huly-selfhost icon indicating copy to clipboard operation
huly-selfhost copied to clipboard
verified publisher icon hcengineering

How to setup SSL?

Open burakkaraceylan opened this issue 1 year ago • 8 comments

Hello,

Running the frontend behind SSL causes problems since other services are configured to use non-secure connections. Is there an easy way to set up SSL that I am missing or do I have to terminate SSL on nginx reverse proxy for every service?

Thanks,

burakkaraceylan avatar Jun 27 '24 07:06 burakkaraceylan

I've just finished setting up SSL for all the services. It was quite a hassle, especially with WebSockets. I couldn't figure out where the transactor URL came from and why it was parsing the URL and chopping off everything after the slash.

Anyways, I'll submit a pull request with the compose file, setup script and a guide. Hope, they accept it.

MuktadirHassan avatar Jun 27 '24 12:06 MuktadirHassan

@burakkaraceylan Here's a working version. #19 Let me know if you find any issues.

MuktadirHassan avatar Jun 27 '24 12:06 MuktadirHassan

That is great, thank you!

burakkaraceylan avatar Jun 27 '24 12:06 burakkaraceylan

@MuktadirHassan , @burakkaraceylan I tried it and it is perfect, but for some reason WS connection is not working. After login there is an error in the browser console that ws connection fails. Do you have such an issue? Will be very thankful if you will help.

MaksymOsovitnii avatar Jul 03 '24 20:07 MaksymOsovitnii

@MuktadirHassan , @burakkaraceylan I tried it and it is perfect, but for some reason WS connection is not working. After login there is an error in the browser console that ws connection fails. Do you have such an issue? Will be very thankful if you will help.

I did face issues with wss. I solved this by exposing the ports directly via traefik, instead of using PathPrefix. So, it should work by default now.

To debug your issue. Try hitting the wss endpoint with postman. Check if you are able to connect to wss from postman. Also, check the logs for transactor and collaborator.

MuktadirHassan avatar Jul 03 '24 20:07 MuktadirHassan

i use ingress nginx and meet the same question with @MaksymOsovitnii

JumpWill avatar Aug 19 '24 18:08 JumpWill

I couldn't solve the Web Socket problem.

I don't understand about Traefik, my old stack I used from a course teaching Swarm, and I tried to blend the traefik stack that you provide toghether with it.

image hulyio.txt traefik.txt

Matheus-h-Campos avatar Sep 02 '24 00:09 Matheus-h-Campos

I did face issues with wss. I solved this by exposing the ports directly via traefik, instead of using PathPrefix. So, it should work by default now.

Idk why but I changed on services.account.enviroment: From: - TRANSACTOR_URL=ws://transactor:3333 To: - TRANSACTOR_URL=wss://huly.digitalinabottle.com:3333

And it worked. Idk if I setted up something wrong in another place, but it seems to solve for me.

Matheus-h-Campos avatar Sep 02 '24 00:09 Matheus-h-Campos