-
Notifications
You must be signed in to change notification settings - Fork 19
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
No HTTPS for CV4PVE-ADMIN #67
Comments
hi, best reagrds |
Frank, I am doing a Follow Up? Thanks, |
Sorry, I don't understand. What do you mean? |
I was Referring to the Request that I made about HTTPS when I started this Post 5 Days Ago. |
Hello @kenrmayfield, Best Regards, |
I was wondering if Creating a NGINX SSL for Docker would Work? I have Manipulated the Code Below with Steps: Step 1: Create Directory Create a directory with the name "docker_ssl_proxy" to store the NGINX Configuration file and the certificate and key $ mkdir docker_ssl_proxy Step 2: Change Directory to docker_ssl_proxy Step 2.a: Use Signed Certificates Step 2.b Create the Self-Signed Certificates (If needed) Use OpenSSL to create a Self-Signed Certificate, following command will create a Self-Signed Certificate and a Private Key with a Validity of 365 days. $ openssl req -subj '/CN=localhost' -x509 -newkey rsa:4096 -nodes -keyout key.pem -out cert.pem -days 365 Step 3: Find your container IP address $ docker ps 3.2 Find IP Address To find the container IP address from the Host, you can run the command $ docker inspect -f '{{range .NetworkSettings.Networks}}{{.IPAddress}}{{end}}' (Contrainer-ID) NOTE: Step 4: Create the NGINX configuration file In the same directory (docker_ssl_proxy), create a Configuration File that will Proxy All the Traffic to your upstream server. The upstream server is the application server running a non-SSL connection. The SSL will be using NGINX, and all the traffic will be Proxied to the Host (using the IP Address that you got in Step 3.2) The Configuration File, which in this example is called "proxy_ssl.conf," but can have any name as long as it ends in .conf. The File must have the following Contents below: server { NOTE: Step 5: Run the Docker Container At this point, we have all the Configuration in place to Proxy the Traffic; we simply need to run the Docker Container with the following command. $ docker run --name nginx_proxy -d -v pwd:/etc/nginx/conf.d -p 443:443 nginx NOTE: 5000 is the Port for CV4PVE-ADMIN $docker run --name nginx_proxy -d -v (yourdirectory):/etc/nginx/conf.d -p 443:443 nginx |
you could use a docker compose |
@matteocv On my Previous Posting........what did you think about the Code to try to get HTTPS to work? As far as Docker Compose...........It will be the same Problem.........still No HTTPS. Even if you use a Container, that does not change the Protocol. |
hi, best reagrds |
Frank, I Sent you and Matteo a Email asking a Question about the Reverse Proxy. |
Frank, I was checking back on Previous Comment. |
Frank, Sent Response Email. |
Frank, Sent Response Email. Checking back with you Guys. |
Hi, best regards |
News? |
Still having a Problem getting HTTPS to work? I tried: https://github.com/Corsinvest/cv4pve-admin/tree/main/src/Docker/Nginx/ReverseProxy |
Still having a Problem getting HTTPS to work? I tried: https://github.com/Corsinvest/cv4pve-admin/tree/main/src/Docker/Nginx/ReverseProxy |
Set up a SWAG reverse proxy, HTTPS over port 5000. SSL all setup fine. Errors suggest the backend docker for CV4PVE seems to be incompatible with running in HTTPS in some manner. Seeing in browser console:
Seeing in docker logs:
|
I found and fixed the problem for reverse proxy. |
How can HTTPS be added to a Windows hosted instance? |
While I appreciate the response, I was just curious if there was an option for using the Windows.exe application. We are not running it in Docker therefore cannot put it behind nginx 'easily'. Was just curious if there was a toggle that can be added to force HTTPS |
for now it is not our priority, but it is in the things to do |
The URL for CV4PVE-ADMIN can only be HTTP? HTTPS will not work. I can not use
CV4PVE-ADMIN in a Live Business Environment if only HTTP is used to reach the URL for CV4PVE-ADMIN.
There also No Option to Turn OFF HTTP and Turn ON HTTPS or just use HTTPS completely.
When you try the URL with HTTPS, you will Receive the Error:
Secure Connection Failed
An error occurred during a connection to 192.168.1.143:5000. SSL received a record that exceeded the maximum permissible length.
Error code: SSL_ERROR_RX_RECORD_TOO_LONG
The page you are trying to view cannot be shown because the authenticity of the received data could not be verified.
Please contact the website owners to inform them of this problem.
Learn more…
I did also try Editing the the File appsettings.json and change "urls": "http://0.0.0.0:5000", to "urls": "https://0.0.0.0:5000",
however the Page will not come up.
This is a Great Tool however I can not use this in the Live Business Environment with the URL being HTTP due to the fact that anyone could SNIFF the Username and Password to the Tool since HTTP is Non Encrypted.
Thanks,
Kenneth
The text was updated successfully, but these errors were encountered: