New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Command missing to set HTTPS port #27
Comments
I've got the same problem. Would be nice if the feature can be included in the upcoming release. Cheers |
Hi, I don't think is a problem. |
With Snap it's probably a bit different. |
@jassonmc, I think the right way was placed both servers behind a proxy server. But your argument is valuable. |
I've the same use case as @jassonmc, putting the DS on the same machine as nextcloud. The onlyoffice-ds shall only be accessibly by the nextcloud, so i want to run nextcloud on 443 and onlyoffice-ds on a different https port. |
What people are asking for won't work because SSL works on 443, for SSL to work for ONLYOFFICE which is needed it needs 443 open and it needs to be using it. If your Nextcloud is HTTPS that is. What you can do to run both on the same machine is put ONLYOFFICE inside of an LXC container and reverse proxy to it as if it was another machine using the Apache or NGINX solutions provided on the main site. |
@duderino416 |
@jassonmc
Apache under nextcloud is expecting the same certificates as nginx under onlyoffice ??? thanks in advance. |
@jassonmc cp cert.pem /var/snap/onlyoffice-ds/current/var/www/onlyoffice/Data/certs/onlyoffice.crt cp onlyoffice.crt /var/snap/onlyoffice-ds/current/var/www/onlyoffice/Data/certs help! |
@jassonmc is there any clue to create a self signed certificate that works on my local machine? |
@jassonmc |
@gilluc Unfortunately, using self-signed cert or a non-public CA cert makes the adjustments in the configs as explained below a necessity. Hope that helps ;) Nextcloud setupsnap install nextcloud Adjust config for Nextcloudvi /var/snap/nextcloud/current/nextcloud/config/config.php snap restart nextcloud Onlyoffice setupsnap install onlyoffice-ds Adjust config for Onlyofficevi /var/snap/onlyoffice-ds/current/etc/onlyoffice/documentserver/default.json -> "rejectUnauthorized": false snap restart onlyoffice-ds |
Thank you
I will try...
.................
Gilles Lucato
gilles@lucato.com
................
Télécharger BlueMail pour Android
Le 5 janv. 2020 à 22:10, à 22:10, jassonmc <notifications@github.com> a écrit:
…
@gilluc
I copy/paste my internal notes I used to install on a vanilla CentOS 7
VM.
Only showing the most important steps though, omitting the cert
creation process.
I went the standard route of creating a root CA, intermediate CA and
finally the server cert from the intermediate CA. The root CA cert and
intermediate CA cert went into the chain.pem file for Nextcloud. I'm
not sure what you would insert into the chain.pem if you only have a
self-signed single certificate, probably nothing, since there is no
chain.
Unfortunately, using self-signed cert or a non-public CA cert makes the
adjustments in the configs as explained below a necessity.
Hope that helps ;)
# Nextcloud setup
snap install nextcloud
mkdir /var/snap/nextcloud/current/certs/custom/
chmod 700 /var/snap/nextcloud/current/certs/custom/
cp /root/CERT/pem_nextcloud/* /var/snap/nextcloud/current/certs/custom/
nextcloud.enable-https custom /certs/custom/cert.pem
/certs/custom/privkey.pem /certs/custom/chain.pem
snap set nextcloud ports.http=888 ports.https=444
# Adjust config for Nextcloud
vi /var/snap/nextcloud/current/nextcloud/config/config.php
'onlyoffice' =>
array (
'verify_peer_off' => TRUE,
),
snap restart nextcloud
# Onlyoffice setup
snap install onlyoffice-ds
cp /root/CERT/onlyoffice.key
/var/snap/onlyoffice-ds/current/var/www/onlyoffice/Data/certs/onlyoffice.key
cp /root/CERT/onlyoffice.crt
/var/snap/onlyoffice-ds/current/var/www/onlyoffice/Data/certs/onlyoffice.crt
snap set onlyoffice-ds onlyoffice.ds-port=889
# Adjust config for Onlyoffice
vi
/var/snap/onlyoffice-ds/current/etc/onlyoffice/documentserver/default.json
-> "rejectUnauthorized": false
snap restart onlyoffice-ds
--
You are receiving this because you were mentioned.
