Problem after update from 1.17 to 1.18
-
Hi,
i have problem after upgrade to 1.18.0
After "Login with Cloudron" i see error:{"status":"Internal Server Error","message":"Issuer.discover() failed.\n RequestError: write EPROTO C077C574A17F0000:error:0A00010B:SSL routines:ssl3_get_record:wrong version number:../deps/openssl/openssl/ssl/record/ssl3_record.c:355:\n RequestError: write EPROTO C077C574A17F0000:error:0A00010B:SSL routines:ssl3_get_record:wrong version number:../deps/openssl/openssl/ssl/record/ssl3_record.c:355:"}
I try Uninstall App and install again but no change
-
So this seems to happen when the app tries to connect to the OpenID provider. That one is hosted on your dashboard domain (my.domain.com) and the app needs to be able to reach that.
Seems like the routing works but there is some SSL issue.Can you open a webterminal into the meemo app and check if
curl -v https://my.<YOURDOMAIN.COM>/.well-known/openid-configuration
works from there? -
-
Do you use self-signed certs?
-
@nebulon :
root@d66e914e-fd7a-4b20-bf07-622a70a2f2d8:/app/code# curl -v https://my.vojtam.net/.well-known/openid-configuration- Trying 87.236.195.190:443...
- Connected to my.vojtam.net (87.236.195.190) port 443 (#0)
- ALPN, offering h2
- ALPN, offering http/1.1
- CAfile: /etc/ssl/certs/ca-certificates.crt
- CApath: /etc/ssl/certs
- TLSv1.0 (OUT), TLS header, Certificate Status (22):
- TLSv1.3 (OUT), TLS handshake, Client hello (1):
- (5454) (IN), , Unknown (72):
- error:0A00010B:SSL routines::wrong version number
- Closing connection 0
curl: (35) error:0A00010B:SSL routines::wrong version number
-
-
@vojtam One more test. Does that curl command work on the host? If not, I would try to debug why
curl -v https://my.vojtam.net/
does not work. Do you have a proxy in the front or some other special setup?edit: are you hosting at home by any chance? If so, does your router support hairpin routing? How do you access your Cloudron from inside the network?
-
@vojtam can you reach out on support@cloudron.io ? I feel we miss something wrt your setup.
-
@girish, @nebulon :
Thank you for your support, i Fixit ! a few day ago...
Just set up unbound in Cloudron server...
It was enough to add line:
to: /etc/unbound/unbound.conf.d/cloudron-network.conf : local-data: "<my.MYDOMAIN.COM> IN A x.x.x.x"
x.x.x.x is primary IP my server. -