Distributed Kaltura CE with SSL - I tried everything

guillem_liarte · September 29, 2021, 3:46pm

Hello.

I have a successful AIO installation with SSL.

I have a in infrastructure with different VMs doing each function. It is all by the book as explained in the RPM based instructions and in the Kaltura cluster instructions.

github.com

kaltura/platform-install-packages/blob/Propus-16.15.0/doc/rpm-cluster-deployment-instructions.md#the-mysql-database

# Deploying Kaltura Clusters

Below are **RPM** based instructions for deploying Kaltura Clusters.    
Refer to the [All-In-One Kaltura Server Installation Guide](install-kaltura-redhat-based.md) for more notes about deploying Kaltura in RPM supported environments.    

**Kaltura CE was just ported to CentOS/RHEL 8. Please note that this is a beta version and one must exercise judgement before deploying it to Prod ENVs.**

### Before You Get Started Notes
* If you see a `#` at the beginning of a line, this line should be run as `root`.
* Please review the [frequently answered questions](kaltura-packages-faq.md) document for general help before posting to the forums or issue queue.
* All post-install scripts accept answers-file as parameter, this can used for silent-automatic installs.
* For a cluster install, it is very important to pass an [answer file](kaltura.template.ans) to each script because otherwise, the MySQL 'kaltura' passwd is auto generated by the installer. This is fine for a standalone server but for a cluster, passwd must be the same on all. 
* [Kaltura Inc.](http://corp.kaltura.com) also provides commercial solutions and services including pro-active platform monitoring, applications, SLA, 24/7 support and professional services. If you're looking for a commercially supported video platform  with integrations to commercial encoders, streaming servers, eCDN, DRM and more - Start a [Free Trial of the Kaltura.com Hosted Platform](http://corp.kaltura.com/free-trial) or learn more about [Kaltura' Commercial OnPrem Edition™](http://corp.kaltura.com/Deployment-Options/Kaltura-On-Prem-Edition). For existing RPM based users, Kaltura offers commercial upgrade options.

### Instructions here are for a cluster with the following members:

* [Load Balancing](load_balancing.md)
* [NFS server](#the-nfs-server)
* [MySQL Database](#the-mysql-database)
* [Sphinx Indexing Nodes](#the-sphinx-indexing-server)

This file has been truncated. show original

I had a ‘working’ installation without SSL in the front and vod hosts, but some things like loging in were broken and stuff like playing videos too, I was having lots of CORS issues.

I wanted to reconfigure the installation to use SSL. Even dropping the DB and starting from scratch it does not work.

I keep getting stuck here:

#  curl -I $SERVICE_URL/api_v3/index.phpHTTP/1.1 200 OK
Date: Wed, 29 Sep 2021 15:04:29 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.2.34
X-Powered-By: PHP/7.2.34
Access-Control-Expose-Headers: Server, Content-Length, Content-Range, Date, X-Kaltura, X-Kaltura-Session, X-Me
Access-Control-Allow-Origin: *
Expires: Sun, 19 Nov 2000 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Kaltura-Session: 1117217145, 1632927869
X-Me: media.fetfilms.com
Content-Type: text/xml;charset=UTF-8


-----

Successfully dropped kaltura databases and users
CREATE USER kaltura;
CREATE USER etl;
CREATE DATABASE kaltura;
CREATE DATABASE kaltura_sphinx_log;
CREATE DATABASE kalturadw;
CREATE DATABASE kalturadw_ds;
CREATE DATABASE kalturadw_bisources;
CREATE DATABASE kalturalog;
Checking connectivity to needed daemons...
Connectivity test passed:)
Cleaning cache..
Populating DB with data.. please wait..
Output for /opt/kaltura/app/deployment/base/scripts/installPlugins.php being logged into /opt/kaltura/log/installPlugins.log 
Output for /opt/kaltura/app/deployment/base/scripts/insertDefaults.php being logged into /opt/kaltura/log/insertDefaults.log 
Output for /opt/kaltura/app/deployment/base/scripts/insertPermissions.php being logged into /opt/kaltura/log/insertPermissions.log 
Output for /opt/kaltura/app/deployment/base/scripts/insertContent.php being logged into /opt/kaltura/log/insertContent.log 


kaltura-db-config.sh FAILED with: 255 on line 207

Yes, all involved hosts are in the same IP range. And if I try that API call, it seems to be reachable.

