I had to completely redo my reverse proxy (nginx) and now my dokuwiki doesn't want to let me log in.
I suspect there's something missing but can't figure out what.
accessing from both the domain/wiki address and the ip address I get :
L'authentification est temporairement indisponible. Si cela perdure, merci d'en informer l'administrateur du wiki.
No ACL setup yet! Denying access to everyone.
I updated to the latest available hotfix 49.5 (i think) and testing the site with acl at 0 and I was able to read/edit everthing (except admin panel) but now I really want to make it available to everyone else without edit enabled and it just does not work.
The moment I change acl to 1 I am locked out.
local.php file :
<?php
$conf['title'] = 'OPEQ';
$conf['start'] = 'Accueil';
$conf['lang'] = 'fr';
$conf['template'] = 'bootstrap3';
$conf['license'] = '';
$conf['basedir'] = '/wiki/';
$conf['baseurl'] = '
http://opeq.biz';
$conf['breadcrumbs'] = 20;
$conf['toptoclevel'] = '2';
$conf['camelcase'] = 1;
$conf['useacl'] = 1;
$conf['authtype'] = 'authad';
$conf['defaultgroup'] = 'wiki_users';
$conf['superuser'] = '@admin';
$conf['manager'] = '@wiki-manager';
$conf['disableactions'] = 'register,resendpwd,profile,profile_delete';
$conf['remoteuser'] = '@wiki';
$conf['htmlok'] = 1;
$conf['subscribers'] = 1;
$conf['autoplural'] = 1;
$conf['plugin']['dw2pdf']['pagesize'] = 'letter';
$conf['plugin']['dw2pdf']['output'] = 'browser';
$conf['plugin']['authad']['account_suffix'] = '@www';
$conf['plugin']['authad']['base_dn'] = 'DC=www';
$conf['plugin']['authad']['domain_controllers'] = 'ns.www';
$conf['plugin']['authad']['sso'] = 1;
$conf['plugin']['authad']['admin_username'] = 'wiki2ad';
$conf['plugin']['authad']['admin_password'] = 'stuff';
$conf['plugin']['translation']['translations'] = 'fr';
$conf['plugin']['translation']['translationns'] = 'wiki';
$conf['tpl']['bootstrap3']['useLocalBootswatch'] = 0;
[ETC (all 0 or empty)]
acl.auth.php file (without comments) :
* @ALL 1
* @user 4
* @admin 255
doku.php?do=check gave :
L'authentification est temporairement indisponible. Si cela perdure, merci d'en informer l'administrateur du wiki.
No ACL setup yet! Denying access to everyone.
More than 32MB RAM (134217728 bytes) available.
Changelog is writable
conf directory is writable
mb_string extension is available and will be used
Your locale C seems not to be a UTF-8 locale, you should fix this if you encounter problems.
Debugging support is disabled
You are currently not logged in
Your current permission for this page is 0
The current page is writable by the webserver
The current page is not writable by you
The search index seems to be working
Server time seems to be okay. Diff: 0s
NGINX conf :
server {
listen 80;
server_name www;
return 301 https://$host$request_uri;
}
server {
listen 443 ssl;
server_name www;
root /var/www/www;
index index.php index.html index.htm;
ssl on;
ssl_certificate /etc/ssl/certs/www.crt;
ssl_certificate_key /etc/ssl/private/www.key;
ssl_session_cache builtin:1000 shared:SSL:10m;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers HIGH:!aNULL:!eNULL:!EXPORT:!CAMELLIA:!DES:!MD5:!PSK:!RC4;
ssl_prefer_server_ciphers on;
access_log /var/log/nginx/opeq.access.log;
error_log /var/log/nginx/opeq.error.log;
location / {
try_files $uri $uri/ =404;
}
location ~ /\. {
deny all;
}
location /wiki/ {
proxy_pass
http://192.168.0.22:80/;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_redirect
http://192.168.0.22:80 https://192.168.0.22;
proxy_read_timeout 90;
}
}
I'm just running in circles right now, any help would be greatly apreciated...