[support] Siwat's Docker Repository


Recommended Posts

1 hour ago, CoZ said:

 

I see no way to edit the cert that NGINX assigns to the subdomain.  You just add a new certificate for the subdomain you're trying to forward and it assigns the cert.  There are no options or configurations for the cert.  I can only renew now or delete the cert.

 

The only option to do anything at all is under the proxy host:
 


Nginx variables available to you are:


$server # Host/IP

$port # Port Number

$forward_scheme # http or https

 

I went into appdata/NginxProxyManager/letsencrypt/keys and that directory is blank.  I then took a look into NginxProxyManager/nginx/proxy_host and found a bunch of randomly titled files in there finally found one that points to something:

 


# ------------------------------------------------------------
# office.MYDOMAIN.com
# ------------------------------------------------------------


server {
  set $forward_scheme https;
  set $server         "192.168.1.102";
  set $port           444;

  listen 8080;
listen [::]:8080;

listen 4443 ssl http2;
listen [::]:4443;


  server_name office.MYDOMAIN.com;


  # Let's Encrypt SSL
  include conf.d/include/letsencrypt-acme-challenge.conf;
  include conf.d/include/ssl-ciphers.conf;
  ssl_certificate /etc/letsencrypt/live/npm-24/fullchain.pem;
  ssl_certificate_key /etc/letsencrypt/live/npm-24/privkey.pem;

 

It continues on and I don't want to clutter up the thread any more by posting the whole thing if this isn't relevant.

What you just post there is called the server block, can I see one for the onlyofficeds? it should have a directive "server_name onlyoffice.MYDOMAIN.com"

Link to comment
56 minutes ago, Siwat2545 said:

What you just post there is called the server block, can I see one for the onlyofficeds? it should have a directive "server_name onlyoffice.MYDOMAIN.com"

 

Found it!  I thought it was "gone" since I removed it and placed the CERT from the Nextcloud SSL into the DocumentServer Proxy to try and fix this whole mess but it's still present on the system since I never deleted it, just selected the "office.mydomain.com" SSL

 

# ------------------------------------------------------------
# documentserver.MYDOMAIN.com
# ------------------------------------------------------------


server {
  set $forward_scheme http;
  set $server         "192.168.1.102";
  set $port           9090;

  listen 8080;
listen [::]:8080;

listen 4443 ssl http2;
listen [::]:4443;


  server_name documentserver.MYDOMAIN.com;


  # Let's Encrypt SSL
  include conf.d/include/letsencrypt-acme-challenge.conf;
  include conf.d/include/ssl-ciphers.conf;
  ssl_certificate /etc/letsencrypt/live/npm-24/fullchain.pem;
  ssl_certificate_key /etc/letsencrypt/live/npm-24/privkey.pem;






  # Block Exploits
  include conf.d/include/block-exploits.conf;



  # HSTS (ngx_http_headers_module is required) (63072000 seconds = 2 years)
  add_header Strict-Transport-Security "max-age=63072000;includeSubDomains; preload" always;





  access_log /config/log/proxy_host-25.log proxy;







  location / {

    


    # Force SSL
    include conf.d/include/force-ssl.conf;




  # HSTS (ngx_http_headers_module is required) (63072000 seconds = 2 years)
  add_header Strict-Transport-Security "max-age=63072000;includeSubDomains; preload" always;





    
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection $http_connection;
    proxy_http_version 1.1;
    

    # Proxy!
    include conf.d/include/proxy.conf;
  }


  # Custom
  include /data/nginx/custom/server_proxy[.]conf;
}

 

Edited by CoZ
Link to comment
1 hour ago, CoZ said:

 

Found it!  I thought it was "gone" since I removed it and placed the CERT from the Nextcloud SSL into the DocumentServer Proxy to try and fix this whole mess but it's still present on the system since I never deleted it, just selected the "office.mydomain.com" SSL

 


# ------------------------------------------------------------
# documentserver.MYDOMAIN.com
# ------------------------------------------------------------


server {
  set $forward_scheme http;
  set $server         "192.168.1.102";
  set $port           9090;

  listen 8080;
listen [::]:8080;

listen 4443 ssl http2;
listen [::]:4443;


  server_name documentserver.MYDOMAIN.com;


  # Let's Encrypt SSL
  include conf.d/include/letsencrypt-acme-challenge.conf;
  include conf.d/include/ssl-ciphers.conf;
  ssl_certificate /etc/letsencrypt/live/npm-24/fullchain.pem;
  ssl_certificate_key /etc/letsencrypt/live/npm-24/privkey.pem;






  # Block Exploits
  include conf.d/include/block-exploits.conf;



  # HSTS (ngx_http_headers_module is required) (63072000 seconds = 2 years)
  add_header Strict-Transport-Security "max-age=63072000;includeSubDomains; preload" always;





  access_log /config/log/proxy_host-25.log proxy;







  location / {

    


    # Force SSL
    include conf.d/include/force-ssl.conf;




  # HSTS (ngx_http_headers_module is required) (63072000 seconds = 2 years)
  add_header Strict-Transport-Security "max-age=63072000;includeSubDomains; preload" always;





    
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection $http_connection;
    proxy_http_version 1.1;
    

    # Proxy!
    include conf.d/include/proxy.conf;
  }


  # Custom
  include /data/nginx/custom/server_proxy[.]conf;
}

Looks good to me, try disabling HSTS

Link to comment
On 2/14/2021 at 4:24 PM, xthursdayx said:

I'm getting the following error in my Nextcloud log when trying to open documents via the Nextcloud mobile app on iOS:
 Fatal: Download without jwt


 Fatal: Download without jwt

Anyone know what might be causing this problem?

I'm getting this same error when I try to open any documents in Nextcloud using OnlyOffice DS, as well as the error " [onlyoffice] Fatal: Track without jwt"

I am able to access my onlyoffice homepage via reverse proxy without any problems. Any idea what the problem might be?

Link to comment
6 hours ago, Siwat2545 said:

Looks good to me, try disabling HSTS

 

You just confused me.  So you're saying I should be using THAT SSL cert for both the office.mydomain and the documentserver.mydomain or the other SSL cert for both office.mydomain & documentserver.mydomain? 

 

I'll uncheck the HSTS

 

EDIT:

 

Still the same error:

Error when trying to connect (cURL error 60: SSL: no alternative certificate subject name matches target host name 'documentserver.MYDOMAIN.com' (see https://curl.haxx.se/libcurl/c/libcurl-errors.html) for https://documentserver.MYDOMAIN.com/healthcheck)

 

Using the SSL for the Nextcloud reverse proxy

 

Using the SSL for OnlyOffice proxy I  get this error:

 

Error when trying to connect (Error occurred in the document service: Error while downloading the document file to be converted.) (version 6.2.1.24)

 

 

So not sure where to go from here... both result in completely different error messages.

Edited by CoZ
Link to comment
3 hours ago, CoZ said:

 

You just confused me.  So you're saying I should be using THAT SSL cert for both the office.mydomain and the documentserver.mydomain or the other SSL cert for both office.mydomain & documentserver.mydomain? 

 

I'll uncheck the HSTS

 

EDIT:

 

Still the same error:


Error when trying to connect (cURL error 60: SSL: no alternative certificate subject name matches target host name 'documentserver.MYDOMAIN.com' (see https://curl.haxx.se/libcurl/c/libcurl-errors.html) for https://documentserver.MYDOMAIN.com/healthcheck)

 

Using the SSL for the Nextcloud reverse proxy

 

Using the SSL for OnlyOffice proxy I  get this error:

 


Error when trying to connect (Error occurred in the document service: Error while downloading the document file to be converted.) (version 6.2.1.24)

 

 

So not sure where to go from here... both result in completely different error messages.

