Version 1.11.0

https://github.com/FreshRSS/FreshRSS/issues/2233

CHANGELOG

@@ -1,2 +1,182 @@
 [0.1.0]
 * Initial version
+
+[0.2.0]
+* Updated to base image 0.10.0
+* Supporting extensions
+
+[0.3.0]
+* No longer overwriting all config changes
+* Using cli scripts
+* Using scheduler for periodic task
+* Removed update menu item
+
+[0.4.0]
+* Updated to FreshRSS 1.6.3
+* Removed most custom patches (FreshRSS includes those now)
+
+[0.4.1]
+* Add parameter to allow for encoded slashes (thanks @Richard)
+* Updated description (thanks @Girish)
+
+[0.5.0]
+* Not using mysql port as this causes an error
+* Storing sessions in /run
+* Storing api logs in /tmp
+* Set some php options
+
+[0.6.0]
+* Updated to FreshRSS 1.7.0
+
+[0.7.0]
+* Updated to FreshRSS 1.8.0
+
+[0.8.0]
+* Update to FreshRSS 1.9.0
+
+[0.9.0]
+* Update to FreshRSS 1.10.2
+
+[0.10.0]
+* Better apache configs
+* Update extensions
+
+[1.0.0]
+* Fix issue where static extension assets were not served
+
+[1.1.0]
+* Update FreshRSS to 1.11.0
+
+[1.1.1]
+* Update FreshRSS to to 1.11.1
+
+[1.1.2]
+* Update FreshRSS to 1.11.2
+
+[1.2.0]
+* Use latest base image
+
+[1.3.0]
+* Update FreshRSS to 1.12.0
+* Features
+  * Ability to add labels (custom tags) to articles #928
+  * Handle article tags containing spaces, as well as comma-separated tags #2023
+  * Handle authors containing spaces, as well as comma or semi-colon separated authors #2025
+  * Searches by tag, author, etc. accept Unicode characters #2025
+  * New option to disable cache for feeds with invalid HTTP caching #2052
+* UI
+  * New theme Swage #2069
+  * Click on authors to initiate a search by author #2025
+  * Fix CSS for button alignments in older Chrome versions #2020
+* Security
+  * Improved flow for password change (avoid error 403) #2056
+  * Allow dot . in username (best to avoid, though) #2061
+* Performance
+  * Remove some counterproductive preload / prefetch rules #2040
+  * Improved fast flush (earlier transfer, fetching of resources, and rendering) #2045
+
+[1.4.0]
+* Update FreshRSS to 1.13.0
+* [Full changelog](https://github.com/FreshRSS/FreshRSS/blob/1.13.0/CHANGELOG.md)
+* Improvements to the Google Reader API #2093
+* Support for Vienna RSS (client for Mac OS X) #2091
+* Ability to import XML files exported from Tiny-Tiny-RSS #2079
+* Ability to show all the feeds that have a warning #2146
+* Share with Pinboard #1972
+
+[1.5.0]
+* Fix security issue where root directory was exposed
+* Enable mod rewrite for mobile apps like FeedMe to work
+
+[1.5.1]
+* Update FreshRSS to 1.13.1
+
+[1.6.0]
+* Update FreshRSS to 1.14.0
+* Update extensions to 0812ee05c24c
+
+[1.6.1]
+* Update FreshRSS to 1.14.1
+* Fix load more articles when using ascending order #2314
+* Fix the use of arrow keyboard keys for shortcuts #2316
+* Fix control+click or middle-click for opening articles in a background tab #2310
+* Fix the naming of the option to unfold categories #2307
+* Fix shortcut problem when using unfolded articles #2328
+* Fix auto-hiding articles #2323
+* Fix scroll functions with Edge #2337
+* Fix drop-down menu warning #2353
+* Fix delay for individual mark-as-read actions #2332
+* Fix scroll functions in Edge #2337
+
+[1.6.2]
+* Update FreshRSS to 1.14.2
+* Fix minor code syntax warning in API #2362
+
+[1.6.3]
+* Update FreshRSS to 1.14.3
+* New configuration page for each category #2369
+* Update shortcut configuration page #2405
+* CSS style for printing #2149
+* Do not hide multiple <br /> tags #2437
+* Updated to jQuery 3.4.1 (only for statistics page) #2424
+
+[1.7.0]
+* Update FreshRSS to 1.15.0
+* New archiving method, including maximum number of articles per feed, and settings at feed, category, global levels #2335
+* New option to control category sort order #2592
+* New option to display article authors underneath the article title #2487
+* Add e-mail capability #2476, #2481
+* Ability to define default user settings in data/config-user.custom.php #2490
+* Including default feeds #2515
+* Allow recreating users if they still exist in database #2555
+* Add optional database connection URI parameters #2549, #2559
+* Allow longer articles with MySQL / MariaDB (up to 16MB compressed instead of 64kB) #2448
+* Add support for terms of service #2520
+* Add sharing with Lemmy #2510
+
+[1.7.1]
+* Update FreshRSS to 1.15.1
+
+[1.7.2]
+* Update FreshRSS to 1.15.2
+
+[1.7.3]
+* Update FreshRSS to 1.15.3
+
+[1.8.0]
+* Update FreshRSS to 1.16.0
+* [Full changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.16.0)
+* Allow multiple users to have administration rights #2096
+* Preview the CSS rule to retrieve full article content #2778
+* Improve CSS selector ordering in the full-text retrieval (lib_phpQuery) #2874
+* New search option !date: allowing to exclude any date interval #2869
+* New option to show all articles in the favourites view #2434
+* Allow feed to be actualized just after being truncated #2862
+* Fallback to showing a GUID when an article title is empty #2813
+
+[1.9.0]
+* Use latest base image 2.0.0
+
+[1.9.1]
+* Update FreshRSS to 1.16.2
+* [Full changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.16.1)
+* Add the possibility to filter by feed IDs #2892
+  * like f:123 more-search or multiple feed IDs like f:123,234,345 more-search or an exclusion like !f:456,789 more-search
+* Show users last activity date #2936
+* Ability to follow HTML redirections when retrieving full article content #2985
+
+[1.10.0]
+* Add forum url and update screenshot links
+
+[1.11.0]
+* Update FreshRSS to 1.17.0
+* [Full changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.17.0)
+* New tag management page #3121
+* New page to add feeds and categories #3027
+* Add a way to disable/enable users #3056
+* Fix special characters in user queries #3037
+* Hide feed credentials when adding a new feed #3099
+* Trim whitespace for feed passwords #3158
+* Updated PHPMailer library to 6.1.6 #3024
+* Add blogger.com to the default list of forced HTTPS #3088
+

