We have ChirpStack v4 running in docker containers. In order to use SSL, we have a CA cert and an nginx reverse proxy. That works fine, we access the dashboard using https on port 443.
The problem comes when we add our second requirement - using a firewall.
ChirpStack is installed on a RHEL 8 server.
We enable firewalld and open up the following ports:
80 TCP
443 TCP
8080 TCP
8090 TCP
5432 TCP
1883 TCP
6379 TCP
1700 UDP
When we try to access the dashboard now, we only get a frozen login screen (after a long delay). Examining the javascript console show that prior to the login rendering (then freezing), we get the following error. Has anyone experienced this and can share what steps we are missing?
Thanks and regards,
Peter
API error:
Object { message: "no authorization provided", stack: "F@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:1400041\nVt@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:1423063\n5935/qt/<@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:1422881\nWe@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:1408965\nUe@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:1408771\nPt@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:1416915\n5935/r.W@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:1418021\n5935/r.R@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:1417998\nEventHandlerNonNull*Tt@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:1415273\nYt@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:1425396\n5935/Kt.prototype.X/e<@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:1426612\n5935/Kt.prototype.X@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:1426632\n5990/i.api.TenantServiceClient.prototype.list@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:607533\nn/e.list@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:2431543\nvalue@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:2582353\nys@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:1773341\nPl@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:1790221\n6813/t.unstable_runWithPriority@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:1861802\nKo@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:1732088\nkl@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:1786958\nbl@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:1783042\ngl@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:1780165\neu@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:1796304\n4463/au/<@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:1797694\nRl@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:1783195\nau@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:1797679\n4463/t.render@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:1805156\n@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:3366624\n@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:3366723\n@https://chirpstack.sl.cloud9.ibm.com/static/js/main.a719fdd3.js:2:3366727\n", code: 16, metadata: {…} }
code: 16