I finally upgraded to 2.5.1 and have spent hours trying to resolve an SSL issue. No matter what I do the docker image loads the openhab self-signed certificate. My configuration worked perfectly in 2.4.0 and I am not sure where to look next.
Update: Confirmed that the problem disappears when downgrading to 2.4.0
I haven’t changed anything in my nginx config, and to rule out any issues, I regenerated all keys and certificates and installed them again.
Hi Hammar,
where did you re-install the certificates ? You named the nginx config but as far as I understand the certificates for port 8443 are handled by java. These certificates are stored in a keystore.
Do you use the default openhab keystore located at ${OPENHAB_USERDATA}/etc/keystore or an alternative location ?
The certificates are installed in /etc/ssl and referenced by the nginx container. It seems as if openhab installs it’s own certificates when it runs in ${OPENHAB_USERDATA}/etc/keystore. This is replacing / overriding nginx.
#########################
## HTTP(S) LISTEN ADDRESS
## The listen address used by the HTTP(S) server.
## 0.0.0.0 (default) allows a connection from any location
## 127.0.0.1 only allows the local machine to connect
#OPENHAB_HTTP_ADDRESS=0.0.0.0
I wonder if you can help. I limited openhab to localhost but I am really struggling to get it to work with the nginx image. Both the openhab and the nginx images are on the same machine.
I changes the nginx config to proxy_pass to localhost:8080 (I used to have the internal IP address for the machine before) but for the life of me I can’t get the connection to be accepted now.
Any ideas?
(1) Relevant nginx config
server {
listen 80;
server_name ((domain));
return 301 https://$server_name$request_uri;
}
Did you try without that environment variable?
Also, from within a container can you access the other on the defined port? Temporary install net-tools if needed. ;o)
For troubleshooting, did you also try without the address restrictions in the nginx config?