Error when i change from http to https

toto · January 28, 2025, 8:50am

Hi,
I’ve successfully configured ood without ssl. Now i want to change from http to https. What i did in ood_portal.yml is
add this section at the top

ssl:
  - 'SSLCertificateFile "/etc/pki/tls/certs/full_chain.pem"'
  - 'SSLCertificateKeyFile "/etc/pki/tls/private/server.key"'

add this section under dex:

dex:
  # Default based on if ssl key for ood-portal-generator is defined
  ssl: true
  # Only used if SSL is disabled
  http_port: "5556"
  # Only used if SSL is enabled
  https_port: "5554"
  tls_cert: "/etc/pki/tls/certs/full_chain.pem"
  tls_key: "/etc/pki/tls/private/server.key"

After this i restart ondemand-dex and httpd but I can’t open default page and in error.log show

[Tue Jan 28 15:46:11.989635 2025] [auth_openidc:warn] [pid 2123787:tid 140096623929088] [client 10.128.1.10:43060] oidc_clean_expired_state_cookies: state (mod_auth_openidc_state_S3XEss45S7ZOYXyrvsh9qFLzYlY) has expired (original_url=http://raptor.med.cmu.ac.th:9000/pun/sys/dashboard)

I tried to check port on dex but it still using 5556 which is http.

tcp   LISTEN 0      2048            127.0.0.1:5556       0.0.0.0:*    users:(("ondemand-dex",pid=2123687,fd=9))

Please help

Thanks

jeff.ohrstrom · February 3, 2025, 6:50pm

Hi, sorry for the delay in response.

You may have to regenereate the configurations if you’ve reconfigured ood_portal.yml. Bouncing httpd should do this, but after you bounce httpd, you likely also need to bonce the ondemand-dex systemd unit.

Topic		Replies	Views
Problem redirecting http to https Get Help question	16	411	January 17, 2024
Ood_portal.yml SSL entries not working Get Help	6	310	November 22, 2023
Problems securing OOD Get Help	17	476	April 15, 2024
Error logging into the web portal after enabling apache2 SSL Get Help ondemand2 , question	4	318	January 30, 2023
Update_ood_portal Not working as expected in ODD 3 Get Help	7	405	February 11, 2024

Error when i change from http to https

Related topics