logo
Apache Lounge
Webmasters

 

About Forum Index Downloads Search Register Log in RSS X


Keep Server Online

If you find the Apache Lounge, the downloads and overall help useful, please express your satisfaction with a donation.

or

Bitcoin

A donation makes a contribution towards the costs, the time and effort that's going in this site and building.

Thank You! Steffen

Your donations will help to keep this site alive and well, and continuing building binaries. Apache Lounge is not sponsored.
Post new topic   Forum Index -> Apache View previous topic :: View next topic
Reply to topic   Topic: Apache Proxy
Author
owensy



Joined: 15 Sep 2015
Posts: 4
PostPosted: Tue 15 Sep '15 14:30    Post subject: Apache Proxy Reply with quote
Hi

Hoping someone can help me along with this, apart from stopping and starting apache i've never had to set anything up so im a total newbie to it all.

The background is a thrid party provider is upgrading from SHA1 to SHA2 hash algorithms, which is fine, but the system we run the calling service on is on weblogic 9.2 which doesnt support SHA2. Due to the timescales there isnt enough time to upgrade weblogic and recode the application etc so we're looking at using apache and the mod_proxy extension.

So basically, do you think mod_proxy would be suitable for this and what rougly would the .conf file look like to do this?

1. Service sends XML request to apache endpoint
2. Apache endpoint translates the HTTP request to HTTPS and proxies it enternally, the HTTPS connection utilises SHA-256
3. External service performs required checks and sends the reponse back to apache (HTTPS)
4. Apache terminates the HTTPS and sends an HTTP response back the original calling service

Thanks in advance
Back to top
James Blond
Moderator


Joined: 19 Jan 2006
Posts: 7442
Location: EU, Germany, Next to Hamburg
PostPosted: Tue 15 Sep '15 16:11    Post subject: Reply with quote
You can use a reverse proxy

Code:

<VirtualHost *:443>
    DocumentRoot /var/www
    ServerName example.com
    ServerAlias www.example.com
    <Directory /var/www>
        Options None
        AllowOverride None
        <RequireAll>
                Require all granted
        </RequireAll>
    </Directory>

    SSLEngine on
    SSLCertificateFile /opt/apache2/conf/certs/example.com.crt
    SSLCertificateKeyFile /opt/apache2/conf/certs/example.com.key
    SSLCertificateChainFile /opt/apache2/conf/certs/sub.class1.server.ca.pem
    SSLCACertificateFile /opt/apache2/conf/certs/ca.pem
    SSLCARevocationFile /opt/apache2/conf/certs/sub.class1.client.sha2.ca.pem

    <Files ~"\.(cgi|shtml|phtml|php|htm|html?)$>
        SSLOptions +StdEnvVars
    </Files>

    <Location />
        ProxyPass ajp://localhost:8009/
        ProxyPassReverse ajp://localhost:8009/
    </Location>

</VirtualHost>


ajp is nicer than http, but you can also use http://localhost in the proxyPass* instead of ajp:// stuff
Back to top


Reply to topic   Topic: Apache Proxy View previous topic :: View next topic
Post new topic   Forum Index -> Apache