Re: [midgard-user] a question on site management.

Thu, 21 Jul 2005 13:56:21 -0700 

Robert

This is what I've done to SSL the authentication and admin pages. I 
think that's what you are trying to do, right? 

1) setup your midcom host to answer requests on port 80 and 443.
2) setup apache vhosts for them
3) add to SSL vhost:
                RewriteEngine On
                RewriteCond %{REQUEST_URI} !^/midcom-admin.*
                RewriteCond %{REQUEST_URI} !^/midcom-static.*
                RewriteCond %{REQUEST_URI} !\.(gif|jpg|css|ico)$
                RewriteRule /(.*)$ http://your-site.com/$1

4) add to non SSL vhost:
                RewriteEngine On
                RewriteCond %{REQUEST_URI} ^/midcom-admin.*
                RewriteRule /(.*)$ https://your-site.com/$1


What that means: 
All your site navigation will be on port 80. If anyone request SSL, they 
get redirected to the corresponding non SSL page. When you access 
anything in /midcom-admin, you get redirected to the SSL version. The 
bits about midcom-static and gif|jpg|etc regex is to make those 
requests avoid redirection. They will 'travel' the SSL pipe and the 
browser won't complain about parts of the page being secure and others 
not.

You will obviously need mod_rewrite for this. Your mileage may vary, it 
was quite painful to figure all this out on the beginning. Good luck!


Nico




On Thursday 21 July 2005 12:08 pm, Robert Guerra wrote:
> a question on site management. i have an existing domain being served
> by midgard.
>
> what would i need to do to have add a new one, and have it point to
> the existing content.  Specifically i want the secure.privaterra.org:
> 443 to point to content @ www.privaterra.net:80. thus,
> authentication/ login would only take place on port 443
>
> any help appreciated.
>
> regards
>
> Robert
> --
> Robert Guerra <[EMAIL PROTECTED]>
> Managing Director, Privaterra <http://www.privaterra.org>
>
>
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]

-- 
Marcelo N. Halpern,  your favorite daemon.
UNIX Systems Administrator - Ramapo College
TEL: +1.201.684.6821  FAX: +1.201.684.7961

---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Reply via email to