CloudronManifest.json

@@ -5,26 +5,29 @@
   "description": "file://DESCRIPTION.md",
   "changelog": "file://CHANGELOG",
   "tagline": "RSS feed reader",
-  "version": "0.1.0",
+  "version": "1.11.0",
   "healthCheckPath": "/",
   "httpPort": 8000,
   "addons": {
     "localstorage": {},
-    "mysql": {}
+    "mysql": {},
+    "scheduler": {
+      "update_feeds": {
+        "schedule": "*/1 * * * *",
+        "command": "/usr/local/bin/gosu www-data:www-data php /app/code/app/actualize_script.php"
+      }
+    }
   },
-  "manifestVersion": 1,
+  "manifestVersion": 2,
   "website": "http://www.freshrss.org",
   "contactEmail": "support@cloudron.io",
   "icon": "logo.png",
-  "tags": [
-    "rss",
-    "atom",
-    "greader",
-    "reader",
-    "news feeds"
-  ],
+  "tags": [ "rss", "atom", "greader", "reader", "news", "feeds", "feedly" ],
   "mediaLinks": [
-    "https://git.cloudron.io/dswd/freshrss-app/raw/master/screenshots/1.png"
+    "https://screenshots.cloudron.io/org.freshrss.cloudronapp/1.png"
   ],
-  "postInstallMessage": "file://POSTINSTALL.md"
+  "postInstallMessage": "file://POSTINSTALL.md",
+  "minBoxVersion": "5.3.0",
+  "forumUrl": "https://forum.cloudron.io/category/27/freshrss",
+  "documentationUrl": "https://cloudron.io/documentation/apps/freshrss/"
 }

DESCRIPTION.md

@@ -1,4 +1,6 @@
-This app packages FreshRSS 1.6.2.
+This app packages FreshRSS <upstream>1.17.0</upstream>.
+
+## About
 
 FreshRSS is a self-hosted RSS feed aggregator such as Leed or Kriss Feed.
 
@@ -6,12 +8,13 @@ It is at the same time lightweight, easy to work with, powerful and customizable
 
 It is a multi-user application with an anonymous reading mode. It supports PubSubHubbub for instant notifications from compatible Web sites. There is an API for (mobile) clients, and a Command-Line Interface. Finally, it supports extensions for further tuning.
 
-### Extensions 
+## Extensions
+
 FreshRSS supports further customizations by adding extensions on top of its core functionality.
-See the [repository dedicated to those extensions](https://github.com/FreshRSS/Extensions). 
+See the [repository dedicated to those extensions](https://github.com/FreshRSS/Extensions).
 
