REST with Apache2 Proxy Rewrite on DSpace

[Admire Mutsikiwa]

Hi

I have used Apache 2 as a front-end to tomcat. I had also used Letsencrpt to use  SSL. Now Apache is running on port 443 while tomcat listen on 8080.   I want to access REST interface which require port 8443. Beside commenting out the  <security-constraint> in the [dspace-source]/dspace-rest/src/main/webapp/WEB-INF/web.xml  or [dspace]/webapps/rest/WEB-INF/web.xml which according to https://wiki.duraspace.org/display/DSDOC6x/REST+API#RESTAPI-DisablingSSL is meant for development purposes, how else can I ensure safe access to rest. With Apache using SSL and port 8080 on accessible on localhost, traffic to the server is already secured.

Kind regards

Admire Mutsikiwa

[Paul Münch]

Hi,

in our settings we use HAProxy. The Apache webserver listen to its localhost port 8080 that is bind to the DSpace application server port 8080. And the DSpace application server listen itself to localhost port 8080, too.
As you mention, we ensure the safe access via the webserver. The 'security-constraint' is disabled.

I hope this helps and kind regards,

Paul Münch

Am 21.10.19 um 09:03 schrieb Admire Mutsikiwa:

--
All messages to this mailing list should adhere to the DuraSpace Code of Conduct: https://duraspace.org/about/policies/code-of-conduct/
---
You received this message because you are subscribed to the Google Groups "DSpace Technical Support" group.
To unsubscribe from this group and stop receiving emails from it, send an email to dspace-tech...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/dspace-tech/CAMYabt_WMKWcUE4JHch2rEy-1Ota1u-Z4cg9d7ARGEniG0N3sQ%40mail.gmail.com.