Skip to content

GitLab

Closed
Created by Administrator@rootOwner

Can't clone / push / pull: Always identified as anonymous (Could not read from remote repository.)

Created by: Leandros

After I switched to nginx and added an ssl certificate gitlab only authenticates me as an anonymous user.

ssh -T -p 1337 [email protected]      
Enter passphrase for key '/home/leandros/.ssh/id_rsa': 
Welcome to GitLab, Anonymous!

This is what I get when I try to clone:

git clone ssh://[email protected]:11010/leandros/test.git                                                                                  !3716
Cloning into 'test'...
Enter passphrase for key '/home/leandros/.ssh/id_rsa': 
fatal: Could not read from remote repository.

Please make sure you have the correct access rights
and the repository exists.

It's completely fine with lighttpd or apache2. But not working with nginx.

My gitlab nginx config:

# GITLAB
# Maintainer: @randx
# App Version: 3.0

upstream gitlab {
  server 127.0.0.1:8081;
}

# This is a normal HTTP host which redirects all traffic to the HTTPS host.
server {
    listen *:80;
    server_name gitlab.myserver.de;
    server_tokens off;
    root /nowhere;
    rewrite ^ https://gitlab.myserver.de$request_uri permanent;
}

server {
    listen *:443;
    server_name gitlab.myserver.de;
    server_tokens off;
    root /home/gitlab/gitlab/public;

    ssl on;
    ssl_certificate gitlab.crt;
    ssl_certificate_key gitlab.key;
    ssl_protocols  SSLv3 TLSv1;
    ssl_ciphers AES:HIGH:!ADH:!MD5;
    ssl_prefer_server_ciphers   on;

    # individual nginx logs for this gitlab vhost
    access_log  /var/log/nginx/gitlab_access.log;
    error_log   /var/log/nginx/gitlab_error.log;

    location / {
        # serve static files from defined root folder;.
        # @gitlab is a named location for the upstream fallback, see below
        try_files $uri $uri/index.html $uri.html @gitlab;
    }

    # if a file, which is not found in the root folder is requested,
    # then the proxy pass the request to the upsteam (gitlab unicorn)
    location @gitlab {
        proxy_read_timeout 300; # https://github.com/gitlabhq/gitlabhq/issues/694
        proxy_connect_timeout 300; # https://github.com/gitlabhq/gitlabhq/issues/694
        proxy_redirect     off;

        proxy_set_header        X-Forwarded-Proto       https;
        proxy_set_header        X-Forwarded-Ssl         on;
        proxy_set_header        Host                    $http_host;
        proxy_set_header        X-Real-IP               $remote_addr;

        proxy_pass http://gitlab;
    }
}