Cant' get AJP to work on dspace 7 server

[cpgr...@gmail.com]

We are not having much success adding SSL to our dspace 7 server despite modelling out apache and tomcat configuration on our functioning dspace 5 production server.

Our tomcat server.xml is configured with:

<Connector address="127.0.0.1" port="8009" protocol="AJP/1.3"
               maxThreads="300"
               minSpareThreads="25"
               connectionTimeout="300000"
               keepAliveTimeout="300000"
               URIEncoding="UTF-8" />

and nmap confirms that port 8009 is open and listening.

Our apache configuration reads:

ProxyPass /server ajp://localhost:8009/server timeout=300
ProxyPassReverse /server ajp://localhost:8009/server timeout=300

The URL http://dspace7dev01.lib.uwaterloo.ca:8080/server gets to the HAL browser just fine.

But using the URL: https://dspace7dev01.lib.uwaterloo.ca/server

only gets an error response:

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>503 Service Unavailable</title>
</head><body>
<h1>Service Unavailable</h1>
<p>The server is temporarily unable to service your
request due to maintenance downtime or capacity
problems. Please try again later.</p>
<hr>
<address>Apache/2.4.52 (Ubuntu) Server at dspace7dev01.lib.uwaterloo.ca Port 443</address>
</body></html>

[Agustina Martinez]

We were once experiencing that issue:

<!-- Define an AJP 1.3 Connector on port 8009 -->

    <Connector tomcatAuthentication="false" packetSize="65536" protocol="AJP/1.3"

               address="127.0.0.1, ::1"

               port="8009"

               secret="your-secret"

               allowedRequestAttributesPattern=".*"

               redirectPort="8443" />

and that above configuration works.

Agustina

[Agustina Martinez]

Forgot to mention that in Apache config:

 ProxyPass /server/ ajp://localhost:8009/server secret=

We also have (this is needed if also configuring Shibboleth)

# AJP Directives

ProxyIOBufferSize 65536