 

3 hours ago, CoZ said:

 

You just confused me.  So you're saying I should be using THAT SSL cert for both the office.mydomain and the documentserver.mydomain or the other SSL cert for both office.mydomain & documentserver.mydomain? 

 

I'll uncheck the HSTS

 

EDIT:

 

Still the same error:


Error when trying to connect (cURL error 60: SSL: no alternative certificate subject name matches target host name 'documentserver.MYDOMAIN.com' (see https://curl.haxx.se/libcurl/c/libcurl-errors.html) for https://documentserver.MYDOMAIN.com/healthcheck)

 

Using the SSL for the Nextcloud reverse proxy

 

Using the SSL for OnlyOffice proxy I  get this error:

 


Error when trying to connect (Error occurred in the document service: Error while downloading the document file to be converted.) (version 6.2.1.24)

 

 

So not sure where to go from here... both result in completely different error messages.

NVM, I confused HSTS with CORS, I don’t really know how to solve this as I do not use NGINX based reverse-proxy, but I heard that people got it working when DS have the correct certificates (in Data/certs directory)

Link to comment
10 hours ago, Siwat2545 said:

 

NVM, I confused HSTS with CORS, I don’t really know how to solve this as I do not use NGINX based reverse-proxy, but I heard that people got it working when DS have the correct certificates (in Data/certs directory)

 

Ok, thanks for trying to help. 

 

I can't even find the certs to copy over to DS anywhere from the NGINX proxy/appdata - oh well. 

Every Google search for NGINX + OnlyOffice + Docker + DocumentServer doesn't really return much so this was the last hope..   LoL

Edited by CoZ
Link to comment
  • 2 weeks later...
On 4/15/2021 at 11:32 PM, CoZ said:

 

Ok, thanks for trying to help. 

 

I can't even find the certs to copy over to DS anywhere from the NGINX proxy/appdata - oh well. 

Every Google search for NGINX + OnlyOffice + Docker + DocumentServer doesn't really return much so this was the last hope..   LoL

 

try this....

 

stop DS, 

cp /mnt/user/appdata/NginxProxyManager/custom_ssl/npm-12/fullchain.pem /mnt/user/appdata/onlyofficeds/Data/certs/onlyoffice.crt
cp /mnt/user/appdata/NginxProxyManager/custom_ssl/npm-12/privkey.pem /mnt/user/appdata/onlyofficeds/Data/certs/onlyoffice.key

start DS.

 

joy?

 

Edited by Tolete
Link to comment

NextCloud/OnlyOfficeDocumentServer pissing contest again...

 

-OnlyOfficeDocumentServer...

https://documentserver.mydomain.com/healthcheck =true

-NextCloud...

Error when trying to connect (Server error: `GET https://documentserver.mydomain.com/healthcheck` resulted in a `503 Service Temporarily Unavailable` response:

 

any help be greatly appreciated.

 

Edited by Tolete
Link to comment
  • 2 weeks later...
Posted (edited)

Any idea what may be causing the issue? Everything literally worked for about the last year and I can't seem to find anything that changed to cause this to not work anymore. Any ideas?

 

I am able to access nextcloud, btwarden, and everything else I have setup except onlyoffice. I am on onlyoffice document server 6.0. It is its own separate docker. Again, it literally has been working great for the last year or so.

 

==> /var/log/onlyoffice/documentserver/docservice/out.log <==
[2021-05-07T20:56:44.069] [WARN] nodeJS - Express server listening on port 8000 in production-linux mode
[2021-05-07T20:57:23.671] [WARN] nodeJS - Express server starting...
[2021-05-07T20:57:23.674] [WARN] nodeJS - Failed to subscribe to plugin folder updates. When changing the list of plugins, you must restart the server. https://nodejs.org/docs/latest/api/fs.html#fs_availability

[2021-05-07T20:57:23.782] [WARN] nodeJS - Express server listening on port 8000 in production-linux mode
[2021-05-08T20:15:28.620] [WARN] nodeJS - Express server starting...
[2021-05-08T20:15:28.622] [WARN] nodeJS - Failed to subscribe to plugin folder updates. When changing the list of plugins, you must restart the server. https://nodejs.org/docs/latest/api/fs.html#fs_availability

[2021-05-08T20:15:28.755] [WARN] nodeJS - Express server listening on port 8000 in production-linux mode
[2021-05-08T20:16:06.991] [WARN] nodeJS - Express server starting...
[2021-05-08T20:16:06.995] [WARN] nodeJS - Failed to subscribe to plugin folder updates. When changing the list of plugins, you must restart the server. https://nodejs.org/docs/latest/api/fs.html#fs_availability

[2021-05-08T20:16:07.107] [WARN] nodeJS - Express server listening on port 8000 in production-linux mode

==> /var/log/onlyoffice/documentserver/metrics/err.log <==

==> /var/log/onlyoffice/documentserver/metrics/out.log <==
gauges: { 'statsd.timestamp_lag': 0 },
timer_data: {},
counter_rates:
{ 'statsd.bad_lines_seen': 0,
'statsd.packets_received': 0,
'statsd.metrics_received': 0 },
sets: {},
pctThreshold: [ 90 ] }
8 May 20:15:27 - [904] reading config file: ./config/config.js
8 May 20:15:27 - server is up INFO

==> /var/log/onlyoffice/documentserver/nginx.error.log <==


==> /var/log/onlyoffice/documentserver/spellchecker/err.log <==

==> /var/log/onlyoffice/documentserver/spellchecker/out.log <==
[2021-05-07T20:54:05.768] [WARN] nodeJS - Express server starting...
[2021-05-07T20:54:05.827] [WARN] nodeJS - Express server listening on port 8080 in production-linux mode
[2021-05-07T20:56:42.939] [WARN] nodeJS - start cluster with 1 workers
[2021-05-07T20:56:42.953] [WARN] nodeJS - worker 934 started.
[2021-05-07T20:56:43.489] [WARN] nodeJS - Express server starting...
[2021-05-07T20:56:43.536] [WARN] nodeJS - Express server listening on port 8080 in production-linux mode
[2021-05-08T20:15:27.633] [WARN] nodeJS - start cluster with 1 workers
[2021-05-08T20:15:27.640] [WARN] nodeJS - worker 955 started.
[2021-05-08T20:15:28.244] [WARN] nodeJS - Express server starting...
[2021-05-08T20:15:28.357] [WARN] nodeJS - Express server listening on port 8080 in production-linux mode

==> /var/log/onlyoffice/documentserver/metrics/out.log <==
Flushing stats at Sat May 08 2021 20:25:27 GMT+0000 (Coordinated Universal Time)
{ counters:
{ 'statsd.bad_lines_seen': 0,
'statsd.packets_received': 0,
'statsd.metrics_received': 0 },
timers: {},
gauges: {},
timer_data: {},
counter_rates:
{ 'statsd.bad_lines_seen': 0,
'statsd.packets_received': 0,
'statsd.metrics_received': 0 },
sets: {},
pctThreshold: [ 90 ] }

 

Edited by live4soccer7
Link to comment
  • 2 weeks later...
Posted (edited)

If I visit the document server URL it says that it is setup and working etc.....

 

Nextcloud works just fine.

 

One clue that I have managed to find is if I go into the developer tools in chrome then I can find that it returns 404 file not found. I'm completely stumped here as I have no idea what changed from the last year of it working.

 

Edit: something interested as I've experience some weird behavior with chrome. It works perfectly in firefox. Any insight or others experiencing this?

