cocoon-docs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject [Cocoon Wiki] New: ApacheModProxySsl
Date Tue, 30 Nov 2004 19:02:02 GMT
   Date: 2004-11-30T11:02:02
   Editor: BertrandDelacretaz <>
   Wiki: Cocoon Wiki
   Page: ApacheModProxySsl

   no comment

New Page:

Here are some httpd configuration snippets which show how to use the Apache web server as
an SSL front-end proxy.

See also:
 * ApacheModProxy

== Configure the Apache web server for SSL ==
Of course the first step is to enable SSL for the web server, see the [
httpd docs] for this.

== SSL virtual host config ==
Once the web server is setup for SSL we can define a virtual host using mod_proxy. 

The httpd server will then receive the requests over an https connexion and proxy them to
Cocoon using non-encrypted http connections.

First we redirect the non-SSL port 80 to the SSL site, to prevent non-SSL access:
    Redirect /
Then we define the SSL-enabled virtual host

    # enable SSL
    SSLEngine On
    SSLCertificateFile /somewhere/my-certificate.crt
    SSLCertificateKeyFile /somewhere/my-certificate.key

    CustomLog /var/log/apache2/mylog combined

    ProxyPass / http://localhost:8888/my-cocoon-app-root/
    ProxyPassReverse / http://localhost:8888/my-cocoon-app-root/

== Security notes ==
A firewall must obviously be configured to make sure the port on which Cocoon is running is
only accessible via the httpd virtual host, i.e. in our example access to port 8888 must not
be allowed from the outside.

View raw message