Comments (4)
regisb
commented on August 16, 2024
2
Good news! This is now a feature of the latest release. Just run:
ACTIVATE_HTTPS=1 make all
instead of make all.
More information in the readme.
from tutor.
tony-h
commented on August 16, 2024
1
You can add the SSL certs directly in the edx stack. It's kind of a pain. Below is what I did to get it to work. The better option that I found is to use NGINX as a reverse proxy and leave the edx configs alone. https://tylermade.net/2017/09/14/the-perfect-reverse-proxy-nginx-ssl-webui-management/
Take your pick.
# add default certs (or copy the real certs)
mkdir ~/openedx-docker/data/lms/certs
mkdir ~/openedx-docker/data/cms/certs
cp /etc/ssl/certs/ssl-cert-snakeoil.pem ~/openedx-docker/data/lms/certs/fullchain.pem
cp /etc/ssl/private/ssl-cert-snakeoil.key ~/openedx-docker/data/lms/certs/privkey.pem
cp /etc/ssl/certs/ssl-cert-snakeoil.pem ~/openedx-docker/data/cms/certs/fullchain.pem
cp /etc/ssl/private/ssl-cert-snakeoil.key ~/openedx-docker/data/cms/certs/privkey.pem
# Copy configs and add 443 SSL support
cp ~/openedx-docker/config/nginx/lms.conf ~/openedx-docker/config/nginx/lms-ssl.conf
cp ~/openedx-docker/config/nginx/cms.conf ~/openedx-docker/config/nginx/cms-ssl.conf
nano ~/openedx-docker/config/nginx/lms-ssl.conf
listen 443 ssl;
ssl_certificate /openedx/data/lms/certs/fullchain.pem;
ssl_certificate_key /openedx/data/lms/certs/privkey.pem;
nano ~/openedx-docker/config/nginx/cms-ssl.conf
listen 443 ssl;
ssl_certificate /openedx/data/cms/certs/fullchain.pem;
ssl_certificate_key /openedx/data/cms/certs/privkey.pem;
from tutor.
regisb
commented on August 16, 2024
Thanks @tony-h for your thorough answer!
@gmsk19 I am fully aware that SSL certificates are a crucial feature for a production platform. When I created this project I thought it would be better simply to provide instructions on how to install certificates rather than have an optional SSL feature flag which would have made the 1-click install more complex and opaque. This opinion was reflected in that disclaimer: https://github.com/regisb/openedx-docker#ssl-certificates
However, I now think it should be possible to produce SSL certificates rather easily, post-install. I still need to work out the details, though. So I'm going to leave this issue open until I find an easy way to generate and update certificates. Meanwhile, @tony-h's instructions should work.
from tutor.
gmsk19
commented on August 16, 2024
Dear @regisb and @tony-h
Thanks for sharing the information. I shall try out tony's recommendations and revert back.
With regards,
Shashi Kiran G M
from tutor.
Related Issues (20)
- Add ability to patch proxy config in Caddy
- On Windows `tutor dev start` fails because of "Permission denied"
- edx-enterprise migration missing HOT 1
- Autocomplete failed after installing plugin HOT 1
- Do not apply git patches when using a brach based on but different than master while using Tutor Nightly
- K8S: Unable to view logs when we have running more than 5 pods of service
- Supply MySQL 8.2 or 8.3 by default HOT 2
- I just want to install this with Docker-compose I don't need a special magical configurator. HOT 2
- Redwood sandbox preparation HOT 14
- Installing tutor latest (17.04) HOT 2
- Compose `version` property is obsolete HOT 2
- Security patching for Quince HOT 6
- tutor build image openedx fails HOT 3
- Possible memory leak in watchtheme HOT 6
- Upgrading from tutor 15 to tutor 18 breaks the MySQL connection due to the mysql_native_password authentication plugin not being found HOT 1
- Migrate to Python images instead of ubuntu in Tutor dockerfiles HOT 2
- Add instructions/do command to switch mysql user auth to caching_sha2_password
- Tutor branches rename
- settheme command just creates site objects
- Installing fresh XBlock with mentioned approach failes
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from tutor.