What I see in the log is:

execution time for [https://media.xxxxx.com:443/api_v3/service/multirequest]: [0.4403760433197]
Executing failed for request #2 with error [User role not found]
PHP Fatal error:  Uncaught KalturaException: User role not found in /opt/kaltura/app/tests/standAloneClient/exec.php:351
Stack trace:
#0 {main}
  thrown in /opt/kaltura/app/tests/standAloneClient/exec.php on line 351

Yes, all hosts are in the same IP range, same network.

The answers file:

#Local TZ to be used by PHP code. Note that it MUST be the same as your DB TZ.
TIME_ZONE="Europe/Luxembourg"
# Apache port
KALTURA_VIRTUAL_HOST_PORT="443"
KALTURA_VIRTUAL_HOST_NAME="media.xxxx.com"
# host and port
KALTURA_FULL_VIRTUAL_HOST_NAME="$KALTURA_VIRTUAL_HOST_NAME:$KALTURA_VIRTUAL_HOST_PORT"
# operational DB user and passwd
DB1_NAME="kaltura"
DB1_USER="kaltura"
PROTOCOL="https"
SERVICE_URL="$PROTOCOL://$KALTURA_FULL_VIRTUAL_HOST_NAME"
SPHINX_SERVER1="sphinx1"
SPHINX_SERVER2="sphinx2"
SPHINX_DB_HOST="db-back1"
SPHINX_DB_PORT="3306"
# user name for the Kaltura Admin Console, MUST be in the form of an email
ADMIN_CONSOLE_ADMIN_MAIL="guillem.liarte@xxxxxx.com"
# passwd for the Kaltura Admin Console
ADMIN_CONSOLE_PASSWORD="xxxxxxx."
# for installs that have no remote CDN storage, use the same as $KALTURA_VIRTUAL_HOST_NAME
CDN_HOST="$KALTURA_VIRTUAL_HOST_NAME"
# display name used when sending the 'welcome' mail.
ENVIRONMENT_NAME="Video Platform for xxxxx."
# what web I/F would you want to enable, options:
# 0 - All web interfaces 
# 1 - Kaltura Management Console [KMC], Hosted Apps, HTML5 lib and ClipAp
# 2 - KAC - Kaltura Admin Console
CONFIG_CHOICE="0"
# are we working over SSL? needed since, if so, we perform cert validity checks
IS_SSL="y"
# allow the install scripts to send install data for analytics and support purposes:
# 1 - allow
# 0 - prevent
USER_CONSENT=0
# SSL cert path
#CRT_FILE=/etc/ssl/certs/localhost.crt
CRT_FILE=/opt/kaltura/web/ssl_certs/cert.pem
# SSL key path
#KEY_FILE=/etc/pki/tls/private/localhost.key
KEY_FILE=/opt/kaltura/web/ssl_certs/privkey.pem
# if such exists enter path here, otherwise leave as is.
CHAIN_FILE=/opt/kaltura/web/ssl_certs/chain.pem
# Operational DB MySQL 
DB1_HOST="db-back1"
# MySQL PORT 
DB1_PORT="3306"
# desired passwd, make it good.
DB1_PASS="YYYYYYYYY"
# analytics MySQL DB
DWH_HOST="db-back1"
# analytics MySQL port 
DWH_PORT="3306"
# analytics MySQL port 
DWH_PASS="YYYYYYYYY"
# MySQL super user, this is only used for bootstrap, the app itself will not connect with it.
SUPER_USER="root"
SUPER_USER_PASSWD="zzzzzzzzzzzz"
# For nginx packager module
VOD_PACKAGER_HOST="vod1"
VOD_PACKAGER_PORT="88"
# whether or not to configure Nginx over SSL
IS_NGINX_SSL="y"
# path to SSL cert 
# SSL_CERT
SSL_CERT=/opt/kaltura/web/ssl_certs/cert.pem
# path to SSL key
# SSL_KEY
SSL_KEY=/opt/kaltura/web/ssl_certs/privkey.pem
# NGINX SSL PORT - note, if you have Apache running over SSL as well and on port 443, do not select 443 here too
VOD_PACKAGER_SSL_PORT=8443
WWW_HOST="media.xxxxxxx.com"
# Range of ip addresses belonging to internal kaltura servers
# The range is used when checking service actions permissions and allowing to access certain services without KS from the internal servers.
# The default is only good for testing, on a production ENV you should adjust according to your network.
IP_RANGE="0.0.0.0.-255.255.255.255"
# Port to use with Nginx's RTMP module
RTMP_PORT=1935

I am really stuck, as the error does not mean much to me. It seems to be fine ( I see DBs created in the database ) , but it fails eventually in that same spot.

