Hi I would like to run the hub locally on our network but keep running into error messages. Maybe someone can help me here. So if I call the installation over localhost everything goes but as soon as I replace localhost by the IP of the PC goes almost nothing more I can no longer manage vaults because there is always wrong password I can but also no new vaults create because I then get the error message crypto.randomUUID is not a function. But the worst thing is I can’t use the vaults I created on localhost on other PCs because the software always tries to access my server via localhost.
regarding the error message please follow this post: Cryptomator Hub - create vault - crypto.randomUUID is not a function
Regarding:
In the vault.cryptomator-file of each vault, there is the URL to the Hub instance included. As you relocated Hub, you need to re-download this file. You can archive it the following way:
for each vault:
- Backup the
vault.cryptomatorfile in the folder where the vault is located - Open Hub in your browser and select the vault
- Press “Manage Vault” and enter the vault admin password
- Press “Download Vault Template”
- Unzip it
- Enter the unzipped folder, copy the
vault.cryptomatorfile - Paste the copied
vault.cryptomatorfile in the folder where the vault is located
Now you should be able to unlock the vault again.
Thank you with this problem I look at this post
Thanks but on the new PC I can not get with the password in the administration pure that I can download because this says wrong password
Authentication of vault admin failed. Error: Unwrapping key failed
qe
unwrap
w
setup/</<.default</<.default</<.default</<.default</b[2]
withModifiers
callWithErrorHandling
callWithAsyncErrorHandling
Cryptomator Hub is a zero knowledge web application which, because it is a web application, must run in a secure environment. Plain HTTP communication (without TLS) does not count towards this requirement. We will have to modify the setup wizard and the website to make this clear, but Cryptomator hub cannot be used with plain HTTP except for local testing with 127.0.0.1 or localhost.
Please return to 127.0.0.1 or localhost if you want to further test it or use a connecting with TLS enabled for production usage.
1 Like
Yes thanks I have solved almost all the problems by using Traefik and then using ssl but the only problem remains when I want to unlock the vault I am redirected to the redirect 127.0.0.1 and then it comes to an error
Error Code RKM7:2TU1:BGIR
org.cryptomator.cryptolib.api.MasterkeyLoadingFailedException: Failed to retrieve key
at org.cryptomator.desktop@1.6.17/org.cryptomator.ui.keyloading.hub.HubKeyLoadingStrategy.loadKey(HubKeyLoadingStrategy.java:62)
at org.cryptomator.cryptofs@2.5.3/org.cryptomator.cryptofs.CryptoFileSystems.create(CryptoFileSystems.java:53)
at org.cryptomator.cryptofs@2.5.3/org.cryptomator.cryptofs.CryptoFileSystemProvider.newFileSystem(CryptoFileSystemProvider.java:196)
at org.cryptomator.cryptofs@2.5.3/org.cryptomator.cryptofs.CryptoFileSystemProvider.newFileSystem(CryptoFileSystemProvider.java:86)
at java.base/java.nio.file.FileSystems.newFileSystem(Unknown Source)
at java.base/java.nio.file.FileSystems.newFileSystem(Unknown Source)
at org.cryptomator.cryptofs@2.5.3/org.cryptomator.cryptofs.CryptoFileSystemProvider.newFileSystem(CryptoFileSystemProvider.java:126)
at org.cryptomator.desktop@1.6.17/org.cryptomator.common.vaults.Vault.createCryptoFileSystem(Vault.java:130)
at org.cryptomator.desktop@1.6.17/org.cryptomator.common.vaults.Vault.unlock(Vault.java:149)
at org.cryptomator.desktop@1.6.17/org.cryptomator.ui.keyloading.KeyLoadingStrategy.use(KeyLoadingStrategy.java:79)
at org.cryptomator.desktop@1.6.17/org.cryptomator.ui.unlock.UnlockWorkflow.attemptUnlock(UnlockWorkflow.java:72)
at org.cryptomator.desktop@1.6.17/org.cryptomator.ui.unlock.UnlockWorkflow.call(UnlockWorkflow.java:62)
at org.cryptomator.desktop@1.6.17/org.cryptomator.ui.unlock.UnlockWorkflow.call(UnlockWorkflow.java:35)
at javafx.graphics/javafx.concurrent.Task$TaskCallable.call(Unknown Source)
at java.base/java.util.concurrent.FutureTask.run(Unknown Source)
at java.base/java.util.concurrent.CompletableFuture$AsyncRun.run(Unknown Source)
at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(Unknown Source)
at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown Source)
at java.base/java.lang.Thread.run(Unknown Source)
Caused by: java.util.concurrent.ExecutionException: javax.net.ssl.SSLHandshakeException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
