Hello all, I'm trying to setup uwsgi "alone" (i.e. without any webserver
front-end) to serve multiple sites (and domain names), using http and
https.
I setup a few vassals. The first, which I'll call "frontend", run http
and https routers, fastrouter and subscription server (the last could be
overkill, but let's continue..)
There are a few vassals actually serving sites, subscribing to the
fastrouter.
All is working well, but for SNI. The (as of now, only) vassal which
make use of https has sni configured, ssl certificate included. But that
site is always served with the wrong certificate (actually the one
configured in frontend, on the https line).
These are the configurations of the relevant vassals. Does someone note
something relevant about the behaviour I described?
frontend:
[uwsgi]
shared-socket = 0.0.0.0:443
shared-socket = 0.0.0.0:80
fastrouter = /run/uwsgi/uwsgi.sock
fastrouter-subscription-server = 127.0.0.2:7000
mycert = /etc/ssl/certs/generic.crt
mykey = /etc/ssl/private/generic.key
https = =0,%(mycert),%(mykey)
http = =1
master = true
http-to = /run/uwsgi/uwsgi.sock
logger = syslog:%n
threads = 20
auto-procname = true
procname-prefix-spaced = %n /
the ssl site:
[uwsgi]
master = true
socket = /run/uwsgi/sites/%n
logger = syslog:%n
auto-procname = true
procname-prefix-spaced = %n /
mycert = /etc/ssl/certs/mysite.crt
mykey = /etc/ssl/private/mysite.key
processes = 4
home = /home/something
pythonpath = /var/local/otherthing
module = django.core.handlers.wsgi:WSGIHandler()
env = DJANGO_SETTINGS_MODULE=settings
offload-threads = 3
static-map = /static=/var/local/media
static-safe = /var/local/media
route-if-not = equal:${HTTPS};on redirect-permanent:https://%n${REQUEST_URI}
subscribe2 = server=127.0.0.2:7000,key=%n,sni_key=%(mykey),sni_crt=%(mycert)
cheers
Guido
_______________________________________________
uWSGI mailing list
[email protected]
http://lists.unbit.it/cgi-bin/mailman/listinfo/uwsgi