 

 

looking at firefox's debug I found the following along with a few complaints about CSPs:

 

Firefox can’t establish a connection to the server at wss://onlyoffice.mydomain.com/6.0.2-5/doc/1150020109/c/181/h13szuxq/websocket. sockjs.min.js:2:21097

Firefox can’t establish a connection to the server at wss://onlyoffice.mydomain.com/6.0.2-5/spellchecker/doc/1150020109/c/513/dger5qoo/websocket. sockjs.min.js:2:21097

Uncaught TypeError: e.classList is undefined

    hasNodeOrAnyParentClass excludeClickOutsideClasses.js:22

    clickOutsideMiddleware excludeClickOutsideClasses.js:22

    r v-click-outside.umd.js:1

    handler v-click-outside.umd.js:1

excludeClickOutsideClasses.js:22:425

Edited by live4soccer7
Link to comment
On 7/4/2020 at 2:08 PM, muwahhid said:

this error has already been voiced here. But I didn’t find an answer 

image.pngimage.thumb.png.ecfe05cb051eee69c637d7b62c5e76f6.png

Hi,

 

do you have already any solution for this? I have same issue...

 

Regards,

Luk

Link to comment
Posted (edited)
5 hours ago, Siwat2545 said:

What seem to be the problem, does the web ui does not show up?

I just see since many many minutes this and nothing happens:
image.thumb.png.310721deba58c015b61e792e855c9b11.png
 

here the full log:

 

ErrorWarningSystemArrayLogin


+ echo '##########################################################'
+ echo '######### Start container configuration ################'
+ echo '##########################################################'
+ SERVER_HOST=
##########################################################
######### Start container configuration ################
##########################################################
+ APP_DIR=/var/www/onlyoffice
+ APP_DATA_DIR=/var/www/onlyoffice/Data
+ APP_INDEX_DIR=/var/www/onlyoffice/Data/Index/v7.4.0
+ APP_PRIVATE_DATA_DIR=/var/www/onlyoffice/Data/.private
+ APP_SERVICES_DIR=/var/www/onlyoffice/Services
+ APP_SQL_DIR=/var/www/onlyoffice/Sql
+ APP_ROOT_DIR=/var/www/onlyoffice/WebStudio
+ APP_APISYSTEM_DIR=/var/www/onlyoffice/ApiSystem
+ APP_GOD_DIR=/etc/god/conf.d
+ APP_MONOSERVER_PATH=/lib/systemd/system/monoserve.service
+ APP_HYPERFASTCGI_PATH=/etc/hyperfastcgi/onlyoffice
+ APP_MONOSERVE_COUNT=1
+ APP_MODE=SERVER
+ APP_CRON_DIR=/etc/cron.d
+ APP_CRON_PATH=/etc/cron.d/onlyoffice
+ LICENSE_FILE_PATH=/var/www/onlyoffice/DocumentServerData/license.lic
++ ip -o -f inet addr show
++ awk '/scope global/ {print $4}'
++ head -1
+ DOCKER_APP_SUBNET=172.17.0.4/16
++ ip addr show eth0
++ awk '/inet / {gsub(/\/.*/,"",$2); print $2}'
++ head -1
+ DOCKER_CONTAINER_IP=172.17.0.4
+ DOCKER_CONTAINER_NAME=onlyoffice-community-server
+ DOCKER_DOCUMENT_SERVER_CONTAINER_NAME=onlyoffice-document-server
+ DOCKER_ENABLED=true
+++ dirname /app/run-community-server.sh
++ cd /app
++ pwd
+ DIR=/app
+ NGINX_CONF_DIR=/etc/nginx/sites-enabled
++ cat /proc/cpuinfo
++ grep -i processor
++ awk '{print $1}'
++ grep -i processor
++ wc -l
+ CPU_PROCESSOR_COUNT=4
++ ulimit -n
+ NGINX_WORKER_CONNECTIONS=40960
+ SERVICE_SSO_AUTH_HOST_ADDR=
++ sudo sed -n '/"core.machinekey"/s!.*value\s*=\s*"\([^"]*\)".*!\1!p' /var/www/onlyoffice/WebStudio/web.appsettings.config
+ DEFAULT_APP_CORE_MACHINEKEY='Vskoproizvolny Salt par Chivreski'
+ IS_UPDATE=false
+ WORKSPACE_ENTERPRISE=false
+ '[' '!' -e /var/www/onlyoffice/Data/.private/machinekey ']'
+ mkdir -p /var/www/onlyoffice/Data/.private
+ APP_CORE_MACHINEKEY='Vskoproizvolny Salt par Chivreski'
+ echo 'Vskoproizvolny Salt par Chivreski'
++ sudo sed -n '/"version.release-date"/s!.*value\s*=\s*"\([^"]*\)".*!\1!p' /var/www/onlyoffice/WebStudio/web.appsettings.config

+ RELEASE_DATE=20210303
++ CreateAuthToken 20210303 'Vskoproizvolny Salt par Chivreski'
++ local pkey=20210303
+++ echo -n 'Vskoproizvolny Salt par Chivreski'
++ local 'machinekey=Vskoproizvolny Salt par Chivreski'
++ local a=1
++ local LIMIT=10
++ '[' 1 -le 10 ']'
+++ date +%Y%m%d%H%M%S
++ local now=20210521184240
+++ echo -n -e '20210521184240\n20210303'
+++ openssl dgst -sha1 -binary -mac HMAC -macopt 'key:Vskoproizvolny Salt par Chivreski'
/app/run-community-server.sh: line 50: warning: command substitution: ignored null byte in input

++ local $'authkey=\331/K@\026\242S\221\364\366HaXi\027A\273\f\246'
+++ echo -n $'\331/K@\026\242S\221\364\366HaXi\027A\273\f\246'
+++ base64
++ authkey=2S9LQBaiU5H09khhWGkXQbsMpg==
++ local 'result=ASC 20210303:20210521184240:2S9LQBaiU5H09khhWGkXQbsMpg=='
++ a=2
+++ echo '"ASC' '20210303:20210521184240:2S9LQBaiU5H09khhWGkXQbsMpg=="'
+++ grep ==
++ '[' -z '"ASC 20210303:20210521184240:2S9LQBaiU5H09khhWGkXQbsMpg=="' ']'
++ sleep 1s
++ '[' 2 -le 10 ']'
+++ date +%Y%m%d%H%M%S
++ local now=20210521184241
+++ echo -n -e '20210521184241\n20210303'
+++ openssl dgst -sha1 -binary -mac HMAC -macopt 'key:Vskoproizvolny Salt par Chivreski'
++ local 'authkey=0�����j�$-����� �O'
+++ echo -n '0�����j�$-����� �O'
+++ base64
++ authkey=MIeq3uiTDmryJC3txAzf4JgJ808=
++ local 'result=ASC 20210303:20210521184241:MIeq3uiTDmryJC3txAzf4JgJ808='
++ a=3
+++ echo '"ASC' '20210303:20210521184241:MIeq3uiTDmryJC3txAzf4JgJ808="'
+++ grep ==
++ '[' -z '' ']'
++ echo 'ASC 20210303:20210521184241:MIeq3uiTDmryJC3txAzf4JgJ808='

0
+ RELEASE_DATE_SIGN='ASC 20210303:20210521184241:MIeq3uiTDmryJC3txAzf4JgJ808='
+ sed -i '/version.release-date.sign/s!value="[^"]*"!value=\"ASC 20210303:20210521184241:MIeq3uiTDmryJC3txAzf4JgJ808=\"!g' /var/www/onlyoffice/WebStudio/web.appsettings.config

