HTTPS / SSL connection
7 views
Skip to first unread message
Irene Vagionakis
Feb 12, 2021, 11:14:25 AM2/12/21
to EFES users
Dear all,
how can I run EFES on a server and access its IP with a SSL connection, i.e. at https://site_name/en/?
Following the documentation, I have changed the used port from 9999 to 8443, and I have configured the readdressing in Apache but it still points to port 80 instead of 443. I suspect that the files that need to be changed are sw/jetty/etc/jetty-https.xml and sw/jetty/etc/jetty-ssl.xml, but I have not been able to understand the eclipse jetty documentation...
Thanks in advance,
Irene
Jamie Norrish
Feb 14, 2021, 4:40:19 PM2/14/21
to efes-...@googlegroups.com
On Fri, 2021-02-12 at 08:14 -0800, Irene Vagionakis wrote:
> Following the documentation, I have changed the used port from 9999
> to 8443, and I have configured the readdressing in Apache but it
> still points to port 80 instead of 443. I suspect that the files that
> need to be changed are sw/jetty/etc/jetty-https.xml and
> sw/jetty/etc/jetty-ssl.xml
I'm not familiar with Jetty in production environments, so I can only
> Following the documentation, I have changed the used port from 9999
> to 8443, and I have configured the readdressing in Apache but it
> still points to port 80 instead of 443. I suspect that the files that
> need to be changed are sw/jetty/etc/jetty-https.xml and
> sw/jetty/etc/jetty-ssl.xml
be of limited help. When you say that it still points to port 80, what
is "it"? And if you are proxying requests to Jetty via Apache HTTPD,
then you don't need HTTPS for the connection between HTTPD and Jetty,
just from the client to HTTPD. So I believe you'll want to configure
HTTPD for HTTPS (there is sufficient documentation for this[1]), and
use the ProxyPass directive to proxy requests and responses to and from
Jetty via HTTP.
[1] https://httpd.apache.org/docs/2.4/ssl/ssl_howto.html
Jamie
Irene Vagionakis
Feb 15, 2021, 8:42:01 AM2/15/21
to efes-...@googlegroups.com
Thank you!
Yes, I am using Apache HTTPD for redirecting the site (?) from xxxx:8443 (and before from xxxx:9999) to xxxx, that is xxxx:80. So, if I have understood correctly, I have to keep my Apache HTTPD configuration for doing this, but editing it so that it uses 443
instead of 80, adding also the required SSLEngine, SSLCertificateFile and SSLCertificateKeyFile directives. And nothing needs to be changed inside the EFES repository.
I'll give it a try!
Irene
Da: efes-...@googlegroups.com <efes-...@googlegroups.com> per conto di Jamie Norrish <ja...@artefact.org.nz>
Inviato: domenica 14 febbraio 2021 22:40
A: efes-...@googlegroups.com <efes-...@googlegroups.com>
Oggetto: Re: [efes-users] HTTPS / SSL connection
Inviato: domenica 14 febbraio 2021 22:40
A: efes-...@googlegroups.com <efes-...@googlegroups.com>
Oggetto: Re: [efes-users] HTTPS / SSL connection
--
You received this message because you are subscribed to the Google Groups "EFES users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to efes-users+...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/efes-users/450f9116408746e1d02c7f2f0f8906d7acc7c691.camel%40artefact.org.nz.
You received this message because you are subscribed to the Google Groups "EFES users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to efes-users+...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/efes-users/450f9116408746e1d02c7f2f0f8906d7acc7c691.camel%40artefact.org.nz.
Reply all
Reply to author
Forward
0 new messages