Keep Server Online
If you find the Apache Lounge, the downloads and overall help useful, please express your satisfaction with a donation.
or
A donation makes a contribution towards the costs, the time and effort that's going in this site and building.
Thank You! Steffen
Your donations will help to keep this site alive and well, and continuing building binaries. Apache Lounge is not sponsored.
| |
|
 Topic: Apache Proxy |
|
| Author |
|
owensy
Joined: 15 Sep 2015
Posts: 4
|
 Posted: Tue 15 Sep '15 14:30 Post subject: Apache Proxy |
 |
|
Hi
Hoping someone can help me along with this, apart from stopping and starting apache i've never had to set anything up so im a total newbie to it all.
The background is a thrid party provider is upgrading from SHA1 to SHA2 hash algorithms, which is fine, but the system we run the calling service on is on weblogic 9.2 which doesnt support SHA2. Due to the timescales there isnt enough time to upgrade weblogic and recode the application etc so we're looking at using apache and the mod_proxy extension.
So basically, do you think mod_proxy would be suitable for this and what rougly would the .conf file look like to do this?
1. Service sends XML request to apache endpoint
2. Apache endpoint translates the HTTP request to HTTPS and proxies it enternally, the HTTPS connection utilises SHA-256
3. External service performs required checks and sends the reponse back to apache (HTTPS)
4. Apache terminates the HTTPS and sends an HTTP response back the original calling service
Thanks in advance |
|
| Back to top |
|
James Blond
Moderator
Joined: 19 Jan 2006
Posts: 7373
Location: Germany, Next to Hamburg
|
| Posted: Tue 15 Sep '15 16:11 Post subject: |
|
|
You can use a reverse proxy
| Code: |
<VirtualHost *:443>
DocumentRoot /var/www
ServerName example.com
ServerAlias www.example.com
<Directory /var/www>
Options None
AllowOverride None
<RequireAll>
Require all granted
</RequireAll>
</Directory>
SSLEngine on
SSLCertificateFile /opt/apache2/conf/certs/example.com.crt
SSLCertificateKeyFile /opt/apache2/conf/certs/example.com.key
SSLCertificateChainFile /opt/apache2/conf/certs/sub.class1.server.ca.pem
SSLCACertificateFile /opt/apache2/conf/certs/ca.pem
SSLCARevocationFile /opt/apache2/conf/certs/sub.class1.client.sha2.ca.pem
<Files ~"\.(cgi|shtml|phtml|php|htm|html?)$>
SSLOptions +StdEnvVars
</Files>
<Location />
ProxyPass ajp://localhost:8009/
ProxyPassReverse ajp://localhost:8009/
</Location>
</VirtualHost>
|
ajp is nicer than http, but you can also use http://localhost in the proxyPass* instead of ajp:// stuff |
|
| Back to top |
|
|
|
|
|
|
