Version 11 (modified by JuergeN, 11 years ago) (diff) |
---|
Configuring Apache2 Server as SSL Proxy
If you want to secure your DeepaMehta server e.g. on a public webserver, you should definitely consider secure https via SSL. Even though DeepaMehta does support this features natively, you can also use an Apache2 Server and run it as an SSL proxy. Just follow these steps:
- Install apache2 webserver
aptitude install apache2
- Load the required modules
a2enmod ssl rewrite proxy proxy_http
- Make sure that virtual hosts is enabled for ssl somewhere in your apache2 config.
NameVirtualHost *:443
- Create file deepamehta-ssl in /etc/apache2/sites-available:
<VirtualHost *:443> ServerName deepamehta.yourdomain.tld ServerAdmin postmaster@yourdomain.tld DefaultType text/html SSLEngine On SSLCertificateFile /etc/apache2/ssl/deepamehta.yourdomain.tld.pem ErrorLog /var/log/apache2/deepamehta-ssl-error.log CustomLog /var/log/apache2/deepamehta-ssl-access.log combined RewriteEngine On RewriteRule ^/?$ http://localhost:8080/de.deepamehta.webclient [P] RewriteLog /var/log/apache2/deepamehta-ssl-rewrite.log ProxyRequests Off ProxyPreserveHost Off AllowEncodedSlashes On <Proxy *> Order deny,allow Allow from all </Proxy> <location /> Order allow,deny Allow from all ProxyPass http://localhost:8080/ ProxyPassReverse http://localhost:8080/ </location> </VirtualHost>
- Create link to /etc/apache2/sites-available/deepamehta-ssl in /etc/apache2/sites-enabled and restart the webserver ...
That's it! You can now securely connect to https://deepamehta.your.domain.tld.
Continue with Securing DeepaMehta.
Back to Documentation