weasis 3.5.4 (native version) image loading issue (blank screen)

[nutun]

Hi,

I have deployed dcm4chee-arc-psql:5.19.0-secure dockerized on debian. Data archival is fine. Other services are also fine.

When I am loading/viewing image in weasis-3.5.4 web through weasis-pacs-connector, it works perfectly fine.

I am facing problem when I want to load/view images in weasis-3.5.4 (native version). I have installed weasis-3.5.4 exe on my windows desktop and when I click on eye-icon, weasis-3.5.4 (native version) opens on my desktop PC but image did not displayed as weasis shows blank screen.

My invoke image URLs are:

Invoke Image Display Patient URL:

weasis://$dicom:rs --url "http://<190.78.x.x>:8080/dcm4chee-arc/aets/DCM4CHEE/rs" -r "&patientID={}" --query-ext "&includedefaults=false" -H "Authorization: &access_token={}&target=_self"

Invoke Image Display Study URL:

weasis://$dicom:rs --url "http://<190.78.x.x>:8080/dcm4chee-arc/aets/DCM4CHEE/rs" -r "&studyUID={}" --query-ext "&includedefaults=false" -H "Authorization: &access_token={}&target=_self"

If I install dcm4chee-arc-psql:5.19.0-secure using IP address 172.18.x.x, all images loads in weasis-3.5.4 native version and there is no issue. but as I use IP 190.78.x.x, problem occurs.

I saw the logs which are pasted below:

2019-12-13 15:04:32,506 INFO  [org.dcm4chee.arc.qido.QidoRS] (default task-41) SearchForStudies: 1 Matches

2019-12-13 15:04:32,700 INFO  [org.dcm4chee.arc.export.mgt.impl.ExportScheduler] (EE-ManagedScheduledExecutorService-default-Thread-8) start ExportScheduler.execute()

2019-12-13 15:04:32,703 INFO  [org.dcm4chee.arc.export.mgt.impl.ExportScheduler] (EE-ManagedScheduledExecutorService-default-Thread-8) finished ExportScheduler.execute()

2019-12-13 15:04:40,491 WARN  [org.keycloak.adapters.RequestAuthenticator] (default task-41) SSL is required to authenticate. Remote address 190.78.x.x is secure: false, SSL required for: EXTERNAL .

2019-12-13 15:04:56,029 INFO  [org.dcm4chee.arc.qido.QidoRS] (default task-41) Process GET /dcm4chee-arc/aets/DCM4CHEE/rs/studies?offset=0&limit=21&includefield=all&orderby=-StudyDate,-StudyTime&returnempty=false&compressionfailed=false&storageVerificationFailed=false from f5733459-d856-4750...@190.78.x.x

2019-12-13 15:04:56,032 INFO  [org.dcm4chee.arc.qido.QidoRS] (default task-41) SearchForStudies: 1 Matches

2019-12-13 15:04:57,996 INFO  [org.dcm4chee.arc.ian.scu.IANScheduler] (EE-ManagedScheduledExecutorService-default-Thread-6) start IANScheduler.execute()

2019-12-13 15:04:58,000 INFO  [org.dcm4chee.arc.ian.scu.IANScheduler] (EE-ManagedScheduledExecutorService-default-Thread-6) finished IANScheduler.execute()

2019-12-13 15:05:00,385 WARN  [org.keycloak.adapters.RequestAuthenticator] (default task-41) SSL is required to authenticate. Remote address 190.78.x.x is secure: false, SSL required for: EXTERNAL .

15:05 13/12/2019

Need guidelines on this issue.

[Gunter Zeilinger]

Guess you configured http - and not https - for AUTH_SERVER_URL which is by default only enabled for private IPs. To permit using http also with public IPs, you have to set SSL_REQUIRED to none - and also change the Realm login setting for "Require SSL" in Keycloak correspondingly - but be aware that username/password are then transferred plain text over the wire!

Sent with ProtonMail Secure Email.

‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐

--

You received this message because you are subscribed to the Google Groups "dcm4che" group.

To unsubscribe from this group and stop receiving emails from it, send an email to dcm4che+u...@googlegroups.com.

To view this discussion on the web visit https://groups.google.com/d/msgid/dcm4che/68fa7003-f444-4030-9dd9-4f06547ec89f%40googlegroups.com.

[nutun]

Thank you gunterze. It solved my problem.

I have added SSL_REQUIRED=none in docker-compose.env file only. I did not changed the Realm login setting for "Require SSL" in Keycloak so let me tell that the username/password will now transfer plain text over the wire? as I changed only in docker-compose.env file and no change in Keycloak.

On Friday, December 13, 2019 at 5:01:55 PM UTC+5, gunterze wrote:

Guess you configured http - and not https - for AUTH_SERVER_URL which is by default only enabled for private IPs. To permit using http also with public IPs, you have to set SSL_REQUIRED to none - and also change the Realm login setting for "Require SSL" in Keycloak correspondingly - but be aware that username/password are then transferred plain text over the wire!

