owncloud full build ( collabora, onlyoffice) with keycloak.

[arsalaaan]

Hi there,
Can someone please help me build ocis_full (collabora, onlyoffice etc) with ocis_keycloak. I tried alot to merge both build but owncloud keeps buffering and do not redirect to keycloak. However. when i tried to merge ocis_full into keycloak, then only office does not work.
One more issue is that I'm unable to install my own SSL into traefik.

traefik-1 | time="2024-10-29T18:59:03Z" level=error msg="Unable to obtain ACME certificate for domains \"c.mydomain.com\": unable to generate a certificate for the domains [c.mydomain.com]: error: one or more domains had a problem:\n[c.mydomain.com] acme: error: 403 :: urn:ietf:params:acme:error:unauthorized :: 1.2.3.4: Invalid response from http://c.mydomain.com/.well-known/acme-challenge/7SJ-5dIt_kg_-n9PU4Tb_gAEHyYYBCEHnj6CyqjFmDM: 403\n" rule="Host(c.mydomain.com)" ACME CA="https://acme-v02.api.letsencrypt.org/directory" providerName=http.acme routerName=ocis@docker traefik-1 | time="2024-10-29T18:59:05Z" level=error msg="Unable to obtain ACME certificate for domains \"kc.mydomain.com\": unable to generate a certificate for the domains [kc.mydomain.com]: error: one or more domains had a problem:\n[kc.mydomain.com] acme: error: 403 :: urn:ietf:params:acme:error:unauthorized :: 1.2.3.4: Invalid response from http://kc.mydomain.com/.well-known/acme-challenge/G3kCJArQvmY8klpuFchZFygXd_KTZOFYJLiHs6ol4jE: 403\n" routerName=keycloak@docker rule="Host(kc.mydomain.com)" providerName=http.acme ACME CA="https://acme-v02.api.letsencrypt.org/directory"

note: mydomain.com and 1.2.3.4 is just example here, I'm using actual domain, with record already published.

When I merge keycloak with collabora, wopi, onlyoffice. ( I tried to open keycloak first and proceed to unsafe as i can't install SSL but no luck)

[mmattel]

@arsalaaan I would split things into two steps:

1. Follow the admin docs for the compose setup. This works great.
2. Adapt the setting to use Keykloak.
   Here, I would recommend you to ask for support in https://central.owncloud.org or https://talk.owncloud.com/channel/infinitescale

IMPORTANT: The compose description is currently reworked, no worry. We are currently referencing rolling releases and close to a new v7 to be published soon. The changes mainly address updating and upgrading. With v7, switch docs to 7.0 and you will get updated compose files providing new web features that can be enabled.

[arsalaaan]

Hi @mmattel ,
Thanks for your reply,
you shared only owncloud setup on server. I need to setup owncloud with collabora, onlyoffice, wopi, and keycloak on server.
Is there any SOP to do it. I tried to merge both build but didn't work.

[mmattel]

If I am not mistaken, the intro of the referenced doc says:

...
Install Infinite Scale using Docker Compose on a server for production use. The aim of this guide is to be up and running as fast as possible using a deployment setup that includes Infinite Scale and web office applications for document collaboration for home usage or small businesses. It also uses valid certificates from Letsencrypt.
...

You can configure Collabora and/or OnlyOffice or none of them to be available. Pls give it a try and follow the guide.

THEN do the next step using Keycloak - which is out of scope of that document. You need additional/changed settings in ocis.yaml that cant be provided as things are VERY setup dependent. You can have a look into the keycloak example in the ocis repo for refernce which changes need to be done you can derive from.

[arsalaaan]

Hi There,

I've fixed all the issues, only ocis-rolling working for both keycloak and full. Now I want to change onlyoffice to enterprise. can someone please let me know how to upgrade license.

[mmattel]

@arsalaaan great to hear that you configured Infinite Scale to work with Keycloak 😄

Though I have not tested this, I dont have an oo-ee license at my hand, using ee should not be a big issue. In onlyoffice.yml, you need to change the image
from onlyoffice/documentserver:8.2.0 to onlyoffice/documentserver-ee:8.2.0
Then you need to add a volume to provide your license (license.lic) file. To do so see Registering your Enterprise Edition version.

[arsalaaan]

Hi There,

I'm unable to use onlyoffice in ocis_full build. only collabora is working. I'm getting the following error in onlyoffice.

/var/log/onlyoffice/documentserver/docservice/err.log

[2024-11-06T19:21:15.239] [ERROR] [localhost] [7eab2cf8040e9d32eb640c0c64136c5f13677c3f8cdeb434ac6382a6e20c585a] [userId] nodeJS - wopi error LOCK:Error: Error response: statusCode:409; headers:{"content-length":"0","date":"Wed, 06 Nov 2024 19:21:15 GMT","x-collaboration.onlyoffice-version":"6.6.1","x-request-id":"329599a980b9/OIbFUaGBth-000006","x-wopi-lock":"cool-lockf93d2c27","x-wopi-lockfailurereason":"Conflicting LockID"}; body:

    at Request._callback (/snapshot/server/Common/sources/utils.js)
    at Request.callback (/snapshot/server/Common/node_modules/request/request.js:185:22)
    at Request.emit (node:events:527:28)
    at Request.<anonymous> (/snapshot/server/Common/node_modules/request/request.js:1161:10)
    at Request.emit (node:events:527:28)
    at IncomingMessage.<anonymous> (/snapshot/server/Common/node_modules/request/request.js:1083:12)
    at Object.onceWrapper (node:events:641:28)
    at IncomingMessage.emit (node:events:539:35)
    at endReadableNT (node:internal/streams/readable:1345:12)
    at processTicksAndRejections (node:internal/process/task_queues:83:21)