How to setup https
Opened this issue · 3 comments
Dear admin
Can you help me the way setup https for Cytomine?
Thankyou so much.
Does anyone have any update on this? It would be important and I would really appreciate it.
There is a branch "ssl" on the repository that has TLS with Let's Encrypt enabled.
https://forum.image.sc/t/how-to-configure-ssl-for-cytomine/66869/2
I don't know if it works as-is, but we have an installation running that uses TLS (but is rather more complex, using haproxy for TLS termination, etc.).
So it's possible, yes. :-)
(I am just a user of Cytomine, not a dev, though.)
Hi Cytomine developers,
Our organization is enforcing SSL for all FQDNs and we need to enable HTTPS to our Cytomine platform (core v3.1.0, postgis v2.0.0). I've followed the instructions in here and git pull Cytomine_bootstrap SSL branch, but the installation is unsuccessful. There are many errors in the core logs (as attached).
Web result:
- localhost-core: redirected to HTTPS but the page is "Error of communication with Cytomine core".
- cytomine.mmu.edu.my: NOT redirected to HTTPS, giving a blank gray page.
- https://cytomine.mmu.edu.my: manually entering HTTPS gave "Error code: SSL_ERROR_UNRECOGNIZED_NAME_ALERT" page.
Our SSL certificate was given by our IT department, so I created $CORE_URL, $IMS_URL1, $IMS_URL2 and $UPLOAD_URL folders inside /etc/ssl/ to put domain.name.pem and domain.name.key inside the folders. dhparam.pem was generated using openssl inside /etc/ssl/certs/. Here are the start_deploy and nginx.conf files.
nginx.conf.sample.txt
start_deploy.sh.sample.txt
I also have tried modifying our existing Cytomine_bootstrap and add-in the modifications from here line by line, but still unsuccessful. However there is no error in the sudo docker logs core (refer attachment) but web results are all same.
Appreciate any assistance. Thanks!