I really need help here

Thanks in advance.

guillem_liarte · September 30, 2021, 9:46am

I think I found a path to make it work, but it deviates from what kaltura deploys as files. Let me explain:

In /etc/httpd/conf.d there are two files that seem to work towards the SSL and the vhost for the front:

In ssl.conf we have a vhost:

This, if not set, will take the name of the hostname.

Then there is zzzkaltura.ssl.conf, which has a vhost that matches the one in the Kaltura configuration:

<VirtualHost media.xxxxxx.com:443>

The second file gets processed afterwards. So when we check:

# apachectl -S
VirtualHost configuration:
10.0.2.15:443          media.xxxxxxxx.com (/etc/httpd/conf.d/zzzkaltura.ssl.conf:23)
*:443                  thishost.domain.com (/etc/httpd/conf.d/ssl.conf:56)

When the name resolves internally it will use the hostname.

The way I can make this work is to COMBINE the two config files into one, and only use zzzkaltura.ssl.conf.

The question is: will this break with an upgrade?

EVERY TIME the front config runs, this will go back to ‘normal’. So the drill seem to run config, then rename and edit files. And then continue.

What would be the correct way to do this while staying in the Kaltura path and not have to deviate the configuration?

guillem_liarte · September 30, 2021, 9:57am

Well, while the SSL error goes away, the DB deployment script fails in the very same place as before, so while it is good to have the apache host issues solved, this does not fix the deployment. Same error:



