C0rby
commented
2 years ago A fix has been implemented but the ticket is still open because Reva hasn't been updated in oCIS yet.
Closed ScharfViktor closed 2 years ago
C0rby
commented
2 years ago A fix has been implemented but the ticket is still open because Reva hasn't been updated in oCIS yet.
micbar
commented
2 years ago Fixed with reva update https://github.com/owncloud/ocis/pull/3842
ocis v 1.19.0 start with docker:
docker-compose.yml
``` --- version: "3.7" services: traefik: image: traefik:v2.5 networks: ocis-net: aliases: - ${OCIS_DOMAIN:-ocis.owncloud.test} - ${WOPISERVER_DOMAIN:-wopiserver.owncloud.test} - ${COLLABORA_DOMAIN:-collabora.owncloud.test} - ${ONLYOFFICE_DOMAIN:-onlyoffice.owncloud.test} - ${CODIMD_DOMAIN:-codimd.owncloud.test} command: - "--log.level=${TRAEFIK_LOG_LEVEL:-ERROR}" # letsencrypt configuration - "--certificatesResolvers.http.acme.email=${TRAEFIK_ACME_MAIL:-example@example.org}" - "--certificatesResolvers.http.acme.storage=/certs/acme.json" - "--certificatesResolvers.http.acme.httpChallenge.entryPoint=http" # enable dashboard - "--api.dashboard=true" # define entrypoints - "--entryPoints.http.address=:80" - "--entryPoints.http.http.redirections.entryPoint.to=https" - "--entryPoints.http.http.redirections.entryPoint.scheme=https" - "--entryPoints.https.address=:443" # docker provider (get configuration from container labels) - "--providers.docker.endpoint=unix:///var/run/docker.sock" - "--providers.docker.exposedByDefault=false" ports: - "80:80" - "443:443" volumes: - "/var/run/docker.sock:/var/run/docker.sock:ro" - "certs:/certs" labels: - "traefik.enable=${TRAEFIK_DASHBOARD:-false}" - "traefik.http.middlewares.traefik-auth.basicauth.users=${TRAEFIK_BASIC_AUTH_USERS:-admin:$$apr1$$4vqie50r$$YQAmQdtmz5n9rEALhxJ4l.}" # defaults to admin:admin - "traefik.http.routers.traefik.entrypoints=https" - "traefik.http.routers.traefik.rule=Host(`${TRAEFIK_DOMAIN:-traefik.owncloud.test}`)" - "traefik.http.routers.traefik.middlewares=traefik-auth" - "traefik.http.routers.traefik.tls.certresolver=http" - "traefik.http.routers.traefik.service=api@internal" logging: driver: "local" restart: always ocis: image: owncloud/ocis:${OCIS_DOCKER_TAG:-latest} networks: ocis-net: entrypoint: - /bin/sh - /entrypoint-override.sh environment: OCIS_URL: https://${OCIS_DOMAIN:-ocis.owncloud.test} OCIS_DOMAIN: ${OCIS_DOMAIN:-ocis.owncloud.test} OCIS_LOG_LEVEL: ${OCIS_LOG_LEVEL:-error} # make oCIS less verbose PROXY_TLS: "false" # do not use SSL between Traefik and oCIS # change default secrets IDP_LDAP_BIND_PASSWORD: ${IDP_LDAP_BIND_PASSWORD:-idp} STORAGE_LDAP_BIND_PASSWORD: ${STORAGE_LDAP_BIND_PASSWORD:-reva} OCIS_JWT_SECRET: ${OCIS_JWT_SECRET:-Pive-Fumkiu4} OCIS_MACHINE_AUTH_API_KEY: ${OCIS_MACHINE_AUTH_API_KEY:-change-me-please} OCIS_TRANSFER_SECRET: ${STORAGE_TRANSFER_SECRET:-replace-me-with-a-transfer-secret} # app registry STORAGE_GATEWAY_GRPC_ADDR: 0.0.0.0:9142 # make the REVA gateway accessible