I learned something interesting in doing some more testing…

Using the -W option does indeed prompt for a password, but it accepts any value entered at the password prompt. In order to actually authenticate with a password when using psql, you must modify the pg_hba.conf file to use scram-sha-256 as the method for type local.

When I do this, I am unable to authenticate (both while using my actual password, and also while using a password of “test”.

And then I figured out the problem.

In my docker-compose.yml, I had put single quotes around my postgres password, thinking this would be safe per my understanding of this question. However, just to check, I tried logging in to psql using the password 'test'. Sure enough, it worked.

I found another stack exchange with some different advice on strings in yaml: https://stackoverflow.com/questions/53082932/yaml-docker-compose-spaces-quotes

So, I tried my password again, without the single quotes… and it worked.

Perhaps this will help somebody beating their head against the wall in the future.

This makes sense, and I do have a dollar sign in my password…

However, I have confirmed that postgres does in fact parse the password correctly, as I can log in with the defined username/password combo directly using psql

So I think that disproves this theory, doesn’t it?

edit: I tried getting rid of the dollar sign just in case… unfortunately I’m still getting the same error

Thank you for enlightening me on the -W option in psql. I have successfully logged in using the expected password for lemmy. This points to something with the connection string. According to the error log, the connection string being used is:

postgres://lemmy:<my percent-encoded password>@postgres:5432/lemmy

As far as I can tell, the percent encoding is correct. Any ideas how to troubleshoot this further?

edit: it just occurred to me that my container name is lemmy_postgres_1, not postgres as was entered in my lemmy.hjson file. Let’s see if changing that will work…

edit2: no, that had no effect. I’m getting the authentication error for user lemmy on both the lemmy container and the postgres container. :(

Username definitely matches!

And yes, I have several special characters, but the password is surrounded by single quotes in docker-compose.yml, so that should not matter, right?

I got it going… the main problem was that the ports for the proxy container were defined in a confusing way. Rather, the port definition should be symmetrical (e.g. 1236:1236) and not conflated with the lemmy server port (8536). Then, the nginx_internal.conf should be set to listen on 1236 only.

Do you mind sharing what exactly you changed in order to get it to work? I got nginx_internal.conf installed, but did not make any changes to it. I’m not able to get the UI using http://<ipaddress>:1236

I’m not a complete newb when it comes to nginx, but I’m having a hard time understand what all the different parts are here. For instance, what is the lemmy-ui container for? Is that what needs to be exposed for me to access the UI?

Any help you can provide is greatly appreciated!

Influxdb + grafana for me! Good stuff!

I don’t know for sure… but my instinct is that NAT reflection is moot in that case, because your connection is going out past the edge router and doing the DNS query there, which will then direct you back to your public IP. I’m sure there’s somebody around that knows the answer for certain!

If your router has NAT reflection, then the problem you describe is non existent. I use the same domain/protocol both inside and outside my network.

I like Photostructure as a way to browse my photos. It does logical deduping, and automatic organization of your photos (if you want it to). Like some others mentioned in this thread, it’s a very young software, but the developer is very active and transparent about the progress.

Edit to add link: photostructure.com

Tangential point: if your “smart home” can be shut down by a third party, then you aren’t Smart Homing correctly.