 
-### Compatible clients
+## Compatible clients
 Any client supporting a Google Reader-like API. Selection:
 
 * Android
@@ -19,3 +22,6 @@ Any client supporting a Google Reader-like API. Selection:
 	* [EasyRSS](https://github.com/Alkarex/EasyRSS) (Open source, F-Droid)
 * Linux
 	* [FeedReader 2.0+](https://jangernert.github.io/FeedReader/) (Open source)
+* Mac/iOS
+    * [Reeder](https://reederapp.com/)
+

Dockerfile

@@ -1,38 +1,41 @@
-FROM cloudron/base:0.9.0
-MAINTAINER Rainloop Developers <support@cloudron.io>
-
-EXPOSE 8000
-
-RUN apt-get update \
-    && apt-get -y install php php-curl php-gmp php-intl php-mbstring php-xml php-zip \
-       libapache2-mod-php mysql-client php-mysql
-
-ENV VERSION 1.6.2
+FROM cloudron/base:2.0.0@sha256:f9fea80513aa7c92fe2e7bf3978b54c8ac5222f47a9a32a7f8833edf0eb5a4f4
 
 RUN mkdir -p /app/code
 WORKDIR /app/code
 
-RUN wget "https://github.com/FreshRSS/FreshRSS/archive/${VERSION}.tar.gz" -O - \
-    | tar -xz --strip-components=1
+ARG VERSION=1.17.0
+RUN curl -L https://github.com/FreshRSS/FreshRSS/archive/${VERSION}.tar.gz | tar -zxvf - --strip-components=1
 
-RUN mkdir -p /app/data \
-    && mv data data-orig \
-    && ln -s /app/data data
+RUN mv data data-orig && ln -s /app/data data
 
-ADD apache2.conf /etc/apache2/sites-available/freshrss.conf
+# official extensions
+RUN wget https://github.com/FreshRSS/Extensions/archive/1784092164139dc6961ba5cc5b920331b586acbc.tar.gz -O - | tar -xz --strip-components=1 -C /app/code/extensions && \
+    mv /app/code/extensions /app/code/extensions-orig && \
+    ln -s /app/data/extensions /app/code/extensions
 
-RUN rm /etc/apache2/sites-enabled/* \
-    && sed -e 's,^ErrorLog.*,ErrorLog "/dev/stderr",' -i /etc/apache2/apache2.conf \
-    && sed -e "s,MaxSpareServers[^:].*,MaxSpareServers 5," -i /etc/apache2/mods-available/mpm_prefork.conf \
-    && a2disconf other-vhosts-access-log \
-    && echo "Listen 8000" > /etc/apache2/ports.conf \
-    && a2enmod headers expires \
-    && a2ensite freshrss
+# configure apache
+RUN rm /etc/apache2/sites-enabled/*
+RUN sed -e 's,^ErrorLog.*,ErrorLog "|/bin/cat",' -i /etc/apache2/apache2.conf
+COPY apache/mpm_prefork.conf /etc/apache2/mods-available/mpm_prefork.conf
 
-RUN rm -rf /var/lib/php \
-    && ln -s /run/php /var/lib/php
+RUN a2disconf other-vhosts-access-log
+ADD apache/freshrss.conf /etc/apache2/sites-enabled/freshrss.conf
+RUN echo "Listen 8000" > /etc/apache2/ports.conf
+
+RUN a2enmod headers expires deflate mime dir rewrite setenvif
+
+RUN rm -rf /var/lib/php && ln -s /run/php /var/lib/php
+
+RUN crudini --set /etc/php/7.3/apache2/php.ini PHP upload_max_filesize 64M && \
+    crudini --set /etc/php/7.3/apache2/php.ini PHP post_max_size 64M && \
+    crudini --set /etc/php/7.3/apache2/php.ini PHP memory_limit 64M && \
+    crudini --set /etc/php/7.3/apache2/php.ini Session session.save_path /run/php/session && \
+    crudini --set /etc/php/7.3/apache2/php.ini Session session.gc_probability 1 && \
+    crudini --set /etc/php/7.3/apache2/php.ini Session session.gc_divisor 100
+
+RUN ln -s /app/data/php.ini /etc/php/7.3/apache2/conf.d/99-cloudron.ini && \
+    ln -s /app/data/php.ini /etc/php/7.3/cli/conf.d/99-cloudron.ini
 
 ADD start.sh /app/code/start.sh
-ADD setup_db.php /app/code/setup_db.php
 
 CMD [ "/app/code/start.sh" ]

POSTINSTALL.md

@@ -1,10 +1,7 @@
-This application does not integrate with Cloudron authentication.
+This app is pre-setup with an admin account. The initial credentials are:
+  
+**Username**: admin<br/>
+**Password**: changeme<br/>
 
-There is a preconfigured administrator account with the following credentials:
+Please change the admin password immediately.
 
