Closed johanlundberg-iver closed 6 months ago
I solved the issue by creating my own image and adding my Gitlab url to connect-src in the entrypoint script which populates PreConfig.js. Suggested fix is that the value of the url variable gets populated in PreConfig.js (line 19 in docker-entrypoint.sh).
I have created an application in Gitlab with the following settings:
I click open from gitlab -> Authorize -> Get to the gitlab authorization page and click Authorize -> Gets redirected to drawio and the screen just says "Error, unknown error".
No output is written in the pod when this occurs other than:
If I check network calls with dev tools in the browser when I click Open from gitlab this happens:
gitlab?getState=1
gitlab?state=<much content>
mygitlab.mycompany.io/api/v4/user
is made and the status column in dev tools says:blocked:csp
. More info:app.min.js:288 Refused to connect to 'https://mygitlab.mycompany.io/api/v4/user' because it violates the following Content Security Policy directive: "connect-src 'self
.I tried manually editing the index.html file to include my URLs in the connect-src self section at line 225 and it shows up in the browser when viewing the source but makes no difference.
I am running Safari and Chrome as browsers with the same problem in both.
I have mounted my custom keystore with trusted cacerts to:
/opt/java/openjdk/lib/security/cacerts
. I can also validate with keytool that they are in place in the store. I am running the latest version of the image. I have not configured any TLS settings for the drawio container itself, letting the ingress handle TLS.Any way to enable more verbose logging to help me figure out the actual error?