Hi everyone,
I’m trying to install passbolt in iocage FreeBSD 11.1 with apache 2.4 and php 7.2
It ends with ‘Error: Could not find server key’ right after the creation of the first user on login url.
I followed this topic : ttps://help.passbolt.com/hosting/install/ce/from-source
FYI, due to be in jail, I have to add --pinentry-mode loopback in gpg command
ports about gnupg
pkg install gnupg php72-pecl-gnupg
config/passbolt.php
‘serverKey’ => [
// Server private key fingerprint.
‘fingerprint’ => ‘my beautiful fingerprint’,
‘public’ => CONFIG . ‘gpg’ . DS . ‘serverkey.asc’,
‘private’ => CONFIG . ‘gpg’ . DS . ‘serverkey_private.asc’,
fingerprint
su - www -c ‘gpg --pinentry-mode loopback --gen-key’
serverkey.asc
su - www -c ‘gpg --armor --export postmaster@domain.local > gpg --armor --export postmaster@domain.local > /usr/local/www/apache24/data/passbolt/config/gpg/serverkey.asc’
serverkey_private.asc
su - www -c ‘gpg --armor --export-secret-keys postmaster@domain.local > /usr/local/www/apache24/data/passbolt/config/gpg/serverkey_private.asc’
passbolt/logs/error.log
2018-11-23 17:02:05 Error: [Cake\Network\Exception\InternalErrorException] The OpenPGP server key defined in the config could not be found in the GnuPG keyring.
Request URL: /auth/verify.json?api-version=v1
bin/cake passbolt healthcheck
su - www -c ‘/usr/local/www/apache24/data/passbolt/bin/cake passbolt healthcheck’
Environment
[PASS] PHP version 7.2.10.
[PASS] PCRE compiled with unicode support.
[PASS] The temporary directory and its content are writable.
[PASS] The public image directory and its content are writable.
[PASS] The logs directory and its content are writable.
[PASS] GD or Imagick extension is installed.
[PASS] Intl extension is installed.
[PASS] Mbstring extension is installed.Config files
[PASS] The application config file is present
[PASS] The passbolt config file is presentCore config
[PASS] Debug mode is off.
[PASS] Cache is working.
[PASS] Unique value set for security.salt
[PASS] Full base url is set to ttps://passbolt.domain.local
[PASS] App.fullBaseUrl validation OK.
[PASS] /healthcheck/status is reachable.SSL Certificate
[FAIL] SSL peer certificate does not validate
[FAIL] Hostname does not match when validating certificates.
[WARN] Using a self-signed certificate
[HELP] fopen(): SSL operation failed with code 1. OpenSSL Error messages:
error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed
fopen(): Failed to enable crypto
fopen(ttps://passbolt.domain.local/healthcheck/status.json): failed to open stream: operation failedDatabase
[PASS] The application is able to connect to the database
[PASS] 18 tables found
[PASS] Some default content is present
[PASS] The database schema up to date.GPG Configuration
[PASS] PHP GPG Module is installed and loaded.
[PASS] The environment variable GNUPGHOME is set to /home/www/.gnupg.
[PASS] The directory /home/www/.gnupg containing the keyring is writable by the webserver user.
[PASS] The server gpg key is not the default one
[PASS] The public key file is defined in config/passbolt.php and readable.
[PASS] The private key file is defined in config/passbolt.php and readable.
[PASS] The server key fingerprint matches the one defined in config/passbolt.php.
[PASS] The server public key defined in the config/passbolt.php is in the keyring.
[PASS] There is a valid email id defined for the server key.
[PASS] The public key can be used to encrypt a message.
[PASS] The private key can be used to sign a message.
[PASS] The public and private keys can be used to encrypt and sign a message.
[PASS] The private key can be used to decrypt a message.
[PASS] The private key can be used to decrypt and verify a message.
[PASS] The public key can be used to verify a signature.Application configuration
[PASS] Using latest passbolt version (2.5.0).
[PASS] Passbolt is configured to force SSL use.
[PASS] App.fullBaseUrl is set to HTTPS.
[PASS] Selenium API endpoints are disabled.
[PASS] Search engine robots are told not to index content.
[PASS] Registration is closed, only administrators can add users.
[PASS] Serving the compiled version of the javascript app
[PASS] All email notifications will be sent.2 error(s) found. Hang in there!
I don’t know where is the mistake
Thanks