CloudBeaver in docker behind nginx on host -> i.c.model.session.WebUserContext - refresh permissions null
GuikiPT opened this issue · comments
Please, describe your question in details.
So I set an docker-compose file for cloudbeaver:
services:
cloudbeaver:
container_name: cloudbeaver
tty: true
stdin_open: true
restart: always
volumes:
- ./cloudbeaver.conf:/opt/cloudbeaver/conf/cloudbeaver.conf
image: dbeaver/cloudbeaver
network_mode: host
Config File:
{
server: {
serverPort: 8978,
workspaceLocation: "workspace",
contentRoot: "web",
driversLocation: "drivers",
sslConfigurationPath:"${CLOUDBEAVER_SSL_CONF_PATH:workspace/.data/ssl-config.xml}",
rootURI: "/",
serviceURI: "/api/",
productSettings: {
# Global properties
core.theming.theme: 'light',
core.localization.localization: 'en',
plugin.sql-editor.autoSave: true,
plugin.sql-editor.disabled: false,
# max size of the file that can be uploaded to the editor (in kilobytes)
plugin.sql-editor.maxFileSize: 10240,
plugin.log-viewer.disabled: false,
plugin.log-viewer.logBatchSize: 1000,
plugin.log-viewer.maxFailedRequests: 3,
plugin.log-viewer.maxLogRecords: 2000,
plugin.log-viewer.refreshTimeout: 3000,
sql.proposals.insert.table.alias: PLAIN
},
expireSessionAfterPeriod: 1800000,
develMode: false,
enableSecurityManager: false,
sm: {
enableBruteForceProtection: "${CLOUDBEAVER_BRUTE_FORCE_PROTECTION_ENABLED:true}",
maxFailedLogin: "${CLOUDBEAVER_MAX_FAILED_LOGINS:10}",
minimumLoginTimeout: "${CLOUDBEAVER_MINIMUM_LOGIN_TIMEOUT:1}",
blockLoginPeriod: "${CLOUDBEAVER_BLOCK_PERIOD:300}",
passwordPolicy: {
minLength: "${CLOUDBEAVER_POLICY_MIN_LENGTH:8}",
requireMixedCase: "${CLOUDBEAVER_POLICY_REQUIRE_MIXED_CASE:true}",
minNumberCount: "${CLOUDBEAVER_POLICY_MIN_NUMBER_COUNT:1}",
minSymbolCount: "${CLOUDBEAVER_POLICY_MIN_SYMBOL_COUNT:0}"
}
},
database: {
driver: "h2_embedded_v2",
url: "jdbc:h2:${workspace}/.data/cb.h2v2.dat",
initialDataConfiguration: "conf/initial-data.conf",
pool: {
minIdleConnections: 4,
maxIdleConnections: 10,
maxConnections: 100,
validationQuery: "SELECT 1"
},
backupEnabled: "${CLOUDBEAVER_DB_BACKUP_ENABLED:true}"
}
},
app: {
anonymousAccessEnabled: true,
anonymousUserRole: "user",
defaultUserTeam: "user",
grantConnectionsAccessToAnonymousTeam: false,
supportsCustomConnections: false,
showReadOnlyConnectionInfo: false,
systemVariablesResolvingEnabled: "${CLOUDBEAVER_SYSTEM_VARIABLES_RESOLVING_ENABLED:false}",
forwardProxy: true,
publicCredentialsSaveEnabled: true,
adminCredentialsSaveEnabled: true,
resourceManagerEnabled: true,
resourceQuotas: {
dataExportFileSizeLimit: 10000000,
resourceManagerFileSizeLimit: 500000,
sqlMaxRunningQueries: 100,
sqlResultSetRowsLimit: 100000,
sqlResultSetMemoryLimit: 2000000,
sqlTextPreviewMaxLength: 4096,
sqlBinaryPreviewMaxLength: 261120
},
enabledAuthProviders: [
"local"
],
disabledDrivers: [
"sqlite:sqlite_jdbc",
"h2:h2_embedded",
"h2:h2_embedded_v2",
"clickhouse:yandex_clickhouse"
],
disabledBetaFeatures: [
]
}
}
So these is my cloudbeaver server behind nginx in host.
Here's is my configs in nginx:
server {
listen 443 ssl;
server_name dbeaver.guikipt.pt;
ssl_certificate /etc/nginx/certs/fullchain.pem;
ssl_certificate_key /etc/nginx/certs/privkey.pem;
ssl_protocols TLSv1.2 TLSv1.3;
ssl_ciphers HIGH:!aNULL:!MD5;
location / {
proxy_pass http://localhost:8978;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
}
}
server {
listen 80;
server_name dbeaver.guikipt.pt;
return 301 https://$host$request_uri;
}
For some reason the page is in an infinite install loading screen:
Checking the logs of the cloudbeaver in my docker it's shows:
Starting Cloudbeaver Server
WARNING: Using incubator modules: jdk.incubator.foreign, jdk.incubator.vector
20-05-2024 16:26:54.660 [main] DEBUG i.c.model.app.BaseWebApplication - Loading configuration from /opt/cloudbeaver/conf/cloudbeaver.conf
20-05-2024 16:26:54.663 [main] DEBUG i.c.s.CBServerConfigurationController - Using configuration [/opt/cloudbeaver/conf/cloudbeaver.conf]
20-05-2024 16:26:54.664 [main] DEBUG i.c.s.CBServerConfigurationController - Read configuration [/opt/cloudbeaver/conf/cloudbeaver.conf]
20-05-2024 16:26:54.741 [main] INFO io.cloudbeaver.server.CBPlatform - Initialize web platform...:
20-05-2024 16:26:54.906 [main] DEBUG o.j.d.runtime.SecurityProviderUtils - BounceCastle bundle found. Use JCE provider BC
20-05-2024 16:26:55.300 [main] DEBUG o.j.d.registry.BasePlatformImpl - Initialize base platform...
