-
-
Notifications
You must be signed in to change notification settings - Fork 981
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
setup-ssl fails on Linux #222
Comments
Thanks for the report, it is indeed a mac-only solution as implemented. Can you try replacing the contents of
Then run it I don't have linux to test at the moment, but if the above works I can add that into the script. |
The cp command also needs to be executed with sudo. Other than that, it worked fine. Not sure though about the general idea as this would overwrite the docker-magento-ca.pem each time I would run this for a new project. |
I'm having the same issue on Ubuntu 18.04.4 LTS. When I do the set-up as described in the README file, I always end up with a 404 in nginx and the logs say the following: 2020/02/25 09:23:15 [info] 6#6: *44 SSL_do_handshake() failed (SSL: error:14094416:SSL routines:ssl3_read_bytes:sslv3 alert certificate unknown:SSL alert number 46) while SSL handshaking, client: 172.19.0.1, server: 0.0.0.0:8443 What exactly were your steps to figure this out? @shochdoerfe Thx in advance! |
For Arch#!/bin/bash
docker-compose exec -u root app mkcert -install
docker cp $(docker-compose ps -q app|awk '{print $1}'):/root/.local/share/mkcert/rootCA.pem ./rootCA.cert
echo "System password requested to install certificate authority on host..."
sudo trust anchor --store rootCA.cert
rm rootCA.cert |
Can someone verify this line also works on Ubuntu?
I can update the |
i tried but not working |
@markshust this is for Arch and Fedora only. Commands for Ubuntu / Debian mentioned here https://wiki.archlinux.org/index.php/User:Grawity/Adding_a_trusted_CA_certificate
|
David Alger was nice enough to share his setup for Warden -- perhaps something like this can be integrated into this setup https://github.com/davidalger/warden/blob/develop/commands/install.cmd#L38-L56 |
I can confirm that I modified the script and here is working one:
hope this helps! |
Perhaps we should move |
I feel that's a good idea. |
I've been a bit shutdown since March, thanks for being patient. I modified
This seems like the least-invasive solution. Let's see if it works. I hate adding host dependencies. This new version will be in the 33.0.0 tag going out later today. Please reopen/comment on this ticket if it isn't working. |
We have issues with the certificates on ubuntu and firefox, what seemed to work finally was: Moving the certificate as .crt instead of pem: Then adding a policies.json file:
As specified here: Which also mentions the location of that json file: |
Here is how our copy of setup-ssl-ca finally works for both Firefox and Chrome in Mac and Linux (only ubuntu 20.04 tested):
|
Actually we did a last change to remove the existing cert in linux machines, should I make a PR for this? |
@santibm that would be great, as long as it's backwards-compat with mac, I'll gladly take it in. |
On Ubuntu 18.04 is not working, I run bin/setup-ssl-ca (I get no errors), then bin/setup-ssl magento.test but I still get invalid certificate on Chrome and Firefox. |
Not working on Ubuntu 18.04, when I run bin/setup-ssl-ca I get
If i put
|
I merged #500 which should resolve this issue. Please wait for version 40.0.0 to be tagged before testing. If it still doesn't work, please let me know and I will reopen this ticket. |
When trying to run the setup-ssl command on Linux it fails for the
sudo security add-trusted-cert
command as there's no security binary which could be called. I'd assume that's a Mac-only solution.The text was updated successfully, but these errors were encountered: