Hello, i have a possible noob error with i cant figure out where the problem could

<a class="user-mention notranslate" data-hovercard-type="user" data-hovercard-url="/us

Ps. i see that webdav is also enabled, no need to do that. <div class="snippet-cli

I tried but still no acces. when i tried <a href="https://mycloud.something:9980"

Connection is not allowed about officeonlin-install.sh HOT 18 CLOSED

husisusi commented on July 21, 2024

Connection is not allowed

from officeonlin-install.sh.

Comments (18)

Slevin7 commented on July 21, 2024 1

Thanks a lot it finaly works.
cat /etc/loolwsd/ca-chain.cert.pem >> /var/www/owncloud/resources/config/ca-bundle.crt
this was what really missing (beside my misconfiguration)

really thanks a lot

from officeonlin-install.sh.

aalaesar commented on July 21, 2024

Hi, the script is still missing a post install configuration,
You need to add the nextcloud domain as allowed wopi host in the /opt/online/loowsd.xml file then restart lool with
systemctl stop loolwsd && systemctl start loolwsd.
You have logs at /var/log/loolwsd.log for more info.

from officeonlin-install.sh.

husisusi commented on July 21, 2024

@aalaesar 👍

from officeonlin-install.sh.

Slevin7 commented on July 21, 2024

<storage desc="Backend storage"> <filesystem allow="false" /> <wopi desc="Allow/deny wopi storage. Mutually exclusive with webdav." allow="true"> <host desc="Regex pattern of hostname to allow or deny." allow="true">mycloud.something</host> <host desc="Regex pattern of hostname to allow or deny." allow="true">10\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}</host> <host desc="Regex pattern of hostname to allow or deny." allow="true">172\.1[6789]\.[0-9]{1,3}\.[0-9]{1,3}</host> <host desc="Regex pattern of hostname to allow or deny." allow="true">172\.2[0-9]\.[0-9]{1,3}\.[0-9]{1,3}</host> <host desc="Regex pattern of hostname to allow or deny." allow="true">172\.3[01]\.[0-9]{1,3}\.[0-9]{1,3}</host> <host desc="Regex pattern of hostname to allow or deny." allow="true">192\.168\.[0-9]{1,3}\.[0-9]{1,3}</host> <host desc="Regex pattern of hostname to allow or deny." allow="false">192\.168\.1\.1</host> <max_file_size desc="Maximum document size in bytes to load. 0 for unlimited." type="uint">0</max_file_size> </wopi> <webdav desc="Allow/deny webdav storage. Mutually exclusive with wopi." allow="true"> <host desc="Hostname to allow" allow="true">https://mycloud.something</host> </webdav> </storage>

with this configuration i still get the error.

from officeonlin-install.sh.

Kassiematis commented on July 21, 2024

Should look something like this,

<host desc="Regex pattern of hostname to allow or deny." allow="true">10\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}</host>
<host desc="Regex pattern of hostname to allow or deny." allow="true">172\.1[6789]\.[0-9]{1,3}\.[0-9]{1,3}</host>
<host desc="Regex pattern of hostname to allow or deny." allow="true">mycloud\.something</host>

from officeonlin-install.sh.

Kassiematis commented on July 21, 2024

Ps. i see that webdav is also enabled, no need to do that.

<storage desc="Backend storage">
    <filesystem allow="false" />
    <wopi desc="Allow/deny wopi storage. Mutually exclusive with webdav." allow="true">
        <host desc="Regex pattern of hostname to allow or deny." allow="true">localhost</host>
        <host desc="Regex pattern of hostname to allow or deny." allow="true">10\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}</host>
        <host desc="Regex pattern of hostname to allow or deny." allow="true">172\.1[6789]\.[0-9]{1,3}\.[0-9]{1,3}</host>
        <host desc="Regex pattern of hostname to allow or deny." allow="true">172\.2[0-9]\.[0-9]{1,3}\.[0-9]{1,3}</host>
        <host desc="Regex pattern of hostname to allow or deny." allow="true">172\.3[01]\.[0-9]{1,3}\.[0-9]{1,3}</host>
        <host desc="Regex pattern of hostname to allow or deny." allow="true">192\.168\.[0-9]{1,3}\.[0-9]{1,3}</host>
        <host desc="Regex pattern of hostname to allow or deny." allow="false">192\.168\.1\.1</host>
        <host desc="Regex pattern of hostname to allow or deny." allow="true">mycloud\.something</host>
        <max_file_size desc="Maximum document size in bytes to load. 0 for unlimited." type="uint">0</max_file_size>
    </wopi>
    <webdav desc="Allow/deny webdav storage. Mutually exclusive with wopi." allow="false">
        <host desc="Hostname to allow" allow="false">localhost</host>
    </webdav>

from officeonlin-install.sh.

