Where communities thrive


  • Join over 1.5M+ people
  • Join over 100K+ communities
  • Free without limits
  • Create your own community
People
Activity
    icandir
    @icandir
    logging configuration with condition {#response.status != '200'} is not working even any response.status condition too.
    29 replies
    reinbert1
    @reinbert1
    @brasseld Is it possible to apply mutual TLS with APIM? And how can this best be configured?
    3 replies
    David LECOMTE
    @dlecomte_gitlab
    Hi ! I am using APIM on Clever-Cloud, and I would like to know the best way to upgrade it ? For now, I do it manually from the last availabled LTS zip, importing modifications from previous version ... It is quite not easy ... ! I have got another question about High Availability, redundancy ... : what's the best practice ? Thank you for your help ! :)
    7 replies
    Faf
    @fabMrc
    hello is it possible to do this in the assign attribute policy ?
    {#context.attributes['jwt.claims']['iss'].substring(context.attributes['jwt.claims']['iss'].lastIndexOf('/')+1)}
    3 replies
    It seems to not work
    I would like to get the last part of the issuer url
    Faf
    @fabMrc
    I can use groovy policy however it works :
    iss = context.attributes['jwt.claims']['iss'];
    realm = iss.substring(iss.lastIndexOf('/') + 1);
    context.attributes['realm'] = realm;
    Gustavo Valverde
    @gustavovalverde
    Why new users who create theirs accounts through the signup process are automatically marked as Primary Owner? If it was for testing or something, I'm now unable to delete this accounts
    Seluard
    @seluard
    Hello ! When I try to initiate the login flow, the UI respond with a 404 not found. I have deployed with promtail and I don't see error logs... Someone deal with it yet?
    Marian Trifu
    @mariantrifu_gitlab
    Hi, I'm having problems with installing gravitee AM on kubernetes, am using kubernetes version 1.19, I have an external single server mongodb and on helm install I see the following errors in logs of management api and gateway
    13 replies
    Seluard
    @seluard
    This is the endpoint that gravitee ui give me to make authorization requests: https://am.arq.acme.com/synopsis/oauth/token, but this just return 404 not found, probably some ingress conf error? i just install with helm version 1.0.12, I had to use this version because of security contexts.
    athu pillai
    @attyrats_gitlab
    @brasseld
    We have configured Server Sent event (SSE)api behind gravitee with keyplan(outh2 keycloak) and is invoking this api from an angular application by passing the valid keycloak token. We are getting CORS error (PreflightMissingAllowOriginHeader) and 400 bad request.Please help if anything has to be configured additionally. This works when we configure SSE api behind gravite keyless plan
    4 replies
    chico35400
    @chico35400
    hello folks, we managed at last to install our dev & prod gravitee platforms. we have only a last issue with password reset. where we reset our passwords, gravitee send an email with an url like "http://localhost:3000/#!/resetPassword..." of course localhost is unusable from an enduser pc. Our constants.json is ok and set on ""baseURL": "https://api-mgmt.compagny.com/portal/environments/DEFAULT", were does grativee take his base url to create his password reset url? and do we have to set in management, ui or console url?
    13 replies
    @attyrats_gitlab , in your host config file our have to set header for CORS (ie apache conf)
    Header set Access-Control-Allow-Origin "*"
    Header set Access-Control-Allow-Headers "x-recaptcha-token, x-requested-with, x-xsrf-token"
    Header add Access-Control-Allow-Methods "OPTIONS, GET, POST, PUT, DELETE, PATCH"
    and to allow them
    ie for apache > a2enmod headers
    chico35400
    @chico35400
    of cours do not leave * in allow origin :)
    Seluard
    @seluard
    Please some help here ! I've deployed using Helm chart version 1.0.12, but all entry points are 404 ! I don't know what, I don't see logs ...
    57 replies
    Noureddine LABIHI
    @noure

    Hello Gravitee Team,
    I got an error since few days, but i have really no idea why it's accur.
    the error is happening while accedding to the portal app and says " Management API unreachable or error occurs, please check logs"
    I restart the api management, and there is no error on the logs
    I event tried the "curl -v -u admin:admin -X GET http://localhost:8003/_node/health"
    but got "* About to connect() to localhost port 8003 (#0)

    • Trying 127.0.0.1...
    • Connection refused
    • Trying ::1...
    • Failed to connect to ::1: No route to host
    • Failed connect to localhost:8003; No route to host
    • Closing connection 0"

    Any idea please?

