* Gnoga and SSL / https
@ 2014-12-31 4:28 David Botton
0 siblings, 0 replies; only message in thread
From: David Botton @ 2014-12-31 4:28 UTC (permalink / raw)
Gnoga works well with secure connections using Apache, NGINX, etc as a secure proxy.
Here are some simple directions using Apache:
1) Create a self signed certificate for testing. Of course in production you may want to purchase a real certificate:
openssl req -new -x509 -days 365 -sha1 -newkey rsa:1024 -nodes -keyout server.key -out server.crt -subj '/O=Botton/OU=Gnoga/CN=snake.gnoga.com'
2) I added a config:
<VirtualHost *:443>
ServerName snake.gnoga.com
SSLEngine on
SSLCertificateFile /workspace/ssl/server.crt
SSLCertificateKeyFile /workspace/ssl/server.key
ProxyPass /gnoga ws://127.0.0.1:8080/gnoga
ProxyPass / http://127.0.0.1:8080/
ProxyPassReverse / http://127.0.0.1:8080/
</VirtualHost>
3) You need to use a Gnoga boot loader based on gnoga/html/secure.html. So given the above you can use https://snake.gnoga.com/secure.html (Of course you could set secure.html as the boot loader in the snake example and then no need to specify on command line, that would also prevent insecure connections tried directly to circumvent the proxy).
Using ssl does create some overhead and so the snake demo gets a bit jumpy when run on an secure connection.
David Botton
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2014-12-31 4:28 UTC | newest]
Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2014-12-31 4:28 Gnoga and SSL / https David Botton
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox