Difficulty with allowing both HTTP and HTTPS

mdkrieg · 16 April 2021 20:02

I have a site that's serving PHP with Apache and it retrieves data from my node-RED application. I originally was using file_get_contents() to fetch data from node-RED's HTTP endpoints but I don't think this is ideal. Moreover, if I avoid this I can disable allow_url_fopen directive in my php config.

I've done some research, including reading this thread, and I got soooo close with the reverse proxy solution. I'm able to successfully serve JSON data through apache and it comes through as SSL secured. Great!

Only problem remaining is that I'm still stuck using the admin interface through the unsecured port. So, I set up a proxy for the admin path just like the other endpoints, and it serves the login page just fine -but- won't let me log in, yet login works fine if I go to the unsecured port.

I read some things about cross origin form posting but I can't figure out what's going on.

Any help would be appreciated, Thanks!

hardillb · 16 April 2021 20:27

Add your proxy configuration

mdkrieg · 16 April 2021 21:06

<VirtualHost *:443>

    ServerName recipes.ddns.me
    SSLEngine on
    SSLCertificateFile "pem"
    SSLCertificateChainFile "pem"
    SSLCertificateKeyFile "pem"

    ProxyRequests On
    ProxyVia On
	ProxyPreserveHost On
    <Location /node-red-admin>
        Order deny,allow
        Deny from all
        Allow from <my ip>
    </Location>

    ProxyRequests Off # don't understand why this line is here

        #using HTTP because I get a certificate authority authenticity error when I try node-red's https interface
        # I'm suppose to be able to fix that with this commend:
        #     sudo apt-get install ca-certificates
        # but it crashes on mysql update
        ProxyPass        "/_fetch" "http://localhost:40204/_fetch"
        ProxyPassReverse "/_fetch" "http://localhost:40204/_fetch"
        ProxyPass        "/_local" "http://localhost:40204/_local"
        ProxyPassReverse "/_local" "http://localhost:40204/_local"
        ProxyPass        "/node-red-admin" "http://localhost:40204/node-red-admin"
        ProxyPassReverse "/node-red-admin" "http://localhost:40204/node-red-admin"
</VirtualHost>
                                                                                                                                    46,8          Bot

TotallyInformation · 17 April 2021 01:13

I don't think the editor will work without proxying WS as well.

mdkrieg · 17 April 2021 04:13

If I change the proxy endpoint to https: instead of http I get 500 internal server error. I don't understand what is happening, does anyone have any clues?

mdkrieg · 17 April 2021 04:32

Found a way around what I was trying to do. I had to enable SSLProxyEnable = On directive in apache, Now the proxies to the https addresses work and so everything is happily working together now.

Thanks for the inputs!

system · 1 May 2021 04:32

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Allow client access over both HTTP and HTTPS? General	15	5512	13 September 2019
No matching certificate files to satisfy Node-Red https setup General security	2	297	9 August 2022
.Node red on Apache server General	4	266	11 May 2021
Using https & http from the dashboard Dashboard	10	1001	16 June 2021
Please Help! SSL , Let's Encrypt , digitalOcean , Https , 443 General	4	817	21 April 2021

Difficulty with allowing both HTTP and HTTPS

Related Topics