kaltura-db-config.sh FAILED with: 255 on line 207

Archving logs to /opt/kaltura/log/log_30_09_21_11_52.tar.gz...
#

Queuing action [user.add]
Queuing action [partner.update]
Executing multirequest
service url: [https://media.fetfilms.com:443]
curl: https://media.fetfilms.com:443/api_v3/service/multirequest
post: {"format":"3","ignoreNull":true,"clientTag":"php5:21-04-29","apiVersion":"16.14.0","0":{"service":"userrole","action":"add","userRole":{"objectType":"KalturaUserRole","name":"Manager","systemName":"Manager","description":"Full control over publisher account functionalities","status":"1","permissionNames":"BASE_USER_SESSION_PERMISSION,WIDGET_SESSION_PERMISSION,KMC_ACCESS,KMC_READ_ONLY,CONTENT_INGEST_UPLOAD,CONTENT_INGEST_BULK_UPLOAD,CONTENT_INGEST_FEED,CONTENT_MANAGE_DISTRIBUTION_BASE,CONTENT_MANAGE_DISTRIBUTION_WHERE,CONTENT_MANAGE_DISTRIBUTION_SEND,CONTENT_MANAGE_DISTRIBUTION_REMOVE,CONTENT_MANAGE_DISTRIBUTION_PROFILE_MODIFY,CONTENT_MANAGE_VIRUS_SCAN,CONTENT_MANAGE_MIX,CONTENT_MANAGE_BASE,CONTENT_MANAGE_METADATA,CONTENT_MANAGE_ASSIGN_CATEGORIES,CONTENT_MANAGE_THUMBNAIL,CONTENT_MANAGE_SCHEDULE,CONTENT_MANAGE_ACCESS_CONTROL,CONTENT_MANAGE_CUSTOM_DATA,CONTENT_MANAGE_DELETE,CONTENT_MANAGE_RECONVERT,CONTENT_MANAGE_EDIT_CATEGORIES,CONTENT_MANAGE_ANNOTATION,CONTENT_MANAGE_SHARE,CONTENT_MANAGE_DOWNLOAD,LIVE_STREAM_ADD,LIVE_STREAM_UPDATE,CONTENT_MODERATE_BASE,CONTENT_MODERATE_METADATA,CONTENT_MODERATE_CUSTOM_DATA,CONTENT_MODERATE_APPROVE_REJECT,PLAYLIST_BASE,PLAYLIST_ADD,PLAYLIST_UPDATE,PLAYLIST_DELETE,SYNDICATION_BASE,SYNDICATION_ADD,SYNDICATION_UPDATE,SYNDICATION_DELETE,STUDIO_BASE,STUDIO_ADD_UICONF,STUDIO_UPDATE_UICONF,STUDIO_DELETE_UICONF,ACCOUNT_BASE,INTEGRATION_BASE,ACCESS_CONTROL_BASE,ACCESS_CONTROL_ADD,ACCESS_CONTROL_UPDATE,ACCESS_CONTROL_DELETE,TRANSCODING_BASE,TRANSCODING_ADD,TRANSCODING_UPDATE,TRANSCODING_DELETE,CUSTOM_DATA_PROFILE_BASE,CUSTOM_DATA_PROFILE_ADD,CUSTOM_DATA_PROFILE_UPDATE,CUSTOM_DATA_PROFILE_DELETE,CUSTOM_DATA_FIELD_ADD,CUSTOM_DATA_FIELD_UPDATE,CUSTOM_DATA_FIELD_DELETE,ANALYTICS_BASE,WIDGET_ADMIN,SEARCH_SERVICE,ANALYTICS_SEND_DATA,AUDIT_TRAIL_BASE,AUDIT_TRAIL_ADD,ADVERTISING_BASE,ADVERTISING_UPDATE_SETTINGS,PLAYLIST_EMBED_CODE,STUDIO_BRAND_UICONF,STUDIO_SELECT_CONTENT,CONTENT_MANAGE_EMBED_CODE,PLAYLIST_EMBED_CODE","tags":"kmc"},"ks":"NmFmOTZmYWUwYzRmZjE4MjJjMzJjZWRjNTdiZDFmYmJlMDExYzVlOXw5OTs5OTsxNjMzMDgxOTUzOzI7MTg3MTI7Ow=="},"1":{"service":"user","action":"add","user":{"objectType":"KalturaUser","isAdmin":"1","roleIds":"2","id":"template@kaltura.com","screenName":"template@kaltura.com","fullName":"Template