Comments (5)
teohhanhui
commented on April 28, 2024
The Vulcain gateway server is connecting using Host: api, which does not match the Subject Alternate Name (SAN) of the certificate. Is it not possible to just connect using the public domain name?
from vulcain.
jessequinn
commented on April 28, 2024
that is correct. I also tried that. using http: site_url and https: site_url and vulcain complained about certificates being unauthorized or something. i can try to get the exact error message after lunch.
from vulcain.
teohhanhui
commented on April 28, 2024
Seems like golang/go#28168
We need to override req.Host explicitly?
from vulcain.
jessequinn
commented on April 28, 2024
no idea. ill wait for a response. thanks.
the error when using https: site_url
vulcain_1 | time="2019-12-04T20:25:33Z" level=error msg="http: proxy error: x509: certificate signed by unknown authority"
vulcain_1 | 177.74.217.145 - - [04/Dec/2019:20:25:32 +0000] "POST /authenticate HTTP/1.1" 502 23 "" "PostmanRuntime/7.20.1"
vulcain_1 | 2019/12/04 20:25:33 http: TLS handshake error from 3.232.5.187:37056: remote error: tls: bad certificate
from vulcain.
Neirda24
commented on April 28, 2024
If using mkcert you need to mount the $(mkcert -CAROOT)/rootCA.pem into the vulcain container (path = /etc/ssl/certs/ca-certificates.crt) so vulcain will see the certificate as correctly signed.
Regarding the use of the real host instead of the service name a good trick is to use the network config.
networks:
vulcain:
name: 'vulcain'
services:
vulcain:
networks:
default: {}
vulcain: {}
app:
networks:
default: {}
vulcain:
aliases:
- 'site_url'from vulcain.
Related Issues (20)
- Package deleted: https://github.com/dunglas/vulcain/caddy HOT 6
- Regression since 0.4.1 HOT 3
- Vulcain does not work "out of the box" with API Platform HOT 3
- Cannot tag Vulcain in Stackoverflow HOT 2
- integration: html - https://htmx.org/examples/ HOT 1
- Http,2,3 vulcain
- Flaky test
- Stateless authorization on preload requests
- Mistagged caddy module? HOT 6
- [Question] Can i use FrankenPHP with Vulcain and cache-handler in single Caddy process?
- Curren state HOT 2
- Preload link should include the "crossorigin" attribute, if initial request uses CORS
- Link Varnish X-Key broken HOT 1
- Aucun preload ne fonctionne HOT 2
- Fields issue on preload entity HOT 3
- Unable to decode with compressed response from origin HOT 1
- Preload only working on localhost HOT 1
- Request made by the browser does not contain the "authorization" header
- Response's body is percent encoded when parametrized queries HOT 1
- Re-add Server Push tests
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from vulcain.