2025-08-22 21:47:52 16:17:52.471 [otel ][setdefaultlabels] ofid=46ce24eba84848dc077c9851ceeecdfc
I think the last steo of Configure of SAML signing Certificate is not configured is failing the starting of the container how to fix it..
I am using the docker set up guidelines as per the document suggested in the openRPA using ./normal-up.sh
Can anyone please help. I am stuck with the deployment - i followed the open-rpa/docker instructions.
Mapped a domain test.domain.com to 8.8.8.8 in /etc/hosts file.
But still the docker-compose restarts the openflow container after few seconds..and the only error i see is SAML not configured nothing else. How to fix this problem
services:
traefik:
image: traefik:v2.10.6
command:
- "--providers.docker=true"
- "--providers.docker.exposedbydefault=false"
- "--entrypoints.web.address=:80"
# **Timeout settings for gRPC**
# - "--entrypoints.web.transport.respondingTimeouts.readTimeout=90000s"
# - "--entrypoints.web.transport.respondingTimeouts.writeTimeout=90000s"
# - "--entrypoints.web.transport.lifeCycle.requestAcceptGraceTimeout=90000s"
ports:
- "80:80"
restart: always
networks:
- traefik
volumes:
- "//var/run/docker.sock:/var/run/docker.sock:ro"
mongodb:
image: mongo
restart: always
command: "--bind_ip_all --replSet rs0"
environment:
- MONGO_REPLICA_SET_NAME=rs0
volumes:
- mongodb_data:/data/db
networks:
- traefik
mongosetup:
image: mongo
depends_on:
- mongodb
restart: "no"
command: >
mongosh --host mongodb:27017 --eval
'
db = (new Mongo("mongodb:27017")).getDB("openflow");
config = {
"_id" : "rs0",
"members" : [
{
"_id" : 0,
"host" : "mongodb:27017"
}
]
};
rs.initiate(config);
'
networks:
- traefik
rabbitmq:
image: rabbitmq
restart: always
networks:
- traefik
api:
labels:
- traefik.enable=true
- traefik.frontend.passHostHeader=true
- traefik.http.routers.http-router.entrypoints=web
- traefik.http.routers.http-router.rule=Host(`test.domain.com`)
- traefik.http.routers.http-router.service=http-service
- traefik.http.services.http-service.loadbalancer.server.port=3000
- traefik.http.routers.grpc-router.rule=Host(`grpc.test.domain.com`)
- traefik.http.routers.grpc-router.service=grpc-service
- traefik.http.routers.grpc-router.entrypoints=web
- traefik.http.services.grpc-service.loadbalancer.server.port=50051
- traefik.http.services.grpc-service.loadbalancer.server.scheme=h2c
image: openiap/openflow
networks:
- traefik
ports:
- "5858:5858"
deploy:
replicas: 1
restart: always
volumes:
- "//var/run/docker.sock:/var/run/docker.sock"
depends_on:
- rabbitmq
- mongodb
environment:
- domain=localhost.openiap.io
# uncomment below 2 lines, if you have set replicas above 1
# - enable_openflow_amqp=true
# - amqp_prefetch=25
# uncomment to add agents to the same docker compose project ( will breake running docker compose up -d if any agents running )
# - agent_docker_use_project=true
- agent_oidc_userinfo_endpoint=http://api:3000/oidc/me
- agent_oidc_issuer=http://test.domain.com/oidc
- agent_oidc_authorization_endpoint=http://test.domain.com/oidc/auth
- agent_oidc_token_endpoint=http://api:3000/oidc/token
- amqp_url=amqp://guest:guest@rabbitmq?frameMax=0x2000
- mongodb_url=mongodb://mongodb:27017/?replicaSet=rs0
- mongodb_db=openflow
- aes_secret=O1itlrmA47WzxPj95YHD2sZs7IchYaQI25mQ
volumes:
mongodb_data:
driver: local
networks:
traefik:
name: traefik
Changes in the hosts file will not affect Docker, so you cannot do that. You will need two DNS records to make this work: one “top level” domain to access the web frontend, and a wildcard (*) domain under that for all services and agents. This is why by default it uses localhost.openiap.io so you can test it locally. All explained here Install using docker-compose | OpenIAP Documentation
The message about SAML is not an error, just information. This is only needed if you have clients that need to authenticate using FS-federation/SAML.
am little confused so if i want to use localhost.openipa.io directly the way its there in the example, ideally it should work on the docker ..right? So additional set up required for it as per the documentation it points 127.0.0.1 ..But if not i am missing what needs to be done on a local machine like mac . I am not using any dns provider or server like gcp etc. Kindly clarify.,
Yes, if you do not change anything in the Docker files, then running normal-up (twice!) will work. I have added localhost.openiap.io and *.localhost.openiap.io to our external DNS, pointing to 127.0.0.1 so those will always work for the local host.
