search

marklogic-community / roxy

Deployment tool for MarkLogic applications. Also provides optional unit test and XQuery MVC structure
Other
87 stars 66 forks source link

SSL certificate template selection gets disabled during Modules deployment #804

Open grtjn opened 7 years ago

grtjn commented 7 years ago

On behalf of @ArunPrakashThangavelu (https://github.com/grtjn/roxy/commit/5ac49a46584024e9f19de199d9decc06c6d39fba): I have upgraded our system to ML 8.0-6.6 and got CSRF Token validity error while trying Roxy deployment. To resolve this, i have copied the latest roxy code from Master and also the latest copy of the above server_config.rb. I'm getting a new error like below when i run deploy modules, I have verified the MarkLogic and found that the SSL certificate template selection gets disabled during Modules deployment. Do you have any idea how to resolve this?

[GET]   https://itgsydapd654.macbank:8002/manage/LATEST/servers?format=xml
Closing HTTPS connection to itgsydapd654.macbank:8000
[POST]  https://itgsydapd654.macbank:8000/v1/eval
Closing HTTPS connection to itgsydapd654.macbank:8002
Loading REST properties in C:/Users/aprakas2/Documents/nds/ml-pipeline/roxy/rest-api/config/properties.xml
[PUT]   https://itgsydapd654.macbank:8060/v1/config/properties
Roxy::Http : request failure count: 1, exception: #<OpenSSL::SSL::SSLError: SSL_connect returned=1 errno=0 state=SSLv2/v3 read server hello A: unknown protocol>
Roxy::Http : request failure count: 2, exception: #<OpenSSL::SSL::SSLError: SSL_connect returned=1 errno=0 state=SSLv2/v3 read server hello A: unknown protocol>
Roxy::Http : request failure count: 3, exception: #<OpenSSL::SSL::SSLError: SSL_connect returned=1 errno=0 state=SSLv2/v3 read server hello A: unknown protocol>
Roxy::Http : request failure count: 4, exception: #<OpenSSL::SSL::SSLError: SSL_connect returned=1 errno=0 state=SSLv2/v3 read server hello A: unknown protocol>
Roxy::Http : re-raising same error: itgsydapd654.macbank temporarily unavailable: (SSL_connect returned=1 errno=0 state=SSLv2/v3 read server hello A: unknown protocol) -- error count: 4, error age: 0
ERROR: itgsydapd654.macbank temporarily unavailable: (SSL_connect returned=1 errno=0 state=SSLv2/v3 read server hello A: unknown protocol)
grtjn commented 7 years ago

@ArunPrakashThangavelu:

Did you manually copy Roxy code, or did you use ./ml upgrade --branch=master? The latter should be sufficient.

Can you also share the output of running deploy modules with the -v flag?

ArunPrakashThangavelu commented 7 years ago

Yes, i have copied it manually as we cannot do the ./ml upgrade due to proxy issues. I have attached the output of deploy modules. logs_modules_deployment.txt

grtjn commented 7 years ago

You are connecting to the rest-api on 8060 using https, but is that app-server configured for https access?