1534 Stockton

August 19, 2018

DT Capture One Scripts

August 8, 2018

Over the past few months I’ve been working on a small collection of scripts for Capture One. They’re meant to make common actions on set easier, faster, and less distruptive to the shoot. Most of the scripts are paired with a keyboard shortcut for extra speed.

All of the scripts are availble on GitHub.

I’m always looking for more script ideas, so if there’s a C1 workflow you’re looking to automate get in touch.

GitLab SSH

July 16, 2018

Over the weekend I migrated my home server from an aging Mac mini with far too little RAM to a new server in a handmade wooden case.


Arguably, the bigger part of the move involved migrating all of the various services to Docker to help make management & backups easier. I settled on using nginx-proxy to handle the reverse proxy and SSL for all of the containers, and for the most part everything went smoothly with one big exception: SSH for GitLab.

The whole point of Docker is to lock everything down as much as possible. Most of the containers1 don’t have ports bound to the system and are only accessibly by their own Docker network. This includes port 22, which is an important one.

There are a few obvious options, all with problems:

The Solution

Figuring other people had to have run into this problem before I did some searching around and finally found an article by someone who had the same list requirments I did.

The author did some excellent sleuthing to figure out that you can set up a git user on the host to forward the SSH requests the to git user in the container. The guide is fairly straight-forward and explains the reasoning behind each step, however there were a a couple of small problems I ran into.

Authentication Refused

The most perplexing issue was this line in /var/log/auth.log:

Authentication refused: bad ownership or modes for directory /srv

I’ve seen the error before, but for the .ssh directory or specific files, but never on a top-level directory.

It turns out sshd is resolving the symlink and traveling up the hierarchy to the root of the drive, which can’t have such limited permissions.

After a bit of trial and error the the solution I came up with is to hard link the files in .ssh so sshd is happy with their paths:

ln /srv/gitlab/data/.ssh/* /home/git/.ssh/

This allows both the GitLab container to update the contents as keys are added or removed while keeping the paranoid sshd happy.


  1. The Unifi Controller interacts heavily with the local network, thus requiring a bunch of bound ports. [return]

Seattle

July 7, 2018






Introducing Capturebot

June 1, 2018

I’ve been working on a new application, called Capturebot, for the last few of months, and it’s finally ready for a public beta.

Capturebot is an image collection validator. It works a lot like a smart album or Finder search, but instead of filtering images for viewing it tests whether collections contain matching images. Capturebot monitors a session in real time and shows what collections have images that meet all of the given criteria. Unlike a smart album, Capturebot lets you drill down into each part of the profile to see how many images pass.

Validations can be set up for ensuring the correct number of selects, testing for an exposure bracket, using regex to match specific file name formats, and much more.

If you’re on a larger set, or are sharing the computer with an art director, the validation session can be shared over the network. This allows you to view the validation on the shoot machine from another computer.

If you’d like to help test go download a copy of Capturebot and be sure to send in any feedback you have.