Connect Server is not working
There is something weird going on with Connect Server and I just cannot figure it out.
I've tried to use 1password-api and 1password-connect on my M1 MacBook Air, but I've found out here https://1password.community/discussion/120790/connect-server-is-not-working that arm64 containers are still in making and that I should deploy it somewhere else.
So I did, on a clean VM with Ubuntu 2.04 LTS on it. However, when I try using it with an Ansible Playbook, I get the connection error.
Here is a sample playbook:
--- - hosts: localhost environment: OP_VAULT: "<snip>" OP_CONNECT_HOST: http://x.x.x.x:8080 OP_CONNECT_TOKEN: "<snip>" collections: - onepassword.connect tasks: - onepassword.connect.generic_item: vault_id: "<snip>" title: Test Item state: present fields: - label: Some Label value: "the value" section: "Personal Info" field_type: concealed
Here are the logs produced by both docker containers with OP_LOG_LEVEL=DEBUG
** op-connect-api**
{"log_message":"(I) GET /v1/vaults/mer2xbe63jgxjpshafbrmqjmxi/items?filter=title+eq+%22Test+Item%22","timestamp":"2021-09-15T11:15:44.745168018Z","level":3,"scope":{"request_id":"7c9a9a0c-bd99-4b54-a067-89ddd2f4c7a5"}} {"log_message":"(I) notifying syncer of new token","timestamp":"2021-09-15T11:15:44.745290185Z","level":3,"scope":{"request_id":"7c9a9a0c-bd99-4b54-a067-89ddd2f4c7a5","jti":"6fptsyxcmccarzamajeyjltbt4"}} {"log_message":"(D) Unable to find existing span for request 7c9a9a0c-bd99-4b54-a067-89ddd2f4c7a5","timestamp":"2021-09-15T11:15:44.745496238Z","level":4,"scope":{"request_id":"7c9a9a0c-bd99-4b54-a067-89ddd2f4c7a5","jti":"6fptsyxcmccarzamajeyjltbt4"}} {"log_message":"(D) sending message e8acfc63-e9a3-4769-a7e5-6743e41d8907 to befcf843-1559-48f8-bdc9-4f95f4655851","timestamp":"2021-09-15T11:15:44.745577717Z","level":4} {"log_message":"(D) [transport-websocket] sending message to connection befcf843-1559-48f8-bdc9-4f95f4655851","timestamp":"2021-09-15T11:15:44.74561841Z","level":4} {"log_message":"(I) awaiting healthy syncer before continuing","timestamp":"2021-09-15T11:15:44.745715798Z","level":3,"scope":{"request_id":"7c9a9a0c-bd99-4b54-a067-89ddd2f4c7a5","jti":"6fptsyxcmccarzamajeyjltbt4"}} {"log_message":"(D) [transport-websocket] sent message to connection befcf843-1559-48f8-bdc9-4f95f4655851","timestamp":"2021-09-15T11:15:44.746276994Z","level":4} {"log_message":"(D) [discovery-local] potential peer found: 172.18.0.2","timestamp":"2021-09-15T11:15:52.223802915Z","level":4} {"log_message":"(D) encountered duplicate connection, discarding","timestamp":"2021-09-15T11:15:52.223839148Z","level":4} {"log_message":"(D) [discovery-local] potential peer found: 172.18.0.3","timestamp":"2021-09-15T11:15:52.276250024Z","level":4} {"log_message":"(D) discovered self, discarding","timestamp":"2021-09-15T11:15:52.276338202Z","level":4} {"log_message":"(D) [discovery-local] potential peer found: 172.18.0.3","timestamp":"2021-09-15T11:15:52.276366864Z","level":4} {"log_message":"(D) discovered self, discarding","timestamp":"2021-09-15T11:15:52.276381404Z","level":4} {"log_message":"(D) post-handler contenttype: ","timestamp":"2021-09-15T11:15:54.74694378Z","level":4,"scope":{"request_id":"7c9a9a0c-bd99-4b54-a067-89ddd2f4c7a5","jti":"6fptsyxcmccarzamajeyjltbt4"}} {"log_message":"(D) setting auto-detected contenttype: application/json","timestamp":"2021-09-15T11:15:54.746969165Z","level":4,"scope":{"request_id":"7c9a9a0c-bd99-4b54-a067-89ddd2f4c7a5","jti":"6fptsyxcmccarzamajeyjltbt4"}} {"log_message":"(I) GET /v1/vaults/mer2xbe63jgxjpshafbrmqjmxi/items?filter=title+eq+%22Test+Item%22 completed (408: Request Timeout)","timestamp":"2021-09-15T11:15:54.746984742Z","level":3,"scope":{"request_id":"7c9a9a0c-bd99-4b54-a067-89ddd2f4c7a5","jti":"6fptsyxcmccarzamajeyjltbt4"}}
