SSL Proxy Configuration Follow
Hi All,
Experiencing a strange issue here and wondering if someone might have some pointers.
Configured Apache2 as a reverse proxy to enable SSL to our trial upsource installation. Hitting https://upsource.domain.local works, however as soon as it redirects to the login page, it defaults back to http://192.168.40.48:8080/hub/auth etc..
Apache2 config:
<VirtualHost *:443>
ServerName upsource.gresh.local
RewriteEngine On
AllowEncodedSlashes On
SSLEngine on
SSLCertificateFile /etc/apache2/ssl/upsource.gresh.local.pem
SSLCertificateKeyFile /etc/apache2/ssl/upsource.gresh.local.nopass.key
SSLProtocol all -SSLv2 -SSLv3
SSLCipherSuite ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:AES:CAMELLIA:DES-CBC3-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!aECDH:!EDH-DSS-DES-CBC3-SHA:!EDH-RSA-DES-CBC3-SHA:!KRB5-DES-CBC3-SHA
SSLHonorCipherOrder On
RewriteCond %{QUERY_STRING} transport=polling
RewriteRule /(.*)$ http://192.168.40.48:8080/$1 [P]
ProxyRequests Off
ProxyPass /~socket.io/ ws://192.168.40.48:8080/~socket.io/
ProxyPassReverse /~socket.io/ ws://192.168.40.48:8080/~socket.io/
ProxyPass / http://192.168.40.48:8080/
ProxyPassReverse / http://192.168.40.48:8080/
RequestHeader set X-Forwarded-Proto "https"
</VirtualHost>
I've set the base url to be https://upsource.gresh.local via the configure command, but still I experience this issue.
Has anyone else ever seen this? Or perhaps can see any mistakes in the above?
Best Regards
Chris
Please sign in to leave a comment.
Are there any references to http://192.168.40.48:8080 in <Upsource_home_dir>/conf/internal/bundle.properties file?
Hi Artem,
That was it, thanks!! I needed to update the base-url property in bundle.properties. I assumed the configure command would have achieved that, but it appears not.
Thanks for the pointer :)
Chris