20-05-2024 16:26:55.606 [main] DEBUG o.j.d.r.DataSourceProviderRegistry - Total database drivers: 117 (117)
20-05-2024 16:26:55.616 [main] ERROR io.cloudbeaver.server.CBPlatform - Driver 'yandex_clickhouse' is missing library 'ru.yandex.clickhouse:clickhouse-jdbc:RELEASE'
20-05-2024 16:26:55.620 [main] INFO io.cloudbeaver.server.CBPlatform - Available drivers: ClickHouse,Db2 for LUW,Db2 for IBM i,Firebird,DuckDB,Hadoop / Apache Kyuubi,Trino,H2 Embedded,H2 Embedded V.2,MS SQL Server / SQL Server,MySQL,MariaDB,Oracle,PostgreSQL,SQLite
20-05-2024 16:26:55.624 [main] INFO io.cloudbeaver.server.CBPlatform - Web platform initialized (883ms)
20-05-2024 16:26:55.627 [main] DEBUG io.cloudbeaver.server.CBApplication - CloudBeaver CE Server 24.0.5.202405200838 is starting
20-05-2024 16:26:55.628 [main] DEBUG io.cloudbeaver.server.CBApplication - OS: Linux 5.15.0-106-generic (amd64)
20-05-2024 16:26:55.628 [main] DEBUG io.cloudbeaver.server.CBApplication - Java version: 17.0.11 by Eclipse Adoptium (64bit)
20-05-2024 16:26:55.629 [main] DEBUG io.cloudbeaver.server.CBApplication - Install path: '/opt/cloudbeaver/server'
20-05-2024 16:26:55.629 [main] DEBUG io.cloudbeaver.server.CBApplication - Global workspace: 'file:/opt/cloudbeaver/workspace/'
20-05-2024 16:26:55.636 [main] DEBUG io.cloudbeaver.server.CBApplication - Memory available 108Mb/6008Mb
20-05-2024 16:26:55.637 [main] DEBUG io.cloudbeaver.server.CBApplication - Content root: /opt/cloudbeaver/web
20-05-2024 16:26:55.637 [main] DEBUG io.cloudbeaver.server.CBApplication - Drivers storage: /opt/cloudbeaver/drivers
20-05-2024 16:26:55.641 [main] DEBUG io.cloudbeaver.server.CBApplication - Listen port: 8978 on all interfaces
20-05-2024 16:26:55.642 [main] DEBUG io.cloudbeaver.server.CBApplication - Base URI: /api/
20-05-2024 16:26:55.642 [main] DEBUG io.cloudbeaver.server.CBApplication - Production mode
20-05-2024 16:26:55.642 [main] DEBUG io.cloudbeaver.server.CBApplication - Server is in configuration mode!
20-05-2024 16:26:55.656 [main] DEBUG io.cloudbeaver.server.CBApplication - Local host addresses:
20-05-2024 16:26:55.667 [main] DEBUG io.cloudbeaver.server.CBApplication - 192.168.100.1 (192.168.100.1)
20-05-2024 16:26:55.679 [main] DEBUG io.cloudbeaver.server.CBApplication - 172.20.0.1 (172.20.0.1)
20-05-2024 16:26:55.681 [main] DEBUG io.cloudbeaver.server.CBApplication - 172.17.0.1 (172.17.0.1)
20-05-2024 16:26:55.683 [main] DEBUG io.cloudbeaver.server.CBApplication - fdba:17c8:6c94:0:0:0:0:1011%pterodactyl0 (fdba:17c8:6c94:0:0:0:0:1011%pterodactyl0)
20-05-2024 16:26:55.684 [main] DEBUG io.cloudbeaver.server.CBApplication - 172.18.0.1 (172.18.0.1)
20-05-2024 16:26:55.686 [main] DEBUG io.cloudbeaver.server.CBApplication - 100.100.1.1 (guikipt-server.tail56755.ts.net)
20-05-2024 16:26:55.686 [main] DEBUG io.cloudbeaver.server.CBApplication - 154.12.250.82 (vmi1721304.contaboserver.net)
20-05-2024 16:26:55.686 [main] DEBUG io.cloudbeaver.server.CBApplication - 127.0.0.1 (localhost)
20-05-2024 16:26:55.754 [main] DEBUG i.c.s.auth.ReverseProxyConfigurator - Reverse proxy provider disabled, migration not needed
20-05-2024 16:26:55.776 [main] DEBUG i.c.service.security.db.CBDatabase - Initiate management database
20-05-2024 16:26:55.813 [main] DEBUG i.c.service.security.db.CBDatabase - Initiate connection pool with management database (H2 Embedded V.2; jdbc:h2:/opt/cloudbeaver/workspace/.data/cb.h2v2.dat)
20-05-2024 16:26:56.196 [main] DEBUG i.c.service.security.db.CBDatabase - Connected to H2 2.1.214 (2022-06-13)