    9 replies
    Mihail Yonchev
    @insertmike
    Hello! Where I can download the latest gravitee version?
    1. Why sorting by date is not possible for: https://download.gravitee.io/#graviteeio-apim/distributions/ ?
    2. Why it says 8 days ago for every distribution. Did you move repositories?
    3. Why the latest version available is 3.5.3... Few weeks ago I pulled 3.5.7? Is this version no-longer supported or something?
    9 replies
    Mihail Yonchev
    @insertmike
    [Fri Apr 16 2021 11:39:52 GMT+0200 (Central European Summer Time)] "GET /user/login" Error (404): "Not found"
    Mihail Yonchev
    @insertmike
    Hello! Any idea why I can't login to the portal UI. I use the credentials in the config file.
    LOGIN returns 200
    and then
    AUTH returns 401 Unauthorized - ON REDIRECT TO HOMEPAGE
    4 replies
    Mihail Yonchev
    @insertmike
    help a developer finish his job :D
    Mihail Yonchev
    @insertmike
    i am happy and sad because:
    1. I fixed the issue
    2. I am unsure how I fixed it
    Brassely David
    @brasseld
    haha, really don't know what you did ?
    Mihail Yonchev
    @insertmike
    yes..
    Ripolak
    @Ripolak
    Hello we are attempting to use the default authentication provider in AM, but are getting an internal server error. Upon checking the logs, it seems Gravitee attempts to connect to localhost:27017 instead of the mongo cluster.
    The weird thing is, other things work, and it connects to the correct mongo. Is there any other mongo configuration other than management and oauth2 that I might be mia
    Ss
    missing*
    Titouan COMPIEGNE
    @tcompiegne
    @Ripolak did you set the mongo cluster configuration with the uri parameter ?
    by default the default authentication provider is trying to read the mongodb.uri to set its connection URI
    if it's not the case you have to manually update the authentication provider configuration
    Your domain -> settings -> providers -> Default Identity Provider -> click on the settings icon
    Ripolak
    @Ripolak
    Hi, I managed to resolve this by providing all the connection data in the mongo uri parameter instead of using the individual fields.
    1 reply
    This is weird though, i left the connection url empty but it still for some reason tried to use it insre
    Instead of the individual parameters*
    Seluard
    @seluard
    Hi again @brasseld , I'm still stuck at the deploy of AM over k8s, I mean, it seems to run, the interface and the api works perfectly, but the am gateway don't work, and I can't init a login from my SPA's. Did you find something ? I separate the gateway to other host and nothing.. the /auth path is up, but I think that de path variables are not passing to the services... help please, I will appreciate it !
    Titouan COMPIEGNE
    @tcompiegne
    @seluard can you try to change your security domain path ?
    something like : /auth/yourDomain
    Seluard
    @seluard
    @tcompiegne Hi, I try a lot of variants, this is one of them, then I try to modify the ingress to make rewrites or something and nothing :(
    10 replies
    Seluard
    @seluard
    image.png
    @tcompiegne
    Seluard
    @seluard
    image.png
    13 replies
    Yohann Fabri
    @YoranSys

    Hi !

    For AM do you provide a mechanism like Keycloak to migrate existing account from an old IDP to AM? Or we need to use a new provider like JDBC ?

    Also in Keycloak we can provide a Realm default password encoder (algorithm) and import old user (from our legacy IDP) with a different algorithm for each user. At login time the user password will be encoded to the Realm default algorithm.

    Is that possible with Gravitee AM ?

    Titouan COMPIEGNE
    @tcompiegne
    Hi @YoranSys what is the type of your old IDP ? (database, webservice, others ? )
    5 replies
    Philippe Entzmann
    @ph.e_gitlab
    Hello ! I've set up an AM instance, defined several APIs and applications. I'm a bit confused how the applications are "accessed". For example an API backend /api/auth/info is published to /gateway/xxxx. This works fine. But if I define 2 applications (app1 and app2) which both subscribe to the API. How AM distincts from calls to app1 and app2 ?? Is the published host/route different ? is it based on the client_id provided ?