**MariaDB [xxx]> SELECT value FROM organization_settings WHERE property = 'emailNotification' \G**
*************************** 1. row ***************************
value: {"purify":{"subject":false},"show":{"comment":true,"description":true,"secret":true,"uri":true,"username":true},"send":{"comment":{"add":false},"password":{"create":false,"share":true,"update":true,"delete":true},"user":{"create":true,"recover":true},"admin":{"user":{"setup":{"completed":true}}},"group":{"delete":false,"user":{"add":false,"delete":false,"update":false},"manager":{"update":false}}}}
1 row in set (0.000 sec)
**MariaDB [xxx]> SELECT id, config, template, layout, theme, format, sent, locked, send_tries, attachments, error FROM email_queue \G**
This one is 600 rows long. You could download it here:
**sudo -H -u www-data bash -c "/usr/share/php/passbolt/bin/cake passbolt healthcheck"**
____ __ ____
/ __ \____ _____ ____/ /_ ____ / / /_
/ /_/ / __ `/ ___/ ___/ __ \/ __ \/ / __/
/ ____/ /_/ (__ |__ ) /_/ / /_/ / / /
/_/ \__,_/____/____/_.___/\____/_/\__/
Open source password manager for teams
-------------------------------------------------------------------------------
Healthcheck shell
-------------------------------------------------------------------------------
Environment
[PASS] PHP version 7.4.3.
[PASS] PCRE compiled with unicode support.
[FAIL] The temporary directory and its content are not writable, or are executable.
[HELP] Ensure the temporary directory and its content are writable by the webserver user.
[HELP] you can try:
[HELP] sudo chown -R www-data:www-data /var/lib/passbolt/tmp/
[HELP] sudo chmod -R 775 $(find /var/lib/passbolt/tmp/ -type d)
[HELP] sudo chmod -R 664 $(find /var/lib/passbolt/tmp/ -type f)
[PASS] The logs directory and its content are writable.
[PASS] GD or Imagick extension is installed.
[PASS] Intl extension is installed.
[PASS] Mbstring extension is installed.
Config files
[PASS] The application config file is present
[PASS] The passbolt config file is present
Core config
[PASS] Debug mode is off.
[PASS] Cache is working.
[PASS] Unique value set for security.salt
[PASS] Full base url is set to http://xxx
[PASS] App.fullBaseUrl validation OK.
[PASS] /healthcheck/status is reachable.
SSL Certificate
[PASS] SSL peer certificate validates
[PASS] Hostname is matching in SSL certificate.
[PASS] Not using a self-signed certificate
Database
[PASS] The application is able to connect to the database
[PASS] 26 tables found
[PASS] Some default content is present
[PASS] The database schema up to date.
GPG Configuration
[PASS] PHP GPG Module is installed and loaded.
[PASS] The environment variable GNUPGHOME is set to /var/lib/passbolt/.gnupg.
[PASS] The directory /var/lib/passbolt/.gnupg containing the keyring is writable by the webserver user.
[PASS] The server OpenPGP key is not the default one
[PASS] The public key file is defined in config/passbolt.php and readable.
[PASS] The private key file is defined in config/passbolt.php and readable.
[PASS] The server key fingerprint matches the one defined in config/passbolt.php.
[PASS] The server public key defined in the config/passbolt.php (or environment variables) is in the keyring.
[PASS] There is a valid email id defined for the server key.
[PASS] The public key can be used to encrypt a message.
[PASS] The private key can be used to sign a message.
[PASS] The public and private keys can be used to encrypt and sign a message.
[PASS] The private key can be used to decrypt a message.
[PASS] The private key can be used to decrypt and verify a message.
[PASS] The public key can be used to verify a signature.
[PASS] The server public key format is Gopengpg compatible.
[PASS] The server private key format is Gopengpg compatible.
Application configuration
[PASS] Using latest passbolt version (3.5.0).
[PASS] Passbolt is configured to force SSL use.
[FAIL] App.fullBaseUrl is not set to HTTPS.
[HELP] Check App.fullBaseUrl url scheme in config/passbolt.php.
[PASS] Selenium API endpoints are disabled.
[PASS] Search engine robots are told not to index content.
[PASS] Registration is closed, only administrators can add users.
[PASS] Serving the compiled version of the javascript app
[PASS] All email notifications will be sent.
JWT Authentication
[PASS] The JWT Authentication plugin is enabled
[PASS] The /etc/passbolt/jwt/ directory is not writable.