++ head -n 1 /var/www/onlyoffice/Data/.private/release_date
head: cannot open '/var/www/onlyoffice/Data/.private/release_date' for reading: No such file or directory
+ PREV_RELEASE_DATE=
+ '[' 20210303 '!=' '' ']'
+ echo 20210303
+ IS_UPDATE=true
+ chmod -R 444 /var/www/onlyoffice/Data/.private
+ cat /proc/1/cgroup
+ grep -qE 'docker|lxc|kubepods|libpod'
+ DOCKER_ENABLED=true
+ '[' '!' -d /etc/nginx/sites-enabled ']'
+ '[' '!' -d /var/www/onlyoffice/DocumentServerData ']'
+ NGINX_ROOT_DIR=/etc/nginx
+ VALID_IP_ADDRESS_REGEX='^(([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])\.){3}([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])$'
+ LOG_DEBUG=
+ LOG_DIR=/var/log/onlyoffice/
+ APP_HTTPS=false
+ SSL_CERTIFICATES_DIR=/var/www/onlyoffice/Data/certs
+ SSL_CERTIFICATE_PATH=/var/www/onlyoffice/Data/certs/onlyoffice.crt
+ SSL_KEY_PATH=/var/www/onlyoffice/Data/certs/onlyoffice.key
+ SSL_CERTIFICATE_PATH_PFX=/var/www/onlyoffice/Data/certs/onlyoffice.pfx
+ SSL_CERTIFICATE_PATH_PFX_PWD=onlyoffice
+ SSL_DHPARAM_PATH=/var/www/onlyoffice/Data/certs/dhparam.pem
+ SSL_VERIFY_CLIENT=off
+ SSL_OCSP_CERTIFICATE_PATH=/var/www/onlyoffice/Data/certs/stapling.trusted.crt
+ CA_CERTIFICATES_PATH=/var/www/onlyoffice/Data/certs/ca.crt
+ APP_HTTPS_HSTS_ENABLED=true
+ APP_HTTPS_HSTS_MAXAGE=63072000
+ SYSCONF_TEMPLATES_DIR=/app/config
+ mkdir -p /app/config/nginx
+ SYSCONF_TOOLS_DIR=/app/assets/tools
+ APP_SERVICES_INTERNAL_HOST=
+ APP_SERVICES_EXTERNAL=false
+ DOCUMENT_SERVER_ENABLED=false
+ DOCUMENT_SERVER_JWT_ENABLED=false
+ DOCUMENT_SERVER_JWT_SECRET=
+ DOCUMENT_SERVER_JWT_HEADER=
+ DOCUMENT_SERVER_HOST=
+ DOCUMENT_SERVER_PROTOCOL=http
+ DOCUMENT_SERVER_API_URL=
+ DOCUMENT_SERVER_HOST_IP=
+ CONTROL_PANEL_ENABLED=false
+ MAIL_SERVER_ENABLED=false
+ MYSQL_SERVER_ROOT_PASSWORD=
+ MYSQL_SERVER_HOST=127.0.0.1
+ MYSQL_SERVER_PORT=3306
+ MYSQL_SERVER_DB_NAME=onlyoffice
+ MYSQL_SERVER_USER=root
+ MYSQL_SERVER_PASS=
+ MYSQL_SERVER_EXTERNAL=false
+ mkdir -p /var/www/onlyoffice/Data/certs/.well-known/acme-challenge
+ '[' 172.17.0.4/16 ']'
++ normalize_subnet 172.17.0.4/16
++ local 'IPRE=\([0-9]\+\)\.\([0-9]\+\)\.\([0-9]\+\)\.\([0-9]\+\)'
++ IP=($(echo "$1" | sed -ne 's:^'"$IPRE"'/.*$:\1 \2 \3 \4:p'))
+++ echo 172.17.0.4/16
+++ sed -ne 's:^\([0-9]\+\)\.\([0-9]\+\)\.\([0-9]\+\)\.\([0-9]\+\)/.*$:\1 \2 \3 \4:p'
++ local IP
++ MASK=($(echo "$1" | sed -ne 's:^[^/]*/'"$IPRE"'$:\1 \2 \3 \4:p'))
+++ echo 172.17.0.4/16
+++ sed -ne 's:^[^/]*/\([0-9]\+\)\.\([0-9]\+\)\.\([0-9]\+\)\.\([0-9]\+\)$:\1 \2 \3 \4:p'
++ local MASK
++ '[' 0 -ne 4 ']'
++ BITCNT=($(echo "$1" | sed -ne 's:^[^/]*/\([0-9]\+\)$:\1:p'))
+++ echo 172.17.0.4/16
+++ sed -ne 's:^[^/]*/\([0-9]\+\)$:\1:p'
++ local BITCNT
++ BITCNT=4294901760
++ (( I=0 ))
++ (( I<4 ))
++ MASK[$I]=255
++ (( I++ ))
++ (( I<4 ))
++ MASK[$I]=255
++ (( I++ ))
++ (( I<4 ))
++ MASK[$I]=0
++ (( I++ ))
++ (( I<4 ))
++ MASK[$I]=0
++ (( I++ ))
++ (( I<4 ))
++ NETWORK=()
++ local NETWORK
++ (( I=0 ))
++ (( I<4 ))
++ NETWORK[$I]=172
++ (( I++ ))
++ (( I<4 ))
++ NETWORK[$I]=17
++ (( I++ ))
++ (( I<4 ))
++ NETWORK[$I]=0
++ (( I++ ))
++ (( I<4 ))
++ NETWORK[$I]=0
++ (( I++ ))
++ (( I<4 ))
+++ echo 172.17.0.4/16
+++ sed -ne 's:^[^/]*/\([0-9]\+\)$:\1:p'
++ local IP_MASK=16
++ echo 172.17.0.0/16
+ DOCKER_APP_SUBNET=172.17.0.0/16
+ check_partnerdata
+ PARTNER_DATA_FILE=/var/www/onlyoffice/Data/json-data.txt
+ '[' -f /var/www/onlyoffice/Data/json-data.txt ']'
+ re='^[0-9]+$'
+ [[ 1 =~ ^[0-9]+$ ]]
+ '[' '!' -f /proc/net/if_inet6 ']'
+ cp /etc/nginx/includes/onlyoffice-communityserver-nginx.conf.template /etc/nginx/nginx.conf
+ sed 's/^worker_processes.*/worker_processes 4;/' -i /etc/nginx/nginx.conf
+ sed 's/worker_connections.*/worker_connections 40960;/' -i /etc/nginx/nginx.conf
+ cp /etc/nginx/includes/onlyoffice-communityserver-common-init.conf.template /etc/nginx/sites-enabled/onlyoffice
+ '[' -f /var/www/onlyoffice/Data/certs/onlyoffice.crt -a -f /var/www/onlyoffice/Data/certs/onlyoffice.key ']'
+ sed '/{{SSL_CERTIFICATE_PATH}}/d' -i /etc/nginx/sites-enabled/onlyoffice
+ sed '/{{SSL_KEY_PATH}}/d' -i /etc/nginx/sites-enabled/onlyoffice
+ sed '/listen\s*443/d' -i /etc/nginx/sites-enabled/onlyoffice
+ rm -f /etc/nginx/conf.d/default.conf
+ service nginx restart
* Restarting nginx nginx
start-stop-daemon: warning: failed to kill 18971: No such process

...done.
++ head -n 1
++ grep -oP '\d+'
++ free -m
+ TOTAL_MEMORY=15911
+ MEMORY_REQUIREMENTS=12228
+ '[' 15911 -gt 12228 ']'
+ grep -q '[-]Xms1g' /etc/elasticsearch/jvm.options
+ sed -i s/-Xms1g/-Xms4g/ /etc/elasticsearch/jvm.options
+ grep -q '[-]Xmx1g' /etc/elasticsearch/jvm.options
+ sed -i s/-Xmx1g/-Xmx4g/ /etc/elasticsearch/jvm.options