Ok- tried that so far no luck.. still debugging.. getting this error
api-1 exited with code 139
traefik-1 | 2025-08-23T11:09:51.927782780Z time="2025-08-23T11:09:51Z" level=error msg="service \"http-service\" error: unable to find the IP address for the container \"/demo-api-1\": the server is ignored" providerName=docker container=api-demo-198a058bcdb4932b600d948dcd67dd5bbfdf569a9d16b28e6f67477029b35039
I don’t know what that error means, it’s from docker, not opencore.
yes right .its the traefix not able to connect thats the error… but so far no luck its restarting..and logs dont suggest anything fishy.
also tried changing the image to edge version..
Debugger listening on ws://0.0.0.0:5858/20de7742-5bc0-417b-aad9-d5f01b039ac4
For help, see: https://nodejs.org/en/docs/inspector
Debugger listening on ws://0.0.0.0:5858/78b96503-b5d1-4cb1-a9fa-9e25e062de11
For help, see: https://nodejs.org/en/docs/inspector
8:17:8.146 Starting @openiap/core
8:17:8.222 Done loading imports
8:17:8.639 [otel ][setdefaultlabels] ofid=46ce24eba84848dc077c9851ceeecdfc
8:17:8.647 [otel ][recheck] Tracing initialized
8:17:8.673 [DatabaseConnection ][connect] Connecting to mongodb
8:17:8.709 [DatabaseConnection ][connect] Connected to mongodb
8:17:8.758 [amqpwrapper ][connect] Connecting to rabbitmq
8:17:8.828 [amqpwrapper ][connect] Connected to rabbitmq
8:17:8.901 [index ][init] VERSION: 1.5.12.37
8:17:8.981 [SamlProvider ][configure] SAML signing certificate is not configured, saml not possible
(base) anirban.sur@C02D42FGML7H ~ % docker ps
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
8278080926d7 openiap/openflow:edge "/nodejs/bin/node --…" 5 minutes ago Restarting (139) 22 seconds ago demo-api-1
cb4fc2721809 mongo "docker-entrypoint.s…" 5 minutes ago Up 5 minutes 27017/tcp demo-mongodb-1
84c9ad472837 rabbitmq "docker-entrypoint.s…" 5 minutes ago Up 5 minutes 4369/tcp, 5671-5672/tcp, 15691-15692/tcp, 25672/tcp demo-rabbitmq-1
932ee298b22c traefik:v2.10.6 "/entrypoint.sh --pr…" 5 minutes ago Up 5 minutes 0.0.0.0:80->80/tcp demo-traefik-1
You need to send the error; I cannot help without an error. Exit code 139 means SIGSEGV (segmentation fault). This normally means something ran out of memory.
If there is no error in the console output after what you sent, then most likely Docker or your OS killed the process.
Try checking sudo dmesg -T or find the ID of the API (in the output here it’s 8278080926d7) and check the error code with docker inspect -f 'exit={{.State.ExitCode}} oom={{.State.OOMKilled}} err={{.State.Error}}' 8278080926d7.
