Hi David,
We do have a mod_ssl enabled apache in front of our several orion
instances and we've had no problems so far. It could be that we have
them in the same host, even though they have been for a while in
different hosts with no problems at all. Or that we don't specify the
frontend portion, as we've had no problems with firewalls or load
balancers, and we can forward requests inside our code (I'm pretty sure,
as we use a Controller Servlet who forwards lots of requests).
good luck,
D.
David Kenzik wrote:
Is it possible to successfully have Stronghold (ssl) proxy requests to a
non-ssl Orion on the backend?
I can proxy all day long http -- http, but it seems that Orion has no
mechanism in the frontend portion to say the protocol is https, not http
when you need to do a redirect. If I say port=443 it tries to use http on
port 443. This is bad and breaks things.
The Stronghold side is trivial with mod_rewrite or mod_proxy, it's just that
Orion is failing to use the right protocol when doing redirects, be them
internal (to make /foo turn into /foo/) or be it within a Java program.
ASCII for those who like visuals:
[https://ssl.server/foo] --(rewrite)-- [http://private.orion/foo]
Is this possible without setting Orion up with ssl support?
Help.