Friday, June 27, 2025
support@conference.yunohost.org
June
Mon Tue Wed Thu Fri Sat Sun
            1
2
 3
 4
 5
 6
 7
 8
9 10
 11
 12 13
 14
 15
16 17
 18
 19
 20
 21
 22
23
 24 25
 26
 27
 28 29
30
            

[10:58:38] <isAAAc> hello 🖖*
[11:02:36] <isAAAc> I've been having trouble for a long time with the preview display on mattermost of things that are on the same server as mattermost: mastodon links, peertube links, etc ... Most of the time it displays very well for anything that doesn't come from my server.
[11:02:54] <isAAAc> I don't have this problem on mastodon, it seems to be specific to mattermost
[11:03:01] <isAAAc> I've tried a lot of things, I don't know if the problem comes from mattermost, nginx, a residue of an old configuration/tuning (my server is an old mastodon server that has undergone a lot of migrations).
[11:03:09] <isAAAc> I'd be happy to get some live help to try and fix this once and for all
[11:04:14] <isAAAc> https://aria.im/_bifrost/v1/media/download/Abw9d9CYHnCunjPBoeBIceylT4jUOcGWMGQPuhQ1Yzowr-suf9PRp6GvKWy8iY6rbzBy0D1WhVzmkJjoy-JcWRJCeXtjWTzQAG1hdHJpeC5rcmFzaGJveXoub3JnL3l4VUt3Y2F3V1lwb3FxaExsUGxtSFllcg
[11:04:15] <isAAAc> CORS config of the mattermost

[11:05:06] <isAAAc> in /etc/nginx/conf.d/mat.krashboyz.org.d/mattermost.conf:
i tried many things
[11:05:44] <isAAAc> more_set_headers "X-Frame-Options : ALLOWALL";
on the top of the file (as like peertube has)
[11:05:59] <isAAAc> commented # proxy_set_header X-Frame-Options SAMEORIGIN;
[11:06:26] <isAAAc> i tried proxy_set_header X-Frame-Options ""; too
[11:07:08] <isAAAc> rodinux: i saw your post here https://stackoverflow.com/questions/47405597/x-frame-options-in-nginx-to-allow-all-domains
[11:07:44] <isAAAc> i don't understand why it works with mostly all external website, but not with internal ynh apps
[11:08:01] <isAAAc> i should have a misconfig somewhere but i can't find where
[11:09:48] <isAAAc> help is very very welcome if someone has a bit of time
[11:14:32] <isAAAc> ```
# yunohost settings get security.nginx.nginx_compatibility
intermediate
```
[11:16:11] <isAAAc> i try to set it in "modern"
[11:18:06] <isAAAc> \+ systemctl restart mattermost.service
[11:19:40] <isAAAc> no change
[11:20:03] <isAAAc> i set it back to intermediate
[11:28:46] <isAAAc> + `systemctl restart mattermost.service`
[11:29:00] <isAAAc> \+ `systemctl restart mattermost.service`
[11:29:22] <isAAAc> `yunohost diagnosis run` doesn't tell anything about nginx nor mattemost
[11:34:33] <isAAAc> `{"timestamp":"2025-06-27 13:33:53.627 +02:00","level":"debug","msg":"CSRF Header check failed for request - Please upgrade your web application or custom app to set a CSRF Header","caller":"web/handlers.go:495","path":"/api/v4/notifications/ack","ip":"127.0.0.1:54568","session_id":"t7fymn3h7tbqxmwefbxb1cx1oa","user_id":"6patxxi9j7yn3j8m54pmpnsu3h"}` in mattermot.log perhaps ?

[11:35:58] <isAAAc> nope sounds more related to MM client not updated by one of my users (?)