Hi Sanook, thanks for your advice, in fact I have this configuration:
Both server Collabora and owncloud are in the same host, but with virtual host
docker run -t -d -p 127.0.0.1:9980:9980 -e “username=admin” -e “password=123456” -e “domain=cloudo.uca.edu.sv” --restart always --cap-add MKNOD collabora/code
And in the field Collabora Online Server : https://loffice.uca.edu.sv
In my vhosts
loffice.conf
<VirtualHost *:443>
ServerName loffice.uca.edu.sv:443
SSL configuration, you may want to take the easy route instead and use Lets Encrypt!
SSLEngine on
SSLCertificateFile /etc/apache2/ssl/owncloud.crt
SSLCertificateKeyFile /etc/apache2/ssl/owncloud.key
SSLCertificateChainFile /etc/apache2/ssl/uca.ca-bundle
SSLProtocol all -SSLv2 -SSLv3
SSLCipherSuite ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:DES-CBC3-SHA:!DSS
SSLHonorCipherOrder on
#Logs
ErrorLog /var/log/apache2/error_log
TransferLog /var/log/apache2/access_log
Encoded slashes need to be allowed
AllowEncodedSlashes On
Container uses a unique non-signed certificate
SSLProxyEngine On
SSLProxyVerify None
SSLProxyCheckPeerCN Off
SSLProxyCheckPeerName Off
keep the host
ProxyPreserveHost On
static html, js, images, etc. served from loolwsd
loleaflet is the client part of LibreOffice Online
ProxyPass /loleaflet https://127.0.0.1:9980/loleaflet retry=0
ProxyPassReverse /loleaflet https://127.0.0.1:9980/loleaflet
WOPI discovery URL
ProxyPass /hosting/discovery https://127.0.0.1:9980/hosting/discovery retry=0
ProxyPassReverse /hosting/discovery https://127.0.0.1:9980/hosting/discovery
Main websocket
ProxyPassMatch “/lool/(.*)/ws$” wss://127.0.0.1:9980/lool/$1/ws
ProxyPass /lool/ws wss://127.0.0.1/lool/ws
Admin Console websocket
ProxyPass /lool/adminws wss://127.0.0.1:9980/lool/adminws
Download as, Fullscreen presentation and Image upload operations
owncloud.conf
SSL Virtual Host Context
<VirtualHost *:443>
# General setup for the virtual host
DocumentRoot "/srv/www/htdocs/owncloud"
#ServerName www.example.com:443
ServerName cloudo.uca.edu.sv:443
#ServerAdmin webmaster@example.com
ErrorLog /var/log/apache2/error_log
TransferLog /var/log/apache2/access_log
# SSL Engine Switch:
# Enable/Disable SSL for this virtual host.
SSLEngine on
# You can use per vhost certificates if SNI is supported.
SSLCertificateFile /etc/apache2/ssl/owncloud.crt
SSLCertificateKeyFile /etc/apache2/ssl/owncloud.key
SSLCertificateChainFile /etc/apache2/ssl/uca.ca-bundle
#SSLCertificateChainFile /etc/apache2/ssl.crt/vhost-example-chain.crt
# Per-Server Logging:
# The home of a custom SSL log file. Use this when you want a
# compact non-error SSL logfile on a virtual host basis.
CustomLog /var/log/apache2/ssl_request_log ssl_combined
<IfModule mod_headers.c>
Header always set Strict-Transport-Security "max-age=15552000; includeSubDomains; preload"
</IfModule>
host.conf
<VirtualHost *:80>
ServerName loffice.uca.edu.sv
RedirectPermanent / https://loffice.uca.edu.sv/
ErrorLog /var/log/apache2/error_log
TransferLog /var/log/apache2/access_log
<VirtualHost *:80>
ServerName cloudo.uca.edu.sv
DocumentRoot /srv/www/htdocs/owncloud
RedirectPermanent / https://cloudo.uca.edu.sv/
ErrorLog /var/log/apache2/error_log
TransferLog /var/log/apache2/access_log
___________________________________________________-
loffice:/ # iptables -L -t nat
Chain PREROUTING (policy ACCEPT)
target prot opt source destination
DOCKER all – anywhere anywhere ADDRTYPE match dst-type LOCAL
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
DOCKER all – anywhere !loopback/8 ADDRTYPE match dst-type LOCAL
Chain POSTROUTING (policy ACCEPT)
target prot opt source destination
MASQUERADE all – 172.17.0.0/16 anywhere
MASQUERADE tcp – 172.17.0.2 172.17.0.2 tcp dpt:9980
Chain DOCKER (2 references)
target prot opt source destination
RETURN all – anywhere anywhere
DNAT tcp – anywhere localhost tcp dpt:9980 to:172.17.0.2:9980
And finally, the firewall is down, and the owncloud logs:
Error PHP Undefined index: dir at /srv/www/htdocs/owncloud/apps/richdocuments/controller/documentcontroller.php#364
I don’t have any ideas where is the problem.