generalwildfly

Configure Apache to use the WildFly SSL port

The Bitnami WildFly Stack can be configured to proxy HTTPS to WildFly SSL port. To do this, follow the steps below:

  • Modify the Apache configuration file for WildFly at /opt/bitnami/apache2/conf/vhosts/wildfly-https-vhost.conf, and ensure it contains the configuration below.

      <VirtualHost 127.0.0.1:443 _default_:443>
        ServerAlias *
        SSLProxyVerify none
        SSLProxyCheckPeerCN off
        SSLProxyCheckPeerName off
        SSLProxyCheckPeerExpire off
        ProxyPass / https://localhost:8443/
        ProxyPassReverse / https://localhost:8443/
        <Location /console>
          Require local
          ErrorDocument 403 "For security reasons, Administration Console will be only available if you access it using 127.0.0.1 (localhost)"
        </Location>
      </VirtualHost>
    

    The example above disables the ProxyVerify and ProxyCheck options because a dummy keystore is in use. If you have certificates provided by a Certificate Authority (CA), those options may be ignored.

  • Restart the server to load the new configuration.

      $ sudo /opt/bitnami/ctlscript.sh restart apache
    
Last modification April 22, 2021