Partner","email":"template@kaltura.com","status":"1"},"ks":"NmFmOTZmYWUwYzRmZjE4MjJjMzJjZWRjNTdiZDFmYmJlMDExYzVlOXw5OTs5OTsxNjMzMDgxOTUzOzI7MTg3MTI7Ow=="},"2":{"service":"partner","action":"update","partner":{"objectType":"KalturaPartner","adminUserId":"template@kaltura.com"},"allowEmpty":false,"ks":"NmFmOTZmYWUwYzRmZjE4MjJjMzJjZWRjNTdiZDFmYmJlMDExYzVlOXw5OTs5OTsxNjMzMDgxOTUzOzI7MTg3MTI7Ow=="},"kalsig":"f3380ba4960d1c4c18f0cf312c09c848"}
PHP Fatal error:  Uncaught KalturaException: User role not found in /opt/kaltura/app/tests/standAloneClient/exec.php:351
Stack trace:
#0 {main}
  thrown in /opt/kaltura/app/tests/standAloneClient/exec.php on line 351
server: [media.fetfilms.com], session: [93779730, 1632995553]
result (serialized): a:3:{i:0;O:15:"KalturaUserRole":10:{s:2:"id";i:241;s:4:"name";s:7:"Manager";s:10:"systemName";s:7:"Manager";s:11:"description";s:51:"Full control over publisher account functionalities";s:6:"status";i:1;s:9:"partnerId";i:99;s:15:"permissionNames";s:1657:"BASE_USER_SESSION_PERMISSION,WIDGET_SESSION_PERMISSION,KMC_ACCESS,KMC_READ_ONLY,CONTENT_INGEST_UPLOAD,CONTENT_INGEST_BULK_UPLOAD,CONTENT_INGEST_FEED,CONTENT_MANAGE_DISTRIBUTION_BASE,CONTENT_MANAGE_DISTRIBUTION_WHERE,CONTENT_MANAGE_DISTRIBUTION_SEND,CONTENT_MANAGE_DISTRIBUTION_REMOVE,CONTENT_MANAGE_DISTRIBUTION_PROFILE_MODIFY,CONTENT_MANAGE_VIRUS_SCAN,CONTENT_MANAGE_MIX,CONTENT_MANAGE_BASE,CONTENT_MANAGE_METADATA,CONTENT_MANAGE_ASSIGN_CATEGORIES,CONTENT_MANAGE_THUMBNAIL,CONTENT_MANAGE_SCHEDULE,CONTENT_MANAGE_ACCESS_CONTROL,CONTENT_MANAGE_CUSTOM_DATA,CONTENT_MANAGE_DELETE,CONTENT_MANAGE_RECONVERT,CONTENT_MANAGE_EDIT_CATEGORIES,CONTENT_MANAGE_ANNOTATION,CONTENT_MANAGE_SHARE,CONTENT_MANAGE_DOWNLOAD,LIVE_STREAM_ADD,LIVE_STREAM_UPDATE,CONTENT_MODERATE_BASE,CONTENT_MODERATE_METADATA,CONTENT_MODERATE_CUSTOM_DATA,CONTENT_MODERATE_APPROVE_REJECT,PLAYLIST_BASE,PLAYLIST_ADD,PLAYLIST_UPDATE,PLAYLIST_DELETE,SYNDICATION_BASE,SYNDICATION_ADD,SYNDICATION_UPDATE,SYNDICATION_DELETE,STUDIO_BASE,STUDIO_ADD_UICONF,STUDIO_UPDATE_UICONF,STUDIO_DELETE_UICONF,ACCOUNT_BASE,INTEGRATION_BASE,ACCESS_CONTROL_BASE,ACCESS_CONTROL_ADD,ACCESS_CONTROL_UPDATE,ACCESS_CONTROL_DELETE,TRANSCODING_BASE,TRANSCODING_ADD,TRANSCODING_UPDATE,TRANSCODING_DELETE,CUSTOM_DATA_PROFILE_BASE,CUSTOM_DATA_PROFILE_ADD,CUSTOM_DATA_PROFILE_UPDATE,CUSTOM_DATA_PROFILE_DELETE,CUSTOM_DATA_FIELD_ADD,CUSTOM_DATA_FIELD_UPDATE,CUSTOM_DATA_FIELD_DELETE,ANALYTICS_BASE,WIDGET_ADMIN,SEARCH_SERVICE,ANALYTICS_SEND_DATA,AUDIT_TRAIL_BASE,AUDIT_TRAIL_ADD,ADVERTISING_BASE,ADVERTISING_UPDATE_SETTINGS,PLAYLIST_EMBED_CODE,STUDIO_BRAND_UICONF,STUDIO_SELECT_CONTENT,CONTENT_MANAGE_EMBED_CODE,PLAYLIST_EMBED_CODE";s:4:"tags";s:3:"kmc";s:9:"createdAt";i:1632995554;s:9:"updatedAt";i:1632995554;}i:1;a:4:{s:4:"code";s:19:"USER_ROLE_NOT_FOUND";s:7:"message";s:19:"User