this is the docker logs(attached) ..of the container
2025-08-24 13:41:36 Debugger listening on ws://0.0.0.0:5858/df73859b-b509-41cc-9800-37d9030bc256
2025-08-24 13:41:36 For help, see: https://nodejs.org/en/docs/inspector
2025-08-24 13:41:39 Error: connect ECONNREFUSED 172.19.0.3:5672
2025-08-24 13:41:39 at TCPConnectWrap.afterConnect [as oncomplete] (node:net:1611:16) {
2025-08-24 13:41:39 errno: -111,
2025-08-24 13:41:39 code: 'ECONNREFUSED',
2025-08-24 13:41:39 syscall: 'connect',
2025-08-24 13:41:39 address: '172.19.0.3',
2025-08-24 13:41:39 port: 5672
2025-08-24 13:41:39 }
2025-08-24 13:41:39 Error: connect ECONNREFUSED 172.19.0.3:5672
2025-08-24 13:41:39 at TCPConnectWrap.afterConnect [as oncomplete] (node:net:1611:16) {
2025-08-24 13:41:39 errno: -111,
2025-08-24 13:41:39 code: 'ECONNREFUSED',
2025-08-24 13:41:39 syscall: 'connect',
2025-08-24 13:41:39 address: '172.19.0.3',
2025-08-24 13:41:39 port: 5672
2025-08-24 13:41:39 }
2025-08-24 13:41:39 8:11:39.115 [SamlProvider ][configure] SAML signing certificate is not configured, saml not possible
2025-08-24 13:41:40 Error: Cannot Add new Queue Consumer, not connected to rabbitmq
2025-08-24 13:41:40 at amqpwrapper.AddQueueConsumer (file:///app/dist/amqpwrapper.js:320:23)
2025-08-24 13:41:40 at OpenAPIProxy.configure (file:///app/dist/ee/OpenAPIProxy.js:64:53)
2025-08-24 13:41:40 at file:///app/dist/index.js:277:60
2025-08-24 13:41:40 Debugger listening on ws://0.0.0.0:5858/0ca3f677-f6cc-449f-a5bc-ba6a288709bb
2025-08-24 13:41:40 For help, see: https://nodejs.org/en/docs/inspector
2025-08-24 13:41:43 Debugger listening on ws://0.0.0.0:5858/c96a0380-2dd4-4797-aa53-9b1eb71198ee
2025-08-24 13:41:43 For help, see: https://nodejs.org/en/docs/inspector
2025-08-24 13:41:38 8:11:38.682 Starting @openiap/core
2025-08-24 13:41:38 8:11:38.699 Done loading imports
2025-08-24 13:41:38 8:11:38.907 [otel ][setdefaultlabels] ofid=46ce24eba84848dc077c9851ceeecdfc
2025-08-24 13:41:38 8:11:38.917 [otel ][recheck] Tracing initialized
2025-08-24 13:41:38 8:11:38.946 [DatabaseConnection ][connect] Connecting to mongodb
2025-08-24 13:41:38 8:11:38.985 [DatabaseConnection ][connect] Connected to mongodb
2025-08-24 13:41:39 8:11:39.23 [amqpwrapper ][connect] Connecting to rabbitmq
2025-08-24 13:41:39 8:11:39.45 [index ][init] VERSION: 1.5.12.37
2025-08-24 13:41:46 8:11:46.330 Starting @openiap/core
2025-08-24 13:41:46 8:11:46.362 Done loading imports
2025-08-24 13:41:46 8:11:46.730 [otel ][setdefaultlabels] ofid=46ce24eba84848dc077c9851ceeecdfc
2025-08-24 13:41:46 8:11:46.739 [otel ][recheck] Tracing initialized
2025-08-24 13:41:46 8:11:46.769 [DatabaseConnection ][connect] Connecting to mongodb
2025-08-24 13:41:46 8:11:46.806 [DatabaseConnection ][connect] Connected to mongodb
2025-08-24 13:41:46 8:11:46.865 [amqpwrapper ][connect] Connecting to rabbitmq
2025-08-24 13:41:46 8:11:46.899 [index ][init] VERSION: 1.5.12.37
2025-08-24 13:41:48 8:11:48.415 [amqpwrapper ][connect] Connecting to rabbitmq
2025-08-24 13:41:48 8:11:48.426 [Config ][cleanAndApply] Loaded config version 1
2025-08-24 13:41:57 8:11:57.316 Starting @openiap/core
2025-08-24 13:41:57 8:11:57.336 Done loading imports
Attached is the inspect as well..
inspect.json (9.5 KB)
so your rabbitmq is not running, despite your “docker ps” showing something different.
Finally it worked..i upgraded the docker desktop and also changed the resources by giving it more ram and CPU…it finally clicked.. thank you for the help.
1 Like
Happy it worked out. Hope you find it useful, now that you can start playing around with opencore.
system
August 27, 2025, 9:38am
14
This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.