20-05-2024 16:26:56.295 [main] DEBUG o.j.d.m.sql.schema.SQLSchemaManager - Create new schema CB
20-05-2024 16:26:56.664 [main] DEBUG o.j.d.m.sql.schema.SQLSchemaManager - Execute migration query: CREATE TABLE CB_SCHEMA_INFO
(
VERSION INTEGER NOT NULL,
UPDATE_TIME TIMESTAMP NOT NULL
)
20-05-2024 16:26:56.672 [main] DEBUG o.j.d.m.sql.schema.SQLSchemaManager - Execute migration query: CREATE TABLE CB_INSTANCE
(
INSTANCE_ID CHAR(36) NOT NULL, -- Unique instance ID
MAC_ADDRESS CHAR(12) NOT NULL,
HOST_NAME VARCHAR(128) NOT NULL,
PRODUCT_NAME VARCHAR(100) NOT NULL, -- Server product name
PRODUCT_VERSION VARCHAR(32) NOT NULL, -- Server product version
UPDATE_TIME TIMESTAMP NOT NULL,
PRIMARY KEY (INSTANCE_ID)
)
20-05-2024 16:26:56.684 [main] DEBUG o.j.d.m.sql.schema.SQLSchemaManager - Execute migration query: CREATE TABLE CB_INSTANCE_DETAILS
(
INSTANCE_ID CHAR(36) NOT NULL, -- Unique instance ID
FIELD_NAME VARCHAR(32) NOT NULL,
FIELD_VALUE VARCHAR(255),
PRIMARY KEY (INSTANCE_ID, FIELD_NAME),
FOREIGN KEY (INSTANCE_ID) REFERENCES CB_INSTANCE (INSTANCE_ID)
)
20-05-2024 16:26:56.720 [main] DEBUG o.j.d.m.sql.schema.SQLSchemaManager - Execute migration query: CREATE TABLE CB_AUTH_SUBJECT
(
SUBJECT_ID VARCHAR(128) NOT NULL,
SUBJECT_TYPE VARCHAR(8) NOT NULL,
IS_SECRET_STORAGE CHAR(1) DEFAULT 'Y' NOT NULL,
PRIMARY KEY (SUBJECT_ID)
)
20-05-2024 16:26:56.724 [main] DEBUG o.j.d.m.sql.schema.SQLSchemaManager - Execute migration query: CREATE TABLE CB_SUBJECT_META
(
SUBJECT_ID VARCHAR(128) NOT NULL,
META_ID VARCHAR(32) NOT NULL,
META_VALUE VARCHAR(1024),
UPDATE_TIME TIMESTAMP DEFAULT CURRENT_TIMESTAMP NOT NULL,
PRIMARY KEY (SUBJECT_ID, META_ID),
FOREIGN KEY (SUBJECT_ID) REFERENCES CB_AUTH_SUBJECT(SUBJECT_ID) ON DELETE CASCADE
)
20-05-2024 16:26:56.735 [main] DEBUG o.j.d.m.sql.schema.SQLSchemaManager - Execute migration query: CREATE TABLE CB_AUTH_PERMISSIONS
(
SUBJECT_ID VARCHAR(128) NOT NULL,
PERMISSION_ID VARCHAR(64) NOT NULL,
GRANT_TIME TIMESTAMP NOT NULL,
GRANTED_BY VARCHAR(128) NOT NULL,
PRIMARY KEY (SUBJECT_ID, PERMISSION_ID),
FOREIGN KEY (SUBJECT_ID) REFERENCES CB_AUTH_SUBJECT (SUBJECT_ID) ON DELETE CASCADE
)
20-05-2024 16:26:56.744 [main] DEBUG o.j.d.m.sql.schema.SQLSchemaManager - Execute migration query: CREATE TABLE CB_OBJECT_PERMISSIONS
(
OBJECT_ID VARCHAR(128) NOT NULL,
OBJECT_TYPE VARCHAR(128) NOT NULL,
SUBJECT_ID VARCHAR(128) NOT NULL,
PERMISSION VARCHAR(32) NOT NULL,
GRANT_TIME TIMESTAMP NOT NULL,
GRANTED_BY VARCHAR(128) NOT NULL,
PRIMARY KEY (SUBJECT_ID, OBJECT_TYPE, OBJECT_ID, PERMISSION),
FOREIGN KEY (SUBJECT_ID) REFERENCES CB_AUTH_SUBJECT (SUBJECT_ID) ON DELETE CASCADE
)
20-05-2024 16:26:56.763 [main] DEBUG o.j.d.m.sql.schema.SQLSchemaManager - Execute migration query: CREATE TABLE CB_CREDENTIALS_PROFILE
(
PROFILE_ID VARCHAR(128) NOT NULL,
PROFILE_NAME VARCHAR(100) NOT NULL,
PROFILE_DESCRIPTION VARCHAR(255),
PARENT_PROFILE_ID VARCHAR(128),
CREATE_TIME TIMESTAMP DEFAULT CURRENT_TIMESTAMP NOT NULL,
PRIMARY KEY (PROFILE_ID),
FOREIGN KEY (PROFILE_ID) REFERENCES CB_AUTH_SUBJECT (SUBJECT_ID) ON DELETE CASCADE,
FOREIGN KEY (PARENT_PROFILE_ID) REFERENCES CB_CREDENTIALS_PROFILE(PROFILE_ID) ON DELETE NO ACTION
)
20-05-2024 16:26:56.770 [main] DEBUG o.j.d.m.sql.schema.SQLSchemaManager - Execute migration query: CREATE TABLE CB_USER
(
USER_ID VARCHAR(128) NOT NULL,
IS_ACTIVE CHAR(1) NOT NULL,
CREATE_TIME TIMESTAMP NOT NULL,
DEFAULT_AUTH_ROLE VARCHAR(32) NULL,
CREDENTIALS_PROFILE_ID VARCHAR(128) NULL,