Reply to this email directly or view it on GitHub:
#27 (comment)
|
Thank you so much, it works!!!
.................
Gilles Lucato
gilles@lucato.com
................
Télécharger BlueMail pour Android
Le 5 janv. 2020 à 22:10, à 22:10, jassonmc <notifications@github.com> a écrit:
…
@gilluc
I copy/paste my internal notes I used to install on a vanilla CentOS 7
VM.
Only showing the most important steps though, omitting the cert
creation process.
I went the standard route of creating a root CA, intermediate CA and
finally the server cert from the intermediate CA. The root CA cert and
intermediate CA cert went into the chain.pem file for Nextcloud. I'm
not sure what you would insert into the chain.pem if you only have a
self-signed single certificate, probably nothing, since there is no
chain.
Unfortunately, using self-signed cert or a non-public CA cert makes the
adjustments in the configs as explained below a necessity.
Hope that helps ;)
# Nextcloud setup
snap install nextcloud
mkdir /var/snap/nextcloud/current/certs/custom/
chmod 700 /var/snap/nextcloud/current/certs/custom/
cp /root/CERT/pem_nextcloud/* /var/snap/nextcloud/current/certs/custom/
nextcloud.enable-https custom /certs/custom/cert.pem
/certs/custom/privkey.pem /certs/custom/chain.pem
snap set nextcloud ports.http=888 ports.https=444
# Adjust config for Nextcloud
vi /var/snap/nextcloud/current/nextcloud/config/config.php
'onlyoffice' =>
array (
'verify_peer_off' => TRUE,
),
snap restart nextcloud
# Onlyoffice setup
snap install onlyoffice-ds
cp /root/CERT/onlyoffice.key
/var/snap/onlyoffice-ds/current/var/www/onlyoffice/Data/certs/onlyoffice.key
cp /root/CERT/onlyoffice.crt
/var/snap/onlyoffice-ds/current/var/www/onlyoffice/Data/certs/onlyoffice.crt
snap set onlyoffice-ds onlyoffice.ds-port=889
# Adjust config for Onlyoffice
vi
/var/snap/onlyoffice-ds/current/etc/onlyoffice/documentserver/default.json
-> "rejectUnauthorized": false
snap restart onlyoffice-ds
--
You are receiving this because you were mentioned.
Reply to this email directly or view it on GitHub:
#27 (comment)
|
Great, thank you ! However, for obvious reasons it would be helfull to access https://nexcloud.domain.tdl and not https://nextcloud.domain.tld:444 |
I didn't find a way to change it...
.................
Gilles Lucato
gilles@lucato.com
................
Télécharger BlueMail pour Android
Le 15 janv. 2020 à 11:54, à 11:54, Buliwif <notifications@github.com> a écrit:
…Great, thank you !
It work like a charm a give us the avaibility to work both snap on the
same machine.
However, for obvious reasons it would be helfull to access
https://nexcloud.domain.tdl and not https://nextcloud.domain.tld:444Is
it impossible to change the Onlyoffice snap https port ?
--
You are receiving this because you were mentioned.
Reply to this email directly or view it on GitHub:
#27 (comment)
|
The best way I find is to add a DNS entries pointing on the IP adress of my router, and define a NAT which translate 433 to 444. |
I haven't found a way to adjust the port for https. To me, this also the biggest draw back from the Snap technology; its super secure immutability makes it also super unflexible, since you cannot adjust any config, not even to fix something... It would help tremendously, if there would be a way to serve an alternative file for one that's stored immutable on Squashfs. Something like Docker layering tech or similar. |
We can set the HTTP port with that:
snap set onlyoffice-ds onlyoffice.ds-port=8888
But there does not seem to to be one for HTTPS port.
Please add something similar like:
snap set onlyoffice-ds onlyoffice.ds-sport=4433
Cheers
jassonmc
The text was updated successfully, but these errors were encountered: