I’m trying PassBolt and set up a local server for it using Oracle Linux 9 with a self-signed certificate.
The installation went smoothly and I’m able to access the service in my local domain with no issues.
I can enter https://passbolt.my.local.domain
and I am able to set up everything.
Then, I opened the service to external access by port forwarding it, but it won’t open anything. The page is redirected, even while using HTTPS, and fails to open. It is just blank.
The Browser (Firefox) reports some content errors.
Also, the csrfToken
cookies seems to be available.
The PHP configuration file /etc/passbolt/passbolt.php
has the following value:
'fullBaseUrl' => 'https://passbolt.my.local.domain'
I could not find any related error reported at /var/log/php-fpm/error.log
or /var/log/nginx/error.log
.
And /var/log/nginx/access.log
only displays the HTTP redirection.
[public_IP] - - [29/Oct/2022:20:58:17 -0300] "GET / HTTP/2.0" 302 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:106.0) Gecko/20100101 Firefox/106.0" "-"
[public_IP] - - [29/Oct/2022:20:58:18 -0300] "GET /auth/login?redirect=%2F HTTP/2.0" 200 2876 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:106.0) Gecko/20100101 Firefox/106.0" "-"
I’m not sure if it is related, but whenever I access PassBolt locally, it reports the following error at /var/log/passbolt/error.log
.
2022-10-30 00:05:20 error: [Authentication\Authenticator\UnauthenticatedException] Authentication is required to continue in /usr/share/php/passbolt/vendor/cakephp/authentication/src/Controller/Component/AuthenticationComponent.php on line 177
Request URL: /auth/is-authenticated.json
Client IP: 192.168.7.3
I’ve tried this healthcheck and it returned 2 errors for SSL.
sudo su -s /bin/bash -c "/usr/share/php/passbolt/bin/cake passbolt healthcheck" nginx
SSL Certificate
[FAIL] SSL peer certificate does not validate
[FAIL] Hostname does not match when validating certificates.
[WARN] Using a self-signed certificate
[HELP] Check https://help.passbolt.com/faq/hosting/troubleshoot-ssl
[HELP] cURL Error (60) SSL certificate problem: self-signed certificate
Any idea of what’s going on?