How to launch in production/non-dev mode with only 8080 and no HTTPs ? #511
Comments
waiting for help in alfio-event#511
|
Hi @vorburger, thank you for your help :-) First things first: don't use master branch for production applications as it may contain untested and unstable code (we'll merge some PR that will most likely break something). You can build your own docker image from 1.x-maintenance branch, or you can use one of our pre-built images: https://hub.docker.com/r/alfio/alf.io/ Back to https: Alf.io has been designed with security and privacy in mind. Https cannot be deactivated if you're using production profiles. As far as I know, this is the default behavior when using NGINX Ingress in Kubernetes. Can you configure Openshift to use NGINX Ingress? You can find more info on https://github.com/stephanj/alfio-k8s . Hope this helps, |
until I figure out alfio-event#511
well Thank You for making Alf.io! 😸
I like living on the bleeding edge... 😃 but I hear you - I'll use 1.x-maintenance for a planned prod deploy.
but I will run it under HTTPS - just an https provided by OpenShift, instead of Spring Boot... Isn't that what that Spring profile named
OpenShift uses its own Router. In the hosted OpenShift Online (which I want to use) this is a built-in HAProxy. While I guess it would theoretically be "possible" to deploy an NGINX Ingress like @stephanj has done for an Alf.io deployment on "raw" Kubernetes, this would make less sense on OpenShift (v3, based on and extending Kubernetes).
I'm not sure if HAProxy in OpenShift does this, but if that's a standard / convention, I bet it does.. is there a particular functionality in Alf.io I could manually check to see if this works? Without #513, I can only get Alf.io to work in OpenShift if I run with the |
It actually does work even if one sets up a Secure Route with Redirect ... ... keeping this open just to conclude #513 one way or another, then will close it. |
waiting for help in alfio-event#511
until I figure out alfio-event#511
|
@cbellone I thought you may enjoy that remembering what I learnt from you here on Sep 24, 2018 just came in handy for me today in https://issues.apache.org/jira/browse/FINERACT-914 - so a very late Thank You for that explanation here again! 😃 |
|
Thanks for letting me know, @vorburger :-) |
Describe the bug
I'm picking up #403 and need it to run in production not dev mode, and with http: enable if behind proxy or the call chain is not full https ... because the OpenShift will do HTTPS, so it should just listen on 8080 and surtout not send any HTTP redirect from http://localhost:8080 to https://localhost/ - makes sense?
I'm either just missing a parameter (quite likely), or something is broken. Also this is probably basic Spring Boot stuff, not even really Alf.io specific, but I thought before I go digging I would ask you guys here for help, in exchange to contributing #403 ... 😄
To Reproduce
Steps to reproduce the behavior:
./gradlew clean distribution./gradlew startEmbeddedPgSQL./gradlew -Pprofile=dev :bootRun-- all good, on http://localhost:8080/ I get "Choose your Event"POSTGRES_PORT_5432_TCP_ADDR=localhost POSTGRES_PORT_5432_TCP_PORT=5432 POSTGRES_ENV_POSTGRES_DB=alfio POSTGRES_ENV_POSTGRES_USERNAME=postgres POSTGRES_ENV_POSTGRES_PASSWORD=password java -jar build/libs/alfio-2.0-M0-SNAPSHOT-boot.warBut unfortunately that is NOK... because http://localhost:8080/ redirects to https://localhost:8443/ but there is nothing running there. Oh, did I just forgot to enable that http Spring profile thing? OK, again:
SPRING_PROFILES_ACTIVE=http ALFIO_LOG_STDOUT_ONLY=true POSTGRES_PORT_5432_TCP_ADDR=localhost POSTGRES_PORT_5432_TCP_PORT=5432 POSTGRES_ENV_POSTGRES_DB=alfio POSTGRES_ENV_POSTGRES_USERNAME=postgres POSTGRES_ENV_POSTGRES_PASSWORD=password java -jar build/libs/alfio-2.0-M0-SNAPSHOT-boot.warand:
but nope, still the same problem! 😭
The text was updated successfully, but these errors were encountered: