Will wait for Hayley or Pieter but you most likely need to setup an
appropriate http prefix.
Will wait.
While I was testing HTTP encryption I added followinf to the config file
AddInterfacePrefixes: False
ExtHttpPort: 5114
ExtHttpPrefixes: “https://*:5114/”
netstat shows opened port.
telnet can connect to this port but browsed gives an error "
"
So some progress with HTTPS
First you need to execute httpcfg under eventstore user.
But
[PID:00512:013 2017.06.01 12:37:25.510 DEBUG ElectionsService ] ELECTIONS: (V=200) VIEWCHANGE FROM [192.168.5.194:2114, {e7f53c10-dcdc-4dc7-8481-fae868ebabb0}].
[PID:00512:006 2017.06.01 12:37:26.464 FATAL GLOBAL-LOGGER ] Global Unhandled Exception occurred.
System.IO.IOException: The authentication or decryption has failed. —> Mono.Security.Protocol.Tls.TlsException: The client stopped the handshake.
at Mono.Security.Protocol.Tls.SslServerStream.EndNegotiateHandshake (System.IAsyncResult asyncResult) [0x000b9] in <1d0bb82c94e7435eb09324cf5ef20e36>:0
at Mono.Security.Protocol.Tls.SslStreamBase.AsyncHandshakeCallback (System.IAsyncResult asyncResult) [0x0000c] in <1d0bb82c94e7435eb09324cf5ef20e36>:0
— End of inner exception stack trace —
at Mono.Security.Protocol.Tls.SslStreamBase.EndRead (System.IAsyncResult asyncResult) [0x00057] in <1d0bb82c94e7435eb09324cf5ef20e36>:0
at Mono.Net.Security.Private.LegacySslStream.EndAuthenticateAsServer (System.IAsyncResult asyncResult) [0x00011] in <5071a6e4a4564e19a2eda0f53e42f9bd>:0
at Mono.Net.Security.Private.LegacySslStream.AuthenticateAsServer (System.Security.Cryptography.X509Certificates.X509Certificate serverCertificate, System.Boolean clientCertificateRequired, System.Security.Authentication.SslProtocols enabledSslProtocols, System.Boolean
checkCertificateRevocation) [0x0000e] in <5071a6e4a4564e19a2eda0f53e42f9bd>:0
Eventstore crashs 
I don’t know but seems to me I’ve found something interesting.
Actually browser receives HTML
``
here is title tag.
And this https://forums.sonarr.tv/t/cannot-connect-webif-via-https/13612/4
I just tried console lynx.
eventstore hasn’t crashed this time.
In log file
[PID:01104:018 2017.06.01 13:52:07.664 INFO IOStreams ] Error while closing stream : This SslStream is already authenticated
And it shows only title without html BODY
Hello.
I’ve created self-signed cert.
httpcfg -list
Port: 443 Thumbprint: 9B7C475FB829F3F6D14681942E56C9942BFEF0D9In config file I have
CertificateFile: eventstore.crt
SslValidateServer: False
CertificateThumbprint: 9B7C475FB829F3F6D14681942E56C9942BFEF0D9But when I start eventstore
Starting Normal TCP listening on TCP endpoint: xxx.xxx.xx.xx:1113.
[24864,13,13:53:30.032] Starting HTTP server on [http://xxx.xxx.xx.xx:2113/].…
[24864,13,13:53:30.036] HTTP server is up and listening on [http://xxx.xxx.xx.xx:2113/]
The idea is to configure all possible SSL(http tcp and so on).
At least http ssl have to work. But I cann’t reach 443 port. In the same time http://xxx.xxx.xx.xx:2113/web/index.html#/ work fineI also tried :
IntHttpPort: 443
ExtHttpPort: 443
Doesn’t work.Does port in httpcfg have to be the same in config file? (443=443 or 2113=2113)
Could somebody point me the right direction?
Thank you.
Any update?
info here https://forums.sonarr.tv/t/cannot-connect-webif-via-https/13612/4 is it true or false?
We are currently investigating a few issues with HTTPS on mono. You can see some more information about it in this github issue.
We will also have a look into the certificate issue you have linked at the same time, thank you for bringing it to our attention.
Currently the easiest way to get https working on mono would likely be to use a proxy.
