[rt-users] Apache SSL for RT 3.6.1

Vonnahme, Nathan nathan.vonnahme at bannerhealth.com
Thu Nov 9 21:39:44 EST 2006


> "Schultz, Eric" <ESchultz at corp.untd.com> wrote: 
> 
> >> I'm still 
> >> working on
> >> getting non- secure URLs to redirect to the secure ones
> transparently.
> >> I've tried several different mod_rewrite approaches without
> success.
> >> 


I recently set up RT with SSL.  You can do SSL with virtual hosts, but
each SSL host has to have its own dedicated IP address (you can't do
name-based virtual hosts with SSL).  

Here's how I did it:

<VirtualHost 10.41.16.118:80 >
        ServerName myrt.mydomain.com
        RedirectMatch permanent (/.*) https://myrt.mydomain.com$1
</VirtualHost>


<VirtualHost 10.41.16.118:443>
        ServerName myrt.mydomain.com
        DocumentRoot /opt/rt3/share/html
        AddDefaultCharset UTF-8

    	 SSLEngine on
    	 SSLCertificateFile "/etc/httpd/conf/ssl.crt/rt.crt"
	 SSLCertificateKeyFile "/etc/httpd/conf/ssl.key/rt.key"

        PerlModule Apache::DBI
        PerlRequire /opt/rt3/bin/webmux.pl

        <Location />
                SetHandler perl-script
                PerlHandler RT::Mason
        </Location>

   Alias /NoAuth /opt/rt3/local/html/NoAuth
   <Directory /opt/rt3/local/html/NoAuth>
                Options +FollowSymLinks +Indexes
                Order allow,deny
                Allow from all
   </Directory>
   <Location /REST/1.0/NoAuth>
        satisfy any
        allow from all
   </Location>
   <Location /NoAuth>
        satisfy any
        allow from all
   </Location>
   <Location /NoAuth/images>
        SetHandler default-handler
   </Location>
</VirtualHost>


And then you need to make sure the stuff in RT_SiteConfig.pm isn't
making URLs like http://myrt.mydomain.com/rt or something.

Set($WebPath , "");
Set($WebBaseURL , "https://myrt.mydomain.com");





More information about the rt-users mailing list