'

'

'
+ '[' false == true ']'
+ '[' true == true ']'
+ '[' '' == onlyoffice-document-server ']'
+ '[' 127.0.0.1 '!=' localhost ']'
+ '[' 127.0.0.1 '!=' 127.0.0.1 ']'

'

'
+ MAIL_SERVER_API_PORT=8081
+ MAIL_SERVER_API_HOST=
+ MAIL_SERVER_DB_HOST=
+ MAIL_SERVER_DB_PORT=3306
+ MAIL_SERVER_DB_NAME=onlyoffice_mailserver
+ MAIL_SERVER_DB_USER=mail_admin
+ MAIL_SERVER_DB_PASS=Isadmin123

'

'
+ REDIS_SERVER_HOST=
+ REDIS_SERVER_CACHEPORT=6379
+ REDIS_SERVER_PASSWORD=
+ REDIS_SERVER_SSL=false
+ REDIS_SERVER_DATABASE=0
+ REDIS_SERVER_CONNECT_TIMEOUT=5000
+ REDIS_SERVER_EXTERNAL=false

'
+ '[' false == false ']'
+ '[' -e /etc/redis/redis.conf ']'
+ sed -i 's/bind .*/bind 127.0.0.1/g' /etc/redis/redis.conf
+ ELASTICSEARCH_SERVER_HOST=
+ ELASTICSEARCH_SERVER_HTTPPORT=9200
+ grep -q '<section name="elastic" type="ASC.ElasticSearch.Config.ElasticSection, ASC.ElasticSearch" />' /var/www/onlyoffice/WebStudio/Web.config

'
+ '[' false == false ']'
+ chown -R mysql:mysql /var/lib/mysql/
+ chmod -R 755 /var/lib/mysql/
+ '[' '!' -f /var/lib/mysql/ibdata1 ']'
+ mysql_install_db
2021-05-21 18:42:42 [ERROR] The data directory needs to be specified.

2021-05-21 18:42:42 [WARNING] mysql_install_db is deprecated. Please consider switching to mysqld --initialize

+ true

'
+ myisamchk -q -r /var/lib/mysql/mysql/proc
myisamchk: error: File '/var/lib/mysql/mysql/proc' doesn't exist

+ true
+ systemctl enable mysql.service
Synchronizing state of mysql.service with SysV service script with /lib/systemd/systemd-sysv-install.
Executing: /lib/systemd/systemd-sysv-install enable mysql
+ service mysql start
* Starting MySQL database server mysqld
...fail!
+ '[' '!' -f /var/lib/mysql/mysql_upgrade_info ']'
+ mysqladmin --silent ping -u root
+ grep -q 'mysqld is alive'
+ mysql_upgrade --password=
mysql_upgrade: [Warning] Using a password on the command line interface can be insecure.

mysql_upgrade: Got error: 2002: Can't connect to local MySQL server through socket '/var/run/mysqld/mysqld.sock' (2) while connecting to the MySQL server

Upgrade process encountered error and will not continue.

+ service mysql restart
* Stopping MySQL database server mysqld
...done.
* Starting MySQL database server mysqld
...fail!
+ '[' -n '' ']'
++ grep password /etc/mysql/debian.cnf
++ head -1
++ sed 's/password\s*=\s*//'
++ tr -d '[[:space:]]'
+ DEBIAN_SYS_MAINT_PASS=iJ6WHkB3IzQynJkh
+ mysql_scalar_exec 'GRANT ALL PRIVILEGES ON *.* TO '\''debian-sys-maint'\''@'\''localhost'\'' IDENTIFIED BY '\''iJ6WHkB3IzQynJkh'\'''
+ local queryResult=
+ '[' '' == opt_ignore_db_name ']'
++ mysql --silent --skip-column-names -h 127.0.0.1 -P 3306 -u root --password= -D onlyoffice -e 'GRANT ALL PRIVILEGES ON *.* TO '\''debian-sys-maint'\''@'\''localhost'\'' IDENTIFIED BY '\''iJ6WHkB3IzQynJkh'\'''
mysql: [Warning] Using a password on the command line interface can be insecure.

ERROR 2003 (HY000): Can't connect to MySQL server on '127.0.0.1' (111)

+ queryResult=
+ echo

+ mysql_check_connection

'
+ mysqladmin ping -h 127.0.0.1 -P 3306 -u root --password= --silent
mysqladmin: [Warning] Using a password on the command line interface can be insecure.


1
+ mysqladmin ping -h 127.0.0.1 -P 3306 -u root --password= --silent
mysqladmin: [Warning] Using a password on the command line interface can be insecure.


1
+ mysqladmin ping -h 127.0.0.1 -P 3306 -u root --password= --silent
mysqladmin: [Warning] Using a password on the command line interface can be insecure.


1

 

Edited by luk
added full log
  • Like 1
Link to comment
On 5/21/2021 at 1:19 PM, luk said:

I just see since many many minutes this and nothing happens:
image.thumb.png.310721deba58c015b61e792e855c9b11.png
 

here the full log:

 


ErrorWarningSystemArrayLogin


+ echo '##########################################################'
+ echo '######### Start container configuration ################'
+ echo '##########################################################'
+ SERVER_HOST=
##########################################################
######### Start container configuration ################
##########################################################
+ APP_DIR=/var/www/onlyoffice
+ APP_DATA_DIR=/var/www/onlyoffice/Data
+ APP_INDEX_DIR=/var/www/onlyoffice/Data/Index/v7.4.0
+ APP_PRIVATE_DATA_DIR=/var/www/onlyoffice/Data/.private
+ APP_SERVICES_DIR=/var/www/onlyoffice/Services
+ APP_SQL_DIR=/var/www/onlyoffice/Sql
+ APP_ROOT_DIR=/var/www/onlyoffice/WebStudio
+ APP_APISYSTEM_DIR=/var/www/onlyoffice/ApiSystem
+ APP_GOD_DIR=/etc/god/conf.d
+ APP_MONOSERVER_PATH=/lib/systemd/system/monoserve.service
+ APP_HYPERFASTCGI_PATH=/etc/hyperfastcgi/onlyoffice
+ APP_MONOSERVE_COUNT=1
+ APP_MODE=SERVER
+ APP_CRON_DIR=/etc/cron.d
+ APP_CRON_PATH=/etc/cron.d/onlyoffice
+ LICENSE_FILE_PATH=/var/www/onlyoffice/DocumentServerData/license.lic
++ ip -o -f inet addr show
++ awk '/scope global/ {print $4}'
++ head -1
+ DOCKER_APP_SUBNET=172.17.0.4/16
++ ip addr show eth0
++ awk '/inet / {gsub(/\/.*/,"",$2); print $2}'
++ head -1
+ DOCKER_CONTAINER_IP=172.17.0.4
+ DOCKER_CONTAINER_NAME=onlyoffice-community-server
+ DOCKER_DOCUMENT_SERVER_CONTAINER_NAME=onlyoffice-document-server
+ DOCKER_ENABLED=true
+++ dirname /app/run-community-server.sh
++ cd /app
++ pwd
+ DIR=/app
+ NGINX_CONF_DIR=/etc/nginx/sites-enabled
++ cat /proc/cpuinfo
++ grep -i processor
++ awk '{print $1}'
++ grep -i processor
++ wc -l
+ CPU_PROCESSOR_COUNT=4
++ ulimit -n
+ NGINX_WORKER_CONNECTIONS=40960
+ SERVICE_SSO_AUTH_HOST_ADDR=
++ sudo sed -n '/"core.machinekey"/s!.*value\s*=\s*"\([^"]*\)".*!\1!p' /var/www/onlyoffice/WebStudio/web.appsettings.config
+ DEFAULT_APP_CORE_MACHINEKEY='Vskoproizvolny Salt par Chivreski'
+ IS_UPDATE=false
+ WORKSPACE_ENTERPRISE=false
+ '[' '!' -e /var/www/onlyoffice/Data/.private/machinekey ']'
+ mkdir -p /var/www/onlyoffice/Data/.private
+ APP_CORE_MACHINEKEY='Vskoproizvolny Salt par Chivreski'
+ echo 'Vskoproizvolny Salt par Chivreski'
++ sudo sed -n '/"version.release-date"/s!.*value\s*=\s*"\([^"]*\)".*!\1!p' /var/www/onlyoffice/WebStudio/web.appsettings.config

