Install Flowfuse, setting up TLS for sslip.io

i use docker-compose.yaml file from github main branch https://github.com/FlowFuse/docker-compose/
i use below command to start

DOMAIN=192.100.0.101.sslip.io docker-compose -p flowfuse up
in .env i set

TLS_ENABLED=true
TLS_CERTIFICATE= <self signed>
TLS_KEY=<self signed>

when i browse https://forge.192.100.0.101.sslip.io , i get error 500 Internal Server Error, nginx/1.27.0 , http is no issue. may i know how to fix this? i'm ok to use self signed cert as my ip is not publicly accessible.

in docker logs for nginx

nginx-1        | nginx.1     | localhost 127.0.0.1 - - [11/Apr/2025:03:17:55 +0000] "HEAD / HTTP/1.1" 503 0 "-" "curl/7.88.1" "-"
nginx-1        | nginx.1     | forge.192.100.0.101.sslip.io 172.18.0.1 - - [11/Apr/2025:03:17:56 +0000] "GET / HTTP/2.0" 500 579 "-" "Mozilla/5.0 (<privacy hidden>) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36" "-"
nginx-1        | nginx.1     | forge.192.100.0.101.sslip.io 172.18.0.1 - - [11/Apr/2025:03:17:56 +0000] "GET /favicon.ico HTTP/2.0" 500 579 "https://forge.192.100.0.101.sslip.io/" "Mozilla/5.0 (<privacy hidden>) <privacy hidden>/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36" "-"

do i need to set env DOCKER_DRIVER_PRIVATE_CA_PATH when using self signed TLS ?

Yes, if using self signed certs you will need to configure the DOCKER_DRIVER_PRIVATE_CA_PATH because the Node-RED instances need to know to trust the CA in order to complete Authentication.

You will need to suspend/restart any instances after making the change

But the 500 error trying to access the forge application, does implie some other problems.

I would start by looking at the logs from other pods (specifically the forge app pod)

There was a problem with the very latest docker compose release from docker that means that the PostgreSQL database doesn't start properly, this was fixed in the release yesterday.

This topic was automatically closed 90 days after the last reply. New replies are no longer allowed.