Page 1 of 1
How to access profilelist (with SSL and user/passwd)?
Posted: Tue Apr 30, 2024 2:41 pm
by tukan
Hi all,
I would like to access the JSON file, which gives the job(s) results with SSL and user/password turned on. It works correctly when SSL and user/password are switched off.
I have tried to access the resource via:
https://<user>:<password>@<localaddress>:8999/profilelist.json
That did not work out. I get the following message:
Code: Select all
[
{
"error": "Authentication Required"
}
]
Is there a different way to access securely the information? The JSON file will server as input for Zabbix monitoring server.
Thank you.
Re: How to access profilelist (with SSL and user/passwd)?
Posted: Tue Apr 30, 2024 3:11 pm
by tobias
Hello,
difficult question, I think I need to make a Syncovery update for this requirement!
I will check it out this week.
Re: How to access profilelist (with SSL and user/passwd)?
Posted: Wed May 01, 2024 8:54 am
by tukan
tobias wrote: Tue Apr 30, 2024 3:11 pm
Hello,
difficult question, I think I need to make a Syncovery update for this requirement!
I will check it out this week.
I thought so because I tried everything that I could think of (like login first and then try to access the json file). Thank you for improving Syncovery!
Re: How to access profilelist (with SSL and user/passwd)?
Posted: Mon May 06, 2024 10:33 am
by tobias
Hello,
I won't be able to change the behavior soon. But you can whitelist your monitoring server's IP address so that you don't need authentication for the profile list.
Just add this to Syncovery.ini:
SkipProfileListAuthForIP=192.168.12.58
(change the IP as needed)
Re: How to access profilelist (with SSL and user/passwd)?
Posted: Mon May 13, 2024 7:42 am
by tukan
tobias wrote: Mon May 06, 2024 10:33 am
Hello,
I won't be able to change the behavior soon. But you can whitelist your monitoring server's IP address so that you don't need authentication for the profile list.
Just add this to Syncovery.ini:
SkipProfileListAuthForIP=192.168.12.58
(change the IP as needed)
That workaround could somewhat work. However, as we have a shared VLAN at the physical hosting, in the end we would need to have the SSL.
In what section does the `SkipProfileListAuthForIP=<ipv4>` go? I have tried both [WebServer] and [Main] and it does not seem to do anything (under the latest Syncovery 10.14.8).
I have kept all settings the same.
IP Address: <internal ipv4>
port Numbers: 8999 with SSL/TLS checked
User Name: and Password: filled
Wtih SSL Certficate File: filled
Private Key File: filled
Key/Cert Password: filled
Checkbox "Enforce SSL/TLS except from localhost" unchecked
It does not seem to work for me. I'm still getting auth required.
Re: How to access profilelist (with SSL and user/passwd)?
Posted: Mon May 13, 2024 8:54 am
by tobias
Hi,
SkipProfileListAuthForIP goes in the [Main] section.
You need to specify the IP address from which the HTTP request will arrive. The IP address that the Syncovery web server sees as the origin of the HTTP request. It definitely works.
As a temporary test you can also disable authentication for profilelist.json completely with this line:
SkipProfileListAuth=1