Slevin7 commented on July 21, 2024

I tried but still no acces.
when i tried https://mycloud.something:9980 in browser is get OK.
I think this is not bad.
Sorry to ask but is it possible that the location of the config for office subdomain is in the wrong folder?

from officeonlin-install.sh.

Kassiematis commented on July 21, 2024

Do you have owncloud and lool on the same server?

from officeonlin-install.sh.

Slevin7 commented on July 21, 2024

Yes

from officeonlin-install.sh.

Kassiematis commented on July 21, 2024

Did you disable webdav? Webdav and wopi can not be set 'true' at the same time.

from officeonlin-install.sh.

Slevin7 commented on July 21, 2024

I do
<host desc="Regex pattern of hostname to allow or deny." allow="true">localhost</host> <host desc="Regex pattern of hostname to allow or deny." allow="true">mycloud\.something</host> <host desc="Regex pattern of hostname to allow or deny." allow="true">10\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}</host> <host desc="Regex pattern of hostname to allow or deny." allow="true">172\.1[6789]\.[0-9]{1,3}\.[0-9]{1,3}</host> <host desc="Regex pattern of hostname to allow or deny." allow="true">172\.2[0-9]\.[0-9]{1,3}\.[0-9]{1,3}</host> <host desc="Regex pattern of hostname to allow or deny." allow="true">172\.3[01]\.[0-9]{1,3}\.[0-9]{1,3}</host> <host desc="Regex pattern of hostname to allow or deny." allow="true">192\.168\.[0-9]{1,3}\.[0-9]{1,3}</host> <host desc="Regex pattern of hostname to allow or deny." allow="false">192\.168\.1\.1</host> <max_file_size desc="Maximum document size in bytes to load. 0 for unlimited." type="uint">0</max_file_size> </wopi> <webdav desc="Allow/deny webdav storage. Mutually exclusive with wopi." allow="false"> <host desc="Hostname to allow" allow="false">mycloud\.something</host> </webdav> </storage>

from officeonlin-install.sh.

Kassiematis commented on July 21, 2024

Does your ssl settings look something like this?

<ssl desc="SSL settings">
        <enable type="bool" default="true">true</enable>
        <termination desc="Connection via proxy where loolwsd acts as working via https, but actually uses http." type="bool" default="true">false</termination>
        <cert_file_path desc="Path to the cert file" relative="false">/etc/letsencrypt/live/office-mycloud.something/cert.pem</cert_file_path>
        <key_file_path desc="Path to the key file" relative="false">/etc/letsencrypt/live/office-mycloud.something/key.pem</key_file_path>
        <ca_file_path desc="Path to the ca file" relative="false">/etc/letsencrypt/live/office-mycloud.something/ca-chain.cert.pem</ca_file_path>
	<hpkp desc="Enable HTTP Public key pinning" enable="false" report_only="false">
	    <max_age desc="HPKP's max-age directive - time in seconds browser should remember the pins" enable="true">1000</max_age>
	    <report_uri desc="HPKP's report-uri directive - pin validation failure are reported at this URL" enable="false"></report_uri>
	    <pins desc="Base64 encoded SPKI fingerprints of keys to be pinned">
	      <pin></pin>
	    </pins>
	</hpkp>
    </ssl>

from officeonlin-install.sh.

Kassiematis commented on July 21, 2024

Loolwsd.log should show the ssl settings and wopi hosts allowed.

from officeonlin-install.sh.

Slevin7 commented on July 21, 2024

Now i feel a bit stupid. I change the settings and now it is broken
● loolwsd.service - LibreOffice OnLine WebSocket Daemon Loaded: loaded (/etc/systemd/system/loolwsd.service; enabled) Active: failed (Result: exit-code) since Sun 2017-04-23 14:16:10 CEST; 4min 54s ago Process: 1081 ExecStart=/opt/online/loolwsd --o:sys_template_path=/opt/online/systemplate --o:lo_template_path=/opt/libreoffice/instdir --o:child_root_path=/opt/online/jails --o:storage.filesystem[@allow]=true --o:admin_console.username=admin --o:admin_console.password=password (code=exited, status=70) Process: 1078 ExecStartPre=/bin/chown lool: /usr/local/var/cache/loolwsd (code=exited, status=0/SUCCESS) Process: 1076 ExecStartPre=/bin/mkdir -p /usr/local/var/cache/loolwsd (code=exited, status=0/SUCCESS) Main PID: 1081 (code=exited, status=70)

from officeonlin-install.sh.

Kassiematis commented on July 21, 2024

What does loolwsd.log show? Setting loolwsd.xml with debug instead of trace makes it more readable.

