[SOLVED] 'http_server=' parameter - SSL redirect? [TLDR solution: ssl_helper not working]
Posted: 19 May 2021, 10:22
Not sure if this should be in the requests, or bugs, but here it goes...
I'm experimenting with PXE boot of latest 5.2.0 Kiosk, and I'm not sure what's the exact issue...
I have an image that was made with these parameters:
Now, that works fine on HTTP / port 80, but after tests were done, I started to slowly migrate everything to HTTPS / SSL.
In the process I tried simply redirecting (on the server side):
- from : 10.20.30.40/porteus
- to : https://my.local.name/porteus
Note that I'm redirecting to HTTPS and also redirecting to FQDN (so that certificate can be valid), but it is the same exact server and folder as before.
I can see that initial requests are coming to web server hosting the files, but Porteus Kiosk boot fails.
If I keep xzm/docs redirect to HTTPS then it just hangs, tries fetching folder listing over port 80/HTTP and after receiving redirect just gives up (or so it seems)
If I exclude xzm/docs folders from redirect, then it boots to wallpaper, but then fails on fetching config file as if file was not found
When both xzm/docs folders and kiosk config file are excluded, then it boots fine.
So I'm assuming that curl (or wget?) is fetching .xzm, config, and other files, but one of these is unsupported:
- doesn't follow redirects
- doesn't support HTTPS
Now, normally I'd make new boot images several times with different combinations, and keep rebooting until it starts working, but I'm a bit short on time
So I'd appreciate confirmation on a few of these:
- does 'http_server=' support SSL or not?
- does binary using 'http_server=' supports following redirects or not?
- does 'kiosk_config=' support SSL or not?
- does binary using 'kiosk_config=' supports following redirects or not? (for this last one I believe that this works, as I vaguely remember trying redirect of pxeboot.txt to pxeboot.php, both still on HTTP/80, and I think it used to work with Kiosk 4.7.0)
I'd appreciate some clarification, thanks, it would save me dozens of reboots and several image creations, probably taking whole day to deduct by myself...
I'm experimenting with PXE boot of latest 5.2.0 Kiosk, and I'm not sure what's the exact issue...
I have an image that was made with these parameters:
Code: Select all
http_server=10.20.30.40:80/porteus/520
kiosk_config=http://10.20.30.40/porteus/pxe/pxeboot.txt
In the process I tried simply redirecting (on the server side):
- from : 10.20.30.40/porteus
- to : https://my.local.name/porteus
Note that I'm redirecting to HTTPS and also redirecting to FQDN (so that certificate can be valid), but it is the same exact server and folder as before.
I can see that initial requests are coming to web server hosting the files, but Porteus Kiosk boot fails.
If I keep xzm/docs redirect to HTTPS then it just hangs, tries fetching folder listing over port 80/HTTP and after receiving redirect just gives up (or so it seems)
If I exclude xzm/docs folders from redirect, then it boots to wallpaper, but then fails on fetching config file as if file was not found
When both xzm/docs folders and kiosk config file are excluded, then it boots fine.
So I'm assuming that curl (or wget?) is fetching .xzm, config, and other files, but one of these is unsupported:
- doesn't follow redirects
- doesn't support HTTPS
Now, normally I'd make new boot images several times with different combinations, and keep rebooting until it starts working, but I'm a bit short on time
So I'd appreciate confirmation on a few of these:
- does 'http_server=' support SSL or not?
- does binary using 'http_server=' supports following redirects or not?
- does 'kiosk_config=' support SSL or not?
- does binary using 'kiosk_config=' supports following redirects or not? (for this last one I believe that this works, as I vaguely remember trying redirect of pxeboot.txt to pxeboot.php, both still on HTTP/80, and I think it used to work with Kiosk 4.7.0)
I'd appreciate some clarification, thanks, it would save me dozens of reboots and several image creations, probably taking whole day to deduct by myself...