googlewildfly

Configure Apache to use the WildFly SSL port

The Bitnami package for WildFly can be configured to proxy HTTPS to WildFly SSL port. To do this, follow the steps below:

  • Modify the Apache configuration file for WildFly at /opt/bitnami/apache/conf/vhosts/wildfly-https-vhost.conf, and ensure it contains the configuration below.

      <VirtualHost 127.0.0.1:443 _default_:443>
        ServerAlias *
        SSLProxyVerify none
        SSLProxyCheckPeerCN off
        SSLProxyCheckPeerName off
        SSLProxyCheckPeerExpire off
        ProxyPass / https://localhost:8443/
        ProxyPassReverse / https://localhost:8443/
        <Location /console>
          Require local
          ErrorDocument 403 "For security reasons, Administration Console will be only available if you access it using 127.0.0.1 (localhost)"
        </Location>
      </VirtualHost>
    

    The example above disables the ProxyVerify and ProxyCheck options because a dummy keystore is in use. If you have certificates provided by a Certificate Authority (CA), those options may be ignored.

  • Restart the server to load the new configuration.

      $ sudo /opt/bitnami/ctlscript.sh restart apache
    
Last modification April 22, 2021