gioman
commented
1 year ago @davebulaval sorry for the ignorance, this means that is not possible to have GN deployed with docker to run over httpS?
Open davebulaval opened 1 year ago
gioman
commented
1 year ago @davebulaval sorry for the ignorance, this means that is not possible to have GN deployed with docker to run over httpS?
gioman
commented
1 year ago (as you explained)
@davebulaval also what the above means? Is there any doc that states clearly that the docker version can't do httpS?
davebulaval
commented
1 year ago @davebulaval sorry for the ignorance, this means that is not possible to have GN deployed with docker to run over httpS?
Right now, it seems like the Jetty server around the Docker image of GeoNetwork does not support natively HTTPS requests. The container always redirects HTTP request even if my NGINX handle HTTPS properly. Thus, if one wants to use OAUTH, the redirect link is HTTP thus, it fails.
Our next step was to try to inject config in the Jetty server but we have never used Jetty or TomCat.
davebulaval
commented
1 year ago (as you explained)
@davebulaval also what the above means? Is there any doc that states clearly that the docker version can't do httpS?
Been a couple of days since I wrote this. My guess is that in some issue/discussion, you (or someone in the organization) explained this. I'll try to find it again.
EDIT*: I think it is this thread https://github.com/geonetwork/core-geonetwork/issues/6947. As I said, it was a general use (or misuse) of the term "you" in the sense "someone in the Geonetwork team explained this in a thread".
gioman
commented
1 year ago EDIT*: I think it is this thread geonetwork/core-geonetwork#6947. As I said, it was a general use (or misuse) of the term "you" in the sense "someone in the Geonetwork team explained this in a thread".
@davebulaval thanks!
gioman
commented
1 year ago Right now, it seems like the Jetty server around the Docker image of GeoNetwork does not support natively HTTPS requests. The container always redirects HTTP reques
Can any GN developer comment on this?
roccoelleu
commented
8 months ago Hello, any update about the issue related to the redirect_uri under http instead of https?
I've been trying to deploy a GeoNetwork (GN) using the docker-compose on an Azure VM with OAuth authentification, and I have difficulty with the redirect URL.
My current hypothesis is that since we use the default GN image container, it comes in a Jetty image that does not support the HTTPS request nor properly handle the HTTP into HTTPS redirect (as you explained); thus, URLs are not correctly handled.
Is there a way to inject configuration to Jetty in the docker image?
If I want to package my own GN image in a Dockerfile, what do I need?
Is there a way to have an image with an HTTPS Jetty directly from this image repository (in the future) for easier production use?