Navigation

    Kopano
    • Register
    • Login
    • Search
    • Categories
    • Get Official Kopano Support
    • Recent
    Statement regarding the closure of the Kopano community forum and the end of the community edition

    SSO break after update kwebd from 0.12.4-0+315.1 to 0.12.4-0+315.2

    Kopano Meet & WebMeetings
    1
    2
    288
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • benoit_22100
      benoit_22100 last edited by

      Hi all,

      I just update today from community packages :

      meet-2.2.3_0+356.1.b71ec0e-Debian_10-amd64.tar.gz
webapp-5.0.0.48+1924.22a707d-Debian_10-all.tar.gz
core-10.0.1.32.9a56a1f-Debian_10-amd64.tar.gz
mdm-3.4.0.0+136.007a9c7-Debian_10-all.tar.gz

      All was working well before, but since this update webapp and meet cannot log from sso again
      No log from konnectd even if debug
      but kwebd still log this continuously

      Dec  6 13:44:27 kopano systemd[1]: Started Kopano Web Daemon.
Dec  6 13:44:27 kopano kopano-kwebd[5937]: [DEV NOTICE] Registered directive 'alias' at end of list
Dec  6 13:44:27 kopano kopano-kwebd[5937]: [DEV NOTICE] Registered directive 'configjson' at end of list
Dec  6 13:44:27 kopano kopano-kwebd[5937]: [DEV NOTICE] Registered directive 'fastcgi2' before 'fastcgi'
Dec  6 13:44:27 kopano kopano-kwebd[5937]: [DEV NOTICE] Registered directive 'folderish' before 'redir'
Dec  6 13:44:27 kopano kopano-kwebd[5937]: [DEV NOTICE] Registered directive 'staticpwa' at end of list
Dec  6 13:44:27 kopano kopano-kwebd[5937]: [INFO] Kweb version: 0.12.4
Dec  6 13:44:27 kopano kopano-kwebd[5937]: [INFO] Caddy version: v1.0.5
Dec  6 13:44:27 kopano kopano-kwebd[5937]: [INFO][cache:0xc000284820] Started certificate maintenance routine
Dec  6 13:44:27 kopano kopano-kwebd[5937]: [WARNING] Stapling OCSP: no OCSP stapling for [webmail.domain.co]: no OCSP server specified in certificate
Dec  6 13:44:27 kopano kopano-kwebd[5937]: [INFO] Successfully loaded TLS assets from /etc/kopano/kweb/kwebd.crt and /etc/kopano/kweb/kwebd.key
Dec  6 13:44:27 kopano kopano-kwebd[5937]: Activating privacy features... done.
Dec  6 13:44:27 kopano kopano-kwebd[5937]: Serving HTTPS on port 443
Dec  6 13:44:27 kopano kopano-kwebd[5937]: https://webmail.domain.co
Dec  6 13:44:27 kopano kopano-kwebd[5937]: [INFO] Serving https://webmail.domain.co
Dec  6 13:44:27 kopano kopano-kwebd[5937]: Serving HTTP on port 80
Dec  6 13:44:27 kopano kopano-kwebd[5937]: http://webmail.domain.co
Dec  6 13:44:27 kopano kopano-kwebd[5937]: [INFO] Serving http://webmail.domain.co
Dec  6 13:44:28 kopano kopano-kwebd[5937]: http2: server: error reading preface from client 172.16.84.10:33530: read tcp 172.16.84.20:443->172.16.84.10:33530: read: connection reset by peer
Dec  6 13:44:30 kopano kopano-kwebd[5937]: http2: server: error reading preface from client 172.16.84.10:33572: read tcp 172.16.84.20:443->172.16.84.10:33572: read: connection reset by peer
Dec  6 13:44:32 kopano kopano-kwebd[5937]: http2: server: error reading preface from client 172.16.84.10:33598: read tcp 172.16.84.20:443->172.16.84.10:33598: read: connection reset by peer
Dec  6 13:44:34 kopano kopano-kwebd[5937]: http2: server: error reading preface from client 172.16.84.10:33638: read tcp 172.16.84.20:443->172.16.84.10:33638: read: connection reset by peer
Dec  6 13:44:36 kopano kopano-kwebd[5937]: http: TLS handshake error from 172.16.84.10:33724: no certificate available for ''
Dec  6 13:44:36 kopano kopano-kwebd[5937]: http2: server: error reading preface from client 172.16.84.10:33726: read tcp 172.16.84.20:443->172.16.84.10:33726: read: connection reset by peer
Dec  6 13:44:37 kopano kopano-kwebd[5937]: http: TLS handshake error from 172.16.84.10:33740: no certificate available for ''
Dec  6 13:44:38 kopano kopano-kwebd[5937]: http: TLS handshake error from 172.16.84.10:33752: no certificate available for ''
Dec  6 13:44:38 kopano kopano-kwebd[5937]: http2: server: error reading preface from client 172.16.84.10:33772: read tcp 172.16.84.20:443->172.16.84.10:33772: read: connection reset by peer
Dec  6 13:44:39 kopano kopano-kwebd[5937]: http: TLS handshake error from 172.16.84.10:33800: no certificate available for ''
Dec  6 13:44:40 kopano kopano-kwebd[5937]: http2: server: error reading preface from client 172.16.84.10:33836: read tcp 172.16.84.20:443->172.16.84.10:33836: read: connection reset by peer
Dec  6 13:44:42 kopano kopano-kwebd[5937]: http2: server: error reading preface from client 172.16.84.10:33872: read tcp 172.16.84.20:443->172.16.84.10:33872: read: connection reset by peer
Dec  6 13:44:44 kopano kopano-kwebd[5937]: http2: server: error reading preface from client 172.16.84.10:33910: read tcp 172.16.84.20:443->172.16.84.10:33910: read: connection reset by peer

      Is there some configuration change between this 2 version of kwebd ?

      Regards,
      Benoit

      1 Reply Last reply Reply Quote 0
      • benoit_22100
        benoit_22100 last edited by

        Sorry it’s not a kopano issue but an haproxy one. I just update it too from 2.1.10-1~bpo10+1 to 2.2.6-1~bpo10+1

        I just test with an rewrite of my /etc/hosts and kopano is working well without haproxy.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post