-* Username: `admin`
-* Password: `password`
-
-(Please change that password on first login)
-
-You can create more accounts withing the app when logged in as administrator.

README.md

@@ -6,7 +6,7 @@ This repository contains the Cloudron app package source for [FreshRSS](http://w
 
 [![Install](https://cloudron.io/img/button.svg)](https://cloudron.io/button.html?app=org.freshrss.cloudronapp)
 
-or using the [Cloudron command line tooling](https://cloudron.io/references/cli.html)
+or using the [Cloudron command line tooling](https://git.cloudron.io/cloudron/cloudron-cli/)
 
 ```
 cloudron install --appstore-id org.freshrss.cloudronapp
@@ -14,7 +14,7 @@ cloudron install --appstore-id org.freshrss.cloudronapp
 
 ## Building
 
-The app package can be built using the [Cloudron command line tooling](https://cloudron.io/references/cli.html).
+The app package can be built using the [Cloudron command line tooling](https://git.cloudron.io/cloudron/cloudron-cli/).
 
 ```
 cd freshrss-app
@@ -31,7 +31,21 @@ The e2e tests are located in the `test/` folder and require [nodejs](http://node
 cd freshrss-app/test
 
 npm install
-export PATH=$PATH:node_modules/.bin
-mocha --bail test.js
+PATH=$PATH:node_modules/.bin mocha --bail test.js
 ```
 
+## Debugging
+
+
+* Update your data/config.php with the following, to get more debugging information:
+
+```
+'environment' => 'development',
+
+```
+
+* Check your logs:
+  * Web server / PHP logs
+  * FreshRSS API log in ./data/users/_/log_api.txt
+  * FreshRSS logs in ./data/users/you/log.txt
+

apache/freshrss.conf

@@ -1,10 +1,11 @@
 <VirtualHost *:8000>
-    DocumentRoot /app/code  
+    DocumentRoot /app/code/p
+    AllowEncodedSlashes On
 
     ErrorLog /dev/stderr 
     CustomLog /dev/stdout combined
 
-    <Directory /app/code/>
+    <Directory /app/code/p/>
         Options +FollowSymLinks
         AllowOverride All
         Require all granted

apache/mpm_prefork.conf

@@ -0,0 +1,17 @@
+<IfModule mpm_prefork_module>
+    # On startup, start these many servers
+	StartServers	2
+
+    # At any given time, keep atleast these many servers
+	MinSpareServers	2
+
+    # At any given time, keep atmost these many idle servers (this is always >= MinSpareServers+1)
+	MaxSpareServers 3
+
+    # Maximum number of servers at any given instant. Requests will be queued after this
+	MaxRequestWorkers	  6
+
+    # Recycle process after handling these many requests. This protected against accidental memory leaks
+	MaxConnectionsPerChild   100
+</IfModule>
+

setup_db.php

@@ -1,14 +0,0 @@
-<?PHP
-
-include_once('/app/code/app/SQL/install.sql.mysql.php');
-
-$c = new PDO("mysql:dbname=".getenv('MYSQL_DATABASE').";host=".getenv('MYSQL_HOST').";port=".getenv('MYSQL_PORT'), getenv('MYSQL_USERNAME'), getenv('MYSQL_PASSWORD'));
-
-$sql = sprintf(SQL_CREATE_TABLES, 'admin_', 'Uncategorized');
-$stm = $c->prepare($sql);
-$stm->execute();
-
-$sql = sprintf(SQL_INSERT_FEEDS, 'admin_');
-$stm = $c->prepare($sql);
-$stm->execute();
-

start.sh

@@ -2,64 +2,50 @@
 
 set -eu
 
-mkdir -p /run/php/sessions
+mkdir -p /run/php/session
 
 if ! [ -f /app/data/.installed ]; then
-  echo "Fresh installation, setting up..."
-  rsync -a /app/code/data-orig/ /app/data/
-  dd if=/dev/urandom bs=1 count=1024 2>/dev/null | sha1sum | awk '{ print $1 }' > /app/data/.salt
-  mkdir -p /app/data/users/admin
-  cat > /app/data/users/admin/config.php <<EOF
-<?php
-return array (
-  'language' => 'en',
-  'passwordHash' => '\$2a\$09\$lO5xTAsfRCG1rSssJgHtTeiweXj2VwGN/JfuexIMpsQWzKoFVoklm',
-  'apiPasswordHash' => '',
-);
-?>
-EOF
-  touch /app/data/users/admin/log.txt
-  rm /app/data/do-install.txt
-  php /app/code/setup_db.php
-  touch /app/data/.installed
-  echo "Done."
+    echo "==> Fresh installation, setting up..."
+    rsync -a /app/code/data-orig/ /app/data/
+    php cli/do-install.php \
+      --environment production --default_user admin \
+      --db-type mysql --db-host "${CLOUDRON_MYSQL_HOST}" \
+      --db-user "${CLOUDRON_MYSQL_USERNAME}" --db-password "${CLOUDRON_MYSQL_PASSWORD}" \
+      --db-base "${CLOUDRON_MYSQL_DATABASE}" --db-prefix "" \
+      --disable_update
+    php cli/create-user.php --user admin --password changeme --language en
+    touch /app/data/.installed
+    echo "==> Done."
 fi
 
-echo "Creating config file"
-SALT=$(cat /app/data/.salt)
-cat > /app/data/config.php <<EOF
-<?php
- return array (
-  'salt' => '${SALT}',
-  'base_url' => 'https://${APP_DOMAIN}/p',
-  'title' => 'FreshRSS',
-  'default_user' => 'admin',
-  'auth_type' => 'form',
-  'db' => 
-  array (
-    'type' => 'mysql',
-    'host' => '${MYSQL_HOST}',
-    'user' => '${MYSQL_USERNAME}',
-    'password' => '${MYSQL_PASSWORD}',
-    'base' => '${MYSQL_DATABASE}',
-    'prefix' => '',
-    'pdo_options' => 
-    array (
-    ),
-  ),
-  'pubsubhubbub_enabled' => true,
-);
-EOF
+if [[ ! -f /app/data/php.ini ]]; then
+    echo -e "; Add custom PHP configuration in this file\n; Settings here are merged with the package's built-in php.ini\n\n" > /app/data/php.ini
+fi
 
-chown -R www-data.www-data /run/php /app/data
+echo "==> Symlinking log file"
+rm -f /app/data/users/_/log_api.txt
+touch /tmp/log_api.txt
+ln -s /tmp/log_api.txt /app/data/users/_/log_api.txt
 
-echo "Trying to update feeds every 60 secs"
-while true; do
-  sleep 60
-  sudo -u www-data php /app/code/app/actualize_script.php >/dev/stdout 2>/dev/stderr
-done &
+# We have to copy instead of symlinking extensions (see #2)
+echo "==> Copying packaged extensions"
+mkdir -p /app/data/extensions
+for f in $(ls /app/code/extensions-orig); do
+    rm -rf "/app/data/extensions/$f"
+    cp -r "/app/code/extensions-orig/$f" "/app/data/extensions"
+done
 
-echo "Starting apache"
+echo "==> Updating config file"
+php cli/reconfigure.php --default_user admin --base_url "https://${CLOUDRON_APP_DOMAIN}" \
+    --db-type mysql --db-host "${CLOUDRON_MYSQL_HOST}" \
+    --db-user "${CLOUDRON_MYSQL_USERNAME}" --db-password "${CLOUDRON_MYSQL_PASSWORD}" \
+    --db-base "${CLOUDRON_MYSQL_DATABASE}" --db-prefix "" \
+    --disable_update
+
+echo "==> Setting permissions"
+chown -R www-data.www-data /run/php /app/data /tmp/log_api.txt
+
+echo "==> Starting apache"
 APACHE_CONFDIR="" source /etc/apache2/envvars
 rm -f "${APACHE_PID_FILE}"
 exec /usr/sbin/apache2 -DFOREGROUND

test/package.json

@@ -9,14 +9,14 @@
   "author": "",
   "license": "ISC",
   "dependencies": {
-    "ejs": "^2.4.2",
+    "chromedriver": "^84.0.0",
+    "ejs": "^3.1.3",
     "expect.js": "^0.3.1",
-    "mkdirp": "^0.5.1",
-    "mocha": "^2.5.3",
-    "rimraf": "^2.5.3",
-    "selenium-server-standalone-jar": "^2.53.1",
-    "selenium-webdriver": "^2.53.3",
-    "superagent": "^1.4.0",
-    "chromedriver": "^2.27.0"
+    "mkdirp": "^1.0.4",
+    "mocha": "^8.0.1",
+    "rimraf": "^3.0.2",
+    "selenium-server-standalone-jar": "^3.141.59",
+    "selenium-webdriver": "^3.6.0",
+    "superagent": "^5.3.1"
   }
 }

test/test.js

@@ -2,17 +2,21 @@
 
 'use strict';
 
+require('chromedriver');
+
 var execSync = require('child_process').execSync,
     expect = require('expect.js'),
     path = require('path'),
+    superagent = require('superagent'),
     webdriver = require('selenium-webdriver');
 
 var by = webdriver.By,
-    until = webdriver.until;
+    Keys = webdriver.Key,
+    until = webdriver.until,
+    Builder = require('selenium-webdriver').Builder;
 
 var username = 'admin',
-    password = 'password';
-
+    password = 'changeme';
 
 process.env.NODE_TLS_REJECT_UNAUTHORIZED = '0';
 
@@ -20,8 +24,7 @@ process.env.NODE_TLS_REJECT_UNAUTHORIZED = '0';
 describe('Application life cycle test', function () {
     this.timeout(0);
 
-    var chrome = require('selenium-webdriver/chrome');
-    var server, browser = new chrome.Driver();
+    var server, browser = new Builder().forBrowser('chrome').build();
 
     before(function (done) {
         var seleniumJar= require('selenium-server-standalone-jar');
@@ -38,106 +41,169 @@ describe('Application life cycle test', function () {
         done();
     });
 
-    var LOCATION = 'freshrss-test';
+    var LOCATION = 'test';
     var TEST_TIMEOUT = 10000;
     var app;
 
-    function exists(selector, callback) {
-        return browser.wait(until.elementLocated(selector), TEST_TIMEOUT).then(function () {
-            callback();
-        });
+    function exists(selector) {
+        return browser.wait(until.elementLocated(selector), TEST_TIMEOUT);
     }
 
     function visible(selector, callback) {
-        exists(selector, function () {