[PASS] A valid JWT key pair was found
[FAIL] 2 error(s) found. Hang in there!
sudo -H -u www-data bash -c "/usr/share/php/passbolt/bin/cake migrations status"**
using migration paths
- /etc/passbolt/Migrations
using seed paths
- /etc/passbolt/Seeds
using environment default
Status Migration ID Migration Name
-----------------------------------------
up 20170830064410 V162InitialMigration
up 20170830065037 V200ActiveMustBeBoolean
up 20170830065038 V200DropUnusedProfileFields
up 20170830065039 V200IncreaseEmailSize
up 20170830065040 V200DropUnusedCreatedBy
up 20170830065041 V200MigrateUUID
up 20170830065042 V200MigrateKeyField
up 20171002061834 V200DropUnusedResourceFields
up 20171006141922 V200AddFavoriteModifiedField
up 20171009093000 V200DropUnusedPermissionTypesTable
up 20171009093001 V200MigrateEmailsTable
up 20171009093002 V200MigrateFileStorageTable
up 20171025154754 V200AddCommentsUserIdField
up 20180102065042 V200MigrateForeignIdField
up 20180102180000 V200DropUnusedTables
up 20180102221500 V200AddMissingTablesIndexes
up 20180413171600 V202ForceColumnsCharset
up 20180503135810 V210InstallAccountSettingsPlugin
up 20180930151500 V240AddAuthenticationTokenType
up 20181002171600 V240ExtendAccountSettingsPlugin
up 20181210170000 V270AddMissingIndexes
up 20190106170300 V280AdditionalEmailMigration
up 20190106170301 V280AdditionalFileStorageMigration
up 20190106170302 V280FileDirectoryPathsMigrations
up 20190112124290 V270AddActionsTable
up 20190112124300 V270AddActionLogsTable
up 20190121111100 V270AddEntitiesHistoryTable
up 20190121121100 V270AddPermissionsHistoryTable
up 20190211124300 V270AddSecretsHistoryTable
up 20190221124300 V270AddSecretAccessesTable
up 20190512115400 V2100AddOrganizationSettingsTable
up 20190623143400 V2110ExtendKeyIdSizeField
up 20190923103000 V2120UpdateEmailQueue
up 20191119160000 V2120DropUnusedTables
up 20200108135000 V2130DropLegacyAnonymousUser
up 20200319135000 V2130SoftDeleteGpgKeysForSoftDeletedUsers
up 20200501182000 V2130ReconcileLoginHistory
up 20200806110200 V300ExtendSecretsDataField
up 20200806110201 V300AddResourceTypeIdField
up 20200806110202 V300AddResourceTypesTable
up 20200806110203 V300AddResourceTypesDefaultData
up 20200806110204 V300AddResourceTypesToResources
up 20200824191900 V2136CleanupUnusedActionLogs
up 20200824191901 V2136AddActionLogsRelatedIndexes
up 20201221093528 V300DeleteMetadataOfSoftDeletedResources
up 20210111163200 V300AddActionLogsExtraIndex
up 20210121141742 V320AddAvatarsTable
up 20210125212543 V320TransferFileStorageToAvatars
up 20210206521254 V320DropFileStorage
up 20210329110000 V320FixResourceTypesDefaultData
up 20210427124200 V330AddMobileTransferTable
up 20211027202137 V331ConvertEmailVariablesToJson
up 20211121231300 V340MigrateASCIIFieldsEncoding
up 20211122732400 V350ConvertIdFieldsToUuidFields
up 20211215180000 V350RemovePermissionsTypeIndex
up 20211215180001 V350AddPermissionsCombinedIndex
up 20220103180000 V350IncreaseResourcesNameUsernameColumnsSize
up 20220103180001 V350IncreaseResourcesNameUsernameLengthInResourceTypes
sudo -H -u www-data bash -c "/usr/share/php/passbolt/bin/cake passbolt datacheck --hide-success-details"**
____ __ ____
/ __ \____ _____ ____/ /_ ____ / / /_
/ /_/ / __ `/ ___/ ___/ __ \/ __ \/ / __/
/ ____/ /_/ (__ |__ ) /_/ / /_/ / / /
/_/ \__,_/____/____/_.___/\____/_/\__/
Open source password manager for teams
-------------------------------------------------------------------------------
Data check shell
[PASS] Data integrity for AuthenticationTokens.
[PASS] Can validate: 2143/2143
[PASS] Data integrity for Comments.
[PASS] Can validate: 0/0
[PASS] Data integrity for Favorites.
[PASS] Can validate: 27/27
[PASS] Data integrity for Gpgkeys.
[PASS] Can encrypt: 33/33
[PASS] Can validate: 33/33
[PASS] Is not expired: 33/33
[PASS] Is armored key format valid: 33/33
[PASS] Is email unique: 33/33
[PASS] Data integrity for Groups.
[PASS] Can validate: 8/8
[PASS] Data integrity for Profiles.
[PASS] Can validate: 50/50
[PASS] Data integrity for Resources.
[PASS] Can validate: 835/835
[PASS] Data integrity for Secrets.
[PASS] Can validate: 17677/17677
[PASS] Data integrity for Users.
[PASS] Can validate: 50/50