<level type="string" desc="Can be 0-8, or none (turns off logging), fatal, critical, error, warning, notice, information, debug, trace" default=trace>debug</level>

from officeonlin-install.sh.

Slevin7 commented on July 21, 2024

well tho log file is about 3441 lines long o.O so i just copy the last lines
`wsd-01159-01159 12:31:03.344677 [ loolwsd ] INF Adding trusted WOPI host: [localhost].| wsd/Storage.cpp:86
wsd-01159-01159 12:31:03.344704 [ loolwsd ] INF Adding trusted WOPI host: [medi-cloud.tk].| wsd/Storage.cpp:86
wsd-01159-01159 12:31:03.344724 [ loolwsd ] INF Adding trusted WOPI host: [10.[0-9]{1,3}.[0-9]{1,3}.[0-9]{1,3}].| wsd/Storage.cpp:86
wsd-01159-01159 12:31:03.344744 [ loolwsd ] INF Adding trusted WOPI host: [172.1[6789].[0-9]{1,3}.[0-9]{1,3}].| wsd/Storage.cpp:86
wsd-01159-01159 12:31:03.344769 [ loolwsd ] INF Adding trusted WOPI host: [172.2[0-9].[0-9]{1,3}.[0-9]{1,3}].| wsd/Storage.cpp:86
wsd-01159-01159 12:31:03.344789 [ loolwsd ] INF Adding trusted WOPI host: [172.3[01].[0-9]{1,3}.[0-9]{1,3}].| wsd/Storage.cpp:86
wsd-01159-01159 12:31:03.344806 [ loolwsd ] INF Adding trusted WOPI host: [192.168.[0-9]{1,3}.[0-9]{1,3}].| wsd/Storage.cpp:86
wsd-01159-01159 12:31:03.344834 [ loolwsd ] INF Adding blocked WOPI host: [192.168.1.1].| wsd/Storage.cpp:91
wsd-01159-01159 12:31:03.346430 [ loolwsd ] INF SSL Cert file: /etc/letsencrypt/live/office-my-cloud/fullchain.pem| wsd/LOOLWSD.cpp:818
wsd-01159-01159 12:31:03.346461 [ loolwsd ] INF SSL Key file: /etc/letsencrypt/live/office-my-cloud/privkey.pem| wsd/LOOLWSD.cpp:821
wsd-01159-01159 12:31:03.346483 [ loolwsd ] INF SSL CA file: /etc/letsencrypt/live/office-my-cloud/chain.pem| wsd/LOOLWSD.cpp:824
wsd-01159-01159 12:31:03.348915 [ loolwsd ] FTL Cannot load CA file/directory at /etc/letsencrypt/live/office-cloud/mymistake-.-.pem (error:0200100D:system library:fopen:Permission denied)| wsd/LOOLWSD.cpp:2576
wsd-01159-01159 12:31:03.349604 [ loolwsd ] WRN Waking up dead poll thread [delay_poll], started: false, finished: false| ./net/Socket.hpp:445
wsd-01159-01159 12:31:03.349629 [ loolwsd ] DBG Stopping delay_poll.| net/Socket.hpp:271
wsd-01159-01159 12:31:03.349636 [ loolwsd ] WRN Waking up dead poll thread [delay_poll], started: false, finished: false| ./net/Socket.hpp:445

okay i see permission denied error but i dont see why? i mean all the files have the same permission

from officeonlin-install.sh.

Slevin7 commented on July 21, 2024

well i googled a bit and found a big mistake that i made.
i used fullchain.pem instead of cert.pem.
well but i looks like i have no ca file

from officeonlin-install.sh.

Kassiematis commented on July 21, 2024

You can use the standard settings and see if that works.

<cert_file_path desc="Path to the cert file" relative="false">/etc/loolwsd/cert.pem</cert_file_path> <key_file_path desc="Path to the key file" relative="false">/etc/loolwsd/key.pem</key_file_path> <ca_file_path desc="Path to the ca file" relative="false">/etc/loolwsd/ca-chain.cert.pem</ca_file_path>

Could be that you have to do the next command for owncloud to accept your seft-signed certificate.

cat /etc/loolwsd/ca-chain.cert.pem >> /var/www/owncloud/resources/config/ca-bundle.crt (or wherever your owncloud is installed)

from officeonlin-install.sh.

Connection is not allowed about officeonlin-install.sh HOT 18 CLOSED

Comments (18)

Related Issues (20)

Recommend Projects

React

Vue.js

Typescript

TensorFlow

Django

Laravel

D3

Recommend Topics

javascript

web

server

Machine learning

Visualization

Game

Recommend Org

Facebook

Microsoft

Google

Alibaba

D3

Tencent