+ RELEASE_DATE=20210303
++ CreateAuthToken 20210303 'Vskoproizvolny Salt par Chivreski'
++ local pkey=20210303
+++ echo -n 'Vskoproizvolny Salt par Chivreski'
++ local 'machinekey=Vskoproizvolny Salt par Chivreski'
++ local a=1
++ local LIMIT=10
++ '[' 1 -le 10 ']'
+++ date +%Y%m%d%H%M%S
++ local now=20210521184240
+++ echo -n -e '20210521184240\n20210303'
+++ openssl dgst -sha1 -binary -mac HMAC -macopt 'key:Vskoproizvolny Salt par Chivreski'
/app/run-community-server.sh: line 50: warning: command substitution: ignored null byte in input

++ local $'authkey=\331/K@\026\242S\221\364\366HaXi\027A\273\f\246'
+++ echo -n $'\331/K@\026\242S\221\364\366HaXi\027A\273\f\246'
+++ base64
++ authkey=2S9LQBaiU5H09khhWGkXQbsMpg==
++ local 'result=ASC 20210303:20210521184240:2S9LQBaiU5H09khhWGkXQbsMpg=='
++ a=2
+++ echo '"ASC' '20210303:20210521184240:2S9LQBaiU5H09khhWGkXQbsMpg=="'
+++ grep ==
++ '[' -z '"ASC 20210303:20210521184240:2S9LQBaiU5H09khhWGkXQbsMpg=="' ']'
++ sleep 1s
++ '[' 2 -le 10 ']'
+++ date +%Y%m%d%H%M%S
++ local now=20210521184241
+++ echo -n -e '20210521184241\n20210303'
+++ openssl dgst -sha1 -binary -mac HMAC -macopt 'key:Vskoproizvolny Salt par Chivreski'
++ local 'authkey=0�����j�$-����� �O'
+++ echo -n '0�����j�$-����� �O'
+++ base64
++ authkey=MIeq3uiTDmryJC3txAzf4JgJ808=
++ local 'result=ASC 20210303:20210521184241:MIeq3uiTDmryJC3txAzf4JgJ808='
++ a=3
+++ echo '"ASC' '20210303:20210521184241:MIeq3uiTDmryJC3txAzf4JgJ808="'
+++ grep ==
++ '[' -z '' ']'
++ echo 'ASC 20210303:20210521184241:MIeq3uiTDmryJC3txAzf4JgJ808='

0
+ RELEASE_DATE_SIGN='ASC 20210303:20210521184241:MIeq3uiTDmryJC3txAzf4JgJ808='
+ sed -i '/version.release-date.sign/s!value="[^"]*"!value=\"ASC 20210303:20210521184241:MIeq3uiTDmryJC3txAzf4JgJ808=\"!g' /var/www/onlyoffice/WebStudio/web.appsettings.config

++ head -n 1 /var/www/onlyoffice/Data/.private/release_date
head: cannot open '/var/www/onlyoffice/Data/.private/release_date' for reading: No such file or directory
+ PREV_RELEASE_DATE=
+ '[' 20210303 '!=' '' ']'
+ echo 20210303
+ IS_UPDATE=true
+ chmod -R 444 /var/www/onlyoffice/Data/.private
+ cat /proc/1/cgroup
+ grep -qE 'docker|lxc|kubepods|libpod'
+ DOCKER_ENABLED=true
+ '[' '!' -d /etc/nginx/sites-enabled ']'
+ '[' '!' -d /var/www/onlyoffice/DocumentServerData ']'
+ NGINX_ROOT_DIR=/etc/nginx
+ VALID_IP_ADDRESS_REGEX='^(([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])\.){3}([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])$'
+ LOG_DEBUG=
+ LOG_DIR=/var/log/onlyoffice/
+ APP_HTTPS=false
+ SSL_CERTIFICATES_DIR=/var/www/onlyoffice/Data/certs
+ SSL_CERTIFICATE_PATH=/var/www/onlyoffice/Data/certs/onlyoffice.crt
+ SSL_KEY_PATH=/var/www/onlyoffice/Data/certs/onlyoffice.key
+ SSL_CERTIFICATE_PATH_PFX=/var/www/onlyoffice/Data/certs/onlyoffice.pfx
+ SSL_CERTIFICATE_PATH_PFX_PWD=onlyoffice
+ SSL_DHPARAM_PATH=/var/www/onlyoffice/Data/certs/dhparam.pem
+ SSL_VERIFY_CLIENT=off
+ SSL_OCSP_CERTIFICATE_PATH=/var/www/onlyoffice/Data/certs/stapling.trusted.crt
+ CA_CERTIFICATES_PATH=/var/www/onlyoffice/Data/certs/ca.crt
+ APP_HTTPS_HSTS_ENABLED=true
+ APP_HTTPS_HSTS_MAXAGE=63072000
+ SYSCONF_TEMPLATES_DIR=/app/config
+ mkdir -p /app/config/nginx
+ SYSCONF_TOOLS_DIR=/app/assets/tools
+ APP_SERVICES_INTERNAL_HOST=
+ APP_SERVICES_EXTERNAL=false
+ DOCUMENT_SERVER_ENABLED=false
+ DOCUMENT_SERVER_JWT_ENABLED=false
+ DOCUMENT_SERVER_JWT_SECRET=
+ DOCUMENT_SERVER_JWT_HEADER=
+ DOCUMENT_SERVER_HOST=
+ DOCUMENT_SERVER_PROTOCOL=http
+ DOCUMENT_SERVER_API_URL=
+ DOCUMENT_SERVER_HOST_IP=
+ CONTROL_PANEL_ENABLED=false
+ MAIL_SERVER_ENABLED=false
+ MYSQL_SERVER_ROOT_PASSWORD=
+ MYSQL_SERVER_HOST=127.0.0.1
+ MYSQL_SERVER_PORT=3306
+ MYSQL_SERVER_DB_NAME=onlyoffice
+ MYSQL_SERVER_USER=root
+ MYSQL_SERVER_PASS=
+ MYSQL_SERVER_EXTERNAL=false
+ mkdir -p /var/www/onlyoffice/Data/certs/.well-known/acme-challenge
+ '[' 172.17.0.4/16 ']'
++ normalize_subnet 172.17.0.4/16
++ local 'IPRE=\([0-9]\+\)\.\([0-9]\+\)\.\([0-9]\+\)\.\([0-9]\+\)'
++ IP=($(echo "$1" | sed -ne 's:^'"$IPRE"'/.*$:\1 \2 \3 \4:p'))
+++ echo 172.17.0.4/16
+++ sed -ne 's:^\([0-9]\+\)\.\([0-9]\+\)\.\([0-9]\+\)\.\([0-9]\+\)/.*$:\1 \2 \3 \4:p'
++ local IP
++ MASK=($(echo "$1" | sed -ne 's:^[^/]*/'"$IPRE"'$:\1 \2 \3 \4:p'))
+++ echo 172.17.0.4/16
+++ sed -ne 's:^[^/]*/\([0-9]\+\)\.\([0-9]\+\)\.\([0-9]\+\)\.\([0-9]\+\)$:\1 \2 \3 \4:p'
++ local MASK
++ '[' 0 -ne 4 ']'
++ BITCNT=($(echo "$1" | sed -ne 's:^[^/]*/\([0-9]\+\)$:\1:p'))
+++ echo 172.17.0.4/16
+++ sed -ne 's:^[^/]*/\([0-9]\+\)$:\1:p'
++ local BITCNT
++ BITCNT=4294901760
++ (( I=0 ))
++ (( I<4 ))
++ MASK[$I]=255
++ (( I++ ))
++ (( I<4 ))
++ MASK[$I]=255
++ (( I++ ))
++ (( I<4 ))
++ MASK[$I]=0
++ (( I++ ))
++ (( I<4 ))
++ MASK[$I]=0
++ (( I++ ))
++ (( I<4 ))
++ NETWORK=()
++ local NETWORK
++ (( I=0 ))
++ (( I<4 ))
++ NETWORK[$I]=172
++ (( I++ ))
++ (( I<4 ))
++ NETWORK[$I]=17
++ (( I++ ))
++ (( I<4 ))
++ NETWORK[$I]=0
++ (( I++ ))
++ (( I<4 ))
++ NETWORK[$I]=0
++ (( I++ ))
++ (( I<4 ))
+++ echo 172.17.0.4/16
+++ sed -ne 's:^[^/]*/\([0-9]\+\)$:\1:p'
++ local IP_MASK=16
++ echo 172.17.0.0/16
+ DOCKER_APP_SUBNET=172.17.0.0/16
+ check_partnerdata
+ PARTNER_DATA_FILE=/var/www/onlyoffice/Data/json-data.txt
+ '[' -f /var/www/onlyoffice/Data/json-data.txt ']'
+ re='^[0-9]+$'
+ [[ 1 =~ ^[0-9]+$ ]]
+ '[' '!' -f /proc/net/if_inet6 ']'
+ cp /etc/nginx/includes/onlyoffice-communityserver-nginx.conf.template /etc/nginx/nginx.conf
+ sed 's/^worker_processes.*/worker_processes 4;/' -i /etc/nginx/nginx.conf
+ sed 's/worker_connections.*/worker_connections 40960;/' -i /etc/nginx/nginx.conf
+ cp /etc/nginx/includes/onlyoffice-communityserver-common-init.conf.template /etc/nginx/sites-enabled/onlyoffice
+ '[' -f /var/www/onlyoffice/Data/certs/onlyoffice.crt -a -f /var/www/onlyoffice/Data/certs/onlyoffice.key ']'
+ sed '/{{SSL_CERTIFICATE_PATH}}/d' -i /etc/nginx/sites-enabled/onlyoffice
+ sed '/{{SSL_KEY_PATH}}/d' -i /etc/nginx/sites-enabled/onlyoffice
+ sed '/listen\s*443/d' -i /etc/nginx/sites-enabled/onlyoffice
+ rm -f /etc/nginx/conf.d/default.conf
+ service nginx restart
* Restarting nginx nginx
start-stop-daemon: warning: failed to kill 18971: No such process

