Where communities thrive


  • Join over 1.5M+ people
  • Join over 100K+ communities
  • Free without limits
  • Create your own community
People
Repo info
Activity
  • 07:52
    codecov[bot] commented #2274
  • 07:42
    codecov[bot] commented #2273
  • 07:31
    codecov[bot] commented #2272
  • 07:20
    codecov[bot] commented #2271
  • 07:16
    codecov[bot] commented #2278
  • 07:14
    codecov[bot] commented #2277
  • 07:14
    codecov[bot] commented #2278
  • 07:14
    codecov[bot] commented #2278
  • 07:14
    codecov[bot] commented #2277
  • 07:10
    codecov[bot] commented #2277
  • 07:10
    codecov[bot] commented #2270
  • 07:08

    dependabot-preview[bot] on npm_and_yarn

    (compare)

  • 07:08
    CLAassistant commented #2278
  • 07:08
    dependabot-preview[bot] closed #2252
  • 07:08
    dependabot-preview[bot] commented #2252
  • 07:08
    dependabot-preview[bot] labeled #2278
  • 07:08
    dependabot-preview[bot] labeled #2278
  • 07:08
    dependabot-preview[bot] opened #2278
  • 07:08

    dependabot-preview[bot] on npm_and_yarn

    Bump webpack-cli from 3.3.12 to… (compare)

  • 07:06

    dependabot-preview[bot] on npm_and_yarn

    (compare)

david
@dglb
yes uncommented if letsencrypt enable so
commented if letsencrypt disable (that my case)
sorry
Uebmaster
@uebmaster
hablas español supongo no?
digo, te llamas David jaja
@dglb
david
@dglb
@uebmaster no, I don't speak spanish
Uebmaster
@uebmaster
mmm ok, well, you want to use your own certs, then i think that you need to declarate the path to your certs files
that you are using let's encrypt now doesn't meant that you need to comment the line to the volume that stores the certs file
i think that you just need to comply with the path format, by exmaple "/etc/letsencrypt/live/SERVER_NAME/fullchain.pem"
david
@dglb
I tried. I must double-check. What does the second part means ?
using the command "elabctl logs"
I always have:
2020-10-13T15:47:58.009021Z 0 [Note] Found ca.pem, server-cert.pem and server-key.pem in data directory. Trying to enable SSL support using them.
2020-10-13T15:47:58.009027Z 0 [Note] Skipping generation of SSL certificates as certificate files are present in data directory.
2020-10-13T15:47:58.009472Z 0 [Warning] CA certificate ca.pem is self signed.
Uebmaster
@uebmaster

Maybe your problem is this:

2020-10-13T15:47:58.009472Z 0 [Warning] CA certificate ca.pem is self signed.

Are you sure that the certs files are correct?

are you using those certs files in another server to check that are correct?
i think that is problem with the certs files cause the logs are telling that the certs files are found
david
@dglb
yes I am sure.
but the logs are the same even if there is no file at all !
Uebmaster
@uebmaster

yes I am sure.
but the logs are the same even if there is no file at all !

ok, i think that is cause you have let's encrypt enable

if the server is in blank you can uninstall and reinstall without let's encrypt and later setup the certs file from config file and check the logs again
david
@dglb
I look at elabctl script to undertand... how I can overcome this problem
Uebmaster
@uebmaster
luck with that, although if is working with let's encrypt maybe you can leave it in that way
the server that you are using is blank?
david
@dglb
no, it isn't and I must be able to change this configuration
Uebmaster
@uebmaster

no, it isn't and I must be able to change this configuration

ok, If you succeed, tell me how you did it please xD

@dglb do you know in which folder are stored the certs files of let's encrypt?
david
@dglb
no I don't
david
@dglb

got it... in a strange way
docker-compose -f /etc/elabftw.yml exec web /bin/sh
and then copy cert and key
kill -HUP 78

it must exist a better way

Uebmaster
@uebmaster

got it... in a strange way
docker-compose -f /etc/elabftw.yml exec web /bin/sh
and then copy cert and key
kill -HUP 78

it must exist a better way

i am sure of that, but later Nicolas tell you how to do it in the right way, i could try it doing how i told you but i still searching how to connect to a local mysql from elab running in docker LOL xD

