I have looked at several guides about this and most of them lead to dead links. there seems to be no complete guide about install of this product anywhere.
If it can’t be installed on windows server 2022, is the a definitive guide for how to install on ubuntu?
Thanks for the quick reply Allan!
As far as i can tell docker cannot run linux containers on windows server 2022. so can this only be run on linux? if so what flavour/version is best?
I think all flavours of linux will work, but picking on on the list here is proberly a good bet.
Personally i prefere ubuntu or debian, but there are no right or wrong answer.
Thanks Allan, i now have a linux distro with docker installed and openflow downloaded. I am using a custom domain name and there is a reference in the doco link provided to the following for custom domains
add an environment with the name domain and the value of domain you chose
This is referring to the docker-compose.yml file. What needs to be added to that file to “add an environment”? seems a bit ambiguous.
Do a search and replace for ‘localhost.openiap.io’ to the base domain you have ‘iap.mydomain.com’ remember there 2 dns records you must create , see custom domain section. One base domain and a wildcard record for all sub domains.
This is now up and working, thanks for the help!
Only outstanding issue is we run on an ec2 instance that sits behind a load balancer that has the SSL cert on it and handles ssl offload. This makes traefik confused when i try to set things to be https. Essentially I need the internal openflow running all on port 80 and the AWS load balancer to handle the SSL on port 443… so all internal on port 80 and all external on port 443.
Can I switch off traefik on favour of the external load balancer or is there another way to achieve this with config?
I’m 99% sure that can be done, but i have not tested that for ages.
The “issues” is, the entire logic right now is bound to the protocol environment variable. If this is “http” all urls are configured to be without ssl, if this is “https” everything is expected to be ssl bridged at traefik.
If we are lucky, you should simply be able to “fix” this by using the “plain” docker compose file, where traefik is using http, and then add - protocol=https to the api service and update agent_oidc_authorization_endpoint to use https ( not the others, those are internal ). I’m 99% sure that will work, if not, then we need to set a ton of extra environment variables to define when to use http and when to use https.
Looks like that worked, thanks yet again!
Now that all is working I am keen to move away form the demo prefix that is in the supplied docker setup. How do I go about renaming everything to have a new prefix? No issue if I have to start with a blank setup. It looks like I can just change that in the normal-up/down shell files?
You can just change it in the shell files.
By default, Docker Compose will use the name of the folder the files are in, so to avoid confusion, I just hardcoded it to ‘demo’.
This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.