to the app drivers STORAGE_APP_REGISTRY_MIMETYPES_JSON: /var/tmp/ocis/app-config/mimetypes.json # INSECURE: needed if oCIS / Traefik is using self generated certificates OCIS_INSECURE: "${INSECURE:-false}" # basic auth (not recommended, but needed for eg. WebDav clients that do not support OpenID Connect) PROXY_ENABLE_BASIC_AUTH: "${PROXY_ENABLE_BASIC_AUTH:-false}" # demo users ACCOUNTS_DEMO_USERS_AND_GROUPS: "${DEMO_USERS:-false}" # deprecated, remove after switching to LibreIDM IDM_CREATE_DEMO_USERS: "${DEMO_USERS:-false}" WEB_ASSET_PATH: "/web/dist" volumes: - ./../../../../web/dist/:/web/dist:ro - ./config/ocis/entrypoint-override.sh:/entrypoint-override.sh - ./config/ocis/mimetypes.json:/var/tmp/ocis/app-config/mimetypes.json - ocis-data:/var/lib/ocis labels: - "traefik.enable=true" - "traefik.http.routers.ocis.entrypoints=https" - "traefik.http.routers.ocis.rule=Host(`${OCIS_DOMAIN:-ocis.owncloud.test}`)" - "traefik.http.routers.ocis.tls.certresolver=http" - "traefik.http.routers.ocis.service=ocis" - "traefik.http.services.ocis.loadbalancer.server.port=9200" logging: driver: "local" restart: always ocis-appdriver-collabora: image: owncloud/ocis:${OCIS_DOCKER_TAG:-latest} networks: ocis-net: command: storage-app-provider server environment: REVA_GATEWAY: ${REVA_GATEWAY:-ocis:9142} APP_PROVIDER_GRPC_ADDR: 0.0.0.0:9164 APP_PROVIDER_EXTERNAL_ADDR: ocis-appdriver-collabora:9164 OCIS_JWT_SECRET: ${OCIS_JWT_SECRET:-Pive-Fumkiu4} OCIS_MACHINE_AUTH_API_KEY: ${OCIS_MACHINE_AUTH_API_KEY:-change-me-please} APP_PROVIDER_DRIVER: wopi APP_PROVIDER_WOPI_DRIVER_APP_NAME: Collabora APP_PROVIDER_WOPI_DRIVER_APP_ICON_URI: https://${COLLABORA_DOMAIN:-collabora.owncloud.test}/favicon.ico APP_PROVIDER_WOPI_DRIVER_APP_URL: https://${COLLABORA_DOMAIN:-collabora.owncloud.test} APP_PROVIDER_WOPI_DRIVER_INSECURE: "${INSECURE:-false}" APP_PROVIDER_WOPI_DRIVER_IOP_SECRET: ${WOPI_IOP_SECRET:-LoremIpsum123} APP_PROVIDER_WOPI_DRIVER_WOPI_URL: https://${WOPISERVER_DOMAIN:-wopiserver.owncloud.test} logging: driver: "local" restart: always ocis-appdriver-onlyoffice: image: owncloud/ocis:${OCIS_DOCKER_TAG:-latest} networks: ocis-net: user: "0" # needed for apk add in entrypoint script entrypoint: - /bin/sh - /entrypoint-override.sh #command: storage-app-provider server environment: REVA_GATEWAY: ${REVA_GATEWAY:-ocis:9142} APP_PROVIDER_GRPC_ADDR: 0.0.0.0:9164 APP_PROVIDER_EXTERNAL_ADDR: ocis-appdriver-onlyoffice:9164 OCIS_JWT_SECRET: ${OCIS_JWT_SECRET:-Pive-Fumkiu4} OCIS_MACHINE_AUTH_API_KEY: ${OCIS_MACHINE_AUTH_API_KEY:-change-me-please} APP_PROVIDER_DRIVER: wopi APP_PROVIDER_WOPI_DRIVER_APP_NAME: OnlyOffice APP_PROVIDER_WOPI_DRIVER_APP_ICON_URI: https://${ONLYOFFICE_DOMAIN:-onlyoffice.owncloud.test}/web-apps/apps/documenteditor/main/resources/img/favicon.ico APP_PROVIDER_WOPI_DRIVER_APP_URL: https://${ONLYOFFICE_DOMAIN:-onlyoffice.owncloud.test} APP_PROVIDER_WOPI_DRIVER_INSECURE: "${INSECURE:-false}" APP_PROVIDER_WOPI_DRIVER_IOP_SECRET: ${WOPI_IOP_SECRET:-LoremIpsum123} APP_PROVIDER_WOPI_DRIVER_WOPI_URL: https://${WOPISERVER_DOMAIN:-wopiserver.owncloud.test} volumes: - ./config/ocis-appdriver-onlyoffice/entrypoint-override.sh:/entrypoint-override.sh logging: driver: "local" restart: always ocis-appdriver-codimd: image: owncloud/ocis:${OCIS_DOCKER_TAG:-latest} networks: ocis-net: user: "0" # needed for apk add in entrypoint script entrypoint: - /bin/sh - /entrypoint-override.sh #command: storage-app-provider server environment: REVA_GATEWAY: ${REVA_GATEWAY:-ocis:9142} APP_PROVIDER_GRPC_ADDR: 0.0.0.0:9164 APP_PROVIDER_EXTERNAL_ADDR: ocis-appdriver-codimd:9164 OCIS_JWT_SECRET: ${OCIS_JWT_SECRET:-Pive-Fumkiu4} OCIS_MACHINE_AUTH_API_KEY: ${OCIS_MACHINE_AUTH_API_KEY:-change-me-please} APP_PROVIDER_DRIVER: wopi APP_PROVIDER_WOPI_DRIVER_APP_NAME: CodiMD APP_PROVIDER_WOPI_DRIVER_APP_API_KEY: ${CODIMD_SECRET:-LoremIpsum456} APP_PROVIDER_WOPI_DRIVER_APP_ICON_URI: https://${CODIMD_DOMAIN:-codimd.owncloud.test}/favicon.png APP_PROVIDER_WOPI_DRIVER_APP_URL: https://${CODIMD_DOMAIN:-codimd.owncloud.test} APP_PROVIDER_WOPI_DRIVER_INSECURE: "${INSECURE:-false}" APP_PROVIDER_WOPI_DRIVER_IOP_SECRET: ${WOPI_IOP_SECRET:-LoremIpsum123} APP_PROVIDER_WOPI_DRIVER_WOPI_URL: https://${WOPISERVER_DOMAIN:-wopiserver.owncloud.test} volumes: - ./config/ocis-appdriver-codimd/entrypoint-override.sh:/entrypoint-override.sh logging: driver: "local" restart: always wopiserver: image: cs3org/wopiserver:${WOPISERVER_DOCKER_TAG:-latest} networks: ocis-net: entrypoint: - /bin/sh - /entrypoint-override.sh environment: WOPISECRET: ${WOPI_JWT_SECRET:-LoremIpsum567} IOPSECRET: ${WOPI_IOP_SECRET:-LoremIpsum123} CODIMDSECRET: ${CODIMD_SECRET:-LoremIpsum456} WOPISERVER_DOMAIN: ${WOPISERVER_DOMAIN:-wopiserver.owncloud.test} COLLABORA_DOMAIN: ${COLLABORA_DOMAIN:-collabora.owncloud.test} volumes: - ./config/wopiserver/entrypoint-override.sh:/entrypoint-override.sh - ./config/wopiserver/wopiserver.conf.dist:/etc/wopi/wopiserver.conf.dist - wopi-data:/var/wopi_local_storage - wopi-logs:/var/log/wopi labels: - "traefik.enable=true" - "traefik.http.routers.wopiserver.entrypoints=https" - "traefik.http.routers.wopiserver.rule=Host(`${WOPISERVER_DOMAIN:-wopiserver.owncloud.test}`)" - "traefik.http.routers.wopiserver.tls.certresolver=http" - "traefik.http.routers.wopiserver.service=wopiserver" - "traefik.http.services.wopiserver.loadbalancer.server.port=8880" logging: driver: "local" restart: always collabora: image: collabora/code:6.4.11.3 networks: ocis-net: environment: domain: ${OCIS_DOMAIN:-ocis.owncloud.test} DONT_GEN_SSL_CERT: "YES" extra_params: --o:ssl.enable=false --o:ssl.termination=true --o:welcome.enable=false --o:net.frame_ancestors=${OCIS_DOMAIN:-ocis.owncloud.test} username: ${COLLABORA_ADMIN_USER} password: ${COLLABORA_ADMIN_PASSWORD} cap_add: - MKNOD labels: - "traefik.enable=true" - "traefik.http.routers.collabora.entrypoints=https" - "traefik.http.routers.collabora.rule=Host(`${COLLABORA_DOMAIN:-collabora.owncloud.test}`)" - "traefik.http.routers.collabora.tls.certresolver=http" - "traefik.http.routers.collabora.service=collabora" - "traefik.http.services.collabora.loadbalancer.server.port=9980" logging: driver: "local" restart: always onlyoffice: image: onlyoffice/documentserver:6.4.0 networks: ocis-net: environment: USE_UNAUTHORIZED_STORAGE: "${INSECURE:-false}" # selfsigned certificates labels: - "traefik.enable=true" - "traefik.http.routers.onlyoffice.entrypoints=https" - "traefik.http.routers.onlyoffice.rule=Host(`${ONLYOFFICE_DOMAIN:-onlyoffice.owncloud.test}`)" - "traefik.http.routers.onlyoffice.tls.certresolver=http" - "traefik.http.routers.onlyoffice.service=onlyoffice" - "traefik.http.services.onlyoffice.loadbalancer.server.port=80" # websockets can't be opend when this is ommitted - "traefik.http.middlewares.onlyoffice.headers.customrequestheaders.X-Forwarded-Proto=https" - "traefik.http.routers.onlyoffice.middlewares=onlyoffice" logging: driver: "local" restart: always codimd: image: gitlab-registry.cern.ch/authoring/notes/codimd:cernbox-integration networks: ocis-net: environment: CMD_DB_URL: postgres://codimd:codimd@codimd-db/codimd CMD_AUTO_VERSION_CHECK: "false" CMD_ALLOW_ANONYMOUS: "true" CMD_ALLOW_ANONYMOUS_EDITS: "true" CMD_ALLOW_ANONYMOUS_VIEWS: "true" CMD_ALLOW_FREEURL: "true" CMD_EMAIL: "false" CMD_ALLOW_EMAIL_REGISTER: "false" CMD_USESSL: "false" NODE_TLS_REJECT_UNAUTHORIZED: 0 CMD_APPLIANCE_MODE: "true" CMD_SAVE_WEBHOOK: https://${WOPISERVER_DOMAIN:-wopiserver.owncloud.test}/wopi/bridge CMD_API_KEY: ${CODIMD_SECRET:-LoremIpsum456} labels: - "traefik.enable=true" - "traefik.http.routers.codimd.entrypoints=https" - "traefik.http.routers.codimd.rule=Host(`${CODIMD_DOMAIN:-codimd.owncloud.test}`)" - "traefik.http.routers.codimd.tls.certresolver=http" - "traefik.http.routers.codimd.service=codimd" - "traefik.http.services.codimd.loadbalancer.server.port=3000" logging: driver: "local" restart: always codimd-db: image: postgres:11.6-alpine networks: ocis-net: environment: POSTGRES_USER: codimd POSTGRES_PASSWORD: codimd POSTGRES_DB: codimd volumes: - codimd-db-data:/var/lib/postgresql/data logging: driver: "local" restart: always volumes: certs: ocis-data: wopi-data: wopi-logs: codimd-db-data: networks: ocis-net:steps:
Actual result: Error 500
ocis server log:
{"level":"error","service":"storage","pkg":"rhttp","traceid":"00000000000000000000000000000000","host":"127.0.0.1","method":"POST","uri":"/app/new?parent_container_id=4c510ada-c86b-4815-8820-42cdf82c3d51!4c510ada-c86b-4815-8820-42cdf82c3d51&filename=New%20file.xlsx","url":"/app/new?parent_container_id=4c510ada-c86b-4815-8820-42cdf82c3d51!4c510ada-c86b-4815-8820-42cdf82c3d51&filename=New%20file.xlsx","proto":"HTTP/1.1","status":500,"size":77,"start":"11/Apr/2022:12:51:54 +0000","end":"11/Apr/2022:12:51:54 +0000","time_ns":16259625,"time":"2022-04-11T12:51:54Z","message":"http"}