Is your feature request related to a problem? Please describe.
I have not yet been able to integrate crater into our docker environment even for testing.
As soon as I do not want to open the non-SSL server to the public I'm getting CSRF/XSRF problem because I do not have the slightest idea what the crater service is expecting here.
The reverse proxy is running with a configuration like
and I've obviously tried several variants of the Host header.
The only way to get it running right now is forwarding port 80 of crater-app-1 to the host. This is not exactly anything anyone should do. Yet it is the only installation you describe.
Describe the solution you'd like
Provide an example configuration for crater running behind a reverse proxy peeling off the SSL layer before forwarding connections.
Describe alternatives you've considered
I tried it in all the usual ways but always ran into the CSRF mismatch problem and could not log in. The only way I could run the system right now was moving it into an area only reachable via VPN. But clients would not be able to access it.
Is your feature request related to a problem? Please describe. I have not yet been able to integrate crater into our docker environment even for testing. As soon as I do not want to open the non-SSL server to the public I'm getting CSRF/XSRF problem because I do not have the slightest idea what the crater service is expecting here.
The reverse proxy is running with a configuration like
and I've obviously tried several variants of the Host header.
The only way to get it running right now is forwarding port 80 of crater-app-1 to the host. This is not exactly anything anyone should do. Yet it is the only installation you describe.
Describe the solution you'd like Provide an example configuration for crater running behind a reverse proxy peeling off the SSL layer before forwarding connections.
Describe alternatives you've considered I tried it in all the usual ways but always ran into the CSRF mismatch problem and could not log in. The only way I could run the system right now was moving it into an area only reachable via VPN. But clients would not be able to access it.