Comments (5)
The Vulcain gateway server is connecting using Host: api
, which does not match the Subject Alternate Name (SAN) of the certificate. Is it not possible to just connect using the public domain name?
from vulcain.
that is correct. I also tried that. using http: site_url and https: site_url and vulcain complained about certificates being unauthorized or something. i can try to get the exact error message after lunch.
from vulcain.
Seems like golang/go#28168
We need to override req.Host
explicitly?
from vulcain.
no idea. ill wait for a response. thanks.
the error when using https: site_url
vulcain_1 | time="2019-12-04T20:25:33Z" level=error msg="http: proxy error: x509: certificate signed by unknown authority"
vulcain_1 | 177.74.217.145 - - [04/Dec/2019:20:25:32 +0000] "POST /authenticate HTTP/1.1" 502 23 "" "PostmanRuntime/7.20.1"
vulcain_1 | 2019/12/04 20:25:33 http: TLS handshake error from 3.232.5.187:37056: remote error: tls: bad certificate
from vulcain.
If using mkcert you need to mount the $(mkcert -CAROOT)/rootCA.pem
into the vulcain container (path = /etc/ssl/certs/ca-certificates.crt
) so vulcain will see the certificate as correctly signed.
Regarding the use of the real host instead of the service name a good trick is to use the network config.
networks:
vulcain:
name: 'vulcain'
services:
vulcain:
networks:
default: {}
vulcain: {}
app:
networks:
default: {}
vulcain:
aliases:
- 'site_url'
from vulcain.
Related Issues (20)
- Package deleted: https://github.com/dunglas/vulcain/caddy HOT 6
- Regression since 0.4.1 HOT 3
- Vulcain does not work "out of the box" with API Platform HOT 3
- Cannot tag Vulcain in Stackoverflow HOT 2
- integration: html - https://htmx.org/examples/ HOT 1
- Http,2,3 vulcain
- Flaky test
- Stateless authorization on preload requests
- Mistagged caddy module? HOT 6
- [Question] Can i use FrankenPHP with Vulcain and cache-handler in single Caddy process?
- Curren state HOT 2
- Preload link should include the "crossorigin" attribute, if initial request uses CORS
- Link Varnish X-Key broken HOT 1
- Aucun preload ne fonctionne HOT 2
- Fields issue on preload entity HOT 3
- Unable to decode with compressed response from origin HOT 1
- Preload only working on localhost HOT 1
- Request made by the browser does not contain the "authorization" header
- Response's body is percent encoded when parametrized queries HOT 1
- Re-add Server Push tests
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from vulcain.