search

TomBursch / kitchenowl

KitchenOwl is a self-hosted grocery list and recipe manager. The backend is made with Flask and the frontend with Flutter. Easily add items to your shopping list before you go shopping. You can also create recipes and add items based on what you want to cook.
https://kitchenowl.org/
GNU Affero General Public License v3.0
1.29k stars 76 forks source link

Bug: Docker compose (All-in-one) does not work correctly #463

Closed adnanjaw closed 4 months ago

adnanjaw commented 4 months ago

Is this urgent?

No

What parts are affected

Frontend

What is the server version

latest

What is the client version

latest

What platform are you using

Linux

What's the problem 🤔

Im using Docker compose (All-in-one) BETA to setup kitchenowl with traefik. When i go to the web application using the URL https://shopping.example.com i get the following:

image

NOTE: it works perfectly when connecting to the server from the IOS app.

Share your logs

No response

Share your configuration

services:
  kitchenowl:
    container_name: kitchenowl
    image: tombursch/kitchenowl:latest
    restart: always
    ports:
      - "8182:8080"
    environment:
      FRONT_URL: "https://shopping.example.com"
      JWT_SECRET_KEY: "secret"
    labels:
      traefik.enable: true
      traefik.docker.network: proxy
      traefik.http.routers.kitchenowl.rule: Host(`shopping.example.com`)
      traefik.http.routers.kitchenowl.service: kitchenowl
      traefik.http.services.kitchenowl.loadbalancer.server.port: 8080
      traefik.http.routers.kitchenowl.entrypoints: https
      traefik.http.routers.kitchenowl.tls: true
      traefik.http.routers.kitchenowl.tls.certresolver: prod
      traefik.http.routers.kitchenowl.middlewares: security@docker
      traefik.http.middlewares.security.headers.addvaryheader: true
      traefik.http.middlewares.security.headers.sslredirect: true
      traefik.http.middlewares.security.headers.browserxssfilter: true
      traefik.http.middlewares.security.headers.contenttypenosniff: true
      traefik.http.middlewares.security.headers.forcestsheader: true
      traefik.http.middlewares.security.headers.stsincludesubdomains: true
      traefik.http.middlewares.security.headers.stspreload: true
      traefik.http.middlewares.security.headers.stsseconds: 63072000
      traefik.http.middlewares.security.headers.customframeoptionsvalue: SAMEORIGIN
      traefik.http.middlewares.security.headers.referrerpolicy: same-origin
    networks:
      - proxy
    volumes:
      - kitchenowl_data:/data

volumes:
  kitchenowl_data:
networks:
  proxy:
TomBursch commented 4 months ago

Is this similar to #78?

coderph0x commented 4 months ago

From my experience with NGINX as reverse proxy, you probably have to remove this directive: traefik.http.middlewares.security.headers.contenttypenosniff: true