PRIMARY KEY (USER_ID),
FOREIGN KEY (USER_ID) REFERENCES CB_AUTH_SUBJECT (SUBJECT_ID) ON DELETE CASCADE,
FOREIGN KEY (CREDENTIALS_PROFILE_ID) REFERENCES CB_CREDENTIALS_PROFILE(PROFILE_ID) ON DELETE NO ACTION
)
20-05-2024 16:26:56.779 [main] DEBUG o.j.d.m.sql.schema.SQLSchemaManager - Execute migration query: -- Additional user properties (profile)
CREATE TABLE CB_USER_PREFERENCES
(
USER_ID VARCHAR(128) NOT NULL,
PREFERENCE_ID VARCHAR(128) NOT NULL,
PREFERENCE_VALUE VARCHAR(1024),
PRIMARY KEY (USER_ID, PREFERENCE_ID),
FOREIGN KEY (USER_ID) REFERENCES CB_USER (USER_ID) ON DELETE CASCADE
)
20-05-2024 16:26:56.783 [main] DEBUG o.j.d.m.sql.schema.SQLSchemaManager - Execute migration query: CREATE TABLE CB_TEAM
(
TEAM_ID VARCHAR(128) NOT NULL,
TEAM_NAME VARCHAR(100) NOT NULL,
TEAM_DESCRIPTION VARCHAR(255),
CREATE_TIME TIMESTAMP NOT NULL,
PRIMARY KEY (TEAM_ID),
FOREIGN KEY (TEAM_ID) REFERENCES CB_AUTH_SUBJECT (SUBJECT_ID) ON DELETE CASCADE
)
20-05-2024 16:26:56.788 [main] DEBUG o.j.d.m.sql.schema.SQLSchemaManager - Execute migration query: CREATE TABLE CB_USER_TEAM
(
USER_ID VARCHAR(128) NOT NULL,
TEAM_ID VARCHAR(128) NOT NULL,
TEAM_ROLE VARCHAR(128),
GRANT_TIME TIMESTAMP NOT NULL,
GRANTED_BY VARCHAR(128) NOT NULL,
PRIMARY KEY (USER_ID, TEAM_ID),
FOREIGN KEY (USER_ID) REFERENCES CB_USER (USER_ID) ON DELETE CASCADE,
FOREIGN KEY (TEAM_ID) REFERENCES CB_TEAM (TEAM_ID) ON DELETE NO ACTION
)
20-05-2024 16:26:56.794 [main] DEBUG o.j.d.m.sql.schema.SQLSchemaManager - Execute migration query: CREATE TABLE CB_USER_CREDENTIALS
(
USER_ID VARCHAR(128) NOT NULL,
PROVIDER_ID VARCHAR(32) NOT NULL,
CRED_ID VARCHAR(32) NOT NULL,
CRED_VALUE VARCHAR(1024) NOT NULL,
UPDATE_TIME TIMESTAMP DEFAULT CURRENT_TIMESTAMP NOT NULL,
PRIMARY KEY (USER_ID, PROVIDER_ID, CRED_ID),
FOREIGN KEY (USER_ID) REFERENCES CB_USER (USER_ID) ON DELETE CASCADE
)
20-05-2024 16:26:56.799 [main] DEBUG o.j.d.m.sql.schema.SQLSchemaManager - Execute migration query: CREATE INDEX CB_USER_CREDENTIALS_SEARCH_IDX ON CB_USER_CREDENTIALS (PROVIDER_ID, CRED_ID)
20-05-2024 16:26:56.801 [main] DEBUG o.j.d.m.sql.schema.SQLSchemaManager - Execute migration query: CREATE TABLE CB_USER_STATE
(
USER_ID VARCHAR(128) NOT NULL,
USER_CONFIGURATION TEXT NULL,
UPDATE_TIME TIMESTAMP DEFAULT CURRENT_TIMESTAMP NOT NULL,
PRIMARY KEY (USER_ID),
FOREIGN KEY (USER_ID) REFERENCES CB_USER (USER_ID) ON DELETE CASCADE
)
20-05-2024 16:26:56.805 [main] DEBUG o.j.d.m.sql.schema.SQLSchemaManager - Execute migration query: CREATE TABLE CB_SESSION
(
SESSION_ID VARCHAR(64) NOT NULL,
APP_SESSION_ID VARCHAR(64) NULL,
USER_ID VARCHAR(128) NULL,
CREATE_TIME TIMESTAMP NOT NULL,
LAST_ACCESS_REMOTE_ADDRESS VARCHAR(128) NULL,
LAST_ACCESS_USER_AGENT VARCHAR(255) NULL,
LAST_ACCESS_TIME TIMESTAMP NOT NULL,
LAST_ACCESS_INSTANCE_ID CHAR(36),
SESSION_TYPE VARCHAR(64),
PRIMARY KEY (SESSION_ID),
FOREIGN KEY (USER_ID) REFERENCES CB_USER (USER_ID) ON DELETE CASCADE,
FOREIGN KEY (LAST_ACCESS_INSTANCE_ID) REFERENCES CB_INSTANCE (INSTANCE_ID)
)
20-05-2024 16:26:56.811 [main] DEBUG o.j.d.m.sql.schema.SQLSchemaManager - Execute migration query: CREATE TABLE CB_AUTH_TOKEN
(
TOKEN_ID VARCHAR(128) NOT NULL,
REFRESH_TOKEN_ID VARCHAR(128),
SESSION_ID VARCHAR(64) NOT NULL,
USER_ID VARCHAR(128),
AUTH_ROLE VARCHAR(32),
EXPIRATION_TIME TIMESTAMP NOT NULL,
REFRESH_TOKEN_EXPIRATION_TIME TIMESTAMP DEFAULT CURRENT_TIMESTAMP NOT NULL,
CREATE_TIME TIMESTAMP DEFAULT CURRENT_TIMESTAMP NOT NULL,
PRIMARY KEY (TOKEN_ID),
FOREIGN KEY (SESSION_ID) REFERENCES CB_SESSION (SESSION_ID) ON DELETE CASCADE,
FOREIGN KEY (USER_ID) REFERENCES CB_USER (USER_ID) ON DELETE NO ACTION
)
20-05-2024 16:26:56.822 [main] DEBUG o.j.d.m.sql.schema.SQLSchemaManager - Execute migration query: CREATE TABLE CB_AUTH_ATTEMPT
(
AUTH_ID VARCHAR(128) NOT NULL,
AUTH_STATUS VARCHAR(32) NOT NULL,
AUTH_ERROR TEXT,
APP_SESSION_ID VARCHAR(64) NOT NULL,
SESSION_ID VARCHAR(64),
SESSION_TYPE VARCHAR(64) NOT NULL,
APP_SESSION_STATE TEXT NOT NULL,
IS_MAIN_AUTH CHAR(1) DEFAULT 'Y' NOT NULL,
AUTH_USERNAME VARCHAR(128) NULL,
ERROR_CODE VARCHAR(128) NULL,
FORCE_SESSION_LOGOUT CHAR(1) DEFAULT 'N' NOT NULL,
CREATE_TIME TIMESTAMP DEFAULT CURRENT_TIMESTAMP NOT NULL,
PRIMARY KEY (AUTH_ID),
FOREIGN KEY (SESSION_ID) REFERENCES CB_SESSION (SESSION_ID) ON DELETE CASCADE
)
20-05-2024 16:26:56.826 [main] DEBUG o.j.d.m.sql.schema.SQLSchemaManager - Execute migration query: CREATE TABLE CB_AUTH_ATTEMPT_INFO
(
AUTH_ID VARCHAR(128) NOT NULL,
AUTH_PROVIDER_ID VARCHAR(128) NOT NULL,
AUTH_PROVIDER_CONFIGURATION_ID VARCHAR(128),
AUTH_STATE TEXT NOT NULL,
CREATE_TIME TIMESTAMP DEFAULT CURRENT_TIMESTAMP NOT NULL,
PRIMARY KEY (AUTH_ID, AUTH_PROVIDER_ID),
FOREIGN KEY (AUTH_ID) REFERENCES CB_AUTH_ATTEMPT (AUTH_ID) ON DELETE CASCADE
)
20-05-2024 16:26:56.830 [main] DEBUG o.j.d.m.sql.schema.SQLSchemaManager - Execute migration query: -- Secrets
CREATE TABLE CB_USER_SECRETS
(
USER_ID VARCHAR(128) NOT NULL,
SECRET_ID VARCHAR(512) NOT NULL,
SECRET_VALUE TEXT NOT NULL,
SECRET_LABEL VARCHAR(128),
SECRET_DESCRIPTION VARCHAR(1024),
ENCODING_TYPE VARCHAR(32) DEFAULT 'PLAINTEXT' NOT NULL,
UPDATE_TIME TIMESTAMP DEFAULT CURRENT_TIMESTAMP NOT NULL,
PRIMARY KEY (USER_ID, SECRET_ID),
FOREIGN KEY (USER_ID) REFERENCES CB_USER (USER_ID) ON DELETE CASCADE
)
20-05-2024 16:26:56.842 [main] DEBUG o.j.d.m.sql.schema.SQLSchemaManager - Execute migration query: CREATE TABLE CB_SUBJECT_SECRETS
(
SUBJECT_ID VARCHAR(128) NOT NULL,
SECRET_ID VARCHAR(255) NOT NULL,
PROJECT_ID VARCHAR(128),
OBJECT_TYPE VARCHAR(32),
OBJECT_ID VARCHAR(128),
SECRET_VALUE TEXT NOT NULL,
ENCODING_TYPE VARCHAR(32) DEFAULT 'PLAINTEXT' NOT NULL,
CREATE_TIME TIMESTAMP DEFAULT CURRENT_TIMESTAMP NOT NULL,
UPDATE_TIME TIMESTAMP DEFAULT CURRENT_TIMESTAMP NOT NULL,
PRIMARY KEY (SUBJECT_ID, SECRET_ID),
FOREIGN KEY (SUBJECT_ID) REFERENCES CB_AUTH_SUBJECT (SUBJECT_ID) ON DELETE CASCADE
)
20-05-2024 16:26:56.848 [main] DEBUG o.j.d.m.sql.schema.SQLSchemaManager - Execute migration query: CREATE INDEX IDX_SUBJECT_SECRETS_PROJECT ON CB_SUBJECT_SECRETS (PROJECT_ID,SUBJECT_ID)
20-05-2024 16:26:56.850 [main] DEBUG o.j.d.m.sql.schema.SQLSchemaManager - Execute migration query: CREATE INDEX IDX_SUBJECT_SECRETS_OBJECT ON CB_SUBJECT_SECRETS (PROJECT_ID,OBJECT_TYPE,OBJECT_ID)
20-05-2024 16:26:56.942 [main] DEBUG i.c.service.security.db.CBDatabase - Management database connection established
20-05-2024 16:26:56.943 [main] INFO io.cloudbeaver.server.CBApplication - No auto configuration was found. Server must be configured manually
20-05-2024 16:26:56.945 [main] DEBUG io.cloudbeaver.server.CBApplication - Starting Jetty server (8978 on all interfaces)
20-05-2024 16:26:57.386 [main] DEBUG i.c.server.graphql.GraphQLEndpoint - Schema extensions loaded: WebServiceBindingCore,WebServiceBindingNavigator,WebServiceBindingSQL,WebServiceBindingAdmin,WebServiceBindingAuth,WebServiceBindingDataTransfer,WebServiceBindingFS,WebServiceBindingMetadata,WebServiceBindingRM
20-05-2024 16:26:57.941 [main] DEBUG i.c.server.jetty.CBJettyServer - Max http session idle time: 604800s
20-05-2024 16:26:57.949 [main] DEBUG i.c.server.jetty.CBJettyServer - Active servlets:
20-05-2024 16:26:57.953 [main] DEBUG i.c.server.jetty.CBJettyServer - static: [/*]
20-05-2024 16:26:57.953 [main] DEBUG i.c.server.jetty.CBJettyServer - images: [/api/images/*]
20-05-2024 16:26:57.953 [main] DEBUG i.c.server.jetty.CBJettyServer - status: [/status]
20-05-2024 16:26:57.953 [main] DEBUG i.c.server.jetty.CBJettyServer - graphql: [/api/gql/*]
20-05-2024 16:26:57.954 [main] DEBUG i.c.server.jetty.CBJettyServer - sqlResultValueViewer: [/api/sql-result-value/*]
20-05-2024 16:26:57.954 [main] DEBUG i.c.server.jetty.CBJettyServer - sqlUploadFile: [/api/resultset/blob/*]
20-05-2024 16:26:57.954 [main] DEBUG i.c.server.jetty.CBJettyServer - adminLogs: [/api/logs/*]
20-05-2024 16:26:57.954 [main] DEBUG i.c.server.jetty.CBJettyServer - dataTransfer: [/api/data/*]
20-05-2024 16:26:57.955 [main] DEBUG i.c.server.jetty.CBJettyServer - dataTransferImport: [/api/data/import/*]
20-05-2024 16:26:57.955 [main] DEBUG i.c.server.jetty.CBJettyServer - fileSystems: [/api/fs-data/*]
20-05-2024 16:26:57.960 [main] INFO org.eclipse.jetty.server.Server - jetty-11.0.18; built: 2023-10-27T02:14:36.036Z; git: 5a9a771a9fbcb9d36993630850f612581b78c13f; jvm 17.0.11+9
20-05-2024 16:26:58.063 [main] INFO o.e.j.s.s.DefaultSessionIdManager - Session workerName=
20-05-2024 16:26:58.086 [main] INFO o.e.j.server.handler.ContextHandler - Started o.e.j.s.ServletContextHandler@26679788{/,file:///opt/cloudbeaver/web/,AVAILABLE}
20-05-2024 16:26:58.102 [main] INFO o.e.jetty.server.AbstractConnector - Started ServerConnector@7b53b1ad{HTTP/1.1, (http/1.1)}{0.0.0.0:8978}
20-05-2024 16:26:58.105 [main] INFO org.eclipse.jetty.server.Server - Started JettyServer@57a982f9{STARTING}[11.0.18,sto=0] @6295ms
20-05-2024 16:27:05.493 [qtp837237183-50] DEBUG i.c.model.session.WebUserContext - refresh permissions null b8eb3c0d-97a2-4b2b-9a2e-06313ed3e61d
20-05-2024 16:31:10.357 [qtp837237183-49] DEBUG i.c.model.session.WebUserContext - refresh permissions null 47fc407b-f514-4f83-bb91-ab5072ee1af6
20-05-2024 16:31:15.072 [qtp837237183-48] DEBUG i.c.model.session.WebUserContext - refresh permissions null b8a5f8ec-b2d5-4631-bea9-fcf1af1a3ed4
20-05-2024 16:31:18.826 [qtp837237183-45] DEBUG i.c.model.session.WebUserContext - refresh permissions null a63bc2b2-bf6e-4427-9c4a-44f57f2ceb01
20-05-2024 16:31:47.338 [qtp837237183-48] DEBUG i.c.model.session.WebUserContext - refresh permissions null 820cdca1-3439-44e5-81d8-8e4222e6da98
20-05-2024 16:32:04.820 [qtp837237183-49] DEBUG i.c.model.session.WebUserContext - refresh permissions null ce9211c7-0393-4616-81e4-011d6f176a0f
20-05-2024 16:32:06.041 [qtp837237183-46] DEBUG i.c.model.session.WebUserContext - refresh permissions null 268072f7-b80f-4c2a-9440-aa54091e3d0e
20-05-2024 16:32:11.444 [qtp837237183-50] DEBUG i.c.model.session.WebUserContext - refresh permissions null f6443ce3-f916-45e4-aaca-f06ae0f6c7c5
20-05-2024 16:34:32.216 [qtp837237183-45] DEBUG i.c.model.session.WebUserContext - refresh permissions null 5a5f3ff1-1df6-49b6-8c9b-ea6170010d35
20-05-2024 16:43:03.531 [qtp837237183-44] DEBUG i.c.model.session.WebUserContext - refresh permissions null 27584877-8d44-496b-84ba-219fa96a0a4c
Every time I refresh the webpage the 20-05-2024 16:43:03.531 [qtp837237183-44] DEBUG i.c.model.session.WebUserContext - refresh permissions null 27584877-8d44-496b-84ba-219fa96a0a4c
log appear.
