Setting up HTTPS on RT 3.8

Hello list,

I have an RT 3.8 installation and I want to set up HTTPS (no mixed content,
everything over HTTPS).
Anyone can tell me how to do that (and sorry for the noob question) ?

Thanks in advance

Hello Brahim

You can do this over the webserver apache with ssl certificate

best regards john
View this message in context: http://old.nabble.com/Setting-up-HTTPS-on-RT-3.8-tp32051984p32052627.html

more rt3.conf

<VirtualHost *:80>
ServerName rt.domain.com
ServerAdmin root@localhost

DocumentRoot /opt/rt3/share/html

Alias /robots.txt /var/www/html/robots.txt

RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}

AddDefaultCharset UTF-8
PerlRequire /opt/rt3/bin/webmux.pl
<Directory /opt/rt3/share/html>
   Order allow,deny
   Allow from all
   SetHandler perl-script
   PerlResponseHandler RT::Mason
</Directory>
ServerName rt.domain.com:443 ServerAdmin root@localhost
DocumentRoot /opt/rt3/share/html

Alias /robots.txt /var/www/html/robots.txt

ErrorLog logs/mysslerror.log
sslEngine on
SSLProtocol -ALL +SSLv3 +TLSv1
SSLCipherSuite ALL:!aNULL:!ADH:!eNULL:!LOW:!EXP:RC4+RSA:+HIGH:+MEDIUM
TraceEnable off
LogLevel info
TransferLog logs/access_log
AddDefaultCharset UTF-8
PerlRequire /opt/rt3/bin/webmux.pl
<Directory /opt/rt3/share/html>
  Order allow,deny
  Allow from all
   SetHandler perl-script
   PerlResponseHandler RT::Mason
</Directory>

sslCertificateFile "/etc/httpd/certs/domain.com.crt"
sslCertificateKeyFile "/etc/httpd/certs/domain.cert-nopwd.pem"
sslCertificateChainFile /etc/httpd/certs/gd_bundle.crt

From: rt-users-bounces@lists.bestpractical.com [mailto:rt-users-bounces@lists.bestpractical.com] On Behalf Of Brahim Sakka
Sent: Wednesday, July 13, 2011 3:56 AM
To: rt-users@lists.bestpractical.com
Subject: [rt-users] Setting up HTTPS on RT 3.8

Hello list,

I have an RT 3.8 installation and I want to set up HTTPS (no mixed content, everything over HTTPS).
Anyone can tell me how to do that (and sorry for the noob question) ?

Thanks in advance

Electronic Privacy Notice. This e-mail, and any attachments, contains information that is, or may be, covered by electronic communications privacy
laws, and is also confidential and proprietary in nature. If you are not the intended recipient, please be advised that you are legally prohibited from
retaining, using, copying, distributing, or otherwise disclosing this information in any manner. Instead, please reply to the sender that you have
received this communication in error, and then immediately delete it. Thank you in advance for your cooperation

@Brahim:

I think you take good on it to get sth Background Knowledge of it …

Which Operating System you have?

for example a good tutorial with some explanations for ubuntu:
https://help.ubuntu.com/community/forum/server/apache2/SSL

best regards john

View this message in context: http://old.nabble.com/Setting-up-HTTPS-on-RT-3.8-tp32051984p32059058.html

Thanks everyone for the quick responses :slight_smile:

John, I have an idea about how to deploy SSL on a website. And as a matter
of fact I’m using Ubuntu as an OS. However I’ve posted the question here
because I’ve seen other threads talking about RT redirecting to http (rather
than HTTPS) when a ticket is created, modified, etc. So I wanted to know if
there is any special configuration for RT.2011/7/14 john s. fireskyer@gmx.de

@Brahim:

I think you take good on it to get sth Background Knowledge of it …

Which Operating System you have?

for example a good tutorial with some explanations for ubuntu:
https://help.ubuntu.com/community/forum/server/apache2/SSL

best regards john


View this message in context:
http://old.nabble.com/Setting-up-HTTPS-on-RT-3.8-tp32051984p32059058.html
Sent from the Request Tracker - User mailing list archive at Nabble.com.


2011 Training: http://bestpractical.com/services/training.html

Best Regards,
Brahim

Hello Brahim,

No there is now https setting in the configuration file which you could
set…

i think you should make some redirect matches in apache that rt doesn’t
make an fallback on http

best regards john …
View this message in context: http://old.nabble.com/Setting-up-HTTPS-on-RT-3.8-tp32051984p32059910.html

Hello list,

I have an RT 3.8 installation and I want to set up HTTPS (no mixed
content, everything over HTTPS).
Anyone can tell me how to do that (and sorry for the noob question) ?

It’s just the appropriate apache config and editing your
etc/RT_SiteConfig.pm so $WebPort is set to 443.

Thomas