discussion so you could do all the "working session" stuff in the comments but the user just sees the final page. All you need to do is set your post to wiki

Docs - Universal Blue

Planting the flag for the next generation Linux desktop

�

𝒃𝒓𝒊「𝘴𝘩𝘦/𝘩𝘦𝘳」•12/3/23, 3:41 AM

i can't figure out how to set it to wiki https://universal-blue.discourse.group/t/fix-faq-1password-browser-extension-and-cli-don-t-work-in-my-custom-image/187/1

Universal Blue

[fix/faq] 1Password Browser Extension and CLI don’t work in my cust...

Fix for incorrect GIDs for onepassword and onepassword-cli groups on a custom image Symptoms (See also ublue-os/bling issue #77) You’ve integrated 1Password into your custom image, but its integration between the desktop application and either the browser extension or the op CLI don’t work. Also, the GID is wrong: $ ls -l /usr/bin/op -rwxr-sr...

�

𝒃𝒓𝒊「𝘴𝘩𝘦/𝘩𝘦𝘳」•12/3/23, 3:41 AM

but also it won't let me add another link because i'm a new user

�

𝒃𝒓𝒊「𝘴𝘩𝘦/𝘩𝘦𝘳」•12/3/23, 3:42 AM

i messed up the formatting, and it won't let me fix it because it thinks it's adding more than 2 links

�

𝒃𝒓𝒊「𝘴𝘩𝘦/𝘩𝘦𝘳」•12/3/23, 3:42 AM

lol

�

𝒃𝒓𝒊「𝘴𝘩𝘦/𝘩𝘦𝘳」•12/3/23, 3:44 AM

could i ask you to fix the formatting for me (i put a closing ``` for my code fence on the same line as code) and convert it to a wiki post please @j0rge

j0rge•12/3/23, 3:56 AM

omw

j0rge•12/3/23, 3:58 AM

fixed, upped your perms. Indulge yourself.

�

𝒃𝒓𝒊「𝘴𝘩𝘦/𝘩𝘦𝘳」•12/3/23, 4:17 AM

Thanks!!

Alextrical•12/3/23, 11:41 AM

Is there any way to edit the kickstart file created in the "Release-ISO" workflow

AAlextrical Is there any way to edit the kickstart file created in the "Release-ISO" workfl...

EyeCantCU•12/3/23, 2:21 PM

Fork isogenerator, edit the ks here, build it using the action, update the release-please workflow to use your fork:

https://github.com/ublue-os/isogenerator/blob/main/installer/kickstart/ublue-os.ks

EEyeCantCU Fork isogenerator, edit the ks here, build it using the action, update the relea...

xyny•12/3/23, 2:33 PM

discussed this in #

custom-image-support and this is what i think alex ended up doing / thinking of doing

Alextrical•12/3/23, 3:04 PM

Indeed it is, I wasn't sure of the right thred to post the question into, sorry. The problem I see is that I will likely end up posting the WiFi password and SSID into a public fork. (Though that's likely a problem either way)

Alextrical•12/3/23, 3:08 PM

It may be that editing the ISO post download to inject the Kickstart for a Root Password and WiFi details is the best way to go, without storing those details in the cloud. Maybe reworking this to prompt the user for input could be the safest way to go. https://github.com/alextrical/Fedora-Kinonite-Fablab-Kickstart

GitHub

GitHub - alextrical/Fedora-Kinonite-Fablab-Kickstart: Fedora Kinoni...

Fedora Kinonite Fablab Kickstart and Configuration - GitHub - alextrical/Fedora-Kinonite-Fablab-Kickstart: Fedora Kinonite Fablab Kickstart and Configuration

akdev•12/3/23, 3:11 PM

Putting credentials inside the installer image is a bad idea

akdev•12/3/23, 3:13 PM

Asking for wifi password after install is basically what gnome/kde already do no?

Aakdev Asking for wifi password after install is basically what gnome/kde already do no...

Alextrical•12/3/23, 3:16 PM

It's for deployment inside a Makerspace, so I'm hoping to minimise effort required to restore a working system. The problem is that it asks for the WiFi details after installing, but if the user doesn't enter them in Anaconda the install fails to fetch the built os, and as a result can't install the OS

akdev•12/3/23, 3:17 PM

Oh you’re trying to install the OS using wifi

akdev•12/3/23, 3:17 PM

create a temporary ssid/password and hardcode it in

akdev•12/3/23, 3:17 PM

Destroy after deployment

Aakdev Putting credentials inside the installer image is a bad idea

Alextrical•12/3/23, 3:18 PM

Out of curiosity, Is there a way you would recommend setting up both a Admin account and a Kiosk (public user) account?

Aakdev create a temporary ssid/password and hardcode it in

Alextrical•12/3/23, 3:19 PM

That could work, they now have a Draytek router which allows up to 4 SSID's and we could set the last one to be enabled when re-provisioning.
Though is there really that much danger having the Kickstart configured on a pendrive, when it's kept securely in the owners office drawer?

Alextrical•12/3/23, 3:30 PM

I suppose I'm aiming to do the equivalent of as close as possible to a preconfigured OS deployment. Back in the XP days, Sysprep was amazing for getting a monoculture of PC's setup identically with minimal input of the technicians. I'm hoping to make something as elegant as that for the Makerspace, Ideally, insert a USB key, reboot, select HDD to install to and select install. Once done ideally have WiFi, Admin and Kiosk user accounts created, all the software installed and configured ready to go, including connection to the central owncloud file share

j0rge•12/3/23, 3:32 PM

I think @Caleb Woodbine wants something similar, maybe you can compare notes

j0rge•12/3/23, 3:36 PM

Once the tooling lands the oci support that shouldn't be a problem. I was doing that at an edu with the full automation, automated pxe install, zero config other than turning the machine on. That was 2006, so it'll be at least that good, hahah.

Jj0rge Once the tooling lands the oci support that shouldn't be a problem. I was doing ...

Alextrical•12/3/23, 3:54 PM

Actually it may be possible to do a PXE install, as I'm going to be setting up a local storage server in some form. Though WiFi only could be the killer for that idea

FYI - you're sharing links that use HTTP and require logging in. There are no redirects to HTTPS, s

Similar Threads

Similar Threads

Similar Threads