-            browser.wait(until.elementIsVisible(browser.findElement(selector)), TEST_TIMEOUT).then(function () {
-                callback();
-            });
+        return exists(selector).then(function () {
+            return browser.wait(until.elementIsVisible(browser.findElement(selector)), TEST_TIMEOUT);
         });
     }
 
-    function login(callback) {
-        browser.manage().deleteAllCookies();
-        browser.get('https://' + app.fqdn);
+    function baseUrl() {
+        if (app.manifest.version === '1.4.0') return `https://${app.fqdn}/p`;
+        return `https://${app.fqdn}`;
+    }
 
-        visible(by.id('loginButton'), function () {
-            browser.findElement(by.id('username')).sendKeys(username);
-            browser.findElement(by.id('passwordPlain')).sendKeys(password);
-            browser.findElement(by.id('loginButton')).click();
-            browser.wait(until.elementLocated(by.id('dropdown-configure')), TEST_TIMEOUT).then(function () { callback(); });
+    // we do this because it perm redirects to /p/ in old versions
+    function clearCache() {
+        // https://stackoverflow.com/questions/49614217/selenium-clear-chrome-cache
+        // defaut clearance is 1 hour of cache
+        return browser.get('chrome://settings/clearBrowserData').then(function () {
+            return visible(by.css('* /deep/ #clearBrowsingDataConfirm'));
+        }).then(function () {
+            return browser.findElement(by.css('* /deep/ #clearBrowsingDataConfirm')).click();
+        }).then(function () {
+            return browser.sleep(5000);
+        });
+    }
+
+    function login(password, callback) {
+        browser.get('https://' + app.fqdn).then(function () {
+            return visible(by.id('loginButton'));
+        }).then(function () {
+            return browser.findElement(by.id('username')).sendKeys(username);
+        }).then(function () {
+            return browser.findElement(by.id('passwordPlain')).sendKeys(password);
+        }).then(function () {
+            return browser.findElement(by.id('loginButton')).click();
+        }).then(function () {
+            return browser.wait(until.elementLocated(by.id('dropdown-configure')), TEST_TIMEOUT);
+        }).then(function () {
+            callback();
         });
     }
 
     function logout(callback) {
         var logout_btn = by.xpath('//ul[@class="dropdown-menu"]/li/a[@class="signout"]');
 
-        browser.get('https://' + app.fqdn);
-
-        visible(by.id('stream'), function () {
-            browser.findElement(by.className('dropdown-toggle')).click();
-            visible(logout_btn, function () {
-                browser.findElement(logout_btn).click();
-
-                browser.wait(until.elementLocated(by.id('loginButton')), TEST_TIMEOUT).then(function () { callback(); });
-            });
+        browser.get('https://' + app.fqdn).then(function () {
+            return visible(by.id('stream'));
+        }).then(function () {
+            return browser.findElement(by.className('dropdown-toggle')).click();
+        }).then(function () {
+            return visible(logout_btn);
+        }).then(function () {
+            return browser.findElement(logout_btn).click();
+        }).then(function () {
+            return browser.wait(until.elementLocated(by.id('loginButton')), TEST_TIMEOUT);
+        }).then(function () {
+            callback();
         });
     }
 
     function addSubscription(callback) {
-        var url = "https://cloudron.io/blog/rss.xml";
+        var url = 'https://blog.cloudron.io/rss/';
+        const addUrl = app.manifest.version === '1.10.0' ? `${baseUrl()}/i/?c=subscription` : `${baseUrl()}/i/?c=subscription&a=add`;
 
-        browser.get('https://' + app.fqdn);
-
-        visible(by.id('stream'), function () {
-            browser.findElement(by.xpath('//a[@href=".?c=subscription"]')).click();
-            visible(by.id('add_rss'), function () {
-                browser.findElement(by.xpath('//input[@name="url_rss"]')).sendKeys(url);
-                browser.findElement(by.xpath('//form[@id="add_rss"]/div/button[@type="submit"]')).click();
-                visible(by.xpath('//div[@id="notification" and @class="notification good"]'), function() { callback(); });
