Differences

This shows you the differences between two versions of the page.

--- en:user_advanced:gs3_https [2025/02/13 00:52] – [Linux: Getting SSL certificates using certbot] kjdon
+++ en:user_advanced:gs3_https [2025/09/10 00:14] (current) – [Getting things to run as sudo with no password] kjdon
@@ Line 6: / Line 6: @@
 ===== Using Apache to reverse proxy Tomcat =====
+Install and setup Apache with certbot SSL certificates. Then in the le-ssl.conf file (eg /etc/httpd/sites-enabled/000-defualt-le-ssl.conf) add teh following into the <VirtualHost *:443> node:
+       ProxyPass /greenstone3 http://localhost:8383/greenstone3
+       ProxyPassReverse /greenstone3 http://localhost:8383/greenstone3
+       <Location /greenstone3>
+            ProxyPassReverseCookiePath /greenstone3 /greenstone3
+       </Location>
+       ProxyPass /webswing-server/ http://localhost:8383/webswing-server/ upgrade=websocket
+In build.properties, you will need to set the revproxy settings:
+    revproxy.protocol=https
+    revproxy.domain=<DOMAIN>
+    ##revproxy.opt_port=8080  - this can stay commented out if you don't want a port number to appear in the public URL
+    ##revproxy.context=/greenstone3  - this can stay commented out if you are using the same context as greenstone3.context
 ===== Linux: Getting SSL certificates using certbot =====
@@ Line 118: / Line 138: @@
+IMPORTANT NOTE:
+If you updated your greenstone and the new one is in a different location, you will need to update the custom sudoers file and the letsencrypt renewal configuration file (/etc/letsencrypt/renewal/<DOMAIN>.conf)