Arch Linux User Repository

They temporarily added a modified tweetnacl build to their source, see here. This causes the node_modules and www/components folder to have a symlink to the source directory of that in build folder. Overall, this breaks the package.

A solution is to copy the folder to node_modules during package() and then symlink the second location to that, e.g.

diff --git a/PKGBUILD b/PKGBUILD
index 2e9dcd9..bf112d3 100644
--- a/PKGBUILD
+++ b/PKGBUILD
@@ -51,6 +51,12 @@ package() {
     install -Dt "$pkgdir/usr/share/webapps/$pkgname" package.json server.js
     cp -rt "$pkgdir/usr/share/webapps/$pkgname" customize.dist lib node_modules scripts www

+    # Fix tweetnacl
+    rm "$pkgdir/usr/share/webapps/$pkgname/node_modules/tweetnacl"
+    cp -r "$srcdir/$pkgname-$pkgver/src/tweetnacl" "$pkgdir/usr/share/webapps/$pkgname/node_modules/tweetnacl"
+    rm "$pkgdir/usr/share/webapps/$pkgname/www/components/tweetnacl"
+    ln -s "/usr/share/webapps/$pkgname/node_modules/tweetnacl" "$pkgdir/usr/share/webapps/$pkgname/www/components/tweetnacl"
+
     # Config
     sed -e "s|\(Path: '\)\./|\1/var/lib/cryptpad/|" \
         -e "s|'/var/lib/cryptpad/data/logs'|false|" \

Done. Thanks for the patch and sorry for the delay!

@buzo Would it be possible to merge klemens' patch to include OnlyOffice?

I uploaded the SSO plugin for cryptpad to AUR. If you like, you could add it as an optdepends. https://aur.archlinux.org/packages/cryptpad-sso

I just updated from 5.7.0 to 2024.6.0 and I can no longer open my spreadsheets. It seems like since 2024.3.0 OnlyOffice is no longer included by default and needs to be download with a script?

Edit: Calling the new script seems to work fine. The following patch solves the issue for me (though it produces some "Package contains reference to $srcdir" warnings, which could be fixed by removing the www/common/onlyoffice/dist/*/.git files which are not needed anyway):

diff --git a/PKGBUILD b/PKGBUILD
index cd6eefe..22b086a 100644
--- a/PKGBUILD
+++ b/PKGBUILD
@@ -4,13 +4,13 @@

 pkgname=cryptpad
 pkgver=2024.6.0
-pkgrel=1
+pkgrel=2
 pkgdesc="Realtime collaborative visual editor with zero knowlege server"
 arch=('any')
 url="https://github.com/$pkgname/$pkgname"
 license=(AGPL-3.0-or-later)
 depends=(nodejs)
-makedepends=(npm git)
+makedepends=(npm git unzip)
 optdepends=('nginx: HTTP server providing TLS'
             'certbot: Let’s Encrypt – automatically receive and install X.509 certificates to enable TLS'
             'certbot-nginx: Nginx plugin for Let’s Encrypt client')
@@ -31,6 +31,7 @@ build() {
     export NODE_ENV=production
     npm install --cache "$srcdir"/npm-cache
     npm run install:components --cache "$srcdir"/npm-cache
+    ./install-onlyoffice.sh --accept-license
 }

 package() {

@buzo @ChrisTX I see the cryptpad:http combinations for e.g. blob, however, the combination cryptpad:cryptpad and 0750 still does not allow read access for nginx for e.g. blob, so login is still prohibited in the current situation. At least on my machine, so please recheck. Thanks.

@buzo @ChrisTX This approach only works for me, if /var/lib/cryptpad is world readable. Otherwise I can not log in, aka I receive a "Permission denied" from nginx, when trying to read a block. Please check from your side.

Thanks ChrisTX – I've adjusted the permissions in the package as suggested.

Sorry, misleading description: groups http = http cryptpad and groups cryptpad = cryptpad. Gives http the theoretical access to some unneeded folders, but it is very simple. I do not think that this is a security issue, however, as soon as it is implemented in the package, I would follow the approach of choice there.