Open KaoruKanon opened 7 months ago
I can bypass the error this way. The kibana home page is there, but the site is only half-operational. I end up with a new KO URI
location /api/core/capabilities {
proxy_pass http://tool.hosts.kaoru.fr:5601/api/core/capabilities;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_redirect off;
}
The nginx logs point to a connection time out, could this be a network related issue?
Aside from that this could be caused by the fact that IIRC kibana is an SPA, meaning that all the actual functionality in the browser happens through Javascript, and apps like that can often cause issues with forward authentication
Describe your question With kibana protected by authk in auth revers proxy, I get a 500 error from kibana after a long load after authentication to sso
Relevant infos
For example, I have a jackett, homepage, radarr and sonarr protected by authentik that work as expected.
Authentik set up with a proxy Provider with a domain level Foward auth
The problem only concerns Kibana. Of course, Kibana worked without an issue before authentik was implemented. There must be something going on between authentik and kibana to explain this behavior.
Kibana is in minimum configuration. No SSL, no xpack, everything is default except for the Elasticsearch connection.
kibana nginx conf :
Screenshots
Logs
nginx error :
Version and Deployment (please complete the following information):
The problem is around /api/core/capabilities. According to the element inspector and the logs, I get a 500 I can't find any more information about this part on the Internet. I tried to set up a /api/core/capabilities location to bypass authentik. I get a slightly different error but I think it should work without any workarounds.