Uebmaster
@uebmaster
@dglb i did it what you want, you must run "elabctl install", in the wizard enter that you want to use https, finish the install, import the DB, etc. but the important thing are your certs files, let the config file without touch nothing and put your certs file in the path /etc/letsencrypt/live/THE_NAME_OF_YOUR_DOMAIN/ and it works
i suppose that is a must the extensions of the certs files, in my case i don't had the .pem files, i just had a .crt and a .key file, but i renamed like this .crt-->fullchain.pem and .key-->privkey.pem and moved it to the path mentioned below
i did the test only to check your scenario, in my scenario i need 2 domains working with a local mysql, 1 domain in a container a 1 from local nginx but both pointing to the local mysql xD
Nicolas CARPi
@NicolasCARPi
what @uebmaster said is correct!
david
@dglb
ok.
It meens that I have 2 solutions to change the cert files.
  1. I must re-install to change the cert file
  2. I use the way I do it with docker-compose
Uebmaster
@uebmaster
@dglb you don't need to reinstall, you only need rename your certs files, the .cert to fullchain.pem, and the .key file to privkey.pem
Uebmaster
@uebmaster
image.png
@NicolasCARPi i already have working elab behind traefik (app and mysql container), but what about if i want to use the mysql service running in the docker's host machine? i 've tried putting the ip's host machine in the config file but when i try to import the database i got: connection refused
Nicolas CARPi
@NicolasCARPi
@uebmaster are you sure they are on the same network? (docker network). By default the config file of elab creates the "elab-net" internal network
twelch555
@twelch555

I have had great results in the past with the following two docker containers providing proxy and let's encrypt certs. Note: I have not specifically tried them with elabftw.

https://hub.docker.com/r/jwilder/nginx-proxy
https://hub.docker.com/r/jrcs/letsencrypt-nginx-proxy-companion

A few years old now, but here's a docker compose example I used for deploying those.
https://github.com/twelch555/twelch-docker-projects/tree/master/nginx-proxy-letsencrypt
topoldo
@topoldo
Dear Nicolas, Ihave a "philosophical" but also practical question to submit to you.
At the moment I have a coouple of eLabFTW instances used by 2 different research groups (one at Univ of Padova and the other at the Univ of Trieste, Italy). They are respectively "using" and "playing" with eLabFTW. The second group is interested to start to use it seriously, but their lab manager asked me about how can they export their data if, some day ,they want to migrate to another ELN program or for any reason eLabFTW will be abandoned.
I think this is a more and general important question for everyone using eLabFTW. The manual and the site is not clear about this. I assume that - at the moment - the only method is exporting data in pdf format + attachments. But is this really the only method or it is possible to export data in some other way? Beside, do you plan to export data in some oher way? Regards, Topoldo
Nicolas CARPi
@NicolasCARPi
@topoldo Ciao! Another way for export is JSON, which is nice because it's machine readable. You can do that via the API, or use PhpMyAdmin and do JSON export of the whole database. Then write some code to reimport it in the new app. It is a valid question that I often have. I should add it in the FAQ!
Note that because eLab is open source and self hosted, even if it is abandoned it will continue to work and I wouldn't be suprised if some institue makes a maintained fork of it!
Nicolas CARPi
@NicolasCARPi
@markus-m-becker @nickp60 elabftw/elabftw#2265
topoldo
@topoldo
@NicolasCARPi: thanks for the info. Sorry for the feedback delay, but I was so busy...
markus
@markus-m-becker
@NicolasCARPi , Thanks very much for #2265!
Nicolas CARPi
@NicolasCARPi
:)
nunomoreno
@nunomoreno
Hi, sorry but I'm a newbie: I cannot see how can we make a database available for everybody
I made it public but it doesn't seem to be available to others
Nicolas CARPi
@NicolasCARPi
hello @nunomoreno what do you call "others" ? Anonymous users or members from other teams?
nunomoreno
@nunomoreno
Dear @NicolasCARPi , users from other teams. Thanks
Nicolas CARPi
@NicolasCARPi
then you need to go on the item in edit mode and click the three dots on top right, manage permissions and set read rights to "Organization"