noVNC working but getting connection timeout on /vncproxy

L

lubr

New Member
May 13, 2024
11
1
3
Hi,

I have followed https://forum.proxmox.com/threads/how-to-set-up-novnc-on-a-web-application.123701/ to implement noVNC console some time ago. Everything is working but:

1) in PVE I have noticed two same /vncproxy calls where the first one has connection timeout and second is connected,
2) I realized I do not need /vncwebsocket call to load noVNC in iframe
3) no matter if I use $ticket from login or ticket from vncproxy call, it works for both situations

Check comments in code:

PHP: 
// ad 1) this is 2x in PVE proxy, first connection timeout (maybe due to being killed by second call)
$config = $proxmox->create("/nodes/$node/qemu/$vmid/vncproxy", [
    'websocket' => 1, // Start websocket proxy
]);

// ad 2) I can comment this out and nothing will be broken because i can use $config['data']['ticket'] and $config['data']['port'] in iframe link directly to make it work
$websock = $proxmox->get("/nodes/$node/qemu/$vmid/vncwebsocket", [
     'vncticket' => $config['data']['ticket'],
     'port' => $config['data']['port']
]);

// ad 3) here I am using $config['data']['ticket'] instead of $ticket of login
$src_href = 'https://'.$host.':8006/?console=kvm&novnc=1&node='.$node.'&resize=1&vmid='.$vmid.'&path=api2/json/nodes/'.$node.'/qemu/'.$vmid.'/vncwebsocket/port/'.$config['data']['port'].'"/vncticket/"'.$ticket;

echo '<iframe src="'.$src_href.'" frameborder="0" scrolling="no" width="100%" height="100%"></iframe>';

Can someone explain why it behaves like that and what steps are really required for noVNC in iframe?
 
Last edited:
I have found some answers to questions above:

Ad 1) Because this part of code (taken from https://forum.proxmox.com/threads/how-to-set-up-novnc-on-a-web-application.123701/ tutorial) mixes two different approaches, first proxy call is called in

PHP: 
$config = $proxmox->create("/nodes/$node/qemu/$vmid/vncproxy", [
    'websocket' => 1, // Start websocket proxy
]);

and second in IFRAME link itself in

PHP: 
$src_href = 'https://'.$host.':8006/?console=kvm&novnc=1&node='.$node.'&resize=1&vmid='.$vmid.'&path=api2/json/nodes/'.$node.'/qemu/'.$vmid.'/vncwebsocket/port/'.$config['data']['port'].'"/vncticket/"'.$ticket;

Therefore first /vncproxy all is killed by call from IFRAME.

Ad 2) This part would be required only if non-IFRAME solution was used. So it can be removed (use hardcoded port 5900 in IFRAME link).

Ad 3) Both ticket or vncTicket is not needed since cookie where this ticket is stored is used.

So the result of the code above could be as follows:

PHP: 
 setcookie("PVEAuthCookie",$ticket, 0, "/", '.domain' );

// ad 3) here I am using $config['data']['ticket'] instead of $ticket of login
$src_href = 'https://'.$host.':8006/?console=kvm&novnc=1&node='.$node.'&resize=1&vmid='.$vmid.'&path=api2/json/nodes/'.$node.'/qemu/'.$vmid.'/vncwebsocket/port/5900;
echo '<iframe src="'.$src_href.'" frameborder="0" scrolling="no" width="100%" height="100%"></iframe>';

The only reason why to have an extra call of 1) is to get PVEVNC ticket instead of PVE ticket for authorization. But it generates that extra /vncproxy call on Proxmox side which is being killed immediately.

Am I right?
 
Last edited:
You must log in or register to reply here.

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Quick Navigation

Home Get Subscription Wiki Downloads Proxmox Customer Portal About

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!
Community platform by XenForo® © 2010-2024 XenForo Ltd.
Top Bottom
Back