I found a PC that yielded the login failure error message, yesterday, and indeed, it seems like Blue Iris wasn't following its own convention of always providing a reason when login fails. Updating to the latest version of BI did fix it.
If you have Blue Iris using a different web server root directory you can use that. Or you can put it in a subdirectory. Heck you can even run UI2 without a web server these days, just opening ui2.htm in a browser and it will function like a client app.
@bp2008 - I noticed a few pages ago some talk about issues with hiding Blue Iris behind a reverse proxy. Did these ever get solved for using UI2?
The problem does seem to lay on Blue Iris, because even the mobile.htm page fails to come through with a pretty standard nginx reverse proxy configuration. I'm stumped though, because the Blue Iris app on iOS works perfectly well with a reverse proxy. In your investigation of this, did you ever come to a conclusion why viewing cams through a web browser would fail on a reverse proxy?
Weird. From UI2.htm I get:
Loading Web Content OK
Checking Session Status OK
Loading Server Status BUSY
Loading Camera List BUSY
Then Unable to contact Blue Iris Server pops up at bottom.
Would you mind posting your reverse proxy settings you have that work for you?
Sure. No problem. I'll post my config later in the evening. Just one thing. Nginx is on another machine (virtual). But should not be a case.
I'm using Let's encrypt signed certificates.
I'm not the person to whom you replied but I can tell you that you can use Let's Encrypt certificates with stunnel but you need to generate your certificates using either 1) another web server such as nginx where you can post the challenge key in a known location (you can't do this with the BI web server) or 2) use the challenge method where you post a known txt record to your dns records.I see. Well when you get a minute later I'd love to see the Blue Iris relevant parts of your config! Thanks so much!
[Blue-Iris]
accept = 443
connect = 81
CApath = C:\Program Files\stunnel\config\
cert = C:\Program Files\stunnel\config\certX.crt.pem
key = C:\Program Files\stunnel\config\certX.key.pem
I see. Well when you get a minute later I'd love to see the Blue Iris relevant parts of your config! Thanks so much!
server {
listen {YOUR_EXTERNAL_PORT};
### Change the following line to match your website name
# SSL Settings
### If you are using different names for your SSL certificate and key, change them below:
ssl on;
ssl_certificate /path_to/MY_CERT.crt;
ssl_certificate_key /path_to/MY_KEY.key;
# This settings are destined to limit the supported crypto suites, this is optional and may restrict the availability of your website.
#ssl_ciphers 'EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH';
#ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
access_log /var/log/nginx/access_blueiris.log;
error_log /var/log/nginx/error_blueiris.log;
location / {
tcp_nodelay on;
tcp_nopush off;
proxy_buffering off;
proxy_buffer_size 256k;
proxy_buffers 4 512k;
proxy_busy_buffers_size 512k;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_pass http://{BI_LAN_IP_ADRESS}:81/;
proxy_read_timeout 90;
proxy_redirect http://{BI_LAN_IP_ADRESS}:81/ https://{DOMAIN_NAME}:{YOUR_EXTERNAL_PORT}/;
}
}
I'm not the person to whom you replied but I can tell you that you can use Let's Encrypt certificates with stunnel but you need to generate your certificates using either 1) another web server such as nginx where you can post the challenge key in a known location (you can't do this with the BI web server) or 2) use the challenge method where you post a known txt record to your dns records.
That's what I wrote before. I played with "virtual host". I was not able to use location. Location didn't worked for me as well. Only as "root" with distinct port.Thanks for posting your configuration. It was very similar to my own, but even after adding the couple lines mine lacked, I still can't get UI2 to fully load correctly.
One big configuration difference I noticed is that you have your location as just <yourdomain>/, whereas my location is setup to be <mydomain>/blueiris/ - I did change the Virtual setting in the BI web configuration area to be /blueiris/, but no bueno. I wonder if that's where my trouble is?
Oh I see, I misunderstood then. I would think that maybe the virtual setting is bugged. Did you ever get in touch with the BI dev to ask about it? As I said above, I think it's definitely a BI problem because even mobile.htm is broken when using a virtual path.
If I release another UI2 without this fix, please remind me.