[project-open-development] project-open 3.4 vmware question

[Wabner, T. (EXT) <tho...@si...>]

Hi,

first of all many thanks for the new release ... it works very nice and stable.

I have a question related to the vmware installation and HTTPS. Let me explain what I want and where are my problems.

I have a gentoo bases host system where I ran project-open as gast in the vmware virtual machine (I'am using virtualbox but I think this is not releated to my problem).

I have setup a host-only network with some sort of NAT which means, that the project-open gast becomes a IP adress (for example 192.168.56.101) of the private virtual network.

I can use project-open from my host system without problems. I have setup an apache in my host with a simple rewrite rule to serve all request via https:

HTTPS apache virtual host configuration:

   RewriteCond %{HTTP_HOST} ^internal\.mydomain\.com$
   RewriteRule (.*) http://192.168.56.101$1 [P,L]
Because of security reasons I want to use now project-open only via HTTPS. I can reach from outside the project-open site via https://internal.mydomain.com where I get the login screen from project-open. After login project-open redirects me always to http://internal.mydomain.com/intranet . And thats my problem!

I have configured project-open with the parameters:

SystemURL       https://internal.mydomain.com

and

UtilCurrentLocationRedirect     https://internal.mydomain.com

But this solves not the problem. I understand that project-open thinks to redirect to HTTP because from the point of view of project-open the request comes (from the apache) via HTTP.

Is it possible to run project-open also in HTTPS mode? In the vmware installation the aolserver3.3 is configured to run on 8000 and 8443. But lsof shows me the the aolserver only listen on *:8000 and not on *:8443. How can I change this? The next question is releated to pound. As I understand, from outside all requests to project-open served by pound with the catch-all rule. But pound also listen only on *:80 and not *:443.

I think and hope if I can enable pound and aolserver to work with ssl and my rewrite rule also uses a internal ssl proxy foreward, the problem should solved.

But I don't have found any documentation how to enable and run project-open in the vmware in HTTPS mode. What has to be configured and how to achive this? Or is there is another way to configure project-open to NOT switch to HTTP if I want a HTTPS request?

Many thanks for your help.

- Thomas
__________________________________________________
Dipl.-Inf. (FH)  Thomas Wabner
Consultant

stoneball
tw...@st...<mailto:tw...@st...>
www.stoneball.de<http://www.stoneball.de/>

i.A.:
SIEMENS AG
Industry Sector
Building Technologies Division
I BT LV DS GT
Suedstr. 74
04178 Leipzig, Germany
Tel.    : +49 (341) 4470-608
mailto:tho...@si...

Siemens Aktiengesellschaft: Chairman of the Supervisory Board: Gerhard Cromme;
Managing Board: Peter Loescher, Chairman, President and Chief Executive Officer;
Wolfgang Dehen, Heinrich Hiesinger, Joe Kaeser, Barbara Kux, Hermann Requardt,
Siegfried Russwurm, Peter Y. Solmssen; Registered offices: Berlin and Munich, Germany;
Commercial registries: Berlin Charlottenburg, HRB 12300, Munich, HRB 6684;
WEEE-Reg.-No. DE 23691322