op-sync
{"log_message":"(I) starting 1Password Connect Sync ...","timestamp":"2021-09-15T10:56:26.000420952Z","level":3} {"log_message":"(I) serving on :8080","timestamp":"2021-09-15T10:56:26.000449483Z","level":3} {"log_message":"(I) database initialization complete","timestamp":"2021-09-15T10:56:26.000999023Z","level":3} {"log_message":"(I) ### syncer credentials bootstrap ### ","timestamp":"2021-09-15T10:56:26.001320225Z","level":3} {"log_message":"(I) token received, getting credentials and initializing API","timestamp":"2021-09-15T10:57:05.711780069Z","level":3} {"log_message":"(E) Server: (unable to get credentials and initialize API, retrying in 500ms), Wrapped: (failed to NewAPI), Authentication: (failed to SigninWithCredentials), Wrapped: (failed to auth.LookupAuth), Network: (failed to request.DoUnencrypted), Get \"https://something.1password.com/api/v2/auth/xxxxxx@1passwordserviceaccounts.com/A3/VERTL3/7gbxf3ooopocj2vs5s4ped5xyi\": net/http: TLS handshake timeout","timestamp":"2021-09-15T10:57:15.933489551Z","level":1} {"log_message":"(I) ### syncer credentials bootstrap ### ","timestamp":"2021-09-15T10:57:16.433968461Z","level":3} {"log_message":"(I) token received, getting credentials and initializing API","timestamp":"2021-09-15T11:04:28.941834464Z","level":3} {"log_message":"(E) Server: (unable to get credentials and initialize API, retrying in 1s), Wrapped: (failed to NewAPI), Authentication: (failed to SigninWithCredentials), Network: (failed to keysetsAPI.GetAllEncrypted), Get \"https://something.1password.com/api/v2/account/keysets?__t=1631703869.912\": read tcp 172.18.0.2:34710-\u003e35.168.65.77:443: read: connection reset by peer","timestamp":"2021-09-15T11:11:40.718640414Z","level":1} {"log_message":"(I) ### syncer credentials bootstrap ### ","timestamp":"2021-09-15T11:11:41.719420632Z","level":3} {"log_message":"(W) configured to use HTTP with no TLS","timestamp":"2021-09-15T11:14:42.221316708Z","level":2} {"log_message":"(I) [discovery-local] starting discovery, advertising endpoint 38673 /meta/message","timestamp":"2021-09-15T11:14:42.221955851Z","level":3} {"log_message":"(I) starting 1Password Connect Sync ...","timestamp":"2021-09-15T11:14:42.222139251Z","level":3} {"log_message":"(I) serving on :8080","timestamp":"2021-09-15T11:14:42.222165135Z","level":3} {"log_message":"(I) database initialization complete","timestamp":"2021-09-15T11:14:42.224090656Z","level":3} {"log_message":"(I) ### syncer credentials bootstrap ### ","timestamp":"2021-09-15T11:14:42.224261227Z","level":3} {"log_message":"(I) token received, getting credentials and initializing API","timestamp":"2021-09-15T11:15:44.745866354Z","level":3}
I see that there is an error Server: (unable to get credentials and initialize API, retrying in 1s)
but I am not sure to what it is referring to? I have the 1password-credentials.json
, both containers have access to it.
What am I doing wrong?
1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Ubuntu 20.04 LTS
Comments
-
Ok, I've managed to resolve the issue on my Ubuntu server. The problem was with an MTU setting - network is set to MTU of 1400, so I had to configure
docker-compose.yml
and after that everything is working well.0 -
Glad you figured it out, and thanks for sharing your solution!
0