Open washichi opened 2 years ago
I haven't tried Traefik yet, however it's working for me on https://spotify.domain.com with the swag container (nginx and a few other things). Look at the latest issue I've posted, I've included my configuration there. If I have some spare time, I'll try to set this up using Traefik. It does look very cool :D
Hello there!
It would be very helpful if I could see the issue happening from my device or with screenshots of yours. If firefox tells you it's a self signed certificate then either you generated the certificate and it does not come from a trusted certificate authority or your OS is not up to date.
My spotify client is accessible at spotify.homespot.dev , my server at spotify_server.homespot.dev I tested with chrome and firefox, both tell me it's a problem with the certificate signing. When I check the SSL certificate of spotify_server.homespot.dev it is a default traefik certificate (which is problematic).
Chrome output when loading spotify.homespot.dev/login:
I'm now reading up on CORS & Traefik, cause I think the problem is there. but it's hard to grasp it all.
I've been using your_spotify in local mode and I'm very happy with it, with the new friends affinity feature I wanted to host this behind my traefik reverse proxy but I can't reach my spotify_server.domain.com.
I can access my client (spotify.domain.com) when I try to login I get redirected to https://spotify_server.domain.com/oauth/spotify Which doesn't show because of the error:
Chrome:
NET::ERR_CERT_AUTHORITY_INVALID
Firefox:spotify_server.domain.com uses an invalid security certificate. The certificate is not trusted because it is self-signed. Error code: MOZILLA_PKIX_ERROR_SELF_SIGNED_CERT
(my PEM chain consists of 1 BEGIN/END certificate section)My docker-compose.yml:
-web and -secured I redirect my http traffic to https, and use 'mytlschallenge' as certificate resolver, this is all done using traefik (works without issues on other containers), with the -web and -secured routers (and they are working correctly accordingly Traefik dashboard). My containers don't log any fault, communication with mangodb is logged as succesfull. My spotify dashboard has the URI 'https://spotify_server.domain.com/oauth/spotify/callback'
I think my problem is with CORS. Is there anyone who has this working behind traefik and knows what I'm doing wrong?
EDIT: removing 'https://' from my *_ENDPOINT does make a difference: spotify.domain.com is loaded without
NET::ERR_CERT_AUTHORITY_INVALID
but after pressing 'login' i'm redirected to 'https://spotify.domain.com/spotify_server.domain.com/oauth/spotify' so it seems that the prefix is required.