The docker container for the Only Office Document Server is running on port 80. I have an nginx server as a central reverse proxy server running for several services.
The manual recommends port 88 just for the reason that the nginx reverse proxy is running in the same container/vm as the Seafile Server.
Seafile Server, Only Office and nginx are running in its own docker container. All are in the same LAN and “lan_ip_address” stands for the IP address of the OnlyOffice LAN IP address.
Does anybody see a general error in the configuration? It is only altered regarding the port of the Only Office Dcument Server. I tried with port 88. But I got the same result.
Please try all connection scenarios with nmap and check routes to see if routing works properly.
I guess you are running your containers in a dedicated network, otherwise it’s a serious security flaw.
Sorry, I don’t follow. Can you clarify this for me?
Are you saying that Nginx, Seafile and OnlyOffice are running in their own container? I was imagining a plain vanilla setup where Nginx/Seafile were collocated with a Docker container running OnlyOffice DS. Is that what you’re running?
On the other hand, are you running the OODS Docker container on another host on the network?
nginx, seafile and only office are running in their own containers. nginx is not included in the plain vanilla docker seafile.
All docker containers are in the same network on the same host.
Have you tried using the Developer Tools (Web Console; Javascript Console) in your web browser(s) to detect the error in the link? In diagnosing blank pages from the Seafile-OODS integration I found many instances of https CallBack errors and other resultant 404 pages. It might be useful in your case to pin point where the error is originating.
Here is a little background on the Callback and the transactions between OODS and server from the OwnCloud/NextCloud perspective. It seems the OwnCloud folks have the same problems integrating OODS as the Seafile folks.
This might be pretty far out but OnlyOffice Tech Support suggested I try:
/ds-vpath/web-apps/apps/api/documents/api.js
instead of
/web-apps/apps/api/documents/api.js
No explanation was given but maybe you can give it a try.
Another thing, if DNS is an issue with your setup, like maybe you’re running a test server on a captive network or perhaps there’s a firewall issue, you can spin-up the oods container with a specified DNS server.
Default (uses Google 8.8.8.8):
docker run -dit -p 88:80 --restart always --name oods onlyoffice/documentserver
I changed following “client_max_body_size 100M; # Limit Document size to 100MB” in the nginx configuration file. The missing M . and the specified DNS Server got it working.
The M is also very important for getting the Print Function working correctly.
Thank you all for your hints and help.
But I would still like to know from @DerDanilo where he sees a security flaw.
As I understood your setup initially, you run all services on their instances in plain http. The reverse proxy then provides SSL hence encrypts the traffic.
Since you don’t run a special DMZ or SERVICE LAN all clients that have access to your LAN can read unencrypted traffic. That’s the security flaw I ment.
Either encrypt traffic already on the LAN layer or have a special network only for those services.
Could you place the settings to make it work please. I ran docker to seafile, mysql, memcached each in a different container and it works. But when trying with an onlyoffice container, it reads me well when I put domain: 88 but then when I configure nginx to read as a subfolder it doesn’t listen anymore. Another problem is that when I restart the seafile container or it simply dies, I lose the nginx configuration.