-            });
+        browser.get(addUrl).then(function () {
+            return visible(by.xpath('//input[@name="url_rss"]'));
+        }).then(function () {
+            return browser.findElement(by.xpath('//input[@name="url_rss"]')).sendKeys(url);
+        }).then(function () {
+            return browser.findElement(by.xpath('//button[@type="submit"]/ancestor::form[@id="add_rss"]')).submit();
+        }).then(function () {
+            return visible(by.xpath('//div[@id="notification" and @class="notification good"]'));
+        }).then(function () {
+            callback();
         });
     }
 
-    function addUser(callback) {
+    function addUser(password, callback) {
         var test_username = 'test';
-        var manage_users_btn = by.xpath('//a[@href=".?c=user&a=manage"]');
 
-        browser.get('https://' + app.fqdn);
-
-        visible(by.id('stream'), function () {
-            browser.findElement(by.className('dropdown-toggle')).click();
-            visible(manage_users_btn, function () {
-                browser.findElement(manage_users_btn).click();
-                visible(by.id('new_user_name'), function () {
-                    browser.findElement(by.id('new_user_name')).sendKeys(test_username);
-                    browser.findElement(by.id('new_user_passwordPlain')).sendKeys(password);
-                    browser.findElement(by.xpath('//form[@action=".?c=user&a=create"]/div/div/button[@type="submit"]')).click();
-                    visible(by.xpath('//div[@id="notification" and @class="notification good"]'), function() { callback(); });
-                });
-            });
+        browser.get(`${baseUrl()}/i/?c=user&a=manage`).then(function () {
+            return visible(by.id('new_user_name'));
+        }).then(function () {
+            return browser.findElement(by.id('new_user_name')).sendKeys(test_username);
+        }).then(function () {
+            return browser.findElement(by.id('new_user_passwordPlain')).sendKeys(password);
+        }).then(function () {
+            return browser.findElement(by.xpath('//button[text()="Create"]')).click();
+        }).then(function () {
+            return visible(by.xpath('//div[@id="notification" and @class="notification good"]'));
+        }).then(function () {
+            callback();
         });
     }
 
+    function enableApi(callback) {
+        browser.get(`${baseUrl()}/i/?c=auth`).then(function () {
+            return browser.findElement(by.id('api_enabled')).click();
+        }).then(function () {
+            return browser.findElement(by.xpath('//button[text()="Submit"]')).submit();
+        }).then(function () {
+            callback();
+        });
+    }
+
+    function checkApiConfiguration(callback) {
+        browser.get(`${baseUrl()}/api/`).then(function () {
+            return exists(by.xpath('//dd[@id="greaderOutput" and contains(text(), "PASS")]'));
+        }).then(function () {
+            return exists(by.xpath('//dd[@id="feverOutput" and contains(text(), "PASS")]'));
+        }).then(function () {
+            callback();
+        });
+    }
+
+    function getAppInfo() {
+        var inspect = JSON.parse(execSync('cloudron inspect'));
+        app = inspect.apps.filter(function (a) { return a.location === LOCATION || a.location === LOCATION + '2'; })[0];
+        expect(app).to.be.an('object');
+    }
+
+    function subscriptionExists(callback) {
+        browser.get(`${baseUrl()}/i/?get=c_1`).then(function () {
+            return visible(by.xpath('//span[text()="Cloudron"]'));
+        }).then(function () {
+            callback();
+        });
+    }
+
+    function getStaticExtensionFile(callback) {
+        superagent.get(`${baseUrl()}/ext.php?f=xExtension-StickyFeeds/static/script.js&t=js`)
+            .buffer(true)
+            .end(function (err, res) {
+                expect(err).to.be(null);
+                expect(res.status).to.be(200);
+                expect(res.text).to.contain('sticky_feeds'); // relies on the buffer flag above
+                callback();
+        });
+    }
 
     xit('build app', function () {
         execSync('cloudron build', { cwd: path.resolve(__dirname, '..'), stdio: 'inherit' });
     });
 
