Hi David, We do have a mod_ssl enabled apache in front of our several orion instances and we've had no problems so far. It could be that we have them in the same host, even though they have been for a while in different hosts with no problems at all. Or that we don't specify the <frontend> portion, as we've had no problems with firewalls or load balancers, and we can forward requests inside our code (I'm pretty sure, as we use a Controller Servlet who forwards lots of requests). good luck, D.
David Kenzik wrote: > Is it possible to successfully have Stronghold (ssl) proxy requests to a > non-ssl Orion on the backend? > > I can proxy all day long http --> http, but it seems that Orion has no > mechanism in the <frontend> portion to say "the protocol is https, not http > when you need to do a redirect". If I say "port=443" it tries to use http on > port 443. This is bad and breaks things. > > The Stronghold side is trivial with mod_rewrite or mod_proxy, it's just that > Orion is failing to use the right protocol when doing redirects, be them > internal (to make /foo turn into /foo/) or be it within a Java program. > > ASCII for those who like visuals: > > [https://ssl.server/foo] --(rewrite)--> [http://private.orion/foo] > > Is this possible without setting Orion up with ssl support? > > Help.