What it can be?
Already tried in icognito mode, flush my dns, clear cache, double checking cloudflare dns configuration and it's seems normal.
Also here is the devtools logs:
packages-b7dfb96b23bc285a7f4a.js:2 TypeError: Failed to update a ServiceWorker for scope ('https://dbeaver.guikipt.pt/') with script ('Unknown'): Not found
bootstrap @ packages-b7dfb96b23bc285a7f4a.js:2
vendor-676137bd83894d811967.js:2 Error: No matching bindings found for serviceIdentifier: ThemeService
at _validateActiveBindingCount (vendor-676137bd83894d811967.js:2:23702)
at _getActiveBindings (vendor-676137bd83894d811967.js:2:23950)
at _createSubRequests (vendor-676137bd83894d811967.js:2:24054)
at plan (vendor-676137bd83894d811967.js:2:25150)
at vendor-676137bd83894d811967.js:2:63648
at Container._middleware (packages-b7dfb96b23bc285a7f4a.js:2:41213)
at Container._get (vendor-676137bd83894d811967.js:2:63075)
at Container._getButThrowIfAsync (vendor-676137bd83894d811967.js:2:63229)
at Container.get (vendor-676137bd83894d811967.js:2:58455)
at DIContainer.getServiceByClass (packages-b7dfb96b23bc285a7f4a.js:2:42400)
Mi @ vendor-676137bd83894d811967.js:2
Oi.o.callback @ vendor-676137bd83894d811967.js:2
ih @ vendor-676137bd83894d811967.js:2
lk @ vendor-676137bd83894d811967.js:2
jk @ vendor-676137bd83894d811967.js:2
ik @ vendor-676137bd83894d811967.js:2
Xk @ vendor-676137bd83894d811967.js:2
Qk @ vendor-676137bd83894d811967.js:2
Hk @ vendor-676137bd83894d811967.js:2
J @ vendor-676137bd83894d811967.js:2
R @ vendor-676137bd83894d811967.js:2
vendor-676137bd83894d811967.js:2 Uncaught Error: No matching bindings found for serviceIdentifier: ThemeService
at _validateActiveBindingCount (vendor-676137bd83894d811967.js:2:23702)
at _getActiveBindings (vendor-676137bd83894d811967.js:2:23950)
at _createSubRequests (vendor-676137bd83894d811967.js:2:24054)
at plan (vendor-676137bd83894d811967.js:2:25150)
at vendor-676137bd83894d811967.js:2:63648
at Container._middleware (packages-b7dfb96b23bc285a7f4a.js:2:41213)
at Container._get (vendor-676137bd83894d811967.js:2:63075)
at Container._getButThrowIfAsync (vendor-676137bd83894d811967.js:2:63229)
at Container.get (vendor-676137bd83894d811967.js:2:58455)
at DIContainer.getServiceByClass (packages-b7dfb96b23bc285a7f4a.js:2:42400)
_validateActiveBindingCount @ vendor-676137bd83894d811967.js:2
_getActiveBindings @ vendor-676137bd83894d811967.js:2
_createSubRequests @ vendor-676137bd83894d811967.js:2
plan @ vendor-676137bd83894d811967.js:2
(anônimo) @ vendor-676137bd83894d811967.js:2
(anônimo) @ packages-b7dfb96b23bc285a7f4a.js:2
Container._get @ vendor-676137bd83894d811967.js:2
Container._getButThrowIfAsync @ vendor-676137bd83894d811967.js:2
Container.get @ vendor-676137bd83894d811967.js:2
getServiceByClass @ packages-b7dfb96b23bc285a7f4a.js:2
getServiceByClass @ packages-b7dfb96b23bc285a7f4a.js:2
useService @ packages-b7dfb96b23bc285a7f4a.js:2
useS @ packages-b7dfb96b23bc285a7f4a.js:2
DisplayError @ core-blocks-10bea75b05fe372d911c.js:2
(anônimo) @ vendor-676137bd83894d811967.js:2
(anônimo) @ vendor-676137bd83894d811967.js:2
trackDerivedFunction @ vendor-676137bd83894d811967.js:2
track @ vendor-676137bd83894d811967.js:2
useObserver @ vendor-676137bd83894d811967.js:2
DisplayError @ vendor-676137bd83894d811967.js:2
Xh @ vendor-676137bd83894d811967.js:2
dj @ vendor-676137bd83894d811967.js:2
cj @ vendor-676137bd83894d811967.js:2
aj @ vendor-676137bd83894d811967.js:2
Ia @ vendor-676137bd83894d811967.js:2
Vk @ vendor-676137bd83894d811967.js:2
Uk @ vendor-676137bd83894d811967.js:2
Jk @ vendor-676137bd83894d811967.js:2
Ok @ vendor-676137bd83894d811967.js:2
Hk @ vendor-676137bd83894d811967.js:2
J @ vendor-676137bd83894d811967.js:2
R @ vendor-676137bd83894d811967.js:2
Hi, I can open your host, and it works fine. The only issue that I noticed is that websocket is not connected (if you still get these errors after finishing the configuration, then you will probably need to configure nginx)
Also, I would strongly suggest not exposing your server globally before finishing the configuration.
Ok, I let the server for the night open and updating, and for some reason the dns flushed somehow and start working.
For the wss:// I will try to set it in nginx, but these is in my side.
Will close these as the problem is fixed somehow.
For doc about the issue here's is my config for who is having same issues in the future:
cloudbeaver.conf:
{
server: {
serverPort: 8978,
workspaceLocation: "workspace",
contentRoot: "web",
driversLocation: "drivers",
sslConfigurationPath:"${CLOUDBEAVER_SSL_CONF_PATH:workspace/.data/ssl-config.xml}",
rootURI: "/",
serviceURI: "/api/",
productSettings: {
# Global properties
core.theming.theme: 'light',
core.localization.localization: 'en',
plugin.sql-editor.autoSave: true,
plugin.sql-editor.disabled: false,
# max size of the file that can be uploaded to the editor (in kilobytes)
plugin.sql-editor.maxFileSize: 10240,
plugin.log-viewer.disabled: false,
plugin.log-viewer.logBatchSize: 1000,
plugin.log-viewer.maxFailedRequests: 3,
plugin.log-viewer.maxLogRecords: 2000,
plugin.log-viewer.refreshTimeout: 3000,
sql.proposals.insert.table.alias: PLAIN
},
expireSessionAfterPeriod: 1800000,
develMode: false,
enableSecurityManager: false,
sm: {
enableBruteForceProtection: "${CLOUDBEAVER_BRUTE_FORCE_PROTECTION_ENABLED:true}",
maxFailedLogin: "${CLOUDBEAVER_MAX_FAILED_LOGINS:10}",
minimumLoginTimeout: "${CLOUDBEAVER_MINIMUM_LOGIN_TIMEOUT:1}",
blockLoginPeriod: "${CLOUDBEAVER_BLOCK_PERIOD:300}",
passwordPolicy: {
minLength: "${CLOUDBEAVER_POLICY_MIN_LENGTH:8}",
requireMixedCase: "${CLOUDBEAVER_POLICY_REQUIRE_MIXED_CASE:true}",
minNumberCount: "${CLOUDBEAVER_POLICY_MIN_NUMBER_COUNT:1}",
minSymbolCount: "${CLOUDBEAVER_POLICY_MIN_SYMBOL_COUNT:0}"
}
},
database: {
driver: "h2_embedded_v2",
url: "jdbc:h2:${workspace}/.data/cb.h2v2.dat",
initialDataConfiguration: "conf/initial-data.conf",
pool: {
minIdleConnections: 4,
maxIdleConnections: 10,
maxConnections: 100,
validationQuery: "SELECT 1"
},
backupEnabled: "${CLOUDBEAVER_DB_BACKUP_ENABLED:true}"
}
},
app: {
anonymousAccessEnabled: true,
anonymousUserRole: "user",
defaultUserTeam: "user",
grantConnectionsAccessToAnonymousTeam: false,
supportsCustomConnections: false,
showReadOnlyConnectionInfo: false,
systemVariablesResolvingEnabled: "${CLOUDBEAVER_SYSTEM_VARIABLES_RESOLVING_ENABLED:false}",
forwardProxy: true,
publicCredentialsSaveEnabled: true,
adminCredentialsSaveEnabled: true,
resourceManagerEnabled: true,
resourceQuotas: {
dataExportFileSizeLimit: 10000000,
resourceManagerFileSizeLimit: 500000,
sqlMaxRunningQueries: 100,
sqlResultSetRowsLimit: 100000,
sqlResultSetMemoryLimit: 2000000,
sqlTextPreviewMaxLength: 4096,
sqlBinaryPreviewMaxLength: 261120
},
enabledAuthProviders: [
"local"
],
disabledDrivers: [
"sqlite:sqlite_jdbc",
"h2:h2_embedded",
"h2:h2_embedded_v2",
"clickhouse:yandex_clickhouse"
],
disabledBetaFeatures: [
]
}
}
docker-compose.yml:
services:
cloudbeaver:
container_name: cloudbeaver
tty: true
stdin_open: true
restart: always
volumes:
- ./cloudbeaver.conf:/opt/cloudbeaver/conf/cloudbeaver.conf
image: dbeaver/cloudbeaver
network_mode: host
nginx:
server {
listen 443 ssl;
server_name dbeaver.guikipt.pt;
ssl_certificate /etc/nginx/certs/fullchain.pem;
ssl_certificate_key /etc/nginx/certs/privkey.pem;
ssl_protocols TLSv1.2 TLSv1.3;
ssl_ciphers HIGH:!aNULL:!MD5;
location / {
proxy_pass http://localhost:8978;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
}
}
server {
listen 80;
server_name dbeaver.guikipt.pt;
return 301 https://$host$request_uri;
}
Nginx proxy is missing webshocket that I will make it now, can update these comment later.
thx for the help.
Update, solve the webshocket issues by updating my nginx config with
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
Final version:
server {
listen 443 ssl;
server_name dbeaver.guikipt.pt;
ssl_certificate /etc/nginx/certs/fullchain.pem;
ssl_certificate_key /etc/nginx/certs/privkey.pem;
ssl_protocols TLSv1.2 TLSv1.3;
ssl_ciphers HIGH:!aNULL:!MD5;
location / {
proxy_pass http://localhost:8978;
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
}
}
server {
listen 80;
server_name dbeaver.guikipt.pt;
return 301 https://$host$request_uri;
}
Thank you for your update!