Hoi,
may we able to solve it as I have found something.
I definitely read Authentication options outside of a private network but that is not was concerns me. It is rather the point where I started (I reckon so).
I assume that I found something in the docs related to the combination of docker, proxy configuration, redirect and full authentication. I searched everywhere yesterday but only found:
-
MM-4576 - Mattermost generates wrong redirect uri for GitLab SSO authentication
-
Mattermost generates wrong redirect uri for SSO authentication #3944
So my question is.
If I use one out of following proxies
deployed via independent docker images. Will this have any impact on the functionality on MM?
According to MatterMost behind reverse proxy it seems to feasible.
Just thinking out loud about sockets, as I properly read to much about it. Moreover, as I use this approach on my private server.
Would be there any advantage, running WebSocket over UNIX sockets as UNIX sockets are subject to file system permissions what is easier to manage from an administrator perspective of view.
I don’t think it currently possible. It looks that you can expose UNIX Sockets in Docker (Can docker port forward to a unix file socket on the host container? & Use Unix sockets with Docker). It seems supported by some solutions WebSocket over AF_UNIX socket but may not by all browser although there is quite an old Mozilla discussion.
Ensuring that anyone reading this has the same understanding, these things are well explained on:
- WebSocket Vs Socket.Io
- What’s the difference between Unix socket and TCP/IP socket?
- Differences between TCP sockets and web sockets, one more time [duplicate]
thx
stefan