On Mon, Aug 09, 2021 at 08:21:01AM -0700, Steli Vali wrote: > I am testing DSpace 7, and I want to enable https. Unfortunately the > instructions online are not so detailed and I am confused. > I am using dspace.server.url = " http//my-repo.com:8009/server " instead of > "http://localhost:8080/server" in the local.cfg file.
8009 is the AJP port. That's only for the proxy link between Apache HTTPD and Tomcat. HTTP won't work there, and you should have that port firewalled from end users anyway. (I have my proxy links set up on 'localhost' (127.0.0.1 or ::1) just to make certain that they cannot leak out of the server.) Try 'https://my-repo.com/server'. > I have installed the Apache2 Proxy and the additional modules, and in > /etc/apache2/sites-enabled, I have created a file called mySsl.conf, with > the following configuration: > > <IfModule mod_ssl.c> > <VirtualHost _default_:443> > ServerAdmin webmaster@localhost > > DocumentRoot /var/www/html > > ErrorLog ${APACHE_LOG_DIR}/error.log > CustomLog ${APACHE_LOG_DIR}/access.log combined > > # SSL Engine Switch: > # Enable/Disable SSL for this virtual host. > SSLEngine on > > # A self-signed (snakeoil) certificate can be created by > installing > # the ssl-cert package. See > # /usr/share/doc/apache2/README.Debian.gz for more info. > # If both key and certificate are stored in the same > file, only the > # SSLCertificateFile directive is needed. > SSLCertificateFile /etc/ssl/certs/ssl-cert-snakeoil.pem > SSLCertificateKeyFile /etc/ssl/private/ssl-cert-snakeoil.key > > ProxyPass /server ajp://my-repo.com:8009/server > ProxyPassReverse /server ajp://my-repo.com:80009/server Oops! Too many zeroes. ----------------------------------------^ > ... > > When I try to access the backend via https://my-repo.com:443/server, I get > an error. What error is that? Details will be helpful. -- Mark H. Wood Lead Technology Analyst University Library Indiana University - Purdue University Indianapolis 755 W. Michigan Street Indianapolis, IN 46202 317-274-0749 www.ulib.iupui.edu -- All messages to this mailing list should adhere to the Code of Conduct: https://www.lyrasis.org/about/Pages/Code-of-Conduct.aspx --- You received this message because you are subscribed to the Google Groups "DSpace Technical Support" group. To unsubscribe from this group and stop receiving emails from it, send an email to dspace-tech+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/dspace-tech/YRJ/p8CrmH6xpHFJ%40IUPUI.Edu.
signature.asc
Description: PGP signature