Opencast web HTTPS not getting enabled
67 views
Skip to first unread message
Ankur Jain
Nov 7, 2024, 6:48:39 AM11/7/24
to us...@opencast.org
Hi All,
I have installed the Opencast server 16.5 and trying to configure Nginx to act as an HTTP(S) proxy for Opencast but it is not working Please help and guide
Dietmar Zenker
Nov 7, 2024, 8:18:56 AM11/7/24
to Opencast Users, ankur...@gmail.com
In principle, it does work, BUT: you are using a self-signed certificate which is of course not accepted by the browser for security reasons. Thus, I recommend to use a certificate from an official provider, e.g. LetsEncrypt which could be easily obtained with certbot.
Regards,
Dietmar
Ankur Jain
Nov 9, 2024, 5:24:11 AM11/9/24
to us...@opencast.org
Hi Dietmar,
Thank you for your reply. I changed the certificate to
Let's Encrypt, but HTTPS still isn't enabled. When I try to enable HTTPS, the website stops working.
To unsubscribe from this group and stop receiving emails from it, send an email to users+un...@opencast.org.
Ankur Jain
Nov 9, 2024, 5:29:28 AM11/9/24
to us...@opencast.org
Hi,
The opencast web page is now showing as secure, but the "Create Event" feature is not displaying properly.
Ankur Jain
Nov 9, 2024, 10:52:43 AM11/9/24
to us...@opencast.org
Greg Logan
Nov 11, 2024, 4:15:09 PM11/11/24
to us...@opencast.org
Hi Ankur,
We'd need Opencast's logs to diagnose more, but my guess would be something elasticsearch related.
G
Ankur Jain
Nov 12, 2024, 12:35:08 AM11/12/24
to us...@opencast.org
Hi Greg,
Thanks for your reply. Please find attached logs as required.
Thanks & Regards,
Ankur Jain
Greg Logan
Nov 13, 2024, 12:03:43 AM11/13/24
to us...@opencast.org
Hi Ankur,
Looking at the log, it's still full of exceptions relating to SSL certificates.. Did you make sure to *remove* the SSL related changes in Opencast's configuration? It might be easier, especially if you've never gotten Opencast running properly to start fresh rather than trying to figure out exactly what you changed :)
G
Ankur Jain
Nov 13, 2024, 1:37:14 AM11/13/24
to us...@opencast.org
Hi Greg,
I have repeatedly installed Opencast and encounter issues whenever SSL is enabled. I have not found a resolution or the correct installation method for Ubuntu.
Please advise.
BR,
Ankur
Dietmar Zenker
Nov 13, 2024, 3:07:47 AM11/13/24
to Opencast Users, ankur...@gmail.com
Hi Ankur,
if you're using a nginx proxy, make shure that org.osgi.service.http.secure.enabled is set to FALSE in org.ops4j.pax.web.cfg.
Maybe there is a problem with your nginx config. Could you pls. also post your nginx.conf?
Regards,
Dietmar
Dietmar Zenker
Nov 13, 2024, 9:24:06 AM11/13/24
to Opencast Users, ankur...@gmail.com
Hi Arkur,
I'm wondering that the path to certificate and key in your nginx.conf points to /etc/opencast/ssl, since usually LetsEncrypt certificates obtained with certbot are stored in /etc/letsencrypt/archive/... (with a symlink in /etc/letsencrypt/live/... that points to the current version), but maybe this is different in Ubuntu.
I also recommend to use pem format and provide the fullchain including intermediate certificate. As an example, this is the config of our installation:
# Path to the TLS certificate and private key. In almost all cases, you
# need to provide intermediate certificates as well to ensure browsers
# get the whole certificate chain.
ssl_certificate_key /etc/letsencrypt/live/SERVER_URL/privkey.pem;
ssl_certificate /etc/letsencrypt/live/SERVER_URL/fullchain.pem;
# need to provide intermediate certificates as well to ensure browsers
# get the whole certificate chain.
ssl_certificate_key /etc/letsencrypt/live/SERVER_URL/privkey.pem;
ssl_certificate /etc/letsencrypt/live/SERVER_URL/fullchain.pem;
In your case, SERVER_URL would be opencast.vu2vu.online.
Regards,
Dietmar
Ankur Jain
Nov 15, 2024, 8:15:50 AM11/15/24
to us...@opencast.org
I have updated the new Let’s Encrypt certificate with an opencast fresh installation, but the same issue persists. I cannot create users; this may be related to the license or security settings. Can you please help me understand the exact issue?
To unsubscribe from this group and stop receiving emails from it, send an email to users+un...@opencast.org.
Greg Logan
Nov 20, 2024, 11:51:11 AM11/20/24
to us...@opencast.org
Hi Ankur,
Can you open the developer tools (F12) while you have your admin UI loaded? If there are any requests in the network tab that aren't working correctly then you've got something wrong with a backend service. We'd need more information to be able to tell what, especially now that you've (seemingly) fixed the SSL issues.
Thanks,
G
Ankur Jain
Nov 21, 2024, 1:24:56 AM11/21/24
to us...@opencast.org
Hi Greg,
You are correct it seems like the backend services are not working properly below is the screenshot for your reference, please guide
Thanks,
Ankur
Greg Logan
Nov 22, 2024, 6:54:17 PM11/22/24
to Opencast Users
Best guess is something opensearch related. Hard to tell without up to date logs. This could be an opencast to opensearch connection issue, or it could be an opensearch config issue, especially if your configured opensearch to use ssl with the old cert.
G
Ankur Jain
Nov 26, 2024, 7:35:33 AM11/26/24
to us...@opencast.org
Hi Greg,
Can you provide simple installation steps to test the system? The administration guide lacks clear instructions.
Thanks,
Ankur
Greg Logan
Nov 28, 2024, 11:30:45 PM11/28/24
to us...@opencast.org
Hi Ankur,
Your best bet is to start from scratch and follow the instructions at https://docs.opencast.org/r/16.x/admin/#configuration/basic/ step by step, and when you get to enabling https use either nginx or apache - do not enable https directly in Opencast.
G
Ankur Jain
Dec 3, 2024, 7:00:45 AM12/3/24
to us...@opencast.org
Hi Greg,
Thanks, I am facing an installation issue with Ubuntu, but I can install it without any issues on Red Hat.
Regards,
Ankur
Reply all
Reply to author
Forward
0 new messages