LayerManager · jirik · Dec 6, 2023 · Dec 4, 2023 · Dec 4, 2023 · Dec 6, 2023
diff --git a/.env.demo b/.env.demo
@@ -64,7 +64,7 @@ LAYMAN_CLIENT_URL=http://layman_client:3000/client/
 
 # client
 LAYMAN_CLIENT_PUBLIC_URL=http://localhost/client/
-LAYMAN_CLIENT_VERSION=v1.17.1
+LAYMAN_CLIENT_VERSION=v1.17.2
 
 # extra hosts to be added to /etc/hosts
 EXTRA_HOST1=1.2.3.4:1.2.3.4

diff --git a/.env.dev b/.env.dev
@@ -64,7 +64,7 @@ LAYMAN_CLIENT_URL=http://layman_client:3000/client/
 
 # client
 LAYMAN_CLIENT_PUBLIC_URL=http://localhost:3000/client/
-LAYMAN_CLIENT_VERSION=v1.17.1
+LAYMAN_CLIENT_VERSION=v1.17.2
 
 
 ##############################################################################

diff --git a/.env.test b/.env.test
@@ -64,7 +64,7 @@ LAYMAN_CLIENT_URL=http://layman_client_test:3000/client/
 
 # client
 LAYMAN_CLIENT_PUBLIC_URL=http://layman_test_run_1:8000/client/
-LAYMAN_CLIENT_VERSION=v1.17.1
+LAYMAN_CLIENT_VERSION=v1.17.2
 
 
 ##############################################################################

diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,5 +1,20 @@
 # Changelog
 
+## v1.22.3
+ 2023-12-06
+### Upgrade requirements
+- Change environment variable [LAYMAN_CLIENT_VERSION](doc/env-settings.md#LAYMAN_CLIENT_VERSION):
+  ```
+  LAYMAN_CLIENT_VERSION=v1.17.2
+  ```
+### Changes
+- Improve logging in Layman Test Client related to Passport.js.
+- [968](https://github.com/LayerManager/layman/issues/968) Enable to use not-so-secure SSL communication (UnsafeLegacyRenegotiation) in Layman Test Client. It can be activated by environment variable [NODE_OPTIONS](doc/env-settings.md#NODE_OPTIONS):
+  ```
+  NODE_OPTIONS="--openssl-config=/code/unsafe_openssl.cnf"
+  ```
+
+
 ## v1.22.2
  2023-11-10
 ### Upgrade requirements

diff --git a/client/docker/Dockerfile.production b/client/docker/Dockerfile.production
@@ -3,7 +3,7 @@ FROM node:18-alpine
 RUN mkdir /code
 WORKDIR /code
 
-RUN apk update && apk add wget
+RUN apk update && apk add wget patch
 
 ARG LAYMAN_CLIENT_VERSION
 # https://stackoverflow.com/a/42144033
@@ -15,6 +15,10 @@ RUN wget "https://github.com/LayerManager/layman-test-client/archive/$LAYMAN_CLI
 
 RUN npm ci
 
+COPY docker/passport-oauth2-patch.diff /code/
+RUN patch node_modules/passport-oauth2/lib/strategy.js < passport-oauth2-patch.diff
+RUN rm passport-oauth2-patch.diff
+
 ARG LTC_BASEPATH
 RUN test -n "LTC_BASEPATH"
 ENV LTC_BASEPATH=$LTC_BASEPATH

diff --git a/client/docker/passport-oauth2-patch.diff b/client/docker/passport-oauth2-patch.diff
@@ -0,0 +1,12 @@
+@@ -174,7 +174,10 @@
+
+       self._oauth2.getOAuthAccessToken(code, params,
+         function(err, accessToken, refreshToken, params) {
+-          if (err) { return self.error(self._createOAuthError('Failed to obtain access token', err)); }
++          if (err) {
++            console.warn("Failed to obtain access token: ", err);
++            return self.error(self._createOAuthError('Failed to obtain access token', err));
++          }
+           if (!accessToken) { return self.error(new Error('Failed to obtain access token')); }
+
+           self._loadUserProfile(accessToken, function(err, profile) {
diff --git a/doc/env-settings.md b/doc/env-settings.md
@@ -119,6 +119,12 @@ See [`secret` at express-session documentation](https://www.npmjs.com/package/ex
 ### LTC_SESSION_MAX_AGE
 See [`cookie.maxAge` at express-session documentation](https://www.npmjs.com/package/express-session#cookiemaxage).
 
+
+### NODE_OPTIONS
+See [NODE_OPTIONS](https://nodejs.org/docs/latest-v18.x/api/cli.html#node_optionsoptions).
+
+To enable not-so-secure SSL communication (UnsafeLegacyRenegotiation), set `NODE_OPTIONS="--openssl-config=/code/unsafe_openssl.cnf"`.
+
 ## Connection to Redis
 
 ### LAYMAN_REDIS_URL

diff --git a/version.txt b/version.txt
@@ -1,2 +1,2 @@
-v1.22.2
-2023-11-10T11:00:00Z
+v1.22.3
+2023-12-06T13:00:00Z