How do i configure the hostname on which globaleaks listen?

[rommelandrea]

Hi all, I'm working on deploying the application into a Kubernetes cluster. Everything works correctly, but I'm having some trouble exposing the end-user application.

I understand that, by design for security reasons, GlobaLeaks doesn't accept proxied connections. That's fine—I can set the Service as a LoadBalancer and expose ports 80 and 443 directly and map it to 8080 and 8443 exposed by Docker container.

However, how can I define the hostname to correctly handle the HTTP-01 challenge for Let's Encrypt?

[evilaliv3]

Thank you for your question @rommelandrea

The hostname can be cownfigured in the network settings and to enable letsencrypt you should activate what is called "Automatic mode":
https://docs.globaleaks.org/en/stable/user/admin/index.html#https

[rommelandrea]

@evilaliv3 thank you for your support. this solve the issue for the certificate.

I have another question because I thought the issues might be related. When I try to submit a report, I don’t get any error message, but I’m taken back to the top of the page. There are no errors in the Chrome console, and I’ve also tried disabling TOR. Do you have any information about this?

[evilaliv3]

I think it is unrelated. Have you assigned at least one recipient to your reporting channel?

[rommelandrea]

I’m not sure what caused it, but I rebuilt everything from scratch and it now works. Thanks for the support.

Would you be interested in adding documentation for the Kubernetes configuration and Dockerfile adjustments needed to run in an ARM64 environment?

[evilaliv3]

Sure thing. Did you manage to achieve an interesting configurations really redundant and making usage of kubernetes capabilities?

\cc @rglauco