role not found";s:10:"objectType";s:19:"KalturaAPIException";s:4:"args";a:0:{}}i:2;a:4:{s:4:"code";s:22:"INTERNAL_SERVERL_ERROR";s:7:"message";s:30:"Internal server error occurred";s:10:"objectType";s:19:"KalturaAPIException";s:4:"args";a:0:{}}}
result (object dump): Array
(
    [0] => KalturaUserRole Object
        (
            [id] => 241
            [name] => Manager
            [systemName] => Manager
            [description] => Full control over publisher account functionalities
            [status] => 1
            [partnerId] => 99
            [permissionNames] => BASE_USER_SESSION_PERMISSION,WIDGET_SESSION_PERMISSION,KMC_ACCESS,KMC_READ_ONLY,CONTENT_INGEST_UPLOAD,CONTENT_INGEST_BULK_UPLOAD,CONTENT_INGEST_FEED,CONTENT_MANAGE_DISTRIBUTION_BASE,CONTENT_MANAGE_DISTRIBUTION_WHERE,CONTENT_MANAGE_DISTRIBUTION_SEND,CONTENT_MANAGE_DISTRIBUTION_REMOVE,CONTENT_MANAGE_DISTRIBUTION_PROFILE_MODIFY,CONTENT_MANAGE_VIRUS_SCAN,CONTENT_MANAGE_MIX,CONTENT_MANAGE_BASE,CONTENT_MANAGE_METADATA,CONTENT_MANAGE_ASSIGN_CATEGORIES,CONTENT_MANAGE_THUMBNAIL,CONTENT_MANAGE_SCHEDULE,CONTENT_MANAGE_ACCESS_CONTROL,CONTENT_MANAGE_CUSTOM_DATA,CONTENT_MANAGE_DELETE,CONTENT_MANAGE_RECONVERT,CONTENT_MANAGE_EDIT_CATEGORIES,CONTENT_MANAGE_ANNOTATION,CONTENT_MANAGE_SHARE,CONTENT_MANAGE_DOWNLOAD,LIVE_STREAM_ADD,LIVE_STREAM_UPDATE,CONTENT_MODERATE_BASE,CONTENT_MODERATE_METADATA,CONTENT_MODERATE_CUSTOM_DATA,CONTENT_MODERATE_APPROVE_REJECT,PLAYLIST_BASE,PLAYLIST_ADD,PLAYLIST_UPDATE,PLAYLIST_DELETE,SYNDICATION_BASE,SYNDICATION_ADD,SYNDICATION_UPDATE,SYNDICATION_DELETE,STUDIO_BASE,STUDIO_ADD_UICONF,STUDIO_UPDATE_UICONF,STUDIO_DELETE_UICONF,ACCOUNT_BASE,INTEGRATION_BASE,ACCESS_CONTROL_BASE,ACCESS_CONTROL_ADD,ACCESS_CONTROL_UPDATE,ACCESS_CONTROL_DELETE,TRANSCODING_BASE,TRANSCODING_ADD,TRANSCODING_UPDATE,TRANSCODING_DELETE,CUSTOM_DATA_PROFILE_BASE,CUSTOM_DATA_PROFILE_ADD,CUSTOM_DATA_PROFILE_UPDATE,CUSTOM_DATA_PROFILE_DELETE,CUSTOM_DATA_FIELD_ADD,CUSTOM_DATA_FIELD_UPDATE,CUSTOM_DATA_FIELD_DELETE,ANALYTICS_BASE,WIDGET_ADMIN,SEARCH_SERVICE,ANALYTICS_SEND_DATA,AUDIT_TRAIL_BASE,AUDIT_TRAIL_ADD,ADVERTISING_BASE,ADVERTISING_UPDATE_SETTINGS,PLAYLIST_EMBED_CODE,STUDIO_BRAND_UICONF,STUDIO_SELECT_CONTENT,CONTENT_MANAGE_EMBED_CODE,PLAYLIST_EMBED_CODE
            [tags] => kmc
            [createdAt] => 1632995554
            [updatedAt] => 1632995554
            [relatedObjects] => 
        )

    [1] => Array
        (
            [code] => USER_ROLE_NOT_FOUND
            [message] => User role not found
            [objectType] => KalturaAPIException
            [args] => Array
                (
                )

        )

    [2] => Array
        (
            [code] => INTERNAL_SERVERL_ERROR
            [message] => Internal server error occurred
            [objectType] => KalturaAPIException
            [args] => Array
                (
                )

        )

)

execution time for [https://media.fetfilms.com:443/api_v3/service/multirequest]: [0.46040487289429]
Executing failed for request #2 with error [User role not found]

Everything seems to be fine up to that point.

guillem_liarte · September 30, 2021, 9:59am

Of course with no setup I get to this:
Screenshot_20210930_115727

guillem_liarte · September 30, 2021, 10:42am

I enabled logging at Db , I just see this at the end:

233 Query /* ndoamsel114.xxxxxx.online[747937686][propel] */ SELECT permission.ID, permission.TYPE, permission.NAME, permission.FRIENDLY_NAME, permission.DESCRIPTION, permission.PARTNER_ID, permission.STATUS, permission.DEPENDS_ON_PERMISSION_NAMES, permission.TAGS, permission.CREATED_AT, permission.UPDATED_AT, permission.CUSTOM_DATA FROM `permission` WHERE permission.PARTNER_ID IN (99,0) AND permission.NAME IN ('FEATURE_END_USER_REPORTS','FEATURE_ENTITLEMENT') AND permission.STATUS=1 GROUP BY permission.NAME 233 Query /* ndoamsel114.xxxxxxx.online[747937686][propel] */ SELECT partner.ID, partner.PARTNER_NAME, partner.PARTNER_ALIAS, partner.URL1, partner.URL2, partner.SECRET, partner.ADMIN_SECRET, partner.MAX_NUMBER_OF_HITS_PER_DAY, partner.APPEAR_IN_SEARCH, partner.DEBUG_LEVEL, partner.CREATED_AT, partner.UPDATED_AT, partner.ANONYMOUS_KUSER_ID, partner.KS_MAX_EXPIRY_IN_SECONDS, partner.CREATE_USER_ON_DEMAND, partner.PREFIX, partner.ADMIN_NAME, partner.ADMIN_EMAIL, partner.DESCRIPTION, partner.COMMERCIAL_USE, partner.MODERATE_CONTENT, partner.NOTIFY, partner.CUSTOM_DATA, partner.SERVICE_CONFIG_ID, partner.STATUS, partner.CONTENT_CATEGORIES, partner.TYPE, partner.PHONE, partner.DESCRIBE_YOURSELF, partner.ADULT_CONTENT, partner.PARTNER_PACKAGE, partner.USAGE_PERCENT, partner.STORAGE_USAGE, partner.EIGHTY_PERCENT_WARNING, partner.USAGE_LIMIT_WARNING, partner.MONITOR_USAGE, partner.PRIORITY_GROUP_ID, partner.PARTNER_GROUP_TYPE, partner.PARTNER_PARENT_ID, partner.KMC_VERSION FROM `partner` WHERE partner.ID=99 233 Query /* ndoamsel114.xxxxxxx.online[747937686][propel] */ SELECT kuser.ID, kuser.LOGIN_DATA_ID, kuser.IS_ADMIN, kuser.SCREEN_NAME, kuser.FULL_NAME, kuser.FIRST_NAME, kuser.LAST_NAME, kuser.EMAIL, kuser.SHA1_PASSWORD, kuser.SALT, kuser.DATE_OF_BIRTH, kuser.COUNTRY, kuser.STATE, kuser.CITY, kuser.ZIP, kuser.URL_LIST, kuser.PICTURE, kuser.ICON, kuser.ABOUT_ME, kuser.TAGS, kuser.TAGLINE, kuser.NETWORK_HIGHSCHOOL, kuser.NETWORK_COLLEGE, kuser.NETWORK_OTHER, kuser.MOBILE_NUM, kuser.MATURE_CONTENT, kuser.GENDER, kuser.REGISTRATION_IP, kuser.REGISTRATION_COOKIE, kuser.IM_LIST, kuser.VIEWS, kuser.FANS, kuser.ENTRIES, kuser.STORAGE_SIZE, kuser.PRODUCED_KSHOWS, kuser.STATUS, kuser.CREATED_AT, kuser.UPDATED_AT, kuser.PARTNER_ID, kuser.DISPLAY_IN_SEARCH, kuser.PARTNER_DATA, kuser.PUSER_ID, kuser.ADMIN_TAGS, kuser.INDEXED_PARTNER_DATA_INT, kuser.INDEXED_PARTNER_DATA_STRING, kuser.CUSTOM_DATA, kuser.TYPE FROM `kuser` WHERE kuser.PARTNER_ID=99 AND kuser.PUSER_ID='template@kaltura.com' AND kuser.STATUS<>2 ORDER BY kuser.UPDATED_AT DESC LIMIT 1 233 Query /* ndoamsel114.xxxxxxx.online[747937686][propel] */ SELECT kuser_to_user_role.ID, kuser_to_user_role.KUSER_ID, kuser_to_user_role.USER_ROLE_ID, kuser_to_user_role.CREATED_AT, kuser_to_user_role.UPDATED_AT FROM `kuser_to_user_role` WHERE kuser_to_user_role.KUSER_ID=3 234 Quit 233 Quit 228 Quit

guillem_liarte · September 30, 2021, 1:21pm

OK so I managed to move on by:

Adding both port 80 and 443.
Commenting out most of the entries in ssl.conf and, making sure there is no _default_ vhost.

I am not sure if this will break during upgrades, possibly.

Can someone validate it?

Shall I put the files here?