     it('install app', function () {
-        execSync('cloudron install --new --wait --location ' + LOCATION, { cwd: path.resolve(__dirname, '..'), stdio: 'inherit' });
+        execSync('cloudron install --location ' + LOCATION, { cwd: path.resolve(__dirname, '..'), stdio: 'inherit' });
     });
 
-    it('can get app information', function () {
-        var inspect = JSON.parse(execSync('cloudron inspect'));
+    it('can get app information', getAppInfo);
 
-        app = inspect.apps.filter(function (a) { return a.location === LOCATION; })[0];
-
-        expect(app).to.be.an('object');
-    });
-
-    it('can login', login);
+    it('can login', login.bind(null, password));
     it('can subscribe', addSubscription);
-    it('can add users', addUser);
+    it('can add users', addUser.bind(null, password));
+    it('can enable API', enableApi);
+    it('can check configuration', checkApiConfiguration);
+    it('subscription exists', subscriptionExists);
+    it('can get static extension file', getStaticExtensionFile);
     it('can logout', logout);
 
     it('backup app', function () {
@@ -145,25 +211,59 @@ describe('Application life cycle test', function () {
     });
 
     it('restore app', function () {
-        execSync('cloudron restore --app ' + app.id, { cwd: path.resolve(__dirname, '..'), stdio: 'inherit' });
+        const backups = JSON.parse(execSync('cloudron backup list --raw'));
+        execSync('cloudron uninstall --app ' + app.id, { cwd: path.resolve(__dirname, '..'), stdio: 'inherit' });
+        execSync('cloudron install --location ' + LOCATION, { cwd: path.resolve(__dirname, '..'), stdio: 'inherit' });
+        getAppInfo();
+        execSync(`cloudron restore --backup ${backups[0].id} --app ${app.id}`, { cwd: path.resolve(__dirname, '..'), stdio: 'inherit' });
     });
 
-    it('can login', login);
+    it('can login', login.bind(null, password));
+    it('can check configuration', checkApiConfiguration);
+    it('subscription exists', subscriptionExists);
+    it('can get static extension file', getStaticExtensionFile);
     it('can logout', logout);
 
     it('move to different location', function () {
         browser.manage().deleteAllCookies();
-        execSync('cloudron configure --location ' + LOCATION + '2', { cwd: path.resolve(__dirname, '..'), stdio: 'inherit' });
+        execSync('cloudron configure --location ' + LOCATION + '2 --app ' + app.id, { cwd: path.resolve(__dirname, '..'), stdio: 'inherit' });
         var inspect = JSON.parse(execSync('cloudron inspect'));
         app = inspect.apps.filter(function (a) { return a.location === LOCATION + '2'; })[0];
         expect(app).to.be.an('object');
     });
 
-    it('can login', login);
+    it('can login', login.bind(null, password));
+    it('can check configuration', checkApiConfiguration);
+    it('subscription exists', subscriptionExists);
+    it('can get static extension file', getStaticExtensionFile);
     it('can logout', logout);
 
     it('uninstall app', function () {
         execSync('cloudron uninstall --app ' + app.id, { cwd: path.resolve(__dirname, '..'), stdio: 'inherit' });
     });
 
+    // test update
+    it('can install app', function () {
+        execSync('cloudron install --appstore-id org.freshrss.cloudronapp --location ' + LOCATION, { cwd: path.resolve(__dirname, '..'), stdio: 'inherit' });
+    });
+
+    it('can get app information', getAppInfo);
+    it('can login', login.bind(null, password));
+    it('can subscribe', addSubscription);
+    it('can add users', addUser.bind(null, password));
+
+    it('can update', function () {
+        execSync('cloudron update --app ' + app.id, { cwd: path.resolve(__dirname, '..'), stdio: 'inherit' });
+        var inspect = JSON.parse(execSync('cloudron inspect'));
+        app = inspect.apps.filter(function (a) { return a.location === LOCATION; })[0];
+        expect(app).to.be.an('object');
+    });
+
+    it('can login', login.bind(null, password));
+    it('subscription exists', subscriptionExists);
+    it('can get static extension file', getStaticExtensionFile);
+
+    it('uninstall app', function () {
+        execSync('cloudron uninstall --app ' + app.id, { cwd: path.resolve(__dirname, '..'), stdio: 'inherit' });
+    });
 });