Dear Koji development team,
I hope this email finds you well. I am facing some difficulties with Koji's SSL
certification and would greatly appreciate your guidance on these matters.
I have generated the CA and certificates as per the "Server How To" document. I
imported the PKCS12 generated by user "kojiadmin" into my browser, and all
components are communicating well with each other. However, my browser still treats
Kojiweb as an insecure link.
When I try to log in to the Koji webpage, I encounter the
"SSL_ERROR_BAD_CERT_DOMAIN" error, which indicates that the requested domain
name does not match the server's certificate. Even after accepting the risk and
continuing, Koji returns the error: "An error has occurred in the web interface code.
This could be due to a bug or a configuration issue. koji.AuthError: could not verify
client: None."
I noticed there are two certificates in the Koji server, "kojihub" and the FQDN
of the server. Their information is quite similar except for the "Organizational
Unit". The problem must be caused by one of the certificates among
"kojihub", "koji_ca_cert", or "PKCS12", whose 'CN'
and 'OU' were filled according to
https://docs.pagure.org/koji/server_howto/#generate-the-koji-component-ce....
Is there any way to debug this issue? or am I missing something?
Thank you very much for your attention and assistance. I am looking forward to your
response.
Best Regards,
Junyan CHEN
[Ambarella AI Envisioned]<https://www.ambarella.com>
Junyan(Joe) CHEN
Software Engineer | SDK Team
Phone: +86-021-60880608-265
Email: jychena@ambarella.com<mailto:ypchang@ambarella.com>
**********************************************************************
This email and attachments contain Ambarella Proprietary and/or Confidential Information
and is intended solely for the use of the individual(s) to whom it is addressed. Any
unauthorized review, use, disclosure, distribute, copy, or print is prohibited. If you are
not an intended recipient, please contact the sender by reply email and destroy all copies
of the original message. Thank you.