502:Bad gateway from API using reverse proxy-letsencrypt

[DennisMuchiri]

Hi @nikpap @spalte @rliechti . I followed the tutorial about securing my installation https://github.com/OsiriX-Foundation/KheopsDocumentation/blob/master/docs/installation/installation.md .Keycloak works fine but after log in api requests don't go through. A 502 response is returned. What am I missing?

[DennisMuchiri]

@nikpap please help

[nikpap]

Hello @DennisMuchiri , could you provide the changes you made to docker-compose.yml and docker-compose.env ? Are you using Let's Encrypt or a custom certificate?

[DennisMuchiri]

@nikpap I am using the reverse proxy-letsencrypt version . letsencrypt.

Here is the link https://drive.google.com/drive/folders-yTeNoQ4bT8?usp=sharing

[nikpap]

Both of these files look correct. Can you send me a copy of your docker-compose logs ?

docker-compose logs

[DennisMuchiri]

@nikpap okay sending in a few(the file is really huge). All works okay but the api requests are not getting to the /api end points.

[DennisMuchiri]

@nikpap here it is

https://drive.google.com/file/d//view?usp=sharing

[nikpap]

I have a hunch that the kheopsauthorization container is not working as expected.

I see no logs from it after a certain point, that's definitely not normal (eg there's a log when a user logs in).

If you do a docker ps -a, has it exited? If not, can you only share it's log?

[DennisMuchiri]

@nikpap no it's still up and running

g

[DennisMuchiri]

@nikpap

[DennisMuchiri]

@nikpap I think the proxy is rejecting my connection.

[nikpap]

I just realized that KHEOPS_AUTHORIZATION_PORT is set to port 8443 in docker-compose.env. I suspect that might be causing the issue. It should be set to 8080.

If that doesn't work, I think it might be best to set up a Zoom call to debug this issue.

[DennisMuchiri]

@nikpap okay let me try this. If it doesn't work, we'll have the call

[DennisMuchiri]

@nikpap that was the issue. Thanks a alot. Closing.