Sent with ProtonMail Secure Email.

‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐

On Friday, December 13, 2019 11:33 AM, nutun <nutun...@gmail.com> wrote:

Hi,

I have deployed dcm4chee-arc-psql:5.19.0-secure dockerized on debian. Data archival is fine. Other services are also fine.

When I am loading/viewing image in weasis-3.5.4 web through weasis-pacs-connector, it works perfectly fine.

I am facing problem when I want to load/view images in weasis-3.5.4 (native version). I have installed weasis-3.5.4 exe on my windows desktop and when I click on eye-icon, weasis-3.5.4 (native version) opens on my desktop PC but image did not displayed as weasis shows blank screen.

My invoke image URLs are:

Invoke Image Display Patient URL:

weasis://$dicom:rs --url "http://<190.78.x.x>:8080/dcm4chee-arc/aets/DCM4CHEE/rs" -r "&patientID={}" --query-ext "&includedefaults=false" -H "Authorization: &access_token={}&target=_self"

Invoke Image Display Study URL:

weasis://$dicom:rs --url "http://<190.78.x.x>:8080/dcm4chee-arc/aets/DCM4CHEE/rs" -r "&studyUID={}" --query-ext "&includedefaults=false" -H "Authorization: &access_token={}&target=_self"

If I install dcm4chee-arc-psql:5.19.0-secure using IP address 172.18.x.x, all images loads in weasis-3.5.4 native version and there is no issue. but as I use IP 190.78.x.x, problem occurs.

I saw the logs which are pasted below:

2019-12-13 15:04:32,506 INFO  [org.dcm4chee.arc.qido.QidoRS] (default task-41) SearchForStudies: 1 Matches

2019-12-13 15:04:32,700 INFO  [org.dcm4chee.arc.export.mgt.impl.ExportScheduler] (EE-ManagedScheduledExecutorService-default-Thread-8) start ExportScheduler.execute()

2019-12-13 15:04:32,703 INFO  [org.dcm4chee.arc.export.mgt.impl.ExportScheduler] (EE-ManagedScheduledExecutorService-default-Thread-8) finished ExportScheduler.execute()

2019-12-13 15:04:40,491 WARN  [org.keycloak.adapters.RequestAuthenticator] (default task-41) SSL is required to authenticate. Remote address 190.78.x.x is secure: false, SSL required for: EXTERNAL .

2019-12-13 15:04:56,029 INFO  [org.dcm4chee.arc.qido.QidoRS] (default task-41) Process GET /dcm4chee-arc/aets/DCM4CHEE/rs/studies?offset=0&limit=21&includefield=all&orderby=-StudyDate,-StudyTime&returnempty=false&compressionfailed=false&storageVerificationFailed=false from f5733459-d856-4750-aa0c-12eab2...@190.78.x.x

2019-12-13 15:04:56,032 INFO  [org.dcm4chee.arc.qido.QidoRS] (default task-41) SearchForStudies: 1 Matches

2019-12-13 15:04:57,996 INFO  [org.dcm4chee.arc.ian.scu.IANScheduler] (EE-ManagedScheduledExecutorService-default-Thread-6) start IANScheduler.execute()

2019-12-13 15:04:58,000 INFO  [org.dcm4chee.arc.ian.scu.IANScheduler] (EE-ManagedScheduledExecutorService-default-Thread-6) finished IANScheduler.execute()

2019-12-13 15:05:00,385 WARN  [org.keycloak.adapters.RequestAuthenticator] (default task-41) SSL is required to authenticate. Remote address 190.78.x.x is secure: false, SSL required for: EXTERNAL .

15:05 13/12/2019

Need guidelines on this issue.

--

You received this message because you are subscribed to the Google Groups "dcm4che" group.

To unsubscribe from this group and stop receiving emails from it, send an email to dcm...@googlegroups.com.

[Gunter Zeilinger]

The configured protocol for AUTH_URL determines, if the login is done encrypted or not - the SSL_REQUIRED flag only controls for which IP ranges using https is required.

SSL_REQUIRED in docker-compose.env applies also on the default configuration of keycloak realm. s. https://github.com/dcm4che-dockerfiles/keycloak#ssl_required . So if you purged your previous Keycloak installation, setting SSL_REQUIRED in docker-compose.env is sufficient.

Sent with ProtonMail Secure Email.

‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐

To unsubscribe from this group and stop receiving emails from it, send an email to dcm4che+u...@googlegroups.com.

To view this discussion on the web visit https://groups.google.com/d/msgid/dcm4che/fe1d471c-8ca5-4120-a946-4054e2af893a%40googlegroups.com.

[nutun]

Thank you

To view this discussion on the web visit https://groups.google.com/d/msgid/dcm4che/fe1d471c-8ca5-4120-a946-4054e2af893a%40googlegroups.com.