...done.
++ head -n 1
++ grep -oP '\d+'
++ free -m
+ TOTAL_MEMORY=15911
+ MEMORY_REQUIREMENTS=12228
+ '[' 15911 -gt 12228 ']'
+ grep -q '[-]Xms1g' /etc/elasticsearch/jvm.options
+ sed -i s/-Xms1g/-Xms4g/ /etc/elasticsearch/jvm.options
+ grep -q '[-]Xmx1g' /etc/elasticsearch/jvm.options
+ sed -i s/-Xmx1g/-Xmx4g/ /etc/elasticsearch/jvm.options

'

'

'
+ '[' false == true ']'
+ '[' true == true ']'
+ '[' '' == onlyoffice-document-server ']'
+ '[' 127.0.0.1 '!=' localhost ']'
+ '[' 127.0.0.1 '!=' 127.0.0.1 ']'

'

'
+ MAIL_SERVER_API_PORT=8081
+ MAIL_SERVER_API_HOST=
+ MAIL_SERVER_DB_HOST=
+ MAIL_SERVER_DB_PORT=3306
+ MAIL_SERVER_DB_NAME=onlyoffice_mailserver
+ MAIL_SERVER_DB_USER=mail_admin
+ MAIL_SERVER_DB_PASS=Isadmin123

'

'
+ REDIS_SERVER_HOST=
+ REDIS_SERVER_CACHEPORT=6379
+ REDIS_SERVER_PASSWORD=
+ REDIS_SERVER_SSL=false
+ REDIS_SERVER_DATABASE=0
+ REDIS_SERVER_CONNECT_TIMEOUT=5000
+ REDIS_SERVER_EXTERNAL=false

'
+ '[' false == false ']'
+ '[' -e /etc/redis/redis.conf ']'
+ sed -i 's/bind .*/bind 127.0.0.1/g' /etc/redis/redis.conf
+ ELASTICSEARCH_SERVER_HOST=
+ ELASTICSEARCH_SERVER_HTTPPORT=9200
+ grep -q '<section name="elastic" type="ASC.ElasticSearch.Config.ElasticSection, ASC.ElasticSearch" />' /var/www/onlyoffice/WebStudio/Web.config

'
+ '[' false == false ']'
+ chown -R mysql:mysql /var/lib/mysql/
+ chmod -R 755 /var/lib/mysql/
+ '[' '!' -f /var/lib/mysql/ibdata1 ']'
+ mysql_install_db
2021-05-21 18:42:42 [ERROR] The data directory needs to be specified.

2021-05-21 18:42:42 [WARNING] mysql_install_db is deprecated. Please consider switching to mysqld --initialize

+ true

'
+ myisamchk -q -r /var/lib/mysql/mysql/proc
myisamchk: error: File '/var/lib/mysql/mysql/proc' doesn't exist

+ true
+ systemctl enable mysql.service
Synchronizing state of mysql.service with SysV service script with /lib/systemd/systemd-sysv-install.
Executing: /lib/systemd/systemd-sysv-install enable mysql
+ service mysql start
* Starting MySQL database server mysqld
...fail!
+ '[' '!' -f /var/lib/mysql/mysql_upgrade_info ']'
+ mysqladmin --silent ping -u root
+ grep -q 'mysqld is alive'
+ mysql_upgrade --password=
mysql_upgrade: [Warning] Using a password on the command line interface can be insecure.

mysql_upgrade: Got error: 2002: Can't connect to local MySQL server through socket '/var/run/mysqld/mysqld.sock' (2) while connecting to the MySQL server

Upgrade process encountered error and will not continue.

+ service mysql restart
* Stopping MySQL database server mysqld
...done.
* Starting MySQL database server mysqld
...fail!
+ '[' -n '' ']'
++ grep password /etc/mysql/debian.cnf
++ head -1
++ sed 's/password\s*=\s*//'
++ tr -d '[[:space:]]'
+ DEBIAN_SYS_MAINT_PASS=iJ6WHkB3IzQynJkh
+ mysql_scalar_exec 'GRANT ALL PRIVILEGES ON *.* TO '\''debian-sys-maint'\''@'\''localhost'\'' IDENTIFIED BY '\''iJ6WHkB3IzQynJkh'\'''
+ local queryResult=
+ '[' '' == opt_ignore_db_name ']'
++ mysql --silent --skip-column-names -h 127.0.0.1 -P 3306 -u root --password= -D onlyoffice -e 'GRANT ALL PRIVILEGES ON *.* TO '\''debian-sys-maint'\''@'\''localhost'\'' IDENTIFIED BY '\''iJ6WHkB3IzQynJkh'\'''
mysql: [Warning] Using a password on the command line interface can be insecure.

