SSL Proxy Configuration

Hi All,

Experiencing a strange issue here and wondering if someone might have some pointers.

Configured Apache2 as a reverse proxy to enable SSL to our trial upsource installation.  Hitting https://upsource.domain.local works, however as soon as it redirects to the login page, it defaults back to http://192.168.40.48:8080/hub/auth etc..

Apache2 config:

<VirtualHost *:443>

ServerName upsource.gresh.local
RewriteEngine On
AllowEncodedSlashes On

SSLEngine on
SSLCertificateFile /etc/apache2/ssl/upsource.gresh.local.pem
SSLCertificateKeyFile /etc/apache2/ssl/upsource.gresh.local.nopass.key

SSLProtocol all -SSLv2 -SSLv3
SSLCipherSuite ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:AES:CAMELLIA:DES-CBC3-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!aECDH:!EDH-DSS-DES-CBC3-SHA:!EDH-RSA-DES-CBC3-SHA:!KRB5-DES-CBC3-SHA
SSLHonorCipherOrder On

RewriteCond %{QUERY_STRING} transport=polling
RewriteRule /(.*)$ http://192.168.40.48:8080/$1 [P]

ProxyRequests Off
ProxyPass /~socket.io/ ws://192.168.40.48:8080/~socket.io/
ProxyPassReverse /~socket.io/ ws://192.168.40.48:8080/~socket.io/

ProxyPass / http://192.168.40.48:8080/
ProxyPassReverse / http://192.168.40.48:8080/

RequestHeader set X-Forwarded-Proto "https"

</VirtualHost>

I've set the base url to be https://upsource.gresh.local via the configure command, but still I experience this issue.

Has anyone else ever seen this?  Or perhaps can see any mistakes in the above?

Best Regards

Chris

 

2 comments
Comment actions Permalink

 Are there any references to  http://192.168.40.48:8080 in <Upsource_home_dir>/conf/internal/bundle.properties file?

0
Comment actions Permalink

Hi Artem,

That was it, thanks!!  I needed to update the base-url property in bundle.properties.  I assumed the configure command would have achieved that, but it appears not.

Thanks for the pointer :)

Chris

 

0

Please sign in to leave a comment.