As educational institutions across the world are sending pupils and teachers to work from home because of the ongoing COVID pandemic, there is an urgent need for the key open source remote teaching and working solutions we know to be packaged as NixOS services. The same of course holds for companies and institutions that have to work from home almost overnight.
Traditional uptake is limited as it is too much to expect all these folks to have sysadmin skills, so people are resorting to proprietary platforms. However, that often comes with a huge privacy cost. It also creates a single point of failure: who know what will happen in the coming weeks.
Once packaged as a service, it becomes much easier to run in this time of crisis. Obviously, not everyone is using Nix yet so creating a solid delivery flow is something that needs to be done as well. So lets make it easy for people to go the open source way!
This is a huge opportunity for FOSS alternatives like Peertube, Cryptpad, SylkServer etc. We are currently compiling a list of services that would be great to have packaged, from NGI Zero as well as from the wide selection of open alternatives. Millions of kids around the world could benefit from this, not just now but for years to come.
Are there people interested in helping out? Suggestions for suitable tools also welcome.
Some examples of applications:
[y] means the package is available
[-] means this package is being worked on already, please help debug
Well, I see no harm in someone packaging it if that is allowed license-wise. It is a bit different in focus from the kind of thing we meant: services suitable to be used by classes of students (videoconferencing tools like Sylk Server, Jitsi Meet, Spreed.me), and schools. This also includes tools like Discourse, so there is a nice recursive effect. I will add some examples to the top posting.
Hi, I am the maintainer of FileSender… Some information about FileSender minimal packaging…
I had put up the following information for folks who want a FileSender instance to play with but do not have or want a SimpleSAML setup: F.A.Q/troubleshooting for version 2.0
… Somehow that lost the main page menu link.
That is more geared to a static userbase with preset fixed passwords. Such a setup is not ideal from a number of perspectives, but is also the minimal and most basic setup that can be done which might be handy for 20-30 users.
It would mean editing the config file to setup or change users around, which might not be a big deal if the service is up and running. One caveat: since this is a testing only type thing I have not rigorously studied the security of it. It would be an option later to make a script to migrate that config to something else later if simplesaml is packaged etc.
Yes, you will want to use the latest stable release of SimpleSAMLphp. IIRC it is just a matter of extracting the archive for it. No additional npm install or composer usage required.
There are one or two commands in installation step 4 (from Installation - Linux Source 2.x from Git) before the extra suggestions for security starting with “There are some thoughts on updates to your SimpleSAMLphp configuration which may improve security”. You might want to skip over the extra security suggestions for an initial build and add them if desired only once you know things are working.
As far as SimpleSAMLphp goes, if you are using apache the config template in filesender distribution at config-templates/apache/filesender.conf will allow the web server to access things if they are in the expected location. So SimpleSAMLphp installation should be close to expanding it to a known location and mv/cp a few files. If you are using the shortcut auth then the username and password information is stored in a config file and you have to touch modules/exampleauth/enable in the simplesamlphp install which might as well be done by the packaging.
I will cc this to the github link and move discussion for filesender over there to save this thread for wider use.