ERROR 2003 (HY000): Can't connect to MySQL server on '127.0.0.1' (111)

+ queryResult=
+ echo

+ mysql_check_connection

'
+ mysqladmin ping -h 127.0.0.1 -P 3306 -u root --password= --silent
mysqladmin: [Warning] Using a password on the command line interface can be insecure.


1
+ mysqladmin ping -h 127.0.0.1 -P 3306 -u root --password= --silent
mysqladmin: [Warning] Using a password on the command line interface can be insecure.


1
+ mysqladmin ping -h 127.0.0.1 -P 3306 -u root --password= --silent
mysqladmin: [Warning] Using a password on the command line interface can be insecure.


1

 

no one can help me?

  • Like 1
Link to comment
Posted (edited)
On 4/28/2021 at 2:12 PM, Tolete said:

NextCloud/OnlyOfficeDocumentServer pissing contest again...

 

-OnlyOfficeDocumentServer...



https://documentserver.mydomain.com/healthcheck =true

-NextCloud...



Error when trying to connect (Server error: `GET https://documentserver.mydomain.com/healthcheck` resulted in a `503 Service Temporarily Unavailable` response:

 

any help be greatly appreciated.

 

@Siwat2545 can you give me a hand here, running in circles here all with same results.

Edited by Tolete
Link to comment
  • 3 weeks later...

I'm getting this warning from Fix Common Problems and the fix doesn't stop the scan from still reporting the warning. Fix appears to have been applied okay.

 

Template URL for docker application AdGuard-Home is not the as what the template author specified.The template URL the author specified is https://raw.githubusercontent.com/sgraaf/Unraid-Docker-Templates/main/adguardhome/template.xml. The template can be updated automatically with the correct URL.

Link to comment
50 minutes ago, Iceman24 said:

I'm getting this warning from Fix Common Problems and the fix doesn't stop the scan from still reporting the warning. Fix appears to have been applied okay.

 

Template URL for docker application AdGuard-Home is not the as what the template author specified.The template URL the author specified is https://raw.githubusercontent.com/sgraaf/Unraid-Docker-Templates/main/adguardhome/template.xml. The template can be updated automatically with the correct URL.

when you edit the container, what is in your ‘repository’ field?

  • Like 1
Link to comment

Can anyone tell me where to start looking for a "Error when trying to connect (Error occurred in the document service: Error while downloading the document file to be converted.) (version 6.3.1.32)" when I try to add the hostname for the document server to nextcloud?  Searching the internets, I have found some recommended fixes such as changing the following config files:

Onlyoffice:
default.json -> “rejectUnauthorized” to false.
local.json -> “header”: “AuthorizationJwt” from “header”: “Authorization”
supervisorctl restart all

Nexcloud:
config/config.php ->
‘onlyoffice’ => array (
‘verify_peer_off’ => true,
‘jwt_header’ => “AuthorizationJwt”
)

 ... but this is basically a new install and it doesn't look like default.json is meant to be edited outside of the docker.  But /healthcheck/ returns true for both the IP address and when I try to connect via the external domain name so I think the container is up and running but the above fix suggests some part of the forwarding is broken and I don't know what tools might help me find it.

 

My firewall forwards 443 to NginxProxyManager docker on Unraid.  NPM has a wildcard SSL cert for the domain and is set to forward nextcloud.domain.name and docserver.domain.name to the appropriate ports for their respective unraid dockers. 

All 3 dockers are running on a docker proxynet (docker create network proxynet). 

Both nextcloud and document server are accessible on the local network via IP:port and on the internet via domain name.

Both cert and key PEM's are copied to .crt files

 

I get the following in the docker log:

 

 

Quote

 

[2021-06-09T18:34:21.282] [ERROR] nodeJS - error downloadFile:url=https://nextcloud.domain.name/apps/onlyoffice/empty?doc=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJhY3Rpb24iOiJlbXB0eSJ9.la3XO9qn6tmmWaNhPtzJXk2kMb0u_-gh6ZnwW-iFnY0;attempt=3;code:EPROTO;connect:null;(id=conv_check_1035115743_docx)

 

Error: write EPROTO 23318690023232:error:1409442E:SSL routines:ssl3_read_bytes:tlsv1 alert protocol version:../deps/openssl/openssl/ssl/record/rec_layer_s3.c:1550:SSL alert number 70

 


If I manually cut and paste https://nextcloud.domain.name/apps/onlyoffice/empty?doc=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJhY3Rpb24iOiJlbXB0eSJ9.la3XO9qn6tmmWaNhPtzJXk2kMb0u_-gh6ZnwW-iFnY0 it downloads a 7kb file new.docx that looks blank to me.

 

As far as I can tell, everything seems to be working except the file won't transfer from inside the nextcloud docker.

 

 

 

 

Link to comment
On 6/9/2021 at 11:39 PM, Iceman24 said:
On 6/9/2021 at 7:18 PM, Siwat2545 said:

when you edit the container, what is in your ‘repository’ field?

adguard/adguardhome

 

@Siwat2545

@Iceman24

 

 

im also have this error ,if you fix it then it change to sgraaf's but then it also have error and you can change to Siwat2545 back 

i ignored this error both dockers points to adguard/adguardhome ?!?

 

Edited by Masterwishx
Link to comment

With help from aptalca I disocovered you don't need most of the mappings for the OnlyOffice Document Server. Especially if you have it sitting behind a reverse proxy like SWAG. I removed everything except port 80 and the logs mapping and now I don't need to supply another SSL cert.

Link to comment
  • 5 weeks later...

I've been here before, unfortunately I suddenly had to take some months out of the calendar & didn't get any closer to a sulotion :( But I'm back :)

To start with, I don't have a great knowledge of network protocols & usually take baby steps :) Last time I was here, the question arised if my
proxy was pointing to http or https of onlyoffice, as fair as I know, it's https. But I'll hust walk you through what I have done & how far I've come :) If anyone have the time to help, it would be awesome.

 

I followed Spaceinvader One's video: https://www.youtube.com/watch?v=dEOfwKH2DHc&t=190s

When I had to copy the credentials I substatuded the Let's Encrypt folder to Swag as:

mkdir /mnt/user/appdata/onlyofficeds/Data/certs

cp /mnt/user/appdata/Swag/keys/cert.crt /mnt/user/appdata/onlyofficeds/Data/certs/onlyoffice.crt

cp /mnt/user/appdata/Swag/keys/cert.key /mnt/user/appdata/onlyofficeds/Data/certs/onlyoffice.key

 

After that I used the .conf file he provided and changed 433 ports to 4330, since I ude that as my 'Host Port 2'OfficeDocker.thumb.png.bb5e95ebfedb9695bce2582c480f2a8a.png

 

When I then restarted the Swag Docker, an error appeared1243348353_SwagErrorLog.png.2ac403d41da43b1e6311fa4d864d97d1.png

 

If I comment the ''include /config/nginx/proxy.conf;" out it doen't end in a forever loop and it acually starts up. 1876239056_conffile.png.de1dffb87944ddc3d0a06eeecfc45109.png 

 

When I use this .conf file, the error in nexcloud says:

Onlyoffice.thumb.png.4682d264b147ee7b91a3b8eea6a3fd03.png

Otherwise it's just a "Server not found" or something like that.

As far as my understanding goes, in the .conf file, it refers to it as a 'https', which means it point to it as a https? I think :s

 

I hope someone can help me, it's not critical, but it would be nice to get it up & running.
Thank you again for your great work :)

 

Edited by Michelle Bausager
Pressed enter. Ups :s
Link to comment

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.