at java.base/java.util.concurrent.CompletableFuture.reportGet(Unknown Source)
at java.base/java.util.concurrent.CompletableFuture.get(Unknown Source)
at org.cryptomator.desktop@1.6.17/org.cryptomator.ui.keyloading.hub.HubKeyLoadingStrategy.loadKey(HubKeyLoadingStrategy.java:52)
... 18 more
Caused by: javax.net.ssl.SSLHandshakeException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
at java.net.http/jdk.internal.net.http.HttpClientImpl.send(Unknown Source)
at java.net.http/jdk.internal.net.http.HttpClientFacade.send(Unknown Source)
at io.github.coffeelibs.tinyoauth2client@0.5.1/io.github.coffeelibs.tinyoauth2client.AuthFlow$AuthFlowWithCode.getAccessToken(AuthFlow.java:241)
at io.github.coffeelibs.tinyoauth2client@0.5.1/io.github.coffeelibs.tinyoauth2client.AuthFlow.authorize(AuthFlow.java:161)
at org.cryptomator.desktop@1.6.17/org.cryptomator.ui.keyloading.hub.AuthFlowTask.call(AuthFlowTask.java:38)
at org.cryptomator.desktop@1.6.17/org.cryptomator.ui.keyloading.hub.AuthFlowTask.call(AuthFlowTask.java:13)
at javafx.graphics/javafx.concurrent.Task$TaskCallable.call(Unknown Source)
at java.base/java.util.concurrent.FutureTask.run(Unknown Source)
at java.base/java.util.concurrent.Executors$RunnableAdapter.call(Unknown Source)
at java.base/java.util.concurrent.FutureTask.run(Unknown Source)
... 3 more
Caused by: javax.net.ssl.SSLHandshakeException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
at java.base/sun.security.ssl.Alert.createSSLException(Unknown Source)
at java.base/sun.security.ssl.TransportContext.fatal(Unknown Source)
at java.base/sun.security.ssl.TransportContext.fatal(Unknown Source)
at java.base/sun.security.ssl.TransportContext.fatal(Unknown Source)
at java.base/sun.security.ssl.CertificateMessage$T13CertificateConsumer.checkServerCerts(Unknown Source)
at java.base/sun.security.ssl.CertificateMessage$T13CertificateConsumer.onConsumeCertificate(Unknown Source)
at java.base/sun.security.ssl.CertificateMessage$T13CertificateConsumer.consume(Unknown Source)
at java.base/sun.security.ssl.SSLHandshake.consume(Unknown Source)
at java.base/sun.security.ssl.HandshakeContext.dispatch(Unknown Source)
at java.base/sun.security.ssl.SSLEngineImpl$DelegatedTask$DelegatedAction.run(Unknown Source)
at java.base/sun.security.ssl.SSLEngineImpl$DelegatedTask$DelegatedAction.run(Unknown Source)
at java.base/java.security.AccessController.doPrivileged(Unknown Source)
at java.base/sun.security.ssl.SSLEngineImpl$DelegatedTask.run(Unknown Source)
at java.base/java.util.ArrayList.forEach(Unknown Source)
at java.net.http/jdk.internal.net.http.common.SSLFlowDelegate.lambda$executeTasks$3(Unknown Source)
at java.net.http/jdk.internal.net.http.HttpClientImpl$DelegatingExecutor.execute(Unknown Source)
at java.net.http/jdk.internal.net.http.common.SSLFlowDelegate.executeTasks(Unknown Source)
at java.net.http/jdk.internal.net.http.common.SSLFlowDelegate.doHandshake(Unknown Source)
at java.net.http/jdk.internal.net.http.common.SSLFlowDelegate$Reader.processData(Unknown Source)
at java.net.http/jdk.internal.net.http.common.SSLFlowDelegate$Reader$ReaderDownstreamPusher.run(Unknown Source)
at java.net.http/jdk.internal.net.http.common.SequentialScheduler$LockingRestartableTask.run(Unknown Source)
at java.net.http/jdk.internal.net.http.common.SequentialScheduler$CompleteRestartableTask.run(Unknown Source)
at java.net.http/jdk.internal.net.http.common.SequentialScheduler$TryEndDeferredCompleter.complete(Unknown Source)
at java.net.http/jdk.internal.net.http.common.SequentialScheduler$CompleteRestartableTask.run(Unknown Source)
at java.net.http/jdk.internal.net.http.common.SequentialScheduler$SchedulableTask.run(Unknown Source)
... 3 more
Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
at java.base/sun.security.validator.PKIXValidator.doBuild(Unknown Source)
at java.base/sun.security.validator.PKIXValidator.engineValidate(Unknown Source)
at java.base/sun.security.validator.Validator.validate(Unknown Source)
at java.base/sun.security.ssl.X509TrustManagerImpl.checkTrusted(Unknown Source)
at java.base/sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(Unknown Source)
... 24 more
Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
at java.base/sun.security.provider.certpath.SunCertPathBuilder.build(Unknown Source)
at java.base/sun.security.provider.certpath.SunCertPathBuilder.engineBuild(Unknown Source)
at java.base/java.security.cert.CertPathBuilder.build(Unknown Source)
... 29 more