wiki:UbuntuConfiguringApache2ServerSSLProxy

Version 13 (modified by JuergeN, 5 years ago) (diff)

--

Configuring Apache2 Server as SSL Proxy

If you want to secure your DeepaMehta server e.g. on a public webserver, you should definitely consider secure https via SSL. Even though DeepaMehta does support this features natively, you can also use an Apache2 Server and run it as an SSL proxy. Just follow these steps:

  1. Install apache2 webserver
    aptitude install apache2
    
  2. Load the required modules
    a2enmod ssl rewrite proxy proxy_http
    
  3. Make sure that virtual hosts is enabled for ssl somewhere in your apache2 config.
    NameVirtualHost *:443
    
  4. Create file deepamehta-ssl in /etc/apache2/sites-available:
     <VirtualHost *:443>
        
        ServerName deepamehta.yourdomain.tld
        ServerAdmin postmaster@yourdomain.tld
        DefaultType text/html
    
        SSLEngine On
        SSLCertificateFile /etc/apache2/ssl/deepamehta.yourdomain.tld.pem
    
        ErrorLog /var/log/apache2/deepamehta-ssl-error.log
        CustomLog /var/log/apache2/deepamehta-ssl-access.log combined
        
        RewriteEngine On 
        RewriteRule ^/?$ http://localhost:8080/de.deepamehta.webclient [P] 
        RewriteLog /var/log/apache2/deepamehta-ssl-rewrite.log    
    
        ProxyRequests Off
        ProxyPreserveHost Off
        AllowEncodedSlashes NoDecode
        
        <Proxy *>
    	Order deny,allow
            Allow from all
        </Proxy>
        
        <location />
    	Order allow,deny
    	Allow from all
    	ProxyPass http://localhost:8080/ nocanon
    	ProxyPassReverse http://localhost:8080/
        </location>
    
     </VirtualHost>
    
  5. Create link to /etc/apache2/sites-available/deepamehta-ssl in /etc/apache2/sites-enabled and restart the webserver ...

That's it! You can now securely connect to https://deepamehta.your.domain.tld.


Continue with Securing DeepaMehta.
Back to Documentation