Back
SSL not working on production hosting
Btw, for multi line, it's best to use 3 back ticks instead of 1
TL;DR
The user is having issues with SSL not working on their production hosting. They have shared their Apache configuration and it seems that the proxy pass for port 443 is commented out, causing the issue. The solution is to uncomment the proxy pass lines and change them from HTTP to HTTPS.
okay
π
Maybe your proxy pass over here should go to https
TypeScript
ProxyPass / https://127.0.0.1:3031/
ProxyPassReverse / https://127.0.0.1:3031/
like this ?
no . . . . . it's not working
last time i opened SMTP error and conclusion was we need to have ssl on appwrite.example.com
so now I have a ssl on domain, all subdomains
but it is not redirecting on https
TypeScript
<VirtualHost *:80>
ServerName appwrite.exampledev.xyz
ServerAlias appwrite.exampledev.xyz
ServerAdmin govinddeshmukh2001@gmail.com
#DocumentRoot /var/www/appwrite.exampledev.xyz
ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined
ProxyPass / http://127.0.0.1:3030/
ProxyPassReverse / http://127.0.0.1:3030/
#proxy_set_header Host $host;
#ProxyRequests Off
ProxyPassReverseCookieDomain "127.0.0.1:3030" "appwrite.exampledev.xyz"
ProxyPreserveHost On
</VirtualHost>
<VirtualHost *:443>
ServerName appwrite.exampledev.xyz
ServerAlias appwrite.exampledev.xyz
ServerAdmin govinddeshmukh2001@gmail.com
#DocumentRoot /var/www/appwrite.exampledev.xyz
ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined
#ProxyPass / http://127.0.0.1:3031/
#ProxyPassReverse / http://127.0.0.1:3031/
#proxy_set_header Host $host;
#ProxyRequests Off
#ProxyPassReverseCookieDomain "127.0.0.1:3031" "appwrite.exampledev.xyz"
#ProxyPreserveHost On
#SSL
SSLEngine On
SSLCertificateFile /etc/letsencrypt/live/exampledev.xyz/cert.pem
SSLCertificateKeyFile /etc/letsencrypt/live/exampledev.xyz/privkey.pem
SSLCertificateChainFile /etc/letsencrypt/live/exampledev.xyz/chain.pem
SSLCipherSuite EECDH+CHACHA20:EECDH+CHACHA20-draft:EECDH+AES128:RSA+AES128:EECDH+AES256:RSA+AES256:EECDH+3DES:RSA+3DES:!MD5
SSLProtocol All -SSLv2 -SSLv3 -TLSv1
SSLHonorCipherOrder On
</VirtualHost>
here is complete vhost configuration
Uhh the 443 proxy pass is commented out π§ and it's not https
TypeScript
<VirtualHost *:80>
ServerName appwrite.exampledev.xyz
ServerAlias appwrite.exampledev.xyz
ServerAdmin govinddeshmukh2001@gmail.com
#DocumentRoot /var/www/appwrite.exampledev.xyz
ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined
ProxyPass / http://127.0.0.1:3030/
ProxyPassReverse / http://127.0.0.1:3030/
#proxy_set_header Host $host;
#ProxyRequests Off
ProxyPassReverseCookieDomain "127.0.0.1:3030" "appwrite.exampledev.xyz"
ProxyPreserveHost On
</VirtualHost>
<VirtualHost *:443>
ServerName appwrite.exampledev.xyz
#ServerAlias appwrite.exampledev.xyz
ServerAdmin govinddeshmukh2001@gmail.com
#DocumentRoot /var/www/appwrite.exampledev.xyz
ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined
ProxyPass / https://127.0.0.1:3031/
ProxyPassReverse / https://127.0.0.1:3031/
#proxy_set_header Host $host;
#ProxyRequests Off
ProxyPassReverseCookieDomain "127.0.0.1:3031" "appwrite.exampledev.xyz"
ProxyPreserveHost On
#SSL
SSLEngine On
SSLCertificateFile /etc/letsencrypt/live/exampledev.xyz/cert.pem
SSLCertificateKeyFile /etc/letsencrypt/live/exampledev.xyz/privkey.pem
SSLCertificateChainFile /etc/letsencrypt/live/exampledev.xyz/chain.pem
SSLCipherSuite EECDH+CHACHA20:EECDH+CHACHA20-draft:EECDH+AES128:RSA+AES128:EECDH+AES256:RSA+AES256:EECDH+3DES:RSA+3DES:!MD5
SSLProtocol All -SSLv2 -SSLv3 -TLSv1
SSLHonorCipherOrder On
</VirtualHost>
now ?????
Can you browse to your server using https on port 3031?
okay
its working like this but ssl is not visible
Maybe you can check Apache logs for why this error is happening then
π₯²
not getting anything in logs
please tell me correct apache2 configuration for appwrite
Sorry I don't really know Apache. The only other resource I have is: https://github.com/appwrite/appwrite/discussions/4056
